From f224c204e6c1b8e8b0ff77b5e4db073f9f24b8d5 Mon Sep 17 00:00:00 2001
From: curben-bot <3048979-curben-bot@users.noreply.gitlab.com>
Date: Fri, 8 May 2020 00:09:44 +0000
Subject: [PATCH] Filter updated: Fri, 08 May 2020 00:09:42 UTC

---
 src/URLhaus.csv                    | 1611 ++++++++++++++++------------
 urlhaus-filter-bind-online.conf    |  147 ++-
 urlhaus-filter-bind.conf           |   31 +-
 urlhaus-filter-dnsmasq-online.conf |  147 ++-
 urlhaus-filter-dnsmasq.conf        |   31 +-
 urlhaus-filter-domains-online.txt  |  313 +++---
 urlhaus-filter-domains.txt         |   82 +-
 urlhaus-filter-hosts-online.txt    |  147 ++-
 urlhaus-filter-hosts.txt           |   31 +-
 urlhaus-filter-online.txt          |  349 +++---
 urlhaus-filter-unbound-online.conf |  147 ++-
 urlhaus-filter-unbound.conf        |   31 +-
 urlhaus-filter.txt                 |   95 +-
 13 files changed, 1821 insertions(+), 1341 deletions(-)

diff --git a/src/URLhaus.csv b/src/URLhaus.csv
index e2d3bb99..0ec400e7 100644
--- a/src/URLhaus.csv
+++ b/src/URLhaus.csv
@@ -1,23 +1,304 @@
+"359771","2020-05-08 00:04:59","http://49.89.233.47:39104/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359771/","Gandylyan1"
+"359770","2020-05-08 00:04:55","http://176.113.161.67:45886/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359770/","Gandylyan1"
+"359769","2020-05-08 00:04:52","http://221.210.211.17:34479/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359769/","Gandylyan1"
+"359768","2020-05-08 00:04:51","http://58.243.125.95:57779/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359768/","Gandylyan1"
+"359767","2020-05-08 00:04:47","http://114.239.39.47:48940/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359767/","Gandylyan1"
+"359766","2020-05-08 00:04:43","http://115.197.192.193:34238/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359766/","Gandylyan1"
+"359765","2020-05-08 00:04:39","http://112.28.98.69:53599/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359765/","Gandylyan1"
+"359764","2020-05-08 00:04:35","http://172.39.82.115:53126/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359764/","Gandylyan1"
+"359763","2020-05-08 00:04:02","http://211.137.225.53:42729/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359763/","Gandylyan1"
+"359762","2020-05-07 23:23:04","http://193.228.91.105/bins/MtMdOLDhh.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359762/","zbetcheckin"
+"359761","2020-05-07 22:40:33","http://167.172.215.157/lmaoWTF/loligang.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/359761/","JayTHL"
+"359760","2020-05-07 22:40:30","http://167.172.215.157/lmaoWTF/loligang.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/359760/","JayTHL"
+"359759","2020-05-07 22:40:27","http://167.172.215.157/lmaoWTF/loligang.sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/359759/","JayTHL"
+"359758","2020-05-07 22:40:24","http://167.172.215.157/lmaoWTF/loligang.ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/359758/","JayTHL"
+"359757","2020-05-07 22:40:22","http://167.172.215.157/lmaoWTF/loligang.mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/359757/","JayTHL"
+"359756","2020-05-07 22:40:19","http://167.172.215.157/lmaoWTF/loligang.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/359756/","JayTHL"
+"359755","2020-05-07 22:40:16","http://167.172.215.157/lmaoWTF/loligang.m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/359755/","JayTHL"
+"359754","2020-05-07 22:40:14","http://167.172.215.157/lmaoWTF/loligang.arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/359754/","JayTHL"
+"359753","2020-05-07 22:40:11","http://167.172.215.157/lmaoWTF/loligang.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/359753/","JayTHL"
+"359752","2020-05-07 22:40:07","http://167.172.215.157/lmaoWTF/loligang.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/359752/","JayTHL"
+"359751","2020-05-07 22:40:05","http://167.172.215.157/lmaoWTF/loligang.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/359751/","JayTHL"
+"359750","2020-05-07 22:00:04","http://64.225.119.229/zzz/mips.fuku","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/359750/","Gandylyan1"
+"359749","2020-05-07 21:57:03","http://5.206.224.216/private/tmp.exe","online","malware_download","Formbook","https://urlhaus.abuse.ch/url/359749/","JayTHL"
+"359748","2020-05-07 21:33:03","http://64.225.119.229/lolk","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/359748/","Gandylyan1"
+"359747","2020-05-07 21:30:12","http://64.225.119.229/zzz/arm7.fuku","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/359747/","Gandylyan1"
+"359746","2020-05-07 21:30:09","http://64.225.119.229/zzz/arm6.fuku","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/359746/","Gandylyan1"
+"359745","2020-05-07 21:30:07","http://64.225.119.229/zzz/arm.fuku","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/359745/","Gandylyan1"
+"359744","2020-05-07 21:30:05","http://64.225.119.229/zzz/arm5.fuku","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/359744/","Gandylyan1"
+"359743","2020-05-07 21:19:03","https://pastebin.com/raw/9EvmY0Dg","offline","malware_download","None","https://urlhaus.abuse.ch/url/359743/","JayTHL"
+"359742","2020-05-07 21:05:05","http://223.93.157.244:59319/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359742/","Gandylyan1"
+"359741","2020-05-07 21:04:59","http://31.146.124.38:57622/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359741/","Gandylyan1"
+"359740","2020-05-07 21:04:56","http://49.89.241.11:44340/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359740/","Gandylyan1"
+"359739","2020-05-07 21:04:51","http://175.11.192.189:45047/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359739/","Gandylyan1"
+"359738","2020-05-07 21:04:47","http://111.43.223.54:37354/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359738/","Gandylyan1"
+"359737","2020-05-07 21:04:44","http://36.35.161.72:60895/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359737/","Gandylyan1"
+"359736","2020-05-07 21:04:12","http://111.42.102.74:49928/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359736/","Gandylyan1"
+"359735","2020-05-07 21:04:10","http://114.235.197.18:44464/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359735/","Gandylyan1"
+"359734","2020-05-07 21:04:05","http://113.133.224.99:47994/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359734/","Gandylyan1"
+"359733","2020-05-07 21:04:01","http://115.56.161.84:39731/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359733/","Gandylyan1"
+"359732","2020-05-07 21:03:51","http://199.83.203.53:37349/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359732/","Gandylyan1"
+"359731","2020-05-07 21:03:43","http://111.43.223.62:34133/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359731/","Gandylyan1"
+"359730","2020-05-07 21:03:41","http://221.210.211.142:33573/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359730/","Gandylyan1"
+"359729","2020-05-07 21:03:09","http://216.180.117.201:53168/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359729/","Gandylyan1"
+"359728","2020-05-07 21:03:05","http://222.140.162.213:40054/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359728/","Gandylyan1"
+"359727","2020-05-07 19:45:20","https://pastebin.com/raw/Zta5WRwr","offline","malware_download","None","https://urlhaus.abuse.ch/url/359727/","JayTHL"
+"359726","2020-05-07 19:45:17","https://pastebin.com/raw/4Crsf7Au","offline","malware_download","None","https://urlhaus.abuse.ch/url/359726/","JayTHL"
+"359725","2020-05-07 19:21:18","https://www.analistaspadel.com/wp-content/plugins/apikey/zdhsggl/21349430/EmploymentVerification_21349430_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359725/","malware_traffic"
+"359724","2020-05-07 19:21:16","https://gamelounge.club/hhvtqlrqni/51530/EmploymentVerification_51530_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359724/","malware_traffic"
+"359723","2020-05-07 19:21:13","http://movingsolutionsus.com/ptniopp/88836752/EmploymentVerification_88836752_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359723/","malware_traffic"
+"359722","2020-05-07 19:21:07","http://lvecarehomes.com/vvzjddpdllk/751057/EmploymentVerification_751057_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359722/","malware_traffic"
+"359721","2020-05-07 19:07:05","https://vinastory.vn","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359721/","spamhaus"
+"359720","2020-05-07 19:00:04","http://139.59.76.120/XIe20-xD.x86","offline","malware_download","64-bit,elf,x86-64","https://urlhaus.abuse.ch/url/359720/","geenensp"
+"359719","2020-05-07 18:53:02","http://193.228.91.105/binsMtMdOLDhh.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/359719/","JayTHL"
+"359718","2020-05-07 18:52:02","http://193.228.91.105/yakuza.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/359718/","JayTHL"
+"359717","2020-05-07 18:52:01","http://193.228.91.105/yakuza.arm4","online","malware_download","None","https://urlhaus.abuse.ch/url/359717/","JayTHL"
+"359716","2020-05-07 18:51:58","http://193.228.91.105/yakuza.m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/359716/","JayTHL"
+"359715","2020-05-07 18:51:55","http://193.228.91.105/yakuza.i586","online","malware_download","None","https://urlhaus.abuse.ch/url/359715/","JayTHL"
+"359714","2020-05-07 18:51:53","http://193.228.91.105/yakuza.ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/359714/","JayTHL"
+"359713","2020-05-07 18:51:50","http://193.228.91.105/yakuza.x32","online","malware_download","None","https://urlhaus.abuse.ch/url/359713/","JayTHL"
+"359712","2020-05-07 18:51:47","http://193.228.91.105/yakuza.arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/359712/","JayTHL"
+"359711","2020-05-07 18:51:44","http://193.228.91.105/yakuza.x86","online","malware_download","None","https://urlhaus.abuse.ch/url/359711/","JayTHL"
+"359710","2020-05-07 18:51:42","http://193.228.91.105/yakuza.sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/359710/","JayTHL"
+"359709","2020-05-07 18:51:39","http://193.228.91.105/yakuza.mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/359709/","JayTHL"
+"359708","2020-05-07 18:51:36","http://193.228.91.105/yakuza.mips","online","malware_download","None","https://urlhaus.abuse.ch/url/359708/","JayTHL"
+"359707","2020-05-07 18:51:33","http://193.228.91.105/bins.sh","online","malware_download","None","https://urlhaus.abuse.ch/url/359707/","JayTHL"
+"359706","2020-05-07 18:51:31","http://193.228.91.105/bins/MtMdOLDhh.sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/359706/","JayTHL"
+"359705","2020-05-07 18:51:28","http://193.228.91.105/bins/MtMdOLDhh.m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/359705/","JayTHL"
+"359704","2020-05-07 18:51:26","http://193.228.91.105/bins/MtMdOLDhh.ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/359704/","JayTHL"
+"359703","2020-05-07 18:51:23","http://193.228.91.105/bins/MtMdOLDhh.arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/359703/","JayTHL"
+"359702","2020-05-07 18:51:19","http://193.228.91.105/bins/MtMdOLDhh.arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/359702/","JayTHL"
+"359701","2020-05-07 18:51:17","http://193.228.91.105/bins/MtMdOLDhh.arm5","online","malware_download","None","https://urlhaus.abuse.ch/url/359701/","JayTHL"
+"359700","2020-05-07 18:51:14","http://193.228.91.105/bins/MtMdOLDhh.arm","online","malware_download","None","https://urlhaus.abuse.ch/url/359700/","JayTHL"
+"359699","2020-05-07 18:51:11","http://193.228.91.105/bins/MtMdOLDhh.mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/359699/","JayTHL"
+"359698","2020-05-07 18:51:08","http://193.228.91.105/bins/MtMdOLDhh.mips","online","malware_download","None","https://urlhaus.abuse.ch/url/359698/","JayTHL"
+"359697","2020-05-07 18:51:05","http://193.228.91.105/bins/MtMdOLDhh.x86","online","malware_download","None","https://urlhaus.abuse.ch/url/359697/","JayTHL"
+"359696","2020-05-07 18:51:03","http://193.228.91.105/8UsA.sh","online","malware_download","None","https://urlhaus.abuse.ch/url/359696/","JayTHL"
+"359695","2020-05-07 18:46:09","http://hwsrv-675710.hostwindsdns.com/8spc8","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/359695/","Gandylyan1"
+"359694","2020-05-07 18:46:06","http://hwsrv-675710.hostwindsdns.com/8mpsl8","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/359694/","Gandylyan1"
+"359693","2020-05-07 18:36:09","http://hwsrv-720737.hostwindsdns.com/arm7","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/359693/","Gandylyan1"
+"359692","2020-05-07 18:36:06","http://hwsrv-720737.hostwindsdns.com/arm6","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/359692/","Gandylyan1"
+"359691","2020-05-07 18:34:11","http://199.116.237.125:42244/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359691/","geenensp"
+"359690","2020-05-07 18:34:07","http://31.155.158.20:31490/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359690/","geenensp"
+"359689","2020-05-07 18:23:05","http://104.244.76.124/ap/ad.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/359689/","geenensp"
+"359688","2020-05-07 18:23:03","http://104.244.76.124/xb.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/359688/","geenensp"
+"359687","2020-05-07 18:22:04","https://pastebin.com/raw/QjRZEpaU","offline","malware_download","None","https://urlhaus.abuse.ch/url/359687/","JayTHL"
+"359686","2020-05-07 18:16:09","http://f0434589.xsph.ru/assets/video-player-347785.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/359686/","vxvault"
+"359685","2020-05-07 18:14:39","http://122.160.60.236:5171/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/359685/","zbetcheckin"
+"359684","2020-05-07 18:14:35","http://142.11.222.172/bins/x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359684/","zbetcheckin"
+"359683","2020-05-07 18:14:31","http://142.11.222.172/bins/m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359683/","zbetcheckin"
+"359682","2020-05-07 18:14:29","http://142.11.222.172/bins/ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359682/","zbetcheckin"
+"359681","2020-05-07 18:14:25","http://142.11.222.172/update.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/359681/","zbetcheckin"
+"359680","2020-05-07 18:14:19","http://142.11.222.172/bins/spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359680/","zbetcheckin"
+"359679","2020-05-07 18:14:16","http://142.11.222.172/bins/sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359679/","zbetcheckin"
+"359678","2020-05-07 18:14:11","http://142.11.222.172/bins/mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/359678/","zbetcheckin"
+"359677","2020-05-07 18:14:08","http://142.11.222.172/bins/arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359677/","zbetcheckin"
+"359676","2020-05-07 18:14:04","http://142.11.222.172/bins/arm5","online","malware_download","elf","https://urlhaus.abuse.ch/url/359676/","zbetcheckin"
+"359675","2020-05-07 18:13:19","http://update.id/dtnjynhlgc/8205363/EmploymentVerification_8205363_05062020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359675/","spamhaus"
+"359674","2020-05-07 18:13:14","http://50.115.172.172/armv5l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359674/","hypoweb"
+"359673","2020-05-07 18:13:11","http://50.115.172.172/armv4l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359673/","hypoweb"
+"359672","2020-05-07 18:13:08","http://50.115.172.172/sparc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359672/","hypoweb"
+"359671","2020-05-07 18:13:04","http://50.115.172.172/m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359671/","hypoweb"
+"359670","2020-05-07 18:13:01","http://50.115.172.172/i586","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359670/","hypoweb"
+"359669","2020-05-07 18:12:58","http://50.115.172.172/powerpc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359669/","hypoweb"
+"359668","2020-05-07 18:12:55","http://50.115.172.172/i686","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359668/","hypoweb"
+"359667","2020-05-07 18:12:52","http://50.115.172.172/armv7l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359667/","hypoweb"
+"359666","2020-05-07 18:12:48","http://50.115.172.172/armv6l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359666/","hypoweb"
+"359665","2020-05-07 18:12:45","http://50.115.172.172/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359665/","hypoweb"
+"359664","2020-05-07 18:12:42","http://50.115.172.172/sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359664/","hypoweb"
+"359663","2020-05-07 18:12:38","http://50.115.172.172/mipsel","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359663/","hypoweb"
+"359662","2020-05-07 18:12:34","http://50.115.172.172/mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359662/","hypoweb"
+"359661","2020-05-07 18:12:30","http://195.123.213.216/HORNY1/x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/359661/","hypoweb"
+"359660","2020-05-07 18:12:28","http://195.123.213.216/HORNY1/spc","online","malware_download","elf","https://urlhaus.abuse.ch/url/359660/","hypoweb"
+"359659","2020-05-07 18:12:26","http://195.123.213.216/HORNY1/sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/359659/","hypoweb"
+"359658","2020-05-07 18:12:23","http://195.123.213.216/HORNY1/ppc","online","malware_download","elf","https://urlhaus.abuse.ch/url/359658/","hypoweb"
+"359657","2020-05-07 18:12:21","http://195.123.213.216/HORNY1/mipsel","online","malware_download","elf","https://urlhaus.abuse.ch/url/359657/","hypoweb"
+"359656","2020-05-07 18:12:19","http://195.123.213.216/HORNY1/mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/359656/","hypoweb"
+"359655","2020-05-07 18:12:17","http://195.123.213.216/HORNY1/m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/359655/","hypoweb"
+"359654","2020-05-07 18:12:15","http://195.123.213.216/HORNY1/arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/359654/","hypoweb"
+"359653","2020-05-07 18:12:13","http://195.123.213.216/HORNY1/arm6","online","malware_download","elf","https://urlhaus.abuse.ch/url/359653/","hypoweb"
+"359652","2020-05-07 18:12:11","http://195.123.213.216/HORNY1/arm5","online","malware_download","elf","https://urlhaus.abuse.ch/url/359652/","hypoweb"
+"359651","2020-05-07 18:12:08","http://195.123.213.216/HORNY1/arm","online","malware_download","elf","https://urlhaus.abuse.ch/url/359651/","hypoweb"
+"359650","2020-05-07 18:12:06","https://hi-event.vn/wp-content/uploads/2020/05/nvqcmnyiqcfo/EmploymentVerification_0717988_05062020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359650/","spamhaus"
+"359649","2020-05-07 18:09:06","http://142.11.222.172/bins/arm6","online","malware_download","elf","https://urlhaus.abuse.ch/url/359649/","zbetcheckin"
+"359648","2020-05-07 18:09:04","http://142.11.222.172/bins/mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/359648/","zbetcheckin"
+"359647","2020-05-07 18:04:43","http://111.43.223.155:59696/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359647/","Gandylyan1"
+"359646","2020-05-07 18:04:40","http://111.42.103.51:55627/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359646/","Gandylyan1"
+"359645","2020-05-07 18:04:36","http://111.42.102.81:42670/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359645/","Gandylyan1"
+"359644","2020-05-07 18:04:34","http://111.43.223.141:48804/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359644/","Gandylyan1"
+"359643","2020-05-07 18:04:26","http://116.114.95.92:57330/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359643/","Gandylyan1"
+"359642","2020-05-07 18:04:24","http://61.241.170.76:59980/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359642/","Gandylyan1"
+"359641","2020-05-07 18:04:11","http://162.212.113.165:56161/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359641/","Gandylyan1"
+"359640","2020-05-07 18:04:08","http://111.42.66.41:49906/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359640/","Gandylyan1"
+"359639","2020-05-07 18:04:06","http://211.137.225.18:47924/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359639/","Gandylyan1"
+"359638","2020-05-07 18:04:04","http://123.11.14.199:34839/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359638/","Gandylyan1"
+"359637","2020-05-07 18:03:59","http://162.212.114.117:47720/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359637/","Gandylyan1"
+"359636","2020-05-07 18:03:56","http://182.114.247.31:51925/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359636/","Gandylyan1"
+"359635","2020-05-07 18:03:52","http://162.212.114.82:39395/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359635/","Gandylyan1"
+"359634","2020-05-07 18:03:48","http://199.83.207.154:42594/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359634/","Gandylyan1"
+"359633","2020-05-07 18:03:43","http://123.10.84.18:36171/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359633/","Gandylyan1"
+"359632","2020-05-07 18:03:38","http://180.117.195.21:52767/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359632/","Gandylyan1"
+"359631","2020-05-07 18:03:33","http://116.114.95.50:34880/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359631/","Gandylyan1"
+"359630","2020-05-07 17:58:22","http://176.113.161.138:44031/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359630/","zbetcheckin"
+"359629","2020-05-07 17:58:20","https://pastebin.com/raw/XGJ6GUhh","offline","malware_download","None","https://urlhaus.abuse.ch/url/359629/","JayTHL"
+"359628","2020-05-07 17:58:16","https://pastebin.com/raw/fRk8MF23","offline","malware_download","None","https://urlhaus.abuse.ch/url/359628/","JayTHL"
+"359627","2020-05-07 17:58:10","https://pastebin.com/raw/DDZLbPgn","offline","malware_download","None","https://urlhaus.abuse.ch/url/359627/","JayTHL"
+"359626","2020-05-07 17:58:05","https://pastebin.com/raw/9NPxzhCt","offline","malware_download","None","https://urlhaus.abuse.ch/url/359626/","JayTHL"
+"359625","2020-05-07 17:46:10","https://pastebin.com/raw/z0LaYmyL","offline","malware_download","None","https://urlhaus.abuse.ch/url/359625/","JayTHL"
+"359624","2020-05-07 17:46:06","https://pastebin.com/raw/p5Tw4H7U","offline","malware_download","None","https://urlhaus.abuse.ch/url/359624/","JayTHL"
+"359623","2020-05-07 17:46:03","https://pastebin.com/raw/aSuJ5p5z","offline","malware_download","None","https://urlhaus.abuse.ch/url/359623/","JayTHL"
+"359622","2020-05-07 17:22:33","https://pastebin.com/raw/AyVu0W9M","offline","malware_download","None","https://urlhaus.abuse.ch/url/359622/","JayTHL"
+"359621","2020-05-07 17:19:35","http://dev.nona-polska.pl/wp-content/uploads/2020/05/rzoescvw/5568650/EmploymentVerification_5568650_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359621/","malware_traffic"
+"359620","2020-05-07 17:19:33","http://anjsolution.com/wp-content/uploads/2020/05/buwlehgpyr/754461434/EmploymentVerification_754461434_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359620/","malware_traffic"
+"359619","2020-05-07 17:19:29","http://primaart.vn/imsyoib/917441/EmploymentVerification_917441_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359619/","malware_traffic"
+"359618","2020-05-07 17:19:23","https://vaico.co/wp-content/uploads/2020/05/lupjoj/EmploymentVerification_8339151_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359618/","malware_traffic"
+"359617","2020-05-07 17:18:51","http://anjsolution.com/wp-content/uploads/2020/05/buwlehgpyr/719219/EmploymentVerification_719219_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359617/","malware_traffic"
+"359616","2020-05-07 17:18:46","http://primaart.vn/imsyoib/EmploymentVerification_65549281_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359616/","malware_traffic"
+"359615","2020-05-07 17:18:39","https://dehkadenovin.com/wp-content/plugins/apikey/ljiyguvm/EmploymentVerification_7076027_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359615/","malware_traffic"
+"359614","2020-05-07 17:18:34","http://aaversalrelo.com/akgcpdbbm/EmploymentVerification_992965_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359614/","malware_traffic"
+"359613","2020-05-07 17:18:29","http://goschiele.com/pnrrl/EmploymentVerification_619859_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359613/","malware_traffic"
+"359612","2020-05-07 17:18:22","http://update.id/dtnjynhlgc/5199764/EmploymentVerification_5199764_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359612/","malware_traffic"
+"359611","2020-05-07 17:18:19","http://grantoveporadenstvi.eu/wp-content/uploads/2020/05/ycoxtoxbafv/EmploymentVerification_5073884_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359611/","malware_traffic"
+"359610","2020-05-07 17:18:15","http://purewood.in/caqao/41647/EmploymentVerification_41647_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359610/","malware_traffic"
+"359609","2020-05-07 17:18:08","http://goschiele.com/pnrrl/EmploymentVerification_66690845_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359609/","malware_traffic"
+"359608","2020-05-07 16:58:33","https://pastebin.com/raw/q5GRRNuy","offline","malware_download","None","https://urlhaus.abuse.ch/url/359608/","JayTHL"
+"359607","2020-05-07 16:48:31","http://139.99.52.100/beastmode/b3astmode.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/359607/","JayTHL"
+"359606","2020-05-07 16:48:29","http://139.99.52.100/beastmode/b3astmode.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/359606/","JayTHL"
+"359605","2020-05-07 16:48:26","http://139.99.52.100/beastmode/b3astmode.sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/359605/","JayTHL"
+"359604","2020-05-07 16:48:23","http://139.99.52.100/beastmode/b3astmode.ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/359604/","JayTHL"
+"359603","2020-05-07 16:48:21","http://139.99.52.100/beastmode/b3astmode.mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/359603/","JayTHL"
+"359602","2020-05-07 16:48:18","http://139.99.52.100/beastmode/b3astmode.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/359602/","JayTHL"
+"359601","2020-05-07 16:48:15","http://139.99.52.100/beastmode/b3astmode.m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/359601/","JayTHL"
+"359600","2020-05-07 16:48:13","http://139.99.52.100/beastmode/b3astmode.arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/359600/","JayTHL"
+"359599","2020-05-07 16:48:10","http://139.99.52.100/beastmode/b3astmode.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/359599/","JayTHL"
+"359598","2020-05-07 16:48:06","http://139.99.52.100/beastmode/b3astmode.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/359598/","JayTHL"
+"359597","2020-05-07 16:48:03","http://139.99.52.100/beastmode/b3astmode.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/359597/","JayTHL"
+"359595","2020-05-07 16:43:40","http://cmecobrancas.com/wp-content/uploads/2020/05/qwedlczbadv/EmploymentVerification_32760_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359595/","malware_traffic"
+"359594","2020-05-07 16:43:36","https://arabenergyclub.org/wp-content/uploads/2020/05/vanrepfk/EmploymentVerification_6769007_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359594/","malware_traffic"
+"359593","2020-05-07 16:43:30","http://anjsolution.com/wp-content/uploads/2020/05/buwlehgpyr/EmploymentVerification_54275_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359593/","malware_traffic"
+"359592","2020-05-07 16:43:26","http://anjsolution.com/wp-content/uploads/2020/05/buwlehgpyr/EmploymentVerification_5505141_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359592/","malware_traffic"
+"359591","2020-05-07 16:43:19","https://allexampdf.com/wp-content/uploads/2020/05/owgepuieh/EmploymentVerification_105455577_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359591/","malware_traffic"
+"359590","2020-05-07 16:43:14","http://aaversalrelo.com/akgcpdbbm/EmploymentVerification_8688319_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359590/","malware_traffic"
+"359589","2020-05-07 16:43:08","http://dev.nona-polska.pl/wp-content/uploads/2020/05/rzoescvw/EmploymentVerification_686106_05062020.zip","online","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359589/","malware_traffic"
+"359588","2020-05-07 16:43:04","http://dev.nona-polska.pl/wp-content/uploads/2020/05/rzoescvw/EmploymentVerification_27801_05062020.zip","offline","malware_download","Qakbot,qbot,spx115,zip","https://urlhaus.abuse.ch/url/359588/","malware_traffic"
+"359587","2020-05-07 16:40:29","http://45.154.1.150/beastmode/b3astmode.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/359587/","JayTHL"
+"359586","2020-05-07 16:40:27","http://45.154.1.150/beastmode/b3astmode.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/359586/","JayTHL"
+"359585","2020-05-07 16:40:25","http://45.154.1.150/beastmode/b3astmode.sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/359585/","JayTHL"
+"359584","2020-05-07 16:40:21","http://45.154.1.150/beastmode/b3astmode.ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/359584/","JayTHL"
+"359583","2020-05-07 16:40:19","http://45.154.1.150/beastmode/b3astmode.mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/359583/","JayTHL"
+"359582","2020-05-07 16:40:17","http://45.154.1.150/beastmode/b3astmode.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/359582/","JayTHL"
+"359581","2020-05-07 16:40:15","http://45.154.1.150/beastmode/b3astmode.m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/359581/","JayTHL"
+"359580","2020-05-07 16:40:12","http://45.154.1.150/beastmode/b3astmode.arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/359580/","JayTHL"
+"359579","2020-05-07 16:40:09","http://45.154.1.150/beastmode/b3astmode.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/359579/","JayTHL"
+"359578","2020-05-07 16:40:07","http://45.154.1.150/beastmode/b3astmode.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/359578/","JayTHL"
+"359577","2020-05-07 16:40:04","http://45.154.1.150/beastmode/b3astmode.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/359577/","JayTHL"
+"359576","2020-05-07 16:27:10","http://ds.nashobmenfiles.com/fo/get/4849724/CyberTV-nashobmen.org.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/359576/","zbetcheckin"
+"359575","2020-05-07 16:15:36","https://vaico.co/wp-content/uploads/2020/05/lupjoj/72929/EmploymentVerification_72929_05062020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359575/","spamhaus"
+"359574","2020-05-07 15:49:07","https://mariereiko.com/v/REVISED_PAYMENT83839849.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/359574/","spamhaus"
+"359573","2020-05-07 15:39:16","https://dehkadenovin.com/wp-content/plugins/apikey/ljiyguvm/59690/EmploymentVerification_59690_05062020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359573/","spamhaus"
+"359572","2020-05-07 15:39:14","http://genstaff.gov.kg/nlyifll/7560563/EmploymentVerification_7560563_05062020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359572/","spamhaus"
+"359571","2020-05-07 15:34:04","http://www.omitkyspisar.cz/wp-content/uploads/mltfdl/8544300/EmploymentVerification_8544300_05062020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359571/","spamhaus"
+"359570","2020-05-07 15:22:07","http://www.omitkyspisar.cz/wp-content/uploads/mltfdl/263448/EmploymentVerification_263448_05062020.zip","online","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359570/","spamhaus"
+"359569","2020-05-07 15:06:17","http://123.10.62.26:48112/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359569/","Gandylyan1"
+"359568","2020-05-07 15:06:04","http://222.246.226.160:36467/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359568/","Gandylyan1"
+"359567","2020-05-07 15:05:51","http://180.123.36.177:46185/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359567/","Gandylyan1"
+"359566","2020-05-07 15:05:18","http://115.49.156.123:37543/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359566/","Gandylyan1"
+"359565","2020-05-07 15:05:07","http://27.41.174.178:43919/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359565/","Gandylyan1"
+"359564","2020-05-07 15:04:27","http://115.49.76.50:59872/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359564/","Gandylyan1"
+"359563","2020-05-07 15:04:20","http://111.43.223.129:47821/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359563/","Gandylyan1"
+"359562","2020-05-07 15:04:13","http://112.17.78.202:50855/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359562/","Gandylyan1"
+"359561","2020-05-07 15:04:08","http://117.149.20.18:43349/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359561/","Gandylyan1"
+"359560","2020-05-07 15:03:58","http://182.142.112.88:48142/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359560/","Gandylyan1"
+"359559","2020-05-07 15:03:54","http://216.180.117.147:34290/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359559/","Gandylyan1"
+"359558","2020-05-07 15:03:49","http://183.4.30.175:44737/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359558/","Gandylyan1"
+"359557","2020-05-07 15:03:46","http://113.53.52.8:36146/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359557/","Gandylyan1"
+"359556","2020-05-07 15:03:42","http://114.239.75.243:56653/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359556/","Gandylyan1"
+"359555","2020-05-07 14:57:14","https://business-expert.md/wp-content/uploads/2020/05/fufhgdwjtkw/303256/EmploymentVerification_303256_05062020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359555/","spamhaus"
+"359554","2020-05-07 14:56:39","http://onlyart.in/yxgiwjwx/6666.png","online","malware_download","Qakbot,qbot,Quakbot,spx115","https://urlhaus.abuse.ch/url/359554/","notwhickey"
+"359553","2020-05-07 14:40:39","http://hyundainamdinh.org/wp-content/uploads/2020/05/nxacxffh/6666.png","online","malware_download","exe,Qakbot,Quakbot,spx115","https://urlhaus.abuse.ch/url/359553/","lazyactivist192"
+"359552","2020-05-07 14:40:32","http://hobsnchimney.in/dawfxassh/6666.png","offline","malware_download","exe,Qakbot,Quakbot,spx115","https://urlhaus.abuse.ch/url/359552/","lazyactivist192"
+"359551","2020-05-07 14:40:28","http://cosmea.pl/wp-content/uploads/2020/05/lqauk/6666.png","online","malware_download","exe,Qakbot,spx115","https://urlhaus.abuse.ch/url/359551/","lazyactivist192"
+"359550","2020-05-07 14:40:05","http://cjemskayyoor.com/wp-content/uploads/2020/05/yaakhc/6666.png","offline","malware_download","exe,Qakbot,spx115","https://urlhaus.abuse.ch/url/359550/","lazyactivist192"
+"359549","2020-05-07 14:33:34","https://sophiasbridalandtux.com/wkfincptj/2168029/EmploymentVerification_2168029_05062020.zip","offline","malware_download","Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/359549/","spamhaus"
+"359548","2020-05-07 14:30:38","http://p2b.in/tpgcy/6666.png","offline","malware_download"," 2020-05-07, Qbot,Qakbot,Quakbot","https://urlhaus.abuse.ch/url/359548/","anonymous"
+"359547","2020-05-07 13:57:06","https://paste.ee/r/zv8f8","offline","malware_download","None","https://urlhaus.abuse.ch/url/359547/","JAMESWT_MHT"
+"359546","2020-05-07 13:56:10","http://114.32.246.196:41151/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/359546/","zbetcheckin"
+"359545","2020-05-07 13:56:05","http://skidware-malwrhunterteams.com/scanme.txt","offline","malware_download","None","https://urlhaus.abuse.ch/url/359545/","JAMESWT_MHT"
+"359544","2020-05-07 13:55:31","http://144.202.97.69/SBIDIOT/zte","online","malware_download","None","https://urlhaus.abuse.ch/url/359544/","JayTHL"
+"359543","2020-05-07 13:55:28","http://144.202.97.69/SBIDIOT/yarn","online","malware_download","None","https://urlhaus.abuse.ch/url/359543/","JayTHL"
+"359542","2020-05-07 13:55:26","http://144.202.97.69/SBIDIOT/x86","online","malware_download","None","https://urlhaus.abuse.ch/url/359542/","JayTHL"
+"359541","2020-05-07 13:55:24","http://144.202.97.69/SBIDIOT/spc","online","malware_download","None","https://urlhaus.abuse.ch/url/359541/","JayTHL"
+"359540","2020-05-07 13:55:21","http://144.202.97.69/SBIDIOT/sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/359540/","JayTHL"
+"359539","2020-05-07 13:55:18","http://144.202.97.69/SBIDIOT/rtk","online","malware_download","None","https://urlhaus.abuse.ch/url/359539/","JayTHL"
+"359538","2020-05-07 13:55:16","http://144.202.97.69/SBIDIOT/root","online","malware_download","None","https://urlhaus.abuse.ch/url/359538/","JayTHL"
+"359537","2020-05-07 13:55:14","http://144.202.97.69/SBIDIOT/ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/359537/","JayTHL"
+"359536","2020-05-07 13:55:11","http://144.202.97.69/SBIDIOT/mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/359536/","JayTHL"
+"359535","2020-05-07 13:55:09","http://144.202.97.69/SBIDIOT/mips","online","malware_download","None","https://urlhaus.abuse.ch/url/359535/","JayTHL"
+"359534","2020-05-07 13:55:06","http://144.202.97.69/SBIDIOT/m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/359534/","JayTHL"
+"359533","2020-05-07 13:55:03","http://144.202.97.69/SBIDIOT/arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/359533/","JayTHL"
+"359532","2020-05-07 13:55:00","http://144.202.97.69/SBIDIOT/arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/359532/","JayTHL"
+"359531","2020-05-07 13:54:58","http://144.202.97.69/SBIDIOT/arm","online","malware_download","None","https://urlhaus.abuse.ch/url/359531/","JayTHL"
+"359530","2020-05-07 13:54:55","http://157.245.127.232/SBIDIOT/zte","offline","malware_download","None","https://urlhaus.abuse.ch/url/359530/","JayTHL"
+"359529","2020-05-07 13:54:53","http://157.245.127.232/SBIDIOT/yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/359529/","JayTHL"
+"359528","2020-05-07 13:54:50","http://157.245.127.232/SBIDIOT/x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/359528/","JayTHL"
+"359527","2020-05-07 13:54:48","http://157.245.127.232/SBIDIOT/spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/359527/","JayTHL"
+"359526","2020-05-07 13:54:46","http://157.245.127.232/SBIDIOT/sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/359526/","JayTHL"
+"359525","2020-05-07 13:54:44","http://157.245.127.232/SBIDIOT/rtk","offline","malware_download","None","https://urlhaus.abuse.ch/url/359525/","JayTHL"
+"359524","2020-05-07 13:54:42","http://157.245.127.232/SBIDIOT/root","offline","malware_download","None","https://urlhaus.abuse.ch/url/359524/","JayTHL"
+"359523","2020-05-07 13:54:40","http://157.245.127.232/SBIDIOT/ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/359523/","JayTHL"
+"359522","2020-05-07 13:54:37","http://157.245.127.232/SBIDIOT/mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/359522/","JayTHL"
+"359521","2020-05-07 13:54:35","http://157.245.127.232/SBIDIOT/mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/359521/","JayTHL"
+"359520","2020-05-07 13:54:33","http://157.245.127.232/SBIDIOT/m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/359520/","JayTHL"
+"359519","2020-05-07 13:54:31","http://157.245.127.232/SBIDIOT/arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/359519/","JayTHL"
+"359518","2020-05-07 13:54:28","http://157.245.127.232/SBIDIOT/arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/359518/","JayTHL"
+"359517","2020-05-07 13:54:26","http://157.245.127.232/SBIDIOT/arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/359517/","JayTHL"
+"359516","2020-05-07 13:54:23","http://88.218.17.215/bins/x86.light","offline","malware_download","None","https://urlhaus.abuse.ch/url/359516/","JayTHL"
+"359515","2020-05-07 13:54:21","http://88.218.17.215/bins/spc.light","offline","malware_download","None","https://urlhaus.abuse.ch/url/359515/","JayTHL"
+"359514","2020-05-07 13:54:19","http://88.218.17.215/bins/sh4.light","offline","malware_download","None","https://urlhaus.abuse.ch/url/359514/","JayTHL"
+"359513","2020-05-07 13:54:17","http://88.218.17.215/bins/ppc.light","offline","malware_download","None","https://urlhaus.abuse.ch/url/359513/","JayTHL"
+"359512","2020-05-07 13:54:15","http://88.218.17.215/bins/mpsl.light","offline","malware_download","None","https://urlhaus.abuse.ch/url/359512/","JayTHL"
+"359511","2020-05-07 13:54:13","http://88.218.17.215/bins/mips.light","offline","malware_download","None","https://urlhaus.abuse.ch/url/359511/","JayTHL"
+"359510","2020-05-07 13:54:11","http://88.218.17.215/bins/m68k.light","offline","malware_download","None","https://urlhaus.abuse.ch/url/359510/","JayTHL"
+"359509","2020-05-07 13:54:09","http://88.218.17.215/bins/arm7.light","offline","malware_download","None","https://urlhaus.abuse.ch/url/359509/","JayTHL"
+"359508","2020-05-07 13:54:07","http://88.218.17.215/bins/arm6.light","offline","malware_download","None","https://urlhaus.abuse.ch/url/359508/","JayTHL"
+"359507","2020-05-07 13:54:05","http://88.218.17.215/bins/arm5.light","offline","malware_download","None","https://urlhaus.abuse.ch/url/359507/","JayTHL"
+"359506","2020-05-07 13:54:03","http://88.218.17.215/bins/arm.light","offline","malware_download","None","https://urlhaus.abuse.ch/url/359506/","JayTHL"
+"359505","2020-05-07 13:53:21","http://110.138.229.8:9213/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359505/","geenensp"
+"359504","2020-05-07 13:53:12","http://175.215.116.123:6332/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359504/","geenensp"
+"359503","2020-05-07 13:53:06","http://81.213.219.145:53492/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359503/","geenensp"
+"359502","2020-05-07 13:13:14","http://5.182.211.184/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359502/","zbetcheckin"
+"359501","2020-05-07 13:13:12","http://5.182.211.184/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359501/","zbetcheckin"
+"359500","2020-05-07 13:13:09","http://5.182.211.184/armv6l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359500/","zbetcheckin"
+"359499","2020-05-07 13:13:06","http://5.182.211.184/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359499/","zbetcheckin"
+"359498","2020-05-07 13:13:03","http://5.182.211.184/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359498/","zbetcheckin"
+"359497","2020-05-07 13:09:12","http://5.182.211.184/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359497/","zbetcheckin"
+"359496","2020-05-07 13:09:10","http://5.182.211.184/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359496/","zbetcheckin"
+"359495","2020-05-07 13:09:07","http://5.182.211.184/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359495/","zbetcheckin"
+"359494","2020-05-07 13:09:05","http://5.182.211.184/armv4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359494/","zbetcheckin"
+"359493","2020-05-07 13:09:03","http://5.182.211.184/mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359493/","zbetcheckin"
+"359492","2020-05-07 13:05:06","http://5.182.211.184/x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359492/","zbetcheckin"
+"359491","2020-05-07 13:05:04","http://5.182.211.184/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359491/","zbetcheckin"
+"359490","2020-05-07 12:40:04","http://5.182.211.184/EkSgbins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/359490/","zbetcheckin"
 "359489","2020-05-07 12:04:03","http://222.74.186.176:33225/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359489/","Gandylyan1"
 "359488","2020-05-07 12:03:59","http://115.55.205.188:44179/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359488/","Gandylyan1"
-"359487","2020-05-07 12:03:56","http://123.10.229.141:52594/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359487/","Gandylyan1"
-"359486","2020-05-07 12:03:51","http://31.146.124.177:44406/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359486/","Gandylyan1"
+"359487","2020-05-07 12:03:56","http://123.10.229.141:52594/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359487/","Gandylyan1"
+"359486","2020-05-07 12:03:51","http://31.146.124.177:44406/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359486/","Gandylyan1"
 "359485","2020-05-07 12:03:48","http://182.222.195.192:3287/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359485/","Gandylyan1"
 "359484","2020-05-07 12:03:44","http://172.39.19.41:43941/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359484/","Gandylyan1"
 "359483","2020-05-07 12:03:12","http://112.28.98.61:36074/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359483/","Gandylyan1"
-"359482","2020-05-07 12:03:07","http://162.212.113.29:42269/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359482/","Gandylyan1"
+"359482","2020-05-07 12:03:07","http://162.212.113.29:42269/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359482/","Gandylyan1"
 "359481","2020-05-07 12:00:07","http://107.219.185.75:63635/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359481/","geenensp"
-"359480","2020-05-07 11:59:05","https://pastebin.com/raw/PZj1stmq","online","malware_download","PowerShellEmpire","https://urlhaus.abuse.ch/url/359480/","viql"
-"359479","2020-05-07 11:37:41","http://c9f44961.ngrok.io/nlbrute.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/359479/","JAMESWT_MHT"
-"359478","2020-05-07 11:37:31","http://c9f44961.ngrok.io/npayl.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/359478/","JAMESWT_MHT"
-"359477","2020-05-07 11:37:28","http://c9f44961.ngrok.io/virtualtour.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/359477/","JAMESWT_MHT"
-"359476","2020-05-07 11:37:22","http://c9f44961.ngrok.io/virtualtourjuststealer_original.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/359476/","JAMESWT_MHT"
-"359475","2020-05-07 11:37:13","http://c9f44961.ngrok.io/winrar.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/359475/","JAMESWT_MHT"
-"359474","2020-05-07 11:37:10","http://c9f44961.ngrok.io/clinj.vbs","online","malware_download","None","https://urlhaus.abuse.ch/url/359474/","JAMESWT_MHT"
-"359473","2020-05-07 11:37:06","http://c9f44961.ngrok.io/built.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/359473/","JAMESWT_MHT"
-"359471","2020-05-07 11:35:21","http://c9f44961.ngrok.io/corovid19.apk","online","malware_download","None","https://urlhaus.abuse.ch/url/359471/","JAMESWT_MHT"
-"359470","2020-05-07 11:35:10","http://c9f44961.ngrok.io/corona.apk","online","malware_download","None","https://urlhaus.abuse.ch/url/359470/","JAMESWT_MHT"
-"359469","2020-05-07 11:33:34","https://ds.obmenvsemfiles.com/fo/get/5053348/Solitaire_1_12_5-nashobmen.org.apk","online","malware_download","None","https://urlhaus.abuse.ch/url/359469/","JAMESWT_MHT"
+"359480","2020-05-07 11:59:05","https://pastebin.com/raw/PZj1stmq","offline","malware_download","PowerShellEmpire","https://urlhaus.abuse.ch/url/359480/","viql"
+"359479","2020-05-07 11:37:41","http://c9f44961.ngrok.io/nlbrute.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/359479/","JAMESWT_MHT"
+"359478","2020-05-07 11:37:31","http://c9f44961.ngrok.io/npayl.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/359478/","JAMESWT_MHT"
+"359477","2020-05-07 11:37:28","http://c9f44961.ngrok.io/virtualtour.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/359477/","JAMESWT_MHT"
+"359476","2020-05-07 11:37:22","http://c9f44961.ngrok.io/virtualtourjuststealer_original.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/359476/","JAMESWT_MHT"
+"359475","2020-05-07 11:37:13","http://c9f44961.ngrok.io/winrar.exe","offline","malware_download","AZORult","https://urlhaus.abuse.ch/url/359475/","JAMESWT_MHT"
+"359474","2020-05-07 11:37:10","http://c9f44961.ngrok.io/clinj.vbs","offline","malware_download","None","https://urlhaus.abuse.ch/url/359474/","JAMESWT_MHT"
+"359473","2020-05-07 11:37:06","http://c9f44961.ngrok.io/built.exe","offline","malware_download","QuasarRAT","https://urlhaus.abuse.ch/url/359473/","JAMESWT_MHT"
+"359471","2020-05-07 11:35:21","http://c9f44961.ngrok.io/corovid19.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/359471/","JAMESWT_MHT"
+"359470","2020-05-07 11:35:10","http://c9f44961.ngrok.io/corona.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/359470/","JAMESWT_MHT"
+"359469","2020-05-07 11:33:34","https://ds.obmenvsemfiles.com/fo/get/5053348/Solitaire_1_12_5-nashobmen.org.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/359469/","JAMESWT_MHT"
 "359468","2020-05-07 11:24:05","http://104.168.160.6/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359468/","zbetcheckin"
 "359467","2020-05-07 11:24:03","http://77.73.69.50/beastmode/b3astmode.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359467/","zbetcheckin"
 "359466","2020-05-07 11:20:38","http://64.227.8.206/lmaoWTF/loligang.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359466/","zbetcheckin"
@@ -27,17 +308,17 @@
 "359462","2020-05-07 11:20:28","http://77.73.69.50/beastmode/b3astmode.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359462/","zbetcheckin"
 "359461","2020-05-07 11:20:26","http://104.168.160.6/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359461/","zbetcheckin"
 "359460","2020-05-07 11:20:23","http://104.168.160.6/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359460/","zbetcheckin"
-"359459","2020-05-07 11:20:21","http://37.49.230.128/bins/UnHAnaAW.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359459/","zbetcheckin"
-"359458","2020-05-07 11:20:19","http://37.49.230.128/bins/UnHAnaAW.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359458/","zbetcheckin"
+"359459","2020-05-07 11:20:21","http://37.49.230.128/bins/UnHAnaAW.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359459/","zbetcheckin"
+"359458","2020-05-07 11:20:19","http://37.49.230.128/bins/UnHAnaAW.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359458/","zbetcheckin"
 "359457","2020-05-07 11:20:16","http://64.227.8.206/lmaoWTF/loligang.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359457/","zbetcheckin"
 "359456","2020-05-07 11:20:06","http://104.168.160.6/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359456/","zbetcheckin"
-"359455","2020-05-07 11:20:03","http://37.49.230.128/bins/UnHAnaAW.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359455/","zbetcheckin"
+"359455","2020-05-07 11:20:03","http://37.49.230.128/bins/UnHAnaAW.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359455/","zbetcheckin"
 "359454","2020-05-07 11:16:12","http://77.73.69.50/beastmode/b3astmode.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359454/","zbetcheckin"
 "359453","2020-05-07 11:16:09","http://104.168.160.6/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359453/","zbetcheckin"
-"359452","2020-05-07 11:16:07","http://37.49.230.128/bins/UnHAnaAW.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359452/","zbetcheckin"
+"359452","2020-05-07 11:16:07","http://37.49.230.128/bins/UnHAnaAW.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359452/","zbetcheckin"
 "359451","2020-05-07 11:16:05","http://104.168.160.6/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359451/","zbetcheckin"
-"359450","2020-05-07 11:16:02","http://37.49.230.128/bins/UnHAnaAW.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359450/","zbetcheckin"
-"359449","2020-05-07 11:15:18","http://37.49.230.128/bins/UnHAnaAW.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359449/","zbetcheckin"
+"359450","2020-05-07 11:16:02","http://37.49.230.128/bins/UnHAnaAW.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359450/","zbetcheckin"
+"359449","2020-05-07 11:15:18","http://37.49.230.128/bins/UnHAnaAW.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359449/","zbetcheckin"
 "359448","2020-05-07 11:15:16","http://64.227.8.206/lmaoWTF/loligang.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359448/","zbetcheckin"
 "359447","2020-05-07 11:15:14","http://64.227.8.206/lmaoWTF/loligang.mpsl","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359447/","zbetcheckin"
 "359446","2020-05-07 11:15:11","http://77.73.69.50/beastmode/b3astmode.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359446/","zbetcheckin"
@@ -45,24 +326,24 @@
 "359444","2020-05-07 11:15:06","http://104.168.160.6/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359444/","zbetcheckin"
 "359443","2020-05-07 11:15:04","http://64.227.8.206/lmaoWTF/loligang.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359443/","zbetcheckin"
 "359442","2020-05-07 11:11:15","http://77.73.69.50/beastmode/b3astmode.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359442/","zbetcheckin"
-"359441","2020-05-07 11:11:12","http://37.49.230.128/bins/UnHAnaAW.mips","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359441/","zbetcheckin"
+"359441","2020-05-07 11:11:12","http://37.49.230.128/bins/UnHAnaAW.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359441/","zbetcheckin"
 "359440","2020-05-07 11:11:10","http://64.227.8.206/lmaoWTF/loligang.ppc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359440/","zbetcheckin"
 "359439","2020-05-07 11:11:08","http://104.168.160.6/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359439/","zbetcheckin"
 "359438","2020-05-07 11:11:06","http://77.73.69.50/beastmode/b3astmode.arm7","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359438/","zbetcheckin"
-"359437","2020-05-07 11:11:03","http://37.49.230.128/bins/UnHAnaAW.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359437/","zbetcheckin"
-"359436","2020-05-07 11:10:06","http://37.49.230.128/bins/UnHAnaAW.mpsl","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359436/","zbetcheckin"
+"359437","2020-05-07 11:11:03","http://37.49.230.128/bins/UnHAnaAW.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359437/","zbetcheckin"
+"359436","2020-05-07 11:10:06","http://37.49.230.128/bins/UnHAnaAW.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359436/","zbetcheckin"
 "359435","2020-05-07 11:10:04","http://104.168.160.6/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359435/","zbetcheckin"
 "359434","2020-05-07 11:06:16","http://64.227.8.206/lmaoWTF/loligang.spc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359434/","zbetcheckin"
 "359433","2020-05-07 11:06:14","http://64.227.8.206/lmaoWTF/loligang.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359433/","zbetcheckin"
-"359432","2020-05-07 11:06:11","http://37.49.230.128/bins/UnHAnaAW.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359432/","zbetcheckin"
+"359432","2020-05-07 11:06:11","http://37.49.230.128/bins/UnHAnaAW.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359432/","zbetcheckin"
 "359431","2020-05-07 11:06:09","http://77.73.69.50/beastmode/b3astmode.mpsl","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359431/","zbetcheckin"
 "359430","2020-05-07 11:06:06","http://77.73.69.50/beastmode/b3astmode.arm6","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359430/","zbetcheckin"
 "359429","2020-05-07 11:06:02","http://64.227.8.206/lmaoWTF/loligang.m68k","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359429/","zbetcheckin"
 "359428","2020-05-07 11:02:50","http://asload01.top/downfiles/4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/359428/","zbetcheckin"
-"359427","2020-05-07 11:02:41","http://192.236.192.71/0xxx0xxxasdajshdsajhkgdja/Sa0aS.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359427/","zbetcheckin"
-"359426","2020-05-07 11:02:38","http://192.236.192.71/0xxx0xxxasdajshdsajhkgdja/Sa0aS.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/359426/","zbetcheckin"
+"359427","2020-05-07 11:02:41","http://192.236.192.71/0xxx0xxxasdajshdsajhkgdja/Sa0aS.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359427/","zbetcheckin"
+"359426","2020-05-07 11:02:38","http://192.236.192.71/0xxx0xxxasdajshdsajhkgdja/Sa0aS.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359426/","zbetcheckin"
 "359425","2020-05-07 11:02:36","http://asload01.top/download.php?file=5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/359425/","zbetcheckin"
-"359424","2020-05-07 10:58:02","http://192.236.192.71/0xxx0xxxasdajshdsajhkgdja/Sa0aS.mpsl","online","malware_download","elf","https://urlhaus.abuse.ch/url/359424/","zbetcheckin"
+"359424","2020-05-07 10:58:02","http://192.236.192.71/0xxx0xxxasdajshdsajhkgdja/Sa0aS.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359424/","zbetcheckin"
 "359423","2020-05-07 10:51:11","http://asload01.top/downfiles/5.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/359423/","zbetcheckin"
 "359422","2020-05-07 10:37:06","https://droversmouser.at/3/dsk.exe","online","malware_download","DanaBot","https://urlhaus.abuse.ch/url/359422/","nazywam"
 "359421","2020-05-07 09:52:35","http://52.255.143.183/AB4g5/Extendo.arm5","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359421/","zbetcheckin"
@@ -87,18 +368,18 @@
 "359402","2020-05-07 09:37:03","http://159.203.2.6/beastmode/b3astmode.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359402/","zbetcheckin"
 "359401","2020-05-07 09:36:33","http://159.203.2.6/beastmode/b3astmode.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359401/","zbetcheckin"
 "359400","2020-05-07 09:10:26","http://172.39.30.193:49239/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359400/","Gandylyan1"
-"359399","2020-05-07 09:09:54","http://116.114.95.198:35407/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359399/","Gandylyan1"
+"359399","2020-05-07 09:09:54","http://116.114.95.198:35407/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359399/","Gandylyan1"
 "359398","2020-05-07 09:09:47","http://199.83.203.54:38677/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359398/","Gandylyan1"
 "359397","2020-05-07 09:09:15","http://49.68.228.5:45671/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359397/","Gandylyan1"
-"359396","2020-05-07 09:09:10","http://216.180.117.164:58267/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359396/","Gandylyan1"
+"359396","2020-05-07 09:09:10","http://216.180.117.164:58267/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359396/","Gandylyan1"
 "359395","2020-05-07 09:08:38","http://1.246.222.134:4075/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359395/","Gandylyan1"
-"359394","2020-05-07 09:08:35","http://41.84.227.250:58936/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359394/","Gandylyan1"
+"359394","2020-05-07 09:08:35","http://41.84.227.250:58936/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359394/","Gandylyan1"
 "359393","2020-05-07 09:08:29","http://42.235.54.120:46436/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359393/","Gandylyan1"
 "359392","2020-05-07 09:07:56","http://116.149.247.41:60350/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359392/","Gandylyan1"
 "359391","2020-05-07 09:07:24","http://123.8.25.160:41199/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359391/","Gandylyan1"
 "359390","2020-05-07 09:06:52","http://114.226.80.115:42862/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359390/","Gandylyan1"
 "359389","2020-05-07 09:06:40","http://111.43.223.163:60441/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359389/","Gandylyan1"
-"359388","2020-05-07 09:06:36","http://123.12.243.99:42944/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359388/","Gandylyan1"
+"359388","2020-05-07 09:06:36","http://123.12.243.99:42944/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359388/","Gandylyan1"
 "359387","2020-05-07 09:06:03","http://111.42.66.45:52007/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359387/","Gandylyan1"
 "359386","2020-05-07 09:06:00","http://115.52.163.73:50081/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359386/","Gandylyan1"
 "359385","2020-05-07 09:05:26","http://123.4.60.202:54951/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359385/","Gandylyan1"
@@ -112,11 +393,11 @@
 "359377","2020-05-07 08:53:05","http://192.3.249.179/bins/vcimanagement.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359377/","0xrb"
 "359376","2020-05-07 08:52:43","http://64.227.8.206/lmaoWTF/loligang.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/359376/","0xrb"
 "359375","2020-05-07 08:52:40","http://77.73.69.50/beastmode/b3astmode.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/359375/","0xrb"
-"359374","2020-05-07 08:52:37","http://37.49.230.128/bins/UnHAnaAW.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/359374/","0xrb"
+"359374","2020-05-07 08:52:37","http://37.49.230.128/bins/UnHAnaAW.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359374/","0xrb"
 "359373","2020-05-07 08:52:34","http://45.63.79.179/Pandoras_Box/pandora.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359373/","0xrb"
 "359372","2020-05-07 08:52:02","http://165.227.95.177/SBIDIOT/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359372/","0xrb"
 "359371","2020-05-07 08:51:25","http://165.227.95.177/bins/Tsunami.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359371/","0xrb"
-"359370","2020-05-07 08:51:24","http://103.138.73.125/bins/mirai.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/359370/","0xrb"
+"359370","2020-05-07 08:51:24","http://103.138.73.125/bins/mirai.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359370/","0xrb"
 "359369","2020-05-07 08:51:12","http://37.49.230.167/awiotiwhiogoihahogahoi/gucci.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359369/","0xrb"
 "359368","2020-05-07 08:50:40","http://165.227.95.177/bins/Hilix.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359368/","0xrb"
 "359367","2020-05-07 08:50:38","http://104.168.160.6/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359367/","0xrb"
@@ -128,17 +409,17 @@
 "359361","2020-05-07 08:48:10","http://asload01.top/downfiles/8.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/359361/","vxvault"
 "359360","2020-05-07 08:47:40","http://52.255.143.183/AB4g5/Extendo.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/359360/","0xrb"
 "359359","2020-05-07 08:47:37","http://88.218.17.215/bins/107n370n70p.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359359/","0xrb"
-"359358","2020-05-07 08:47:36","http://192.236.192.71/0xxx0xxxasdajshdsajhkgdja/Sa0aS.x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/359358/","0xrb"
+"359358","2020-05-07 08:47:36","http://192.236.192.71/0xxx0xxxasdajshdsajhkgdja/Sa0aS.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359358/","0xrb"
 "359357","2020-05-07 08:47:33","http://64.225.7.82/SBIDIOT/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/359357/","0xrb"
 "359356","2020-05-07 07:32:18","http://kenareh-gostare-aras.ir/wp-admin/grace.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/359356/","zbetcheckin"
 "359355","2020-05-07 07:29:33","http://shy-obi-0122.jellybean.jp/Img/CIC.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/359355/","zbetcheckin"
 "359354","2020-05-07 07:28:11","http://shy-obi-0122.jellybean.jp/ERC/EIC.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/359354/","zbetcheckin"
 "359353","2020-05-07 07:28:08","http://shy-obi-0122.jellybean.jp/MIY/MLY.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/359353/","zbetcheckin"
 "359352","2020-05-07 07:28:04","http://shy-obi-0122.jellybean.jp/OSE/OSI.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/359352/","zbetcheckin"
-"359351","2020-05-07 06:40:35","https://pastebin.com/raw/kec5tXHt","online","malware_download","None","https://urlhaus.abuse.ch/url/359351/","JayTHL"
+"359351","2020-05-07 06:40:35","https://pastebin.com/raw/kec5tXHt","offline","malware_download","None","https://urlhaus.abuse.ch/url/359351/","JayTHL"
 "359350","2020-05-07 06:34:48","http://shy-obi-0122.jellybean.jp/ALH/FNK.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/359350/","zbetcheckin"
 "359349","2020-05-07 06:34:42","https://ams3.digitaloceanspaces.com/paymentref00/PaymentRefS309388282.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/359349/","zbetcheckin"
-"359348","2020-05-07 06:17:08","https://updateflashiplayer.xyz/update/UpdateFlashPlayer.apk","online","malware_download","None","https://urlhaus.abuse.ch/url/359348/","JayTHL"
+"359348","2020-05-07 06:17:08","https://updateflashiplayer.xyz/update/UpdateFlashPlayer.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/359348/","JayTHL"
 "359347","2020-05-07 06:12:53","http://50.198.71.204:20107/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/359347/","zbetcheckin"
 "359346","2020-05-07 06:12:21","http://178.32.148.2/sh4","online","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359346/","hypoweb"
 "359345","2020-05-07 06:12:19","http://178.32.148.2/spc","online","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/359345/","hypoweb"
@@ -170,16 +451,16 @@
 "359319","2020-05-07 06:07:28","http://223.95.78.250:58336/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359319/","Gandylyan1"
 "359318","2020-05-07 06:05:27","http://27.41.153.139:56642/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359318/","Gandylyan1"
 "359317","2020-05-07 06:04:53","http://211.137.225.84:60474/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359317/","Gandylyan1"
-"359316","2020-05-07 06:04:47","http://116.114.95.194:56518/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359316/","Gandylyan1"
+"359316","2020-05-07 06:04:47","http://116.114.95.194:56518/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359316/","Gandylyan1"
 "359315","2020-05-07 06:04:41","http://221.15.6.221:60720/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359315/","Gandylyan1"
 "359314","2020-05-07 06:04:08","http://111.38.26.196:48918/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359314/","Gandylyan1"
-"359313","2020-05-07 06:04:04","http://182.117.41.97:34961/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359313/","Gandylyan1"
+"359313","2020-05-07 06:04:04","http://182.117.41.97:34961/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359313/","Gandylyan1"
 "359312","2020-05-07 06:01:05","http://1.34.62.169:49134/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359312/","geenensp"
 "359311","2020-05-07 06:00:16","http://171.227.241.111:23648/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/359311/","geenensp"
 "359310","2020-05-07 05:53:32","http://3.112.254.173/Office.txt","online","malware_download","exe","https://urlhaus.abuse.ch/url/359310/","zbetcheckin"
 "359309","2020-05-07 04:58:32","http://104.168.96.168/Cipher.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/359309/","zbetcheckin"
-"359308","2020-05-07 04:53:04","https://pastebin.com/raw/dSt4esBQ","online","malware_download","None","https://urlhaus.abuse.ch/url/359308/","JayTHL"
-"359307","2020-05-07 04:41:05","https://pastebin.com/raw/Ypz5N3Kj","online","malware_download","None","https://urlhaus.abuse.ch/url/359307/","JayTHL"
+"359308","2020-05-07 04:53:04","https://pastebin.com/raw/dSt4esBQ","offline","malware_download","None","https://urlhaus.abuse.ch/url/359308/","JayTHL"
+"359307","2020-05-07 04:41:05","https://pastebin.com/raw/Ypz5N3Kj","offline","malware_download","None","https://urlhaus.abuse.ch/url/359307/","JayTHL"
 "359306","2020-05-07 03:27:06","http://45.77.193.6/a-r.m-4.Xerified","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359306/","zbetcheckin"
 "359305","2020-05-07 03:26:34","http://45.77.193.6/s-h.4-.Xerified","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359305/","zbetcheckin"
 "359304","2020-05-07 03:26:32","http://45.95.168.207/i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359304/","zbetcheckin"
@@ -220,11 +501,11 @@
 "359269","2020-05-07 03:08:23","http://62.16.60.215:34278/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359269/","Gandylyan1"
 "359268","2020-05-07 03:08:20","http://91.234.60.94:56764/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359268/","Gandylyan1"
 "359267","2020-05-07 03:08:18","http://61.174.126.132:39773/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359267/","Gandylyan1"
-"359266","2020-05-07 03:08:14","http://182.126.82.71:48231/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359266/","Gandylyan1"
+"359266","2020-05-07 03:08:14","http://182.126.82.71:48231/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359266/","Gandylyan1"
 "359265","2020-05-07 03:08:09","http://162.212.114.57:49865/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359265/","Gandylyan1"
 "359264","2020-05-07 03:08:05","http://116.114.95.20:36088/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359264/","Gandylyan1"
 "359263","2020-05-07 03:07:33","http://123.11.14.137:36142/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359263/","Gandylyan1"
-"359262","2020-05-07 03:07:29","http://116.114.95.230:40588/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359262/","Gandylyan1"
+"359262","2020-05-07 03:07:29","http://116.114.95.230:40588/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359262/","Gandylyan1"
 "359261","2020-05-07 03:06:57","http://223.199.243.56:33652/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359261/","Gandylyan1"
 "359260","2020-05-07 03:06:52","http://180.123.85.31:50567/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359260/","Gandylyan1"
 "359259","2020-05-07 03:06:20","http://111.42.102.67:33444/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359259/","Gandylyan1"
@@ -235,20 +516,20 @@
 "359254","2020-05-07 02:57:32","http://138.68.31.138/un1on.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/359254/","zbetcheckin"
 "359253","2020-05-07 02:42:32","http://45.77.193.6/Xerified.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/359253/","zbetcheckin"
 "359252","2020-05-07 01:10:05","https://souqtajeer.com/demo/p.msi","online","malware_download","msi","https://urlhaus.abuse.ch/url/359252/","zbetcheckin"
-"359251","2020-05-07 01:06:04","https://www.souqtajeer.com/demo/k.msi","online","malware_download","msi","https://urlhaus.abuse.ch/url/359251/","zbetcheckin"
+"359251","2020-05-07 01:06:04","https://www.souqtajeer.com/demo/k.msi","offline","malware_download","msi","https://urlhaus.abuse.ch/url/359251/","zbetcheckin"
 "359250","2020-05-07 00:43:06","http://59.24.69.58:23148/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/359250/","zbetcheckin"
-"359249","2020-05-07 00:42:05","https://pastebin.com/raw/iiHJ45D8","online","malware_download","None","https://urlhaus.abuse.ch/url/359249/","JayTHL"
+"359249","2020-05-07 00:42:05","https://pastebin.com/raw/iiHJ45D8","offline","malware_download","None","https://urlhaus.abuse.ch/url/359249/","JayTHL"
 "359248","2020-05-07 00:05:12","http://162.212.113.156:59184/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359248/","Gandylyan1"
-"359247","2020-05-07 00:05:08","http://162.212.115.107:43130/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359247/","Gandylyan1"
-"359246","2020-05-07 00:05:04","http://116.114.95.168:57804/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359246/","Gandylyan1"
+"359247","2020-05-07 00:05:08","http://162.212.115.107:43130/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359247/","Gandylyan1"
+"359246","2020-05-07 00:05:04","http://116.114.95.168:57804/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359246/","Gandylyan1"
 "359245","2020-05-07 00:05:01","http://112.28.98.70:55896/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359245/","Gandylyan1"
-"359244","2020-05-07 00:04:57","http://116.114.95.164:36823/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359244/","Gandylyan1"
+"359244","2020-05-07 00:04:57","http://116.114.95.164:36823/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359244/","Gandylyan1"
 "359243","2020-05-07 00:04:53","http://113.133.224.46:47994/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359243/","Gandylyan1"
 "359242","2020-05-07 00:04:50","http://221.13.185.127:46572/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359242/","Gandylyan1"
 "359241","2020-05-07 00:04:47","http://221.210.211.28:48014/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359241/","Gandylyan1"
 "359240","2020-05-07 00:04:42","http://172.39.51.75:52324/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359240/","Gandylyan1"
 "359239","2020-05-07 00:04:11","http://111.43.223.86:34690/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359239/","Gandylyan1"
-"359238","2020-05-07 00:04:05","http://123.11.11.18:35380/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359238/","Gandylyan1"
+"359238","2020-05-07 00:04:05","http://123.11.11.18:35380/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359238/","Gandylyan1"
 "359237","2020-05-06 23:02:06","http://23.254.211.179/jbins/Antijit.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/359237/","JayTHL"
 "359236","2020-05-06 23:02:03","http://23.254.211.179/jbins/Antijit.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/359236/","JayTHL"
 "359235","2020-05-06 23:02:00","http://23.254.211.179/jbins/Antijit.sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/359235/","JayTHL"
@@ -288,8 +569,8 @@
 "359201","2020-05-06 22:43:03","http://ip180.ip-164-132-92.eu/arm4","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/359201/","Gandylyan1"
 "359200","2020-05-06 21:53:33","https://pastebin.com/raw/KNszQx4e","offline","malware_download","None","https://urlhaus.abuse.ch/url/359200/","JayTHL"
 "359199","2020-05-06 21:41:03","https://pastebin.com/raw/zqm1qT4D","offline","malware_download","None","https://urlhaus.abuse.ch/url/359199/","JayTHL"
-"359198","2020-05-06 21:40:41","http://www.bergamote.org/wp-content/uploads/2020/05/uwmolhhjxwwq/EmploymentVerification_53536_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359198/","malware_traffic"
-"359197","2020-05-06 21:40:08","http://infogue.id/bznunvrfrue/EmploymentVerification_31024_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359197/","malware_traffic"
+"359198","2020-05-06 21:40:41","http://www.bergamote.org/wp-content/uploads/2020/05/uwmolhhjxwwq/EmploymentVerification_53536_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359198/","malware_traffic"
+"359197","2020-05-06 21:40:08","http://infogue.id/bznunvrfrue/EmploymentVerification_31024_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359197/","malware_traffic"
 "359196","2020-05-06 21:29:38","https://pastebin.com/raw/fHYVQa7b","offline","malware_download","None","https://urlhaus.abuse.ch/url/359196/","JayTHL"
 "359195","2020-05-06 21:29:04","http://42.232.102.85:60527/Mozi.m","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359195/","zbetcheckin"
 "359194","2020-05-06 21:20:04","http://sakersaker.sakeronline.se/jbvbvmqcn/7801769/EmploymentVerification_7801769_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359194/","malware_traffic"
@@ -327,22 +608,22 @@
 "359161","2020-05-06 21:04:54","http://115.54.183.113:37741/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359161/","Gandylyan1"
 "359160","2020-05-06 21:04:50","http://172.36.48.52:54689/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359160/","Gandylyan1"
 "359159","2020-05-06 21:04:18","http://59.120.246.48:1027/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359159/","Gandylyan1"
-"359158","2020-05-06 21:04:05","http://58.243.121.200:57176/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359158/","Gandylyan1"
+"359158","2020-05-06 21:04:05","http://58.243.121.200:57176/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359158/","Gandylyan1"
 "359157","2020-05-06 20:37:02","https://classmedical.uk/wp-content/uploads/2020/05/ruclklrhse/EmploymentVerification_5517337_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359157/","malware_traffic"
 "359156","2020-05-06 20:35:45","http://hevizapartments.net/wp-content/plugins/apikey/rcaphcwriz/1126/EmploymentVerification_1126_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359156/","malware_traffic"
-"359155","2020-05-06 20:35:43","http://www.gundemdekihaber.com/wp-content/uploads/2020/05/dxgupkiuvyht/84862/EmploymentVerification_84862_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359155/","malware_traffic"
+"359155","2020-05-06 20:35:43","http://www.gundemdekihaber.com/wp-content/uploads/2020/05/dxgupkiuvyht/84862/EmploymentVerification_84862_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359155/","malware_traffic"
 "359154","2020-05-06 20:35:33","http://maliban.ir/gtjpdy/34780/EmploymentVerification_34780_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359154/","malware_traffic"
-"359153","2020-05-06 20:35:29","http://cmecobrancas.com/wp-content/uploads/2020/05/kxsjxok/929459/EmploymentVerification_929459_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359153/","malware_traffic"
+"359153","2020-05-06 20:35:29","http://cmecobrancas.com/wp-content/uploads/2020/05/kxsjxok/929459/EmploymentVerification_929459_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359153/","malware_traffic"
 "359152","2020-05-06 20:35:22","http://gundemdekihaber.com/wp-content/uploads/2020/05/dxgupkiuvyht/33423050/EmploymentVerification_33423050_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359152/","malware_traffic"
-"359151","2020-05-06 20:35:13","http://dienmayminhan.com/iyhomh/89202970/EmploymentVerification_89202970_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359151/","malware_traffic"
+"359151","2020-05-06 20:35:13","http://dienmayminhan.com/iyhomh/89202970/EmploymentVerification_89202970_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359151/","malware_traffic"
 "359150","2020-05-06 20:34:48","http://hotel.my.id/hzcxydevppho/EmploymentVerification_3573558_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359150/","malware_traffic"
 "359149","2020-05-06 20:34:35","http://himmelsbygardshotell.se/xgzajbeanow/EmploymentVerification_46405582_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359149/","malware_traffic"
 "359148","2020-05-06 20:34:33","http://himmelsbygardshotell.se/xgzajbeanow/EmploymentVerification_13576_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359148/","malware_traffic"
 "359147","2020-05-06 20:34:30","http://hevizapartments.net/wp-content/plugins/apikey/rcaphcwriz/EmploymentVerification_720370_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359147/","malware_traffic"
-"359146","2020-05-06 20:34:26","http://genstaff.gov.kg/seqacbxy/EmploymentVerification_2084312_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359146/","malware_traffic"
+"359146","2020-05-06 20:34:26","http://genstaff.gov.kg/seqacbxy/EmploymentVerification_2084312_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359146/","malware_traffic"
 "359145","2020-05-06 20:34:18","http://gamebazaar.club/vxpfxrresyf/EmploymentVerification_167910_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359145/","malware_traffic"
 "359144","2020-05-06 20:33:54","http://famitaa.com/vsijmfio/13627971/EmploymentVerification_13627971_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359144/","malware_traffic"
-"359143","2020-05-06 20:33:16","http://dienmayminhan.com/iyhomh/EmploymentVerification_2817182_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359143/","malware_traffic"
+"359143","2020-05-06 20:33:16","http://dienmayminhan.com/iyhomh/EmploymentVerification_2817182_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359143/","malware_traffic"
 "359142","2020-05-06 20:32:39","http://desighiza.com/wp-content/plugins/apikey/xrlhwudjg/854319/EmploymentVerification_854319_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359142/","malware_traffic"
 "359141","2020-05-06 20:32:07","http://cleversoft.vn/dplbtdsv/7825/EmploymentVerification_7825_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359141/","malware_traffic"
 "359140","2020-05-06 20:31:29","http://bukatrip.id/iorndshiun/EmploymentVerification_93625_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359140/","malware_traffic"
@@ -354,8 +635,8 @@
 "359134","2020-05-06 20:26:34","https://www.sreebalajiprints.com/wp-content/uploads/2020/05/uveiec/86260336/EmploymentVerification_86260336_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359134/","malware_traffic"
 "359133","2020-05-06 20:25:32","https://www.sreebalajiprints.com/wp-content/uploads/2020/05/uveiec/1262581/EmploymentVerification_1262581_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359133/","malware_traffic"
 "359132","2020-05-06 20:24:28","https://paperbrick.peachtest.com/tqoddpmjm/EmploymentVerification_46486767_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359132/","malware_traffic"
-"359131","2020-05-06 20:23:55","https://gamebazaar.club/vxpfxrresyf/EmploymentVerification_167910_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359131/","malware_traffic"
-"359130","2020-05-06 20:23:23","https://gamebazaar.club/vxpfxrresyf/706433/EmploymentVerification_706433_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359130/","malware_traffic"
+"359131","2020-05-06 20:23:55","https://gamebazaar.club/vxpfxrresyf/EmploymentVerification_167910_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359131/","malware_traffic"
+"359130","2020-05-06 20:23:23","https://gamebazaar.club/vxpfxrresyf/706433/EmploymentVerification_706433_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359130/","malware_traffic"
 "359129","2020-05-06 20:22:49","https://evergreenpainters.in/wp-content/plugins/apikey/ohoarwt/16573744/EmploymentVerification_16573744_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359129/","malware_traffic"
 "359128","2020-05-06 20:22:12","https://desighiza.com/wp-content/plugins/apikey/xrlhwudjg/983801/EmploymentVerification_983801_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359128/","malware_traffic"
 "359127","2020-05-06 20:21:38","https://classmedical.uk/wp-content/uploads/2020/05/ruclklrhse/EmploymentVerification_7568738_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359127/","malware_traffic"
@@ -367,11 +648,11 @@
 "359121","2020-05-06 20:18:18","http://utv.sakeronline.se/hzepew/83423/EmploymentVerification_83423_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359121/","malware_traffic"
 "359120","2020-05-06 20:17:45","http://tripstory.id/ghdmb/8117713/EmploymentVerification_8117713_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359120/","malware_traffic"
 "359119","2020-05-06 20:17:12","http://tripstory.id/ghdmb/56378/EmploymentVerification_56378_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359119/","malware_traffic"
-"359118","2020-05-06 20:16:37","http://test.presta-com.ru/wp-content/uploads/2020/05/wktjtemiy/37860/EmploymentVerification_37860_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359118/","malware_traffic"
+"359118","2020-05-06 20:16:37","http://test.presta-com.ru/wp-content/uploads/2020/05/wktjtemiy/37860/EmploymentVerification_37860_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359118/","malware_traffic"
 "359117","2020-05-06 20:16:34","http://test.presta-com.ru/wp-content/uploads/2020/05/wktjtemiy/297241/employmentverification_297241_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359117/","malware_traffic"
-"359116","2020-05-06 20:16:26","http://socialhelp.ir/wp-content/uploads/2020/05/saptzonrskv/9881915/EmploymentVerification_9881915_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359116/","malware_traffic"
+"359116","2020-05-06 20:16:26","http://socialhelp.ir/wp-content/uploads/2020/05/saptzonrskv/9881915/EmploymentVerification_9881915_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359116/","malware_traffic"
 "359115","2020-05-06 20:16:22","http://socialhelp.ir/wp-content/uploads/2020/05/saptzonrskv/8365519/EmploymentVerification_8365519_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359115/","malware_traffic"
-"359114","2020-05-06 20:16:18","http://socialhelp.ir/wp-content/uploads/2020/05/saptzonrskv/56963715/EmploymentVerification_56963715_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359114/","malware_traffic"
+"359114","2020-05-06 20:16:18","http://socialhelp.ir/wp-content/uploads/2020/05/saptzonrskv/56963715/EmploymentVerification_56963715_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359114/","malware_traffic"
 "359113","2020-05-06 20:16:12","http://sitephilip.k2fwebsolutions.com/czkmtgkfua/05092/EmploymentVerification_05092_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359113/","malware_traffic"
 "359112","2020-05-06 20:16:06","http://sheconomy.in/wp-content/uploads/2020/05/zfomndrr/EmploymentVerification_03764_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359112/","malware_traffic"
 "359111","2020-05-06 20:16:03","http://sheconomy.in/wp-content/uploads/2020/05/zfomndrr/0788520/EmploymentVerification_0788520_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359111/","malware_traffic"
@@ -379,31 +660,31 @@
 "359109","2020-05-06 20:15:45","http://schielerelocationservices.com/xplesfkzi/EmploymentVerification_15887414_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359109/","malware_traffic"
 "359108","2020-05-06 20:15:38","http://samanyavigyan.com/wp-content/uploads/2020/05/qchtv/EmploymentVerification_07320859_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359108/","malware_traffic"
 "359107","2020-05-06 20:15:34","http://samanyavigyan.com/wp-content/uploads/2020/05/qchtv/26814313/EmploymentVerification_26814313_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359107/","malware_traffic"
-"359106","2020-05-06 20:15:30","http://sakersaker.sakeronline.se/jbvbvmqcn/EmploymentVerification_6484124_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359106/","malware_traffic"
+"359106","2020-05-06 20:15:30","http://sakersaker.sakeronline.se/jbvbvmqcn/EmploymentVerification_6484124_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359106/","malware_traffic"
 "359105","2020-05-06 20:15:26","http://sakersaker.sakeronline.se/jbvbvmqcn/903661/EmploymentVerification_903661_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359105/","malware_traffic"
 "359104","2020-05-06 20:15:21","http://sakersaker.sakeronline.se/jbvbvmqcn/882525/EmploymentVerification_882525_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359104/","malware_traffic"
-"359103","2020-05-06 20:15:16","http://sakersaker.sakeronline.se/jbvbvmqcn/5101/EmploymentVerification_5101_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359103/","malware_traffic"
+"359103","2020-05-06 20:15:16","http://sakersaker.sakeronline.se/jbvbvmqcn/5101/EmploymentVerification_5101_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359103/","malware_traffic"
 "359102","2020-05-06 20:15:11","http://rosdal.abouttobeawesome.com/wp-content/uploads/2020/05/xnmeul/EmploymentVerification_9348_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359102/","malware_traffic"
-"359101","2020-05-06 20:15:09","http://rosdal.abouttobeawesome.com/wp-content/uploads/2020/05/xnmeul/EmploymentVerification_7966228_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359101/","malware_traffic"
-"359100","2020-05-06 20:15:05","http://rosdal.abouttobeawesome.com/wp-content/uploads/2020/05/xnmeul/EmploymentVerification_361027_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359100/","malware_traffic"
+"359101","2020-05-06 20:15:09","http://rosdal.abouttobeawesome.com/wp-content/uploads/2020/05/xnmeul/EmploymentVerification_7966228_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359101/","malware_traffic"
+"359100","2020-05-06 20:15:05","http://rosdal.abouttobeawesome.com/wp-content/uploads/2020/05/xnmeul/EmploymentVerification_361027_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359100/","malware_traffic"
 "359099","2020-05-06 20:15:03","http://rosdal.abouttobeawesome.com/wp-content/uploads/2020/05/xnmeul/98482/EmploymentVerification_98482_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359099/","malware_traffic"
-"359098","2020-05-06 20:15:00","http://rosdal.abouttobeawesome.com/wp-content/uploads/2020/05/xnmeul/0817935/EmploymentVerification_0817935_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359098/","malware_traffic"
+"359098","2020-05-06 20:15:00","http://rosdal.abouttobeawesome.com/wp-content/uploads/2020/05/xnmeul/0817935/EmploymentVerification_0817935_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359098/","malware_traffic"
 "359097","2020-05-06 20:14:57","http://pokids.vn/etvrastgnk/EmploymentVerification_04908907_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359097/","malware_traffic"
-"359096","2020-05-06 20:14:50","http://pokids.vn/etvrastgnk/19064/EmploymentVerification_19064_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359096/","malware_traffic"
-"359095","2020-05-06 20:14:43","http://peachtest.com/wkonksvuyxrr/EmploymentVerification_97696470_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359095/","malware_traffic"
-"359094","2020-05-06 20:14:26","http://paperbrick.peachtest.com/tqoddpmjm/EmploymentVerification_46486767_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359094/","malware_traffic"
-"359093","2020-05-06 20:14:22","http://paperbrick.peachtest.com/tqoddpmjm/9305290/EmploymentVerification_9305290_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359093/","malware_traffic"
-"359092","2020-05-06 20:14:13","http://paperbrick.peachtest.com/tqoddpmjm/2445/EmploymentVerification_2445_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359092/","malware_traffic"
+"359096","2020-05-06 20:14:50","http://pokids.vn/etvrastgnk/19064/EmploymentVerification_19064_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359096/","malware_traffic"
+"359095","2020-05-06 20:14:43","http://peachtest.com/wkonksvuyxrr/EmploymentVerification_97696470_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359095/","malware_traffic"
+"359094","2020-05-06 20:14:26","http://paperbrick.peachtest.com/tqoddpmjm/EmploymentVerification_46486767_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359094/","malware_traffic"
+"359093","2020-05-06 20:14:22","http://paperbrick.peachtest.com/tqoddpmjm/9305290/EmploymentVerification_9305290_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359093/","malware_traffic"
+"359092","2020-05-06 20:14:13","http://paperbrick.peachtest.com/tqoddpmjm/2445/EmploymentVerification_2445_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359092/","malware_traffic"
 "359091","2020-05-06 20:14:06","http://olofi.k2fwebsolutions.com/eelgjefunp/EmploymentVerification_4218_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359091/","malware_traffic"
 "359090","2020-05-06 20:14:03","http://olofi.k2fwebsolutions.com/eelgjefunp/6832/EmploymentVerification_6832_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359090/","malware_traffic"
 "359089","2020-05-06 20:13:50","http://olofi.k2fwebsolutions.com/eelgjefunp/2699433/EmploymentVerification_2699433_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359089/","malware_traffic"
 "359088","2020-05-06 20:13:40","http://myrotiplace.com/ckvnkl/EmploymentVerification_42297_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359088/","malware_traffic"
 "359087","2020-05-06 20:13:36","http://myrotiplace.com/ckvnkl/6769120/EmploymentVerification_6769120_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359087/","malware_traffic"
 "359086","2020-05-06 20:13:20","http://myrotiplace.com/ckvnkl/434334/EmploymentVerification_434334_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359086/","malware_traffic"
-"359085","2020-05-06 20:13:13","http://mudita.vn/arsmjdgyacy/1950/EmploymentVerification_1950_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359085/","malware_traffic"
+"359085","2020-05-06 20:13:13","http://mudita.vn/arsmjdgyacy/1950/EmploymentVerification_1950_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359085/","malware_traffic"
 "359084","2020-05-06 20:13:04","http://maynenkhivinhphat.com/oyzrdcue/EmploymentVerification_26191956_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359084/","malware_traffic"
-"359083","2020-05-06 20:12:58","http://maynenkhivinhphat.com/oyzrdcue/5922585/EmploymentVerification_5922585_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359083/","malware_traffic"
-"359082","2020-05-06 20:12:51","http://maynenkhivinhphat.com/oyzrdcue/3120184/EmploymentVerification_3120184_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359082/","malware_traffic"
+"359083","2020-05-06 20:12:58","http://maynenkhivinhphat.com/oyzrdcue/5922585/EmploymentVerification_5922585_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359083/","malware_traffic"
+"359082","2020-05-06 20:12:51","http://maynenkhivinhphat.com/oyzrdcue/3120184/EmploymentVerification_3120184_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359082/","malware_traffic"
 "359081","2020-05-06 20:12:39","http://maliban.ir/gtjpdy/EmploymentVerification_268631_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359081/","malware_traffic"
 "359080","2020-05-06 20:12:36","http://maliban.ir/gtjpdy/EmploymentVerification_23896314_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359080/","malware_traffic"
 "359079","2020-05-06 20:12:24","http://maliban.ir/gtjpdy/41477270/EmploymentVerification_41477270_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/359079/","malware_traffic"
@@ -455,21 +736,21 @@
 "359033","2020-05-06 18:17:09","http://pocketfsa.com/m/t.bin","online","malware_download","None","https://urlhaus.abuse.ch/url/359033/","JayTHL"
 "359032","2020-05-06 18:17:06","http://pocketfsa.com/m/r.msi","online","malware_download","None","https://urlhaus.abuse.ch/url/359032/","JayTHL"
 "359031","2020-05-06 18:17:03","http://pocketfsa.com/m/mswords.bin","online","malware_download","None","https://urlhaus.abuse.ch/url/359031/","JayTHL"
-"359030","2020-05-06 18:16:03","http://37.232.98.44:56582/Mozi.m+-O+-","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359030/","zbetcheckin"
-"359029","2020-05-06 18:05:09","http://182.117.71.167:38750/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359029/","Gandylyan1"
+"359030","2020-05-06 18:16:03","http://37.232.98.44:56582/Mozi.m+-O+-","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/359030/","zbetcheckin"
+"359029","2020-05-06 18:05:09","http://182.117.71.167:38750/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359029/","Gandylyan1"
 "359028","2020-05-06 18:05:01","http://114.235.153.32:39695/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359028/","Gandylyan1"
 "359027","2020-05-06 18:04:53","http://222.140.153.57:57456/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359027/","Gandylyan1"
 "359026","2020-05-06 18:04:49","http://111.43.223.78:56639/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359026/","Gandylyan1"
 "359025","2020-05-06 18:04:46","http://150.255.152.6:38042/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359025/","Gandylyan1"
-"359024","2020-05-06 18:04:42","http://116.149.240.73:56320/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359024/","Gandylyan1"
-"359023","2020-05-06 18:04:36","http://116.114.95.68:32980/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359023/","Gandylyan1"
+"359024","2020-05-06 18:04:42","http://116.149.240.73:56320/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359024/","Gandylyan1"
+"359023","2020-05-06 18:04:36","http://116.114.95.68:32980/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359023/","Gandylyan1"
 "359022","2020-05-06 18:04:32","http://162.212.115.49:59683/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359022/","Gandylyan1"
 "359021","2020-05-06 18:04:28","http://112.17.123.56:43506/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359021/","Gandylyan1"
 "359020","2020-05-06 18:04:13","http://124.67.89.238:48336/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359020/","Gandylyan1"
 "359019","2020-05-06 18:04:08","http://221.210.211.13:59932/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359019/","Gandylyan1"
 "359018","2020-05-06 18:04:02","http://172.45.28.36:55258/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359018/","Gandylyan1"
 "359017","2020-05-06 18:03:30","http://219.157.146.65:51504/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359017/","Gandylyan1"
-"359016","2020-05-06 18:03:25","http://116.114.95.210:55707/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359016/","Gandylyan1"
+"359016","2020-05-06 18:03:25","http://116.114.95.210:55707/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359016/","Gandylyan1"
 "359015","2020-05-06 18:03:19","http://180.116.220.200:44599/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359015/","Gandylyan1"
 "359014","2020-05-06 18:03:15","http://111.43.223.121:44470/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/359014/","Gandylyan1"
 "359013","2020-05-06 18:03:12","http://222.142.226.246:54110/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/359013/","Gandylyan1"
@@ -494,13 +775,13 @@
 "358994","2020-05-06 17:09:03","http://104.168.96.168/arm4","online","malware_download","elf","https://urlhaus.abuse.ch/url/358994/","hypoweb"
 "358993","2020-05-06 17:04:09","http://104.168.96.168/x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/358993/","hypoweb"
 "358992","2020-05-06 17:04:06","http://222.116.73.41:61345/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358992/","geenensp"
-"358991","2020-05-06 16:49:32","http://hevizapartments.net/wp-content/plugins/apikey/rcaphcwriz/EmploymentVerification_7320635_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358991/","malware_traffic"
-"358990","2020-05-06 16:49:30","http://hevizapartments.net/wp-content/plugins/apikey/rcaphcwriz/EmploymentVerification_58032421_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358990/","malware_traffic"
+"358991","2020-05-06 16:49:32","http://hevizapartments.net/wp-content/plugins/apikey/rcaphcwriz/EmploymentVerification_7320635_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358991/","malware_traffic"
+"358990","2020-05-06 16:49:30","http://hevizapartments.net/wp-content/plugins/apikey/rcaphcwriz/EmploymentVerification_58032421_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358990/","malware_traffic"
 "358989","2020-05-06 16:49:28","http://samanyavigyan.com/wp-content/uploads/2020/05/qchtv/EmploymentVerification_618889_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358989/","malware_traffic"
-"358988","2020-05-06 16:49:17","http://hevizapartments.net/wp-content/plugins/apikey/rcaphcwriz/EmploymentVerification_41601806_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358988/","malware_traffic"
+"358988","2020-05-06 16:49:17","http://hevizapartments.net/wp-content/plugins/apikey/rcaphcwriz/EmploymentVerification_41601806_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358988/","malware_traffic"
 "358987","2020-05-06 16:49:13","http://maliban.ir/gtjpdy/2618/EmploymentVerification_2618_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358987/","malware_traffic"
 "358986","2020-05-06 16:49:09","http://www.theabigailbloomcakecompany.co.uk/wp-content/uploads/2020/05/tlclp/30344/EmploymentVerification_30344_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358986/","malware_traffic"
-"358985","2020-05-06 16:49:06","http://peachtest.com/wkonksvuyxrr/2952/EmploymentVerification_2952_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358985/","malware_traffic"
+"358985","2020-05-06 16:49:06","http://peachtest.com/wkonksvuyxrr/2952/EmploymentVerification_2952_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358985/","malware_traffic"
 "358984","2020-05-06 16:37:10","http://23.227.207.140/Mot.exe","online","malware_download","exe,NanoCore,rat","https://urlhaus.abuse.ch/url/358984/","abuse_ch"
 "358983","2020-05-06 16:36:54","http://103.212.225.238/x86","online","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/358983/","hypoweb"
 "358982","2020-05-06 16:36:50","http://103.212.225.238/sh4","online","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/358982/","hypoweb"
@@ -542,7 +823,7 @@
 "358946","2020-05-06 15:31:08","https://unienet.com/4yuidua4nnx03b.aspx","offline","malware_download","None","https://urlhaus.abuse.ch/url/358946/","anonymous"
 "358945","2020-05-06 15:31:04","https://usapreferred.com/qtsqqhdmxl5u.aspx","offline","malware_download","None","https://urlhaus.abuse.ch/url/358945/","anonymous"
 "358944","2020-05-06 15:19:08","https://naildumarche.com/wp-includes/css/meea/freshojacrypt.exe","online","malware_download","Loki,lokibot","https://urlhaus.abuse.ch/url/358944/","James_inthe_box"
-"358943","2020-05-06 15:14:23","https://evdeyizrahatiz.com/new20gb.apk","online","malware_download","None","https://urlhaus.abuse.ch/url/358943/","JAMESWT_MHT"
+"358943","2020-05-06 15:14:23","https://evdeyizrahatiz.com/new20gb.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/358943/","JAMESWT_MHT"
 "358942","2020-05-06 15:14:16","https://gitlab.com/akif65336/evev/-/raw/master/evdekal.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/358942/","JAMESWT_MHT"
 "358941","2020-05-06 15:14:12","https://gitlab.com/ordulkemal2/yens/-/raw/master/evdekal.apk?inline=false","offline","malware_download","None","https://urlhaus.abuse.ch/url/358941/","JAMESWT_MHT"
 "358940","2020-05-06 15:14:08","https://gitlab.com/ordulkemal2/yens/-/raw/master/evdekaliyorum.apk?inline=false","offline","malware_download","None","https://urlhaus.abuse.ch/url/358940/","JAMESWT_MHT"
@@ -556,32 +837,32 @@
 "358932","2020-05-06 15:13:09","http://literateifted.xyz/ApiServices-Files35081/Down/23107_VersionFlashPlayer.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/358932/","JAMESWT_MHT"
 "358931","2020-05-06 15:13:04","http://literateifted.xyz/ApiServices-Files35081/Down/06347_VersionFlashPlayer.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/358931/","JAMESWT_MHT"
 "358930","2020-05-06 15:06:11","http://182.114.250.201:47461/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358930/","Gandylyan1"
-"358929","2020-05-06 15:05:51","http://36.107.138.217:43452/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358929/","Gandylyan1"
+"358929","2020-05-06 15:05:51","http://36.107.138.217:43452/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358929/","Gandylyan1"
 "358928","2020-05-06 15:05:39","http://112.17.166.50:54218/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358928/","Gandylyan1"
 "358927","2020-05-06 15:05:08","http://211.137.225.96:42225/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358927/","Gandylyan1"
 "358926","2020-05-06 15:05:04","http://111.43.223.50:53652/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358926/","Gandylyan1"
 "358925","2020-05-06 15:05:01","http://113.53.205.206:36146/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358925/","Gandylyan1"
 "358924","2020-05-06 15:04:57","http://218.21.170.15:35517/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358924/","Gandylyan1"
-"358923","2020-05-06 15:04:51","http://27.41.147.103:47709/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358923/","Gandylyan1"
+"358923","2020-05-06 15:04:51","http://27.41.147.103:47709/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358923/","Gandylyan1"
 "358922","2020-05-06 15:04:22","http://183.215.188.45:51614/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358922/","Gandylyan1"
 "358921","2020-05-06 15:04:17","http://216.180.117.113:59770/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358921/","Gandylyan1"
-"358920","2020-05-06 15:04:14","http://116.114.95.176:39513/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358920/","Gandylyan1"
+"358920","2020-05-06 15:04:14","http://116.114.95.176:39513/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358920/","Gandylyan1"
 "358919","2020-05-06 14:55:44","http://ilya-popov.ru/wp-content/uploads/2020/05/iqcvmbdj/EmploymentVerification_303549_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358919/","malware_traffic"
-"358918","2020-05-06 14:55:40","http://cleversoft.vn/dplbtdsv/71636087/EmploymentVerification_71636087_05052020.zip","online","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358918/","malware_traffic"
+"358918","2020-05-06 14:55:40","http://cleversoft.vn/dplbtdsv/71636087/EmploymentVerification_71636087_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358918/","malware_traffic"
 "358917","2020-05-06 14:55:13","http://maliban.ir/gtjpdy/EmploymentVerification_73588_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358917/","malware_traffic"
 "358916","2020-05-06 14:55:09","http://www.theabigailbloomcakecompany.co.uk/wp-content/uploads/2020/05/tlclp/EmploymentVerification_5062988_05052020.zip","offline","malware_download","Qakbot,qbot,spx114,zip","https://urlhaus.abuse.ch/url/358916/","malware_traffic"
 "358915","2020-05-06 14:53:07","https://onedrive.live.com/download?cid=2D6A6389F3FC6C0F&resid=2D6A6389F3FC6C0F!14383&authkey=AKYk6OJd0P6PQwI","online","malware_download","None","https://urlhaus.abuse.ch/url/358915/","JayTHL"
 "358914","2020-05-06 14:53:03","https://onedrive.live.com/download?cid=052BCF630286E980&resid=52BCF630286E980!115&authkey=ANnZDxmXDLx8PnY","online","malware_download","None","https://urlhaus.abuse.ch/url/358914/","JayTHL"
-"358913","2020-05-06 14:18:24","http://borawebservicioscl1.com/desporto/F0AS2F4AS01FA4.luk","offline","malware_download"," CHL,MetaMorfo","https://urlhaus.abuse.ch/url/358913/","1ZRR4H"
+"358913","2020-05-06 14:18:24","http://borawebservicioscl1.com/desporto/F0AS2F4AS01FA4.luk","online","malware_download"," CHL,MetaMorfo","https://urlhaus.abuse.ch/url/358913/","1ZRR4H"
 "358912","2020-05-06 14:18:05","http://46.20.66.9:57447/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358912/","geenensp"
 "358911","2020-05-06 14:17:44","http://188.127.249.210/0d0ad56b5ca25c824d9bfdb0149/boot/dll2/system_info.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/358911/","JayTHL"
 "358910","2020-05-06 14:17:42","http://188.127.249.210/0d0ad56b5ca25c824d9bfdb0149/boot/dll/chromium.dll","online","malware_download","None","https://urlhaus.abuse.ch/url/358910/","JayTHL"
 "358909","2020-05-06 14:17:38","http://188.127.249.210/0d0ad56b5ca25c824d9bfdb0149/boot/dll/filezilla.dll","online","malware_download","None","https://urlhaus.abuse.ch/url/358909/","JayTHL"
 "358908","2020-05-06 14:17:36","http://188.127.249.210/0d0ad56b5ca25c824d9bfdb0149/boot/dll/firefox.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/358908/","JayTHL"
 "358907","2020-05-06 14:17:34","http://188.127.249.210/0d0ad56b5ca25c824d9bfdb0149/boot/dll/system_info.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/358907/","JayTHL"
-"358906","2020-05-06 14:17:31","http://www.imobiliarianossacasamt.com.br/assets/img/0492019/","offline","malware_download"," CHL,MetaMorfo","https://urlhaus.abuse.ch/url/358906/","1ZRR4H"
+"358906","2020-05-06 14:17:31","http://www.imobiliarianossacasamt.com.br/assets/img/0492019/","online","malware_download"," CHL,MetaMorfo","https://urlhaus.abuse.ch/url/358906/","1ZRR4H"
 "358905","2020-05-06 14:17:21","https://www.souqtajeer.com/demo/mswords.bin","online","malware_download","GuLoader,NetWire,payload,rat,stage2","https://urlhaus.abuse.ch/url/358905/","shotgunner101"
-"358904","2020-05-06 14:17:17","https://www.souqtajeer.com/demo/t.bin","online","malware_download","GuLoader,NetWire,payload,rat,stage2","https://urlhaus.abuse.ch/url/358904/","shotgunner101"
+"358904","2020-05-06 14:17:17","https://www.souqtajeer.com/demo/t.bin","offline","malware_download","GuLoader,NetWire,payload,rat,stage2","https://urlhaus.abuse.ch/url/358904/","shotgunner101"
 "358903","2020-05-06 14:17:13","https://www.souqtajeer.com/demo/r.msi","online","malware_download","GuLoader,NetWire,payload,rat,stage2","https://urlhaus.abuse.ch/url/358903/","shotgunner101"
 "358902","2020-05-06 14:17:09","https://www.souqtajeer.com/demo/p.msi","online","malware_download","GuLoader,NetWire,payload,rat,stage2","https://urlhaus.abuse.ch/url/358902/","shotgunner101"
 "358901","2020-05-06 14:17:05","https://www.pocketfsa.com/m/t.bin","online","malware_download","GuLoader,NetWire,payload,rat,stage2","https://urlhaus.abuse.ch/url/358901/","shotgunner101"
@@ -589,7 +870,7 @@
 "358899","2020-05-06 14:16:57","https://www.pocketfsa.com/m/p.msi","online","malware_download","GuLoader,NetWire,payload,rat,stage2","https://urlhaus.abuse.ch/url/358899/","shotgunner101"
 "358898","2020-05-06 14:16:53","https://www.pocketfsa.com/m/mswords.bin","online","malware_download","GuLoader,NetWire,payload,rat,stage2","https://urlhaus.abuse.ch/url/358898/","shotgunner101"
 "358897","2020-05-06 14:16:49","http://limonauto.com.ua/gdjcigc/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx114","https://urlhaus.abuse.ch/url/358897/","lazyactivist192"
-"358896","2020-05-06 14:16:47","http://it.shopforever.pk/ewbaleo/88888.png","online","malware_download","exe,Qakbot,Quakbot,spx114","https://urlhaus.abuse.ch/url/358896/","lazyactivist192"
+"358896","2020-05-06 14:16:47","http://it.shopforever.pk/ewbaleo/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx114","https://urlhaus.abuse.ch/url/358896/","lazyactivist192"
 "358895","2020-05-06 14:16:43","http://blog.saigon247.vn/wp-content/uploads/2020/05/axtcud/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx114","https://urlhaus.abuse.ch/url/358895/","lazyactivist192"
 "358894","2020-05-06 14:16:13","http://beta.enerbras.com.br/muvolifvmg/88888.png","offline","malware_download","exe,Qakbot,spx114","https://urlhaus.abuse.ch/url/358894/","lazyactivist192"
 "358893","2020-05-06 14:16:09","http://alhussain.pk/ioxix/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx114","https://urlhaus.abuse.ch/url/358893/","lazyactivist192"
@@ -684,7 +965,7 @@
 "358804","2020-05-06 14:01:09","http://142.93.159.72/Anti_Bins/Antisocial.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/358804/","JayTHL"
 "358803","2020-05-06 14:01:06","http://142.93.159.72/Anti_Bins/Antisocial.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/358803/","JayTHL"
 "358802","2020-05-06 14:01:03","http://142.93.159.72/Anti_Bins/Antisocial.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/358802/","JayTHL"
-"358801","2020-05-06 12:51:14","http://sylvaclouds.eu/kellyx/Kellly.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/358801/","cocaman"
+"358801","2020-05-06 12:51:14","http://sylvaclouds.eu/kellyx/Kellly.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/358801/","cocaman"
 "358800","2020-05-06 12:27:37","https://pastebin.com/raw/z6ie6Qwy","offline","malware_download","None","https://urlhaus.abuse.ch/url/358800/","JayTHL"
 "358799","2020-05-06 12:27:05","https://pastebin.com/raw/ihaB2yHJ","offline","malware_download","None","https://urlhaus.abuse.ch/url/358799/","JayTHL"
 "358798","2020-05-06 12:26:32","https://pastebin.com/raw/HeK3Jazr","offline","malware_download","None","https://urlhaus.abuse.ch/url/358798/","JayTHL"
@@ -692,7 +973,7 @@
 "358796","2020-05-06 12:04:32","http://162.212.115.156:47512/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358796/","Gandylyan1"
 "358795","2020-05-06 12:04:28","http://182.117.30.32:48075/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358795/","Gandylyan1"
 "358794","2020-05-06 12:04:24","http://115.58.98.187:35050/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358794/","Gandylyan1"
-"358793","2020-05-06 12:04:21","http://180.125.240.53:42343/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358793/","Gandylyan1"
+"358793","2020-05-06 12:04:21","http://180.125.240.53:42343/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358793/","Gandylyan1"
 "358792","2020-05-06 12:03:50","http://125.25.89.230:56585/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358792/","Gandylyan1"
 "358791","2020-05-06 12:03:44","http://176.113.161.40:44634/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358791/","Gandylyan1"
 "358790","2020-05-06 12:03:41","http://111.43.223.53:53324/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358790/","Gandylyan1"
@@ -723,7 +1004,7 @@
 "358765","2020-05-06 09:04:36","http://111.43.223.62:54204/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358765/","Gandylyan1"
 "358764","2020-05-06 09:04:33","http://111.42.102.153:47780/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358764/","Gandylyan1"
 "358763","2020-05-06 09:04:30","http://175.11.193.82:45047/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358763/","Gandylyan1"
-"358762","2020-05-06 09:04:22","http://116.114.95.44:35401/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358762/","Gandylyan1"
+"358762","2020-05-06 09:04:22","http://116.114.95.44:35401/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358762/","Gandylyan1"
 "358761","2020-05-06 09:04:19","http://111.43.223.172:56235/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358761/","Gandylyan1"
 "358760","2020-05-06 09:04:14","http://112.17.163.139:52109/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358760/","Gandylyan1"
 "358759","2020-05-06 09:04:11","http://115.49.1.188:54077/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358759/","Gandylyan1"
@@ -776,20 +1057,20 @@
 "358712","2020-05-06 07:05:41","http://86.35.58.64:63165/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358712/","geenensp"
 "358711","2020-05-06 07:05:37","https://properurban.com/wp-content/plugins/apikey/bfyookxost/0400/ServiceContractAgreement_0400_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358711/","spamhaus"
 "358710","2020-05-06 07:05:34","http://212.40.64.96:25734/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358710/","geenensp"
-"358709","2020-05-06 07:05:31","https://wishngifts.com/wp-content/uploads/2020/05/eocelbjuj/ServiceContractAgreement_7196734_05042020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358709/","spamhaus"
+"358709","2020-05-06 07:05:31","https://wishngifts.com/wp-content/uploads/2020/05/eocelbjuj/ServiceContractAgreement_7196734_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358709/","spamhaus"
 "358708","2020-05-06 07:05:23","http://121.159.77.97:22757/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358708/","geenensp"
 "358707","2020-05-06 07:05:17","http://genlew.com/grom.exe","offline","malware_download"," 2020-05-05,Dridex","https://urlhaus.abuse.ch/url/358707/","anonymous"
 "358706","2020-05-06 07:05:11","http://detafa.com/cps/nass_original.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/358706/","Jouliok"
 "358705","2020-05-06 07:05:09","http://detafa.com/cps/nass.exe","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/358705/","Jouliok"
-"358704","2020-05-06 07:05:04","http://beachbeaty.com/cawhhlldtbha/2222.png","offline","malware_download","Qakbot,qbot,Quakbot","https://urlhaus.abuse.ch/url/358704/","notwhickey"
+"358704","2020-05-06 07:05:04","http://beachbeaty.com/cawhhlldtbha/2222.png","online","malware_download","Qakbot,qbot,Quakbot","https://urlhaus.abuse.ch/url/358704/","notwhickey"
 "358703","2020-05-06 07:04:35","http://kkarakas.com/wp-includes/css/mde/guq1b1aj.wil.exe","offline","malware_download","AZORult","https://urlhaus.abuse.ch/url/358703/","j00dan"
 "358702","2020-05-06 07:04:30","http://112.187.88.123:57299/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358702/","geenensp"
 "358701","2020-05-06 07:04:25","http://119.206.188.150:26286/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358701/","geenensp"
 "358700","2020-05-06 07:04:20","http://2.180.23.254:36342/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358700/","geenensp"
-"358699","2020-05-06 07:04:16","http://www.oxcssa.org.uk/wp-content/plugins/apikey/cyevr/4157722/ServiceContractAgreement_4157722_05012020.zip","offline","malware_download","Qakbot,qbot,zip","https://urlhaus.abuse.ch/url/358699/","jalcantara1925"
+"358699","2020-05-06 07:04:16","http://www.oxcssa.org.uk/wp-content/plugins/apikey/cyevr/4157722/ServiceContractAgreement_4157722_05012020.zip","online","malware_download","Qakbot,qbot,zip","https://urlhaus.abuse.ch/url/358699/","jalcantara1925"
 "358698","2020-05-06 07:04:13","https://luciola.vn/ccmulnballn/255738/ServiceContractAgreement_255738_05042020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358698/","spamhaus"
 "358697","2020-05-06 07:04:07","https://salenhatrang.com/iabsfscol/0767346/ServiceContractAgreement_0767346_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358697/","spamhaus"
-"358696","2020-05-06 07:03:56","https://woodworkingreview.net/yaiqdwpib/ServiceContractAgreement_7534_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358696/","spamhaus"
+"358696","2020-05-06 07:03:56","https://woodworkingreview.net/yaiqdwpib/ServiceContractAgreement_7534_05042020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358696/","spamhaus"
 "358695","2020-05-06 07:03:42","http://46.233.40.245:49065/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358695/","geenensp"
 "358694","2020-05-06 07:03:39","http://setda.pekalongankab.go.id/wp-content/uploads/2020/05/imyzf/780619/ServiceContractAgreement_780619_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358694/","spamhaus"
 "358693","2020-05-06 07:03:04","https://www.3rdwtalab.com/wp-content/uploads/2020/05/lpaphqwdr/952116/ServiceContractAgreement_952116_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358693/","spamhaus"
@@ -797,7 +1078,7 @@
 "358691","2020-05-06 07:01:58","https://www.tourenhelicoptero.com/wp-content/uploads/2020/05/kognqourhgc/ServiceContractAgreement_54001_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358691/","spamhaus"
 "358690","2020-05-06 07:01:24","https://www.tourenhelicoptero.com/wp-content/uploads/2020/05/kognqourhgc/ServiceContractAgreement_41516_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358690/","spamhaus"
 "358689","2020-05-06 07:00:49","https://properurban.com/wp-content/plugins/apikey/bfyookxost/78876676/ServiceContractAgreement_78876676_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358689/","spamhaus"
-"358688","2020-05-06 07:00:16","https://starbeatdance.com/wp-content/uploads/2020/05/czrqefm/ServiceContractAgreement_66591572_05042020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358688/","spamhaus"
+"358688","2020-05-06 07:00:16","https://starbeatdance.com/wp-content/uploads/2020/05/czrqefm/ServiceContractAgreement_66591572_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358688/","spamhaus"
 "358687","2020-05-06 06:59:42","http://odontec.com.br/wp-content/uploads/2020/05/wunlasm/61721/ServiceContractAgreement_61721_05042020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358687/","spamhaus"
 "358686","2020-05-06 06:58:39","http://37.49.226.231/luoqxbocmkxnexy/tbox.x86_64","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/358686/","hypoweb"
 "358685","2020-05-06 06:58:37","http://37.49.226.231/luoqxbocmkxnexy/tbox.x86","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/358685/","hypoweb"
@@ -810,7 +1091,7 @@
 "358678","2020-05-06 06:22:13","https://emadamini.co.za/wp-content/PP/PayPal-Restore.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/358678/","zbetcheckin"
 "358677","2020-05-06 06:06:10","http://devlet20gb-operatordestekleri.com/APK/","offline","malware_download","None","https://urlhaus.abuse.ch/url/358677/","JayTHL"
 "358676","2020-05-06 06:06:06","http://devlet20gb-operatordestekleri.com/APK/20GBHediye.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/358676/","JayTHL"
-"358675","2020-05-06 06:05:23","http://27.41.175.30:54017/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358675/","Gandylyan1"
+"358675","2020-05-06 06:05:23","http://27.41.175.30:54017/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358675/","Gandylyan1"
 "358674","2020-05-06 06:05:20","http://218.77.226.207:33652/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358674/","Gandylyan1"
 "358673","2020-05-06 06:05:11","http://49.87.201.232:60573/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358673/","Gandylyan1"
 "358672","2020-05-06 06:05:07","http://162.212.114.182:39771/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358672/","Gandylyan1"
@@ -819,16 +1100,16 @@
 "358669","2020-05-06 06:04:42","http://114.234.141.79:42374/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358669/","Gandylyan1"
 "358668","2020-05-06 06:04:37","http://221.210.211.29:46962/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358668/","Gandylyan1"
 "358667","2020-05-06 06:04:34","http://218.70.149.125:54368/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358667/","Gandylyan1"
-"358666","2020-05-06 06:04:18","http://116.114.95.100:58324/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358666/","Gandylyan1"
+"358666","2020-05-06 06:04:18","http://116.114.95.100:58324/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358666/","Gandylyan1"
 "358665","2020-05-06 06:04:15","http://115.224.68.109:60030/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358665/","Gandylyan1"
-"358664","2020-05-06 06:04:09","http://115.50.20.92:59405/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358664/","Gandylyan1"
+"358664","2020-05-06 06:04:09","http://115.50.20.92:59405/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358664/","Gandylyan1"
 "358663","2020-05-06 06:04:04","http://221.210.211.16:37487/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358663/","Gandylyan1"
 "358662","2020-05-06 04:22:34","https://uc3f02c02635ac6b12960addc5c0.dl.dropboxusercontent.com/cd/0/get/A3I2TTXe439ftj4hWM6usS35FZN_g9oYJKCIqBrX4PAR_YENN83rR1XxBB9w5YGX3bqpKPzaFjcyhXSNuCjAZXZOJEgh55ykb8blp-PJjXoFIB6DF9rQkiDiZMZ8CQjOmWk/file?dl=1","offline","malware_download","zip","https://urlhaus.abuse.ch/url/358662/","zbetcheckin"
 "358661","2020-05-06 03:46:03","https://pastebin.com/raw/Me1udSVB","offline","malware_download","None","https://urlhaus.abuse.ch/url/358661/","JayTHL"
 "358660","2020-05-06 03:22:04","https://pastebin.com/raw/XxNTGzKz","offline","malware_download","None","https://urlhaus.abuse.ch/url/358660/","JayTHL"
 "358659","2020-05-06 03:10:08","https://pastebin.com/raw/rzDStupp","offline","malware_download","None","https://urlhaus.abuse.ch/url/358659/","JayTHL"
 "358658","2020-05-06 03:05:31","http://111.43.223.156:33581/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358658/","Gandylyan1"
-"358657","2020-05-06 03:05:28","http://42.227.166.179:54741/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358657/","Gandylyan1"
+"358657","2020-05-06 03:05:28","http://42.227.166.179:54741/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358657/","Gandylyan1"
 "358656","2020-05-06 03:05:24","http://125.45.79.20:54517/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358656/","Gandylyan1"
 "358655","2020-05-06 03:05:19","http://176.113.161.72:41182/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358655/","Gandylyan1"
 "358654","2020-05-06 03:05:16","http://112.17.80.187:33076/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358654/","Gandylyan1"
@@ -845,7 +1126,7 @@
 "358643","2020-05-06 03:04:22","http://113.103.57.113:45441/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358643/","Gandylyan1"
 "358642","2020-05-06 03:04:18","http://124.67.89.18:40420/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358642/","Gandylyan1"
 "358641","2020-05-06 03:04:14","http://199.83.204.72:33817/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358641/","Gandylyan1"
-"358640","2020-05-06 03:04:04","http://60.189.24.112:35318/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358640/","Gandylyan1"
+"358640","2020-05-06 03:04:04","http://60.189.24.112:35318/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358640/","Gandylyan1"
 "358639","2020-05-06 03:03:55","http://111.43.223.164:43546/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358639/","Gandylyan1"
 "358638","2020-05-06 03:03:48","http://111.43.223.159:42353/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358638/","Gandylyan1"
 "358637","2020-05-06 03:03:45","http://36.105.241.235:38199/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358637/","Gandylyan1"
@@ -901,7 +1182,7 @@
 "358587","2020-05-05 22:10:09","https://properurban.com/oaxpws/ServiceContractAgreement_788498_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358587/","malware_traffic"
 "358586","2020-05-05 22:10:04","https://www.yerelsiyaset.net/wp-content/plugins/apikey/hvuxjrzdmfud/ServiceContractAgreement_0856_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358586/","malware_traffic"
 "358583","2020-05-05 21:50:20","https://nwcfood.com/wp-content/uploads/2020/05/xsrawspsqh/Complaint_19304_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358583/","malware_traffic"
-"358582","2020-05-05 21:50:17","https://woodworkingreview.net/yaiqdwpib/ServiceContractAgreement_1800_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358582/","malware_traffic"
+"358582","2020-05-05 21:50:17","https://woodworkingreview.net/yaiqdwpib/ServiceContractAgreement_1800_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358582/","malware_traffic"
 "358581","2020-05-05 21:50:04","https://umeatours.se/cutafkj/560932/ServiceContractAgreement_560932_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358581/","malware_traffic"
 "358580","2020-05-05 21:49:24","https://vahan24.in/wp-content/uploads/2020/05/uwzbfweypmu/0907327/ServiceContractAgreement_0907327_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358580/","malware_traffic"
 "358579","2020-05-05 21:49:20","https://upexperts.com.br/wp-content/uploads/2020/05/fpmoulvgaf/ServiceContractAgreement_452673_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358579/","malware_traffic"
@@ -910,14 +1191,14 @@
 "358576","2020-05-05 21:49:03","http://odontec.com.br/wp-content/uploads/2020/05/wunlasm/73635621/ServiceContractAgreement_73635621_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358576/","malware_traffic"
 "358575","2020-05-05 21:48:28","http://www.inovecomunic.com.br/wp-content/uploads/2020/05/rsdhb/08884737/ServiceContractAgreement_08884737_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358575/","malware_traffic"
 "358574","2020-05-05 21:48:24","https://nwcfood.com/wp-content/uploads/2020/05/eyhxxgwuldc/ServiceContractAgreement_730291_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358574/","malware_traffic"
-"358573","2020-05-05 21:48:21","https://jumla.biz/kzxuqrvbw/ServiceContractAgreement_582593_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358573/","malware_traffic"
+"358573","2020-05-05 21:48:21","https://jumla.biz/kzxuqrvbw/ServiceContractAgreement_582593_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358573/","malware_traffic"
 "358572","2020-05-05 21:48:16","https://cantikekinian.com/wp-content/uploads/2020/05/uwair/75910/ServiceContractAgreement_75910_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358572/","malware_traffic"
-"358571","2020-05-05 21:48:11","https://wishngifts.com/wp-content/uploads/2020/05/eocelbjuj/270089/ServiceContractAgreement_270089_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358571/","malware_traffic"
-"358570","2020-05-05 21:45:05","https://jumla.biz/wp-content/uploads/2020/05/xvkrjxpy/Complaint_8105_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358570/","malware_traffic"
+"358571","2020-05-05 21:48:11","https://wishngifts.com/wp-content/uploads/2020/05/eocelbjuj/270089/ServiceContractAgreement_270089_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358571/","malware_traffic"
+"358570","2020-05-05 21:45:05","https://jumla.biz/wp-content/uploads/2020/05/xvkrjxpy/Complaint_8105_05042020.zip","online","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358570/","malware_traffic"
 "358569","2020-05-05 21:45:03","https://jumla.biz/cisenbup/Complaint_25081_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358569/","malware_traffic"
 "358568","2020-05-05 21:44:16","https://www.tourenhelicoptero.com/wp-content/uploads/2020/05/gwwqnwbgya/Complaint_554497_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358568/","malware_traffic"
 "358567","2020-05-05 21:44:12","https://www.ajil.com/wp-content/uploads/2020/05/sdolkpajjhlk/Complaint_0889_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358567/","malware_traffic"
-"358566","2020-05-05 21:44:06","https://woodworkingreview.net/yyaioeiobr/Complaint_1185_05042020.zip","online","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358566/","malware_traffic"
+"358566","2020-05-05 21:44:06","https://woodworkingreview.net/yyaioeiobr/Complaint_1185_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358566/","malware_traffic"
 "358565","2020-05-05 21:44:01","https://vahan24.in/wp-content/uploads/2020/05/sgjckwy/80335/Complaint_80335_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358565/","malware_traffic"
 "358564","2020-05-05 21:43:57","https://vahan24.in/wp-content/uploads/2020/05/sgjckwy/2264426/Complaint_2264426_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358564/","malware_traffic"
 "358563","2020-05-05 21:43:47","http://vahan24.in/wp-content/uploads/2020/05/sgjckwy/8549/complaint_8549_05042020.zip","offline","malware_download","Qakbot,qbot,spx113,zip","https://urlhaus.abuse.ch/url/358563/","malware_traffic"
@@ -945,14 +1226,14 @@
 "358541","2020-05-05 21:41:36","https://www.ajil.com/wp-content/uploads/2020/05/njqkubbcgpes/56511453/ServiceContractAgreement_56511453_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358541/","malware_traffic"
 "358540","2020-05-05 21:41:30","https://www.3rdwtalab.com/wp-content/uploads/2020/05/lpaphqwdr/ServiceContractAgreement_821197_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358540/","malware_traffic"
 "358539","2020-05-05 21:41:27","https://woodworkingreview.net/yaiqdwpib/ServiceContractAgreement_6164935_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358539/","malware_traffic"
-"358538","2020-05-05 21:41:22","https://woodworkingreview.net/yaiqdwpib/2270/ServiceContractAgreement_2270_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358538/","malware_traffic"
+"358538","2020-05-05 21:41:22","https://woodworkingreview.net/yaiqdwpib/2270/ServiceContractAgreement_2270_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358538/","malware_traffic"
 "358537","2020-05-05 21:41:19","https://vahan24.in/wp-content/uploads/2020/05/uwzbfweypmu/722486/ServiceContractAgreement_722486_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358537/","malware_traffic"
 "358536","2020-05-05 21:41:15","https://vahan24.in/wp-content/uploads/2020/05/uwzbfweypmu/6931/ServiceContractAgreement_6931_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358536/","malware_traffic"
 "358535","2020-05-05 21:41:10","https://vahan24.in/wp-content/uploads/2020/05/uwzbfweypmu/1300/ServiceContractAgreement_1300_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358535/","malware_traffic"
 "358534","2020-05-05 21:41:06","http://turktv2.xyz/wp-content/uploads/2020/05/qnduxubyte/ServiceContractAgreement_7467641_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358534/","malware_traffic"
 "358533","2020-05-05 21:41:03","https://umeatours.se/cutafkj/ServiceContractAgreement_4865_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358533/","malware_traffic"
 "358532","2020-05-05 21:40:59","https://suaritmafirmalari.com/wp-content/uploads/2020/05/sapujif/ServiceContractAgreement_313592_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358532/","malware_traffic"
-"358531","2020-05-05 21:40:56","https://somudigital.in/wp-content/uploads/2020/05/tdydyzg/ServiceContractAgreement_82263987_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358531/","malware_traffic"
+"358531","2020-05-05 21:40:56","https://somudigital.in/wp-content/uploads/2020/05/tdydyzg/ServiceContractAgreement_82263987_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358531/","malware_traffic"
 "358530","2020-05-05 21:40:51","https://somudigital.in/wp-content/uploads/2020/05/tdydyzg/ServiceContractAgreement_322448_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358530/","malware_traffic"
 "358529","2020-05-05 21:40:35","http://setda.pekalongankab.go.id/wp-content/uploads/2020/05/imyzf/074864/ServiceContractAgreement_074864_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358529/","malware_traffic"
 "358528","2020-05-05 21:40:23","https://properurban.com/oaxpws/ServiceContractAgreement_64226_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358528/","malware_traffic"
@@ -962,13 +1243,13 @@
 "358524","2020-05-05 21:39:57","https://nguyenhoangmy.vn/wp-content/uploads/2020/05/aaosatmt/86128962/ServiceContractAgreement_86128962_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358524/","malware_traffic"
 "358523","2020-05-05 21:39:49","https://nguyenhoangmy.vn/wp-content/uploads/2020/05/aaosatmt/82435/ServiceContractAgreement_82435_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358523/","malware_traffic"
 "358522","2020-05-05 21:39:39","https://nguyenhoangmy.vn/wp-content/uploads/2020/05/aaosatmt/3041/ServiceContractAgreement_3041_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358522/","malware_traffic"
-"358521","2020-05-05 21:39:23","https://luciola.vn/wp-content/uploads/2020/05/udufuxhnq/ServiceContractAgreement_7829_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358521/","malware_traffic"
-"358520","2020-05-05 21:39:19","https://luciola.vn/wp-content/uploads/2020/05/udufuxhnq/18149191/ServiceContractAgreement_18149191_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358520/","malware_traffic"
+"358521","2020-05-05 21:39:23","https://luciola.vn/wp-content/uploads/2020/05/udufuxhnq/ServiceContractAgreement_7829_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358521/","malware_traffic"
+"358520","2020-05-05 21:39:19","https://luciola.vn/wp-content/uploads/2020/05/udufuxhnq/18149191/ServiceContractAgreement_18149191_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358520/","malware_traffic"
 "358519","2020-05-05 21:39:05","https://luciola.vn/ccmulnballn/ServiceContractAgreement_0596415_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358519/","malware_traffic"
 "358518","2020-05-05 21:38:56","https://jumla.biz/wp-content/uploads/2020/05/lqttlyplr/12278/ServiceContractAgreement_12278_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358518/","malware_traffic"
 "358517","2020-05-05 21:38:51","https://jumla.biz/kzxuqrvbw/69060/ServiceContractAgreement_69060_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358517/","malware_traffic"
 "358516","2020-05-05 21:38:48","https://hoitao.com.hk/wp-content/plugins/apikey/amuvp/80300280/ServiceContractAgreement_80300280_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358516/","malware_traffic"
-"358515","2020-05-05 21:38:41","https://hoitao.com.hk/wp-content/plugins/apikey/amuvp/651192/ServiceContractAgreement_651192_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358515/","malware_traffic"
+"358515","2020-05-05 21:38:41","https://hoitao.com.hk/wp-content/plugins/apikey/amuvp/651192/ServiceContractAgreement_651192_05042020.zip","online","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358515/","malware_traffic"
 "358514","2020-05-05 21:38:34","https://hitte.jp/wp-content/uploads/2020/05/ughphgbsvz/ServiceContractAgreement_8743356_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358514/","malware_traffic"
 "358513","2020-05-05 21:38:28","https://hitte.jp/wp-content/uploads/2020/05/ughphgbsvz/442518/ServiceContractAgreement_442518_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358513/","malware_traffic"
 "358512","2020-05-05 21:38:24","https://hitte.jp/wp-content/uploads/2020/05/ughphgbsvz/14240/ServiceContractAgreement_14240_05042020.zip","offline","malware_download","Qakbot,qbot,spx112,zip","https://urlhaus.abuse.ch/url/358512/","malware_traffic"
@@ -980,7 +1261,7 @@
 "358506","2020-05-05 21:34:08","http://193.38.51.210/lmaoWTF/loligang.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/358506/","zbetcheckin"
 "358505","2020-05-05 21:34:05","http://193.38.51.210/lmaoWTF/loligang.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/358505/","zbetcheckin"
 "358504","2020-05-05 21:34:03","http://193.38.51.210/lmaoWTF/loligang.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/358504/","zbetcheckin"
-"358503","2020-05-05 21:07:07","http://116.114.95.92:60443/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358503/","Gandylyan1"
+"358503","2020-05-05 21:07:07","http://116.114.95.92:60443/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358503/","Gandylyan1"
 "358502","2020-05-05 21:07:03","http://123.13.120.185:43352/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358502/","Gandylyan1"
 "358501","2020-05-05 21:07:00","http://172.36.32.203:35491/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358501/","Gandylyan1"
 "358500","2020-05-05 21:06:28","http://123.13.7.143:58363/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358500/","Gandylyan1"
@@ -1001,7 +1282,7 @@
 "358485","2020-05-05 20:59:34","http://magic-living.com/x86","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/358485/","Gandylyan1"
 "358484","2020-05-05 20:53:02","http://193.38.51.210/lmaoWTF/loligang.x86","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/358484/","Gandylyan1"
 "358483","2020-05-05 20:50:04","http://193.38.51.210/Pemex.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/358483/","zbetcheckin"
-"358482","2020-05-05 20:30:16","http://download.beveilingsdienst.info/argenta.apk","online","malware_download","None","https://urlhaus.abuse.ch/url/358482/","JayTHL"
+"358482","2020-05-05 20:30:16","http://download.beveilingsdienst.info/argenta.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/358482/","JayTHL"
 "358481","2020-05-05 19:32:04","https://signsohiocentre.buzz/EpcXOmrU/OverDuePayment2020_05_05_PDF.exe","offline","malware_download","NanoCore","https://urlhaus.abuse.ch/url/358481/","James_inthe_box"
 "358480","2020-05-05 19:31:06","http://mobdvservice.ru/wp-content/plugins/Invoice4109456.zip","offline","malware_download","NanoCore","https://urlhaus.abuse.ch/url/358480/","James_inthe_box"
 "358479","2020-05-05 19:30:09","https://pastebin.com/raw/ZzNNz4s0","offline","malware_download","None","https://urlhaus.abuse.ch/url/358479/","JayTHL"
@@ -1018,9 +1299,9 @@
 "358468","2020-05-05 18:03:29","http://111.42.66.27:56478/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358468/","Gandylyan1"
 "358467","2020-05-05 18:03:23","http://216.180.117.64:59017/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358467/","Gandylyan1"
 "358466","2020-05-05 18:03:19","http://36.35.164.221:34380/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358466/","Gandylyan1"
-"358465","2020-05-05 18:03:13","http://116.114.95.7:40870/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358465/","Gandylyan1"
+"358465","2020-05-05 18:03:13","http://116.114.95.7:40870/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358465/","Gandylyan1"
 "358464","2020-05-05 18:03:10","http://110.156.53.53:37135/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358464/","Gandylyan1"
-"358463","2020-05-05 18:03:05","http://180.125.249.46:55790/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358463/","Gandylyan1"
+"358463","2020-05-05 18:03:05","http://180.125.249.46:55790/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358463/","Gandylyan1"
 "358462","2020-05-05 17:57:22","http://landcareus.com/caem/tyf.php?l=ykol12.cab","offline","malware_download","None","https://urlhaus.abuse.ch/url/358462/","p5yb34m"
 "358461","2020-05-05 17:57:19","http://landcareus.com/caem/tyf.php?l=ykol10.cab","offline","malware_download","None","https://urlhaus.abuse.ch/url/358461/","p5yb34m"
 "358460","2020-05-05 17:57:18","http://landcareus.com/caem/tyf.php?l=ykol9.cab","offline","malware_download","None","https://urlhaus.abuse.ch/url/358460/","p5yb34m"
@@ -1066,9 +1347,9 @@
 "358420","2020-05-05 15:05:57","http://216.180.117.38:41887/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358420/","Gandylyan1"
 "358419","2020-05-05 15:05:53","http://111.43.223.198:40818/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358419/","Gandylyan1"
 "358418","2020-05-05 15:05:45","http://116.114.95.111:34934/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358418/","Gandylyan1"
-"358417","2020-05-05 15:05:13","http://173.15.162.146:4251/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358417/","Gandylyan1"
+"358417","2020-05-05 15:05:13","http://173.15.162.146:4251/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358417/","Gandylyan1"
 "358416","2020-05-05 15:05:10","http://119.201.68.12:35011/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358416/","Gandylyan1"
-"358415","2020-05-05 15:05:06","http://223.93.171.210:38691/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358415/","Gandylyan1"
+"358415","2020-05-05 15:05:06","http://223.93.171.210:38691/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358415/","Gandylyan1"
 "358414","2020-05-05 15:04:12","http://124.231.112.199:43342/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358414/","Gandylyan1"
 "358413","2020-05-05 15:04:05","http://221.210.211.4:50567/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358413/","Gandylyan1"
 "358412","2020-05-05 15:04:01","http://162.212.113.156:49828/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358412/","Gandylyan1"
@@ -1108,7 +1389,7 @@
 "358378","2020-05-05 12:04:30","http://218.21.171.236:59491/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358378/","Gandylyan1"
 "358377","2020-05-05 12:04:29","http://115.53.52.233:38681/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358377/","Gandylyan1"
 "358376","2020-05-05 12:04:26","http://113.103.57.153:45441/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358376/","Gandylyan1"
-"358375","2020-05-05 12:04:21","http://116.114.95.204:48242/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358375/","Gandylyan1"
+"358375","2020-05-05 12:04:21","http://116.114.95.204:48242/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358375/","Gandylyan1"
 "358374","2020-05-05 12:04:14","http://111.43.223.112:45000/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358374/","Gandylyan1"
 "358373","2020-05-05 12:04:11","http://42.225.203.189:34378/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358373/","Gandylyan1"
 "358372","2020-05-05 12:04:06","http://115.49.146.138:37543/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358372/","Gandylyan1"
@@ -1138,9 +1419,9 @@
 "358348","2020-05-05 10:43:08","http://adamtcarruthers.com/sb/img/elb.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/358348/","ps66uk"
 "358347","2020-05-05 10:43:03","http://adamtcarruthers.com/sb/img/fr.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/358347/","ps66uk"
 "358346","2020-05-05 10:41:17","http://adamtcarruthers.com/sb/img/mj.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/358346/","ps66uk"
-"358345","2020-05-05 09:58:03","http://45.95.169.249/armv6l","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/358345/","Gandylyan1"
-"358344","2020-05-05 09:57:05","http://45.95.169.249/mipsel","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/358344/","Gandylyan1"
-"358343","2020-05-05 09:57:03","http://45.95.169.249/mips","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/358343/","Gandylyan1"
+"358345","2020-05-05 09:58:03","http://45.95.169.249/armv6l","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/358345/","Gandylyan1"
+"358344","2020-05-05 09:57:05","http://45.95.169.249/mipsel","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/358344/","Gandylyan1"
+"358343","2020-05-05 09:57:03","http://45.95.169.249/mips","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/358343/","Gandylyan1"
 "358342","2020-05-05 09:46:04","http://194.5.79.166/bins/Gummy.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/358342/","zbetcheckin"
 "358341","2020-05-05 09:45:33","http://194.5.79.166/bins/Gummy.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/358341/","zbetcheckin"
 "358340","2020-05-05 09:43:07","http://bearsselection.xyz/ApiServices-Files13377/Down/93685_VersionFlashPlayer.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/358340/","JAMESWT_MHT"
@@ -1173,11 +1454,11 @@
 "358313","2020-05-05 09:04:45","http://113.133.230.134:41865/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358313/","Gandylyan1"
 "358312","2020-05-05 09:04:41","http://112.17.78.163:44098/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358312/","Gandylyan1"
 "358311","2020-05-05 09:04:34","http://114.228.25.50:43353/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358311/","Gandylyan1"
-"358310","2020-05-05 09:04:26","http://42.239.96.146:37766/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358310/","Gandylyan1"
+"358310","2020-05-05 09:04:26","http://42.239.96.146:37766/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358310/","Gandylyan1"
 "358309","2020-05-05 09:04:23","http://123.12.44.253:60048/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358309/","Gandylyan1"
 "358308","2020-05-05 09:04:18","http://123.4.223.123:59464/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358308/","Gandylyan1"
 "358307","2020-05-05 09:04:12","http://111.43.223.149:59627/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358307/","Gandylyan1"
-"358306","2020-05-05 09:04:09","http://115.216.208.162:53945/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358306/","Gandylyan1"
+"358306","2020-05-05 09:04:09","http://115.216.208.162:53945/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358306/","Gandylyan1"
 "358305","2020-05-05 09:03:55","http://110.156.65.88:56294/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358305/","Gandylyan1"
 "358304","2020-05-05 09:03:48","http://77.43.206.170:43288/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358304/","Gandylyan1"
 "358303","2020-05-05 09:03:16","http://111.42.102.131:50771/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358303/","Gandylyan1"
@@ -1205,13 +1486,13 @@
 "358281","2020-05-05 07:26:04","https://pastebin.com/raw/HicPnquY","offline","malware_download","None","https://urlhaus.abuse.ch/url/358281/","JayTHL"
 "358280","2020-05-05 07:05:14","http://112.165.97.124:46336/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358280/","geenensp"
 "358279","2020-05-05 07:05:10","http://59.19.231.31:39312/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358279/","geenensp"
-"358278","2020-05-05 07:05:03","http://www.oxcssa.org.uk/wp-content/plugins/apikey/cyevr/ServiceContractAgreement_13642787_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358278/","spamhaus"
-"358277","2020-05-05 07:04:59","http://45.95.169.249/x86","online","malware_download","64-bit,elf,x86-64","https://urlhaus.abuse.ch/url/358277/","geenensp"
+"358278","2020-05-05 07:05:03","http://www.oxcssa.org.uk/wp-content/plugins/apikey/cyevr/ServiceContractAgreement_13642787_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358278/","spamhaus"
+"358277","2020-05-05 07:04:59","http://45.95.169.249/x86","offline","malware_download","64-bit,elf,x86-64","https://urlhaus.abuse.ch/url/358277/","geenensp"
 "358276","2020-05-05 07:04:57","http://daithanhphung.com/wp-content/uploads/bwwwvc/ServiceContractAgreement_060390_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358276/","spamhaus"
 "358275","2020-05-05 07:04:46","https://getfashionmania.com/wp-content/uploads/2020/05/xipim/ServiceContractAgreement_45710641_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358275/","spamhaus"
 "358274","2020-05-05 07:04:41","http://37.49.226.228/mips","online","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/358274/","geenensp"
 "358273","2020-05-05 07:04:39","http://37.49.226.228/axisbins.sh","online","malware_download","script","https://urlhaus.abuse.ch/url/358273/","geenensp"
-"358272","2020-05-05 07:04:37","http://www.monmariage.info/wp-content/uploads/2020/05/ylwfuwedi/ServiceContractAgreement_67757333_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358272/","spamhaus"
+"358272","2020-05-05 07:04:37","http://www.monmariage.info/wp-content/uploads/2020/05/ylwfuwedi/ServiceContractAgreement_67757333_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358272/","spamhaus"
 "358271","2020-05-05 07:04:35","https://nexity.me/wp-content/uploads/2020/05/lujfkbtyj/ServiceContractAgreement_335556474_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358271/","spamhaus"
 "358270","2020-05-05 07:03:38","http://5.252.179.60/b/aarch64","offline","malware_download","elf","https://urlhaus.abuse.ch/url/358270/","hypoweb"
 "358269","2020-05-05 07:03:36","http://5.252.179.60/b/armv7l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/358269/","hypoweb"
@@ -1220,8 +1501,8 @@
 "358266","2020-05-05 07:03:02","http://194.5.79.166/bins/Gummy.mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/358266/","geenensp"
 "358265","2020-05-05 07:02:58","http://194.5.79.166/bins/Gummy.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/358265/","geenensp"
 "358264","2020-05-05 07:02:55","https://lesa.at.true.by/bpnoyndvsg/8573726/ServiceContractAgreement_8573726_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358264/","spamhaus"
-"358263","2020-05-05 07:02:22","http://imenizeh.ir/wp-content/uploads/2020/05/zolxcprn/ServiceContractAgreement_3323963_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358263/","spamhaus"
-"358262","2020-05-05 07:01:46","http://imenizeh.ir/wp-content/uploads/2020/05/zolxcprn/ServiceContractAgreement_01426_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358262/","spamhaus"
+"358263","2020-05-05 07:02:22","http://imenizeh.ir/wp-content/uploads/2020/05/zolxcprn/ServiceContractAgreement_3323963_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358263/","spamhaus"
+"358262","2020-05-05 07:01:46","http://imenizeh.ir/wp-content/uploads/2020/05/zolxcprn/ServiceContractAgreement_01426_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358262/","spamhaus"
 "358261","2020-05-05 07:01:06","http://114.34.226.203:1194/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358261/","geenensp"
 "358260","2020-05-05 06:49:04","https://pastebin.com/raw/SaGMT3DP","offline","malware_download","None","https://urlhaus.abuse.ch/url/358260/","JayTHL"
 "358259","2020-05-05 06:48:22","https://toulousa.com/wp-content/uploads/2020/05/kviajlyujzpw/ServiceContractAgreement_63782121_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358259/","spamhaus"
@@ -1233,12 +1514,12 @@
 "358253","2020-05-05 06:47:26","https://redingtonpost.com/wp/wp-content/uploads/2020/05/oaogrdaznzm/2556575/ServiceContractAgreement_2556575_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358253/","spamhaus"
 "358252","2020-05-05 06:47:21","http://1.34.17.215:49872/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358252/","geenensp"
 "358251","2020-05-05 06:47:14","http://imenizeh.ir/wp-content/uploads/2020/05/zolxcprn/ServiceContractAgreement_5235829_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358251/","spamhaus"
-"358250","2020-05-05 06:46:57","http://www.monmariage.info/wp-content/uploads/2020/05/xixjwyvze/12317297/ServiceContractAgreement_12317297_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358250/","spamhaus"
-"358249","2020-05-05 06:46:51","https://nexity.me/wp-content/uploads/2020/05/lujfkbtyj/45113/ServiceContractAgreement_45113_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358249/","spamhaus"
+"358250","2020-05-05 06:46:57","http://www.monmariage.info/wp-content/uploads/2020/05/xixjwyvze/12317297/ServiceContractAgreement_12317297_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358250/","spamhaus"
+"358249","2020-05-05 06:46:51","https://nexity.me/wp-content/uploads/2020/05/lujfkbtyj/45113/ServiceContractAgreement_45113_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358249/","spamhaus"
 "358248","2020-05-05 06:46:14","http://daithanhphung.com/wp-content/uploads/bwwwvc/ServiceContractAgreement_556531_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358248/","spamhaus"
 "358247","2020-05-05 06:46:07","http://119.136.88.217:7555/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358247/","geenensp"
 "358246","2020-05-05 06:45:31","http://sylvaclouds.eu/levelz/levelz.exe","offline","malware_download","Loki,lokibot","https://urlhaus.abuse.ch/url/358246/","j00dan"
-"358245","2020-05-05 06:45:24","http://www.monmariage.info/wp-content/uploads/2020/05/ylwfuwedi/ServiceContractAgreement_28489_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358245/","spamhaus"
+"358245","2020-05-05 06:45:24","http://www.monmariage.info/wp-content/uploads/2020/05/ylwfuwedi/ServiceContractAgreement_28489_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358245/","spamhaus"
 "358244","2020-05-05 06:45:13","http://www.exposvision.com/wp-content/uploads/2020/05/fosazwibfvo/3428136/ServiceContractAgreement_3428136_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/358244/","spamhaus"
 "358243","2020-05-05 06:45:04","http://86.7.86.4:40828/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/358243/","geenensp"
 "358242","2020-05-05 06:05:02","http://115.58.134.107:40593/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358242/","Gandylyan1"
@@ -1307,7 +1588,7 @@
 "358179","2020-05-05 03:06:13","http://211.137.225.18:51271/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358179/","Gandylyan1"
 "358178","2020-05-05 03:06:10","http://222.138.150.1:55484/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358178/","Gandylyan1"
 "358177","2020-05-05 03:06:06","http://176.113.161.89:42166/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358177/","Gandylyan1"
-"358176","2020-05-05 03:06:04","http://221.13.236.180:42123/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358176/","Gandylyan1"
+"358176","2020-05-05 03:06:04","http://221.13.236.180:42123/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358176/","Gandylyan1"
 "358175","2020-05-05 03:06:01","http://42.227.145.119:39183/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358175/","Gandylyan1"
 "358174","2020-05-05 03:05:57","http://222.138.150.125:53713/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/358174/","Gandylyan1"
 "358173","2020-05-05 03:05:53","http://115.63.186.148:56206/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/358173/","Gandylyan1"
@@ -1885,7 +2166,7 @@
 "357600","2020-05-04 22:43:47","https://pastebin.com/raw/2awwS2uK","offline","malware_download","None","https://urlhaus.abuse.ch/url/357600/","JayTHL"
 "357599","2020-05-04 22:43:42","https://pastebin.com/raw/1Y1MgC5b","offline","malware_download","None","https://urlhaus.abuse.ch/url/357599/","JayTHL"
 "357598","2020-05-04 22:43:39","http://archivelviv.gov.ua/wp-content/uploads/2020/05/xjkchfsegik/14892/ServiceContractAgreement_14892_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357598/","spamhaus"
-"357597","2020-05-04 22:43:35","http://185.172.110.208/bins/UnHAnaAW.mips","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/357597/","Gandylyan1"
+"357597","2020-05-04 22:43:35","http://185.172.110.208/bins/UnHAnaAW.mips","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/357597/","Gandylyan1"
 "357596","2020-05-04 22:43:05","http://spdtextile.com/sclas/814Cl1.exe","offline","malware_download","exe,IcedID,opendir","https://urlhaus.abuse.ch/url/357596/","abuse_ch"
 "357595","2020-05-04 22:43:01","http://spdtextile.com/sclas/797Cl1.exe","offline","malware_download","exe,IcedID,opendir","https://urlhaus.abuse.ch/url/357595/","abuse_ch"
 "357594","2020-05-04 22:42:57","http://spdtextile.com/sclas/788Cl1.exe","offline","malware_download","exe,IcedID,opendir","https://urlhaus.abuse.ch/url/357594/","abuse_ch"
@@ -1914,7 +2195,7 @@
 "357571","2020-05-04 22:41:15","http://spdtextile.com/sclas/10Bl2.exe","offline","malware_download","exe,opendir","https://urlhaus.abuse.ch/url/357571/","abuse_ch"
 "357570","2020-05-04 22:41:13","http://spdtextile.com/sclas/100l1.exe","offline","malware_download","exe,opendir","https://urlhaus.abuse.ch/url/357570/","abuse_ch"
 "357569","2020-05-04 22:41:11","http://spdtextile.com/sclas/rockstar.php","offline","malware_download","exe,IcedID","https://urlhaus.abuse.ch/url/357569/","abuse_ch"
-"357568","2020-05-04 22:41:07","http://200.116.110.36:11577/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/357568/","geenensp"
+"357568","2020-05-04 22:41:07","http://200.116.110.36:11577/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/357568/","geenensp"
 "357567","2020-05-04 22:41:03","http://anuragsharma.co.in/tjvkpdmcnkxf/852935/ServiceContractAgreement_852935_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357567/","spamhaus"
 "357566","2020-05-04 22:41:00","https://pastebin.com/raw/UNrESCQv","offline","malware_download","None","https://urlhaus.abuse.ch/url/357566/","JayTHL"
 "357565","2020-05-04 22:40:49","https://pastebin.com/raw/t6t1MERC","offline","malware_download","None","https://urlhaus.abuse.ch/url/357565/","JayTHL"
@@ -2056,7 +2337,7 @@
 "357429","2020-05-04 22:13:48","https://spdtextile.com/sport/163Cl2.exe","offline","malware_download","exe,opendir","https://urlhaus.abuse.ch/url/357429/","abuse_ch"
 "357428","2020-05-04 22:13:37","https://spdtextile.com/sport/161Cl2.exe","offline","malware_download","exe,opendir","https://urlhaus.abuse.ch/url/357428/","abuse_ch"
 "357427","2020-05-04 22:13:34","https://spdtextile.com/sport/15Cl2.exe","offline","malware_download","exe,IcedID,opendir","https://urlhaus.abuse.ch/url/357427/","abuse_ch"
-"357426","2020-05-04 22:13:29","http://voyageur.sisnettdesign.com/powvuggoxqc/2164661/ServiceContractAgreement_2164661_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357426/","spamhaus"
+"357426","2020-05-04 22:13:29","http://voyageur.sisnettdesign.com/powvuggoxqc/2164661/ServiceContractAgreement_2164661_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357426/","spamhaus"
 "357425","2020-05-04 22:13:18","https://spdtextile.com/sport/159Cl2.exe","offline","malware_download","exe,IcedID,opendir","https://urlhaus.abuse.ch/url/357425/","abuse_ch"
 "357424","2020-05-04 22:13:06","https://spdtextile.com/sport/158Cl2.exe","offline","malware_download","exe,IcedID,opendir","https://urlhaus.abuse.ch/url/357424/","abuse_ch"
 "357423","2020-05-04 22:13:01","https://spdtextile.com/sport/157Cl2.exe","offline","malware_download","exe,IcedID,opendir","https://urlhaus.abuse.ch/url/357423/","abuse_ch"
@@ -2158,7 +2439,7 @@
 "357327","2020-05-04 21:59:38","http://185.172.110.224/zy/arm7","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/357327/","Gandylyan1"
 "357326","2020-05-04 21:59:37","http://185.172.110.224/zy/arm5","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/357326/","Gandylyan1"
 "357325","2020-05-04 21:59:35","https://spdtextile.com/sport/rockstar.php","offline","malware_download","exe,IcedID,opendir","https://urlhaus.abuse.ch/url/357325/","abuse_ch"
-"357324","2020-05-04 21:58:16","http://180.189.104.106:7516/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/357324/","geenensp"
+"357324","2020-05-04 21:58:16","http://180.189.104.106:7516/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/357324/","geenensp"
 "357323","2020-05-04 21:58:12","https://ookul.org/wp-content/uploads/2020/05/tohwlkejpdfe/ServiceContractAgreement_6440560_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357323/","spamhaus"
 "357322","2020-05-04 21:57:37","https://auditionssupport.com/mxadxw/ServiceContractAgreement_51175154_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357322/","spamhaus"
 "357321","2020-05-04 21:39:29","https://getfashionmania.com/wp-content/uploads/2020/05/xipim/ServiceContractAgreement_36520492_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357321/","spamhaus"
@@ -2215,8 +2496,8 @@
 "357270","2020-05-04 20:53:07","http://5.252.179.60/c/mipsel","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/357270/","Gandylyan1"
 "357269","2020-05-04 20:53:05","http://5.252.179.60/c/aarch64","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/357269/","Gandylyan1"
 "357268","2020-05-04 20:53:03","http://5.252.179.60/c/armv7l","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/357268/","Gandylyan1"
-"357267","2020-05-04 20:50:15","https://jim.webengineerteam.com/wp-content/uploads/2020/05/vpjfwnydldc/ServiceContractAgreement_1933558_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357267/","spamhaus"
-"357266","2020-05-04 20:50:10","https://jim.webengineerteam.com/wp-content/uploads/2020/05/vpjfwnydldc/ServiceContractAgreement_297243_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357266/","spamhaus"
+"357267","2020-05-04 20:50:15","https://jim.webengineerteam.com/wp-content/uploads/2020/05/vpjfwnydldc/ServiceContractAgreement_1933558_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357267/","spamhaus"
+"357266","2020-05-04 20:50:10","https://jim.webengineerteam.com/wp-content/uploads/2020/05/vpjfwnydldc/ServiceContractAgreement_297243_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357266/","spamhaus"
 "357265","2020-05-04 20:49:03","http://5.252.179.60/c/x86_64","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/357265/","Gandylyan1"
 "357264","2020-05-04 20:39:21","http://157.245.217.96/SBIDIOT/zte","offline","malware_download","None","https://urlhaus.abuse.ch/url/357264/","JayTHL"
 "357263","2020-05-04 20:39:19","http://157.245.217.96/SBIDIOT/yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/357263/","JayTHL"
@@ -2232,18 +2513,18 @@
 "357253","2020-05-04 20:38:08","http://157.245.217.96/SBIDIOT/arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/357253/","JayTHL"
 "357252","2020-05-04 20:38:06","http://157.245.217.96/SBIDIOT/arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/357252/","JayTHL"
 "357251","2020-05-04 20:38:03","http://157.245.217.96/SBIDIOT/arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/357251/","JayTHL"
-"357250","2020-05-04 20:11:33","https://nexity.me/wp-content/uploads/2020/05/lujfkbtyj/947512241/ServiceContractAgreement_947512241_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357250/","spamhaus"
+"357250","2020-05-04 20:11:33","https://nexity.me/wp-content/uploads/2020/05/lujfkbtyj/947512241/ServiceContractAgreement_947512241_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357250/","spamhaus"
 "357249","2020-05-04 20:10:31","http://www.omitkyspisar.cz/wp-content/uploads/kyuod/ServiceContractAgreement_64190143_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357249/","spamhaus"
 "357248","2020-05-04 20:10:29","https://bistlearn.ir/wp-content/uploads/2020/05/rpbtautvhk/ServiceContractAgreement_346994_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357248/","spamhaus"
-"357247","2020-05-04 20:10:19","http://www.oxcssa.org.uk/wp-content/plugins/apikey/cyevr/ServiceContractAgreement_144649_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357247/","spamhaus"
-"357246","2020-05-04 20:10:14","http://www.monmariage.info/wp-content/uploads/2020/05/xixjwyvze/ServiceContractAgreement_4222165_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357246/","spamhaus"
+"357247","2020-05-04 20:10:19","http://www.oxcssa.org.uk/wp-content/plugins/apikey/cyevr/ServiceContractAgreement_144649_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357247/","spamhaus"
+"357246","2020-05-04 20:10:14","http://www.monmariage.info/wp-content/uploads/2020/05/xixjwyvze/ServiceContractAgreement_4222165_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357246/","spamhaus"
 "357245","2020-05-04 20:09:43","http://www.omitkyspisar.cz/wp-content/uploads/kyuod/97641/ServiceContractAgreement_97641_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357245/","spamhaus"
 "357244","2020-05-04 20:09:41","http://www.sernayconsultores.com/wp-content/uploads/2020/05/advlzrmcxs/ServiceContractAgreement_080131_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357244/","spamhaus"
 "357243","2020-05-04 20:09:27","https://freelancerauditions.com/mhymnvm/ServiceContractAgreement_256555708_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357243/","spamhaus"
 "357242","2020-05-04 20:09:24","https://xueha.fun/wp-content/plugins/apikey/irwhomunbr/ServiceContractAgreement_75002172_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357242/","spamhaus"
 "357241","2020-05-04 20:09:18","https://bazzarghat.com/wp-content/uploads/2020/05/vxksz/ServiceContractAgreement_345711_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357241/","spamhaus"
 "357240","2020-05-04 20:09:13","https://xueha.fun/wp-content/plugins/apikey/irwhomunbr/ServiceContractAgreement_36242183_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357240/","spamhaus"
-"357239","2020-05-04 20:08:51","http://www.monmariage.info/wp-content/uploads/2020/05/ylwfuwedi/ServiceContractAgreement_3245085_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357239/","spamhaus"
+"357239","2020-05-04 20:08:51","http://www.monmariage.info/wp-content/uploads/2020/05/ylwfuwedi/ServiceContractAgreement_3245085_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357239/","spamhaus"
 "357238","2020-05-04 20:08:48","https://bistlearn.ir/wp-content/uploads/2020/05/rpbtautvhk/ServiceContractAgreement_06921680_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357238/","spamhaus"
 "357237","2020-05-04 20:08:46","http://anuragsharma.co.in/tjvkpdmcnkxf/860037038/ServiceContractAgreement_860037038_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357237/","spamhaus"
 "357236","2020-05-04 20:08:41","https://gold-coin-pawnshop.com/cnjdrit/ServiceContractAgreement_842414066_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357236/","spamhaus"
@@ -2253,7 +2534,7 @@
 "357232","2020-05-04 20:07:41","http://191.13.184.58:51459/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/357232/","geenensp"
 "357231","2020-05-04 20:07:35","http://archivelviv.gov.ua/wp-content/uploads/2020/05/xjkchfsegik/ServiceContractAgreement_48120_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357231/","spamhaus"
 "357230","2020-05-04 20:07:29","https://freelancerauditions.com/mhymnvm/630002026/ServiceContractAgreement_630002026_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357230/","spamhaus"
-"357229","2020-05-04 20:07:24","http://daithanhphung.com/wp-content/uploads/bwwwvc/ServiceContractAgreement_39744762_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357229/","spamhaus"
+"357229","2020-05-04 20:07:24","http://daithanhphung.com/wp-content/uploads/bwwwvc/ServiceContractAgreement_39744762_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357229/","spamhaus"
 "357228","2020-05-04 20:07:17","http://14.48.88.250:25973/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/357228/","geenensp"
 "357227","2020-05-04 20:07:11","https://pratapnursery.com/uopghjygi/37243/ServiceContractAgreement_37243_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357227/","spamhaus"
 "357226","2020-05-04 20:07:08","http://77.73.69.50/mips","offline","malware_download","ascii","https://urlhaus.abuse.ch/url/357226/","geenensp"
@@ -2349,11 +2630,11 @@
 "357136","2020-05-04 18:02:56","https://toulousa.com/wp-content/uploads/2020/05/kviajlyujzpw/98242552/ServiceContractAgreement_98242552_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357136/","spamhaus"
 "357135","2020-05-04 18:02:24","https://gold-coin-pawnshop.com/cnjdrit/805227/ServiceContractAgreement_805227_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357135/","spamhaus"
 "357134","2020-05-04 18:01:47","http://anuragsharma.co.in/tjvkpdmcnkxf/ServiceContractAgreement_24372_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357134/","spamhaus"
-"357133","2020-05-04 18:01:13","https://mangawt.com/wp-content/uploads/afidlweynxoz/ServiceContractAgreement_482816428_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357133/","spamhaus"
+"357133","2020-05-04 18:01:13","https://mangawt.com/wp-content/uploads/afidlweynxoz/ServiceContractAgreement_482816428_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357133/","spamhaus"
 "357132","2020-05-04 18:00:38","http://www.gopala.es/wp-content/uploads/2020/05/ukrhkcdrxyr/ServiceContractAgreement_145107906_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357132/","spamhaus"
 "357131","2020-05-04 17:54:09","http://voyageur.sisnettdesign.com/powvuggoxqc/4980696/ServiceContractAgreement_4980696_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357131/","spamhaus"
 "357130","2020-05-04 17:53:34","http://sodmalwa.pl/PRT1221D2.pdf.jar","online","malware_download","Adwind,jar","https://urlhaus.abuse.ch/url/357130/","neoxmorpheus1"
-"357129","2020-05-04 17:49:47","https://nexity.me/wp-content/uploads/2020/05/lujfkbtyj/865695461/ServiceContractAgreement_865695461_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357129/","spamhaus"
+"357129","2020-05-04 17:49:47","https://nexity.me/wp-content/uploads/2020/05/lujfkbtyj/865695461/ServiceContractAgreement_865695461_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357129/","spamhaus"
 "357128","2020-05-04 17:49:09","https://toulousa.com/wp-content/uploads/2020/05/kviajlyujzpw/ServiceContractAgreement_837434_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357128/","spamhaus"
 "357127","2020-05-04 17:45:58","https://onedrive.live.com/download?cid=FF1D187273DFBF73&resid=FF1D187273DFBF73!694&authkey=AA5jQZJSp0eSr1s","online","malware_download","None","https://urlhaus.abuse.ch/url/357127/","JayTHL"
 "357126","2020-05-04 17:45:53","https://onedrive.live.com/download?cid=FB654BF91D1A9765&resid=FB654BF91D1A9765!1134&authkey=AHxTuKw3uEmyi1E","online","malware_download","None","https://urlhaus.abuse.ch/url/357126/","JayTHL"
@@ -2379,7 +2660,7 @@
 "357106","2020-05-04 17:34:40","http://SnackFreebie.com/oejellniu/865776096/ServiceContractAgreement_865776096_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357106/","spamhaus"
 "357105","2020-05-04 17:34:31","https://tomorrowearth.net/wp-content/uploads/2020/05/inenzr/06173828/ServiceContractAgreement_06173828_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357105/","spamhaus"
 "357104","2020-05-04 17:34:25","https://pratapnursery.com/uopghjygi/ServiceContractAgreement_93950705_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357104/","spamhaus"
-"357103","2020-05-04 17:34:18","http://www.monmariage.info/wp-content/uploads/2020/05/xixjwyvze/ServiceContractAgreement_71981_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357103/","spamhaus"
+"357103","2020-05-04 17:34:18","http://www.monmariage.info/wp-content/uploads/2020/05/xixjwyvze/ServiceContractAgreement_71981_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357103/","spamhaus"
 "357102","2020-05-04 17:34:13","http://www.oxcssa.org.uk/wp-content/plugins/apikey/cyevr/ServiceContractAgreement_5290042_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357102/","spamhaus"
 "357101","2020-05-04 17:19:35","http://23.95.89.78/SBIDIOT/zte","offline","malware_download","None","https://urlhaus.abuse.ch/url/357101/","JayTHL"
 "357100","2020-05-04 17:19:32","http://23.95.89.78/SBIDIOT/yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/357100/","JayTHL"
@@ -2404,7 +2685,7 @@
 "357081","2020-05-04 17:18:10","http://51.89.119.154/RYrydry","offline","malware_download","None","https://urlhaus.abuse.ch/url/357081/","JayTHL"
 "357080","2020-05-04 17:18:07","http://51.89.119.154/jhUOH","offline","malware_download","None","https://urlhaus.abuse.ch/url/357080/","JayTHL"
 "357079","2020-05-04 17:18:04","http://51.89.119.154/JIPJIPJj","offline","malware_download","None","https://urlhaus.abuse.ch/url/357079/","JayTHL"
-"357078","2020-05-04 17:15:06","http://www.oxcssa.org.uk/wp-content/plugins/apikey/cyevr/63950/ServiceContractAgreement_63950_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357078/","spamhaus"
+"357078","2020-05-04 17:15:06","http://www.oxcssa.org.uk/wp-content/plugins/apikey/cyevr/63950/ServiceContractAgreement_63950_05012020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357078/","spamhaus"
 "357077","2020-05-04 17:14:17","https://schoolqualification.com/wcykt/833003561/ServiceContractAgreement_833003561_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357077/","spamhaus"
 "357076","2020-05-04 17:14:07","http://anuragsharma.co.in/tjvkpdmcnkxf/3551203/ServiceContractAgreement_3551203_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357076/","spamhaus"
 "357075","2020-05-04 17:13:06","https://toulousa.com/wp-content/uploads/2020/05/kviajlyujzpw/ServiceContractAgreement_2983828_05012020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/357075/","spamhaus"
@@ -2421,7 +2702,7 @@
 "357064","2020-05-04 15:50:06","http://59.127.31.71:32414/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/357064/","geenensp"
 "357063","2020-05-04 15:38:32","http://tristatehf.org/dqbfyhal/88888.png","offline","malware_download","Qakbot,qbot,Quakbot","https://urlhaus.abuse.ch/url/357063/","notwhickey"
 "357062","2020-05-04 15:38:25","http://mitonegbh.xyz/xml/kanda.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/357062/","anonymous"
-"357061","2020-05-04 15:38:20","http://mydesign.thinkeraibirds.com/nhawwgmvo/88888.png","online","malware_download","exe,Qakbot,Quakbot,spx111","https://urlhaus.abuse.ch/url/357061/","lazyactivist192"
+"357061","2020-05-04 15:38:20","http://mydesign.thinkeraibirds.com/nhawwgmvo/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx111","https://urlhaus.abuse.ch/url/357061/","lazyactivist192"
 "357060","2020-05-04 15:38:19","http://mvdrepair.com/urbeopk/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx111","https://urlhaus.abuse.ch/url/357060/","lazyactivist192"
 "357059","2020-05-04 15:38:11","http://hotelbharatpurpalace.com/fjtpbqbq/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx111","https://urlhaus.abuse.ch/url/357059/","lazyactivist192"
 "357058","2020-05-04 15:38:00","http://new.tristatehs.com/ohbjeojbvi/88888.png","offline","malware_download","exe,Qakbot,Quakbot,spx111","https://urlhaus.abuse.ch/url/357058/","lazyactivist192"
@@ -2487,17 +2768,17 @@
 "356998","2020-05-04 14:03:29","http://37.49.226.209/bins/hoho.xtensa","online","malware_download","None","https://urlhaus.abuse.ch/url/356998/","JayTHL"
 "356997","2020-05-04 14:03:27","http://37.49.226.209/bins/hoho.root","online","malware_download","None","https://urlhaus.abuse.ch/url/356997/","JayTHL"
 "356996","2020-05-04 14:03:25","http://37.49.226.209/bins/hoho.arc","online","malware_download","None","https://urlhaus.abuse.ch/url/356996/","JayTHL"
-"356995","2020-05-04 14:03:23","http://23.254.211.179/Anti_Bins/Antisocial.x86","online","malware_download","None","https://urlhaus.abuse.ch/url/356995/","JayTHL"
-"356994","2020-05-04 14:03:20","http://23.254.211.179/Anti_Bins/Antisocial.spc","online","malware_download","None","https://urlhaus.abuse.ch/url/356994/","JayTHL"
-"356993","2020-05-04 14:03:18","http://23.254.211.179/Anti_Bins/Antisocial.sh4","online","malware_download","None","https://urlhaus.abuse.ch/url/356993/","JayTHL"
-"356992","2020-05-04 14:03:15","http://23.254.211.179/Anti_Bins/Antisocial.ppc","online","malware_download","None","https://urlhaus.abuse.ch/url/356992/","JayTHL"
-"356991","2020-05-04 14:03:13","http://23.254.211.179/Anti_Bins/Antisocial.mpsl","online","malware_download","None","https://urlhaus.abuse.ch/url/356991/","JayTHL"
-"356990","2020-05-04 14:03:08","http://23.254.211.179/Anti_Bins/Antisocial.mips","online","malware_download","None","https://urlhaus.abuse.ch/url/356990/","JayTHL"
-"356989","2020-05-04 14:03:06","http://23.254.211.179/Anti_Bins/Antisocial.m68k","online","malware_download","None","https://urlhaus.abuse.ch/url/356989/","JayTHL"
-"356988","2020-05-04 14:03:03","http://23.254.211.179/Anti_Bins/Antisocial.arm7","online","malware_download","None","https://urlhaus.abuse.ch/url/356988/","JayTHL"
-"356987","2020-05-04 14:03:00","http://23.254.211.179/Anti_Bins/Antisocial.arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/356987/","JayTHL"
-"356986","2020-05-04 14:02:58","http://23.254.211.179/Anti_Bins/Antisocial.arm5","online","malware_download","None","https://urlhaus.abuse.ch/url/356986/","JayTHL"
-"356985","2020-05-04 14:02:54","http://23.254.211.179/Anti_Bins/Antisocial.arm","online","malware_download","None","https://urlhaus.abuse.ch/url/356985/","JayTHL"
+"356995","2020-05-04 14:03:23","http://23.254.211.179/Anti_Bins/Antisocial.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/356995/","JayTHL"
+"356994","2020-05-04 14:03:20","http://23.254.211.179/Anti_Bins/Antisocial.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/356994/","JayTHL"
+"356993","2020-05-04 14:03:18","http://23.254.211.179/Anti_Bins/Antisocial.sh4","offline","malware_download","None","https://urlhaus.abuse.ch/url/356993/","JayTHL"
+"356992","2020-05-04 14:03:15","http://23.254.211.179/Anti_Bins/Antisocial.ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/356992/","JayTHL"
+"356991","2020-05-04 14:03:13","http://23.254.211.179/Anti_Bins/Antisocial.mpsl","offline","malware_download","None","https://urlhaus.abuse.ch/url/356991/","JayTHL"
+"356990","2020-05-04 14:03:08","http://23.254.211.179/Anti_Bins/Antisocial.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/356990/","JayTHL"
+"356989","2020-05-04 14:03:06","http://23.254.211.179/Anti_Bins/Antisocial.m68k","offline","malware_download","None","https://urlhaus.abuse.ch/url/356989/","JayTHL"
+"356988","2020-05-04 14:03:03","http://23.254.211.179/Anti_Bins/Antisocial.arm7","offline","malware_download","None","https://urlhaus.abuse.ch/url/356988/","JayTHL"
+"356987","2020-05-04 14:03:00","http://23.254.211.179/Anti_Bins/Antisocial.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/356987/","JayTHL"
+"356986","2020-05-04 14:02:58","http://23.254.211.179/Anti_Bins/Antisocial.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/356986/","JayTHL"
+"356985","2020-05-04 14:02:54","http://23.254.211.179/Anti_Bins/Antisocial.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/356985/","JayTHL"
 "356984","2020-05-04 14:02:51","http://199.83.204.244:45683/","online","malware_download","None","https://urlhaus.abuse.ch/url/356984/","JayTHL"
 "356983","2020-05-04 14:02:47","http://199.83.204.244:45683/i","online","malware_download","None","https://urlhaus.abuse.ch/url/356983/","JayTHL"
 "356982","2020-05-04 14:02:42","http://192.236.146.53:1691/jigoku.x86","online","malware_download","None","https://urlhaus.abuse.ch/url/356982/","JayTHL"
@@ -2633,7 +2914,7 @@
 "356852","2020-05-04 09:56:03","http://107.174.83.166/beastmode/b3astmode.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356852/","zbetcheckin"
 "356851","2020-05-04 09:51:34","http://aaload05.top/download.php?file=4.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/356851/","zbetcheckin"
 "356850","2020-05-04 09:48:05","http://aaload05.top/download.php?file=6.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/356850/","zbetcheckin"
-"356849","2020-05-04 09:48:03","http://5.206.227.18/bot.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356849/","zbetcheckin"
+"356849","2020-05-04 09:48:03","http://5.206.227.18/bot.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356849/","zbetcheckin"
 "356848","2020-05-04 09:43:07","http://185.163.46.6/a/x86_64","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/356848/","Gandylyan1"
 "356847","2020-05-04 09:43:05","http://185.163.46.6/a/mipsel","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/356847/","Gandylyan1"
 "356846","2020-05-04 09:43:02","http://185.163.46.6/a/armv7l","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/356846/","Gandylyan1"
@@ -2641,7 +2922,7 @@
 "356844","2020-05-04 09:32:18","http://hediyeinternetpaket.com/hediye20gb.apk","offline","malware_download","apk ","https://urlhaus.abuse.ch/url/356844/","mertcangokgoz"
 "356843","2020-05-04 09:31:45","http://142.93.247.30/bins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/356843/","geenensp"
 "356842","2020-05-04 09:31:43","http://142.93.247.30/vvglma","offline","malware_download","64-bit,elf,x86-64","https://urlhaus.abuse.ch/url/356842/","geenensp"
-"356841","2020-05-04 09:31:40","http://xn--20gb-hediyefrsati-nvc.com/20gb_hediye_internet.apk","online","malware_download","apk ","https://urlhaus.abuse.ch/url/356841/","mertcangokgoz"
+"356841","2020-05-04 09:31:40","http://xn--20gb-hediyefrsati-nvc.com/20gb_hediye_internet.apk","offline","malware_download","apk ","https://urlhaus.abuse.ch/url/356841/","mertcangokgoz"
 "356840","2020-05-04 09:31:06","http://121.169.121.246:65440/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356840/","geenensp"
 "356839","2020-05-04 09:08:07","http://219.71.191.5:25482/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356839/","geenensp"
 "356838","2020-05-04 09:06:37","http://218.21.170.239:59690/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356838/","Gandylyan1"
@@ -2655,7 +2936,7 @@
 "356830","2020-05-04 09:04:18","http://110.179.50.161:49224/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356830/","Gandylyan1"
 "356829","2020-05-04 09:04:13","http://112.123.62.200:42743/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356829/","Gandylyan1"
 "356828","2020-05-04 09:03:32","http://222.140.37.5:51960/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356828/","Gandylyan1"
-"356827","2020-05-04 09:03:28","http://162.212.115.219:49659/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356827/","Gandylyan1"
+"356827","2020-05-04 09:03:28","http://162.212.115.219:49659/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356827/","Gandylyan1"
 "356826","2020-05-04 09:03:23","http://116.114.95.206:46666/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356826/","Gandylyan1"
 "356825","2020-05-04 09:02:04","http://107.174.83.166/beastmode/b3astmode.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356825/","zbetcheckin"
 "356824","2020-05-04 08:49:02","http://112.170.205.16:50202/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356824/","geenensp"
@@ -2670,7 +2951,7 @@
 "356815","2020-05-04 08:07:09","http://164.132.92.180/sh4","offline","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/356815/","hypoweb"
 "356814","2020-05-04 08:07:07","http://164.132.92.180/ppc","offline","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/356814/","hypoweb"
 "356813","2020-05-04 08:07:05","http://164.132.92.180/m68k","offline","malware_download","elf,hoaxcalls","https://urlhaus.abuse.ch/url/356813/","hypoweb"
-"356812","2020-05-04 08:07:02","http://5.206.227.18/bot/bot.aarch64","online","malware_download","elf","https://urlhaus.abuse.ch/url/356812/","hypoweb"
+"356812","2020-05-04 08:07:02","http://5.206.227.18/bot/bot.aarch64","offline","malware_download","elf","https://urlhaus.abuse.ch/url/356812/","hypoweb"
 "356811","2020-05-04 07:50:38","https://donoffermaster.best/update.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/356811/","JAMESWT_MHT"
 "356810","2020-05-04 07:47:11","https://mygov-warning.online/1351/FlashPlayer_11_5_4.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/356810/","JAMESWT_MHT"
 "356809","2020-05-04 07:36:02","http://45.147.228.245/window/GiYw2m7IsUhrfNy.exe","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/356809/","zbetcheckin"
@@ -2803,7 +3084,7 @@
 "356682","2020-05-04 00:04:31","http://199.83.204.244:45683/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356682/","Gandylyan1"
 "356681","2020-05-04 00:04:27","http://61.53.254.152:38201/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356681/","Gandylyan1"
 "356680","2020-05-04 00:04:22","http://111.43.223.78:46410/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356680/","Gandylyan1"
-"356679","2020-05-04 00:03:59","http://183.151.121.12:51234/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356679/","Gandylyan1"
+"356679","2020-05-04 00:03:59","http://183.151.121.12:51234/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356679/","Gandylyan1"
 "356678","2020-05-04 00:03:54","http://42.230.131.52:57851/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356678/","Gandylyan1"
 "356677","2020-05-04 00:03:51","http://211.137.225.47:41288/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356677/","Gandylyan1"
 "356676","2020-05-04 00:03:36","http://111.43.223.122:45465/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356676/","Gandylyan1"
@@ -2862,14 +3143,14 @@
 "356623","2020-05-03 18:04:43","http://172.36.43.148:48616/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356623/","Gandylyan1"
 "356622","2020-05-03 18:04:11","http://183.215.188.50:47959/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356622/","Gandylyan1"
 "356621","2020-05-03 18:04:07","http://111.43.223.108:46021/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356621/","Gandylyan1"
-"356620","2020-05-03 16:02:13","http://88.218.17.197/Seijin.arm4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356620/","zbetcheckin"
-"356619","2020-05-03 16:02:11","http://88.218.17.197/Seijin.ppc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356619/","zbetcheckin"
+"356620","2020-05-03 16:02:13","http://88.218.17.197/Seijin.arm4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356620/","zbetcheckin"
+"356619","2020-05-03 16:02:11","http://88.218.17.197/Seijin.ppc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356619/","zbetcheckin"
 "356618","2020-05-03 16:02:09","http://88.218.17.197/Seijin.i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356618/","zbetcheckin"
 "356617","2020-05-03 16:02:07","http://88.218.17.197/Seijin.sparc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356617/","zbetcheckin"
 "356616","2020-05-03 16:02:05","http://88.218.17.197/Seijin.x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356616/","zbetcheckin"
 "356615","2020-05-03 16:02:03","http://88.218.17.197/Seijin.i686","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356615/","zbetcheckin"
-"356614","2020-05-03 15:58:07","http://88.218.17.197/Seijin.mpsl","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356614/","zbetcheckin"
-"356613","2020-05-03 15:58:05","http://88.218.17.197/Seijin.arm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356613/","zbetcheckin"
+"356614","2020-05-03 15:58:07","http://88.218.17.197/Seijin.mpsl","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356614/","zbetcheckin"
+"356613","2020-05-03 15:58:05","http://88.218.17.197/Seijin.arm6","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356613/","zbetcheckin"
 "356612","2020-05-03 15:58:03","http://88.218.17.197/Seijin.sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/356612/","zbetcheckin"
 "356611","2020-05-03 15:08:59","http://27.41.155.176:55270/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356611/","Gandylyan1"
 "356610","2020-05-03 15:08:56","http://27.41.135.19:52345/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356610/","Gandylyan1"
@@ -2905,7 +3186,7 @@
 "356580","2020-05-03 12:04:24","http://182.126.183.47:51058/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356580/","Gandylyan1"
 "356579","2020-05-03 12:04:20","http://42.225.204.32:59352/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356579/","Gandylyan1"
 "356578","2020-05-03 12:04:16","http://182.126.214.177:50081/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356578/","Gandylyan1"
-"356577","2020-05-03 12:04:11","http://120.212.211.71:53452/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356577/","Gandylyan1"
+"356577","2020-05-03 12:04:11","http://120.212.211.71:53452/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356577/","Gandylyan1"
 "356576","2020-05-03 12:04:03","http://211.137.225.77:43106/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356576/","Gandylyan1"
 "356575","2020-05-03 12:03:42","http://222.138.78.126:54517/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356575/","Gandylyan1"
 "356574","2020-05-03 12:03:37","http://172.39.5.18:60564/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356574/","Gandylyan1"
@@ -2955,13 +3236,13 @@
 "356530","2020-05-03 07:14:13","http://invoice7mukszq9nbpa7online.ru/unfeminized.exe","offline","malware_download","Amadey,exe,opendir","https://urlhaus.abuse.ch/url/356530/","abuse_ch"
 "356529","2020-05-03 07:07:04","https://mail-cloud.ngrok.io/bin/pounds-hopto_ngcXGkDrVs1.bin","offline","malware_download","AveMariaRAT,encrypted,GuLoader,rat","https://urlhaus.abuse.ch/url/356529/","abuse_ch"
 "356528","2020-05-03 06:36:31","https://paste.ee/r/fZTpP","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/356528/","gorimpthon"
-"356527","2020-05-03 06:36:27","http://112.184.221.213:32730/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356527/","geenensp"
+"356527","2020-05-03 06:36:27","http://112.184.221.213:32730/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356527/","geenensp"
 "356526","2020-05-03 06:36:22","http://125.137.120.38:41737/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356526/","geenensp"
 "356525","2020-05-03 06:36:17","http://122.176.72.49:23744/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356525/","geenensp"
 "356524","2020-05-03 06:36:14","http://105.154.186.113:1654/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356524/","geenensp"
 "356523","2020-05-03 06:36:09","http://37.49.226.160/fbot.x86","online","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/356523/","geenensp"
 "356522","2020-05-03 06:36:06","http://179.56.145.139:61114/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356522/","geenensp"
-"356521","2020-05-03 06:35:44","http://59.3.253.82:59286/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356521/","geenensp"
+"356521","2020-05-03 06:35:44","http://59.3.253.82:59286/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356521/","geenensp"
 "356520","2020-05-03 06:35:39","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/ServiceContractAgreement_1210_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356520/","spamhaus"
 "356519","2020-05-03 06:35:33","https://scoda.ir/wp-content/plugins/apikey/iehi/ServiceContractAgreement_8087_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356519/","spamhaus"
 "356518","2020-05-03 06:35:30","https://souq-aljwalat.com/wp-content/uploads/2020/05/zqwxkoa/5095/ServiceContractAgreement_5095_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356518/","spamhaus"
@@ -2984,7 +3265,7 @@
 "356501","2020-05-03 03:06:20","http://49.82.250.152:55074/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356501/","Gandylyan1"
 "356500","2020-05-03 03:06:14","http://211.137.225.116:36255/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356500/","Gandylyan1"
 "356499","2020-05-03 03:06:08","http://27.41.218.58:35422/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356499/","Gandylyan1"
-"356498","2020-05-03 03:06:02","http://176.113.161.116:48960/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356498/","Gandylyan1"
+"356498","2020-05-03 03:06:02","http://176.113.161.116:48960/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356498/","Gandylyan1"
 "356497","2020-05-03 03:06:00","http://58.243.122.144:51945/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356497/","Gandylyan1"
 "356496","2020-05-03 03:05:52","http://27.41.214.53:33064/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356496/","Gandylyan1"
 "356495","2020-05-03 03:05:47","http://111.42.103.51:52214/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356495/","Gandylyan1"
@@ -3200,7 +3481,7 @@
 "356285","2020-05-02 09:18:04","http://37.49.226.230/AB4g5/kiga.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356285/","zbetcheckin"
 "356284","2020-05-02 09:18:03","http://37.49.226.230/AB4g5/kiga.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356284/","zbetcheckin"
 "356283","2020-05-02 09:17:08","http://37.49.226.230/AB4g5/kiga.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356283/","zbetcheckin"
-"356282","2020-05-02 09:13:14","http://149.56.84.15/lmaoWTF/loligang.arm","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356282/","zbetcheckin"
+"356282","2020-05-02 09:13:14","http://149.56.84.15/lmaoWTF/loligang.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356282/","zbetcheckin"
 "356281","2020-05-02 09:13:10","http://149.56.84.15/lmaoWTF/loligang.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356281/","zbetcheckin"
 "356280","2020-05-02 09:13:08","http://149.56.84.15/lmaoWTF/loligang.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356280/","zbetcheckin"
 "356279","2020-05-02 09:13:05","http://37.49.226.230/AB4g5/kiga.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356279/","zbetcheckin"
@@ -3212,13 +3493,13 @@
 "356273","2020-05-02 09:04:22","http://61.241.170.153:40598/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356273/","Gandylyan1"
 "356272","2020-05-02 09:04:00","http://116.114.95.111:52212/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356272/","Gandylyan1"
 "356271","2020-05-02 09:03:57","http://123.4.54.173:47354/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356271/","Gandylyan1"
-"356270","2020-05-02 09:03:51","http://113.219.81.166:47060/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356270/","Gandylyan1"
+"356270","2020-05-02 09:03:51","http://113.219.81.166:47060/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356270/","Gandylyan1"
 "356269","2020-05-02 09:03:44","http://176.113.161.37:46433/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356269/","Gandylyan1"
 "356268","2020-05-02 09:03:41","http://123.4.156.19:38722/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356268/","Gandylyan1"
 "356267","2020-05-02 09:03:38","http://27.41.176.93:48950/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356267/","Gandylyan1"
 "356266","2020-05-02 09:03:24","http://180.116.210.174:33699/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356266/","Gandylyan1"
 "356265","2020-05-02 09:03:18","http://58.243.126.93:55511/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356265/","Gandylyan1"
-"356264","2020-05-02 09:03:14","http://49.70.127.10:34688/Mozi.m","online","malware_download","Mozi","https://urlhaus.abuse.ch/url/356264/","Gandylyan1"
+"356264","2020-05-02 09:03:14","http://49.70.127.10:34688/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356264/","Gandylyan1"
 "356263","2020-05-02 09:03:10","http://42.230.250.178:47584/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356263/","Gandylyan1"
 "356262","2020-05-02 09:03:06","http://221.210.211.25:46417/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/356262/","Gandylyan1"
 "356261","2020-05-02 09:02:05","http://37.49.226.230/AB4g5/kiga.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/356261/","zbetcheckin"
@@ -3237,7 +3518,7 @@
 "356248","2020-05-02 08:10:23","http://www.earthfields.co.ke/wp-content/uploads/2020/05/pvosvygcc/ServiceContractAgreement_9909_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356248/","spamhaus"
 "356247","2020-05-02 08:10:20","https://lesawilson.com/tgsxujpbbxp/5418/ServiceContractAgreement_5418_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356247/","spamhaus"
 "356246","2020-05-02 08:10:14","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/2980/ServiceContractAgreement_2980_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356246/","spamhaus"
-"356245","2020-05-02 08:10:09","http://clareiamente.clareiamente.com/hcbljo/4439/ServiceContractAgreement_4439_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356245/","spamhaus"
+"356245","2020-05-02 08:10:09","http://clareiamente.clareiamente.com/hcbljo/4439/ServiceContractAgreement_4439_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356245/","spamhaus"
 "356244","2020-05-02 08:10:03","http://skyfalss.ir/hacnhhy/7820/ServiceContractAgreement_7820_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356244/","spamhaus"
 "356243","2020-05-02 08:10:00","http://cp-30.theborough.com.au/ytexdxlqe/ServiceContractAgreement_4152_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356243/","spamhaus"
 "356242","2020-05-02 08:09:56","https://letsallter.com/wp-content/plugins/apikey/prxcnukt/3355/ServiceContractAgreement_3355_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356242/","spamhaus"
@@ -3253,7 +3534,7 @@
 "356232","2020-05-02 08:06:11","http://cp-30.theborough.com.au/ytexdxlqe/7597/ServiceContractAgreement_7597_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356232/","spamhaus"
 "356231","2020-05-02 08:06:09","http://skyfalss.ir/hacnhhy/7761/ServiceContractAgreement_7761_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356231/","spamhaus"
 "356230","2020-05-02 08:06:06","http://cp-30.theborough.com.au/ytexdxlqe/ServiceContractAgreement_7856_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356230/","spamhaus"
-"356229","2020-05-02 08:06:04","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/ServiceContractAgreement_6379_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356229/","spamhaus"
+"356229","2020-05-02 08:06:04","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/ServiceContractAgreement_6379_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356229/","spamhaus"
 "356228","2020-05-02 08:06:02","http://skyfalss.ir/hacnhhy/ServiceContractAgreement_5278_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356228/","spamhaus"
 "356227","2020-05-02 08:05:59","https://eco-choice.co.uk/wp-content/uploads/2020/05/uhhjzpeozb/ServiceContractAgreement_6603_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356227/","spamhaus"
 "356226","2020-05-02 08:05:57","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/ServiceContractAgreement_4545_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356226/","spamhaus"
@@ -3276,7 +3557,7 @@
 "356209","2020-05-02 08:02:42","http://clareiamente.clareiamente.com/hcbljo/ServiceContractAgreement_0258_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356209/","spamhaus"
 "356208","2020-05-02 08:02:09","https://scoda.ir/wp-content/plugins/apikey/iehi/ServiceContractAgreement_0280_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356208/","spamhaus"
 "356207","2020-05-02 08:01:36","https://souq-aljwalat.com/wp-content/uploads/2020/05/zqwxkoa/3679/ServiceContractAgreement_3679_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356207/","spamhaus"
-"356206","2020-05-02 08:00:34","http://quantominds.com/ystgg/3501/ServiceContractAgreement_3501_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356206/","spamhaus"
+"356206","2020-05-02 08:00:34","http://quantominds.com/ystgg/3501/ServiceContractAgreement_3501_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356206/","spamhaus"
 "356205","2020-05-02 07:59:53","https://lancamento-oneparkperdizes.com.br/wp-content/plugins/apikey/pagyufz/7930/ServiceContractAgreement_7930_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356205/","spamhaus"
 "356204","2020-05-02 07:59:20","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/6863/ServiceContractAgreement_6863_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356204/","spamhaus"
 "356203","2020-05-02 07:58:46","https://emobilodeme.com/wp-content/uploads/2020/05/mlkf/ServiceContractAgreement_3822_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356203/","spamhaus"
@@ -3290,7 +3571,7 @@
 "356195","2020-05-02 07:48:05","http://healthcaring.xyz/wp-content/uploads/2020/04/tcabb/3944/ServiceContractAgreement_3944_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356195/","spamhaus"
 "356194","2020-05-02 07:48:01","https://company.horoguides.com/wp-content/uploads/2020/04/bttdyafe/0234/ServiceContractAgreement_0234_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356194/","spamhaus"
 "356193","2020-05-02 07:47:27","https://homedecors.com.au/fdug/5646/ServiceContractAgreement_5646_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356193/","spamhaus"
-"356192","2020-05-02 07:47:17","http://quantominds.com/ystgg/ServiceContractAgreement_3184_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356192/","spamhaus"
+"356192","2020-05-02 07:47:17","http://quantominds.com/ystgg/ServiceContractAgreement_3184_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356192/","spamhaus"
 "356191","2020-05-02 07:47:08","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/7970/ServiceContractAgreement_7970_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356191/","spamhaus"
 "356190","2020-05-02 07:47:05","http://clareiamente.clareiamente.com/hcbljo/8811/ServiceContractAgreement_8811_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356190/","spamhaus"
 "356189","2020-05-02 07:29:03","https://tatyefabio.clareiamente.com/iznyyhruec/8047/ServiceContractAgreement_8047_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356189/","spamhaus"
@@ -3317,7 +3598,7 @@
 "356168","2020-05-02 07:23:31","https://scoda.ir/wp-content/plugins/apikey/iehi/5885/ServiceContractAgreement_5885_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356168/","spamhaus"
 "356167","2020-05-02 07:23:29","http://clareiamente.clareiamente.com/hcbljo/ServiceContractAgreement_1780_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356167/","spamhaus"
 "356166","2020-05-02 07:23:26","http://skyfalss.ir/hacnhhy/2929/ServiceContractAgreement_2929_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356166/","spamhaus"
-"356165","2020-05-02 07:23:24","http://quantominds.com/ystgg/6222/ServiceContractAgreement_6222_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356165/","spamhaus"
+"356165","2020-05-02 07:23:24","http://quantominds.com/ystgg/6222/ServiceContractAgreement_6222_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356165/","spamhaus"
 "356164","2020-05-02 07:23:20","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/ServiceContractAgreement_5499_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356164/","spamhaus"
 "356163","2020-05-02 07:23:18","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/ServiceContractAgreement_0038_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356163/","spamhaus"
 "356162","2020-05-02 07:23:08","http://cp-30.theborough.com.au/ytexdxlqe/ServiceContractAgreement_5211_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356162/","spamhaus"
@@ -3369,7 +3650,7 @@
 "356116","2020-05-02 07:14:05","http://skyfalss.ir/hacnhhy/2172/ServiceContractAgreement_2172_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356116/","spamhaus"
 "356115","2020-05-02 07:14:03","http://www.earthfields.co.ke/wp-content/uploads/2020/05/pvosvygcc/ServiceContractAgreement_0078_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356115/","spamhaus"
 "356114","2020-05-02 07:14:00","https://eco-choice.co.uk/wp-content/uploads/2020/05/uhhjzpeozb/ServiceContractAgreement_3925_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356114/","spamhaus"
-"356113","2020-05-02 07:13:57","http://clareiamente.clareiamente.com/hcbljo/ServiceContractAgreement_2758_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356113/","spamhaus"
+"356113","2020-05-02 07:13:57","http://clareiamente.clareiamente.com/hcbljo/ServiceContractAgreement_2758_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356113/","spamhaus"
 "356112","2020-05-02 07:13:50","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/ServiceContractAgreement_4638_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356112/","spamhaus"
 "356111","2020-05-02 07:13:47","https://homedecors.com.au/fdug/7388/ServiceContractAgreement_7388_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356111/","spamhaus"
 "356110","2020-05-02 07:13:43","https://homedecors.com.au/fdug/6715/ServiceContractAgreement_6715_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356110/","spamhaus"
@@ -3383,7 +3664,7 @@
 "356102","2020-05-02 07:13:07","http://obinspirations.com/wp-content/uploads/2020/05/adnkf/ServiceContractAgreement_1306_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356102/","spamhaus"
 "356101","2020-05-02 07:04:04","https://tatyefabio.clareiamente.com/iznyyhruec/ServiceContractAgreement_1146_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356101/","spamhaus"
 "356100","2020-05-02 07:03:43","https://tatyefabio.clareiamente.com/iznyyhruec/ServiceContractAgreement_1950_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356100/","spamhaus"
-"356099","2020-05-02 07:03:38","http://175.199.142.182:46597/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356099/","geenensp"
+"356099","2020-05-02 07:03:38","http://175.199.142.182:46597/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356099/","geenensp"
 "356098","2020-05-02 07:03:32","http://www.earthfields.co.ke/wp-content/uploads/2020/05/pvosvygcc/ServiceContractAgreement_1159_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356098/","spamhaus"
 "356097","2020-05-02 07:03:27","https://letsallter.com/wp-content/plugins/apikey/prxcnukt/ServiceContractAgreement_2509_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356097/","spamhaus"
 "356096","2020-05-02 07:02:53","http://vistanewsite.ir/wp-content/uploads/2020/05/fraplwhzbdb/5836/ServiceContractAgreement_5836_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356096/","spamhaus"
@@ -3394,14 +3675,14 @@
 "356091","2020-05-02 07:01:36","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/ServiceContractAgreement_1559_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356091/","spamhaus"
 "356090","2020-05-02 07:01:02","http://37.49.226.230/AB4g5/kiga.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/356090/","geenensp"
 "356089","2020-05-02 07:00:15","http://61.77.146.65:20271/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356089/","geenensp"
-"356088","2020-05-02 07:00:09","http://175.212.95.112:16670/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356088/","geenensp"
+"356088","2020-05-02 07:00:09","http://175.212.95.112:16670/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/356088/","geenensp"
 "356087","2020-05-02 07:00:04","http://skyfalss.ir/hacnhhy/ServiceContractAgreement_7256_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356087/","spamhaus"
 "356086","2020-05-02 06:59:31","https://emobilodeme.com/wp-content/uploads/2020/05/mlkf/ServiceContractAgreement_4109_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356086/","spamhaus"
 "356085","2020-05-02 06:58:58","https://emobilodeme.com/wp-content/uploads/2020/05/mlkf/6262/ServiceContractAgreement_6262_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356085/","spamhaus"
 "356084","2020-05-02 06:58:24","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/5241/ServiceContractAgreement_5241_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356084/","spamhaus"
 "356083","2020-05-02 06:57:49","https://company.horoguides.com/wp-content/uploads/2020/04/bttdyafe/4290/ServiceContractAgreement_4290_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356083/","spamhaus"
 "356082","2020-05-02 06:56:47","http://www.omitkyspisar.cz/wp-content/uploads/fdif/4066/ServiceContractAgreement_4066_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356082/","spamhaus"
-"356081","2020-05-02 06:56:13","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/ServiceContractAgreement_1099_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356081/","spamhaus"
+"356081","2020-05-02 06:56:13","https://dbssistem.com.tr/wp-content/uploads/2020/05/nikdslx/ServiceContractAgreement_1099_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356081/","spamhaus"
 "356080","2020-05-02 06:55:40","https://lancamento-oneparkperdizes.com.br/wp-content/plugins/apikey/pagyufz/1528/ServiceContractAgreement_1528_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356080/","spamhaus"
 "356079","2020-05-02 06:55:07","https://onedrive.live.com/download?cid=E61E5F3F655316FA&resid=E61E5F3F655316FA%21127&authkey=ADuW61iLvQd_15w","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/356079/","lovemalware"
 "356078","2020-05-02 06:54:33","https://shop.factoryfamily.co/wp-content/plugins/apikey/gojckwf/4538/ServiceContractAgreement_4538_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/356078/","spamhaus"
@@ -3804,10 +4085,10 @@
 "355681","2020-05-01 18:03:20","http://42.232.224.254:50142/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355681/","Gandylyan1"
 "355680","2020-05-01 18:03:08","http://36.33.128.252:55275/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355680/","Gandylyan1"
 "355679","2020-05-01 18:03:05","http://110.18.194.3:42680/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355679/","Gandylyan1"
-"355678","2020-05-01 17:59:33","http://quantominds.com/ystgg/ServiceContractAgreement_0932_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355678/","spamhaus"
+"355678","2020-05-01 17:59:33","http://quantominds.com/ystgg/ServiceContractAgreement_0932_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355678/","spamhaus"
 "355677","2020-05-01 17:59:26","http://76.98.216.130:4709/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355677/","geenensp"
 "355676","2020-05-01 17:59:20","http://www.omitkyspisar.cz/wp-content/uploads/fdif/1959/ServiceContractAgreement_1959_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355676/","spamhaus"
-"355675","2020-05-01 17:59:16","http://quantominds.com/ystgg/ServiceContractAgreement_0152_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355675/","spamhaus"
+"355675","2020-05-01 17:59:16","http://quantominds.com/ystgg/ServiceContractAgreement_0152_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355675/","spamhaus"
 "355674","2020-05-01 17:59:08","https://eco-choice.co.uk/wp-content/uploads/2020/05/uhhjzpeozb/3236/ServiceContractAgreement_3236_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355674/","spamhaus"
 "355673","2020-05-01 17:59:06","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/ServiceContractAgreement_1987_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355673/","spamhaus"
 "355672","2020-05-01 17:48:23","https://celebritieswhogiveauctions.com/mtxo/ServiceContractAgreement_5010_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355672/","spamhaus"
@@ -3820,7 +4101,7 @@
 "355665","2020-05-01 17:41:01","http://cp-30.theborough.com.au/ytexdxlqe/1408/ServiceContractAgreement_1408_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355665/","spamhaus"
 "355664","2020-05-01 17:40:55","https://lesawilson.com/tgsxujpbbxp/1649/ServiceContractAgreement_1649_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355664/","spamhaus"
 "355663","2020-05-01 17:40:51","http://obinspirations.com/wp-content/uploads/2020/05/adnkf/2730/ServiceContractAgreement_2730_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355663/","spamhaus"
-"355662","2020-05-01 17:40:47","http://quantominds.com/ystgg/ServiceContractAgreement_3081_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355662/","spamhaus"
+"355662","2020-05-01 17:40:47","http://quantominds.com/ystgg/ServiceContractAgreement_3081_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355662/","spamhaus"
 "355661","2020-05-01 17:40:36","http://quantominds.com/ystgg/4280/ServiceContractAgreement_4280_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355661/","spamhaus"
 "355660","2020-05-01 17:40:27","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/6376/ServiceContractAgreement_6376_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355660/","spamhaus"
 "355659","2020-05-01 17:40:23","https://lesawilson.com/tgsxujpbbxp/5440/ServiceContractAgreement_5440_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355659/","spamhaus"
@@ -3852,10 +4133,10 @@
 "355633","2020-05-01 17:32:08","http://colombet-taxi.fr/fwtewqww/9881/ServiceContractAgreement_9881_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355633/","spamhaus"
 "355632","2020-05-01 17:31:35","https://sycrystalhk.com/wp-content/uploads/2020/05/duvplawtkw/ServiceContractAgreement_3569_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355632/","spamhaus"
 "355631","2020-05-01 17:29:33","https://pastebin.com/raw/4xn36WN9","offline","malware_download","None","https://urlhaus.abuse.ch/url/355631/","JayTHL"
-"355630","2020-05-01 17:28:10","http://5.206.227.18/bot.mipsel","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355630/","Gandylyan1"
-"355629","2020-05-01 17:28:07","http://5.206.227.18/bot.mips","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355629/","Gandylyan1"
-"355628","2020-05-01 17:28:05","http://5.206.227.18/bot.arm6","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355628/","Gandylyan1"
-"355627","2020-05-01 17:28:03","http://5.206.227.18/bot.arm5","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355627/","Gandylyan1"
+"355630","2020-05-01 17:28:10","http://5.206.227.18/bot.mipsel","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355630/","Gandylyan1"
+"355629","2020-05-01 17:28:07","http://5.206.227.18/bot.mips","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355629/","Gandylyan1"
+"355628","2020-05-01 17:28:05","http://5.206.227.18/bot.arm6","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355628/","Gandylyan1"
+"355627","2020-05-01 17:28:03","http://5.206.227.18/bot.arm5","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355627/","Gandylyan1"
 "355626","2020-05-01 17:26:34","http://securefileinterneationaltransferthroughm.duckdns.org/bg/vbc.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/355626/","oppimaniac"
 "355625","2020-05-01 17:25:06","http://45.95.168.254:1691//dvrbot.x86","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355625/","Gandylyan1"
 "355624","2020-05-01 17:25:04","http://45.95.168.254:1691//dvrbot.arm","offline","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/355624/","Gandylyan1"
@@ -3871,7 +4152,7 @@
 "355614","2020-05-01 16:43:05","https://handballrek.com/wp-content/uploads/2020/05/tipvbwbms/ServiceContractAgreement_4628_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355614/","spamhaus"
 "355613","2020-05-01 16:40:20","https://pastebin.com/raw/cXRUtga3","offline","malware_download","None","https://urlhaus.abuse.ch/url/355613/","JayTHL"
 "355612","2020-05-01 16:40:12","https://eco-choice.co.uk/wp-content/uploads/2020/05/uhhjzpeozb/5649/ServiceContractAgreement_5649_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355612/","spamhaus"
-"355611","2020-05-01 16:40:05","http://quantominds.com/ystgg/ServiceContractAgreement_1628_04302020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355611/","spamhaus"
+"355611","2020-05-01 16:40:05","http://quantominds.com/ystgg/ServiceContractAgreement_1628_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355611/","spamhaus"
 "355610","2020-05-01 16:31:04","http://www.rsantamariadelosangeles.es/wp-content/uploads/2020/04/etakxaxvjyl/7440/ServiceContractAgreement_7440_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355610/","spamhaus"
 "355609","2020-05-01 16:30:32","https://emobilodeme.com/wp-content/uploads/2020/05/mlkf/ServiceContractAgreement_4788_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355609/","spamhaus"
 "355608","2020-05-01 16:30:25","https://engineeringegypt.com/wp-content/uploads/2020/05/zgzkipvfto/5259/ServiceContractAgreement_5259_04302020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355608/","spamhaus"
@@ -3973,7 +4254,7 @@
 "355512","2020-05-01 13:21:47","https://cursdictie.ro/wp-content/uploads/2020/04/lrghgtmjic/9346385/ServiceContractAgreement_9346385_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355512/","spamhaus"
 "355511","2020-05-01 13:21:06","http://109.185.130.131:55537/4","online","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/355511/","geenensp"
 "355510","2020-05-01 13:19:35","https://storage-file.tk/remittance.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/355510/","zbetcheckin"
-"355509","2020-05-01 13:18:36","http://ffv32223.ru/Host_MdrjxhLseX6.bin","offline","malware_download","encrypted,GuLoader,NetWire,rat","https://urlhaus.abuse.ch/url/355509/","abuse_ch"
+"355509","2020-05-01 13:18:36","http://ffv32223.ru/Host_MdrjxhLseX6.bin","online","malware_download","encrypted,GuLoader,NetWire,rat","https://urlhaus.abuse.ch/url/355509/","abuse_ch"
 "355508","2020-05-01 13:17:34","https://cdn.discordapp.com/attachments/705344846206074881/705597522495930388/TT.PDF.Z","offline","malware_download","exe,rar","https://urlhaus.abuse.ch/url/355508/","malware_traffic"
 "355507","2020-05-01 13:05:05","http://85.10.21.212:55587/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/355507/","zbetcheckin"
 "355506","2020-05-01 13:02:18","http://ddl7.data.hu/get/276047/12415685/Order_002_PDF.gz","offline","malware_download","gz","https://urlhaus.abuse.ch/url/355506/","spamhaus"
@@ -4005,7 +4286,7 @@
 "355480","2020-05-01 12:03:07","http://120.199.0.43:54453/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/355480/","Gandylyan1"
 "355479","2020-05-01 11:59:08","https://www.h2obbs.cn/wp-content/themes/calliope/docs_3kj/10587151/Buy-Sell%20Agreement_10587151_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355479/","spamhaus"
 "355478","2020-05-01 11:57:04","https://pastebin.com/raw/DPiWB7eL","offline","malware_download","None","https://urlhaus.abuse.ch/url/355478/","JayTHL"
-"355477","2020-05-01 11:55:20","http://82.81.108.172:48371/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355477/","geenensp"
+"355477","2020-05-01 11:55:20","http://82.81.108.172:48371/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355477/","geenensp"
 "355476","2020-05-01 11:55:16","http://112.160.56.81:57741/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355476/","geenensp"
 "355475","2020-05-01 11:55:10","http://ddl7.data.hu/get/367667/12415684/quotation_for_Sayyar_PDF.gz","offline","malware_download","gz","https://urlhaus.abuse.ch/url/355475/","spamhaus"
 "355474","2020-05-01 11:48:42","https://mybook22.s3-us-west-1.amazonaws.com/DCMNT_ARQ09209881.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/355474/","abuse_ch"
@@ -4217,14 +4498,14 @@
 "355268","2020-05-01 01:55:33","https://pastebin.com/raw/wn4XZ9Xs","offline","malware_download","None","https://urlhaus.abuse.ch/url/355268/","JayTHL"
 "355267","2020-05-01 01:39:03","http://37.49.230.234/zeros6x.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/355267/","zbetcheckin"
 "355266","2020-05-01 01:35:04","http://amirunico.ddns.net/bins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/355266/","zbetcheckin"
-"355265","2020-05-01 01:23:07","http://ffv322.ru/Faexejames.msi","offline","malware_download","msi","https://urlhaus.abuse.ch/url/355265/","zbetcheckin"
+"355265","2020-05-01 01:23:07","http://ffv322.ru/Faexejames.msi","online","malware_download","msi","https://urlhaus.abuse.ch/url/355265/","zbetcheckin"
 "355264","2020-05-01 01:16:11","http://114.32.4.184:2367/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/355264/","zbetcheckin"
 "355263","2020-05-01 01:14:10","http://114.32.4.184:26950/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/355263/","zbetcheckin"
 "355262","2020-05-01 01:14:04","http://45.19.201.181:12645/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/355262/","zbetcheckin"
 "355261","2020-05-01 01:13:10","http://arifrehan.xyz/wp-content/uploads/2020/04/ksxdxoooi/781406/ServiceContractAgreement_781406_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355261/","malware_traffic"
 "355260","2020-05-01 01:13:04","https://www.azenzatowers.com/wp-content/uploads/2020/04/zgesczf/8171558/ServiceContractAgreement_8171558_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355260/","malware_traffic"
 "355259","2020-05-01 01:12:29","https://www.tourenhelicoptero.com/wp-content/uploads/2020/04/jrtnwyaolip/562447/ServiceContractAgreement_562447_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355259/","malware_traffic"
-"355258","2020-05-01 01:12:25","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_161004735_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355258/","malware_traffic"
+"355258","2020-05-01 01:12:25","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_161004735_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355258/","malware_traffic"
 "355257","2020-05-01 01:12:21","https://yuluobo.com/wp-content/plugins/apikey/jzpt/ServiceContractAgreement_940979882_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355257/","malware_traffic"
 "355256","2020-05-01 01:12:15","http://misskproductions.co.za/cgpnbjtwui/32956200/ServiceContractAgreement_32956200_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355256/","malware_traffic"
 "355255","2020-05-01 01:12:11","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/224253/ServiceContractAgreement_224253_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355255/","malware_traffic"
@@ -4237,8 +4518,8 @@
 "355248","2020-05-01 01:11:50","https://z.loyaltyaboveall.com/kvjkqh/ServiceContractAgreement_551435_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355248/","malware_traffic"
 "355247","2020-05-01 01:11:49","https://z.loyaltyaboveall.com/kvjkqh/ServiceContractAgreement_3784696_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355247/","malware_traffic"
 "355246","2020-05-01 01:11:47","https://z.loyaltyaboveall.com/kvjkqh/184304/ServiceContractAgreement_184304_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355246/","malware_traffic"
-"355245","2020-05-01 01:11:44","https://yuluobo.com/wp-content/plugins/apikey/jzpt/ServiceContractAgreement_17883167_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355245/","malware_traffic"
-"355244","2020-05-01 01:11:39","https://yuluobo.com/wp-content/plugins/apikey/jzpt/324564/ServiceContractAgreement_324564_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355244/","malware_traffic"
+"355245","2020-05-01 01:11:44","https://yuluobo.com/wp-content/plugins/apikey/jzpt/ServiceContractAgreement_17883167_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355245/","malware_traffic"
+"355244","2020-05-01 01:11:39","https://yuluobo.com/wp-content/plugins/apikey/jzpt/324564/ServiceContractAgreement_324564_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355244/","malware_traffic"
 "355243","2020-05-01 01:11:29","https://xn--d1aciabhfsdfe0a7e3b.xn--p1acf/wp-content/uploads/2020/04/vrydko/ServiceContractAgreement_236384825_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355243/","malware_traffic"
 "355242","2020-05-01 01:11:26","https://xn--d1aciabhfsdfe0a7e3b.xn--p1acf/wp-content/uploads/2020/04/vrydko/98512403/ServiceContractAgreement_98512403_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355242/","malware_traffic"
 "355241","2020-05-01 01:11:17","https://xn--d1aciabhfsdfe0a7e3b.xn--p1acf/wp-content/uploads/2020/04/vrydko/647654260/ServiceContractAgreement_647654260_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355241/","malware_traffic"
@@ -4297,10 +4578,10 @@
 "355188","2020-05-01 00:17:20","https://rrinteriores.neoistone.site/wp-content/uploads/2020/04/exskkcowpfp/ServiceContractAgreement_2886269_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355188/","malware_traffic"
 "355187","2020-05-01 00:17:07","https://rrinteriores.neoistone.site/wp-content/uploads/2020/04/exskkcowpfp/859391/ServiceContractAgreement_859391_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355187/","malware_traffic"
 "355186","2020-05-01 00:16:49","https://misskproductions.co.za/cgpnbjtwui/ServiceContractAgreement_806122_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355186/","malware_traffic"
-"355185","2020-05-01 00:16:46","https://misskproductions.co.za/cgpnbjtwui/ServiceContractAgreement_40276353_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355185/","malware_traffic"
+"355185","2020-05-01 00:16:46","https://misskproductions.co.za/cgpnbjtwui/ServiceContractAgreement_40276353_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355185/","malware_traffic"
 "355184","2020-05-01 00:16:42","https://misskproductions.co.za/cgpnbjtwui/ServiceContractAgreement_00386564_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355184/","malware_traffic"
-"355183","2020-05-01 00:16:39","https://misskproductions.co.za/cgpnbjtwui/70924/ServiceContractAgreement_70924_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355183/","malware_traffic"
-"355182","2020-05-01 00:16:35","https://misskproductions.co.za/cgpnbjtwui/54672/ServiceContractAgreement_54672_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355182/","malware_traffic"
+"355183","2020-05-01 00:16:39","https://misskproductions.co.za/cgpnbjtwui/70924/ServiceContractAgreement_70924_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355183/","malware_traffic"
+"355182","2020-05-01 00:16:35","https://misskproductions.co.za/cgpnbjtwui/54672/ServiceContractAgreement_54672_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355182/","malware_traffic"
 "355181","2020-05-01 00:16:31","https://misskproductions.co.za/cgpnbjtwui/53486746/ServiceContractAgreement_53486746_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355181/","malware_traffic"
 "355180","2020-05-01 00:16:24","https://misskproductions.co.za/cgpnbjtwui/43757/ServiceContractAgreement_43757_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355180/","malware_traffic"
 "355179","2020-05-01 00:16:17","https://laa.loyaltyaboveall.com/mptscpkfytn/ServiceContractAgreement_6684288_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355179/","malware_traffic"
@@ -4316,15 +4597,15 @@
 "355169","2020-05-01 00:12:12","https://jhorapatarastana.xyz/ptpkvgi/ServiceContractAgreement_338258_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355169/","malware_traffic"
 "355168","2020-05-01 00:12:09","https://jhorapatarastana.xyz/ptpkvgi/47157394/ServiceContractAgreement_47157394_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355168/","malware_traffic"
 "355167","2020-05-01 00:12:07","https://jhorapatarastana.xyz/ptpkvgi/04271/ServiceContractAgreement_04271_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355167/","malware_traffic"
-"355166","2020-05-01 00:12:05","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_763721_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355166/","malware_traffic"
+"355166","2020-05-01 00:12:05","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_763721_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355166/","malware_traffic"
 "355165","2020-05-01 00:11:59","http://www.kolibri-fabrika.ru/wp-content/uploads/2020/04/tlzgibsc/09861/ServiceContractAgreement_09861_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355165/","malware_traffic"
-"355164","2020-05-01 00:11:56","http://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_763721_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355164/","malware_traffic"
+"355164","2020-05-01 00:11:56","http://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_763721_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355164/","malware_traffic"
 "355163","2020-05-01 00:11:51","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_45023177_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355163/","malware_traffic"
-"355162","2020-05-01 00:11:41","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_16477_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355162/","malware_traffic"
+"355162","2020-05-01 00:11:41","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement_16477_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355162/","malware_traffic"
 "355161","2020-05-01 00:11:37","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/75213/ServiceContractAgreement_75213_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355161/","malware_traffic"
-"355160","2020-05-01 00:11:31","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/6862554/ServiceContractAgreement_6862554_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355160/","malware_traffic"
-"355159","2020-05-01 00:11:23","https://haisannhatrang.com.vn/wp-content/plugins/apikey/kndghkh/ServiceContractAgreement_7360825_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355159/","malware_traffic"
-"355158","2020-05-01 00:11:16","https://haisannhatrang.com.vn/wp-content/plugins/apikey/kndghkh/ServiceContractAgreement_721247429_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355158/","malware_traffic"
+"355160","2020-05-01 00:11:31","https://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/6862554/ServiceContractAgreement_6862554_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355160/","malware_traffic"
+"355159","2020-05-01 00:11:23","https://haisannhatrang.com.vn/wp-content/plugins/apikey/kndghkh/ServiceContractAgreement_7360825_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355159/","malware_traffic"
+"355158","2020-05-01 00:11:16","https://haisannhatrang.com.vn/wp-content/plugins/apikey/kndghkh/ServiceContractAgreement_721247429_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355158/","malware_traffic"
 "355157","2020-05-01 00:11:11","https://freeprofessionalwebhosting.com/wp-content/uploads/2020/04/pozgtf/712977/ServiceContractAgreement_712977_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355157/","malware_traffic"
 "355156","2020-05-01 00:11:07","https://freeprofessionalwebhosting.com/wp-content/uploads/2020/04/pozgtf/54231367/ServiceContractAgreement_54231367_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355156/","malware_traffic"
 "355155","2020-05-01 00:11:04","https://enixc.com/wp-content/uploads/2020/04/uxai/ServiceContractAgreement_5410509_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355155/","malware_traffic"
@@ -4344,10 +4625,10 @@
 "355141","2020-05-01 00:09:11","https://avestor.uz/wp-content/uploads/2020/04/dbaogom/47424064/ServiceContractAgreement_47424064_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355141/","malware_traffic"
 "355140","2020-05-01 00:09:09","https://avestor.uz/wp-content/uploads/2020/04/dbaogom/2556655/ServiceContractAgreement_2556655_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355140/","malware_traffic"
 "355139","2020-05-01 00:09:07","https://avestor.uz/wp-content/uploads/2020/04/dbaogom/00347539/ServiceContractAgreement_00347539_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355139/","malware_traffic"
-"355138","2020-05-01 00:09:03","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_99901073_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355138/","malware_traffic"
-"355137","2020-05-01 00:09:00","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_53680_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355137/","malware_traffic"
-"355136","2020-05-01 00:08:58","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_3091456_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355136/","malware_traffic"
-"355135","2020-05-01 00:08:46","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_1215829_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355135/","malware_traffic"
+"355138","2020-05-01 00:09:03","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_99901073_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355138/","malware_traffic"
+"355137","2020-05-01 00:09:00","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_53680_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355137/","malware_traffic"
+"355136","2020-05-01 00:08:58","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_3091456_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355136/","malware_traffic"
+"355135","2020-05-01 00:08:46","http://www.mecbox.cn/wp-content/uploads/2020/04/pxrg/ServiceContractAgreement_1215829_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355135/","malware_traffic"
 "355134","2020-05-01 00:08:40","http://www.kolibri-fabrika.ru/wp-content/uploads/2020/04/tlzgibsc/42790/ServiceContractAgreement_42790_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355134/","malware_traffic"
 "355133","2020-05-01 00:08:38","http://www.kolibri-fabrika.ru/wp-content/uploads/2020/04/tlzgibsc/09861/ServiceC%20ontractAgreement_09861_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355133/","malware_traffic"
 "355132","2020-05-01 00:08:32","http://www.azenzatowers.com/wp-content/uploads/2020/04/zgesczf/ServiceContractAgreement_851535552_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355132/","malware_traffic"
@@ -4386,7 +4667,7 @@
 "355099","2020-05-01 00:00:52","http://phuphamca.com/rftt/ServiceContractAgreement_7034895_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355099/","malware_traffic"
 "355098","2020-05-01 00:00:35","http://phuphamca.com/rftt/ServiceContractAgreement_6422943_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355098/","malware_traffic"
 "355097","2020-05-01 00:00:08","http://phuphamca.com/rftt/ServiceContractAgreement_54864195_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355097/","malware_traffic"
-"355096","2020-04-30 23:59:57","http://phuphamca.com/rftt/ServiceContractAgreement_074722_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355096/","malware_traffic"
+"355096","2020-04-30 23:59:57","http://phuphamca.com/rftt/ServiceContractAgreement_074722_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355096/","malware_traffic"
 "355095","2020-04-30 23:59:49","http://phuphamca.com/rftt/208425456/ServiceContractAgreement_208425456_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355095/","malware_traffic"
 "355094","2020-04-30 23:59:42","http://mecbox.cn/wp-content/uploads/2020/04/pxrg/servicecontractagreement_83409172_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355094/","malware_traffic"
 "355093","2020-04-30 23:59:38","http://kposter.alexandruplesea.ro/xspqzuhv/ServiceContractAgreement_74979218_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355093/","malware_traffic"
@@ -4403,7 +4684,7 @@
 "355082","2020-04-30 23:56:04","http://adnquocte.com/jttlp/ServiceContractAgreement_19794501_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355082/","malware_traffic"
 "355081","2020-04-30 23:55:58","http://adnquocte.com/jttlp/47851039/ServiceContractAgreement_47851039_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355081/","malware_traffic"
 "355080","2020-04-30 23:55:56","http://adnquocte.com/jttlp/277768/servicecontractagreement_277768_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355080/","malware_traffic"
-"355079","2020-04-30 23:55:52","http://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement%20_763721_04292020.zip","online","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355079/","malware_traffic"
+"355079","2020-04-30 23:55:52","http://itrigger.cn/wp-content/uploads/2020/04/wvcmkcon/ServiceContractAgreement%20_763721_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355079/","malware_traffic"
 "355078","2020-04-30 23:55:48","http://freeprofessionalwebhosting.com/wp-content/uploads/2020/04/pozgtf/712977/ServiceContractAgreement_712977_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355078/","malware_traffic"
 "355077","2020-04-30 23:55:45","http://enixc.com/wp-content/uploads/2020/04/uxai/78850/servicecontractagreement_78850_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355077/","malware_traffic"
 "355076","2020-04-30 23:55:40","http://enixc.com/wp-content/uploads/2020/04/uxai/47119/ServiceContractAgreement_47119_04292020.zip","offline","malware_download","Qakbot,qbot,spx109,zip","https://urlhaus.abuse.ch/url/355076/","malware_traffic"
@@ -4440,7 +4721,7 @@
 "355045","2020-04-30 20:21:04","http://167.250.49.155/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe","online","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/355045/","zbetcheckin"
 "355044","2020-04-30 20:20:06","http://167.250.49.155/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe.dom_1.exe","online","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/355044/","zbetcheckin"
 "355043","2020-04-30 20:20:04","http://167.250.49.155/bin/billi_4fa79931167d46f7ad70b0e5daf22b23.exe.dom_2.exe","online","malware_download","exe,meterpreter","https://urlhaus.abuse.ch/url/355043/","zbetcheckin"
-"355042","2020-04-30 20:17:03","http://billieellish.org/scandale/Adobe,%20Acrobat%20PDF%20Writer%203.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355042/","zbetcheckin"
+"355042","2020-04-30 20:17:03","http://billieellish.org/scandale/Adobe,%20Acrobat%20PDF%20Writer%203.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/355042/","zbetcheckin"
 "355041","2020-04-30 19:59:10","http://yolks.bestsellertwo.net/order/Purchase%20Sheet%202020.GZ","offline","malware_download","None","https://urlhaus.abuse.ch/url/355041/","JayTHL"
 "355040","2020-04-30 19:59:06","http://yolks.bestsellertwo.net/Purchase%20Order.PDF.GZ","offline","malware_download","None","https://urlhaus.abuse.ch/url/355040/","JayTHL"
 "355039","2020-04-30 19:56:04","https://srv-file9.gofile.io/download/Zw9Mex/OMS_FINANCIAL.SUPPORT.MEASURESpdf.vbs","offline","malware_download","md5:949c27be17c3828e6f4109056980fad3","https://urlhaus.abuse.ch/url/355039/","c_APT_ure"
@@ -4462,15 +4743,15 @@
 "355023","2020-04-30 18:09:45","https://data4i.com/azkcswshvv/88295925/ServiceContractAgreement_88295925_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355023/","spamhaus"
 "355022","2020-04-30 18:09:41","https://vibicloud.com/wp-content/uploads/2020/04/bluoljyrzh/ServiceContractAgreement_517631_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355022/","spamhaus"
 "355021","2020-04-30 18:09:32","http://khoztrip.ir/wp-content/uploads/2020/04/dyvopqaibo/ServiceContractAgreement_30519863_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355021/","spamhaus"
-"355020","2020-04-30 18:09:27","http://adnquocte.com/jttlp/749518052/ServiceContractAgreement_749518052_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355020/","spamhaus"
+"355020","2020-04-30 18:09:27","http://adnquocte.com/jttlp/749518052/ServiceContractAgreement_749518052_04292020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355020/","spamhaus"
 "355019","2020-04-30 18:09:23","http://davidd47.sg-host.com/jqpfuszuh/ServiceContractAgreement_702732_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355019/","spamhaus"
 "355018","2020-04-30 18:09:10","https://jhorapatarastana.xyz/ptpkvgi/224605/ServiceContractAgreement_224605_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355018/","spamhaus"
-"355017","2020-04-30 18:09:07","http://adnquocte.com/jttlp/6169995/ServiceContractAgreement_6169995_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355017/","spamhaus"
+"355017","2020-04-30 18:09:07","http://adnquocte.com/jttlp/6169995/ServiceContractAgreement_6169995_04292020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355017/","spamhaus"
 "355016","2020-04-30 18:08:32","http://167.250.49.155/scandale/5a765351046fea1490d20f25.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355016/","zbetcheckin"
 "355015","2020-04-30 18:08:29","http://167.250.49.155/scandale/file_4571518150a8181b403df4ae7ad54ce8b16ded0c.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355015/","zbetcheckin"
-"355014","2020-04-30 18:08:25","https://billieellish.org/scandale/agent.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/355014/","zbetcheckin"
+"355014","2020-04-30 18:08:25","https://billieellish.org/scandale/agent.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/355014/","zbetcheckin"
 "355013","2020-04-30 18:08:21","https://z.loyaltyaboveall.com/kvjkqh/ServiceContractAgreement_6979144_04292020.zip","offline","malware_download","None","https://urlhaus.abuse.ch/url/355013/","DrMattChristian"
-"355012","2020-04-30 18:08:18","http://84.10.31.238:59097/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355012/","geenensp"
+"355012","2020-04-30 18:08:18","http://84.10.31.238:59097/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/355012/","geenensp"
 "355011","2020-04-30 18:08:14","https://xn--d1aciabhfsdfe0a7e3b.xn--p1acf/wp-content/uploads/2020/04/vrydko/ServiceContractAgreement_192714748_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355011/","spamhaus"
 "355010","2020-04-30 18:08:11","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/826489/ServiceContractAgreement_826489_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355010/","spamhaus"
 "355009","2020-04-30 18:08:06","https://xn--d1aciabhfsdfe0a7e3b.xn--p1acf/wp-content/uploads/2020/04/vrydko/2634171/ServiceContractAgreement_2634171_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/355009/","spamhaus"
@@ -4493,7 +4774,7 @@
 "354992","2020-04-30 17:56:06","http://37.49.226.209/bins/hoho.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/354992/","zbetcheckin"
 "354991","2020-04-30 17:56:04","http://167.250.49.155/scandale/PDFXCview.exe","online","malware_download","exe,kovter","https://urlhaus.abuse.ch/url/354991/","zbetcheckin"
 "354990","2020-04-30 17:52:15","https://billieellish.org/scandale/Dustman.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354990/","zbetcheckin"
-"354989","2020-04-30 17:52:13","https://billieellish.org/ransomware%20builder_pack/ransomware.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/354989/","zbetcheckin"
+"354989","2020-04-30 17:52:13","https://billieellish.org/ransomware%20builder_pack/ransomware.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354989/","zbetcheckin"
 "354988","2020-04-30 17:52:11","http://37.49.226.209/bins/hoho.arm","online","malware_download","elf","https://urlhaus.abuse.ch/url/354988/","zbetcheckin"
 "354987","2020-04-30 17:52:09","http://167.250.49.155/scandale/hostr.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/354987/","zbetcheckin"
 "354986","2020-04-30 17:52:06","http://167.250.49.155/scandale/Win32.WannaPeace.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/354986/","zbetcheckin"
@@ -4566,7 +4847,7 @@
 "354918","2020-04-30 14:55:16","https://sirajaoloan.com/wp-content/plugins/ubh/PaymentSwiftPDF.exe","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/354918/","jstrosch"
 "354917","2020-04-30 14:54:38","https://rrinteriores.neoistone.site/wp-content/uploads/2020/04/exskkcowpfp/49913/ServiceContractAgreement_49913_04292020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354917/","spamhaus"
 "354916","2020-04-30 14:39:03","https://pastebin.com/raw/nzULABGd","offline","malware_download","None","https://urlhaus.abuse.ch/url/354916/","JayTHL"
-"354915","2020-04-30 14:32:04","http://jessymart.flexyhub.com/ssuzzix/9952/Buy-Sell_Agreement_9952_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354915/","spamhaus"
+"354915","2020-04-30 14:32:04","http://jessymart.flexyhub.com/ssuzzix/9952/Buy-Sell_Agreement_9952_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354915/","spamhaus"
 "354914","2020-04-30 14:23:15","https://bluecollarfinancial.net/gfmixt/Buy-Sell_Agreement_429077_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354914/","spamhaus"
 "354913","2020-04-30 14:23:10","http://116.100.249.121:11296/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354913/","geenensp"
 "354912","2020-04-30 14:12:12","http://setsd.xyz/sagawa4.2.3.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/354912/","JayTHL"
@@ -4722,7 +5003,7 @@
 "354745","2020-04-30 12:18:08","https://gitlab.com/burov/tools/raw/master/bin/fp-sb-test.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354745/","zbetcheckin"
 "354744","2020-04-30 12:17:12","http://thesecuritysoftwarescannerindustrgreat.duckdns.org/badi/vbc.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/354744/","zbetcheckin"
 "354743","2020-04-30 12:17:09","http://tinckorm.beget.tech/testbuild.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/354743/","zbetcheckin"
-"354742","2020-04-30 12:17:05","http://baritaco.com/rem.exe","online","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/354742/","abuse_ch"
+"354742","2020-04-30 12:17:05","http://baritaco.com/rem.exe","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/354742/","abuse_ch"
 "354741","2020-04-30 12:16:04","http://45.95.168.247/AB4g5/kiga.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/354741/","geenensp"
 "354740","2020-04-30 12:13:10","http://185.112.146.165/meter/99.kiri.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354740/","zbetcheckin"
 "354739","2020-04-30 12:13:08","http://185.112.146.165/meter/waza.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354739/","zbetcheckin"
@@ -4840,7 +5121,7 @@
 "354626","2020-04-30 09:04:35","http://115.53.102.161:45503/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354626/","Gandylyan1"
 "354625","2020-04-30 09:04:32","http://172.39.35.1:47243/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354625/","Gandylyan1"
 "354624","2020-04-30 09:03:22","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/Buy-Sell_Agreement_39481614_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354624/","spamhaus"
-"354623","2020-04-30 09:03:16","https://vip.recommendedtoyoo.com/bdhycmsxctp/1063760/Buy-Sell_Agreement_1063760_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354623/","spamhaus"
+"354623","2020-04-30 09:03:16","https://vip.recommendedtoyoo.com/bdhycmsxctp/1063760/Buy-Sell_Agreement_1063760_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354623/","spamhaus"
 "354622","2020-04-30 09:03:09","https://britica.vn/dqsfv/Buy-Sell_Agreement_77334_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354622/","spamhaus"
 "354621","2020-04-30 09:02:37","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/Buy-Sell_Agreement_854345_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354621/","spamhaus"
 "354620","2020-04-30 09:02:29","https://cryptoomarket.com/fhws/0892174/Buy-Sell_Agreement_0892174_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354620/","spamhaus"
@@ -4855,7 +5136,7 @@
 "354611","2020-04-30 09:00:17","https://kamagra.in.rs/bqcbhf/865772/Buy-Sell_Agreement_865772_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354611/","spamhaus"
 "354610","2020-04-30 08:59:43","https://bluecollarfinancial.net/gfmixt/Buy-Sell_Agreement_3474002_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354610/","spamhaus"
 "354609","2020-04-30 08:59:08","http://dev.apshaps.se/sdub/2766780/Buy-Sell_Agreement_2766780_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354609/","spamhaus"
-"354608","2020-04-30 08:58:35","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_41879921_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354608/","spamhaus"
+"354608","2020-04-30 08:58:35","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_41879921_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354608/","spamhaus"
 "354607","2020-04-30 08:54:24","https://pastebin.com/raw/TFER19JK","offline","malware_download","None","https://urlhaus.abuse.ch/url/354607/","JayTHL"
 "354606","2020-04-30 08:54:18","https://pastebin.com/raw/fves4YW3","offline","malware_download","None","https://urlhaus.abuse.ch/url/354606/","JayTHL"
 "354605","2020-04-30 08:54:11","http://cloud-server-updater2.co.za/doc/buer.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354605/","abuse_ch"
@@ -4865,7 +5146,7 @@
 "354601","2020-04-30 08:52:50","http://morruko.antesos.com/fqtylehpb/Buy-Sell_Agreement_7410_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354601/","spamhaus"
 "354600","2020-04-30 08:52:47","https://www.francois-champion.com/lqkb/3923182/Buy-Sell_Agreement_3923182_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354600/","spamhaus"
 "354599","2020-04-30 08:52:43","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/7230934/Buy-Sell_Agreement_7230934_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354599/","spamhaus"
-"354598","2020-04-30 08:52:39","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_65313434_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354598/","spamhaus"
+"354598","2020-04-30 08:52:39","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_65313434_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354598/","spamhaus"
 "354597","2020-04-30 08:52:33","http://koravit.zaeteaw.net/okmqhrfdsvj/82347/Buy-Sell_Agreement_82347_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354597/","spamhaus"
 "354596","2020-04-30 08:52:31","https://rangebroadcasting.com/vfbc/7041182/Buy-Sell_Agreement_7041182_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354596/","spamhaus"
 "354595","2020-04-30 08:52:26","http://Muanha.xyz/cfewahhzze/Buy-Sell_Agreement_3947_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354595/","spamhaus"
@@ -4880,14 +5161,14 @@
 "354586","2020-04-30 08:36:26","http://cheriyilbuilders.com/ixwqumcq/1200859/Buy-Sell_Agreement_1200859_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354586/","spamhaus"
 "354585","2020-04-30 08:36:21","http://cheriyilbuilders.com/ixwqumcq/8638399/Buy-Sell_Agreement_8638399_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354585/","spamhaus"
 "354584","2020-04-30 08:36:19","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/Buy-Sell_Agreement_9562_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354584/","spamhaus"
-"354583","2020-04-30 08:36:12","http://staging.popclusive.asia/okppdsnq/314752/Buy-Sell_Agreement_314752_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354583/","spamhaus"
+"354583","2020-04-30 08:36:12","http://staging.popclusive.asia/okppdsnq/314752/Buy-Sell_Agreement_314752_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354583/","spamhaus"
 "354582","2020-04-30 08:36:07","http://alexandredekerchove.com/ylwhbcphyy/0870/Buy-Sell_Agreement_0870_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354582/","spamhaus"
 "354581","2020-04-30 08:36:05","http://duongfpt.ga/lxgqgox/74547418/Buy-Sell_Agreement_74547418_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354581/","spamhaus"
 "354580","2020-04-30 08:35:58","http://sunboom-gift.com/zwbaxf/892950/Buy-Sell_Agreement_892950_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354580/","spamhaus"
 "354579","2020-04-30 08:35:53","http://dev.apshaps.se/sdub/43746/Buy-Sell_Agreement_43746_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354579/","spamhaus"
 "354578","2020-04-30 08:35:49","http://ade.topepics.com/pkthdrgdb/495230/Buy-Sell_Agreement_495230_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354578/","spamhaus"
 "354577","2020-04-30 08:35:30","http://sunboom-gift.com/zwbaxf/67620255/Buy-Sell_Agreement_67620255_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354577/","spamhaus"
-"354576","2020-04-30 08:35:16","http://demo13.dsdemosite.com/alugzfn/13617731/Buy-Sell_Agreement_13617731_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354576/","spamhaus"
+"354576","2020-04-30 08:35:16","http://demo13.dsdemosite.com/alugzfn/13617731/Buy-Sell_Agreement_13617731_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354576/","spamhaus"
 "354575","2020-04-30 08:35:09","http://alexandredekerchove.com/ylwhbcphyy/29047/Buy-Sell_Agreement_29047_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354575/","spamhaus"
 "354574","2020-04-30 08:35:06","http://koravit.zaeteaw.net/okmqhrfdsvj/Buy-Sell_Agreement_459078_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354574/","spamhaus"
 "354573","2020-04-30 08:28:29","http://silverstargalaxy.com.silverstartv.website/cmea/9982/Buy-Sell_Agreement_9982_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354573/","spamhaus"
@@ -4918,7 +5199,7 @@
 "354548","2020-04-30 08:25:31","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_3869557_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354548/","spamhaus"
 "354547","2020-04-30 08:25:26","https://cryptoomarket.com/fhws/8830/Buy-Sell_Agreement_8830_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354547/","spamhaus"
 "354546","2020-04-30 08:25:19","https://cryptoomarket.com/fhws/74651/Buy-Sell_Agreement_74651_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354546/","spamhaus"
-"354545","2020-04-30 08:25:16","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_3544_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354545/","spamhaus"
+"354545","2020-04-30 08:25:16","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_3544_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354545/","spamhaus"
 "354544","2020-04-30 08:19:07","http://fundbook.xyz/ru53332/ak3sol4cnqaa7xocafjvfwamamv02caa/fl+studio+20.6.2.1549+crack.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354544/","zbetcheckin"
 "354543","2020-04-30 08:19:05","http://fundbook.xyz/ru53332/AB2ak17nlgAAvhwCAERFFwAmAPMfGScA/Spectrasonics%20Omnisphere%202.6%20Cracked%20[Fixed].exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/354543/","zbetcheckin"
 "354542","2020-04-30 08:17:12","http://allpetsandpaws.com/sport/rockstar.php","offline","malware_download","exe,IcedID","https://urlhaus.abuse.ch/url/354542/","abuse_ch"
@@ -4936,7 +5217,7 @@
 "354530","2020-04-30 07:31:03","http://45.89.230.141/Pipe/armv4l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/354530/","zbetcheckin"
 "354529","2020-04-30 07:27:35","http://45.89.230.141/Pipe/armv6l","offline","malware_download","elf","https://urlhaus.abuse.ch/url/354529/","zbetcheckin"
 "354528","2020-04-30 07:27:33","https://pastebin.com/raw/HQAYuhFf","offline","malware_download","None","https://urlhaus.abuse.ch/url/354528/","JayTHL"
-"354527","2020-04-30 07:19:54","http://demo13.dsdemosite.com/alugzfn/9836/Buy-Sell_Agreement_9836_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354527/","spamhaus"
+"354527","2020-04-30 07:19:54","http://demo13.dsdemosite.com/alugzfn/9836/Buy-Sell_Agreement_9836_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354527/","spamhaus"
 "354526","2020-04-30 07:19:48","http://NCERTSOLUTIONACADEMY.COM/yghks/Buy-Sell_Agreement_02599_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354526/","spamhaus"
 "354525","2020-04-30 07:19:36","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/Buy-Sell_Agreement_351038_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354525/","spamhaus"
 "354524","2020-04-30 07:19:29","http://duongfpt.ga/lxgqgox/1215867/Buy-Sell_Agreement_1215867_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354524/","spamhaus"
@@ -4955,7 +5236,7 @@
 "354511","2020-04-30 07:18:31","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_8444_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354511/","spamhaus"
 "354510","2020-04-30 07:18:29","https://cryptoomarket.com/fhws/Buy-Sell_Agreement_119635_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354510/","spamhaus"
 "354509","2020-04-30 07:18:25","http://ade.topepics.com/pkthdrgdb/5287/Buy-Sell_Agreement_5287_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354509/","spamhaus"
-"354508","2020-04-30 07:18:16","http://demo13.dsdemosite.com/alugzfn/3042/Buy-Sell_Agreement_3042_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354508/","spamhaus"
+"354508","2020-04-30 07:18:16","http://demo13.dsdemosite.com/alugzfn/3042/Buy-Sell_Agreement_3042_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354508/","spamhaus"
 "354507","2020-04-30 07:18:11","http://koravit.zaeteaw.net/okmqhrfdsvj/92052482/Buy-Sell_Agreement_92052482_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354507/","spamhaus"
 "354506","2020-04-30 07:18:09","http://Muanha.xyz/cfewahhzze/Buy-Sell_Agreement_4069_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354506/","spamhaus"
 "354505","2020-04-30 07:18:06","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/Buy-Sell_Agreement_2816_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354505/","spamhaus"
@@ -4982,12 +5263,12 @@
 "354484","2020-04-30 06:34:16","http://chnes17wsdywealthandmoduleorganisationui.duckdns.org/secure/svchost.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/354484/","gorimpthon"
 "354483","2020-04-30 06:34:13","http://45.89.230.141/Pipe/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/354483/","geenensp"
 "354482","2020-04-30 06:34:11","http://45.89.230.141/Pipe/EkSgbins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/354482/","geenensp"
-"354481","2020-04-30 06:34:08","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_033755_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354481/","spamhaus"
+"354481","2020-04-30 06:34:08","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_033755_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354481/","spamhaus"
 "354480","2020-04-30 06:34:04","https://cdn.discordapp.com/attachments/687683954882641920/704665307087896576/COVID-19.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/354480/","spamhaus"
 "354479","2020-04-30 06:33:31","http://thesecuritysoftwarescannerindustrgreat.duckdns.org/lvc/vbc.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/354479/","gorimpthon"
 "354478","2020-04-30 06:33:26","http://thesecuritysoftwarescannerindustrgreat.duckdns.org/lvc/mn.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/354478/","gorimpthon"
 "354477","2020-04-30 06:33:24","http://88.247.194.52:7124/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354477/","geenensp"
-"354476","2020-04-30 06:33:19","http://staging.popclusive.asia/okppdsnq/9982249/Buy-Sell_Agreement_9982249_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354476/","spamhaus"
+"354476","2020-04-30 06:33:19","http://staging.popclusive.asia/okppdsnq/9982249/Buy-Sell_Agreement_9982249_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354476/","spamhaus"
 "354475","2020-04-30 06:33:17","http://59.126.35.242:59827/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354475/","geenensp"
 "354474","2020-04-30 06:33:11","http://sunboom-gift.com/zwbaxf/749231/Buy-Sell_Agreement_749231_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354474/","spamhaus"
 "354473","2020-04-30 06:32:57","http://dzapasigroup.usapglobal.org/pbnxnmc/19361253/Buy-Sell_Agreement_19361253_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354473/","spamhaus"
@@ -5027,18 +5308,18 @@
 "354439","2020-04-30 06:12:10","http://61.75.111.224:46181/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354439/","geenensp"
 "354438","2020-04-30 06:12:05","http://81.249.64.61:47159/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354438/","geenensp"
 "354437","2020-04-30 06:12:01","http://bolescy.com/otue/10261/Buy-Sell_Agreement_10261_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354437/","spamhaus"
-"354436","2020-04-30 06:11:49","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_3466_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354436/","spamhaus"
+"354436","2020-04-30 06:11:49","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_3466_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354436/","spamhaus"
 "354435","2020-04-30 06:11:44","https://www.francois-champion.com/lqkb/776618/Buy-Sell_Agreement_776618_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354435/","spamhaus"
 "354434","2020-04-30 06:11:38","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/54192/Buy-Sell_Agreement_54192_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354434/","spamhaus"
-"354433","2020-04-30 06:11:35","http://virustreatments.empeeevents.com/eyyudu/5220/Buy-Sell_Agreement_5220_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354433/","spamhaus"
+"354433","2020-04-30 06:11:35","http://virustreatments.empeeevents.com/eyyudu/5220/Buy-Sell_Agreement_5220_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354433/","spamhaus"
 "354432","2020-04-30 06:11:30","http://cheriyilbuilders.com/ixwqumcq/78911569/Buy-Sell_Agreement_78911569_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354432/","spamhaus"
 "354431","2020-04-30 06:11:26","http://morruko.antesos.com/fqtylehpb/Buy-Sell_Agreement_4479_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354431/","spamhaus"
 "354430","2020-04-30 06:11:24","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/4164189/Buy-Sell_Agreement_4164189_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354430/","spamhaus"
 "354429","2020-04-30 06:11:09","http://oralloy.com/xyqkbu/Buy-Sell_Agreement_3795_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354429/","spamhaus"
-"354428","2020-04-30 06:11:05","http://staging.popclusive.asia/okppdsnq/Buy-Sell_Agreement_66313_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354428/","spamhaus"
+"354428","2020-04-30 06:11:05","http://staging.popclusive.asia/okppdsnq/Buy-Sell_Agreement_66313_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354428/","spamhaus"
 "354427","2020-04-30 06:10:15","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/4496/Buy-Sell_Agreement_4496_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354427/","spamhaus"
 "354426","2020-04-30 06:10:13","http://evdekal-kampanyasi20gbhediye.com/EvdeKal-20gbhediye.apk","offline","malware_download","apk ,Cerberus","https://urlhaus.abuse.ch/url/354426/","mertcangokgoz"
-"354425","2020-04-30 06:10:02","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_82412_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354425/","spamhaus"
+"354425","2020-04-30 06:10:02","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_82412_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354425/","spamhaus"
 "354424","2020-04-30 06:09:59","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/02779/Buy-Sell_Agreement_02779_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354424/","spamhaus"
 "354423","2020-04-30 06:09:55","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/80311/Buy-Sell_Agreement_80311_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354423/","spamhaus"
 "354422","2020-04-30 06:09:50","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/8463/Buy-Sell_Agreement_8463_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354422/","spamhaus"
@@ -5256,7 +5537,7 @@
 "354210","2020-04-29 18:27:12","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/65281/Buy-Sell_Agreement_65281_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354210/","spamhaus"
 "354209","2020-04-29 18:27:09","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/2423/Buy-Sell_Agreement_2423_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354209/","spamhaus"
 "354208","2020-04-29 18:27:05","http://morruko.antesos.com/fqtylehpb/5609732/Buy-Sell_Agreement_5609732_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354208/","spamhaus"
-"354207","2020-04-29 18:26:12","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_55778_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354207/","spamhaus"
+"354207","2020-04-29 18:26:12","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_55778_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354207/","spamhaus"
 "354206","2020-04-29 18:26:07","http://dev.apshaps.se/sdub/Buy-Sell_Agreement_19540301_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354206/","spamhaus"
 "354205","2020-04-29 18:26:05","https://kamagra.in.rs/bqcbhf/Buy-Sell_Agreement_30255_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354205/","spamhaus"
 "354204","2020-04-29 18:23:14","http://104.244.79.235/ap/ad.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/354204/","zbetcheckin"
@@ -5288,13 +5569,13 @@
 "354178","2020-04-29 18:04:04","http://115.61.2.125:45051/Mozi.m","offline","malware_download","Mozi","https://urlhaus.abuse.ch/url/354178/","Gandylyan1"
 "354177","2020-04-29 18:01:39","http://staging.popclusive.asia/okppdsnq/Buy-Sell_Agreement_5038_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354177/","spamhaus"
 "354176","2020-04-29 18:01:35","http://oskarnews.gazashare.com/pelsq/Buy-Sell_Agreement_25166746_04282020.zip","offline","malware_download","geofenced,zip","https://urlhaus.abuse.ch/url/354176/","anonymous"
-"354175","2020-04-29 18:01:32","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_86169_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354175/","spamhaus"
+"354175","2020-04-29 18:01:32","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_86169_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354175/","spamhaus"
 "354174","2020-04-29 17:53:50","http://oskarnews.gazashare.com/pelsq/3939567/Buy-Sell_Agreement_3939567_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354174/","spamhaus"
 "354173","2020-04-29 17:53:15","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/5699246/Buy-Sell_Agreement_5699246_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354173/","spamhaus"
 "354172","2020-04-29 17:52:40","https://kamagra.in.rs/bqcbhf/6078657/Buy-Sell_Agreement_6078657_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354172/","spamhaus"
 "354171","2020-04-29 17:52:05","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_04275750_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354171/","spamhaus"
 "354170","2020-04-29 17:51:33","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_3442_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354170/","spamhaus"
-"354169","2020-04-29 17:40:31","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_5506_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354169/","spamhaus"
+"354169","2020-04-29 17:40:31","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_5506_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354169/","spamhaus"
 "354168","2020-04-29 17:40:12","http://10022020newfolder1002002231-service1002.space/raccon.exe","offline","malware_download","GuLoader","https://urlhaus.abuse.ch/url/354168/","vxvault"
 "354167","2020-04-29 17:40:05","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/Buy-Sell_Agreement_6726834_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354167/","spamhaus"
 "354166","2020-04-29 17:39:07","http://oz.timeisletitgo.ru/520257778.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/354166/","vxvault"
@@ -5304,7 +5585,7 @@
 "354162","2020-04-29 17:38:40","http://www.cheriyilbuilders.com/herevryxugc/385904/Buy-Sell_Agreement_385904_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354162/","spamhaus"
 "354161","2020-04-29 17:38:37","https://rangebroadcasting.com/vfbc/810366/Buy-Sell_Agreement_810366_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354161/","spamhaus"
 "354160","2020-04-29 17:38:33","https://kamagra.in.rs/bqcbhf/Buy-Sell_Agreement_4147_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354160/","spamhaus"
-"354159","2020-04-29 17:38:22","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_49553_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354159/","spamhaus"
+"354159","2020-04-29 17:38:22","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_49553_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354159/","spamhaus"
 "354158","2020-04-29 17:38:15","http://Muanha.xyz/cfewahhzze/58145827/Buy-Sell_Agreement_58145827_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354158/","spamhaus"
 "354157","2020-04-29 17:38:05","http://silverstargalaxy.com.silverstartv.website/cmea/Buy-Sell_Agreement_78764087_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354157/","spamhaus"
 "354156","2020-04-29 17:36:07","https://paste.ee/r/JeFGE","offline","malware_download","AgentTesla,Encoded","https://urlhaus.abuse.ch/url/354156/","abuse_ch"
@@ -5322,8 +5603,8 @@
 "354144","2020-04-29 17:18:05","https://cryptoomarket.com/fhws/7289616/Buy-Sell_Agreement_7289616_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354144/","spamhaus"
 "354143","2020-04-29 17:17:54","http://cheriyilbuilders.com/ixwqumcq/238380/Buy-Sell_Agreement_238380_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354143/","spamhaus"
 "354142","2020-04-29 17:17:42","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_7507_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354142/","spamhaus"
-"354141","2020-04-29 17:17:35","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_54933_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354141/","spamhaus"
-"354140","2020-04-29 17:17:24","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_0761_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354140/","spamhaus"
+"354141","2020-04-29 17:17:35","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_54933_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354141/","spamhaus"
+"354140","2020-04-29 17:17:24","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_0761_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354140/","spamhaus"
 "354139","2020-04-29 17:17:14","http://www.cheriyilbuilders.com/herevryxugc/Buy-Sell_Agreement_203749_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354139/","spamhaus"
 "354138","2020-04-29 17:15:08","https://pastebin.com/raw/yjQwfwLu","offline","malware_download","None","https://urlhaus.abuse.ch/url/354138/","JayTHL"
 "354137","2020-04-29 17:15:03","https://pastebin.com/raw/Tps40B96","offline","malware_download","None","https://urlhaus.abuse.ch/url/354137/","JayTHL"
@@ -5357,8 +5638,8 @@
 "354109","2020-04-29 16:47:15","http://cheriyilbuilders.com/ixwqumcq/Buy-Sell_Agreement_660298_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354109/","spamhaus"
 "354108","2020-04-29 16:47:11","http://cheriyilbuilders.com/ixwqumcq/Buy-Sell_Agreement_07288_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354108/","spamhaus"
 "354107","2020-04-29 16:47:08","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/4546012/Buy-Sell_Agreement_4546012_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354107/","spamhaus"
-"354106","2020-04-29 16:47:06","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/4852/Buy-Sell_Agreement_4852_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354106/","spamhaus"
-"354105","2020-04-29 16:39:14","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_5945315_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354105/","spamhaus"
+"354106","2020-04-29 16:47:06","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/4852/Buy-Sell_Agreement_4852_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354106/","spamhaus"
+"354105","2020-04-29 16:39:14","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_5945315_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354105/","spamhaus"
 "354104","2020-04-29 16:39:05","http://dzapasigroup.usapglobal.org/pbnxnmc/48527452/Buy-Sell_Agreement_48527452_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354104/","spamhaus"
 "354103","2020-04-29 16:33:35","http://britica.vn/dqsfv/1457750/Buy-Sell_Agreement_1457750_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354103/","spamhaus"
 "354102","2020-04-29 16:33:27","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_2316516_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354102/","spamhaus"
@@ -5366,7 +5647,7 @@
 "354100","2020-04-29 16:33:19","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_6246_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354100/","spamhaus"
 "354099","2020-04-29 16:33:14","http://Muanha.xyz/cfewahhzze/Buy-Sell_Agreement_6877_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354099/","spamhaus"
 "354098","2020-04-29 16:33:10","https://rangebroadcasting.com/vfbc/0127/Buy-Sell_Agreement_0127_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354098/","spamhaus"
-"354097","2020-04-29 16:33:05","https://vip.recommendedtoyoo.com/bdhycmsxctp/73579/Buy-Sell_Agreement_73579_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354097/","spamhaus"
+"354097","2020-04-29 16:33:05","https://vip.recommendedtoyoo.com/bdhycmsxctp/73579/Buy-Sell_Agreement_73579_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354097/","spamhaus"
 "354096","2020-04-29 16:32:02","http://www.cheriyilbuilders.com/herevryxugc/Buy-Sell_Agreement_39432145_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354096/","spamhaus"
 "354095","2020-04-29 16:31:58","http://81.196.213.134:6632/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/354095/","geenensp"
 "354094","2020-04-29 16:31:51","https://rangebroadcasting.com/vfbc/Buy-Sell_Agreement_7898_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354094/","spamhaus"
@@ -5379,10 +5660,10 @@
 "354087","2020-04-29 16:30:07","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/62008/Buy-Sell_Agreement_62008_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354087/","spamhaus"
 "354086","2020-04-29 16:29:05","http://promassager.ga/yltkoe/109475/Buy-Sell_Agreement_109475_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354086/","spamhaus"
 "354085","2020-04-29 16:28:32","http://oskarnews.gazashare.com/pelsq/Buy-Sell_Agreement_4478060_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354085/","spamhaus"
-"354084","2020-04-29 16:27:57","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/899516/Buy-Sell_Agreement_899516_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354084/","spamhaus"
+"354084","2020-04-29 16:27:57","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/899516/Buy-Sell_Agreement_899516_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354084/","spamhaus"
 "354083","2020-04-29 16:27:25","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/Buy-Sell_Agreement_874829_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354083/","spamhaus"
 "354082","2020-04-29 16:26:51","http://promassager.ga/yltkoe/65758864/Buy-Sell_Agreement_65758864_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354082/","spamhaus"
-"354081","2020-04-29 16:25:47","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_3493806_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354081/","spamhaus"
+"354081","2020-04-29 16:25:47","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_3493806_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354081/","spamhaus"
 "354080","2020-04-29 16:25:12","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/Buy-Sell_Agreement_19864_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354080/","spamhaus"
 "354079","2020-04-29 16:25:11","http://alexandredekerchove.com/ylwhbcphyy/Buy-Sell_Agreement_23494_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354079/","spamhaus"
 "354078","2020-04-29 16:24:38","http://silverstargalaxy.com.silverstartv.website/cmea/94603139/Buy-Sell_Agreement_94603139_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354078/","spamhaus"
@@ -5395,21 +5676,21 @@
 "354071","2020-04-29 15:51:35","http://dzapasigroup.usapglobal.org/pbnxnmc/699164/Buy-Sell_Agreement_699164_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354071/","spamhaus"
 "354070","2020-04-29 15:49:03","https://pastebin.com/raw/srdmMBmH","offline","malware_download","None","https://urlhaus.abuse.ch/url/354070/","JayTHL"
 "354069","2020-04-29 15:46:18","https://pastebin.com/raw/2QygLNc6","offline","malware_download","PowerShellEmpire","https://urlhaus.abuse.ch/url/354069/","viql"
-"354068","2020-04-29 15:46:13","https://vip.recommendedtoyoo.com/bdhycmsxctp/9086/Buy-Sell_Agreement_9086_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354068/","spamhaus"
+"354068","2020-04-29 15:46:13","https://vip.recommendedtoyoo.com/bdhycmsxctp/9086/Buy-Sell_Agreement_9086_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354068/","spamhaus"
 "354067","2020-04-29 15:45:43","http://Muanha.xyz/cfewahhzze/477754/Buy-Sell_Agreement_477754_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354067/","spamhaus"
 "354066","2020-04-29 15:45:16","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/781385/Buy-Sell_Agreement_781385_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354066/","spamhaus"
 "354065","2020-04-29 15:45:14","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_08808_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354065/","spamhaus"
-"354064","2020-04-29 15:42:10","https://vip.recommendedtoyoo.com/bdhycmsxctp/86207/Buy-Sell_Agreement_86207_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354064/","spamhaus"
+"354064","2020-04-29 15:42:10","https://vip.recommendedtoyoo.com/bdhycmsxctp/86207/Buy-Sell_Agreement_86207_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354064/","spamhaus"
 "354063","2020-04-29 15:41:34","http://silverstargalaxy.com.silverstartv.website/cmea/849715/Buy-Sell_Agreement_849715_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354063/","spamhaus"
-"354062","2020-04-29 15:41:30","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_038711_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354062/","spamhaus"
+"354062","2020-04-29 15:41:30","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_038711_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354062/","spamhaus"
 "354061","2020-04-29 15:41:21","http://sunboom-gift.com/zwbaxf/Buy-Sell_Agreement_2743_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354061/","spamhaus"
-"354060","2020-04-29 15:41:15","https://vip.recommendedtoyoo.com/bdhycmsxctp/52854184/Buy-Sell_Agreement_52854184_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354060/","spamhaus"
+"354060","2020-04-29 15:41:15","https://vip.recommendedtoyoo.com/bdhycmsxctp/52854184/Buy-Sell_Agreement_52854184_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354060/","spamhaus"
 "354059","2020-04-29 15:40:10","http://morruko.antesos.com/fqtylehpb/25242/Buy-Sell_Agreement_25242_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354059/","spamhaus"
-"354058","2020-04-29 15:40:05","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/41357844/Buy-Sell_Agreement_41357844_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354058/","spamhaus"
+"354058","2020-04-29 15:40:05","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/41357844/Buy-Sell_Agreement_41357844_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354058/","spamhaus"
 "354057","2020-04-29 15:39:59","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/77655/Buy-Sell_Agreement_77655_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354057/","spamhaus"
 "354056","2020-04-29 15:39:56","http://bolescy.com/otue/108897/Buy-Sell_Agreement_108897_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354056/","spamhaus"
 "354055","2020-04-29 15:39:53","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_5514688_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354055/","spamhaus"
-"354054","2020-04-29 15:39:49","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/4194555/Buy-Sell_Agreement_4194555_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354054/","spamhaus"
+"354054","2020-04-29 15:39:49","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/4194555/Buy-Sell_Agreement_4194555_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354054/","spamhaus"
 "354053","2020-04-29 15:39:43","http://jaservicioscontables.casteviajes.com/xekqbxkehlx/Buy-Sell_Agreement_9764_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354053/","spamhaus"
 "354052","2020-04-29 15:39:29","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_346856_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354052/","spamhaus"
 "354051","2020-04-29 15:39:27","http://ade.topepics.com/pkthdrgdb/4779/Buy-Sell_Agreement_4779_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354051/","spamhaus"
@@ -5428,19 +5709,19 @@
 "354038","2020-04-29 15:22:40","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_647741_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354038/","spamhaus"
 "354037","2020-04-29 15:22:37","http://duongfpt.ga/lxgqgox/Buy-Sell_Agreement_4191_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354037/","spamhaus"
 "354036","2020-04-29 15:22:29","http://virustreatments.empeeevents.com/eyyudu/6941/Buy-Sell_Agreement_6941_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354036/","spamhaus"
-"354035","2020-04-29 15:22:24","http://jessymart.flexyhub.com/ssuzzix/8889210/Buy-Sell_Agreement_8889210_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354035/","spamhaus"
+"354035","2020-04-29 15:22:24","http://jessymart.flexyhub.com/ssuzzix/8889210/Buy-Sell_Agreement_8889210_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354035/","spamhaus"
 "354034","2020-04-29 15:22:20","http://www.cheriyilbuilders.com/herevryxugc/Buy-Sell_Agreement_80209884_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354034/","spamhaus"
 "354033","2020-04-29 15:22:16","http://alexandredekerchove.com/ylwhbcphyy/Buy-Sell_Agreement_6091790_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354033/","spamhaus"
 "354032","2020-04-29 15:22:13","http://promassager.ga/yltkoe/Buy-Sell_Agreement_207769_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354032/","spamhaus"
 "354031","2020-04-29 15:22:10","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/19041295/Buy-Sell_Agreement_19041295_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354031/","spamhaus"
 "354030","2020-04-29 15:22:08","https://kamagra.in.rs/bqcbhf/Buy-Sell_Agreement_8082_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354030/","spamhaus"
-"354029","2020-04-29 15:22:03","http://jessymart.flexyhub.com/ssuzzix/0314864/Buy-Sell_Agreement_0314864_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354029/","spamhaus"
+"354029","2020-04-29 15:22:03","http://jessymart.flexyhub.com/ssuzzix/0314864/Buy-Sell_Agreement_0314864_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354029/","spamhaus"
 "354028","2020-04-29 15:21:15","http://NCERTSOLUTIONACADEMY.COM/yghks/Buy-Sell_Agreement_329681_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354028/","spamhaus"
 "354027","2020-04-29 15:21:13","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/Buy-Sell_Agreement_4038071_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354027/","spamhaus"
 "354026","2020-04-29 15:21:10","http://dzapasigroup.usapglobal.org/pbnxnmc/80499641/Buy-Sell_Agreement_80499641_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354026/","spamhaus"
 "354025","2020-04-29 15:17:04","http://104.168.198.194/mipsel","online","malware_download","DDoS Bot,elf,mirai","https://urlhaus.abuse.ch/url/354025/","Gandylyan1"
 "354024","2020-04-29 15:15:06","https://taxukrebates.com/","offline","malware_download","phishing","https://urlhaus.abuse.ch/url/354024/","anonymous"
-"354023","2020-04-29 15:08:07","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_1571_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354023/","spamhaus"
+"354023","2020-04-29 15:08:07","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_1571_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354023/","spamhaus"
 "354022","2020-04-29 15:07:35","http://alexandredekerchove.com/ylwhbcphyy/71191/Buy-Sell_Agreement_71191_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354022/","spamhaus"
 "354021","2020-04-29 15:07:33","http://silverstargalaxy.com.silverstartv.website/cmea/2003/Buy-Sell_Agreement_2003_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354021/","spamhaus"
 "354020","2020-04-29 15:07:31","http://Muanha.xyz/cfewahhzze/Buy-Sell_Agreement_3250669_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/354020/","spamhaus"
@@ -5488,13 +5769,13 @@
 "353978","2020-04-29 14:50:37","http://sunboom-gift.com/zwbaxf/08853/Buy-Sell_Agreement_08853_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353978/","spamhaus"
 "353977","2020-04-29 14:50:31","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_5316_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353977/","spamhaus"
 "353976","2020-04-29 14:50:29","http://morruko.antesos.com/fqtylehpb/Buy-Sell_Agreement_7626737_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353976/","spamhaus"
-"353975","2020-04-29 14:50:16","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_5465012_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353975/","spamhaus"
+"353975","2020-04-29 14:50:16","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_5465012_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353975/","spamhaus"
 "353974","2020-04-29 14:50:09","https://bluecollarfinancial.net/gfmixt/Buy-Sell_Agreement_8000484_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353974/","spamhaus"
 "353973","2020-04-29 14:50:04","https://aelogica.com/zznohyxa/8295/Buy-Sell_Agreement_8295_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353973/","spamhaus"
-"353972","2020-04-29 14:46:25","http://staging.popclusive.asia/okppdsnq/00827/Buy-Sell_Agreement_00827_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353972/","spamhaus"
-"353971","2020-04-29 14:46:18","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_4896_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353971/","spamhaus"
+"353972","2020-04-29 14:46:25","http://staging.popclusive.asia/okppdsnq/00827/Buy-Sell_Agreement_00827_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353972/","spamhaus"
+"353971","2020-04-29 14:46:18","http://jessymart.flexyhub.com/ssuzzix/Buy-Sell_Agreement_4896_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353971/","spamhaus"
 "353970","2020-04-29 14:46:13","http://dev.apshaps.se/sdub/Buy-Sell_Agreement_443872_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353970/","spamhaus"
-"353969","2020-04-29 14:46:11","https://vip.recommendedtoyoo.com/bdhycmsxctp/70840/Buy-Sell_Agreement_70840_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353969/","spamhaus"
+"353969","2020-04-29 14:46:11","https://vip.recommendedtoyoo.com/bdhycmsxctp/70840/Buy-Sell_Agreement_70840_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353969/","spamhaus"
 "353968","2020-04-29 14:45:43","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_7595546_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353968/","spamhaus"
 "353967","2020-04-29 14:45:37","http://jessymart.flexyhub.com/ssuzzix/5876060/Buy-Sell_Agreement_5876060_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353967/","spamhaus"
 "353966","2020-04-29 14:45:34","https://aelogica.com/zznohyxa/94346/Buy-Sell_Agreement_94346_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353966/","spamhaus"
@@ -5523,18 +5804,18 @@
 "353943","2020-04-29 14:39:44","http://oskarnews.gazashare.com/pelsq/70994/Buy-Sell_Agreement_70994_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353943/","spamhaus"
 "353942","2020-04-29 14:39:42","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_82072_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353942/","spamhaus"
 "353941","2020-04-29 14:39:38","http://oskarnews.gazashare.com/pelsq/563390/Buy-Sell_Agreement_563390_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353941/","spamhaus"
-"353940","2020-04-29 14:39:36","http://jessymart.flexyhub.com/ssuzzix/515892/Buy-Sell_Agreement_515892_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353940/","spamhaus"
+"353940","2020-04-29 14:39:36","http://jessymart.flexyhub.com/ssuzzix/515892/Buy-Sell_Agreement_515892_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353940/","spamhaus"
 "353939","2020-04-29 14:39:31","http://oskarnews.gazashare.com/pelsq/Buy-Sell_Agreement_31209_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353939/","spamhaus"
 "353938","2020-04-29 14:39:29","http://denunciesoftwareilegal.org.br/wp-content/plugins/apikey/bfgvnffqfo/5433950/Buy-Sell_Agreement_5433950_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353938/","spamhaus"
 "353937","2020-04-29 14:39:17","http://dzapasigroup.usapglobal.org/pbnxnmc/35459684/Buy-Sell_Agreement_35459684_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353937/","spamhaus"
 "353936","2020-04-29 14:39:13","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_41088_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353936/","spamhaus"
 "353935","2020-04-29 14:39:09","http://bolescy.com/otue/Buy-Sell_Agreement_5472_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353935/","spamhaus"
 "353934","2020-04-29 14:39:05","http://duongfpt.ga/lxgqgox/50076/Buy-Sell_Agreement_50076_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353934/","spamhaus"
-"353933","2020-04-29 14:39:02","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_8485512_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353933/","spamhaus"
+"353933","2020-04-29 14:39:02","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_8485512_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353933/","spamhaus"
 "353932","2020-04-29 14:38:57","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/Buy-Sell_Agreement_93912574_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353932/","spamhaus"
 "353931","2020-04-29 14:38:53","http://NCERTSOLUTIONACADEMY.COM/yghks/95004421/Buy-Sell_Agreement_95004421_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353931/","spamhaus"
 "353930","2020-04-29 14:38:49","http://duongfpt.ga/lxgqgox/69614610/Buy-Sell_Agreement_69614610_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353930/","spamhaus"
-"353929","2020-04-29 14:38:46","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_4425983_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353929/","spamhaus"
+"353929","2020-04-29 14:38:46","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_4425983_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353929/","spamhaus"
 "353928","2020-04-29 14:38:38","https://www.francois-champion.com/lqkb/Buy-Sell_Agreement_12556414_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353928/","spamhaus"
 "353927","2020-04-29 14:38:33","https://cryptoomarket.com/fhws/Buy-Sell_Agreement_785445_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353927/","spamhaus"
 "353926","2020-04-29 14:38:24","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_15886_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353926/","spamhaus"
@@ -5555,13 +5836,13 @@
 "353911","2020-04-29 14:37:05","http://51.89.119.154/bins/arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/353911/","JayTHL"
 "353910","2020-04-29 14:37:03","http://51.89.119.154/bins/KKK.sh","offline","malware_download","None","https://urlhaus.abuse.ch/url/353910/","JayTHL"
 "353909","2020-04-29 14:31:21","https://cryptoomarket.com/fhws/963978/Buy-Sell_Agreement_963978_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353909/","spamhaus"
-"353908","2020-04-29 14:31:16","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_0090_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353908/","spamhaus"
+"353908","2020-04-29 14:31:16","http://demo13.dsdemosite.com/alugzfn/Buy-Sell_Agreement_0090_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353908/","spamhaus"
 "353907","2020-04-29 14:31:13","http://Muanha.xyz/cfewahhzze/Buy-Sell_Agreement_6709320_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353907/","spamhaus"
 "353906","2020-04-29 14:31:09","https://rangebroadcasting.com/vfbc/504577/Buy-Sell_Agreement_504577_04282020.zip","offline","malware_download","ESP,Quakbot","https://urlhaus.abuse.ch/url/353906/","spamhaus"
 "353905","2020-04-29 14:31:03","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_2788_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353905/","spamhaus"
 "353904","2020-04-29 14:30:58","https://aelogica.com/zznohyxa/Buy-Sell_Agreement_25066542_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353904/","spamhaus"
 "353903","2020-04-29 14:30:23","http://staging.popclusive.asia/okppdsnq/Buy-Sell_Agreement_22473650_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353903/","spamhaus"
-"353902","2020-04-29 14:30:13","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_57552714_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353902/","spamhaus"
+"353902","2020-04-29 14:30:13","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_57552714_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353902/","spamhaus"
 "353901","2020-04-29 14:30:08","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_35096983_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353901/","spamhaus"
 "353900","2020-04-29 14:29:32","http://stelamedien.de/wp/parcel.php","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/353900/","anonymous"
 "353899","2020-04-29 14:29:29","http://alexandredekerchove.com/ylwhbcphyy/Buy-Sell_Agreement_021354_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353899/","spamhaus"
@@ -5570,7 +5851,7 @@
 "353896","2020-04-29 14:29:20","http://silverstargalaxy.com.silverstartv.website/cmea/Buy-Sell_Agreement_4586594_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353896/","spamhaus"
 "353895","2020-04-29 14:29:14","http://www.cheriyilbuilders.com/herevryxugc/80423486/Buy-Sell_Agreement_80423486_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353895/","spamhaus"
 "353894","2020-04-29 14:29:12","http://virustreatments.empeeevents.com/eyyudu/Buy-Sell_Agreement_5812432_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353894/","spamhaus"
-"353893","2020-04-29 14:29:07","http://staging.popclusive.asia/okppdsnq/96671/Buy-Sell_Agreement_96671_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353893/","spamhaus"
+"353893","2020-04-29 14:29:07","http://staging.popclusive.asia/okppdsnq/96671/Buy-Sell_Agreement_96671_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353893/","spamhaus"
 "353892","2020-04-29 14:29:03","https://bluecollarfinancial.net/gfmixt/Buy-Sell_Agreement_856388_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353892/","spamhaus"
 "353891","2020-04-29 14:28:58","http://britica.vn/dqsfv/Buy-Sell_Agreement_52744_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353891/","spamhaus"
 "353890","2020-04-29 14:28:52","http://drinkopolykopen.nl/wp-content/uploads/2020/04/nnpebk/442375/Buy-Sell_Agreement_442375_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353890/","spamhaus"
@@ -5578,12 +5859,12 @@
 "353888","2020-04-29 14:28:17","http://dev.apshaps.se/sdub/Buy-Sell_Agreement_2457_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353888/","spamhaus"
 "353887","2020-04-29 14:28:14","http://NCERTSOLUTIONACADEMY.COM/yghks/Buy-Sell_Agreement_5833942_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353887/","spamhaus"
 "353886","2020-04-29 14:28:12","http://promassager.ga/yltkoe/7604/Buy-Sell_Agreement_7604_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353886/","spamhaus"
-"353885","2020-04-29 14:28:07","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_578727_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353885/","spamhaus"
+"353885","2020-04-29 14:28:07","http://digital-marketing-institute-delhi.empeeevents.com/epsmnewmgo/Buy-Sell_Agreement_578727_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353885/","spamhaus"
 "353884","2020-04-29 14:28:02","http://silverstargalaxy.com.silverstartv.website/cmea/95147/Buy-Sell_Agreement_95147_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353884/","spamhaus"
 "353883","2020-04-29 14:27:59","http://bolescy.com/otue/Buy-Sell_Agreement_14503_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353883/","spamhaus"
 "353882","2020-04-29 14:27:56","http://bolescy.com/otue/8739403/Buy-Sell_Agreement_8739403_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353882/","spamhaus"
 "353881","2020-04-29 14:27:53","http://oskarnews.gazashare.com/pelsq/Buy-Sell_Agreement_14165_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353881/","spamhaus"
-"353880","2020-04-29 14:27:48","http://jessymart.flexyhub.com/ssuzzix/3866/Buy-Sell_Agreement_3866_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353880/","spamhaus"
+"353880","2020-04-29 14:27:48","http://jessymart.flexyhub.com/ssuzzix/3866/Buy-Sell_Agreement_3866_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353880/","spamhaus"
 "353879","2020-04-29 14:27:46","http://www.cheriyilbuilders.com/herevryxugc/Buy-Sell_Agreement_1328_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353879/","spamhaus"
 "353878","2020-04-29 14:27:40","http://morruko.antesos.com/fqtylehpb/Buy-Sell_Agreement_6586635_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353878/","spamhaus"
 "353877","2020-04-29 14:27:37","http://sunboom-gift.com/zwbaxf/Buy-Sell_Agreement_828327_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353877/","spamhaus"
@@ -5597,7 +5878,7 @@
 "353869","2020-04-29 14:27:08","http://cerradocredito.com.br/wp-content/uploads/2020/04/beazvgceu/626389/Buy-Sell_Agreement_626389_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353869/","spamhaus"
 "353868","2020-04-29 14:27:03","http://ade.topepics.com/pkthdrgdb/27224/Buy-Sell_Agreement_27224_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353868/","spamhaus"
 "353867","2020-04-29 14:26:57","http://NCERTSOLUTIONACADEMY.COM/yghks/25607548/Buy-Sell_Agreement_25607548_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353867/","spamhaus"
-"353866","2020-04-29 14:26:55","http://staging.popclusive.asia/okppdsnq/94144607/Buy-Sell_Agreement_94144607_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353866/","spamhaus"
+"353866","2020-04-29 14:26:55","http://staging.popclusive.asia/okppdsnq/94144607/Buy-Sell_Agreement_94144607_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353866/","spamhaus"
 "353865","2020-04-29 14:26:49","http://dev.apshaps.se/sdub/Buy-Sell_Agreement_555260_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353865/","spamhaus"
 "353864","2020-04-29 14:26:44","https://kamagra.in.rs/bqcbhf/8599/Buy-Sell_Agreement_8599_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353864/","spamhaus"
 "353863","2020-04-29 14:26:41","http://NCERTSOLUTIONACADEMY.COM/yghks/Buy-Sell_Agreement_4693_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353863/","spamhaus"
@@ -5607,7 +5888,7 @@
 "353859","2020-04-29 14:26:20","http://morruko.antesos.com/fqtylehpb/9510131/Buy-Sell_Agreement_9510131_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353859/","spamhaus"
 "353858","2020-04-29 14:26:15","http://duongfpt.ga/lxgqgox/Buy-Sell_Agreement_4460233_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353858/","spamhaus"
 "353857","2020-04-29 14:26:10","http://dzapasigroup.usapglobal.org/pbnxnmc/Buy-Sell_Agreement_94794_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353857/","spamhaus"
-"353856","2020-04-29 14:26:05","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_06414491_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353856/","spamhaus"
+"353856","2020-04-29 14:26:05","https://vip.recommendedtoyoo.com/bdhycmsxctp/Buy-Sell_Agreement_06414491_04282020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353856/","spamhaus"
 "353855","2020-04-29 14:25:23","http://silverstargalaxy.com.silverstartv.website/cmea/Buy-Sell_Agreement_731464_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353855/","spamhaus"
 "353854","2020-04-29 14:25:09","https://bluecollarfinancial.net/gfmixt/5884/Buy-Sell_Agreement_5884_04282020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353854/","spamhaus"
 "353853","2020-04-29 14:25:04","http://104.168.198.194/x86_64","online","malware_download","64-bit,elf,x86-64","https://urlhaus.abuse.ch/url/353853/","geenensp"
@@ -5713,17 +5994,17 @@
 "353753","2020-04-29 09:03:40","http://xn--transfgran-mgbbb600b.ro/UPS/ShippingInfo.jar","offline","malware_download","Adwind,ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353753/","spamhaus"
 "353752","2020-04-29 09:03:37","http://coderived.in/zlseg/Buy-Sell_Agreement_34704566_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353752/","spamhaus"
 "353751","2020-04-29 09:03:33","http://anadolutatili.com/xtfdux/17055888/Buy-Sell_Agreement_17055888_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353751/","spamhaus"
-"353750","2020-04-29 09:03:28","http://healtina.com/xcaspvi/5392047/Buy-Sell_Agreement_5392047_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353750/","spamhaus"
+"353750","2020-04-29 09:03:28","http://healtina.com/xcaspvi/5392047/Buy-Sell_Agreement_5392047_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353750/","spamhaus"
 "353749","2020-04-29 09:03:26","https://rangebroadcasting.com/obrmn/93586244/Buy-Sell_Agreement_93586244_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353749/","spamhaus"
 "353748","2020-04-29 09:03:13","https://nmal.info/ntsphsl/9082650/Buy-Sell_Agreement_9082650_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353748/","spamhaus"
 "353747","2020-04-29 09:03:12","https://www.loodgieterjoost.be/wp-content/uploads/2020/04/osiwprp/Buy-Sell_Agreement_470336_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353747/","spamhaus"
 "353746","2020-04-29 09:03:07","http://bookmytripping.com/tgxmxcm/30307798/Buy-Sell_Agreement_30307798_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353746/","spamhaus"
 "353745","2020-04-29 09:03:00","http://kandiandcolor.codeworkscanada.com/v/Buy-Sell_Agreement_59624925_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353745/","spamhaus"
 "353744","2020-04-29 09:02:57","http://cyberemprende.cl/wjoh/38575/Buy-Sell_Agreement_38575_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353744/","spamhaus"
-"353743","2020-04-29 09:02:53","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_658957_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353743/","spamhaus"
+"353743","2020-04-29 09:02:53","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_658957_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353743/","spamhaus"
 "353742","2020-04-29 09:02:46","https://how.ph/mrb/706759/Buy-Sell_Agreement_706759_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353742/","spamhaus"
-"353741","2020-04-29 09:02:37","http://myexpertca.in/fomi/63279611/Buy-Sell_Agreement_63279611_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353741/","spamhaus"
-"353740","2020-04-29 09:02:21","http://vaeqpu.329263.com/al/Buy-Sell_Agreement_23601612_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353740/","spamhaus"
+"353741","2020-04-29 09:02:37","http://myexpertca.in/fomi/63279611/Buy-Sell_Agreement_63279611_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353741/","spamhaus"
+"353740","2020-04-29 09:02:21","http://vaeqpu.329263.com/al/Buy-Sell_Agreement_23601612_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353740/","spamhaus"
 "353739","2020-04-29 09:02:18","https://www.loodgieterjoost.be/wp-content/uploads/2020/04/osiwprp/Buy-Sell_Agreement_3544_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353739/","spamhaus"
 "353738","2020-04-29 09:02:15","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/3096/Buy-Sell_Agreement_3096_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353738/","spamhaus"
 "353737","2020-04-29 09:02:03","https://miraab.ir/wp-content/uploads/2020/04/tk/4080595/Buy-Sell_Agreement_4080595_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353737/","spamhaus"
@@ -5751,19 +6032,19 @@
 "353715","2020-04-29 08:41:16","http://alnajimaa.website.bahaoption.website/uktvs/Buy-Sell_Agreement_5473_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353715/","spamhaus"
 "353714","2020-04-29 08:41:11","https://www.mfpburundi.bi/wp-content/uploads/2020/04/pb/Buy-Sell_Agreement_170999_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353714/","spamhaus"
 "353713","2020-04-29 08:41:10","http://earningtipsbd.com/pn/280019/Buy-Sell_Agreement_280019_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353713/","spamhaus"
-"353712","2020-04-29 08:41:08","http://www.gainsdirectory.com/imtlt/11119/Buy-Sell_Agreement_11119_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353712/","spamhaus"
+"353712","2020-04-29 08:41:08","http://www.gainsdirectory.com/imtlt/11119/Buy-Sell_Agreement_11119_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353712/","spamhaus"
 "353711","2020-04-29 08:41:05","http://delmaestro.espacioeterno.com/e/Buy-Sell_Agreement_23577525_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353711/","spamhaus"
 "353710","2020-04-29 08:41:03","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/Buy-Sell_Agreement_50658585_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353710/","spamhaus"
 "353709","2020-04-29 08:40:55","http://cyberemprende.cl/wjoh/8373/Buy-Sell_Agreement_8373_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353709/","spamhaus"
-"353708","2020-04-29 08:40:48","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_6108_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353708/","spamhaus"
+"353708","2020-04-29 08:40:48","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_6108_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353708/","spamhaus"
 "353707","2020-04-29 08:40:43","https://aliyousefpoor.com/urcu/Buy-Sell_Agreement_24920_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353707/","spamhaus"
-"353706","2020-04-29 08:40:41","http://healtina.com/xcaspvi/2017128/Buy-Sell_Agreement_2017128_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353706/","spamhaus"
+"353706","2020-04-29 08:40:41","http://healtina.com/xcaspvi/2017128/Buy-Sell_Agreement_2017128_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353706/","spamhaus"
 "353705","2020-04-29 08:40:39","https://kingdomcarecan.com/nbdvaba/Buy-Sell_Agreement_04521_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353705/","spamhaus"
 "353704","2020-04-29 08:40:30","https://dienmaycu.vn/rcckjv/Buy-Sell_Agreement_762354_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353704/","spamhaus"
 "353703","2020-04-29 08:40:26","http://alnajimaa.website.bahaoption.website/uktvs/978968/Buy-Sell_Agreement_978968_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353703/","spamhaus"
 "353702","2020-04-29 08:40:22","https://kingdomcarecan.com/nbdvaba/Buy-Sell_Agreement_08047_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353702/","spamhaus"
 "353701","2020-04-29 08:40:16","http://www.amodoutours.com/rretwxj/83870466/Buy-Sell_Agreement_83870466_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353701/","spamhaus"
-"353700","2020-04-29 08:40:14","http://jjjexx.329263.com/vi/Buy-Sell_Agreement_181721_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353700/","spamhaus"
+"353700","2020-04-29 08:40:14","http://jjjexx.329263.com/vi/Buy-Sell_Agreement_181721_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353700/","spamhaus"
 "353699","2020-04-29 08:40:09","https://alucard.online/yarx/20711/Buy-Sell_Agreement_20711_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353699/","spamhaus"
 "353698","2020-04-29 08:40:05","http://www.energyplusjuice.ir/wp-content/uploads/2020/04/m/Buy-Sell_Agreement_14391_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353698/","spamhaus"
 "353697","2020-04-29 08:38:03","https://pastebin.com/raw/iVtywrUz","offline","malware_download","None","https://urlhaus.abuse.ch/url/353697/","JayTHL"
@@ -5778,9 +6059,9 @@
 "353688","2020-04-29 08:13:25","http://arowanafishforsale.com/dbmwl/1922788/Buy-Sell_Agreement_1922788_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353688/","spamhaus"
 "353687","2020-04-29 08:13:20","http://earningtipsbd.com/pn/Buy-Sell_Agreement_481073_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353687/","spamhaus"
 "353686","2020-04-29 08:11:40","http://alnajimaa.website.bahaoption.website/uktvs/89732/Buy-Sell_Agreement_89732_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353686/","spamhaus"
-"353685","2020-04-29 08:11:35","http://myexpertca.in/fomi/89079745/Buy-Sell_Agreement_89079745_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353685/","spamhaus"
+"353685","2020-04-29 08:11:35","http://myexpertca.in/fomi/89079745/Buy-Sell_Agreement_89079745_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353685/","spamhaus"
 "353684","2020-04-29 08:11:32","http://mlbfreestream.gq/n/Buy-Sell_Agreement_35749554_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353684/","spamhaus"
-"353683","2020-04-29 08:11:26","http://healtina.com/xcaspvi/16772926/Buy-Sell_Agreement_16772926_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353683/","spamhaus"
+"353683","2020-04-29 08:11:26","http://healtina.com/xcaspvi/16772926/Buy-Sell_Agreement_16772926_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353683/","spamhaus"
 "353682","2020-04-29 08:11:20","http://www.energyplusjuice.ir/wp-content/uploads/2020/04/m/002783/Buy-Sell_Agreement_002783_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353682/","spamhaus"
 "353681","2020-04-29 08:11:15","http://www.amodoutours.com/rretwxj/8052388/Buy-Sell_Agreement_8052388_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353681/","spamhaus"
 "353680","2020-04-29 08:11:13","http://hdlive-espntv.live-sportshd.website/bpg/23066489/Buy-Sell_Agreement_23066489_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353680/","spamhaus"
@@ -5807,8 +6088,8 @@
 "353659","2020-04-29 08:02:12","https://aliyousefpoor.com/urcu/Buy-Sell_Agreement_87065224_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353659/","spamhaus"
 "353658","2020-04-29 08:02:08","http://bonyamin.com/wyupb/36769/Buy-Sell_Agreement_36769_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353658/","spamhaus"
 "353657","2020-04-29 08:02:02","https://drwendyellis.com/laqrip/Buy-Sell_Agreement_9435083_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353657/","spamhaus"
-"353656","2020-04-29 08:01:55","http://sexybaccarat.329263.com/k/021803/Buy-Sell_Agreement_021803_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353656/","spamhaus"
-"353655","2020-04-29 08:01:48","http://kgfs3.329263.com/cvsf/94279544/Buy-Sell_Agreement_94279544_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353655/","spamhaus"
+"353656","2020-04-29 08:01:55","http://sexybaccarat.329263.com/k/021803/Buy-Sell_Agreement_021803_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353656/","spamhaus"
+"353655","2020-04-29 08:01:48","http://kgfs3.329263.com/cvsf/94279544/Buy-Sell_Agreement_94279544_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353655/","spamhaus"
 "353654","2020-04-29 08:01:44","http://earningtipsbd.com/pn/16352769/Buy-Sell_Agreement_16352769_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353654/","spamhaus"
 "353653","2020-04-29 08:01:40","https://drwendyellis.com/laqrip/262184/Buy-Sell_Agreement_262184_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353653/","spamhaus"
 "353652","2020-04-29 08:01:28","http://rentaroom.ml/oqqthv/33859/Buy-Sell_Agreement_33859_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353652/","spamhaus"
@@ -5825,7 +6106,7 @@
 "353641","2020-04-29 07:23:07","https://langwieser.at/FedEx/ShippingInfo.jar","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353641/","spamhaus"
 "353640","2020-04-29 07:23:02","http://mlbfreestream.ml/q/Buy-Sell_Agreement_7955_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353640/","spamhaus"
 "353639","2020-04-29 07:22:57","https://siseco.mx/wp-content/uploads/2020/04/beomqxc/Buy-Sell_Agreement_900336_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353639/","spamhaus"
-"353638","2020-04-29 07:22:51","https://royalplusmobile.ir/wp-content/uploads/2020/04/ohzjt/8368/Buy-Sell_Agreement_8368_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353638/","spamhaus"
+"353638","2020-04-29 07:22:51","https://royalplusmobile.ir/wp-content/uploads/2020/04/ohzjt/8368/Buy-Sell_Agreement_8368_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353638/","spamhaus"
 "353637","2020-04-29 07:22:45","http://delmaestro.espacioeterno.com/e/Buy-Sell_Agreement_424391_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353637/","spamhaus"
 "353636","2020-04-29 07:22:43","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/90695556/Buy-Sell_Agreement_90695556_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353636/","spamhaus"
 "353635","2020-04-29 07:22:37","http://24.115.48.43:37623/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353635/","geenensp"
@@ -5835,7 +6116,7 @@
 "353631","2020-04-29 07:22:25","http://livetvsports.ml/z/Buy-Sell_Agreement_54596_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353631/","spamhaus"
 "353630","2020-04-29 07:22:21","http://coderived.in/zlseg/Buy-Sell_Agreement_1571081_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353630/","spamhaus"
 "353629","2020-04-29 07:22:16","http://sexybaccarat.329263.com/k/Buy-Sell_Agreement_62226978_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353629/","spamhaus"
-"353628","2020-04-29 07:22:08","http://myexpertca.in/fomi/Buy-Sell_Agreement_23325291_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353628/","spamhaus"
+"353628","2020-04-29 07:22:08","http://myexpertca.in/fomi/Buy-Sell_Agreement_23325291_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353628/","spamhaus"
 "353627","2020-04-29 07:21:57","http://www.alnahrainfilminstitute.com/kuhjz/5389/Buy-Sell_Agreement_5389_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353627/","spamhaus"
 "353626","2020-04-29 07:21:54","http://alnajimaa.website.bahaoption.website/uktvs/3704870/Buy-Sell_Agreement_3704870_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353626/","spamhaus"
 "353625","2020-04-29 07:21:50","https://brenleyquartzgh.com/ga/Buy-Sell_Agreement_60370501_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353625/","spamhaus"
@@ -5843,7 +6124,7 @@
 "353623","2020-04-29 07:21:36","http://www.alnahrainfilminstitute.com/kuhjz/28179863/Buy-Sell_Agreement_28179863_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353623/","spamhaus"
 "353622","2020-04-29 07:21:34","http://arowanafishforsale.com/dbmwl/Buy-Sell_Agreement_698683_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353622/","spamhaus"
 "353621","2020-04-29 07:21:29","http://www.amodoutours.com/rretwxj/350310/Buy-Sell_Agreement_350310_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353621/","spamhaus"
-"353620","2020-04-29 07:21:27","http://amedeoscognamiglio.329263.com/i/24827473/Buy-Sell_Agreement_24827473_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353620/","spamhaus"
+"353620","2020-04-29 07:21:27","http://amedeoscognamiglio.329263.com/i/24827473/Buy-Sell_Agreement_24827473_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353620/","spamhaus"
 "353619","2020-04-29 07:21:17","http://rentaroom.ml/oqqthv/4912/Buy-Sell_Agreement_4912_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353619/","spamhaus"
 "353618","2020-04-29 07:21:13","https://siseco.mx/wp-content/uploads/2020/04/beomqxc/14307/Buy-Sell_Agreement_14307_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353618/","spamhaus"
 "353617","2020-04-29 07:21:06","http://fifa555easy.329263.com/x/441957/Buy-Sell_Agreement_441957_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353617/","spamhaus"
@@ -5851,7 +6132,7 @@
 "353615","2020-04-29 07:20:51","https://wwealthllc.com/sjokmsq/Buy-Sell_Agreement_087485_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353615/","spamhaus"
 "353614","2020-04-29 07:20:37","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/60928197/Buy-Sell_Agreement_60928197_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353614/","spamhaus"
 "353613","2020-04-29 07:20:34","http://www.amodoutours.com/rretwxj/Buy-Sell_Agreement_7730054_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353613/","spamhaus"
-"353612","2020-04-29 07:20:32","http://myexpertca.in/fomi/197064/Buy-Sell_Agreement_197064_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353612/","spamhaus"
+"353612","2020-04-29 07:20:32","http://myexpertca.in/fomi/197064/Buy-Sell_Agreement_197064_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353612/","spamhaus"
 "353611","2020-04-29 07:20:24","http://kandiandcolor.codeworkscanada.com/v/05078/Buy-Sell_Agreement_05078_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353611/","spamhaus"
 "353610","2020-04-29 07:20:19","https://miraab.ir/wp-content/uploads/2020/04/tk/5646120/Buy-Sell_Agreement_5646120_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353610/","spamhaus"
 "353609","2020-04-29 07:20:07","https://www.cinnamoncreations.com.au/h/Buy-Sell_Agreement_04836_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353609/","spamhaus"
@@ -5876,7 +6157,7 @@
 "353590","2020-04-29 06:38:59","https://aliyousefpoor.com/urcu/Buy-Sell_Agreement_9315_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353590/","spamhaus"
 "353589","2020-04-29 06:38:52","https://www.mfpburundi.bi/wp-content/uploads/2020/04/pb/3220667/Buy-Sell_Agreement_3220667_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353589/","spamhaus"
 "353588","2020-04-29 06:38:47","https://nmal.info/ntsphsl/1838107/Buy-Sell_Agreement_1838107_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353588/","spamhaus"
-"353587","2020-04-29 06:38:45","http://jjjexx.329263.com/vi/Buy-Sell_Agreement_6004581_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353587/","spamhaus"
+"353587","2020-04-29 06:38:45","http://jjjexx.329263.com/vi/Buy-Sell_Agreement_6004581_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353587/","spamhaus"
 "353586","2020-04-29 06:38:42","http://mlbfreestream.gq/n/Buy-Sell_Agreement_410171_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353586/","spamhaus"
 "353585","2020-04-29 06:38:36","http://cpagrace.cl/k/Buy-Sell_Agreement_3571_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353585/","spamhaus"
 "353584","2020-04-29 06:37:51","http://bookmytripping.com/tgxmxcm/822343/Buy-Sell_Agreement_822343_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353584/","spamhaus"
@@ -5892,13 +6173,13 @@
 "353574","2020-04-29 06:37:09","http://vaeqpu.329263.com/al/Buy-Sell_Agreement_13490_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353574/","spamhaus"
 "353573","2020-04-29 06:36:44","http://livetvsports.ml/z/4244/Buy-Sell_Agreement_4244_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353573/","spamhaus"
 "353572","2020-04-29 06:36:38","https://dienmaycu.vn/rcckjv/Buy-Sell_Agreement_8596071_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353572/","spamhaus"
-"353571","2020-04-29 06:36:35","http://vaeqpu.329263.com/al/56057178/Buy-Sell_Agreement_56057178_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353571/","spamhaus"
+"353571","2020-04-29 06:36:35","http://vaeqpu.329263.com/al/56057178/Buy-Sell_Agreement_56057178_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353571/","spamhaus"
 "353570","2020-04-29 06:36:30","https://www.loodgieterjoost.be/wp-content/uploads/2020/04/osiwprp/82152/Buy-Sell_Agreement_82152_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353570/","spamhaus"
 "353569","2020-04-29 06:36:28","http://85.217.170.105/mips","online","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/353569/","geenensp"
 "353568","2020-04-29 06:36:26","http://85.217.170.105/XXX.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/353568/","geenensp"
 "353567","2020-04-29 06:36:24","http://rentaroom.ml/oqqthv/Buy-Sell_Agreement_8132_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353567/","spamhaus"
 "353566","2020-04-29 06:36:20","http://bookmytripping.com/tgxmxcm/Buy-Sell_Agreement_781209_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353566/","spamhaus"
-"353565","2020-04-29 06:36:09","http://sexybaccarat.329263.com/k/Buy-Sell_Agreement_3633_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353565/","spamhaus"
+"353565","2020-04-29 06:36:09","http://sexybaccarat.329263.com/k/Buy-Sell_Agreement_3633_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353565/","spamhaus"
 "353564","2020-04-29 06:36:06","https://rugab.se/c/3260/Buy-Sell_Agreement_3260_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353564/","spamhaus"
 "353563","2020-04-29 06:36:04","http://vasylivka.lebrada.gov.ua/wp-content/themes/calliope/mwqpxes/024105/Buy-Sell_Agreement_024105_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353563/","spamhaus"
 "353562","2020-04-29 06:36:02","http://tulmix-beton.ru/hpoakm/27343853/Buy-Sell_Agreement_27343853_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353562/","spamhaus"
@@ -5930,7 +6211,7 @@
 "353536","2020-04-29 06:32:23","https://siseco.mx/wp-content/uploads/2020/04/beomqxc/5997272/Buy-Sell_Agreement_5997272_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353536/","spamhaus"
 "353535","2020-04-29 06:32:18","http://arowanafishforsale.com/dbmwl/03134/Buy-Sell_Agreement_03134_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353535/","spamhaus"
 "353534","2020-04-29 06:24:17","http://175.212.52.9:65408/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353534/","geenensp"
-"353533","2020-04-29 06:24:13","http://jjjexx.329263.com/vi/79300/Buy-Sell_Agreement_79300_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353533/","spamhaus"
+"353533","2020-04-29 06:24:13","http://jjjexx.329263.com/vi/79300/Buy-Sell_Agreement_79300_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353533/","spamhaus"
 "353532","2020-04-29 06:23:40","http://208.68.39.30/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/353532/","geenensp"
 "353531","2020-04-29 06:23:37","http://208.68.39.30/EkSgbins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/353531/","geenensp"
 "353530","2020-04-29 06:23:34","http://218.32.118.1:13579/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353530/","geenensp"
@@ -6108,11 +6389,11 @@
 "353358","2020-04-28 19:24:42","http://humdingerdesigns.com.au/mockup/wp-includes/js/jquery/ui/api.lib.php","offline","malware_download","Dridex,zip","https://urlhaus.abuse.ch/url/353358/","malware_traffic"
 "353357","2020-04-28 19:24:35","http://harimbaofek.net/wp-content/themes/twentynineteen/sass/blocks/api.core.php","offline","malware_download","Dridex,zip","https://urlhaus.abuse.ch/url/353357/","malware_traffic"
 "353356","2020-04-28 19:24:30","http://dentistesamson.com/wp-content/plugins/LayerSlider/demos/carousel/framework.php","offline","malware_download","Dridex,zip","https://urlhaus.abuse.ch/url/353356/","malware_traffic"
-"353355","2020-04-28 19:24:27","http://amedeoscognamiglio.329263.com/i/Buy-Sell_Agreement_5137311_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353355/","spamhaus"
+"353355","2020-04-28 19:24:27","http://amedeoscognamiglio.329263.com/i/Buy-Sell_Agreement_5137311_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353355/","spamhaus"
 "353354","2020-04-28 19:24:22","https://www.dzyzz.cn/wp-content/plugins/apikey/zwj/7778718/Buy-Sell_Agreement_7778718_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353354/","spamhaus"
-"353353","2020-04-28 19:24:14","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_2467273_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353353/","spamhaus"
+"353353","2020-04-28 19:24:14","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_2467273_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353353/","spamhaus"
 "353352","2020-04-28 19:24:09","http://hdlive-espntv.live-sportshd.website/bpg/Buy-Sell_Agreement_7257829_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353352/","spamhaus"
-"353351","2020-04-28 19:24:07","http://kgfs3.329263.com/cvsf/Buy-Sell_Agreement_2272_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353351/","spamhaus"
+"353351","2020-04-28 19:24:07","http://kgfs3.329263.com/cvsf/Buy-Sell_Agreement_2272_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353351/","spamhaus"
 "353350","2020-04-28 19:24:03","http://bookmytripping.com/tgxmxcm/49493346/Buy-Sell_Agreement_49493346_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353350/","spamhaus"
 "353349","2020-04-28 19:19:17","http://filegotosecureothers.duckdns.org/dmb/vbc.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/353349/","abuse_ch"
 "353348","2020-04-28 19:19:13","http://vasylivka.lebrada.gov.ua/wp-content/themes/calliope/mwqpxes/Buy-Sell_Agreement_85618_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353348/","spamhaus"
@@ -6129,15 +6410,15 @@
 "353337","2020-04-28 19:04:15","https://delmaestro.cl/wtdeng/82374/Buy-Sell_Agreement_82374_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353337/","spamhaus"
 "353336","2020-04-28 19:04:11","http://maharatal3zl.com/xdlycfp/Buy-Sell_Agreement_0922006_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353336/","spamhaus"
 "353335","2020-04-28 19:04:06","https://brenleyquartzgh.com/ga/Buy-Sell_Agreement_21615_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353335/","spamhaus"
-"353334","2020-04-28 19:03:02","http://fifa555easy.329263.com/x/38011086/Buy-Sell_Agreement_38011086_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353334/","spamhaus"
+"353334","2020-04-28 19:03:02","http://fifa555easy.329263.com/x/38011086/Buy-Sell_Agreement_38011086_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353334/","spamhaus"
 "353333","2020-04-28 19:02:55","http://escarateeventos.ladevi.cl/yworbn/44978/Buy-Sell_Agreement_44978_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353333/","spamhaus"
 "353332","2020-04-28 19:02:52","https://nmal.info/ntsphsl/84675/Buy-Sell_Agreement_84675_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353332/","spamhaus"
-"353331","2020-04-28 19:02:50","http://lagalaxy88easy.329263.com/lbrnxxd/Buy-Sell_Agreement_7744679_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353331/","spamhaus"
+"353331","2020-04-28 19:02:50","http://lagalaxy88easy.329263.com/lbrnxxd/Buy-Sell_Agreement_7744679_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353331/","spamhaus"
 "353330","2020-04-28 19:02:45","http://veniceshop.ru/wp-content/uploads/2020/04/xwrxtgh/Buy-Sell_Agreement_624286_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353330/","spamhaus"
 "353329","2020-04-28 19:02:42","https://delmaestro.cl/wtdeng/Buy-Sell_Agreement_3701_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353329/","spamhaus"
 "353328","2020-04-28 19:02:38","https://brenleyquartzgh.com/ga/91417284/Buy-Sell_Agreement_91417284_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353328/","spamhaus"
 "353327","2020-04-28 19:02:33","http://elabugablog.ru/zzj/Buy-Sell_Agreement_10640_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353327/","spamhaus"
-"353326","2020-04-28 19:02:30","https://dienmaycu.vn/rcckjv/4926121/Buy-Sell_Agreement_4926121_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353326/","spamhaus"
+"353326","2020-04-28 19:02:30","https://dienmaycu.vn/rcckjv/4926121/Buy-Sell_Agreement_4926121_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353326/","spamhaus"
 "353325","2020-04-28 19:02:26","http://avto-pro.hostenko.com/too/Buy-Sell_Agreement_738797_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353325/","spamhaus"
 "353324","2020-04-28 19:02:15","http://23.95.89.71/skid.mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/353324/","geenensp"
 "353323","2020-04-28 19:01:42","http://85.204.116.216/skid.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/353323/","geenensp"
@@ -6152,9 +6433,9 @@
 "353314","2020-04-28 18:27:03","http://88.218.16.37/NAnazCgFwSxQ8sK.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/353314/","zbetcheckin"
 "353313","2020-04-28 18:24:04","http://88.218.16.37/D3nXjwy5EMjHNdM.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/353313/","zbetcheckin"
 "353312","2020-04-28 18:22:08","https://digibookspublishing.com/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/353312/","zbetcheckin"
-"353311","2020-04-28 18:21:10","http://modcloudserver.eu/ahihi/rawone.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/353311/","zbetcheckin"
-"353310","2020-04-28 18:20:38","http://modcloudserver.eu/stanz/stanz.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/353310/","zbetcheckin"
-"353309","2020-04-28 18:13:17","http://ufabet168168.329263.com/tmpf/9173652/Buy-Sell_Agreement_9173652_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353309/","spamhaus"
+"353311","2020-04-28 18:21:10","http://modcloudserver.eu/ahihi/rawone.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/353311/","zbetcheckin"
+"353310","2020-04-28 18:20:38","http://modcloudserver.eu/stanz/stanz.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/353310/","zbetcheckin"
+"353309","2020-04-28 18:13:17","http://ufabet168168.329263.com/tmpf/9173652/Buy-Sell_Agreement_9173652_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353309/","spamhaus"
 "353308","2020-04-28 18:13:03","http://bookmytripping.com/tgxmxcm/Buy-Sell_Agreement_04173399_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353308/","spamhaus"
 "353307","2020-04-28 18:08:09","http://mlbfreestream.gq/n/042516/Buy-Sell_Agreement_042516_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353307/","spamhaus"
 "353306","2020-04-28 18:08:05","http://healtina.com/xcaspvi/62858/Buy-Sell_Agreement_62858_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353306/","spamhaus"
@@ -6169,7 +6450,7 @@
 "353297","2020-04-28 18:06:33","http://bbfjjf8.com/we20lo85/aio0i32p.php?l=nok3.cab","offline","malware_download","geofenced,us,USA,Valak","https://urlhaus.abuse.ch/url/353297/","JAMESWT_MHT"
 "353296","2020-04-28 18:06:28","http://bbfjjf8.com/we20lo85/aio0i32p.php?l=nok2.cab","offline","malware_download","geofenced,us,USA,Valak","https://urlhaus.abuse.ch/url/353296/","JAMESWT_MHT"
 "353295","2020-04-28 18:06:23","http://bbfjjf8.com/we20lo85/aio0i32p.php?l=nok1.cab","offline","malware_download","geofenced,us,USA,Valak","https://urlhaus.abuse.ch/url/353295/","JAMESWT_MHT"
-"353294","2020-04-28 18:06:19","https://dienmaycu.vn/rcckjv/Buy-Sell_Agreement_4487_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353294/","spamhaus"
+"353294","2020-04-28 18:06:19","https://dienmaycu.vn/rcckjv/Buy-Sell_Agreement_4487_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353294/","spamhaus"
 "353293","2020-04-28 18:06:11","https://www.foreveramericabrands.com/xaayvq/7554389/Buy-Sell_Agreement_7554389_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353293/","spamhaus"
 "353292","2020-04-28 18:06:06","https://www.mfpburundi.bi/wp-content/uploads/2020/04/pb/Buy-Sell_Agreement_36241823_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353292/","spamhaus"
 "353291","2020-04-28 18:05:31","http://182.116.107.161:50650/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353291/","Gandylyan1"
@@ -6185,11 +6466,11 @@
 "353281","2020-04-28 18:04:13","http://89.148.204.161:43288/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353281/","Gandylyan1"
 "353280","2020-04-28 18:04:09","http://162.212.115.125:55939/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353280/","Gandylyan1"
 "353279","2020-04-28 18:04:05","http://182.119.102.175:52826/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353279/","Gandylyan1"
-"353278","2020-04-28 17:57:41","http://healtina.com/xcaspvi/9824902/Buy-Sell_Agreement_9824902_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353278/","spamhaus"
+"353278","2020-04-28 17:57:41","http://healtina.com/xcaspvi/9824902/Buy-Sell_Agreement_9824902_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353278/","spamhaus"
 "353277","2020-04-28 17:57:08","http://avto-pro.hostenko.com/too/4955024/Buy-Sell_Agreement_4955024_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353277/","spamhaus"
-"353276","2020-04-28 17:56:33","http://www.gainsdirectory.com/imtlt/Buy-Sell_Agreement_7954433_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353276/","spamhaus"
+"353276","2020-04-28 17:56:33","http://www.gainsdirectory.com/imtlt/Buy-Sell_Agreement_7954433_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353276/","spamhaus"
 "353275","2020-04-28 17:51:34","http://genqur.com/_flox.exe","offline","malware_download","Dridex,exe","https://urlhaus.abuse.ch/url/353275/","abuse_ch"
-"353274","2020-04-28 17:47:13","https://royalplusmobile.ir/wp-content/uploads/2020/04/ohzjt/22076/Buy-Sell_Agreement_22076_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353274/","spamhaus"
+"353274","2020-04-28 17:47:13","https://royalplusmobile.ir/wp-content/uploads/2020/04/ohzjt/22076/Buy-Sell_Agreement_22076_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353274/","spamhaus"
 "353273","2020-04-28 17:47:07","http://escarateeventos.ladevi.cl/yworbn/1682/Buy-Sell_Agreement_1682_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353273/","spamhaus"
 "353272","2020-04-28 17:46:14","http://yucatanentiemporeal.com/wp-content/uploads/2020/04/nwl/1889533/Buy-Sell_Agreement_1889533_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353272/","spamhaus"
 "353271","2020-04-28 17:46:12","http://maharatal3zl.com/xdlycfp/38973/Buy-Sell_Agreement_38973_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353271/","spamhaus"
@@ -6212,11 +6493,11 @@
 "353254","2020-04-28 17:16:10","http://sportstrem.gq/imqmxkw/0835/Buy-Sell_Agreement_0835_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353254/","spamhaus"
 "353253","2020-04-28 17:14:18","http://www.alnahrainfilminstitute.com/kuhjz/Buy-Sell_Agreement_744702_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353253/","spamhaus"
 "353252","2020-04-28 17:14:16","https://brenleyquartzgh.com/ga/50602/Buy-Sell_Agreement_50602_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353252/","spamhaus"
-"353251","2020-04-28 17:14:10","http://lagalaxy88easy.329263.com/lbrnxxd/Buy-Sell_Agreement_538674_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353251/","spamhaus"
-"353250","2020-04-28 17:12:08","http://vaeqpu.329263.com/al/73044112/Buy-Sell_Agreement_73044112_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353250/","spamhaus"
+"353251","2020-04-28 17:14:10","http://lagalaxy88easy.329263.com/lbrnxxd/Buy-Sell_Agreement_538674_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353251/","spamhaus"
+"353250","2020-04-28 17:12:08","http://vaeqpu.329263.com/al/73044112/Buy-Sell_Agreement_73044112_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353250/","spamhaus"
 "353249","2020-04-28 17:12:05","http://kandiandcolor.codeworkscanada.com/v/Buy-Sell_Agreement_6751913_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353249/","spamhaus"
 "353248","2020-04-28 17:10:06","http://uewizi.com/_flox.exe","offline","malware_download","Dridex,exe","https://urlhaus.abuse.ch/url/353248/","abuse_ch"
-"353247","2020-04-28 17:06:12","http://myexpertca.in/fomi/655664/Buy-Sell_Agreement_655664_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353247/","spamhaus"
+"353247","2020-04-28 17:06:12","http://myexpertca.in/fomi/655664/Buy-Sell_Agreement_655664_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353247/","spamhaus"
 "353246","2020-04-28 17:06:04","http://cpagrace.cl/k/Buy-Sell_Agreement_93929_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353246/","spamhaus"
 "353245","2020-04-28 17:04:56","http://79.179.199.159:19730/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353245/","geenensp"
 "353244","2020-04-28 17:04:53","https://alucard.online/yarx/Buy-Sell_Agreement_8227546_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353244/","spamhaus"
@@ -6224,7 +6505,7 @@
 "353242","2020-04-28 17:04:36","http://www.amodoutours.com/rretwxj/Buy-Sell_Agreement_76046632_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353242/","spamhaus"
 "353241","2020-04-28 17:04:34","https://drwendyellis.com/laqrip/Buy-Sell_Agreement_548596_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353241/","spamhaus"
 "353240","2020-04-28 17:04:31","https://delmaestro.cl/wtdeng/0829/Buy-Sell_Agreement_0829_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353240/","spamhaus"
-"353239","2020-04-28 17:04:27","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_8854_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353239/","spamhaus"
+"353239","2020-04-28 17:04:27","http://ufabet168168.329263.com/tmpf/Buy-Sell_Agreement_8854_04272020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353239/","spamhaus"
 "353238","2020-04-28 17:04:20","http://arowanafishforsale.com/dbmwl/Buy-Sell_Agreement_1148_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353238/","spamhaus"
 "353237","2020-04-28 17:04:09","http://kosslouer.com/uu/29800863/Buy-Sell_Agreement_29800863_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353237/","spamhaus"
 "353236","2020-04-28 17:04:06","http://djonur24.de/hdc/Buy-Sell_Agreement_5964970_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353236/","spamhaus"
@@ -6264,7 +6545,7 @@
 "353202","2020-04-28 16:25:33","https://pastebin.com/raw/Y2jGggLX","offline","malware_download","None","https://urlhaus.abuse.ch/url/353202/","JayTHL"
 "353201","2020-04-28 16:05:06","http://45.147.228.245/walmix/x.exe","offline","malware_download","Parallax,ParallaxRAT","https://urlhaus.abuse.ch/url/353201/","anonymous"
 "353200","2020-04-28 16:03:06","http://kandiandcolor.codeworkscanada.com/v/387336/Buy-Sell_Agreement_387336_04272020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353200/","spamhaus"
-"353199","2020-04-28 15:57:05","http://23.247.102.120/bin_JKXbkLzP64.bin","online","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/353199/","abuse_ch"
+"353199","2020-04-28 15:57:05","http://23.247.102.120/bin_JKXbkLzP64.bin","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/353199/","abuse_ch"
 "353198","2020-04-28 15:55:31","http://104.168.44.166/bins/dvrbot.xtensa","offline","malware_download","None","https://urlhaus.abuse.ch/url/353198/","JayTHL"
 "353197","2020-04-28 15:55:29","http://104.168.44.166/bins/dvrbot.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/353197/","JayTHL"
 "353196","2020-04-28 15:55:26","http://104.168.44.166/bins/dvrbot.spc","offline","malware_download","None","https://urlhaus.abuse.ch/url/353196/","JayTHL"
@@ -6350,7 +6631,7 @@
 "353116","2020-04-28 12:25:06","http://46.20.211.254:16982/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353116/","geenensp"
 "353115","2020-04-28 12:17:05","http://216.180.117.191:53446/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/353115/","zbetcheckin"
 "353114","2020-04-28 12:12:06","https://knowingforget.xyz/ApiServices-Files42070/Down/58649_VersionFlashPlayer.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/353114/","JAMESWT_MHT"
-"353113","2020-04-28 12:07:03","http://5.206.227.18/bot.arm4","online","malware_download","elf","https://urlhaus.abuse.ch/url/353113/","zbetcheckin"
+"353113","2020-04-28 12:07:03","http://5.206.227.18/bot.arm4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/353113/","zbetcheckin"
 "353112","2020-04-28 12:06:27","http://172.39.95.161:54502/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353112/","Gandylyan1"
 "353111","2020-04-28 12:05:55","http://42.227.203.3:49889/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353111/","Gandylyan1"
 "353110","2020-04-28 12:05:51","http://115.54.175.125:33765/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353110/","Gandylyan1"
@@ -6371,7 +6652,7 @@
 "353095","2020-04-28 12:02:05","http://123.241.112.94:45016/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353095/","geenensp"
 "353094","2020-04-28 11:55:10","http://171.235.177.250:50361/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353094/","geenensp"
 "353093","2020-04-28 11:53:03","http://soapstampingmachines.com/images/0/bbox.jpg","offline","malware_download","exe,Smoke Loader","https://urlhaus.abuse.ch/url/353093/","zbetcheckin"
-"353092","2020-04-28 10:54:06","http://122.116.211.220:49808/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353092/","geenensp"
+"353092","2020-04-28 10:54:06","http://122.116.211.220:49808/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353092/","geenensp"
 "353091","2020-04-28 10:48:25","http://to4karu.ru/lierhgiojsgiouvbjnkfeiubg.bin","offline","malware_download","dll,Gozi","https://urlhaus.abuse.ch/url/353091/","abuse_ch"
 "353090","2020-04-28 10:47:08","http://177.137.107.131:53429/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353090/","geenensp"
 "353089","2020-04-28 10:39:12","https://pastebin.com/raw/fGfiai1q","offline","malware_download","None","https://urlhaus.abuse.ch/url/353089/","JayTHL"
@@ -6389,19 +6670,19 @@
 "353077","2020-04-28 09:45:03","http://45.95.168.97/SBIDIOT/x86","online","malware_download","elf","https://urlhaus.abuse.ch/url/353077/","0xrb"
 "353076","2020-04-28 09:44:03","http://192.236.147.67/0xxx0xxxasdajshdsajhkgdja/Sa0aS.x86","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353076/","0xrb"
 "353075","2020-04-28 09:37:24","http://87e2jwewp.sudyd80oefw08e902ollaidhailsfu89q.online:44783/jaws","offline","malware_download","bash,elf,mirai","https://urlhaus.abuse.ch/url/353075/","0xrb"
-"353074","2020-04-28 09:37:19","http://81.17.16.122:44783/9/shoppings.arc","online","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353074/","0xrb"
+"353074","2020-04-28 09:37:19","http://81.17.16.122:44783/9/shoppings.arc","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353074/","0xrb"
 "353073","2020-04-28 09:37:16","https://pastebin.com/raw/nm4CjdyS","offline","malware_download","None","https://urlhaus.abuse.ch/url/353073/","JayTHL"
 "353072","2020-04-28 09:37:14","https://pastebin.com/raw/NA0hThXv","offline","malware_download","None","https://urlhaus.abuse.ch/url/353072/","JayTHL"
-"353071","2020-04-28 09:37:02","http://81.17.16.122:44783/9/shoppings.ppc","online","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353071/","0xrb"
-"353070","2020-04-28 09:36:10","http://81.17.16.122:44783/9/shoppings.spc","online","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353070/","0xrb"
-"353069","2020-04-28 09:36:08","http://81.17.16.122:44783/9/shoppings.m68k","online","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353069/","0xrb"
-"353068","2020-04-28 09:36:06","http://81.17.16.122:44783/9/shoppings.arm7","online","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353068/","0xrb"
-"353067","2020-04-28 09:36:04","http://81.17.16.122:44783/9/shoppings.arm6","online","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353067/","0xrb"
-"353066","2020-04-28 09:36:02","http://81.17.16.122:44783/9/shoppings.arm5","online","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353066/","0xrb"
-"353065","2020-04-28 09:35:07","http://81.17.16.122:44783/9/shoppings.arm","online","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353065/","0xrb"
-"353064","2020-04-28 09:35:05","http://81.17.16.122:44783/9/shoppings.sh4","online","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353064/","0xrb"
-"353063","2020-04-28 09:35:03","http://81.17.16.122:44783/9/shoppings.mips","online","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353063/","0xrb"
-"353062","2020-04-28 09:33:03","http://81.17.16.122:44783/9/shoppings.x86","online","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353062/","0xrb"
+"353071","2020-04-28 09:37:02","http://81.17.16.122:44783/9/shoppings.ppc","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353071/","0xrb"
+"353070","2020-04-28 09:36:10","http://81.17.16.122:44783/9/shoppings.spc","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353070/","0xrb"
+"353069","2020-04-28 09:36:08","http://81.17.16.122:44783/9/shoppings.m68k","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353069/","0xrb"
+"353068","2020-04-28 09:36:06","http://81.17.16.122:44783/9/shoppings.arm7","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353068/","0xrb"
+"353067","2020-04-28 09:36:04","http://81.17.16.122:44783/9/shoppings.arm6","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353067/","0xrb"
+"353066","2020-04-28 09:36:02","http://81.17.16.122:44783/9/shoppings.arm5","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353066/","0xrb"
+"353065","2020-04-28 09:35:07","http://81.17.16.122:44783/9/shoppings.arm","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353065/","0xrb"
+"353064","2020-04-28 09:35:05","http://81.17.16.122:44783/9/shoppings.sh4","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353064/","0xrb"
+"353063","2020-04-28 09:35:03","http://81.17.16.122:44783/9/shoppings.mips","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353063/","0xrb"
+"353062","2020-04-28 09:33:03","http://81.17.16.122:44783/9/shoppings.x86","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/353062/","0xrb"
 "353061","2020-04-28 09:17:04","http://23.228.143.58:44467/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353061/","geenensp"
 "353060","2020-04-28 09:12:05","https://pastebin.com/raw/hEFKMgw8","offline","malware_download","None","https://urlhaus.abuse.ch/url/353060/","JayTHL"
 "353059","2020-04-28 09:06:06","http://49.68.122.135:42492/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/353059/","Gandylyan1"
@@ -6438,7 +6719,7 @@
 "353028","2020-04-28 07:44:07","http://167.114.129.9/razor/r4z0r.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/353028/","JayTHL"
 "353027","2020-04-28 07:44:05","http://167.114.129.9/razor/r4z0r.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/353027/","JayTHL"
 "353026","2020-04-28 07:44:03","http://167.114.129.9/razor/r4z0r.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/353026/","JayTHL"
-"353025","2020-04-28 07:40:03","http://5.206.227.18/bot.arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/353025/","zbetcheckin"
+"353025","2020-04-28 07:40:03","http://5.206.227.18/bot.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/353025/","zbetcheckin"
 "353024","2020-04-28 07:39:31","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/3863751/Buy-Sell%20Agreement_3863751_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353024/","spamhaus"
 "353023","2020-04-28 07:38:14","https://coberturasgenerales.pe/wp-content/uploads/2020/04/docs_2hj/Buy-Sell%20Agreement_0604_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353023/","spamhaus"
 "353022","2020-04-28 07:38:12","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/Buy-Sell%20Agreement_75769244_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353022/","spamhaus"
@@ -6453,26 +6734,26 @@
 "353013","2020-04-28 07:36:17","https://altatecnica.com.mx/wp-content/uploads/2020/04/docs_qvi/8452/Buy-Sell%20Agreement_8452_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353013/","spamhaus"
 "353012","2020-04-28 07:36:14","https://www.h2obbs.cn/wp-content/themes/calliope/docs_3kj/7827121/Buy-Sell%20Agreement_7827121_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353012/","spamhaus"
 "353011","2020-04-28 07:36:08","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/471889/Buy-Sell%20Agreement_471889_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353011/","spamhaus"
-"353010","2020-04-28 07:36:06","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/5537011/Buy-Sell%20Agreement_5537011_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353010/","spamhaus"
+"353010","2020-04-28 07:36:06","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/5537011/Buy-Sell%20Agreement_5537011_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353010/","spamhaus"
 "353009","2020-04-28 07:36:03","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/1026888/Buy-Sell%20Agreement_1026888_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353009/","spamhaus"
-"353008","2020-04-28 07:35:59","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_5519370_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353008/","spamhaus"
+"353008","2020-04-28 07:35:59","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_5519370_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353008/","spamhaus"
 "353007","2020-04-28 07:35:55","http://orujedu.com/wp-content/uploads/2020/04/docs_f8n/02449/Buy-Sell%20Agreement_02449_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353007/","spamhaus"
 "353006","2020-04-28 07:35:51","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/Buy-Sell%20Agreement_7223_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353006/","spamhaus"
-"353005","2020-04-28 07:35:36","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_20133_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353005/","spamhaus"
+"353005","2020-04-28 07:35:36","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_20133_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353005/","spamhaus"
 "353004","2020-04-28 07:35:28","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/31086224/Buy-Sell%20Agreement_31086224_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353004/","spamhaus"
 "353003","2020-04-28 07:35:25","http://www.running-bike.com/docs_155/7449/Buy-Sell%20Agreement_7449_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353003/","spamhaus"
 "353002","2020-04-28 07:35:14","https://youngspiritshop.com/docs_8s0/1548/Buy-Sell%20Agreement_1548_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353002/","spamhaus"
 "353001","2020-04-28 07:35:07","https://formadiksiuij.com/wp-content/uploads/2020/04/docs_25c/9525255/Buy-Sell%20Agreement_9525255_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/353001/","spamhaus"
 "353000","2020-04-28 07:32:28","http://84.54.144.151:29847/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/353000/","geenensp"
-"352999","2020-04-28 07:32:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/608349/Buy-Sell%20Agreement_608349_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352999/","spamhaus"
+"352999","2020-04-28 07:32:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/608349/Buy-Sell%20Agreement_608349_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352999/","spamhaus"
 "352998","2020-04-28 07:32:14","http://www.running-bike.com/docs_155/Buy-Sell%20Agreement_7169205_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352998/","spamhaus"
-"352997","2020-04-28 07:32:10","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_6745783_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352997/","spamhaus"
+"352997","2020-04-28 07:32:10","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_6745783_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352997/","spamhaus"
 "352996","2020-04-28 07:32:02","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/698283/Buy-Sell%20Agreement_698283_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352996/","spamhaus"
-"352995","2020-04-28 07:31:59","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_563232_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352995/","spamhaus"
+"352995","2020-04-28 07:31:59","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_563232_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352995/","spamhaus"
 "352994","2020-04-28 07:31:56","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/Buy-Sell%20Agreement_5299045_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352994/","spamhaus"
-"352993","2020-04-28 07:31:54","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_78170227_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352993/","spamhaus"
+"352993","2020-04-28 07:31:54","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_78170227_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352993/","spamhaus"
 "352992","2020-04-28 07:31:46","https://www.leaksfly.com/docs_1tj/71964624/Buy-Sell%20Agreement_71964624_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352992/","spamhaus"
-"352991","2020-04-28 07:31:44","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_730298_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352991/","spamhaus"
+"352991","2020-04-28 07:31:44","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_730298_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352991/","spamhaus"
 "352990","2020-04-28 07:31:41","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/6641/Buy-Sell%20Agreement_6641_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352990/","spamhaus"
 "352989","2020-04-28 07:31:39","https://www.internaut.in/wp-content/uploads/2020/04/docs_kl7/Buy-Sell%20Agreement_4849567_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352989/","spamhaus"
 "352988","2020-04-28 07:31:07","https://parmisco.com/docs_mc0/5349/Buy-Sell%20Agreement_5349_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352988/","spamhaus"
@@ -6481,7 +6762,7 @@
 "352985","2020-04-28 07:30:15","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/114946/Buy-Sell%20Agreement_114946_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352985/","spamhaus"
 "352984","2020-04-28 07:29:41","https://blog.macwap.com/wp-content/themes/calliope/docs_wdp/52459011/Buy-Sell%20Agreement_52459011_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352984/","spamhaus"
 "352983","2020-04-28 07:29:06","https://www.leaksfly.com/docs_1tj/93939/Buy-Sell%20Agreement_93939_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352983/","spamhaus"
-"352982","2020-04-28 07:28:34","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_15176424_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352982/","spamhaus"
+"352982","2020-04-28 07:28:34","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_15176424_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352982/","spamhaus"
 "352981","2020-04-28 07:18:14","https://formadiksiuij.com/wp-content/uploads/2020/04/docs_25c/63052377/Buy-Sell%20Agreement_63052377_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352981/","spamhaus"
 "352980","2020-04-28 07:17:40","http://175.212.31.241:59527/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352980/","geenensp"
 "352979","2020-04-28 07:17:35","http://5.80.68.84:21447/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352979/","geenensp"
@@ -6489,7 +6770,7 @@
 "352977","2020-04-28 07:16:58","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/Buy-Sell%20Agreement_55619230_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352977/","spamhaus"
 "352976","2020-04-28 07:16:23","https://www.h2obbs.cn/wp-content/themes/calliope/docs_3kj/2377504/Buy-Sell%20Agreement_2377504_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352976/","spamhaus"
 "352975","2020-04-28 07:16:17","https://www.netfeed.club/wp-content/themes/calliope/docs_wd2/49560/Buy-Sell%20Agreement_49560_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352975/","spamhaus"
-"352974","2020-04-28 07:16:14","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/37397/Buy-Sell%20Agreement_37397_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352974/","spamhaus"
+"352974","2020-04-28 07:16:14","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/37397/Buy-Sell%20Agreement_37397_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352974/","spamhaus"
 "352973","2020-04-28 07:16:03","https://www.tulsairishpub.com/blog/wp-content/themes/calliope/docs_khi/Buy-Sell%20Agreement_56428125_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352973/","spamhaus"
 "352972","2020-04-28 07:05:05","http://45.249.91.173/AAddropboxusercontent52t2jofjdp8lir61P9A8Ed2an8B0G4YF1LIhiMK156","offline","malware_download","AveMariaRAT,Encoded,rat","https://urlhaus.abuse.ch/url/352972/","abuse_ch"
 "352971","2020-04-28 07:01:47","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/97263/Buy-Sell%20Agreement_97263_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352971/","spamhaus"
@@ -6499,7 +6780,7 @@
 "352967","2020-04-28 07:01:23","https://parmisco.com/docs_mc0/5530046/Buy-Sell%20Agreement_5530046_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352967/","spamhaus"
 "352966","2020-04-28 07:01:19","https://bestappliances.in/wp-content/uploads/2020/04/docs_0mg/5937/Buy-Sell%20Agreement_5937_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352966/","spamhaus"
 "352965","2020-04-28 07:01:14","https://bestappliances.in/wp-content/uploads/2020/04/docs_0mg/Buy-Sell%20Agreement_6520972_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352965/","spamhaus"
-"352964","2020-04-28 07:01:12","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/0415302/Buy-Sell%20Agreement_0415302_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352964/","spamhaus"
+"352964","2020-04-28 07:01:12","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/0415302/Buy-Sell%20Agreement_0415302_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352964/","spamhaus"
 "352963","2020-04-28 07:01:10","https://www.vagtachobrasil.com/wp-content/uploads/2020/04/docs_w7f/27448/Buy-Sell%20Agreement_27448_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352963/","spamhaus"
 "352962","2020-04-28 07:01:06","https://ftvlicenses.in/wp-content/uploads/2020/04/docs_ypk/Buy-Sell%20Agreement_13192921_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352962/","spamhaus"
 "352961","2020-04-28 07:00:34","https://www.netfeed.club/wp-content/themes/calliope/docs_wd2/Buy-Sell%20Agreement_401858_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352961/","spamhaus"
@@ -6528,7 +6809,7 @@
 "352938","2020-04-28 06:42:45","http://www.running-bike.com/docs_155/Buy-Sell%20Agreement_7032322_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352938/","spamhaus"
 "352937","2020-04-28 06:42:41","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/21733673/Buy-Sell%20Agreement_21733673_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352937/","spamhaus"
 "352936","2020-04-28 06:42:34","https://manamobile.store/wp-content/uploads/2020/04/docs_s1f/Buy-Sell%20Agreement_427779_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352936/","spamhaus"
-"352935","2020-04-28 06:42:32","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_52007906_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352935/","spamhaus"
+"352935","2020-04-28 06:42:32","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_52007906_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352935/","spamhaus"
 "352934","2020-04-28 06:42:28","https://onikstrgovina.com/docs_0nd/13880/Buy-Sell%20Agreement_13880_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352934/","spamhaus"
 "352933","2020-04-28 06:41:57","https://youngspiritshop.com/docs_8s0/571982/Buy-Sell%20Agreement_571982_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352933/","spamhaus"
 "352932","2020-04-28 06:41:54","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/823296/Buy-Sell%20Agreement_823296_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352932/","spamhaus"
@@ -6546,7 +6827,7 @@
 "352920","2020-04-28 06:36:32","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/7991268/Buy-Sell%20Agreement_7991268_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352920/","spamhaus"
 "352919","2020-04-28 06:36:24","https://ticte.in/wp-content/uploads/2020/04/docs_o2i/Buy-Sell%20Agreement_7602_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352919/","spamhaus"
 "352918","2020-04-28 06:36:15","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/Buy-Sell%20Agreement_17881360_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352918/","spamhaus"
-"352917","2020-04-28 06:36:05","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_5898_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352917/","spamhaus"
+"352917","2020-04-28 06:36:05","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_5898_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352917/","spamhaus"
 "352916","2020-04-28 06:35:58","https://msquare.xyz/wp-content/uploads/2020/04/docs_ymn/Buy-Sell%20Agreement_26624288_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352916/","spamhaus"
 "352915","2020-04-28 06:35:54","https://myheromydadthenurse.com/wp-content/plugins/apikey/docs_tqo/873627/Buy-Sell%20Agreement_873627_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352915/","spamhaus"
 "352914","2020-04-28 06:35:47","https://www.tulsairishpub.com/blog/wp-content/themes/calliope/docs_khi/Buy-Sell%20Agreement_0920_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352914/","spamhaus"
@@ -6556,7 +6837,7 @@
 "352910","2020-04-28 06:34:55","https://mirandaspaintingca.com/wp-content/uploads/2020/04/docs_kjk/Buy-Sell%20Agreement_145236_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352910/","spamhaus"
 "352909","2020-04-28 06:34:50","https://ftvlicenses.in/wp-content/uploads/2020/04/docs_ypk/Buy-Sell%20Agreement_90844_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352909/","spamhaus"
 "352908","2020-04-28 06:34:35","https://www.h2obbs.cn/wp-content/themes/calliope/docs_3kj/Buy-Sell%20Agreement_0943607_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352908/","spamhaus"
-"352907","2020-04-28 06:34:29","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_9002_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352907/","spamhaus"
+"352907","2020-04-28 06:34:29","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_9002_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352907/","spamhaus"
 "352906","2020-04-28 06:34:19","https://onikstrgovina.com/docs_0nd/726973/Buy-Sell%20Agreement_726973_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352906/","spamhaus"
 "352905","2020-04-28 06:33:54","http://huniandijual.com/wp-content/uploads/2020/04/docs_x5r/6155/Buy-Sell%20Agreement_6155_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352905/","spamhaus"
 "352904","2020-04-28 06:33:52","https://premiumshop.id/wp-content/uploads/2020/04/docs_ha7/Buy-Sell%20Agreement_23882737_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352904/","spamhaus"
@@ -6594,7 +6875,7 @@
 "352872","2020-04-28 06:22:17","http://huniandijual.com/wp-content/uploads/2020/04/docs_x5r/Buy-Sell%20Agreement_5831416_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352872/","spamhaus"
 "352871","2020-04-28 06:22:15","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/0066/Buy-Sell%20Agreement_0066_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352871/","spamhaus"
 "352870","2020-04-28 06:22:12","http://www.pacificstarimpex.com/wp-content/themes/calliope/docs_v79/Buy-Sell%20Agreement_1758442_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352870/","spamhaus"
-"352869","2020-04-28 06:22:09","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_8825_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352869/","spamhaus"
+"352869","2020-04-28 06:22:09","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_8825_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352869/","spamhaus"
 "352868","2020-04-28 06:16:23","http://27.76.91.206:9276/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352868/","geenensp"
 "352867","2020-04-28 06:16:17","http://huniandijual.com/wp-content/uploads/2020/04/docs_x5r/11501951/Buy-Sell%20Agreement_11501951_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352867/","spamhaus"
 "352866","2020-04-28 06:16:13","https://formadiksiuij.com/wp-content/uploads/2020/04/docs_25c/Buy-Sell%20Agreement_52692_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352866/","spamhaus"
@@ -6603,7 +6884,7 @@
 "352863","2020-04-28 06:08:30","http://hediye-internet-saglik.org/20gb_hediye_internet.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/352863/","JayTHL"
 "352862","2020-04-28 06:08:16","http://orujedu.com/wp-content/uploads/2020/04/docs_f8n/Buy-Sell%20Agreement_2421266_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352862/","spamhaus"
 "352861","2020-04-28 06:08:12","https://www.leaksfly.com/docs_1tj/6503758/Buy-Sell%20Agreement_6503758_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352861/","spamhaus"
-"352860","2020-04-28 06:08:10","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_66754080_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352860/","spamhaus"
+"352860","2020-04-28 06:08:10","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_66754080_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352860/","spamhaus"
 "352859","2020-04-28 06:07:06","http://162.212.114.150:45928/","offline","malware_download","None","https://urlhaus.abuse.ch/url/352859/","JayTHL"
 "352858","2020-04-28 06:07:02","http://162.212.114.150:45928/i","offline","malware_download","None","https://urlhaus.abuse.ch/url/352858/","JayTHL"
 "352857","2020-04-28 06:06:58","http://113.245.189.4:38557/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352857/","Gandylyan1"
@@ -6633,17 +6914,17 @@
 "352833","2020-04-28 05:54:22","http://121.148.122.219:5895/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352833/","geenensp"
 "352832","2020-04-28 05:54:17","http://106.248.202.245:45017/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352832/","geenensp"
 "352831","2020-04-28 05:54:13","http://1.64.98.249:62482/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352831/","geenensp"
-"352830","2020-04-28 05:54:07","http://dongiln.co/paymentslip/paymentslip.rar","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352830/","spamhaus"
+"352830","2020-04-28 05:54:07","http://dongiln.co/paymentslip/paymentslip.rar","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352830/","spamhaus"
 "352829","2020-04-28 05:53:38","http://121.122.87.76:53453/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352829/","geenensp"
-"352828","2020-04-28 05:53:34","http://5.206.227.18/bot/bot.mipsel","online","malware_download","CoinMiner,elf","https://urlhaus.abuse.ch/url/352828/","hypoweb"
-"352827","2020-04-28 05:53:32","http://5.206.227.18/bot/bot.arm4","online","malware_download","CoinMiner,elf","https://urlhaus.abuse.ch/url/352827/","hypoweb"
-"352826","2020-04-28 05:53:30","http://5.206.227.18/bot/bot.arm","online","malware_download","CoinMiner,elf","https://urlhaus.abuse.ch/url/352826/","hypoweb"
+"352828","2020-04-28 05:53:34","http://5.206.227.18/bot/bot.mipsel","offline","malware_download","CoinMiner,elf","https://urlhaus.abuse.ch/url/352828/","hypoweb"
+"352827","2020-04-28 05:53:32","http://5.206.227.18/bot/bot.arm4","offline","malware_download","CoinMiner,elf","https://urlhaus.abuse.ch/url/352827/","hypoweb"
+"352826","2020-04-28 05:53:30","http://5.206.227.18/bot/bot.arm","offline","malware_download","CoinMiner,elf","https://urlhaus.abuse.ch/url/352826/","hypoweb"
 "352825","2020-04-28 05:53:28","http://14.41.57.152:22235/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352825/","geenensp"
 "352824","2020-04-28 05:53:24","http://79.136.27.40:33750/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352824/","geenensp"
 "352823","2020-04-28 05:53:19","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/Buy-Sell%20Agreement_8491_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352823/","spamhaus"
 "352822","2020-04-28 05:53:04","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/Buy-Sell%20Agreement_4407969_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352822/","spamhaus"
 "352821","2020-04-28 05:52:22","https://mindseed.in/blog/wp-content/uploads/2020/04/docs_yfg/73181121/Buy-Sell%20Agreement_73181121_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352821/","spamhaus"
-"352820","2020-04-28 05:52:19","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/Buy-Sell%20Agreement_461492_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352820/","spamhaus"
+"352820","2020-04-28 05:52:19","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/Buy-Sell%20Agreement_461492_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352820/","spamhaus"
 "352819","2020-04-28 05:52:17","http://www.running-bike.com/docs_155/Buy-Sell%20Agreement_29911647_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352819/","spamhaus"
 "352818","2020-04-28 05:52:10","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/Buy-Sell%20Agreement_0586_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352818/","spamhaus"
 "352817","2020-04-28 05:52:04","https://www.vagtachobrasil.com/wp-content/uploads/2020/04/docs_w7f/Buy-Sell%20Agreement_566310_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352817/","spamhaus"
@@ -6863,7 +7144,7 @@
 "352603","2020-04-28 02:38:04","https://pastebin.com/raw/aS1gXPdk","offline","malware_download","None","https://urlhaus.abuse.ch/url/352603/","JayTHL"
 "352602","2020-04-28 02:01:10","https://pastebin.com/raw/ePeSCFcz","offline","malware_download","None","https://urlhaus.abuse.ch/url/352602/","JayTHL"
 "352601","2020-04-28 01:48:05","https://pastebin.com/raw/xEfmMW8J","offline","malware_download","None","https://urlhaus.abuse.ch/url/352601/","JayTHL"
-"352600","2020-04-28 00:45:09","http://aurumboy.com/upd.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/352600/","zbetcheckin"
+"352600","2020-04-28 00:45:09","http://aurumboy.com/upd.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/352600/","zbetcheckin"
 "352599","2020-04-28 00:05:45","http://61.241.170.8:38605/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352599/","Gandylyan1"
 "352598","2020-04-28 00:05:33","http://222.246.20.121:45935/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352598/","Gandylyan1"
 "352597","2020-04-28 00:05:28","http://221.210.211.26:50903/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352597/","Gandylyan1"
@@ -6883,7 +7164,7 @@
 "352583","2020-04-27 23:03:06","http://plexle.us/Th5xrRAm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/352583/","zbetcheckin"
 "352582","2020-04-27 22:28:34","http://brightstore.com.ng/cjy/cjcrypttt.exe","offline","malware_download","lokibot","https://urlhaus.abuse.ch/url/352582/","James_inthe_box"
 "352581","2020-04-27 22:24:03","http://88.218.16.37/yZhLDBjcFMDlgz4.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/352581/","zbetcheckin"
-"352580","2020-04-27 22:13:06","http://aurumboy.com/file5.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/352580/","zbetcheckin"
+"352580","2020-04-27 22:13:06","http://aurumboy.com/file5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/352580/","zbetcheckin"
 "352579","2020-04-27 21:53:08","https://devastatedibexe.com/dj/dj.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/352579/","James_inthe_box"
 "352578","2020-04-27 21:11:58","https://firebasestorage.googleapis.com/v0/b/tl-018.appspot.com/o/action-etc.js?alt=media&token=4835fbea-bbed-47d7-b19a-fea2ed417dac","online","malware_download","None","https://urlhaus.abuse.ch/url/352578/","JayTHL"
 "352577","2020-04-27 21:05:16","http://221.210.211.10:35618/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/352577/","Gandylyan1"
@@ -6951,7 +7232,7 @@
 "352515","2020-04-27 20:24:28","https://parmisco.com/docs_mc0/68491/Buy-Sell%20Agreement_68491_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352515/","malware_traffic"
 "352514","2020-04-27 20:24:23","https://parmisco.com/docs_mc0/484059/Buy-Sell%20Agreement_484059_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352514/","malware_traffic"
 "352513","2020-04-27 20:24:20","https://parmisco.com/docs_mc0/21829/Buy-Sell%20Agreement_21829_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352513/","malware_traffic"
-"352512","2020-04-27 20:24:16","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_16014406_04242020.zip","online","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352512/","malware_traffic"
+"352512","2020-04-27 20:24:16","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/Buy-Sell%20Agreement_16014406_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352512/","malware_traffic"
 "352511","2020-04-27 20:23:54","https://onikstrgovina.com/docs_0nd/Buy-Sell%20Agreement_88899_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352511/","malware_traffic"
 "352510","2020-04-27 20:23:51","https://onikstrgovina.com/docs_0nd/9033834/Buy-Sell%20Agreement_9033834_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352510/","malware_traffic"
 "352509","2020-04-27 20:23:49","https://onikstrgovina.com/docs_0nd/0855703/Buy-Sell%20Agreement_0855703_04242020.zip","offline","malware_download","Qakbot,qbot,sxp105,zip","https://urlhaus.abuse.ch/url/352509/","malware_traffic"
@@ -6981,10 +7262,10 @@
 "352485","2020-04-27 20:13:47","https://itohukuk.com/wp-content/uploads/2020/04/docs_u9n/387824/Buy-Sell%20Agreement_387824_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352485/","malware_traffic"
 "352484","2020-04-27 20:13:45","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/9116273/Buy-Sell%20Agreement_9116273_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352484/","malware_traffic"
 "352483","2020-04-27 20:13:41","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/0070320/Buy-Sell%20Agreement_0070320_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352483/","malware_traffic"
-"352482","2020-04-27 20:13:36","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_85693132_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352482/","malware_traffic"
+"352482","2020-04-27 20:13:36","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_85693132_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352482/","malware_traffic"
 "352481","2020-04-27 20:13:32","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_8473004_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352481/","malware_traffic"
-"352480","2020-04-27 20:13:27","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/385661/Buy-Sell%20Agreement_385661_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352480/","malware_traffic"
-"352479","2020-04-27 20:13:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/20826984/Buy-Sell%20Agreement_20826984_04242020.zip","online","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352479/","malware_traffic"
+"352480","2020-04-27 20:13:27","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/385661/Buy-Sell%20Agreement_385661_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352480/","malware_traffic"
+"352479","2020-04-27 20:13:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/20826984/Buy-Sell%20Agreement_20826984_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352479/","malware_traffic"
 "352478","2020-04-27 20:13:19","https://formadiksiuij.com/wp-content/uploads/2020/04/docs_25c/Buy-Sell%20Agreement_305245_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352478/","malware_traffic"
 "352477","2020-04-27 20:13:15","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/Buy-Sell%20Agreement_4032_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352477/","malware_traffic"
 "352476","2020-04-27 20:13:12","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/59285157/Buy-Sell%20Agreement_59285157_04242020.zip","offline","malware_download","Qakbot,qbot,spx105,zip","https://urlhaus.abuse.ch/url/352476/","malware_traffic"
@@ -7089,7 +7370,7 @@
 "352377","2020-04-27 18:21:03","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/91278/Buy-Sell%20Agreement_91278_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352377/","spamhaus"
 "352376","2020-04-27 18:19:38","http://79.159.207.150:1524/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352376/","geenensp"
 "352375","2020-04-27 18:19:36","https://onikstrgovina.com/docs_0nd/62718678/Buy-Sell%20Agreement_62718678_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352375/","spamhaus"
-"352374","2020-04-27 18:15:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_1197_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352374/","spamhaus"
+"352374","2020-04-27 18:15:23","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/Buy-Sell%20Agreement_1197_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352374/","spamhaus"
 "352373","2020-04-27 18:15:13","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/106811/Buy-Sell%20Agreement_106811_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352373/","spamhaus"
 "352372","2020-04-27 18:09:02","https://onikstrgovina.com/docs_0nd/Buy-Sell%20Agreement_433299_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352372/","spamhaus"
 "352371","2020-04-27 18:07:16","http://www.pacificstarimpex.com/wp-content/themes/calliope/docs_v79/Buy-Sell%20Agreement_571385_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352371/","spamhaus"
@@ -7122,12 +7403,12 @@
 "352344","2020-04-27 17:54:38","http://www.s172.com/wp-content/uploads/2020/04/docs_x1c/Buy-Sell%20Agreement_63216730_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352344/","spamhaus"
 "352343","2020-04-27 17:54:06","http://cecadesayu.corazondelcielo.mx/docs_ytk/Buy-Sell%20Agreement_20922_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352343/","spamhaus"
 "352342","2020-04-27 17:51:19","http://221.155.68.193:54408/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352342/","geenensp"
-"352341","2020-04-27 17:51:14","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/0161/Buy-Sell%20Agreement_0161_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352341/","spamhaus"
+"352341","2020-04-27 17:51:14","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/0161/Buy-Sell%20Agreement_0161_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352341/","spamhaus"
 "352340","2020-04-27 17:51:11","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/6260776/Buy-Sell%20Agreement_6260776_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352340/","spamhaus"
 "352339","2020-04-27 17:51:08","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/22158/Buy-Sell%20Agreement_22158_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352339/","spamhaus"
 "352338","2020-04-27 17:51:05","https://altatecnica.com.mx/wp-content/uploads/2020/04/docs_qvi/Buy-Sell%20Agreement_104703_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352338/","spamhaus"
 "352337","2020-04-27 17:50:58","https://bestappliances.in/wp-content/uploads/2020/04/docs_0mg/Buy-Sell%20Agreement_2913784_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352337/","spamhaus"
-"352336","2020-04-27 17:50:17","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/17604096/Buy-Sell%20Agreement_17604096_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352336/","spamhaus"
+"352336","2020-04-27 17:50:17","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/17604096/Buy-Sell%20Agreement_17604096_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352336/","spamhaus"
 "352335","2020-04-27 17:43:04","http://outcaste-television.000webhostapp.com/VPN.scr","offline","malware_download","None","https://urlhaus.abuse.ch/url/352335/","vxvault"
 "352334","2020-04-27 17:40:49","https://www.teleporterhire.ie/wp-content/uploads/2020/04/docs_1sn/Buy-Sell%20Agreement_34830887_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352334/","spamhaus"
 "352333","2020-04-27 17:40:47","https://ftvlicenses.in/wp-content/uploads/2020/04/docs_ypk/Buy-Sell%20Agreement_8601_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352333/","spamhaus"
@@ -7149,13 +7430,13 @@
 "352317","2020-04-27 17:38:29","https://ineyes360.com/wp-content/uploads/2020/04/docs_m9l/8096673/Buy-Sell%20Agreement_8096673_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352317/","spamhaus"
 "352316","2020-04-27 17:38:20","http://121.123.37.121:5229/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352316/","geenensp"
 "352315","2020-04-27 17:38:14","http://80.210.20.94:37396/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/352315/","geenensp"
-"352314","2020-04-27 17:38:10","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/0259743/Buy-Sell%20Agreement_0259743_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352314/","spamhaus"
+"352314","2020-04-27 17:38:10","https://heavenif.co.za/blog/wp-content/themes/calliope/docs_kwc/0259743/Buy-Sell%20Agreement_0259743_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352314/","spamhaus"
 "352313","2020-04-27 17:38:03","https://darazexpress.pk/wp-content/uploads/2020/04/docs_7tp/807898/Buy-Sell%20Agreement_807898_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352313/","spamhaus"
 "352312","2020-04-27 17:38:00","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/Buy-Sell%20Agreement_99062_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352312/","spamhaus"
 "352311","2020-04-27 17:37:57","https://manamobile.store/wp-content/uploads/2020/04/docs_s1f/Buy-Sell%20Agreement_74658_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352311/","spamhaus"
 "352310","2020-04-27 17:37:54","https://youngspiritshop.com/docs_8s0/Buy-Sell%20Agreement_97359176_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352310/","spamhaus"
 "352309","2020-04-27 17:37:48","http://huniandijual.com/wp-content/uploads/2020/04/docs_x5r/Buy-Sell%20Agreement_16693439_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352309/","spamhaus"
-"352308","2020-04-27 17:37:42","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_804242_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352308/","spamhaus"
+"352308","2020-04-27 17:37:42","https://www.patrickchan-hk.net/wp-content/uploads/2020/04/docs_csa/Buy-Sell%20Agreement_804242_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352308/","spamhaus"
 "352307","2020-04-27 17:37:37","https://premiumshop.id/wp-content/uploads/2020/04/docs_ha7/1638441/Buy-Sell%20Agreement_1638441_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352307/","spamhaus"
 "352306","2020-04-27 17:37:32","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/4410/Buy-Sell%20Agreement_4410_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352306/","spamhaus"
 "352305","2020-04-27 17:37:25","http://www.pacificstarimpex.com/wp-content/themes/calliope/docs_v79/Buy-Sell%20Agreement_5593_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352305/","spamhaus"
@@ -7232,7 +7513,7 @@
 "352234","2020-04-27 16:28:08","https://bestappliances.in/wp-content/uploads/2020/04/docs_0mg/5220570/Buy-Sell%20Agreement_5220570_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352234/","spamhaus"
 "352233","2020-04-27 16:27:33","https://minimalisku.com/wp-content/uploads/2020/04/docs_tp8/Buy-Sell%20Agreement_2929_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352233/","spamhaus"
 "352232","2020-04-27 16:26:58","https://www.h2obbs.cn/wp-content/themes/calliope/docs_3kj/00495211/Buy-Sell%20Agreement_00495211_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352232/","spamhaus"
-"352231","2020-04-27 16:26:24","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/5150036/Buy-Sell%20Agreement_5150036_04242020.zip","online","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352231/","spamhaus"
+"352231","2020-04-27 16:26:24","https://pakdesighee.com/wp-content/uploads/2020/04/docs_l9e/5150036/Buy-Sell%20Agreement_5150036_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352231/","spamhaus"
 "352230","2020-04-27 16:25:32","https://www.netfeed.club/wp-content/themes/calliope/docs_wd2/Buy-Sell%20Agreement_07984922_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352230/","spamhaus"
 "352229","2020-04-27 16:24:54","https://parmisco.com/docs_mc0/530449/Buy-Sell%20Agreement_530449_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352229/","spamhaus"
 "352228","2020-04-27 16:24:20","https://parmisco.com/docs_mc0/458204/Buy-Sell%20Agreement_458204_04242020.zip","offline","malware_download","ESP,geofenced,Qakbot,Quakbot,zip","https://urlhaus.abuse.ch/url/352228/","spamhaus"
@@ -7546,13 +7827,13 @@
 "351920","2020-04-27 11:55:03","http://45.95.168.251/x86","offline","malware_download",",elf","https://urlhaus.abuse.ch/url/351920/","Gandylyan1"
 "351919","2020-04-27 11:47:05","http://45.95.168.251/mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/351919/","geenensp"
 "351918","2020-04-27 11:47:02","http://45.95.168.251/bbins.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/351918/","geenensp"
-"351917","2020-04-27 11:27:16","https://bitbucket.org/destek21/3reklam/downloads/20gbhediyesi.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/351917/","JAMESWT_MHT"
+"351917","2020-04-27 11:27:16","https://bitbucket.org/destek21/3reklam/downloads/20gbhediyesi.apk","online","malware_download","None","https://urlhaus.abuse.ch/url/351917/","JAMESWT_MHT"
 "351916","2020-04-27 11:23:07","https://20gbverdimgitti.com/hediye20gb.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/351916/","JAMESWT_MHT"
 "351915","2020-04-27 11:08:18","http://hmbwgroup.com/wp-includes/js/tinymce/skins/wordpress/yu.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/351915/","JAMESWT_MHT"
 "351914","2020-04-27 11:08:15","http://114.35.2.68:15878/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351914/","geenensp"
 "351913","2020-04-27 11:08:08","http://114.35.2.68:32308/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351913/","geenensp"
 "351912","2020-04-27 11:07:03","http://88.218.16.37/HOyAJr0lqxvcwYJ.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/351912/","JAMESWT_MHT"
-"351911","2020-04-27 11:05:05","https://bitbucket.org/shobaka420/222333/downloads/usb.exe","offline","malware_download","njRAT","https://urlhaus.abuse.ch/url/351911/","anonymous"
+"351911","2020-04-27 11:05:05","https://bitbucket.org/shobaka420/222333/downloads/usb.exe","online","malware_download","njRAT","https://urlhaus.abuse.ch/url/351911/","anonymous"
 "351910","2020-04-27 10:35:13","https://anjelo-directhelp.de/img/jonl.jpg","offline","malware_download","exe,Smoke Loader","https://urlhaus.abuse.ch/url/351910/","zbetcheckin"
 "351909","2020-04-27 10:35:09","https://anjelo-directhelp.de/img/idir.jpg","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/351909/","zbetcheckin"
 "351908","2020-04-27 10:31:07","https://anjelo-directhelp.de/fotos/ajay.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/351908/","zbetcheckin"
@@ -7630,7 +7911,7 @@
 "351836","2020-04-27 06:24:05","https://cdn.discordapp.com/attachments/704128879467561063/704143222607446177/ORDER-NO._ACMEPOM19-0012G.gz","offline","malware_download","gz","https://urlhaus.abuse.ch/url/351836/","abuse_ch"
 "351835","2020-04-27 06:24:03","https://cdn.discordapp.com/attachments/704128879467561063/704144884034043914/PURCHASE_ORDER_No._959309292.gz","offline","malware_download","gz","https://urlhaus.abuse.ch/url/351835/","abuse_ch"
 "351834","2020-04-27 06:23:07","https://uc1d90d3a84cb53ca05cfc8120f2.dl.dropboxusercontent.com/cd/0/get/A2oOyDQCUzool5dc-wzb7aDGJuZemUL7B464jiIyq2NkGAWGFx2ruCOrAKyEvKHx8O0OTGB_hljF0LyFJ21HIw-iPTDzaTdmbQYylx6D0ZyMHR7e7zYbvXCpDmvumDAiXYg/file?_download_id=527631859204444346739711789216987288868440402310747764894807294349&_notify_domain=www.dropbox.com&dl=1","offline","malware_download","gz","https://urlhaus.abuse.ch/url/351834/","abuse_ch"
-"351833","2020-04-27 06:17:08","http://78.186.190.222:17012/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351833/","geenensp"
+"351833","2020-04-27 06:17:08","http://78.186.190.222:17012/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351833/","geenensp"
 "351832","2020-04-27 06:16:43","http://106.104.115.213:30358/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351832/","geenensp"
 "351831","2020-04-27 06:16:38","http://59.125.190.210:56936/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351831/","geenensp"
 "351830","2020-04-27 06:16:34","http://221.158.124.81:2063/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351830/","geenensp"
@@ -7697,13 +7978,13 @@
 "351769","2020-04-27 02:37:17","http://107.174.24.117/orbitclient.sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351769/","zbetcheckin"
 "351768","2020-04-27 02:37:14","http://185.247.118.127/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351768/","zbetcheckin"
 "351767","2020-04-27 02:37:12","http://23.95.89.78/beastmode/b3astmode.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351767/","zbetcheckin"
-"351766","2020-04-27 02:37:10","http://91.134.252.221/yakuza.arm4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351766/","zbetcheckin"
+"351766","2020-04-27 02:37:10","http://91.134.252.221/yakuza.arm4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351766/","zbetcheckin"
 "351765","2020-04-27 02:37:08","http://107.174.24.117/orbitclient.x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351765/","zbetcheckin"
-"351764","2020-04-27 02:37:05","http://91.134.252.221/yakuza.ppc","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351764/","zbetcheckin"
+"351764","2020-04-27 02:37:05","http://91.134.252.221/yakuza.ppc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351764/","zbetcheckin"
 "351763","2020-04-27 02:37:03","http://23.95.89.78/beastmode/b3astmode.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351763/","zbetcheckin"
 "351762","2020-04-27 02:36:16","http://45.95.55.58/p-p.c-.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351762/","zbetcheckin"
 "351761","2020-04-27 02:36:14","http://23.95.89.78/beastmode/b3astmode.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351761/","zbetcheckin"
-"351760","2020-04-27 02:36:10","http://91.134.252.221/yakuza.i586","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351760/","zbetcheckin"
+"351760","2020-04-27 02:36:10","http://91.134.252.221/yakuza.i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351760/","zbetcheckin"
 "351759","2020-04-27 02:36:08","http://45.95.55.58/i-5.8-6.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351759/","zbetcheckin"
 "351758","2020-04-27 02:36:06","http://185.247.118.127/powerpc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351758/","zbetcheckin"
 "351757","2020-04-27 02:36:04","https://pastebin.com/raw/3euxXyD5","offline","malware_download","None","https://urlhaus.abuse.ch/url/351757/","JayTHL"
@@ -7713,19 +7994,19 @@
 "351753","2020-04-27 02:32:20","http://45.95.55.58/s-h.4-.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351753/","zbetcheckin"
 "351752","2020-04-27 02:32:18","http://185.247.118.127/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351752/","zbetcheckin"
 "351751","2020-04-27 02:32:16","http://185.247.118.127/m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351751/","zbetcheckin"
-"351750","2020-04-27 02:32:14","http://91.134.252.221/yakuza.sh4","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351750/","zbetcheckin"
+"351750","2020-04-27 02:32:14","http://91.134.252.221/yakuza.sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351750/","zbetcheckin"
 "351749","2020-04-27 02:32:12","http://45.95.55.58/m-i.p-s.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351749/","zbetcheckin"
 "351748","2020-04-27 02:32:10","http://23.95.89.78/beastmode/b3astmode.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351748/","zbetcheckin"
 "351747","2020-04-27 02:32:08","http://45.95.55.58/x-8.6-.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351747/","zbetcheckin"
-"351746","2020-04-27 02:32:06","http://91.134.252.221/yakuza.x32","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351746/","zbetcheckin"
+"351746","2020-04-27 02:32:06","http://91.134.252.221/yakuza.x32","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351746/","zbetcheckin"
 "351745","2020-04-27 02:32:04","http://107.174.24.117/orbitclient.i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351745/","zbetcheckin"
 "351744","2020-04-27 02:28:22","http://23.95.89.78/beastmode/b3astmode.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351744/","zbetcheckin"
-"351743","2020-04-27 02:28:19","http://91.134.252.221/yakuza.mpsl","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351743/","zbetcheckin"
+"351743","2020-04-27 02:28:19","http://91.134.252.221/yakuza.mpsl","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351743/","zbetcheckin"
 "351742","2020-04-27 02:28:17","http://45.95.55.58/a-r.m-6.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351742/","zbetcheckin"
 "351741","2020-04-27 02:28:15","http://107.174.24.117/orbitclient.mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351741/","zbetcheckin"
 "351740","2020-04-27 02:28:12","http://185.247.118.127/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351740/","zbetcheckin"
 "351739","2020-04-27 02:28:10","http://23.95.89.78/beastmode/b3astmode.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351739/","zbetcheckin"
-"351738","2020-04-27 02:28:07","http://91.134.252.221/yakuza.mips","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351738/","zbetcheckin"
+"351738","2020-04-27 02:28:07","http://91.134.252.221/yakuza.mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351738/","zbetcheckin"
 "351737","2020-04-27 02:28:05","http://45.95.55.58/a-r.m-5.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351737/","zbetcheckin"
 "351736","2020-04-27 02:28:04","http://107.174.24.117/orbitclient.arm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351736/","zbetcheckin"
 "351735","2020-04-27 02:27:03","http://185.247.118.127/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351735/","zbetcheckin"
@@ -7735,7 +8016,7 @@
 "351731","2020-04-27 02:24:38","http://45.95.55.58/m-6.8-k.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351731/","zbetcheckin"
 "351730","2020-04-27 02:24:36","https://pastebin.com/raw/JAbsT5ZU","offline","malware_download","None","https://urlhaus.abuse.ch/url/351730/","JayTHL"
 "351729","2020-04-27 02:24:03","http://23.95.89.78/beastmode/b3astmode.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351729/","zbetcheckin"
-"351728","2020-04-27 02:23:18","http://91.134.252.221/yakuza.arm6","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351728/","zbetcheckin"
+"351728","2020-04-27 02:23:18","http://91.134.252.221/yakuza.arm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351728/","zbetcheckin"
 "351727","2020-04-27 02:23:15","http://185.247.118.127/sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351727/","zbetcheckin"
 "351726","2020-04-27 02:23:13","http://23.95.89.78/beastmode/b3astmode.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351726/","zbetcheckin"
 "351725","2020-04-27 02:23:10","http://45.95.55.58/m-p.s-l.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351725/","zbetcheckin"
@@ -7747,8 +8028,8 @@
 "351719","2020-04-27 02:19:14","http://45.95.55.58/x-3.2-.GHOUL","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351719/","zbetcheckin"
 "351718","2020-04-27 02:19:12","http://107.174.24.117/orbitclient.arm4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351718/","zbetcheckin"
 "351717","2020-04-27 02:19:10","http://23.95.89.78/beastmode/b3astmode.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351717/","zbetcheckin"
-"351716","2020-04-27 02:19:08","http://91.134.252.221/yakuza.x86","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351716/","zbetcheckin"
-"351715","2020-04-27 02:19:06","http://91.134.252.221/yakuza.m68k","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351715/","zbetcheckin"
+"351716","2020-04-27 02:19:08","http://91.134.252.221/yakuza.x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351716/","zbetcheckin"
+"351715","2020-04-27 02:19:06","http://91.134.252.221/yakuza.m68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351715/","zbetcheckin"
 "351714","2020-04-27 02:19:03","http://23.95.89.78/beastmode/b3astmode.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351714/","zbetcheckin"
 "351713","2020-04-27 01:58:05","http://23.95.89.78/Beastmode.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/351713/","zbetcheckin"
 "351712","2020-04-27 01:54:10","http://91.209.70.22/Corona.mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351712/","zbetcheckin"
@@ -7764,7 +8045,7 @@
 "351702","2020-04-27 01:45:07","http://161.35.136.203/EkSgbins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/351702/","zbetcheckin"
 "351701","2020-04-27 01:45:05","http://134.122.95.193/axisbins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/351701/","zbetcheckin"
 "351700","2020-04-27 01:45:03","http://91.209.70.22/Corona.i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351700/","zbetcheckin"
-"351699","2020-04-27 01:41:06","http://91.134.252.221/bins.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/351699/","zbetcheckin"
+"351699","2020-04-27 01:41:06","http://91.134.252.221/bins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/351699/","zbetcheckin"
 "351698","2020-04-27 01:41:04","http://185.247.118.127/AXISbins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/351698/","zbetcheckin"
 "351697","2020-04-27 01:41:01","http://91.209.70.22/Corona.arm5","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351697/","zbetcheckin"
 "351696","2020-04-27 01:38:06","http://45.95.55.58/GhOul.sh","online","malware_download","shellscript","https://urlhaus.abuse.ch/url/351696/","zbetcheckin"
@@ -7940,7 +8221,7 @@
 "351526","2020-04-26 10:12:03","https://pastebin.com/raw/gTvUx0Wa","offline","malware_download","None","https://urlhaus.abuse.ch/url/351526/","JayTHL"
 "351525","2020-04-26 10:04:09","http://114.236.30.144:60065/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/351525/","zbetcheckin"
 "351524","2020-04-26 09:25:09","http://shahtoba.faqserv.com/resmin.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/351524/","zbetcheckin"
-"351523","2020-04-26 09:15:04","http://89.136.197.170:33046/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351523/","geenensp"
+"351523","2020-04-26 09:15:04","http://89.136.197.170:33046/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351523/","geenensp"
 "351522","2020-04-26 09:14:05","http://183.107.57.170:47002/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351522/","zbetcheckin"
 "351521","2020-04-26 09:07:07","http://221.210.211.114:33181/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351521/","Gandylyan1"
 "351520","2020-04-26 09:07:03","http://123.11.166.0:52608/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351520/","Gandylyan1"
@@ -8019,7 +8300,7 @@
 "351447","2020-04-26 07:01:37","http://198.98.59.174/ap/ad.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351447/","zbetcheckin"
 "351446","2020-04-26 07:01:05","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.i686","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351446/","zbetcheckin"
 "351445","2020-04-26 07:01:03","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351445/","zbetcheckin"
-"351444","2020-04-26 07:00:03","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arc","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351444/","zbetcheckin"
+"351444","2020-04-26 07:00:03","http://213.202.255.4/x0ox0ox0oxDefault/z0r0.arc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/351444/","zbetcheckin"
 "351443","2020-04-26 06:53:05","http://201.75.4.149:17537/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/351443/","zbetcheckin"
 "351442","2020-04-26 06:43:30","http://92.45.198.60:49882/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/351442/","geenensp"
 "351441","2020-04-26 06:43:26","http://198.98.59.174/ap/ad.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/351441/","geenensp"
@@ -8327,7 +8608,7 @@
 "351139","2020-04-25 13:36:05","https://pastebin.com/raw/zYu4pmhT","offline","malware_download","None","https://urlhaus.abuse.ch/url/351139/","JayTHL"
 "351138","2020-04-25 12:59:33","https://pastebin.com/raw/FkvqkQTD","offline","malware_download","None","https://urlhaus.abuse.ch/url/351138/","JayTHL"
 "351137","2020-04-25 12:10:15","https://pastebin.com/raw/jwEkeXGh","offline","malware_download","None","https://urlhaus.abuse.ch/url/351137/","JayTHL"
-"351136","2020-04-25 12:10:13","http://siriyun.top:9999/360.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/351136/","abuse_ch"
+"351136","2020-04-25 12:10:13","http://siriyun.top:9999/360.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/351136/","abuse_ch"
 "351135","2020-04-25 12:05:29","http://172.45.35.240:32896/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351135/","Gandylyan1"
 "351134","2020-04-25 12:04:57","http://175.10.50.92:33541/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351134/","Gandylyan1"
 "351133","2020-04-25 12:04:52","http://176.113.161.116:37930/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/351133/","Gandylyan1"
@@ -8655,11 +8936,11 @@
 "350811","2020-04-24 21:42:35","https://www.e24bay.in/docs_6su/926274/Buy-Sell%20Agreement_926274_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350811/","malware_traffic"
 "350810","2020-04-24 21:42:32","https://woodofkosta.com/docs_hcv/Buy-Sell%20Agreement_08894_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350810/","malware_traffic"
 "350809","2020-04-24 21:42:26","https://test.aosex.club/wp-content/themes/calliope/docs_941/Buy-Sell%20Agreement_067627_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350809/","malware_traffic"
-"350808","2020-04-24 21:42:21","https://tecnobella.cl/docs_dte/Buy-Sell%20Agreement_96341540_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350808/","malware_traffic"
+"350808","2020-04-24 21:42:21","https://tecnobella.cl/docs_dte/Buy-Sell%20Agreement_96341540_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350808/","malware_traffic"
 "350807","2020-04-24 21:42:18","https://serviciosinfoware.cl/docs_846/Buy-Sell%20Agreement_14067_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350807/","malware_traffic"
 "350806","2020-04-24 21:42:15","https://serviciosinfoware.cl/docs_846/8289510/Buy-Sell%20Agreement_8289510_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350806/","malware_traffic"
 "350805","2020-04-24 21:42:09","https://seibee.biz/docs_3z8/976048239/Buy-Sell%20Agreement_976048239_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350805/","malware_traffic"
-"350804","2020-04-24 21:42:00","https://redeemerssports.com/wp-content/themes/calliope/docs_i4t/6737406/Buy-Sell%20Agreement_6737406_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350804/","malware_traffic"
+"350804","2020-04-24 21:42:00","https://redeemerssports.com/wp-content/themes/calliope/docs_i4t/6737406/Buy-Sell%20Agreement_6737406_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350804/","malware_traffic"
 "350803","2020-04-24 21:41:57","https://redeemerssports.com/wp-content/themes/calliope/docs_i4t/346947/Buy-Sell%20Agreement_346947_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350803/","malware_traffic"
 "350802","2020-04-24 21:41:51","https://melusinkiwane.com/docs_c95/Buy-Sell%20Agreement_615778_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350802/","malware_traffic"
 "350801","2020-04-24 21:41:49","https://melusinkiwane.com/docs_c95/87464/Buy-Sell%20Agreement_87464_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350801/","malware_traffic"
@@ -8672,7 +8953,7 @@
 "350794","2020-04-24 21:41:21","http://www.globalpremiere.org/docs_03j/Buy-Sell%20Agreement_342919423_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350794/","malware_traffic"
 "350793","2020-04-24 21:41:18","http://www.globalpremiere.org/docs_03j/Buy-Sell%20Agreement_137230_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350793/","malware_traffic"
 "350792","2020-04-24 21:41:14","http://www.e24bay.in/docs_6su/Buy-Sell%20Agreement_683710_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350792/","malware_traffic"
-"350791","2020-04-24 21:41:12","http://prepaenunsoloexamen.academiagalileoac.com/docs_l8z/05706/Buy-Sell%20Agreement_05706_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350791/","malware_traffic"
+"350791","2020-04-24 21:41:12","http://prepaenunsoloexamen.academiagalileoac.com/docs_l8z/05706/Buy-Sell%20Agreement_05706_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350791/","malware_traffic"
 "350790","2020-04-24 21:41:06","http://portalouse.com.br/docs_jqk/Buy-Sell%20Agreement_3116575_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350790/","malware_traffic"
 "350789","2020-04-24 21:41:00","http://portalouse.com.br/docs_jqk/Buy-Sell%20Agreement_038095375_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350789/","malware_traffic"
 "350788","2020-04-24 21:40:40","http://portalouse.com.br/docs_jqk/471381/Buy-Sell%20Agreement_471381_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350788/","malware_traffic"
@@ -8681,7 +8962,7 @@
 "350785","2020-04-24 21:39:57","http://passali.it/docs_ho3/20711485/Buy-Sell%20Agreement_20711485_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350785/","malware_traffic"
 "350784","2020-04-24 21:39:52","http://olsenconcreteconstructionmo.com/wp-content/uploads/2020/04/docs_ezz/Buy-Sell%20Agreement_039229601_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350784/","malware_traffic"
 "350783","2020-04-24 21:39:47","http://office.aflinstitute.net/docs_4b6/02025/Buy-Sell%20Agreement_02025_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350783/","malware_traffic"
-"350782","2020-04-24 21:39:44","http://nkdhub.com/docs_9o3/994742803/Buy-Sell%20Agreement_994742803_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350782/","malware_traffic"
+"350782","2020-04-24 21:39:44","http://nkdhub.com/docs_9o3/994742803/Buy-Sell%20Agreement_994742803_04232020.zip","online","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350782/","malware_traffic"
 "350781","2020-04-24 21:39:40","http://nicecargoshiftingservice.com/docs_fuc/221329825/Buy-Sell%20Agreement_221329825_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350781/","malware_traffic"
 "350780","2020-04-24 21:39:37","http://mngle.today/wp-content/uploads/2020/04/docs_yqa/1754340/Buy-Sell%20Agreement_1754340_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350780/","malware_traffic"
 "350779","2020-04-24 21:39:34","http://metier-entrepreneur.org/docs_fhg/Buy-Sell%20Agreement_41050_04232020.zip","offline","malware_download","Qakbot,qbot,spx104,zip","https://urlhaus.abuse.ch/url/350779/","malware_traffic"
@@ -8827,15 +9108,15 @@
 "350638","2020-04-24 15:03:34","http://172.36.12.58:53085/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/350638/","Gandylyan1"
 "350637","2020-04-24 14:29:06","http://59.125.179.154:39815/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/350637/","geenensp"
 "350636","2020-04-24 14:25:09","http://114.33.182.205:16828/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/350636/","anonymous"
-"350635","2020-04-24 14:04:19","http://103.16.145.25:42633/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/350635/","geenensp"
+"350635","2020-04-24 14:04:19","http://103.16.145.25:42633/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/350635/","geenensp"
 "350634","2020-04-24 14:04:17","http://adamdtmassage.co.uk/docs_394/8888.png","offline","malware_download","exe,Qakbot,Quakbot,spx104","https://urlhaus.abuse.ch/url/350634/","lazyactivist192"
 "350633","2020-04-24 14:04:13","http://inglesdoribas.com.br/docs_cyq/8888.png","offline","malware_download","exe,Qakbot,Quakbot,spx104","https://urlhaus.abuse.ch/url/350633/","lazyactivist192"
 "350632","2020-04-24 14:04:07","http://auxiliumassessoria.com.br/docs_tmj/8888.png","offline","malware_download","exe,Qakbot,spx104","https://urlhaus.abuse.ch/url/350632/","lazyactivist192"
 "350631","2020-04-24 13:59:17","http://tiny-ebino-4209.whitesnow.jp/ok/tt.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/350631/","James_inthe_box"
-"350630","2020-04-24 13:57:22","http://5.206.227.18/bot/bot.x86","online","malware_download","None","https://urlhaus.abuse.ch/url/350630/","JayTHL"
-"350629","2020-04-24 13:57:20","http://5.206.227.18/bot/bot.mips","online","malware_download","None","https://urlhaus.abuse.ch/url/350629/","JayTHL"
-"350628","2020-04-24 13:57:18","http://5.206.227.18/bot/bot.arm6","online","malware_download","None","https://urlhaus.abuse.ch/url/350628/","JayTHL"
-"350627","2020-04-24 13:57:16","http://5.206.227.18/bot/bot.arm5","online","malware_download","None","https://urlhaus.abuse.ch/url/350627/","JayTHL"
+"350630","2020-04-24 13:57:22","http://5.206.227.18/bot/bot.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/350630/","JayTHL"
+"350629","2020-04-24 13:57:20","http://5.206.227.18/bot/bot.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/350629/","JayTHL"
+"350628","2020-04-24 13:57:18","http://5.206.227.18/bot/bot.arm6","offline","malware_download","None","https://urlhaus.abuse.ch/url/350628/","JayTHL"
+"350627","2020-04-24 13:57:16","http://5.206.227.18/bot/bot.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/350627/","JayTHL"
 "350626","2020-04-24 13:57:14","http://167.172.60.241/SBIDIOT/zte","offline","malware_download","None","https://urlhaus.abuse.ch/url/350626/","JayTHL"
 "350625","2020-04-24 13:57:12","http://167.172.60.241/SBIDIOT/yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/350625/","JayTHL"
 "350624","2020-04-24 13:57:10","http://167.172.60.241/SBIDIOT/x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/350624/","JayTHL"
@@ -9030,7 +9311,7 @@
 "350435","2020-04-24 05:25:23","http://88.198.149.214/xb.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/350435/","geenensp"
 "350434","2020-04-24 05:25:21","http://37.49.226.204/bins/vcimanagement.x86","offline","malware_download","32-bit,elf,x86-32","https://urlhaus.abuse.ch/url/350434/","geenensp"
 "350433","2020-04-24 05:25:18","http://37.49.226.204/sensi.sh","offline","malware_download","script","https://urlhaus.abuse.ch/url/350433/","geenensp"
-"350432","2020-04-24 05:25:16","http://5.206.227.18/bot/bot.arm7","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/350432/","geenensp"
+"350432","2020-04-24 05:25:16","http://5.206.227.18/bot/bot.arm7","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/350432/","geenensp"
 "350431","2020-04-24 05:25:14","http://84.228.95.204:15580/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/350431/","geenensp"
 "350430","2020-04-24 05:25:11","http://125.227.9.108:32326/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/350430/","geenensp"
 "350429","2020-04-24 05:25:06","http://180.218.161.128:42203/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/350429/","geenensp"
@@ -9069,7 +9350,7 @@
 "350396","2020-04-24 04:02:49","http://178.128.44.190/armv5l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350396/","zbetcheckin"
 "350395","2020-04-24 04:02:47","http://178.128.44.190/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350395/","zbetcheckin"
 "350394","2020-04-24 04:02:45","http://178.128.44.190/mipsel","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350394/","zbetcheckin"
-"350393","2020-04-24 04:02:42","http://5.206.227.18/bot/bot.x86_64","online","malware_download","elf","https://urlhaus.abuse.ch/url/350393/","zbetcheckin"
+"350393","2020-04-24 04:02:42","http://5.206.227.18/bot/bot.x86_64","offline","malware_download","elf","https://urlhaus.abuse.ch/url/350393/","zbetcheckin"
 "350392","2020-04-24 04:02:40","http://178.128.44.190/mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350392/","zbetcheckin"
 "350391","2020-04-24 04:02:38","http://178.128.44.190/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/350391/","zbetcheckin"
 "350390","2020-04-24 04:02:36","http://93.115.97.153/daddyscumbins.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/350390/","zbetcheckin"
@@ -10432,8 +10713,8 @@
 "349023","2020-04-23 17:29:03","http://107.158.154.94/beastmode/b3astmode.sh4","online","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/349023/","zbetcheckin"
 "349022","2020-04-23 17:27:32","https://uvisionpk.com/wp/wp-content/themes/calliope/docs_4ru/Judgement_04222020_70525.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349022/","malware_traffic"
 "349021","2020-04-23 17:27:26","https://uvisionpk.com/wp/wp-content/themes/calliope/docs_4ru/6004556/Judgement_04222020_6004556.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349021/","malware_traffic"
-"349020","2020-04-23 17:27:18","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/docs_tpm/Judgement_04222020_5460712.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349020/","malware_traffic"
-"349019","2020-04-23 17:27:13","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/docs_tpm/250122449/Judgement_04222020_250122449.zip","online","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349019/","malware_traffic"
+"349020","2020-04-23 17:27:18","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/docs_tpm/Judgement_04222020_5460712.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349020/","malware_traffic"
+"349019","2020-04-23 17:27:13","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/docs_tpm/250122449/Judgement_04222020_250122449.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349019/","malware_traffic"
 "349018","2020-04-23 17:27:08","http://playvideo.site/docs_8kj/Judgement_04222020_0736741.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349018/","malware_traffic"
 "349017","2020-04-23 17:27:06","http://playvideo.site/docs_8kj/81588387/Judgement_04222020_81588387.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349017/","malware_traffic"
 "349016","2020-04-23 17:27:03","http://pinangcitygroup.asia/wp-content/uploads/2020/04/docs_cgj/Judgement_04222020_56507748.zip","offline","malware_download","Qakbot,qbot,spx103,zip","https://urlhaus.abuse.ch/url/349016/","malware_traffic"
@@ -10854,8 +11135,8 @@
 "348600","2020-04-23 05:44:47","http://111.185.227.170:14482/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348600/","geenensp"
 "348599","2020-04-23 05:44:42","https://onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76%21196&authkey=AEIZSuDu2mLHlHU","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348599/","lovemalware"
 "348598","2020-04-23 05:44:38","https://www.podiatristlansdale.com/okl/newbackomo_encrypted_24D9EB0.bin","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348598/","lovemalware"
-"348597","2020-04-23 05:44:34","http://kabiru.ru/R3_encrypted_D502EDF.bin","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348597/","lovemalware"
-"348596","2020-04-23 05:44:30","http://stubbackup.ru/R3_encrypted_D502EDF.bin","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348596/","lovemalware"
+"348597","2020-04-23 05:44:34","http://kabiru.ru/R3_encrypted_D502EDF.bin","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348597/","lovemalware"
+"348596","2020-04-23 05:44:30","http://stubbackup.ru/R3_encrypted_D502EDF.bin","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348596/","lovemalware"
 "348595","2020-04-23 05:44:26","https://drive.google.com/uc?export=download&id=1gmw2SSkN5kHSgoIMIn_5wHyRHYsD3rNc","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348595/","lovemalware"
 "348594","2020-04-23 05:44:18","https://drive.google.com/uc?export=download&id=1IyBsEBMpuylFRRRNqLLJOJcYewc0kIzl","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348594/","lovemalware"
 "348593","2020-04-23 05:43:01","http://185.132.53.58/bins/Hilix.mips","offline","malware_download","32-bit,elf,mips","https://urlhaus.abuse.ch/url/348593/","geenensp"
@@ -11265,9 +11546,9 @@
 "348188","2020-04-22 14:43:06","http://115.213.223.64:49412/i","offline","malware_download","None","https://urlhaus.abuse.ch/url/348188/","JayTHL"
 "348187","2020-04-22 14:40:04","http://51.161.68.186/bins/arc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348187/","Gandylyan1"
 "348186","2020-04-22 14:36:33","http://23.95.89.71/bins/arc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/348186/","Gandylyan1"
-"348185","2020-04-22 14:27:07","http://modcloudserver.eu/jayz/jayz.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348185/","zbetcheckin"
+"348185","2020-04-22 14:27:07","http://modcloudserver.eu/jayz/jayz.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348185/","zbetcheckin"
 "348184","2020-04-22 14:26:57","http://modcloudserver.eu/petercodyz/petercodyz.exe","offline","malware_download","AgentTesla,exe,Loki","https://urlhaus.abuse.ch/url/348184/","zbetcheckin"
-"348183","2020-04-22 14:26:25","http://modcloudserver.eu/billiz/billiz.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348183/","zbetcheckin"
+"348183","2020-04-22 14:26:25","http://modcloudserver.eu/billiz/billiz.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348183/","zbetcheckin"
 "348182","2020-04-22 14:18:07","http://179.156.196.13:31972/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348182/","geenensp"
 "348181","2020-04-22 14:08:08","http://42.113.104.40:10796/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348181/","geenensp"
 "348180","2020-04-22 14:03:05","http://173.168.197.166:4638/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348180/","geenensp"
@@ -11277,10 +11558,10 @@
 "348176","2020-04-22 13:23:03","https://paste.ee/r/SdssK","offline","malware_download","Encoded","https://urlhaus.abuse.ch/url/348176/","abuse_ch"
 "348175","2020-04-22 13:20:19","http://quecik.com/j1x/1447032.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348175/","zbetcheckin"
 "348174","2020-04-22 13:20:15","http://modcloudserver.eu/uzmod2/uzmod2.exe","online","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/348174/","zbetcheckin"
-"348173","2020-04-22 13:19:39","http://modcloudserver.eu/nwamaz/nwamaz.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348173/","zbetcheckin"
+"348173","2020-04-22 13:19:39","http://modcloudserver.eu/nwamaz/nwamaz.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348173/","zbetcheckin"
 "348172","2020-04-22 13:19:07","http://quecik.com/j1x/1856137.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348172/","zbetcheckin"
 "348171","2020-04-22 13:16:07","http://www.apexsruveyors.com/date/eat.png","offline","malware_download","exe,NanoCore,rat","https://urlhaus.abuse.ch/url/348171/","abuse_ch"
-"348170","2020-04-22 13:15:44","http://modcloudserver.eu/uzmod1/uzmod1.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348170/","zbetcheckin"
+"348170","2020-04-22 13:15:44","http://modcloudserver.eu/uzmod1/uzmod1.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348170/","zbetcheckin"
 "348169","2020-04-22 13:15:06","http://cloudcast.best/d5c65ad6c021ab6adcf98a48b62e294c/updateprofile.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348169/","zbetcheckin"
 "348168","2020-04-22 13:06:04","http://russchine2specialstdy7plumbingmaterialmk.duckdns.org/russdoc/regasm.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348168/","gorimpthon"
 "348167","2020-04-22 13:06:03","http://cheshirecheetah.com/wp-content/themes/mapro/pump/55555.png","offline","malware_download","exe,Qakbot,Quakbot,spx102","https://urlhaus.abuse.ch/url/348167/","lazyactivist192"
@@ -11310,7 +11591,7 @@
 "348143","2020-04-22 12:01:05","http://misty-beppu-9627.lovesick.jp/ERC/EIC.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/348143/","zbetcheckin"
 "348142","2020-04-22 11:57:48","http://misty-beppu-9627.lovesick.jp/Img/CIC.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/348142/","zbetcheckin"
 "348141","2020-04-22 11:57:43","https://petromltd.com/Preview.PDF.exe","offline","malware_download"," 2020-04-22,Trickbot","https://urlhaus.abuse.ch/url/348141/","anonymous"
-"348140","2020-04-22 11:57:32","http://modcloudserver.eu/damiano/damiano.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348140/","DanielStepanic"
+"348140","2020-04-22 11:57:32","http://modcloudserver.eu/damiano/damiano.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/348140/","DanielStepanic"
 "348139","2020-04-22 11:53:07","https://drive.google.com/uc?export=download&id=17BWiKHlfcejUbmN-vR5GRCXiHK4aZ5eh","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/348139/","abuse_ch"
 "348138","2020-04-22 11:49:06","http://quecik.com/j1x/6010277.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/348138/","abuse_ch"
 "348137","2020-04-22 11:46:06","http://139.99.180.76/bins/arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348137/","zbetcheckin"
@@ -11366,7 +11647,7 @@
 "348087","2020-04-22 09:04:14","http://111.43.223.86:56363/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348087/","Gandylyan1"
 "348086","2020-04-22 09:04:11","http://116.114.95.108:56841/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348086/","Gandylyan1"
 "348085","2020-04-22 09:04:08","http://222.136.253.78:34373/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/348085/","Gandylyan1"
-"348084","2020-04-22 08:54:33","http://dhlservices.duckdns.org/DHL/Receipt%20Address%20Confirmation%20(Please%20Sign)_Pdf.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/348084/","zbetcheckin"
+"348084","2020-04-22 08:54:33","http://dhlservices.duckdns.org/DHL/Receipt%20Address%20Confirmation%20(Please%20Sign)_Pdf.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/348084/","zbetcheckin"
 "348083","2020-04-22 08:37:21","http://103.60.110.111:443/ma/fdlaunchera.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/348083/","zbetcheckin"
 "348082","2020-04-22 08:37:18","http://103.60.110.111:443/ma/ReportServser.exe","online","malware_download","CoinMiner,exe","https://urlhaus.abuse.ch/url/348082/","zbetcheckin"
 "348081","2020-04-22 08:37:10","http://hotgifts.online/app/watchdog.exe","offline","malware_download","exe,glupteba","https://urlhaus.abuse.ch/url/348081/","zbetcheckin"
@@ -11413,7 +11694,7 @@
 "348040","2020-04-22 06:33:43","http://86.179.186.74:62126/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348040/","geenensp"
 "348039","2020-04-22 06:33:40","http://2.229.41.205:42285/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348039/","geenensp"
 "348038","2020-04-22 06:33:37","http://79.54.115.243:19655/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348038/","geenensp"
-"348037","2020-04-22 06:33:34","http://218.154.126.150:47788/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348037/","geenensp"
+"348037","2020-04-22 06:33:34","http://218.154.126.150:47788/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348037/","geenensp"
 "348036","2020-04-22 06:33:01","http://systemintergrafileexchangeserverprotocol.duckdns.org/sys/xx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348036/","gorimpthon"
 "348035","2020-04-22 06:32:29","http://systemintergrafileexchangeserverprotocol.duckdns.org/sys/x.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348035/","gorimpthon"
 "348034","2020-04-22 06:31:57","http://systemintergrafileexchangeserverprotocol.duckdns.org/sys/py.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/348034/","gorimpthon"
@@ -11448,7 +11729,7 @@
 "348005","2020-04-22 06:21:43","http://128.199.96.14/bins/arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/348005/","hypoweb"
 "348004","2020-04-22 06:21:40","http://27.145.194.179:5028/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348004/","geenensp"
 "348003","2020-04-22 06:21:35","http://93.122.225.34:3151/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348003/","geenensp"
-"348002","2020-04-22 06:21:31","http://121.154.107.249:26029/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348002/","geenensp"
+"348002","2020-04-22 06:21:31","http://121.154.107.249:26029/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/348002/","geenensp"
 "348001","2020-04-22 06:20:34","http://nesrincoban.com/assets/orgn9_encrypted_C307E3F.bin","offline","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348001/","lovemalware"
 "348000","2020-04-22 06:20:22","https://onedrive.live.com/download?cid=FD50774E5CE0E314&resid=FD50774E5CE0E314%21778&authkey=AOXB2VhHZ3QOdIU","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/348000/","lovemalware"
 "347999","2020-04-22 06:20:17","https://onedrive.live.com/download?cid=72EF66C14DF86B76&resid=72EF66C14DF86B76%21193&authkey=ADq3v72povhBjzQ","online","malware_download","exe,GuLoader","https://urlhaus.abuse.ch/url/347999/","lovemalware"
@@ -11631,7 +11912,7 @@
 "347822","2020-04-21 21:04:05","http://199.83.204.236:46050/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/347822/","Gandylyan1"
 "347821","2020-04-21 21:01:33","https://rawcdn.githack.com/yM64l6d4ekmHlAzZ/reddit/2a9f5350820457c1b5e76a686f8593ad8f95366c/twitter/1505164.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/347821/","zbetcheckin"
 "347820","2020-04-21 21:00:39","https://drive.google.com/u/0/uc?id=1rFX0WSnjWfD_S-CsbnECFidz0FIpqaYm&export=download","online","malware_download","remcos","https://urlhaus.abuse.ch/url/347820/","James_inthe_box"
-"347819","2020-04-21 20:57:33","http://rawcdn.githack.com/c9cdxguem39s7f1w/reddit/095f2efb735af838bfb013499b00e4263b5315e6/1808164.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/347819/","zbetcheckin"
+"347819","2020-04-21 20:57:33","http://rawcdn.githack.com/c9cdxguem39s7f1w/reddit/095f2efb735af838bfb013499b00e4263b5315e6/1808164.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/347819/","zbetcheckin"
 "347818","2020-04-21 20:24:07","http://183.151.84.140:46378/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/347818/","zbetcheckin"
 "347817","2020-04-21 20:23:03","http://www.4up4.com/uploads/file_2020-04-21_161702.jpg","offline","malware_download","base64,exe,reverse","https://urlhaus.abuse.ch/url/347817/","oppimaniac"
 "347816","2020-04-21 19:44:21","http://13pope.com/wrd/troll.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/347816/","JayTHL"
@@ -11784,7 +12065,7 @@
 "347669","2020-04-21 14:25:52","https://zoodbaz.com/wp-content/uploads/2020/04/evolving/0901086/0901086.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347669/","malware_traffic"
 "347668","2020-04-21 14:25:45","https://villette45.com/wp-content/uploads/2020/04/evolving/5329347/5329347.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347668/","malware_traffic"
 "347667","2020-04-21 14:25:42","https://tianzi8.cn/wp-content/plugins/apikey/evolving/8525382.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347667/","malware_traffic"
-"347666","2020-04-21 14:25:34","https://tianzi8.cn/wp-content/plugins/apikey/evolving/17951100.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347666/","malware_traffic"
+"347666","2020-04-21 14:25:34","https://tianzi8.cn/wp-content/plugins/apikey/evolving/17951100.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347666/","malware_traffic"
 "347665","2020-04-21 14:25:17","https://themenuz.com/wp-content/uploads/2020/04/evolving/992093.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347665/","malware_traffic"
 "347664","2020-04-21 14:25:12","https://themenuz.com/wp-content/uploads/2020/04/evolving/9073043/9073043.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347664/","malware_traffic"
 "347663","2020-04-21 14:25:08","https://themenuz.com/wp-content/uploads/2020/04/evolving/810211749.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347663/","malware_traffic"
@@ -11807,7 +12088,7 @@
 "347646","2020-04-21 14:23:47","https://lamaisongourmande.live/wp-content/uploads/2020/04/evolving/241093858.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347646/","malware_traffic"
 "347645","2020-04-21 14:23:43","https://lamaisongourmande.live/wp-content/uploads/2020/04/evolving/23128159.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347645/","malware_traffic"
 "347644","2020-04-21 14:23:40","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/301543/301543.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347644/","malware_traffic"
-"347643","2020-04-21 14:23:34","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/11044836/11044836.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347643/","malware_traffic"
+"347643","2020-04-21 14:23:34","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/11044836/11044836.zip","online","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347643/","malware_traffic"
 "347642","2020-04-21 14:23:30","https://ileolaherbalcare.com.ng/wp-content/uploads/2020/04/evolving/10326.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347642/","malware_traffic"
 "347641","2020-04-21 14:23:24","https://icshongkong.com/wp-content/uploads/2020/04/evolving/712611496.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347641/","malware_traffic"
 "347640","2020-04-21 14:23:16","https://icshongkong.com/wp-content/uploads/2020/04/evolving/31084/31084.zip","offline","malware_download","Qakbot,qbot,spx101,zip","https://urlhaus.abuse.ch/url/347640/","malware_traffic"
@@ -11989,10 +12270,10 @@
 "347464","2020-04-21 10:34:06","http://51.161.68.186/bins/arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/347464/","Gandylyan1"
 "347463","2020-04-21 10:34:03","http://51.161.68.186/bins/arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/347463/","Gandylyan1"
 "347462","2020-04-21 10:30:04","http://51.161.68.186/bins/arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/347462/","Gandylyan1"
-"347461","2020-04-21 10:00:24","http://112.170.165.71:56520/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347461/","geenensp"
+"347461","2020-04-21 10:00:24","http://112.170.165.71:56520/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347461/","geenensp"
 "347460","2020-04-21 10:00:19","http://191.13.47.22:58223/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347460/","geenensp"
 "347459","2020-04-21 10:00:11","http://189.112.131.104:29712/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347459/","geenensp"
-"347458","2020-04-21 10:00:06","http://14.46.51.53:8136/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347458/","geenensp"
+"347458","2020-04-21 10:00:06","http://14.46.51.53:8136/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/347458/","geenensp"
 "347457","2020-04-21 09:18:13","http://office-archive-index.com/Payload.docx","offline","malware_download","doc,ta505","https://urlhaus.abuse.ch/url/347457/","oppimaniac"
 "347456","2020-04-21 09:18:06","http://office-archive-index.com/Projekt.rtf","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/347456/","oppimaniac"
 "347455","2020-04-21 09:16:12","http://office-archive-index.com/tesla.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/347455/","oppimaniac"
@@ -12467,7 +12748,7 @@
 "346982","2020-04-20 17:47:21","http://trujilloremodelingservicesinc.com/wp-admin/vary/111111.png","offline","malware_download","Qakbot,qbot,Quakbot","https://urlhaus.abuse.ch/url/346982/","notwhickey"
 "346981","2020-04-20 17:47:12","http://177.37.163.174:19501/.i","online","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/346981/","geenensp"
 "346980","2020-04-20 17:47:05","http://45.163.149.85:30005/.i","offline","malware_download","32-bit,arm,elf","https://urlhaus.abuse.ch/url/346980/","geenensp"
-"346979","2020-04-20 17:31:09","http://187.33.71.68:53365/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/346979/","zbetcheckin"
+"346979","2020-04-20 17:31:09","http://187.33.71.68:53365/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/346979/","zbetcheckin"
 "346978","2020-04-20 17:31:05","http://23.252.75.251/21","offline","malware_download","elf","https://urlhaus.abuse.ch/url/346978/","zbetcheckin"
 "346977","2020-04-20 17:22:20","http://104.140.114.108/pbot.i586","offline","malware_download","elf","https://urlhaus.abuse.ch/url/346977/","Gandylyan1"
 "346976","2020-04-20 17:22:17","http://104.140.114.108/pbot.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/346976/","Gandylyan1"
@@ -12488,7 +12769,7 @@
 "346961","2020-04-20 17:19:05","http://176.123.9.171/bins/arm5.neiru","offline","malware_download","None","https://urlhaus.abuse.ch/url/346961/","JayTHL"
 "346960","2020-04-20 17:19:03","http://176.123.9.171/bins/arm.neiru","offline","malware_download","None","https://urlhaus.abuse.ch/url/346960/","JayTHL"
 "346959","2020-04-20 17:17:04","http://104.140.114.108/pbot.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/346959/","Gandylyan1"
-"346958","2020-04-20 16:59:11","https://drive.google.com/u/0/uc?id=1lf5uj0OZtEz0Da4uloCglElnO0cqqaJ7&export=download","online","malware_download","None","https://urlhaus.abuse.ch/url/346958/","JayTHL"
+"346958","2020-04-20 16:59:11","https://drive.google.com/u/0/uc?id=1lf5uj0OZtEz0Da4uloCglElnO0cqqaJ7&export=download","offline","malware_download","None","https://urlhaus.abuse.ch/url/346958/","JayTHL"
 "346957","2020-04-20 16:46:11","http://lakeviewbinhduong.com.vn/wp-content/themes/calliope/wp-front.php","offline","malware_download","zloader","https://urlhaus.abuse.ch/url/346957/","p5yb34m"
 "346956","2020-04-20 16:46:04","http://nevefe.com/wp-content/themes/calliope/wp-front.php","offline","malware_download","zloader","https://urlhaus.abuse.ch/url/346956/","p5yb34m"
 "346955","2020-04-20 16:33:22","http://37.49.226.19/nemesis.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/346955/","JayTHL"
@@ -12566,7 +12847,7 @@
 "346883","2020-04-20 14:28:42","http://www.gsearch.com.de/E5DB0E07C3D7BE80/networkservice.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/346883/","zbetcheckin"
 "346882","2020-04-20 14:27:34","https://megabitco.in/redy.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/346882/","zbetcheckin"
 "346881","2020-04-20 14:26:21","https://megabitco.in/BTMaster.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/346881/","zbetcheckin"
-"346880","2020-04-20 14:25:17","http://peterssandmay.com/eng/uploads/josh.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/346880/","zbetcheckin"
+"346880","2020-04-20 14:25:17","http://peterssandmay.com/eng/uploads/josh.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/346880/","zbetcheckin"
 "346879","2020-04-20 14:24:41","https://megabitco.in/InvestBot.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/346879/","zbetcheckin"
 "346878","2020-04-20 14:13:09","https://megabitco.in/MoneyBot.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/346878/","zbetcheckin"
 "346877","2020-04-20 14:08:11","http://92.222.70.178/SBIDIOT/yarn","offline","malware_download","None","https://urlhaus.abuse.ch/url/346877/","JayTHL"
@@ -12680,7 +12961,7 @@
 "346769","2020-04-20 12:47:04","http://37.49.226.19/leon.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/346769/","Gandylyan1"
 "346768","2020-04-20 12:47:02","http://37.49.226.19/leon.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/346768/","Gandylyan1"
 "346767","2020-04-20 12:46:03","http://64.227.6.95//Bleach.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/346767/","Gandylyan1"
-"346766","2020-04-20 12:10:08","http://peterssandmay.com/eng/uploads/quakes.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/346766/","abuse_ch"
+"346766","2020-04-20 12:10:08","http://peterssandmay.com/eng/uploads/quakes.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/346766/","abuse_ch"
 "346765","2020-04-20 12:09:00","http://27.41.147.212:41802/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346765/","Gandylyan1"
 "346764","2020-04-20 12:08:50","http://159.255.187.110:57687/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346764/","Gandylyan1"
 "346763","2020-04-20 12:08:47","http://219.154.139.82:47016/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/346763/","Gandylyan1"
@@ -16444,7 +16725,7 @@
 "342944","2020-04-18 09:06:48","http://114.243.211.180:45098/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342944/","Gandylyan1"
 "342943","2020-04-18 09:06:41","http://182.126.239.27:42454/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342943/","Gandylyan1"
 "342942","2020-04-18 09:06:38","http://111.42.66.24:42991/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342942/","Gandylyan1"
-"342941","2020-04-18 09:06:34","http://222.242.158.161:44692/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342941/","Gandylyan1"
+"342941","2020-04-18 09:06:34","http://222.242.158.161:44692/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342941/","Gandylyan1"
 "342940","2020-04-18 09:06:23","http://176.113.161.57:48351/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342940/","Gandylyan1"
 "342939","2020-04-18 09:06:20","http://123.11.178.199:46423/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342939/","Gandylyan1"
 "342938","2020-04-18 09:06:16","http://123.4.76.153:54788/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/342938/","Gandylyan1"
@@ -16540,7 +16821,7 @@
 "342848","2020-04-18 06:44:20","http://187.37.152.10:56005/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/342848/","geenensp"
 "342847","2020-04-18 06:44:15","http://37.49.226.142/bins/asdfghjkl.mips","offline","malware_download","None","https://urlhaus.abuse.ch/url/342847/","geenensp"
 "342846","2020-04-18 06:44:12","http://72.186.129.13:54593/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/342846/","geenensp"
-"342845","2020-04-18 06:44:08","http://121.180.181.177:30422/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/342845/","geenensp"
+"342845","2020-04-18 06:44:08","http://121.180.181.177:30422/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/342845/","geenensp"
 "342844","2020-04-18 06:44:04","http://79.11.228.219:43443/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/342844/","geenensp"
 "342843","2020-04-18 06:43:16","http://121.140.141.73:14261/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/342843/","geenensp"
 "342842","2020-04-18 06:43:11","http://alluringuk.com/images/file/frank/Purchase.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/342842/","jstrosch"
@@ -16931,7 +17212,7 @@
 "342457","2020-04-17 16:07:35","https://digivisor.website/differ/63176025.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342457/","malware_traffic"
 "342456","2020-04-17 16:07:31","https://globaloilsupply.co/differ/470876/470876.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342456/","malware_traffic"
 "342455","2020-04-17 16:07:26","https://besthack.co/differ/557687/557687.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342455/","malware_traffic"
-"342454","2020-04-17 16:07:20","https://thepyramids.nl/differ/61456.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342454/","malware_traffic"
+"342454","2020-04-17 16:07:20","https://thepyramids.nl/differ/61456.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342454/","malware_traffic"
 "342453","2020-04-17 16:07:15","https://onyourmarkmindsetgo.com/differ/1313258/1313258.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342453/","malware_traffic"
 "342452","2020-04-17 16:07:09","https://420hempizone.co/differ/18188/18188.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342452/","malware_traffic"
 "342451","2020-04-17 16:07:04","https://clario.biz/differ/47796/47796.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342451/","malware_traffic"
@@ -16942,7 +17223,7 @@
 "342446","2020-04-17 16:05:57","https://thepyramids.nl/differ/60636/60636.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342446/","malware_traffic"
 "342445","2020-04-17 16:05:52","https://sayiteducation.com/differ/354318294/354318294.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342445/","malware_traffic"
 "342444","2020-04-17 16:05:48","https://halotelco.vip/differ/70955.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342444/","malware_traffic"
-"342443","2020-04-17 16:05:33","https://compesat.com/differ/106172/106172.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342443/","malware_traffic"
+"342443","2020-04-17 16:05:33","https://compesat.com/differ/106172/106172.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342443/","malware_traffic"
 "342442","2020-04-17 16:05:19","https://fine.black/differ/49363504/49363504.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342442/","malware_traffic"
 "342441","2020-04-17 16:05:12","https://musearttherapy.com/differ/645441.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342441/","malware_traffic"
 "342440","2020-04-17 16:05:06","https://420hempizone.co/differ/82386.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342440/","malware_traffic"
@@ -16961,7 +17242,7 @@
 "342427","2020-04-17 16:02:49","https://sayiteducation.com/differ/6924025.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342427/","malware_traffic"
 "342426","2020-04-17 16:02:46","https://film4k.ga/differ/20586.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342426/","malware_traffic"
 "342425","2020-04-17 16:02:37","https://clario.biz/differ/83561.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342425/","malware_traffic"
-"342424","2020-04-17 16:02:24","https://thepyramids.nl/differ/894405/894405.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342424/","malware_traffic"
+"342424","2020-04-17 16:02:24","https://thepyramids.nl/differ/894405/894405.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342424/","malware_traffic"
 "342423","2020-04-17 16:02:13","https://theneews.us/differ/888441/888441.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342423/","malware_traffic"
 "342422","2020-04-17 16:02:08","https://sweetrsnd.com/differ/30560.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342422/","malware_traffic"
 "342421","2020-04-17 16:01:50","http://sayiteducation.com/differ/23338/23338.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342421/","malware_traffic"
@@ -17002,14 +17283,14 @@
 "342386","2020-04-17 14:54:09","https://greenlandlion.com/extend/3601775.zip","offline","malware_download","Qakbot,qbot,spx98,zip","https://urlhaus.abuse.ch/url/342386/","malware_traffic"
 "342385","2020-04-17 14:54:03","http://spirtualcenteruk.com/feature/192776271.zip","offline","malware_download","Qakbot,qbot,spx98,zip","https://urlhaus.abuse.ch/url/342385/","malware_traffic"
 "342384","2020-04-17 14:53:41","https://thornadops.com/differ/0528300/0528300.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342384/","malware_traffic"
-"342383","2020-04-17 14:53:35","https://thornadops.com/differ/473793/473793.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342383/","malware_traffic"
+"342383","2020-04-17 14:53:35","https://thornadops.com/differ/473793/473793.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342383/","malware_traffic"
 "342382","2020-04-17 14:53:27","https://theneews.us/differ/021906/021906.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342382/","malware_traffic"
 "342381","2020-04-17 14:53:18","https://sayiteducation.com/differ/293127445.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342381/","malware_traffic"
 "342380","2020-04-17 14:53:13","https://qualitygolfbags.com/differ/45335.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342380/","malware_traffic"
 "342379","2020-04-17 14:53:02","https://musearttherapy.com/differ/327336/327336.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342379/","malware_traffic"
 "342378","2020-04-17 14:52:50","https://glitchexotika.com/differ/947908.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342378/","malware_traffic"
-"342377","2020-04-17 14:52:43","https://fairyqueenstore.com/differ/2164939.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342377/","malware_traffic"
-"342376","2020-04-17 14:52:31","https://compesat.com/differ/21962/21962.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342376/","malware_traffic"
+"342377","2020-04-17 14:52:43","https://fairyqueenstore.com/differ/2164939.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342377/","malware_traffic"
+"342376","2020-04-17 14:52:31","https://compesat.com/differ/21962/21962.zip","online","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342376/","malware_traffic"
 "342375","2020-04-17 14:52:21","https://bybysunday.com/differ/09997/09997.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342375/","malware_traffic"
 "342374","2020-04-17 14:52:14","https://besthack.co/differ/9710336/9710336.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342374/","malware_traffic"
 "342373","2020-04-17 14:52:09","https://bavlcentral.org/differ/50208/50208.zip","offline","malware_download","Qakbot,qbot,spx99,zip","https://urlhaus.abuse.ch/url/342373/","malware_traffic"
@@ -17886,7 +18167,7 @@
 "341502","2020-04-16 15:08:56","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/beads/182838/182838.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341502/","malware_traffic"
 "341501","2020-04-16 15:08:51","https://tepatitlan.gob.mx/cs/wp-content/themes/calliope/beads/023318/023318.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341501/","malware_traffic"
 "341500","2020-04-16 15:08:40","http://daiohs.com.tw/feature/777777.png","offline","malware_download","exe,Qakbot,spx98","https://urlhaus.abuse.ch/url/341500/","lazyactivist192"
-"341499","2020-04-16 15:08:05","http://anamikaindanegas.in/feature/777777.png","online","malware_download","exe,Qakbot,spx98","https://urlhaus.abuse.ch/url/341499/","lazyactivist192"
+"341499","2020-04-16 15:08:05","http://anamikaindanegas.in/feature/777777.png","offline","malware_download","exe,Qakbot,spx98","https://urlhaus.abuse.ch/url/341499/","lazyactivist192"
 "341498","2020-04-16 15:07:58","http://demo.caglificioclerici.com/feature/777777.png","offline","malware_download","exe,Qakbot,spx98","https://urlhaus.abuse.ch/url/341498/","lazyactivist192"
 "341497","2020-04-16 15:07:53","http://automatischer-staubsauger.com/feature/777777.png","offline","malware_download","exe,Qakbot,spx98","https://urlhaus.abuse.ch/url/341497/","lazyactivist192"
 "341496","2020-04-16 15:07:46","http://surecake.com/wp-content/themes/calliope/beads/803050873/803050873.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341496/","malware_traffic"
@@ -17899,8 +18180,8 @@
 "341489","2020-04-16 15:06:47","https://stationaryhome.com/wp-content/themes/calliope/beads/12698.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341489/","malware_traffic"
 "341488","2020-04-16 15:06:32","http://sportwin.com.ua/wp-content/themes/calliope/beads/82612240/82612240.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341488/","malware_traffic"
 "341487","2020-04-16 15:06:28","http://sportwin.com.ua/wp-content/themes/calliope/beads/534397705/534397705.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341487/","malware_traffic"
-"341486","2020-04-16 15:06:24","http://shaoxiaofei.cn/beads/80858358/80858358.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341486/","malware_traffic"
-"341485","2020-04-16 15:05:52","http://shaoxiaofei.cn/beads/53170/53170.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341485/","malware_traffic"
+"341486","2020-04-16 15:06:24","http://shaoxiaofei.cn/beads/80858358/80858358.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341486/","malware_traffic"
+"341485","2020-04-16 15:05:52","http://shaoxiaofei.cn/beads/53170/53170.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341485/","malware_traffic"
 "341484","2020-04-16 15:05:19","http://shaoxiaofei.cn/beads/4487627/4487627.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341484/","malware_traffic"
 "341483","2020-04-16 15:04:02","http://shaoxiaofei.cn/beads/11763.zip","online","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341483/","malware_traffic"
 "341482","2020-04-16 15:03:54","http://shaoxiaofei.cn/beads/07058857/07058857.zip","offline","malware_download","Qakbot,qbot,spx97,zip","https://urlhaus.abuse.ch/url/341482/","malware_traffic"
@@ -18138,7 +18419,7 @@
 "341250","2020-04-16 06:19:09","http://178.128.245.174/Binarys/nuclear.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/341250/","geenensp"
 "341249","2020-04-16 06:19:07","http://185.132.53.59/dark_bins/dark.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/341249/","geenensp"
 "341248","2020-04-16 06:19:05","http://a.coolbreeze.uk/213/312d/6748.png","offline","malware_download","exe,Qakbot,spx97","https://urlhaus.abuse.ch/url/341248/","lazyactivist192"
-"341247","2020-04-16 06:18:14","http://chattosport.com/wp-content/themes/calliope/beads/444444.png","offline","malware_download","exe,Qakbot,spx97","https://urlhaus.abuse.ch/url/341247/","lazyactivist192"
+"341247","2020-04-16 06:18:14","http://chattosport.com/wp-content/themes/calliope/beads/444444.png","online","malware_download","exe,Qakbot,spx97","https://urlhaus.abuse.ch/url/341247/","lazyactivist192"
 "341246","2020-04-16 06:17:43","http://marinerevetement.com/wp-content/themes/calliope/beads/444444.png","offline","malware_download","exe,Qakbot,spx97","https://urlhaus.abuse.ch/url/341246/","lazyactivist192"
 "341245","2020-04-16 06:17:40","http://pakgt.com/wp-content/themes/calliope/beads/444444.png","offline","malware_download","exe,Qakbot,spx97","https://urlhaus.abuse.ch/url/341245/","lazyactivist192"
 "341244","2020-04-16 06:17:32","http://198.98.61.142/axisbins.sh","offline","malware_download","None","https://urlhaus.abuse.ch/url/341244/","geenensp"
@@ -18538,7 +18819,7 @@
 "340850","2020-04-15 17:44:06","http://61.90.55.25:9796/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/340850/","geenensp"
 "340849","2020-04-15 17:41:14","http://anf.gov.pk/pmstesting/export/test/covid-19/UA-COVID-19.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/340849/","JAMESWT_MHT"
 "340848","2020-04-15 17:30:06","http://124.67.89.18:44663/i","offline","malware_download","None","https://urlhaus.abuse.ch/url/340848/","anonymous"
-"340847","2020-04-15 17:20:07","http://121.178.96.50:43338/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/340847/","geenensp"
+"340847","2020-04-15 17:20:07","http://121.178.96.50:43338/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/340847/","geenensp"
 "340846","2020-04-15 17:14:09","http://greenmagicbd.com/wp-content/themes/calliope/previous/444444.png","offline","malware_download","None","https://urlhaus.abuse.ch/url/340846/","JAMESWT_MHT"
 "340845","2020-04-15 17:10:05","https://www.sendspace.com/pro/dl/dfyexq","offline","malware_download","NanoCore,rat","https://urlhaus.abuse.ch/url/340845/","p5yb34m"
 "340844","2020-04-15 17:08:10","http://vmawt.mlkd.cf/?41504621333686268","offline","malware_download","dll","https://urlhaus.abuse.ch/url/340844/","jstrosch"
@@ -18965,7 +19246,7 @@
 "340423","2020-04-14 20:26:39","https://restaurantemexicano.es/string/91554.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340423/","malware_traffic"
 "340422","2020-04-14 20:26:37","https://restaurantemexicano.es/string/0830591/0830591.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340422/","malware_traffic"
 "340421","2020-04-14 20:26:32","http://quehagoencartagena.com/string/804903/804903.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340421/","malware_traffic"
-"340420","2020-04-14 20:26:28","http://quehagoencartagena.com/string/075195460/075195460.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340420/","malware_traffic"
+"340420","2020-04-14 20:26:28","http://quehagoencartagena.com/string/075195460/075195460.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340420/","malware_traffic"
 "340419","2020-04-14 20:26:22","http://peternoresson.se/string/8973124.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340419/","malware_traffic"
 "340418","2020-04-14 20:26:11","http://peternoresson.se/string/86444.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340418/","malware_traffic"
 "340417","2020-04-14 20:26:08","http://peternoresson.se/string/6582750.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340417/","malware_traffic"
@@ -18988,7 +19269,7 @@
 "340400","2020-04-14 20:23:50","https://mochandmade.us/string/443327271/443327271.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340400/","malware_traffic"
 "340399","2020-04-14 20:23:42","https://microvpn.info/string/530345404/530345404.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340399/","malware_traffic"
 "340398","2020-04-14 20:23:38","http://melias.se/string/64928487.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340398/","malware_traffic"
-"340397","2020-04-14 20:23:30","https://marocaji.com/string/92174460/92174460.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340397/","malware_traffic"
+"340397","2020-04-14 20:23:30","https://marocaji.com/string/92174460/92174460.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340397/","malware_traffic"
 "340396","2020-04-14 20:23:22","https://marketevip.com/string/9651583/9651583.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340396/","malware_traffic"
 "340395","2020-04-14 20:23:15","https://langsirterkini.net/string/134437527/134437527.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340395/","malware_traffic"
 "340394","2020-04-14 20:22:35","http://maluna.com.br/string/9323831.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340394/","malware_traffic"
@@ -19000,8 +19281,8 @@
 "340388","2020-04-14 20:21:51","http://ipbg.org.br/string/637148407/637148407.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340388/","malware_traffic"
 "340387","2020-04-14 20:21:40","https://hotel-sangiorgio.com/string/974483/974483.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340387/","malware_traffic"
 "340386","2020-04-14 20:21:35","https://hellomessager.com/string/9336248.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340386/","malware_traffic"
-"340385","2020-04-14 20:21:33","https://hellomessager.com/string/67893798.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340385/","malware_traffic"
-"340384","2020-04-14 20:21:30","https://hellomessager.com/string/487434/487434.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340384/","malware_traffic"
+"340385","2020-04-14 20:21:33","https://hellomessager.com/string/67893798.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340385/","malware_traffic"
+"340384","2020-04-14 20:21:30","https://hellomessager.com/string/487434/487434.zip","online","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340384/","malware_traffic"
 "340383","2020-04-14 20:21:23","https://gsm-laboratory.com/string/2259983.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340383/","malware_traffic"
 "340382","2020-04-14 20:21:18","https://gsm-laboratory.com/string/05907/05907.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340382/","malware_traffic"
 "340381","2020-04-14 20:21:13","https://gsm-laboratory.com/string/009540421.zip","offline","malware_download","Qakbot,qbot,spx96,zip","https://urlhaus.abuse.ch/url/340381/","malware_traffic"
@@ -19156,7 +19437,7 @@
 "340232","2020-04-14 14:52:05","http://199.83.205.25:60246/Mozi.m","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/340232/","zbetcheckin"
 "340231","2020-04-14 14:43:12","http://d.teamworx.ph/1839/20/279.png","offline","malware_download","exe,Qakbot,spx96","https://urlhaus.abuse.ch/url/340231/","lazyactivist192"
 "340230","2020-04-14 14:43:05","http://unik-evenements.fr/string/444444.png","offline","malware_download","exe,Qakbot,spx96","https://urlhaus.abuse.ch/url/340230/","lazyactivist192"
-"340229","2020-04-14 14:37:13","http://leukkado.be/string/444444.png","offline","malware_download","exe,Qakbot,Quakbot,spx96","https://urlhaus.abuse.ch/url/340229/","lazyactivist192"
+"340229","2020-04-14 14:37:13","http://leukkado.be/string/444444.png","online","malware_download","exe,Qakbot,Quakbot,spx96","https://urlhaus.abuse.ch/url/340229/","lazyactivist192"
 "340228","2020-04-14 14:37:11","http://millionsawesomeproducts.com/string/444444.png","offline","malware_download","exe,Qakbot,spx96","https://urlhaus.abuse.ch/url/340228/","lazyactivist192"
 "340227","2020-04-14 14:37:08","http://funpartyrent.com/string/444444.png","offline","malware_download","exe,Qakbot,Quakbot,spx96","https://urlhaus.abuse.ch/url/340227/","lazyactivist192"
 "340226","2020-04-14 14:37:04","http://common-factor.nl/string/444444.png","offline","malware_download","exe,Qakbot,Quakbot,spx96","https://urlhaus.abuse.ch/url/340226/","lazyactivist192"
@@ -20434,7 +20715,7 @@
 "338951","2020-04-12 20:09:26","https://onedrive.live.com/download?cid=85EC872136D189D9&resid=85EC872136D189D9!107&authkey=AG6BUsqtSbLZJiw","online","malware_download","None","https://urlhaus.abuse.ch/url/338951/","JayTHL"
 "338950","2020-04-12 20:09:16","https://onedrive.live.com/download?cid=7A5E689DD1DC641F&resid=7A5E689DD1DC641F!120&authkey=AJj7uEqJvobgFUM","online","malware_download","None","https://urlhaus.abuse.ch/url/338950/","JayTHL"
 "338949","2020-04-12 20:09:14","https://onedrive.live.com/download?cid=55FF3579FF543F52&resid=55FF3579FF543F52!1825&authkey=AOMq_KOJD8j1mcc","offline","malware_download","None","https://urlhaus.abuse.ch/url/338949/","JayTHL"
-"338948","2020-04-12 20:09:11","https://onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!395&authkey=ALWvuB_YHtOgJXw","online","malware_download","None","https://urlhaus.abuse.ch/url/338948/","JayTHL"
+"338948","2020-04-12 20:09:11","https://onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!395&authkey=ALWvuB_YHtOgJXw","offline","malware_download","None","https://urlhaus.abuse.ch/url/338948/","JayTHL"
 "338947","2020-04-12 20:09:04","https://onedrive.live.com/download?cid=4000200B3FB8C24F&resid=4000200B3FB8C24F!134&authkey=AAIpzy8NLLiRlkY","online","malware_download","None","https://urlhaus.abuse.ch/url/338947/","JayTHL"
 "338946","2020-04-12 20:08:28","https://onedrive.live.com/download?cid=0F48D15360733D06&resid=F48D15360733D06!106&authkey=AChi3rQkGbcN-KA","online","malware_download","None","https://urlhaus.abuse.ch/url/338946/","JayTHL"
 "338945","2020-04-12 20:08:21","https://onedrive.live.com/download?cid=0D59C202E35694C2&resid=D59C202E35694C2!273&authkey=AE2M69E5NU3RReA","online","malware_download","None","https://urlhaus.abuse.ch/url/338945/","JayTHL"
@@ -20652,7 +20933,7 @@
 "338733","2020-04-12 17:12:37","https://pastebin.com/raw/3NaLAurp","offline","malware_download","None","https://urlhaus.abuse.ch/url/338733/","JayTHL"
 "338732","2020-04-12 17:12:32","https://pastebin.com/raw/PfUj3cgY","offline","malware_download","None","https://urlhaus.abuse.ch/url/338732/","JayTHL"
 "338731","2020-04-12 17:12:29","https://pastebin.com/raw/PAKuwpgV","offline","malware_download","None","https://urlhaus.abuse.ch/url/338731/","JayTHL"
-"338730","2020-04-12 17:12:25","http://119.206.2.248:35335/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/338730/","zbetcheckin"
+"338730","2020-04-12 17:12:25","http://119.206.2.248:35335/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/338730/","zbetcheckin"
 "338729","2020-04-12 17:12:22","https://pastebin.com/raw/gcr4wqQ9","offline","malware_download","None","https://urlhaus.abuse.ch/url/338729/","JayTHL"
 "338728","2020-04-12 17:12:19","https://pastebin.com/raw/C3U88DRR","offline","malware_download","None","https://urlhaus.abuse.ch/url/338728/","JayTHL"
 "338727","2020-04-12 17:12:14","https://pastebin.com/raw/3PqeeV5H","offline","malware_download","None","https://urlhaus.abuse.ch/url/338727/","JayTHL"
@@ -21383,7 +21664,7 @@
 "338002","2020-04-10 18:05:28","http://111.42.66.12:50309/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338002/","Gandylyan1"
 "338001","2020-04-10 18:05:24","http://172.36.6.228:35119/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338001/","Gandylyan1"
 "338000","2020-04-10 18:04:52","http://113.75.77.186:56538/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/338000/","Gandylyan1"
-"337999","2020-04-10 18:04:20","http://175.10.145.138:56467/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/337999/","Gandylyan1"
+"337999","2020-04-10 18:04:20","http://175.10.145.138:56467/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/337999/","Gandylyan1"
 "337998","2020-04-10 18:04:15","http://120.68.244.129:43263/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/337998/","Gandylyan1"
 "337997","2020-04-10 18:04:05","http://111.43.223.91:48749/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/337997/","Gandylyan1"
 "337996","2020-04-10 18:03:58","http://199.83.203.157:58622/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/337996/","Gandylyan1"
@@ -21444,10 +21725,10 @@
 "337941","2020-04-10 14:04:16","http://shawigroup.com/dmndfkle.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/337941/","abuse_ch"
 "337940","2020-04-10 14:01:33","http://194.87.238.60/MASAD/BUILDE.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/337940/","abuse_ch"
 "337939","2020-04-10 14:01:16","https://metalacerogroup.xyz/putty/GHCGGH.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/337939/","abuse_ch"
-"337938","2020-04-10 14:00:10","http://aurumboy.com/file1.exe","online","malware_download","AveMariaRAT,exe","https://urlhaus.abuse.ch/url/337938/","abuse_ch"
-"337937","2020-04-10 14:00:04","http://aurumboy.com/file2.exe","online","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/337937/","abuse_ch"
-"337936","2020-04-10 13:59:57","http://aurumboy.com/file3.exe","online","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/337936/","abuse_ch"
-"337935","2020-04-10 13:56:09","http://aurumboy.com/file4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/337935/","abuse_ch"
+"337938","2020-04-10 14:00:10","http://aurumboy.com/file1.exe","offline","malware_download","AveMariaRAT,exe","https://urlhaus.abuse.ch/url/337938/","abuse_ch"
+"337937","2020-04-10 14:00:04","http://aurumboy.com/file2.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/337937/","abuse_ch"
+"337936","2020-04-10 13:59:57","http://aurumboy.com/file3.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/337936/","abuse_ch"
+"337935","2020-04-10 13:56:09","http://aurumboy.com/file4.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/337935/","abuse_ch"
 "337934","2020-04-10 13:52:32","https://drive.google.com/uc?export=download&id=1lIsY1gd_dpCgLGFezFY1-KSuwimKO2vb","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/337934/","abuse_ch"
 "337933","2020-04-10 13:52:27","https://drive.google.com/uc?export=download&id=1IeK_60LjcKne4QP43bVtRZ0e01ibyQm-","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/337933/","abuse_ch"
 "337932","2020-04-10 13:52:22","https://drive.google.com/uc?export=download&id=1qzs3Lsl8KcSkw35e9Zc8ZMLwzzoTUNAM","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/337932/","abuse_ch"
@@ -21553,7 +21834,7 @@
 "337832","2020-04-10 09:08:54","http://192.119.110.222/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/337832/","zbetcheckin"
 "337831","2020-04-10 09:08:51","http://192.119.110.222/ABCDEFGHIJKLMNOPQRSTUVWXYZ/whoareyou.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/337831/","zbetcheckin"
 "337830","2020-04-10 09:08:50","https://drive.google.com/uc?export=download&id=1141Eq9RovoPIdex9u_lhnhlELcuWtjIW","offline","malware_download","Downloader.Pony,encrypted,GuLoader","https://urlhaus.abuse.ch/url/337830/","abuse_ch"
-"337829","2020-04-10 09:08:44","https://onedrive.live.com/download?cid=0F48D15360733D06&resid=F48D15360733D06%21106&authkey=AChi3rQkGbcN-KA","online","malware_download","Downloader.Pony,encrypted,GuLoader","https://urlhaus.abuse.ch/url/337829/","abuse_ch"
+"337829","2020-04-10 09:08:44","https://onedrive.live.com/download?cid=0F48D15360733D06&resid=F48D15360733D06%21106&authkey=AChi3rQkGbcN-KA","offline","malware_download","Downloader.Pony,encrypted,GuLoader","https://urlhaus.abuse.ch/url/337829/","abuse_ch"
 "337828","2020-04-10 09:08:37","https://drive.google.com/uc?export=download&id=1csiQP3joKaZso-vUcQH_IxToAuJhSGd-","offline","malware_download","Downloader.Pony,encrypted,GuLoader","https://urlhaus.abuse.ch/url/337828/","abuse_ch"
 "337827","2020-04-10 09:08:28","http://46.166.187.223/zehir/z3hir.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/337827/","zbetcheckin"
 "337826","2020-04-10 09:08:26","http://172.245.21.222/bins/FearLess.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/337826/","zbetcheckin"
@@ -21653,7 +21934,7 @@
 "337732","2020-04-10 07:34:59","http://114.237.81.168:56787/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/337732/","Gandylyan1"
 "337731","2020-04-10 07:34:53","http://194.180.224.124/bnetza.sh","offline","malware_download","shellscript","https://urlhaus.abuse.ch/url/337731/","zbetcheckin"
 "337730","2020-04-10 07:34:50","http://www.cassovia.sk/uploads/max/RederictBind/","offline","malware_download","exe","https://urlhaus.abuse.ch/url/337730/","zbetcheckin"
-"337729","2020-04-10 07:34:48","https://onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928!204&authkey=AD0NbZlscbg-0sA","online","malware_download","None","https://urlhaus.abuse.ch/url/337729/","JayTHL"
+"337729","2020-04-10 07:34:48","https://onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928!204&authkey=AD0NbZlscbg-0sA","offline","malware_download","None","https://urlhaus.abuse.ch/url/337729/","JayTHL"
 "337728","2020-04-10 07:34:43","https://onedrive.live.com/download?cid=E61E5F3F655316FA&resid=E61E5F3F655316FA!116&authkey=ANPwH-_g3s-Hua0","offline","malware_download","None","https://urlhaus.abuse.ch/url/337728/","JayTHL"
 "337727","2020-04-10 07:34:40","https://onedrive.live.com/download?cid=D718E3C8E3BC53C0&resid=D718E3C8E3BC53C0!192&authkey=ACD_Hx4BkA3z0Nw","online","malware_download","None","https://urlhaus.abuse.ch/url/337727/","JayTHL"
 "337726","2020-04-10 07:34:31","https://onedrive.live.com/download?cid=CF0C6D1A4C15233D&resid=CF0C6D1A4C15233D!742&authkey=AKbXJu17f8g0R2s","online","malware_download","None","https://urlhaus.abuse.ch/url/337726/","JayTHL"
@@ -21661,8 +21942,8 @@
 "337724","2020-04-10 07:34:18","https://onedrive.live.com/download?cid=7A5E689DD1DC641F&resid=7A5E689DD1DC641F!119&authkey=AOzJAi26IzpRqto","online","malware_download","None","https://urlhaus.abuse.ch/url/337724/","JayTHL"
 "337723","2020-04-10 07:34:10","https://onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!398&authkey=ABAA_TJd7OHh4So","online","malware_download","None","https://urlhaus.abuse.ch/url/337723/","JayTHL"
 "337722","2020-04-10 07:34:07","https://onedrive.live.com/download?cid=2F947402293C14C1&resid=2F947402293C14C1!116&authkey=AIeDK-m7-e7-ppg","offline","malware_download","None","https://urlhaus.abuse.ch/url/337722/","JayTHL"
-"337721","2020-04-10 07:34:03","https://onedrive.live.com/download?cid=2F4D6884E933CB1A&resid=2F4D6884E933CB1A!116&authkey=!ABWlEdjhFsqWaP4","online","malware_download","None","https://urlhaus.abuse.ch/url/337721/","JayTHL"
-"337720","2020-04-10 07:33:50","https://onedrive.live.com/download?cid=265DAF943BE0D06F&resid=265DAF943BE0D06F!191&authkey=AJVUmPkZPLA_nCA","online","malware_download","None","https://urlhaus.abuse.ch/url/337720/","JayTHL"
+"337721","2020-04-10 07:34:03","https://onedrive.live.com/download?cid=2F4D6884E933CB1A&resid=2F4D6884E933CB1A!116&authkey=!ABWlEdjhFsqWaP4","offline","malware_download","None","https://urlhaus.abuse.ch/url/337721/","JayTHL"
+"337720","2020-04-10 07:33:50","https://onedrive.live.com/download?cid=265DAF943BE0D06F&resid=265DAF943BE0D06F!191&authkey=AJVUmPkZPLA_nCA","offline","malware_download","None","https://urlhaus.abuse.ch/url/337720/","JayTHL"
 "337719","2020-04-10 07:33:46","https://onedrive.live.com/download?cid=22DE7FE70990A7F4&resid=22DE7FE70990A7F4!185&authkey=ALxzoQx-dTHHDBc","online","malware_download","None","https://urlhaus.abuse.ch/url/337719/","JayTHL"
 "337718","2020-04-10 07:33:42","https://onedrive.live.com/download?cid=21757E11F03B2792&resid=21757E11F03B2792!109&authkey=!ANHBzyBkG3MeKig","online","malware_download","None","https://urlhaus.abuse.ch/url/337718/","JayTHL"
 "337717","2020-04-10 07:33:37","https://onedrive.live.com/download?cid=0F0A5AADC4C3C242&resid=F0A5AADC4C3C242!309&authkey=ALFe36DRAi1zmWc","online","malware_download","None","https://urlhaus.abuse.ch/url/337717/","JayTHL"
@@ -22053,7 +22334,7 @@
 "337332","2020-04-09 15:41:09","https://retustan.com/tan?S-1-5-21-1693682860-607145093-2874071422-1001","offline","malware_download","Dridex","https://urlhaus.abuse.ch/url/337332/","James_inthe_box"
 "337331","2020-04-09 15:34:21","https://drive.google.com/uc?export=download&id=1Qu2IY4Hq60OluThV17p22lRQMNGEMrkv","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/337331/","abuse_ch"
 "337330","2020-04-09 15:34:12","http://a.teamworx.ph/aushdnduvf/dbasufue/nxa/519.png","offline","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/337330/","lazyactivist192"
-"337329","2020-04-09 15:32:24","https://ceirecrear.com.br/wp-content/plugins/apikey/extend/444444.png","offline","malware_download","exe,Qakbot,Quakbot","https://urlhaus.abuse.ch/url/337329/","lazyactivist192"
+"337329","2020-04-09 15:32:24","https://ceirecrear.com.br/wp-content/plugins/apikey/extend/444444.png","online","malware_download","exe,Qakbot,Quakbot","https://urlhaus.abuse.ch/url/337329/","lazyactivist192"
 "337328","2020-04-09 15:31:18","http://compliancewing.com/wp-content/uploads/2020/04/extend/444444.png","offline","malware_download","exe,Qakbot,Quakbot","https://urlhaus.abuse.ch/url/337328/","lazyactivist192"
 "337327","2020-04-09 15:31:12","http://fovarosiingatlan.rocksztar.com/extend/444444.png","offline","malware_download","exe,Qakbot,Quakbot","https://urlhaus.abuse.ch/url/337327/","lazyactivist192"
 "337326","2020-04-09 15:31:09","http://pelokazi-spiritualcoach.co.za/extend/444444.png","offline","malware_download","exe,Qakbot,Quakbot","https://urlhaus.abuse.ch/url/337326/","lazyactivist192"
@@ -22185,7 +22466,7 @@
 "337198","2020-04-09 07:30:11","https://drive.google.com/uc?export=download&id=1269rP9a-NwhI-yvTCnT-eHh8KbqaVQfX","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/337198/","abuse_ch"
 "337197","2020-04-09 07:10:07","http://www.reyvencontracting.com/ray/pom.php","offline","malware_download","exe,Gozi,ursnif","https://urlhaus.abuse.ch/url/337197/","abuse_ch"
 "337196","2020-04-09 06:59:05","http://march262020.com/files/april8.dll","offline","malware_download","dll,terdot,zloader","https://urlhaus.abuse.ch/url/337196/","Jouliok"
-"337195","2020-04-09 06:36:37","https://onedrive.live.com/download?cid=7A5E689DD1DC641F&resid=7A5E689DD1DC641F%21120&authkey=AJj7uEqJvobgFUM","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/337195/","abuse_ch"
+"337195","2020-04-09 06:36:37","https://onedrive.live.com/download?cid=7A5E689DD1DC641F&resid=7A5E689DD1DC641F%21120&authkey=AJj7uEqJvobgFUM","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/337195/","abuse_ch"
 "337194","2020-04-09 06:36:33","https://onedrive.live.com/download?cid=7A5E689DD1DC641F&resid=7A5E689DD1DC641F%21119&authkey=AOzJAi26IzpRqto","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/337194/","abuse_ch"
 "337193","2020-04-09 06:36:22","https://onedrive.live.com/download?cid=2F947402293C14C1&resid=2F947402293C14C1%21116&authkey=AIeDK-m7-e7-ppg","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/337193/","abuse_ch"
 "337192","2020-04-09 06:36:18","https://drive.google.com/uc?export=download&id=1jeiqL3xKL66o5DLyV2nI3LQjom9P05yJ","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/337192/","abuse_ch"
@@ -22416,7 +22697,7 @@
 "336967","2020-04-08 18:30:20","https://margopassadorestylist.com/AT&T/AT&T%20payment%20confirmation.pdf.jar","online","malware_download","Adwind,msi","https://urlhaus.abuse.ch/url/336967/","zbetcheckin"
 "336966","2020-04-08 18:28:29","http://drive.google.com/uc?export=download&id=1J6WM_HJib3JiAXLecr1pwr7jI_qNShEp","offline","malware_download","encrypted,GuLoader,NetWire","https://urlhaus.abuse.ch/url/336966/","abuse_ch"
 "336965","2020-04-08 18:28:21","https://drive.google.com/uc?export=download&id=1mn-CzQtVWOdiyVbMxX0tCC3DdhNPO-yA","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/336965/","abuse_ch"
-"336964","2020-04-08 18:28:13","https://www.sendspace.com/pro/dl/dcvd2q","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/336964/","abuse_ch"
+"336964","2020-04-08 18:28:13","https://www.sendspace.com/pro/dl/dcvd2q","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/336964/","abuse_ch"
 "336963","2020-04-08 18:28:08","https://drive.google.com/uc?export=download&id=1ZewsyPQcqZULWsDL3z80cwQQE2zEyuUY","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/336963/","abuse_ch"
 "336962","2020-04-08 18:06:37","http://42.239.146.131:57668/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336962/","Gandylyan1"
 "336961","2020-04-08 18:06:33","http://172.36.26.14:50715/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336961/","Gandylyan1"
@@ -22650,7 +22931,7 @@
 "336733","2020-04-08 11:49:23","https://drive.google.com/uc?export=download&id=1JPwb3QGI8ABKBP511vJztaaDahIccAax","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/336733/","abuse_ch"
 "336732","2020-04-08 11:49:16","https://drive.google.com/uc?export=download&id=1IrDB6_v8ln2H1weyMoAh1as1pd44l6d6","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/336732/","abuse_ch"
 "336731","2020-04-08 11:49:09","http://ribbonlogistics.com/js/jquery/public/cagefs/bins/98kksjh.bin","offline","malware_download","encrypted,Formbook,GuLoader","https://urlhaus.abuse.ch/url/336731/","abuse_ch"
-"336730","2020-04-08 11:49:05","https://onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C%21398&authkey=ABAA_TJd7OHh4So","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/336730/","abuse_ch"
+"336730","2020-04-08 11:49:05","https://onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C%21398&authkey=ABAA_TJd7OHh4So","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/336730/","abuse_ch"
 "336729","2020-04-08 11:41:04","http://shalomadonai.com.br/rcky_encrypted_2C28520.bin","offline","malware_download","encrypted,GuLoader,Loki","https://urlhaus.abuse.ch/url/336729/","abuse_ch"
 "336728","2020-04-08 11:27:43","https://onedrive.live.com/download?cid=8191351450372B91&resid=8191351450372B91%21295&authkey=ACCNKF3f3CPDvUM","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/336728/","abuse_ch"
 "336727","2020-04-08 11:27:40","https://drive.google.com/uc?export=download&id=1fjKm4eNgrpOAeqG5hr5Pk6lTefTvewV3","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/336727/","abuse_ch"
@@ -22751,7 +23032,7 @@
 "336632","2020-04-08 06:06:08","http://162.212.113.99:43200/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336632/","Gandylyan1"
 "336631","2020-04-08 06:06:04","http://masson.prodigyprinting.com/datacollectionservice.php3","offline","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/336631/","lazyactivist192"
 "336630","2020-04-08 06:05:53","http://unistore.heatherling.com/datacollectionservice.php3","offline","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/336630/","lazyactivist192"
-"336629","2020-04-08 06:05:30","http://ebook.w3wvg.com/datacollectionservice.php3","online","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/336629/","lazyactivist192"
+"336629","2020-04-08 06:05:30","http://ebook.w3wvg.com/datacollectionservice.php3","offline","malware_download","exe,Qakbot","https://urlhaus.abuse.ch/url/336629/","lazyactivist192"
 "336628","2020-04-08 06:05:13","http://www.clinicamariademolina.com/SWIFT_ES21430042283_27032020.jar","online","malware_download","Adwind","https://urlhaus.abuse.ch/url/336628/","j00dan"
 "336627","2020-04-08 06:05:09","http://45.139.236.86/kremlin.vbs","offline","malware_download","None","https://urlhaus.abuse.ch/url/336627/","benkow_"
 "336626","2020-04-08 06:05:07","http://182.115.215.108:57294/Mozi.m","offline","malware_download","elf,gafgyt,Mozi","https://urlhaus.abuse.ch/url/336626/","07ac0n"
@@ -23092,17 +23373,17 @@
 "336291","2020-04-07 21:04:12","http://218.21.171.55:52693/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336291/","Gandylyan1"
 "336290","2020-04-07 21:04:07","http://125.44.245.33:43638/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336290/","Gandylyan1"
 "336289","2020-04-07 21:04:04","http://222.142.225.53:44910/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336289/","Gandylyan1"
-"336288","2020-04-07 20:29:44","https://onedrive.live.com/download?cid=3892A0364CB5DA65&resid=3892A0364CB5DA65!153&authkey=AJS0JKOEQkqjRZE","online","malware_download","None","https://urlhaus.abuse.ch/url/336288/","JayTHL"
+"336288","2020-04-07 20:29:44","https://onedrive.live.com/download?cid=3892A0364CB5DA65&resid=3892A0364CB5DA65!153&authkey=AJS0JKOEQkqjRZE","offline","malware_download","None","https://urlhaus.abuse.ch/url/336288/","JayTHL"
 "336287","2020-04-07 20:29:40","https://onedrive.live.com/download?cid=DDE26285195864B8&resid=DDE26285195864B8!361&authkey=AEqVkIEs2uV-tMI","online","malware_download","None","https://urlhaus.abuse.ch/url/336287/","JayTHL"
-"336286","2020-04-07 20:29:34","https://onedrive.live.com/download?cid=BEAF30DA1F621C9B&resid=BEAF30DA1F621C9B!246&authkey=AFyrcHdutALpu90","online","malware_download","None","https://urlhaus.abuse.ch/url/336286/","JayTHL"
-"336285","2020-04-07 20:29:30","https://onedrive.live.com/download?cid=C359B1A8BABC6019&resid=C359B1A8BABC6019!1251&authkey=ACt34EIZpzJUGfA","offline","malware_download","None","https://urlhaus.abuse.ch/url/336285/","JayTHL"
+"336286","2020-04-07 20:29:34","https://onedrive.live.com/download?cid=BEAF30DA1F621C9B&resid=BEAF30DA1F621C9B!246&authkey=AFyrcHdutALpu90","offline","malware_download","None","https://urlhaus.abuse.ch/url/336286/","JayTHL"
+"336285","2020-04-07 20:29:30","https://onedrive.live.com/download?cid=C359B1A8BABC6019&resid=C359B1A8BABC6019!1251&authkey=ACt34EIZpzJUGfA","online","malware_download","None","https://urlhaus.abuse.ch/url/336285/","JayTHL"
 "336284","2020-04-07 20:29:27","https://onedrive.live.com/download?cid=41F2978DA9CE0256&resid=41F2978DA9CE0256!111&authkey=AJZp62LMPZKHUMQ","online","malware_download","None","https://urlhaus.abuse.ch/url/336284/","JayTHL"
 "336283","2020-04-07 20:29:24","https://onedrive.live.com/download?cid=A32AEA2B4355716B&resid=A32AEA2B4355716B!4983&authkey=ADSe6p65gYFe4Q4","offline","malware_download","None","https://urlhaus.abuse.ch/url/336283/","JayTHL"
 "336282","2020-04-07 20:29:21","https://onedrive.live.com/download?cid=4D4D07581D39B63D&resid=4D4D07581D39B63D!117&authkey=AEZ-8b0NVZTY-T0","offline","malware_download","None","https://urlhaus.abuse.ch/url/336282/","JayTHL"
-"336281","2020-04-07 20:29:17","https://onedrive.live.com/download?cid=B03EE17D51411308&resid=B03EE17D51411308!2152&authkey=ABuTaAC83l5UTKs","online","malware_download","None","https://urlhaus.abuse.ch/url/336281/","JayTHL"
-"336280","2020-04-07 20:29:14","https://onedrive.live.com/download?cid=D718E3C8E3BC53C0&resid=D718E3C8E3BC53C0!191&authkey=AJL2UegQunSGC3Q","online","malware_download","None","https://urlhaus.abuse.ch/url/336280/","JayTHL"
+"336281","2020-04-07 20:29:17","https://onedrive.live.com/download?cid=B03EE17D51411308&resid=B03EE17D51411308!2152&authkey=ABuTaAC83l5UTKs","offline","malware_download","None","https://urlhaus.abuse.ch/url/336281/","JayTHL"
+"336280","2020-04-07 20:29:14","https://onedrive.live.com/download?cid=D718E3C8E3BC53C0&resid=D718E3C8E3BC53C0!191&authkey=AJL2UegQunSGC3Q","offline","malware_download","None","https://urlhaus.abuse.ch/url/336280/","JayTHL"
 "336279","2020-04-07 20:29:11","https://onedrive.live.com/download?cid=B5EA8D4249D866E6&resid=B5EA8D4249D866E6!164&authkey=ADFsfCDAw3bIboY","online","malware_download","None","https://urlhaus.abuse.ch/url/336279/","JayTHL"
-"336278","2020-04-07 20:29:08","https://onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928!202&authkey=AH1gjQ8j29DArW4","online","malware_download","None","https://urlhaus.abuse.ch/url/336278/","JayTHL"
+"336278","2020-04-07 20:29:08","https://onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928!202&authkey=AH1gjQ8j29DArW4","offline","malware_download","None","https://urlhaus.abuse.ch/url/336278/","JayTHL"
 "336277","2020-04-07 20:15:24","https://mydreve.com/slider/326409.zip","offline","malware_download","Qakbot,qbot,zip","https://urlhaus.abuse.ch/url/336277/","malware_traffic"
 "336276","2020-04-07 20:15:19","http://crosstiesofocala.com/slider/65301951/65301951.zip","offline","malware_download","Qakbot,qbot,zip","https://urlhaus.abuse.ch/url/336276/","malware_traffic"
 "336275","2020-04-07 20:15:17","http://mestenergi.se/slider/8403.zip","offline","malware_download","Qakbot,qbot,zip","https://urlhaus.abuse.ch/url/336275/","malware_traffic"
@@ -23121,7 +23402,7 @@
 "336262","2020-04-07 19:50:17","http://binexeupload.ru/METEOROLOG.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/336262/","abuse_ch"
 "336261","2020-04-07 19:50:08","http://binexeupload.ru/Host_encrypted_D81B59F.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/336261/","abuse_ch"
 "336260","2020-04-07 19:46:08","http://fentlix.com/sip/5260277.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/336260/","abuse_ch"
-"336259","2020-04-07 19:41:12","https://onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928%21203&authkey=AF8Xr99mRQP8Um8","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/336259/","abuse_ch"
+"336259","2020-04-07 19:41:12","https://onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928%21203&authkey=AF8Xr99mRQP8Um8","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/336259/","abuse_ch"
 "336258","2020-04-07 19:41:07","https://drive.google.com/uc?export=download&id=1o7c-sYbUi5yQgNJn-RO-cXZLSMDTN4Nh","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/336258/","abuse_ch"
 "336257","2020-04-07 19:35:06","https://nutandbolts.in/bukky_encrypted_D95B8CF.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/336257/","abuse_ch"
 "336256","2020-04-07 19:34:30","https://boken-jjne0.tk/samnew_encrypted_D883ABF.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/336256/","abuse_ch"
@@ -23352,7 +23633,7 @@
 "336031","2020-04-07 06:03:11","http://110.179.13.146:53044/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336031/","Gandylyan1"
 "336030","2020-04-07 06:03:06","http://111.43.223.112:48012/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336030/","Gandylyan1"
 "336029","2020-04-07 06:03:03","http://113.65.7.140:38755/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/336029/","Gandylyan1"
-"336028","2020-04-07 05:54:10","http://modcloudserver.eu/djfilez/djfilez.exe","offline","malware_download","AgentTesla,exe,GuLoader","https://urlhaus.abuse.ch/url/336028/","Jouliok"
+"336028","2020-04-07 05:54:10","http://modcloudserver.eu/djfilez/djfilez.exe","online","malware_download","AgentTesla,exe,GuLoader","https://urlhaus.abuse.ch/url/336028/","Jouliok"
 "336027","2020-04-07 05:54:04","http://barrielajueste.duckdns.org/projeto?W334KLMAT0BB1X98VCK3C8DZIL56M/Security_WhatsAppWe","offline","malware_download","MetaMorfo","https://urlhaus.abuse.ch/url/336027/","1ZRR4H"
 "336026","2020-04-07 05:53:25","http://19ce033f.ngrok.io/sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/336026/","hypoweb"
 "336025","2020-04-07 05:53:23","http://19ce033f.ngrok.io/i686","offline","malware_download","elf","https://urlhaus.abuse.ch/url/336025/","hypoweb"
@@ -23598,7 +23879,7 @@
 "335784","2020-04-06 15:05:33","http://118.121.170.181:41664/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335784/","Gandylyan1"
 "335783","2020-04-06 15:04:38","http://216.180.117.59:36401/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/335783/","Gandylyan1"
 "335782","2020-04-06 14:57:04","https://tehranfish.ir/bin_encrypted_6E8BBC0.bin","offline","malware_download","None","https://urlhaus.abuse.ch/url/335782/","JayTHL"
-"335781","2020-04-06 14:54:05","http://modcloudserver.eu/uzmod3/uzmod3.exe","offline","malware_download","GuLoader","https://urlhaus.abuse.ch/url/335781/","JayTHL"
+"335781","2020-04-06 14:54:05","http://modcloudserver.eu/uzmod3/uzmod3.exe","online","malware_download","GuLoader","https://urlhaus.abuse.ch/url/335781/","JayTHL"
 "335780","2020-04-06 14:36:04","https://doc-08-8k-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/37a7b7qire1dge1s9fskcahnvovmukck/1586183625000/00928859234918370098/*/1oLDfi-ddoSd-I0T530zVY5xyqA58vk8g?e=download","offline","malware_download","AgentTesla,encrypted","https://urlhaus.abuse.ch/url/335780/","ps66uk"
 "335779","2020-04-06 14:12:05","http://92.222.121.156/mac2139r209ru120934r123jhr908213jh4r09213/lmfao293reuj239jrf234rft34jt.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/335779/","Gandylyan1"
 "335778","2020-04-06 14:12:02","http://92.222.121.156/mac2139r209ru120934r123jhr908213jh4r09213/lmfao293reuj239jrf234rft34jt.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/335778/","Gandylyan1"
@@ -23627,7 +23908,7 @@
 "335755","2020-04-06 13:30:06","http://42.230.3.136:39924/Mozi.m","offline","malware_download","elf,gafgyt,Mozi","https://urlhaus.abuse.ch/url/335755/","07ac0n"
 "335754","2020-04-06 12:44:05","http://185.242.105.116/aren/rod.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/335754/","cocaman"
 "335753","2020-04-06 12:18:53","http://bondbuild.com.sg/wp-includes/Text/SHAFIQ_encrypted_A92CDFF.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335753/","abuse_ch"
-"335752","2020-04-06 12:18:50","https://onedrive.live.com/download?cid=41F2978DA9CE0256&resid=41F2978DA9CE0256%21111&authkey=AJZp62LMPZKHUMQ","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335752/","abuse_ch"
+"335752","2020-04-06 12:18:50","https://onedrive.live.com/download?cid=41F2978DA9CE0256&resid=41F2978DA9CE0256%21111&authkey=AJZp62LMPZKHUMQ","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335752/","abuse_ch"
 "335751","2020-04-06 12:18:46","https://portalconnectme.com/server_encrypted_6E79EB0.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335751/","abuse_ch"
 "335750","2020-04-06 12:18:40","http://www.theelectronics4u.com/co/covid_encrypted_F3CB6BF.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335750/","abuse_ch"
 "335749","2020-04-06 12:18:37","https://www.tagmarket.co.uk/zellico_encrypted_9AC2E3F.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335749/","abuse_ch"
@@ -23748,11 +24029,11 @@
 "335634","2020-04-06 08:13:44","https://drive.google.com/uc?export=download&id=15vd8iYwNX_Ax7PYjYl1aM-OTiPjNBVqx","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335634/","abuse_ch"
 "335633","2020-04-06 08:13:31","https://drive.google.com/uc?export=download&id=1Y5NrIrQKYBohpcypphnZexfKj8bFu7LJ","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335633/","abuse_ch"
 "335632","2020-04-06 08:13:22","https://sakecaferestaurant.com/wp-admin/Origin_encrypted_1C84DE0.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335632/","abuse_ch"
-"335631","2020-04-06 08:13:19","https://onedrive.live.com/download?cid=BEAF30DA1F621C9B&resid=BEAF30DA1F621C9B%21246&authkey=AFyrcHdutALpu90","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335631/","abuse_ch"
+"335631","2020-04-06 08:13:19","https://onedrive.live.com/download?cid=BEAF30DA1F621C9B&resid=BEAF30DA1F621C9B%21246&authkey=AFyrcHdutALpu90","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335631/","abuse_ch"
 "335630","2020-04-06 08:13:14","https://drive.google.com/uc?export=download&id=15Tz8oECj4dshFYngyOeJOXF2xI6J9g7N","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335630/","abuse_ch"
 "335629","2020-04-06 08:12:57","https://onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C%21395&authkey=ALWvuB_YHtOgJXw","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335629/","abuse_ch"
 "335628","2020-04-06 08:12:53","https://www.sendspace.com/pro/dl/c1dk4l","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335628/","abuse_ch"
-"335627","2020-04-06 08:12:47","https://onedrive.live.com/download?cid=C359B1A8BABC6019&resid=C359B1A8BABC6019%211251&authkey=ACt34EIZpzJUGfA","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335627/","abuse_ch"
+"335627","2020-04-06 08:12:47","https://onedrive.live.com/download?cid=C359B1A8BABC6019&resid=C359B1A8BABC6019%211251&authkey=ACt34EIZpzJUGfA","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335627/","abuse_ch"
 "335626","2020-04-06 08:12:44","https://drive.google.com/uc?export=download&id=1qdkWTrFpiqcETsIoUA77eeRyca-Uj3Tf","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335626/","abuse_ch"
 "335625","2020-04-06 08:12:32","https://drive.google.com/uc?export=download&id=1T906TqH7Tzdy0N3JyUhkiDpefaQMvnBW","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335625/","abuse_ch"
 "335624","2020-04-06 08:12:21","https://onedrive.live.com/download?cid=CF0C6D1A4C15233D&resid=CF0C6D1A4C15233D%21742&authkey=AKbXJu17f8g0R2s","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/335624/","abuse_ch"
@@ -27292,7 +27573,7 @@
 "332077","2020-03-30 09:27:26","https://drive.google.com/uc?export=download&id=1UD-IOEF5ULeY9fkl5xhHtxtQfDR6SbIJ","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/332077/","abuse_ch"
 "332076","2020-03-30 09:27:19","https://drive.google.com/uc?export=download&id=1Avgz6N7xsFbx8rb5_Fd4Tj8mMehAIWA_","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/332076/","abuse_ch"
 "332075","2020-03-30 09:27:09","https://drive.google.com/uc?export=download&id=1vML0GDZh9-h_yse8M7gcwYBwF5UdcB2F","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/332075/","abuse_ch"
-"332074","2020-03-30 09:14:16","https://ophtalmiccenter.com/wp-content/themes/06f8f5e0c9a1f9e3fe2f4d72fcaa84ea1760e236_encrypted_1B94070.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/332074/","abuse_ch"
+"332074","2020-03-30 09:14:16","https://ophtalmiccenter.com/wp-content/themes/06f8f5e0c9a1f9e3fe2f4d72fcaa84ea1760e236_encrypted_1B94070.bin","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/332074/","abuse_ch"
 "332073","2020-03-30 09:14:10","https://drive.google.com/uc?export=download&id=1fEgjUzlCP8IHCG77ujkx0ZDTPxpmYL-v","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/332073/","abuse_ch"
 "332072","2020-03-30 09:14:07","https://drive.google.com/uc?export=download&id=1vKv3DJUdfvc0T9iKto85Eiw_BOedJ1gw","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/332072/","abuse_ch"
 "332071","2020-03-30 09:13:03","http://castmart.ga/~zadmin/icloud/sav_encrypted_529FC40.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/332071/","abuse_ch"
@@ -28616,7 +28897,7 @@
 "330752","2020-03-27 06:42:29","https://supervisedvisitsllc.com/vla_encrypted_6D99100.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/330752/","abuse_ch"
 "330751","2020-03-27 06:42:25","http://doha-media.com//ldr_3341780230_karantino.xyz.exe","offline","malware_download","exe,IcedID","https://urlhaus.abuse.ch/url/330751/","jstrosch"
 "330750","2020-03-27 06:42:21","http://hotdsk.com/staple/444444.png","offline","malware_download"," Qbot,Qakbot,Quakbot","https://urlhaus.abuse.ch/url/330750/","anonymous"
-"330749","2020-03-27 06:42:18","http://share.dmca.gripe/umGPHqvEPj2uIGdt.doc","online","malware_download","exe","https://urlhaus.abuse.ch/url/330749/","jstrosch"
+"330749","2020-03-27 06:42:18","http://share.dmca.gripe/umGPHqvEPj2uIGdt.doc","offline","malware_download","exe","https://urlhaus.abuse.ch/url/330749/","jstrosch"
 "330748","2020-03-27 06:42:06","https://halykhome.com/re/files/covidMappia_v1.0.3.apk","offline","malware_download","android,apk ,COVID","https://urlhaus.abuse.ch/url/330748/","DoberGroup"
 "330747","2020-03-27 06:41:36","https://drive.google.com/uc?export=download&id=1y5UM5xwWTFnyEaWVAwwfF9pihuNEqtNA","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/330747/","abuse_ch"
 "330746","2020-03-27 06:41:29","https://drive.google.com/uc?export=download&id=1sQA_CevfG7Bm-p0MMJTejGShKIwoOTAt","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/330746/","abuse_ch"
@@ -29361,7 +29642,7 @@
 "330007","2020-03-25 20:18:12","http://mwrc.ca/a/me_encrypted_3F1DDE0.bin","offline","malware_download","None","https://urlhaus.abuse.ch/url/330007/","JayTHL"
 "330006","2020-03-25 20:18:08","http://mwrc.ca/a/Stigmaticalque.exe","offline","malware_download","GuLoader","https://urlhaus.abuse.ch/url/330006/","JayTHL"
 "330005","2020-03-25 20:18:06","http://mwrc.ca/a/SAVINESNONSI.exe","offline","malware_download","GuLoader","https://urlhaus.abuse.ch/url/330005/","JayTHL"
-"330004","2020-03-25 20:16:09","https://share.dmca.gripe/vPh5kV34np1hCODm.doc","online","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/330004/","zbetcheckin"
+"330004","2020-03-25 20:16:09","https://share.dmca.gripe/vPh5kV34np1hCODm.doc","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/330004/","zbetcheckin"
 "330003","2020-03-25 19:49:03","https://pastebin.com/raw/1URH290U","offline","malware_download","Encoded,exe,njRAT","https://urlhaus.abuse.ch/url/330003/","viql"
 "330002","2020-03-25 19:38:04","https://pastebin.com/raw/sPECbGga","offline","malware_download","Encoded,exe,Sodinokibi","https://urlhaus.abuse.ch/url/330002/","viql"
 "330001","2020-03-25 19:29:04","https://pastebin.com/raw/xDqfwtJZ","offline","malware_download","None","https://urlhaus.abuse.ch/url/330001/","JayTHL"
@@ -31046,7 +31327,7 @@
 "328319","2020-03-22 15:04:24","http://110.179.31.44:58071/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328319/","Gandylyan1"
 "328318","2020-03-22 15:04:19","http://115.49.79.131:51481/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328318/","Gandylyan1"
 "328317","2020-03-22 15:04:15","http://222.185.161.165:47113/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/328317/","Gandylyan1"
-"328316","2020-03-22 14:58:13","http://121.162.174.59:40481/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/328316/","zbetcheckin"
+"328316","2020-03-22 14:58:13","http://121.162.174.59:40481/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/328316/","zbetcheckin"
 "328315","2020-03-22 13:43:05","https://pastebin.com/raw/585eHqKL","offline","malware_download","Encoded,exe,RevengeRAT","https://urlhaus.abuse.ch/url/328315/","viql"
 "328314","2020-03-22 13:42:04","https://pastebin.com/raw/eNcKbQUF","offline","malware_download","None","https://urlhaus.abuse.ch/url/328314/","JayTHL"
 "328313","2020-03-22 12:42:24","https://drive.google.com/uc?export=download&id=1VQysRwTmVnyJa3EZjywvu5Z_YrH2KNOS","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/328313/","abuse_ch"
@@ -31546,7 +31827,7 @@
 "327819","2020-03-20 20:12:27","https://drive.google.com/uc?export=download&id=1WXba3aoRms0M-l57k8edc8vT6AZCSbL_","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327819/","abuse_ch"
 "327818","2020-03-20 20:12:16","https://drive.google.com/uc?export=download&id=1hWBRWksG8o8X06HARnMORYSeOAe86Lie","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327818/","abuse_ch"
 "327817","2020-03-20 20:12:08","https://onedrive.live.com/download?cid=8026693BB607A044&resid=8026693BB607A044%21177&authkey=APT0GTjr3xyKjJo","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327817/","abuse_ch"
-"327816","2020-03-20 20:12:05","http://ophtalmiccenter.com/wp-content/uploads/cloud/Chy_Host_encrypted_C2808DF.bin","online","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327816/","abuse_ch"
+"327816","2020-03-20 20:12:05","http://ophtalmiccenter.com/wp-content/uploads/cloud/Chy_Host_encrypted_C2808DF.bin","offline","malware_download","encrypted,GuLoader","https://urlhaus.abuse.ch/url/327816/","abuse_ch"
 "327815","2020-03-20 19:20:38","http://159.65.224.56/bins/Tsunami.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/327815/","0xrb"
 "327814","2020-03-20 19:20:06","http://45.84.196.21/SBIDIOT/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/327814/","0xrb"
 "327813","2020-03-20 19:20:04","http://161.35.13.45/AB4g5/Josho.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/327813/","0xrb"
@@ -32821,7 +33102,7 @@
 "326539","2020-03-18 20:52:04","https://pastebin.com/raw/AcCfPcpu","offline","malware_download","Encoded,exe,njRAT","https://urlhaus.abuse.ch/url/326539/","viql"
 "326538","2020-03-18 20:50:04","https://pastebin.com/raw/Qj9JG6kG","offline","malware_download","None","https://urlhaus.abuse.ch/url/326538/","JayTHL"
 "326537","2020-03-18 20:37:07","http://198.24.75.52:29474/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/326537/","zbetcheckin"
-"326536","2020-03-18 20:37:04","http://93.47.168.43:56104/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/326536/","zbetcheckin"
+"326536","2020-03-18 20:37:04","http://93.47.168.43:56104/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/326536/","zbetcheckin"
 "326535","2020-03-18 20:24:03","https://pastebin.com/raw/26mMJCuL","offline","malware_download","Encoded,exe,NanoCore","https://urlhaus.abuse.ch/url/326535/","viql"
 "326534","2020-03-18 20:15:04","https://pastebin.com/raw/XTvd7Gpi","offline","malware_download","PowerShellEmpire","https://urlhaus.abuse.ch/url/326534/","viql"
 "326533","2020-03-18 19:55:15","https://drive.google.com/uc?id=1_0yt9SKj-k3BcLe5NRf9AUtOGuz48oQQ&export=download","offline","malware_download","ursnif","https://urlhaus.abuse.ch/url/326533/","0xCARNAGE"
@@ -37066,7 +37347,7 @@
 "322277","2020-03-07 00:04:05","http://182.112.57.2:60164/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/322277/","Gandylyan1"
 "322276","2020-03-06 23:57:03","https://pastebin.com/raw/WUjXL3Y2","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/322276/","viql"
 "322275","2020-03-06 23:55:06","https://pastebin.com/raw/0gfQbN2p","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/322275/","viql"
-"322274","2020-03-06 23:51:04","http://93.70.125.94:40883/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/322274/","zbetcheckin"
+"322274","2020-03-06 23:51:04","http://93.70.125.94:40883/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/322274/","zbetcheckin"
 "322273","2020-03-06 22:43:32","https://pastebin.com/raw/rPikkeG2","offline","malware_download","None","https://urlhaus.abuse.ch/url/322273/","JayTHL"
 "322272","2020-03-06 22:39:04","http://42.230.206.172:60073/Mozi.m","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/322272/","zbetcheckin"
 "322271","2020-03-06 22:25:04","https://pastebin.com/raw/GJfKSHFZ","offline","malware_download","meterpreter","https://urlhaus.abuse.ch/url/322271/","viql"
@@ -37281,7 +37562,7 @@
 "322062","2020-03-06 08:54:36","http://bores.xyz/159.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/322062/","JAMESWT_MHT"
 "322061","2020-03-06 08:54:04","http://bores.xyz/111.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/322061/","JAMESWT_MHT"
 "322060","2020-03-06 08:53:10","http://bores.xyz/rot.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/322060/","JAMESWT_MHT"
-"322059","2020-03-06 08:52:37","http://lodergord.com/rot.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/322059/","JAMESWT_MHT"
+"322059","2020-03-06 08:52:37","http://lodergord.com/rot.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/322059/","JAMESWT_MHT"
 "322058","2020-03-06 08:52:03","http://icietdemain.fr/contents/2020/02/idle/222222.png","offline","malware_download","None","https://urlhaus.abuse.ch/url/322058/","JAMESWT_MHT"
 "322057","2020-03-06 08:51:27","http://kryptcfiles.xyz/ver/combos.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/322057/","JAMESWT_MHT"
 "322056","2020-03-06 08:25:09","http://perelouis.fr/covid.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/322056/","JAMESWT_MHT"
@@ -38498,7 +38779,7 @@
 "320843","2020-03-03 05:34:16","http://interload.info/downfiles/intervpnmix.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/320843/","zbetcheckin"
 "320842","2020-03-03 05:34:12","http://interload.info/downfiles/intervpnmix2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/320842/","zbetcheckin"
 "320841","2020-03-03 05:02:07","http://80.19.101.218:54587/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/320841/","zbetcheckin"
-"320840","2020-03-03 05:02:03","http://41.32.132.218:61418/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/320840/","zbetcheckin"
+"320840","2020-03-03 05:02:03","http://41.32.132.218:61418/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/320840/","zbetcheckin"
 "320839","2020-03-03 03:54:04","https://cdn.discordapp.com/attachments/681439899152416887/684108343874420737/Bank_Swift.zip","offline","malware_download","None","https://urlhaus.abuse.ch/url/320839/","JayTHL"
 "320838","2020-03-03 03:43:13","http://update.iwang8.com/pkg/llclear/flow1023/1540286408569/pub8016.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/320838/","zbetcheckin"
 "320837","2020-03-03 03:26:03","https://pastebin.com/raw/DH008vEX","offline","malware_download","PowerShellEmpire","https://urlhaus.abuse.ch/url/320837/","viql"
@@ -38601,10 +38882,10 @@
 "320736","2020-03-02 21:42:21","https://cdn.discordapp.com/attachments/683758845289693187/683758935144136728/otv3_rev2.rar","offline","malware_download","None","https://urlhaus.abuse.ch/url/320736/","de_aviation"
 "320735","2020-03-02 21:42:17","http://myfastmail.net/oxnsgu.bin","offline","malware_download","Dridex,exe","https://urlhaus.abuse.ch/url/320735/","de_aviation"
 "320734","2020-03-02 21:42:11","http://ahoyassociates.com/contacts.php","offline","malware_download","exe","https://urlhaus.abuse.ch/url/320734/","de_aviation"
-"320733","2020-03-02 21:42:08","http://xxxze.co.nu/mozglue.dll","online","malware_download","None","https://urlhaus.abuse.ch/url/320733/","de_aviation"
-"320732","2020-03-02 21:42:06","http://xxxze.co.nu/freebl3.dll","online","malware_download","None","https://urlhaus.abuse.ch/url/320732/","de_aviation"
-"320731","2020-03-02 21:42:04","http://xxxze.co.nu/sqlite3.dll","online","malware_download","None","https://urlhaus.abuse.ch/url/320731/","de_aviation"
-"320730","2020-03-02 21:39:04","http://xxxze.co.nu/vcruntime140.dll","online","malware_download","None","https://urlhaus.abuse.ch/url/320730/","de_aviation"
+"320733","2020-03-02 21:42:08","http://xxxze.co.nu/mozglue.dll","offline","malware_download","None","https://urlhaus.abuse.ch/url/320733/","de_aviation"
+"320732","2020-03-02 21:42:06","http://xxxze.co.nu/freebl3.dll","offline","malware_download","None","https://urlhaus.abuse.ch/url/320732/","de_aviation"
+"320731","2020-03-02 21:42:04","http://xxxze.co.nu/sqlite3.dll","offline","malware_download","None","https://urlhaus.abuse.ch/url/320731/","de_aviation"
+"320730","2020-03-02 21:39:04","http://xxxze.co.nu/vcruntime140.dll","offline","malware_download","None","https://urlhaus.abuse.ch/url/320730/","de_aviation"
 "320729","2020-03-02 21:35:05","http://anepheron.com/rundll32.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/320729/","de_aviation"
 "320728","2020-03-02 21:05:36","http://111.42.67.77:37190/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/320728/","Gandylyan1"
 "320727","2020-03-02 21:05:30","http://211.137.225.87:56114/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/320727/","Gandylyan1"
@@ -42719,7 +43000,7 @@
 "316588","2020-02-20 08:59:05","http://222.121.123.117:27669/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/316588/","zbetcheckin"
 "316587","2020-02-20 08:19:05","http://secure-net.tech/438279ghh.exe","offline","malware_download","Smoke Loader","https://urlhaus.abuse.ch/url/316587/","ffforward"
 "316586","2020-02-20 08:19:02","http://secure-net.tech/Document1245.dotm","offline","malware_download","Smoke Loader","https://urlhaus.abuse.ch/url/316586/","ffforward"
-"316585","2020-02-20 08:11:03","http://176.113.161.53:55702/download.zip","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/316585/","zbetcheckin"
+"316585","2020-02-20 08:11:03","http://176.113.161.53:55702/download.zip","online","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/316585/","zbetcheckin"
 "316584","2020-02-20 08:06:57","http://27.157.74.252:51242/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/316584/","Gandylyan1"
 "316583","2020-02-20 08:06:25","http://120.71.103.214:35218/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/316583/","Gandylyan1"
 "316582","2020-02-20 08:06:21","http://182.115.158.164:56808/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/316582/","Gandylyan1"
@@ -49388,7 +49669,7 @@
 "309887","2020-02-06 09:04:51","http://182.127.184.218:37989/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309887/","Gandylyan1"
 "309886","2020-02-06 09:04:48","http://113.25.43.71:47216/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309886/","Gandylyan1"
 "309885","2020-02-06 09:04:44","http://123.10.25.39:52851/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309885/","Gandylyan1"
-"309884","2020-02-06 09:04:39","http://186.73.188.132:59038/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309884/","Gandylyan1"
+"309884","2020-02-06 09:04:39","http://186.73.188.132:59038/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309884/","Gandylyan1"
 "309883","2020-02-06 09:04:16","http://49.70.10.213:53701/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309883/","Gandylyan1"
 "309882","2020-02-06 09:04:12","http://111.42.66.151:51987/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309882/","Gandylyan1"
 "309881","2020-02-06 09:04:08","http://111.43.223.97:58420/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/309881/","Gandylyan1"
@@ -54982,7 +55263,7 @@
 "304272","2020-01-31 19:18:05","http://barreirofreddy.tv/bsms/LLC/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/304272/","Cryptolaemus1"
 "304271","2020-01-31 19:17:05","https://rendaprevi.com.br/wp-content/available-array/close-profile/H7BpTUOO-5aGrrNHvi8/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/304271/","Cryptolaemus1"
 "304270","2020-01-31 19:14:06","https://pastebin.com/raw/DYYxwYHC","offline","malware_download","None","https://urlhaus.abuse.ch/url/304270/","JayTHL"
-"304269","2020-01-31 19:14:04","http://ashoakacharya.com/wp-content/available-module/verifiable-e39tbx5u-gadx7z/l9of3-950uyx69t7z/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/304269/","spamhaus"
+"304269","2020-01-31 19:14:04","http://ashoakacharya.com/wp-content/available-module/verifiable-e39tbx5u-gadx7z/l9of3-950uyx69t7z/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/304269/","spamhaus"
 "304268","2020-01-31 19:08:06","http://rcsic.technocloudtech.com/jnzor/lm/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/304268/","spamhaus"
 "304267","2020-01-31 19:08:04","http://algomatreeservices.com/wp-includes/protected-module/interior-area/t5yiafe7uxhxi4-uuy27t734zzt9/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/304267/","Cryptolaemus1"
 "304266","2020-01-31 19:07:05","http://66.38.88.162:38607/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/304266/","Gandylyan1"
@@ -58481,7 +58762,7 @@
 "300755","2020-01-29 04:04:05","http://182.124.193.235:60015/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/300755/","Gandylyan1"
 "300754","2020-01-29 04:03:11","http://kypa.or.ke/cgi-bin/attachments/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/300754/","spamhaus"
 "300753","2020-01-29 03:59:05","http://libertyaviationusa.com/wp-content/personal_resource/verified_warehouse/OASZ1E4qBG_9HKqJs4s9x3bu/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/300753/","Cryptolaemus1"
-"300752","2020-01-29 03:58:08","http://ngoaingu.garage.com.vn/__MACOSX/paclm/rroqu96s9zxh/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/300752/","spamhaus"
+"300752","2020-01-29 03:58:08","http://ngoaingu.garage.com.vn/__MACOSX/paclm/rroqu96s9zxh/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/300752/","spamhaus"
 "300751","2020-01-29 03:56:08","http://saiftec-001-site16.htempurl.com/87/5uabj8-9z139-59/","offline","malware_download","doc,emotet,epoch3,GandCrab,heodo","https://urlhaus.abuse.ch/url/300751/","Cryptolaemus1"
 "300750","2020-01-29 03:54:53","https://cnc.ase.md/wp-admin/protected-sector/interior-forum/hNisJ-ah5qmHnctfI0gz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/300750/","Cryptolaemus1"
 "300749","2020-01-29 03:54:18","http://tdagprinter-dtg.com/wp-content/plugins/really-simple-ssl/testssl/serverhttpxforwardedsslon/parts_service/zarhe019p/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/300749/","Cryptolaemus1"
@@ -59053,10 +59334,10 @@
 "300182","2020-01-28 17:20:07","http://chatbot.fontineles.com/wp-admin/sites/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/300182/","spamhaus"
 "300181","2020-01-28 17:15:08","http://cvis.net.ph/wp2/report/6l1wg47056-432020040-5k6u8dcmcx3brufduckscf/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/300181/","spamhaus"
 "300180","2020-01-28 17:13:07","http://bolehprediksi.com/wp-includes/tWsI/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/300180/","spamhaus"
-"300179","2020-01-28 17:11:07","http://demo10.onbm.ir/wp-admin/DOC/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/300179/","spamhaus"
+"300179","2020-01-28 17:11:07","http://demo10.onbm.ir/wp-admin/DOC/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/300179/","spamhaus"
 "300178","2020-01-28 17:10:17","http://creativenerd.rw/wp-admin/available_disk/880985858010_vaYXpXwLYyWvhr_zu8ijal25izf_na7c4dj558/51100876_RZYWEBfzc/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/300178/","Cryptolaemus1"
 "300177","2020-01-28 17:07:13","http://dadrasin.ir/wp-admin/closed-array/verified-YxxRydzY-5UaJn6ePsAHDR/ywde6u-7w9zx37u/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/300177/","Cryptolaemus1"
-"300176","2020-01-28 17:07:04","http://demo10.onbm.ir/wp-admin/js/widgets/INC/INC/ptnv4244sss/n0545914536-085492-ppxzs05znzhoh6hzc2s3j/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/300176/","spamhaus"
+"300176","2020-01-28 17:07:04","http://demo10.onbm.ir/wp-admin/js/widgets/INC/INC/ptnv4244sss/n0545914536-085492-ppxzs05znzhoh6hzc2s3j/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/300176/","spamhaus"
 "300175","2020-01-28 17:06:18","http://66.38.89.218:37249/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/300175/","Gandylyan1"
 "300174","2020-01-28 17:06:13","http://42.227.184.3:58311/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/300174/","Gandylyan1"
 "300173","2020-01-28 17:06:09","http://72.2.243.14:60660/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/300173/","Gandylyan1"
@@ -59088,7 +59369,7 @@
 "300147","2020-01-28 17:02:18","http://www.loansupports.com/library/mailer/1","offline","malware_download","None","https://urlhaus.abuse.ch/url/300147/","JayTHL"
 "300146","2020-01-28 17:02:13","https://dailyhealth.life/wp-admin/uBXSy/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/300146/","Cryptolaemus1"
 "300145","2020-01-28 17:01:17","http://dev.lumedio.com/onptlekdj24sf/available-008788-ye003FsPd/4bqmcu6fmqpu54-r2z7-eV0Y6Ke-IWTGwsCW841wR/P1nH52iue-NzrKvnH0nbdJ/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/300145/","Cryptolaemus1"
-"300144","2020-01-28 17:01:13","http://demo10.onbm.ir/wp-admin/report/8a9j4bp/5awgnu2922719-24747-yyrd9au8wt8ww6w2/","online","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/300144/","spamhaus"
+"300144","2020-01-28 17:01:13","http://demo10.onbm.ir/wp-admin/report/8a9j4bp/5awgnu2922719-24747-yyrd9au8wt8ww6w2/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/300144/","spamhaus"
 "300143","2020-01-28 17:00:07","http://executivejeepram.com/478_74324.php","offline","malware_download","None","https://urlhaus.abuse.ch/url/300143/","JayTHL"
 "300142","2020-01-28 16:58:17","http://dessertrecipeseasy.com/wp-content/LLC/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/300142/","spamhaus"
 "300141","2020-01-28 16:55:16","http://desentupidoraguarulhos.com.br/cgi-bin/protected_9632521734_YjJE1RyaeTtw/close_area/xU7osk9N0K5M_vorM53Hyzvrjd/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/300141/","Cryptolaemus1"
@@ -61723,7 +62004,7 @@
 "297504","2020-01-24 21:26:05","http://seteweb.tk/wp-admin/closed_module/120333353721_hNU2nR8_9MTOUc_3KxXdDyKJFAni/5tGfK_csd3aoob46ir6/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/297504/","Cryptolaemus1"
 "297503","2020-01-24 21:24:07","http://www.sugarysmiles.com/wp-content/themes/onetone/plugins/sites/jpogjok/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/297503/","spamhaus"
 "297502","2020-01-24 21:23:15","http://aikido-lam.com/wp-includes/vw-32jdk7rqhkn-array/704kztfwbull-6m9rk-forum/564454980108-SaMcm8jC/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/297502/","Cryptolaemus1"
-"297501","2020-01-24 21:23:09","http://kwikomfi-lab.com/wp-content/AxtNi/","online","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/297501/","spamhaus"
+"297501","2020-01-24 21:23:09","http://kwikomfi-lab.com/wp-content/AxtNi/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/297501/","spamhaus"
 "297500","2020-01-24 21:18:04","http://hishter.com/wp-content/Documentation/rtxt-7430-444118-xogzjwqmq4c-qjidy/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/297500/","spamhaus"
 "297499","2020-01-24 21:16:09","https://aellly.000webhostapp.com/wp-admin/common_zone/dpvz9p6ho_w2kf_warehouse/WeiZq_lqorrlIgzmm/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/297499/","Cryptolaemus1"
 "297498","2020-01-24 21:13:04","http://xn--56-6kctpmt2b2a.xn--p1ai/wp-includes/oIIoE/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/297498/","spamhaus"
@@ -66267,7 +66548,7 @@
 "292949","2020-01-20 20:05:26","https://doc-14-ak-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/p0l84e28umk50b4kjnjmnpi57i7ck3kb/1579543200000/17049860571286284949/*/1b0m5bB2JFbjWee3zlc9w70_5VmHrMdIa?e=download","offline","malware_download","encrypted,Loki","https://urlhaus.abuse.ch/url/292949/","abuse_ch"
 "292948","2020-01-20 20:05:24","http://123.4.241.230:55509/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/292948/","Gandylyan1"
 "292947","2020-01-20 20:05:21","http://116.114.95.164:58906/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/292947/","Gandylyan1"
-"292946","2020-01-20 20:05:16","http://176.113.161.53:55702/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/292946/","Gandylyan1"
+"292946","2020-01-20 20:05:16","http://176.113.161.53:55702/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/292946/","Gandylyan1"
 "292945","2020-01-20 20:05:14","http://111.42.102.67:57280/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/292945/","Gandylyan1"
 "292944","2020-01-20 20:05:10","http://211.137.225.68:46617/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/292944/","Gandylyan1"
 "292943","2020-01-20 20:05:07","http://180.124.133.35:45790/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/292943/","Gandylyan1"
@@ -66607,7 +66888,7 @@
 "292609","2020-01-20 11:47:10","http://med-shop24.ru/wp-content/Overview/bmywhlnv5n14/zwl3x-36408409-1862-1j5z23j24lo-sx1s/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/292609/","spamhaus"
 "292608","2020-01-20 11:47:07","http://ncronline.in/wp-content/LoVmwBvD/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/292608/","spamhaus"
 "292607","2020-01-20 11:42:03","http://neweast-tr.net/wordpress/sites/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/292607/","spamhaus"
-"292606","2020-01-20 11:39:08","http://ngoaingu.garage.com.vn/wp-includes/hoc-k27-6256/","online","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/292606/","spamhaus"
+"292606","2020-01-20 11:39:08","http://ngoaingu.garage.com.vn/wp-includes/hoc-k27-6256/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/292606/","spamhaus"
 "292605","2020-01-20 11:38:08","http://news.ursinus.edu/aspnet_client/Reporting/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/292605/","spamhaus"
 "292604","2020-01-20 11:33:10","https://isri.ac.ir/cgi-bin/payment/6nbv3f/y-278276430-6057093-zngh-i1vtlscxu/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/292604/","Cryptolaemus1"
 "292603","2020-01-20 11:28:03","http://dev.g5plus.net/thallo/nfkDPIdg/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/292603/","Cryptolaemus1"
@@ -68111,7 +68392,7 @@
 "291094","2020-01-17 17:04:49","http://211.137.225.60:45593/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/291094/","Gandylyan1"
 "291093","2020-01-17 17:04:45","http://222.137.74.230:43893/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/291093/","Gandylyan1"
 "291092","2020-01-17 17:04:41","http://211.137.225.61:47602/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/291092/","Gandylyan1"
-"291091","2020-01-17 17:04:38","http://1.246.223.60:1757/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/291091/","Gandylyan1"
+"291091","2020-01-17 17:04:38","http://1.246.223.60:1757/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/291091/","Gandylyan1"
 "291090","2020-01-17 17:04:34","http://36.105.30.53:46472/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/291090/","Gandylyan1"
 "291089","2020-01-17 17:04:23","http://111.43.223.57:51687/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/291089/","Gandylyan1"
 "291088","2020-01-17 17:04:20","http://111.43.223.96:43897/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/291088/","Gandylyan1"
@@ -69445,7 +69726,7 @@
 "289756","2020-01-16 06:16:05","http://infinitedivineministry.org/ema/docs/","offline","malware_download","doc,emotet,epoch2","https://urlhaus.abuse.ch/url/289756/","Cryptolaemus1"
 "289755","2020-01-16 06:04:21","http://120.69.56.120:60995/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/289755/","Gandylyan1"
 "289754","2020-01-16 06:04:15","http://111.42.66.142:49508/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/289754/","Gandylyan1"
-"289753","2020-01-16 06:04:08","http://1.246.222.80:3572/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/289753/","Gandylyan1"
+"289753","2020-01-16 06:04:08","http://1.246.222.80:3572/Mozi.m","online","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/289753/","Gandylyan1"
 "289752","2020-01-16 06:04:02","http://124.67.89.238:59240/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/289752/","Gandylyan1"
 "289751","2020-01-16 06:03:57","http://216.57.119.54:44632/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/289751/","Gandylyan1"
 "289750","2020-01-16 06:03:24","http://110.18.194.228:47261/Mozi.m","offline","malware_download","elf,Mozi","https://urlhaus.abuse.ch/url/289750/","Gandylyan1"
@@ -73522,7 +73803,7 @@
 "285591","2020-01-10 00:44:21","http://158.69.125.200/armv7l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/285591/","zbetcheckin"
 "285590","2020-01-10 00:44:18","http://158.69.125.200/i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/285590/","zbetcheckin"
 "285589","2020-01-10 00:44:15","http://158.69.125.200/mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/285589/","zbetcheckin"
-"285588","2020-01-10 00:44:12","http://45.118.165.115:21206/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/285588/","zbetcheckin"
+"285588","2020-01-10 00:44:12","http://45.118.165.115:21206/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/285588/","zbetcheckin"
 "285587","2020-01-10 00:44:07","http://158.69.125.200/armv4l","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/285587/","zbetcheckin"
 "285586","2020-01-10 00:44:04","http://158.69.125.200/i586","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/285586/","zbetcheckin"
 "285585","2020-01-10 00:40:18","http://158.69.125.200/sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/285585/","zbetcheckin"
@@ -76340,7 +76621,7 @@
 "282764","2020-01-04 13:32:56","http://58.217.74.128:53150/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282764/","Gandylyan1"
 "282763","2020-01-04 13:31:43","http://49.89.252.58:47789/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282763/","Gandylyan1"
 "282762","2020-01-04 13:31:39","http://112.17.166.114:36042/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282762/","Gandylyan1"
-"282761","2020-01-04 13:31:34","http://176.113.161.121:44031/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/282761/","Gandylyan1"
+"282761","2020-01-04 13:31:34","http://176.113.161.121:44031/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282761/","Gandylyan1"
 "282760","2020-01-04 13:31:32","http://175.214.73.181:35254/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282760/","Gandylyan1"
 "282759","2020-01-04 13:31:27","http://112.27.91.234:40838/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282759/","Gandylyan1"
 "282758","2020-01-04 13:31:10","http://172.36.7.80:60182/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/282758/","Gandylyan1"
@@ -78509,7 +78790,7 @@
 "280586","2019-12-28 17:02:21","http://222.83.92.103:50270/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280586/","Gandylyan1"
 "280585","2019-12-28 17:02:17","http://111.43.223.43:58484/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280585/","Gandylyan1"
 "280584","2019-12-28 17:02:13","http://112.17.78.202:35906/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280584/","Gandylyan1"
-"280583","2019-12-28 17:02:07","http://1.246.222.14:3654/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280583/","Gandylyan1"
+"280583","2019-12-28 17:02:07","http://1.246.222.14:3654/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/280583/","Gandylyan1"
 "280582","2019-12-28 16:34:03","https://pastebin.com/raw/Z3atEQgX","offline","malware_download","None","https://urlhaus.abuse.ch/url/280582/","JayTHL"
 "280581","2019-12-28 16:14:02","http://120.68.233.58:43629/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280581/","Gandylyan1"
 "280580","2019-12-28 16:13:30","http://218.21.171.25:54227/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/280580/","Gandylyan1"
@@ -79536,8 +79817,8 @@
 "279557","2019-12-27 03:40:04","http://www.meconservationschool.org/wp-content/themes/genesis/readme.exe","offline","malware_download","exe,PredatorStealer","https://urlhaus.abuse.ch/url/279557/","zbetcheckin"
 "279556","2019-12-27 03:36:06","http://lincolnaward.org/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279556/","zbetcheckin"
 "279555","2019-12-27 03:32:13","http://www.lincolnaward.org/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279555/","zbetcheckin"
-"279554","2019-12-27 03:32:08","http://lebedyn.info/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279554/","zbetcheckin"
-"279553","2019-12-27 03:23:04","http://www.lebedyn.info/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279553/","zbetcheckin"
+"279554","2019-12-27 03:32:08","http://lebedyn.info/wp-content/themes/genesis/license.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/279554/","zbetcheckin"
+"279553","2019-12-27 03:23:04","http://www.lebedyn.info/wp-content/themes/genesis/license.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/279553/","zbetcheckin"
 "279552","2019-12-27 03:19:06","http://meconservationschool.org/wp-content/themes/genesis/readme.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279552/","zbetcheckin"
 "279551","2019-12-27 03:19:03","http://louisbenton.com/wp-content/themes/genesis/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/279551/","zbetcheckin"
 "279550","2019-12-27 02:56:03","http://31.146.124.107:41967","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/279550/","zbetcheckin"
@@ -79830,26 +80111,26 @@
 "279263","2019-12-26 23:33:53","https://dev.sebpo.net/aiim/Scan79064.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279263/","anonymous"
 "279262","2019-12-26 23:33:50","https://dev.sebpo.net/aiim/Scan794626.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279262/","anonymous"
 "279261","2019-12-26 23:33:47","https://dev.sebpo.net/aiim/Scan787778.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279261/","anonymous"
-"279260","2019-12-26 23:33:44","http://visagepk.com/Scan620141.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279260/","anonymous"
+"279260","2019-12-26 23:33:44","http://visagepk.com/Scan620141.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279260/","anonymous"
 "279259","2019-12-26 23:33:41","http://ultimatelamborghiniexperience.com/Scan519714.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279259/","anonymous"
-"279258","2019-12-26 23:33:39","http://ultimatelamborghiniexperience.com/Scan516977.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279258/","anonymous"
+"279258","2019-12-26 23:33:39","http://ultimatelamborghiniexperience.com/Scan516977.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279258/","anonymous"
 "279257","2019-12-26 23:33:38","http://ultimatelamborghiniexperience.com/Scan514529.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279257/","anonymous"
 "279256","2019-12-26 23:33:35","http://www.zoeydeutchweb.com/Scan719307.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279256/","anonymous"
-"279255","2019-12-26 23:33:33","http://www.zoeydeutchweb.com/Scan693492.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279255/","anonymous"
+"279255","2019-12-26 23:33:33","http://www.zoeydeutchweb.com/Scan693492.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279255/","anonymous"
 "279254","2019-12-26 23:33:32","http://www.zoeydeutchweb.com/Scan681933.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279254/","anonymous"
 "279253","2019-12-26 23:33:30","http://www.wbkmt.com/Scan568515.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279253/","anonymous"
 "279252","2019-12-26 23:33:28","http://www.wbkmt.com/Scan567495.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279252/","anonymous"
-"279251","2019-12-26 23:33:26","http://www.wbkmt.com/Scan544303.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279251/","anonymous"
+"279251","2019-12-26 23:33:26","http://www.wbkmt.com/Scan544303.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279251/","anonymous"
 "279250","2019-12-26 23:33:24","http://www.voyantvision.net/Scan674251.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279250/","anonymous"
 "279249","2019-12-26 23:33:21","http://www.voyantvision.net/Scan647166.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279249/","anonymous"
-"279248","2019-12-26 23:33:18","http://www.vasoccernews.com/Scan53937.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279248/","anonymous"
+"279248","2019-12-26 23:33:18","http://www.vasoccernews.com/Scan53937.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279248/","anonymous"
 "279247","2019-12-26 23:33:17","http://www.vasoccernews.com/Scan538882.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279247/","anonymous"
-"279246","2019-12-26 23:33:15","http://www.vasoccernews.com/Scan537263.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279246/","anonymous"
+"279246","2019-12-26 23:33:15","http://www.vasoccernews.com/Scan537263.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279246/","anonymous"
 "279245","2019-12-26 23:33:13","http://www.urgentmessage.org/Scan618358.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279245/","anonymous"
-"279244","2019-12-26 23:33:11","http://www.urgentmessage.org/Scan592993.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279244/","anonymous"
-"279243","2019-12-26 23:33:08","http://www.ultimatepointsstore.com/Scan582389.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279243/","anonymous"
-"279242","2019-12-26 23:33:06","http://www.ultimatepointsstore.com/Scan580348.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279242/","anonymous"
-"279241","2019-12-26 23:33:05","http://www.ultimatepointsstore.com/Scan570071.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279241/","anonymous"
+"279244","2019-12-26 23:33:11","http://www.urgentmessage.org/Scan592993.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279244/","anonymous"
+"279243","2019-12-26 23:33:08","http://www.ultimatepointsstore.com/Scan582389.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279243/","anonymous"
+"279242","2019-12-26 23:33:06","http://www.ultimatepointsstore.com/Scan580348.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279242/","anonymous"
+"279241","2019-12-26 23:33:05","http://www.ultimatepointsstore.com/Scan570071.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279241/","anonymous"
 "279240","2019-12-26 23:33:02","http://www.louisbenton.com/Scan178377.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279240/","anonymous"
 "279239","2019-12-26 23:33:00","http://www.louisbenton.com/Scan175069.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279239/","anonymous"
 "279238","2019-12-26 23:32:58","http://www.lincolnaward.org/Scan358362.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279238/","anonymous"
@@ -79863,13 +80144,13 @@
 "279230","2019-12-26 23:32:33","http://www.ibr-mag.com/Scan343596.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279230/","anonymous"
 "279229","2019-12-26 23:32:31","http://www.ibr-mag.com/Scan341615.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279229/","anonymous"
 "279228","2019-12-26 23:32:28","http://www.ibr-mag.com/Scan340880.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279228/","anonymous"
-"279227","2019-12-26 23:32:25","http://www.hdxa.net/Scan151567.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279227/","anonymous"
+"279227","2019-12-26 23:32:25","http://www.hdxa.net/Scan151567.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279227/","anonymous"
 "279226","2019-12-26 23:32:14","http://www.hatcityblues.com/Scan304154.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279226/","anonymous"
 "279225","2019-12-26 23:32:11","http://www.hatcityblues.com/Scan296093.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279225/","anonymous"
-"279224","2019-12-26 23:32:07","http://www.halcat.com/Scan186323.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279224/","anonymous"
+"279224","2019-12-26 23:32:07","http://www.halcat.com/Scan186323.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279224/","anonymous"
 "279223","2019-12-26 23:32:05","http://www.halcat.com/Scan181058.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279223/","anonymous"
-"279222","2019-12-26 23:32:03","http://www.hyvat-olutravintolat.fi/Scan243857.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279222/","anonymous"
-"279221","2019-12-26 23:31:45","http://www.hyvat-olutravintolat.fi/Scan235829.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279221/","anonymous"
+"279222","2019-12-26 23:32:03","http://www.hyvat-olutravintolat.fi/Scan243857.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279222/","anonymous"
+"279221","2019-12-26 23:31:45","http://www.hyvat-olutravintolat.fi/Scan235829.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279221/","anonymous"
 "279220","2019-12-26 23:31:43","http://www.hyvat-olutravintolat.fi/Scan214369.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279220/","anonymous"
 "279219","2019-12-26 23:31:41","http://www.cftamiami.com/Scan86489.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279219/","anonymous"
 "279218","2019-12-26 23:31:39","http://www.cftamiami.com/Scan860662.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279218/","anonymous"
@@ -79904,7 +80185,7 @@
 "279189","2019-12-26 23:30:13","http://jyv.fi/Scan312111.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279189/","anonymous"
 "279188","2019-12-26 23:30:10","http://jarilindholm.com/Scan340839.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279188/","anonymous"
 "279187","2019-12-26 23:30:01","http://jarilindholm.com/Scan326716.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279187/","anonymous"
-"279186","2019-12-26 23:29:57","http://in-sect.com/Scan287519.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279186/","anonymous"
+"279186","2019-12-26 23:29:57","http://in-sect.com/Scan287519.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279186/","anonymous"
 "279185","2019-12-26 23:29:54","http://in-sect.com/Scan280219.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279185/","anonymous"
 "279184","2019-12-26 23:29:50","http://in-sect.com/Scan272899.doc","online","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279184/","anonymous"
 "279183","2019-12-26 23:29:44","http://helterskelterbooks.com/Scan166889.doc","offline","malware_download","doc,PredatorStealer","https://urlhaus.abuse.ch/url/279183/","anonymous"
@@ -80729,7 +81010,7 @@
 "278059","2019-12-26 02:37:04","https://pastebin.com/raw/2RA8ggP8","offline","malware_download","None","https://urlhaus.abuse.ch/url/278059/","JayTHL"
 "278058","2019-12-26 01:45:11","http://61.2.149.133:55935/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/278058/","Gandylyan1"
 "278057","2019-12-26 01:45:08","http://117.248.95.40:49054/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/278057/","Gandylyan1"
-"278056","2019-12-26 01:45:05","http://1.246.223.52:3061/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/278056/","Gandylyan1"
+"278056","2019-12-26 01:45:05","http://1.246.223.52:3061/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/278056/","Gandylyan1"
 "278055","2019-12-26 01:45:01","http://115.55.44.206:47272/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/278055/","Gandylyan1"
 "278054","2019-12-26 01:44:58","http://31.146.124.91:50762/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/278054/","Gandylyan1"
 "278053","2019-12-26 01:44:55","http://183.151.94.83:40656/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/278053/","Gandylyan1"
@@ -83092,7 +83373,7 @@
 "275689","2019-12-23 11:25:15","http://cg.qlizzie.net/fox6login/download/foxfz.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/275689/","zbetcheckin"
 "275688","2019-12-23 11:20:05","https://pastebin.com/raw/L7Ltyg84","offline","malware_download","None","https://urlhaus.abuse.ch/url/275688/","JayTHL"
 "275687","2019-12-23 11:20:03","https://pastebin.com/raw/CcDGGF0n","offline","malware_download","None","https://urlhaus.abuse.ch/url/275687/","JayTHL"
-"275686","2019-12-23 11:19:11","http://gx-10012947.file.myqcloud.com/001my6.9.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/275686/","zbetcheckin"
+"275686","2019-12-23 11:19:11","http://gx-10012947.file.myqcloud.com/001my6.9.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/275686/","zbetcheckin"
 "275685","2019-12-23 09:32:04","http://d.23shentu.org/go/f.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/275685/","zbetcheckin"
 "275684","2019-12-23 09:07:05","https://wordlepuzzles.com/advising/additionally.eml","offline","malware_download","AUS,geofenced,Gozi,headersfenced,NZL,Sectigo,signed","https://urlhaus.abuse.ch/url/275684/","anonymous"
 "275683","2019-12-23 08:46:03","http://7secondsfilmproposal.com/lt/lt.exe","offline","malware_download","exe,NanoCore,rat","https://urlhaus.abuse.ch/url/275683/","abuse_ch"
@@ -84106,7 +84387,7 @@
 "274673","2019-12-21 07:04:31","http://116.114.95.236:60303/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/274673/","Gandylyan1"
 "274672","2019-12-21 07:04:28","http://221.210.211.18:51947/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/274672/","Gandylyan1"
 "274671","2019-12-21 07:04:24","http://117.199.41.124:34006/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/274671/","Gandylyan1"
-"274670","2019-12-21 07:03:53","http://1.246.222.4:2683/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/274670/","Gandylyan1"
+"274670","2019-12-21 07:03:53","http://1.246.222.4:2683/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/274670/","Gandylyan1"
 "274669","2019-12-21 07:03:47","http://112.17.78.163:57836/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/274669/","Gandylyan1"
 "274668","2019-12-21 07:03:26","http://180.104.58.4:40016/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/274668/","Gandylyan1"
 "274667","2019-12-21 07:03:20","http://223.93.157.244:41807/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/274667/","Gandylyan1"
@@ -85060,7 +85341,7 @@
 "273716","2019-12-20 07:31:17","http://42.235.16.4:38420/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273716/","Gandylyan1"
 "273715","2019-12-20 07:31:07","http://112.26.160.67:60916/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273715/","Gandylyan1"
 "273714","2019-12-20 07:30:56","http://36.153.190.227:34761/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273714/","Gandylyan1"
-"273713","2019-12-20 07:30:51","http://1.246.222.232:4170/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273713/","Gandylyan1"
+"273713","2019-12-20 07:30:51","http://1.246.222.232:4170/Mozi.m","online","malware_download","elf","https://urlhaus.abuse.ch/url/273713/","Gandylyan1"
 "273712","2019-12-20 07:30:46","http://116.114.95.196:52084/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273712/","Gandylyan1"
 "273711","2019-12-20 07:30:42","http://116.114.95.104:41197/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273711/","Gandylyan1"
 "273710","2019-12-20 07:30:39","http://116.114.95.160:53383/Mozi.m","offline","malware_download","elf","https://urlhaus.abuse.ch/url/273710/","Gandylyan1"
@@ -88281,7 +88562,7 @@
 "270447","2019-12-17 08:33:05","http://bonjour-habitat.bzh/wp-includes/lm/3gd-594218-660-uyl3kkn-h25j2ce/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/270447/","spamhaus"
 "270446","2019-12-17 08:30:05","https://www.icelp.info/wp-includes/0btcC-BN-6115/","offline","malware_download","doc,emotet,epoch3,heodo","https://urlhaus.abuse.ch/url/270446/","spamhaus"
 "270445","2019-12-17 08:25:27","http://oer.unilag.edu.ng/wp-includes/DOC/mq9xmep/p-335-7095-lb8j704-mi8po2kf1h/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/270445/","spamhaus"
-"270444","2019-12-17 08:23:14","http://mteng.mmj7.com/api/filegoto/ren001","offline","malware_download","None","https://urlhaus.abuse.ch/url/270444/","anonymous"
+"270444","2019-12-17 08:23:14","http://mteng.mmj7.com/api/filegoto/ren001","online","malware_download","None","https://urlhaus.abuse.ch/url/270444/","anonymous"
 "270442","2019-12-17 08:23:04","http://greatsme.info/exclyNd.dat","offline","malware_download","predator","https://urlhaus.abuse.ch/url/270442/","James_inthe_box"
 "270441","2019-12-17 08:22:10","http://dlfultima81gurgaon.in/wp-admin/JuYv2eb-SESSKSqi-array/corporate-cloud/w7mM7B-abyqeNiug7n9lM","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/270441/","Do0g77"
 "270440","2019-12-17 08:22:08","http://78.128.114.111/net.exe","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/270440/","gorimpthon"
@@ -98493,7 +98774,7 @@
 "259649","2019-11-26 20:02:59","https://zaimingfangchan.com/wp-content/uploads/z1/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/259649/","Cryptolaemus1"
 "259648","2019-11-26 20:02:54","https://neitic.com/pointage/9s8/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/259648/","Cryptolaemus1"
 "259647","2019-11-26 20:02:52","https://www.amarantahotel.com/wp-content/uploads/lRmTgxd8/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/259647/","Cryptolaemus1"
-"259646","2019-11-26 20:02:41","https://shembefoundation.com/wp-includes/2f6j/","online","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/259646/","Cryptolaemus1"
+"259646","2019-11-26 20:02:41","https://shembefoundation.com/wp-includes/2f6j/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/259646/","Cryptolaemus1"
 "259645","2019-11-26 20:02:35","http://blog.olddognewdata.com/jodp17ksjfs/e8/e8/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/259645/","Cryptolaemus1"
 "259644","2019-11-26 19:48:03","http://159.89.125.118/lmaoWTF/loligang.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/259644/","zbetcheckin"
 "259643","2019-11-26 19:47:06","http://159.89.125.118/lmaoWTF/loligang.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/259643/","zbetcheckin"
@@ -102042,7 +102323,7 @@
 "256020","2019-11-20 19:00:09","https://drive.google.com/uc?id=1zO79GWv3925hGQEfQphaAUq8GmfHGGZ9&export=download","offline","malware_download","Dreambot,exe,vbs,zip","https://urlhaus.abuse.ch/url/256020/","anonymous"
 "256019","2019-11-20 19:00:06","https://drive.google.com/uc?id=1zzm8q5Q6XuuBpOl0FDaC7QrBTYII9A4l&export=download","offline","malware_download","Dreambot,exe,vbs,zip","https://urlhaus.abuse.ch/url/256019/","anonymous"
 "256018","2019-11-20 18:57:09","http://webparroquia.es/archivosadultos/Wacatac_2019-11-20_00-10.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/256018/","zbetcheckin"
-"256016","2019-11-20 18:57:05","http://flood-protection.org/web/tZQJMAToVe8zLr3.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/256016/","zbetcheckin"
+"256016","2019-11-20 18:57:05","http://flood-protection.org/web/tZQJMAToVe8zLr3.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/256016/","zbetcheckin"
 "256015","2019-11-20 18:45:05","http://www.teorija.rs/storage/app/fr.exe","offline","malware_download","exe,Phoenix","https://urlhaus.abuse.ch/url/256015/","zbetcheckin"
 "256013","2019-11-20 17:21:04","http://178.33.181.19/snype.sparc","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/256013/","zbetcheckin"
 "256012","2019-11-20 17:17:18","http://178.33.181.19/snype.mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/256012/","zbetcheckin"
@@ -103703,7 +103984,7 @@
 "254282","2019-11-15 09:30:05","http://zxczxf.ru/ndfhjds.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/254282/","abuse_ch"
 "254281","2019-11-15 09:28:06","http://59.127.136.53:11037/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/254281/","zbetcheckin"
 "254280","2019-11-15 09:12:06","http://upload-stat4.info/test/ourus/1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/254280/","zbetcheckin"
-"254279","2019-11-15 08:26:03","http://109.107.249.137:22569/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/254279/","zbetcheckin"
+"254279","2019-11-15 08:26:03","http://109.107.249.137:22569/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/254279/","zbetcheckin"
 "254278","2019-11-15 08:01:04","http://185.212.130.42/updater.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/254278/","abuse_ch"
 "254277","2019-11-15 07:30:05","http://www.cocotraffic.com/crypt_exe_lite_prj_Eagle_2.exe","offline","malware_download","exe,IcedID","https://urlhaus.abuse.ch/url/254277/","abuse_ch"
 "254276","2019-11-15 07:16:06","https://1rjxxa.ch.files.1drv.com/y4m4gfpE3WWakcul-aB0ltS8clb96K9VlTuKuf9uGi7qdyDw2u5kHg5D0ef5HnY9bC9Vp2uo5MDO4NLgzjGrxvZCHbD_8NbmSaAztOyS7KiXugewDA9mt3t4Is-95luWUjDu6gh53pVngk5CGVStuPosO17Y1M3kdL5vEFDvgd80YJGcuxcmsJlrrZllSeiHepfNIuMAytr-kS1MaijdLVDPQ/IMG_WA-D0014.lzh?download&psid=1","offline","malware_download","zip","https://urlhaus.abuse.ch/url/254276/","zbetcheckin"
@@ -109906,7 +110187,7 @@
 "247599","2019-10-22 18:14:04","http://mobilityrentalvans.com/wp-content/themes/hestia/4","offline","malware_download","None","https://urlhaus.abuse.ch/url/247599/","JayTHL"
 "247598","2019-10-22 17:07:03","http://gg.gg/fjibb","offline","malware_download","exe","https://urlhaus.abuse.ch/url/247598/","ps66uk"
 "247596","2019-10-22 17:06:03","http://gg.gg/fji6m","offline","malware_download","exe","https://urlhaus.abuse.ch/url/247596/","ps66uk"
-"247594","2019-10-22 16:28:08","http://lecafedesartistes.com/accueil/metor/Toner.exe","offline","malware_download","CAN,Gozi","https://urlhaus.abuse.ch/url/247594/","anonymous"
+"247594","2019-10-22 16:28:08","http://lecafedesartistes.com/accueil/metor/Toner.exe","online","malware_download","CAN,Gozi","https://urlhaus.abuse.ch/url/247594/","anonymous"
 "247593","2019-10-22 16:22:02","http://151.80.8.7/lavinch/image.jpeg","offline","malware_download","vbs","https://urlhaus.abuse.ch/url/247593/","ps66uk"
 "247592","2019-10-22 14:56:07","http://fomoportugal.com/add.exe","offline","malware_download","opendir,Smoke Loader","https://urlhaus.abuse.ch/url/247592/","cocaman"
 "247591","2019-10-22 14:31:04","http://kapda.ae/Old/GID.exe","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/247591/","zbetcheckin"
@@ -110598,7 +110879,7 @@
 "246874","2019-10-21 05:20:22","http://107.160.244.6/zehir/z3hir.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/246874/","zbetcheckin"
 "246873","2019-10-21 05:20:19","http://95.216.136.4/razor/r4z0r.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/246873/","zbetcheckin"
 "246872","2019-10-21 05:20:17","http://95.216.136.4/razor/r4z0r.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/246872/","zbetcheckin"
-"246871","2019-10-21 05:20:15","http://145.255.26.115:25869/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/246871/","zbetcheckin"
+"246871","2019-10-21 05:20:15","http://145.255.26.115:25869/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/246871/","zbetcheckin"
 "246870","2019-10-21 05:20:13","http://95.216.136.4/razor/r4z0r.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/246870/","zbetcheckin"
 "246869","2019-10-21 05:20:11","http://95.216.136.4/razor/r4z0r.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/246869/","zbetcheckin"
 "246868","2019-10-21 05:20:09","http://95.216.136.4/razor/r4z0r.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/246868/","zbetcheckin"
@@ -112483,7 +112764,7 @@
 "244800","2019-10-15 03:11:13","http://51.77.225.113/miori.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/244800/","zbetcheckin"
 "244799","2019-10-15 03:11:11","http://51.77.225.113/miori.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/244799/","zbetcheckin"
 "244797","2019-10-15 03:11:04","http://138.197.216.193/zehir/z3hir.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/244797/","zbetcheckin"
-"244796","2019-10-15 03:05:34","http://download.ktkt.com/setupKtkt_V1.5.8.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/244796/","zbetcheckin"
+"244796","2019-10-15 03:05:34","http://download.ktkt.com/setupKtkt_V1.5.8.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/244796/","zbetcheckin"
 "244795","2019-10-15 02:55:06","http://gessuae.ae/wp-includes/images/smilies/sal.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/244795/","zbetcheckin"
 "244794","2019-10-15 02:51:31","http://gessuae.ae/wp-includes/images/smilies/oo.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/244794/","zbetcheckin"
 "244793","2019-10-15 02:51:14","http://tour.nicestore.co.kr/wp-content/kCEtESh/","offline","malware_download","emotet,epoch3,exe,heodo","https://urlhaus.abuse.ch/url/244793/","Cryptolaemus1"
@@ -113846,7 +114127,7 @@
 "243397","2019-10-10 22:31:39","http://105.104.182.30:52299/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243397/","Petras_Simeon"
 "243396","2019-10-10 22:31:28","http://103.78.181.163:57869/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243396/","Petras_Simeon"
 "243395","2019-10-10 22:31:24","http://103.74.69.91:48169/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243395/","Petras_Simeon"
-"243394","2019-10-10 22:31:18","http://103.50.4.235:16771/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243394/","Petras_Simeon"
+"243394","2019-10-10 22:31:18","http://103.50.4.235:16771/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/243394/","Petras_Simeon"
 "243393","2019-10-10 22:31:12","http://103.237.173.218:28875/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/243393/","Petras_Simeon"
 "243392","2019-10-10 22:31:06","http://103.230.63.42:61153/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/243392/","Petras_Simeon"
 "243391","2019-10-10 21:28:18","https://flipmypool.com/seeing.class/INC/NWGlRGuuQelDJZqtVrzCUtswYpx/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/243391/","Cryptolaemus1"
@@ -114460,7 +114741,7 @@
 "242766","2019-10-10 10:48:52","http://36.67.152.161:46302/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242766/","Petras_Simeon"
 "242765","2019-10-10 10:48:44","http://201.43.42.246:59550/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242765/","Petras_Simeon"
 "242764","2019-10-10 10:48:38","http://201.26.120.51:15906/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242764/","Petras_Simeon"
-"242763","2019-10-10 10:48:31","http://200.69.74.28:9881/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242763/","Petras_Simeon"
+"242763","2019-10-10 10:48:31","http://200.69.74.28:9881/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242763/","Petras_Simeon"
 "242762","2019-10-10 10:48:25","http://200.107.7.242:3217/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242762/","Petras_Simeon"
 "242761","2019-10-10 10:48:19","http://191.17.209.212:62109/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242761/","Petras_Simeon"
 "242760","2019-10-10 10:48:13","http://190.244.125.25:33333/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242760/","Petras_Simeon"
@@ -114925,7 +115206,7 @@
 "242281","2019-10-09 19:50:27","http://103.90.206.77:43227/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242281/","Petras_Simeon"
 "242280","2019-10-09 19:50:23","http://103.42.252.146:12391/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242280/","Petras_Simeon"
 "242279","2019-10-09 19:50:17","http://212.237.31.132/0710/kk/md.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/242279/","anonymous"
-"242278","2019-10-09 19:50:08","http://103.42.252.130:62020/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242278/","Petras_Simeon"
+"242278","2019-10-09 19:50:08","http://103.42.252.130:62020/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242278/","Petras_Simeon"
 "242277","2019-10-09 19:47:02","http://ampms.ddns.net/5mWq1/kk/1445785485","offline","malware_download","powershell","https://urlhaus.abuse.ch/url/242277/","anonymous"
 "242276","2019-10-09 19:42:05","https://comprobantes.egnyte.com/dd/6zf9V82ax4","offline","malware_download","geofence,geofenced,MEX,zip","https://urlhaus.abuse.ch/url/242276/","anonymous"
 "242275","2019-10-09 19:18:17","http://80.89.189.34:13307/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242275/","Petras_Simeon"
@@ -115080,7 +115361,7 @@
 "242126","2019-10-09 17:27:13","http://177.94.161.115:53168/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242126/","Petras_Simeon"
 "242125","2019-10-09 17:27:06","http://168.195.228.246:11783/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242125/","Petras_Simeon"
 "242124","2019-10-09 17:26:16","http://103.253.181.74:29308/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242124/","Petras_Simeon"
-"242123","2019-10-09 17:26:10","http://103.247.217.147:43057/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242123/","Petras_Simeon"
+"242123","2019-10-09 17:26:10","http://103.247.217.147:43057/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/242123/","Petras_Simeon"
 "242122","2019-10-09 17:26:05","http://103.135.38.175:18897/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/242122/","Petras_Simeon"
 "242121","2019-10-09 17:09:09","http://167.71.64.141/yfbg/out-1369462999.hta","offline","malware_download","None","https://urlhaus.abuse.ch/url/242121/","JayTHL"
 "242120","2019-10-09 17:09:07","http://167.71.64.141/yfbg/out-834610808.hta","offline","malware_download","None","https://urlhaus.abuse.ch/url/242120/","JayTHL"
@@ -115244,7 +115525,7 @@
 "241962","2019-10-09 15:41:05","http://geovipcar.ge/wp-admin/omykmb709u_wr053d-94928636/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/241962/","Cryptolaemus1"
 "241961","2019-10-09 15:40:33","http://africangreatdeals.com/e5571/LLC/bSojJjzJ/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/241961/","Cryptolaemus1"
 "241960","2019-10-09 15:40:28","http://95.6.8.14:53459/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241960/","Petras_Simeon"
-"241959","2019-10-09 15:40:20","http://110.74.209.190:20842/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241959/","Petras_Simeon"
+"241959","2019-10-09 15:40:20","http://110.74.209.190:20842/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241959/","Petras_Simeon"
 "241958","2019-10-09 15:40:12","http://110.34.3.142:53047/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241958/","Petras_Simeon"
 "241957","2019-10-09 15:39:12","http://92.112.44.155:6022/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241957/","Petras_Simeon"
 "241956","2019-10-09 15:39:04","http://85.96.128.82:58875/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241956/","Petras_Simeon"
@@ -115254,7 +115535,7 @@
 "241952","2019-10-09 15:38:31","http://181.114.150.207:12773/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241952/","Petras_Simeon"
 "241951","2019-10-09 15:38:20","http://178.236.123.114:14602/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241951/","Petras_Simeon"
 "241950","2019-10-09 15:38:16","http://177.94.59.181:14872/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241950/","Petras_Simeon"
-"241949","2019-10-09 15:38:07","http://177.11.92.78:36800/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241949/","Petras_Simeon"
+"241949","2019-10-09 15:38:07","http://177.11.92.78:36800/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241949/","Petras_Simeon"
 "241948","2019-10-09 15:37:10","http://103.139.219.8:12445/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241948/","Petras_Simeon"
 "241947","2019-10-09 15:23:23","http://www.imgautham.com/messageboard/FILE/c1g6mqk1h_k41afgzka-045225358978733/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/241947/","Cryptolaemus1"
 "241946","2019-10-09 15:23:16","http://www.cuisineontheroadspr.com/popup_index/NEONyzJCq/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/241946/","Cryptolaemus1"
@@ -115354,7 +115635,7 @@
 "241852","2019-10-09 14:35:57","http://62.162.115.194:21188/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241852/","Petras_Simeon"
 "241851","2019-10-09 14:35:49","http://45.242.79.120:49024/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241851/","Petras_Simeon"
 "241850","2019-10-09 14:35:43","http://36.76.24.61:15441/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241850/","Petras_Simeon"
-"241849","2019-10-09 14:35:33","http://36.66.105.159:32398/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241849/","Petras_Simeon"
+"241849","2019-10-09 14:35:33","http://36.66.105.159:32398/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241849/","Petras_Simeon"
 "241848","2019-10-09 14:35:26","http://2.183.89.72:18192/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241848/","Petras_Simeon"
 "241847","2019-10-09 14:35:14","http://203.83.174.227:30402/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241847/","Petras_Simeon"
 "241846","2019-10-09 14:34:25","http://201.93.70.136:29556/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241846/","Petras_Simeon"
@@ -115940,7 +116221,7 @@
 "241265","2019-10-08 18:52:16","http://191.5.215.11:1749/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241265/","Petras_Simeon"
 "241264","2019-10-08 18:52:08","http://191.223.149.240:40765/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241264/","Petras_Simeon"
 "241263","2019-10-08 18:52:01","http://190.130.20.14:23932/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241263/","Petras_Simeon"
-"241262","2019-10-08 18:51:40","http://189.126.70.222:13942/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241262/","Petras_Simeon"
+"241262","2019-10-08 18:51:40","http://189.126.70.222:13942/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241262/","Petras_Simeon"
 "241261","2019-10-08 18:51:33","http://187.250.191.129:60791/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241261/","Petras_Simeon"
 "241260","2019-10-08 18:51:27","http://187.207.107.253:61880/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/241260/","Petras_Simeon"
 "241259","2019-10-08 18:51:19","http://186.225.120.173:19436/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/241259/","Petras_Simeon"
@@ -116373,7 +116654,7 @@
 "240830","2019-10-07 10:12:35","http://201.68.40.59:48868/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240830/","Petras_Simeon"
 "240829","2019-10-07 10:12:30","http://197.245.183.89:8749/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240829/","Petras_Simeon"
 "240828","2019-10-07 10:12:25","http://197.232.28.157:8481/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240828/","Petras_Simeon"
-"240827","2019-10-07 10:12:21","http://195.28.15.110:4344/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240827/","Petras_Simeon"
+"240827","2019-10-07 10:12:21","http://195.28.15.110:4344/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240827/","Petras_Simeon"
 "240826","2019-10-07 10:12:17","http://195.209.127.198:30881/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240826/","Petras_Simeon"
 "240825","2019-10-07 10:12:14","http://191.255.194.221:27469/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240825/","Petras_Simeon"
 "240824","2019-10-07 10:12:07","http://189.176.93.82:37325/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240824/","Petras_Simeon"
@@ -116394,7 +116675,7 @@
 "240809","2019-10-07 09:57:31","http://92.8.204.13:36307/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240809/","Petras_Simeon"
 "240808","2019-10-07 09:57:25","http://92.38.122.218:46781/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240808/","Petras_Simeon"
 "240807","2019-10-07 09:57:17","http://92.242.221.118:36790/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240807/","Petras_Simeon"
-"240806","2019-10-07 09:57:11","http://91.196.36.84:13091/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240806/","Petras_Simeon"
+"240806","2019-10-07 09:57:11","http://91.196.36.84:13091/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240806/","Petras_Simeon"
 "240805","2019-10-07 09:57:01","http://89.174.10.107:35443/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240805/","Petras_Simeon"
 "240804","2019-10-07 09:56:57","http://85.97.206.161:25268/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240804/","Petras_Simeon"
 "240803","2019-10-07 09:56:53","http://85.108.63.13:58595/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240803/","Petras_Simeon"
@@ -116418,7 +116699,7 @@
 "240785","2019-10-07 09:55:07","http://70.25.31.169:1350/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240785/","Petras_Simeon"
 "240784","2019-10-07 09:55:03","http://68.205.122.33:30617/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240784/","Petras_Simeon"
 "240783","2019-10-07 09:54:56","http://62.217.133.76:4011/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240783/","Petras_Simeon"
-"240782","2019-10-07 09:54:52","http://62.117.124.114:32266/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240782/","Petras_Simeon"
+"240782","2019-10-07 09:54:52","http://62.117.124.114:32266/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240782/","Petras_Simeon"
 "240781","2019-10-07 09:54:47","http://157.245.147.239/lmaoWTF/loligang.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/240781/","0xrb"
 "240780","2019-10-07 09:54:45","http://62.1.114.108:58456/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240780/","Petras_Simeon"
 "240779","2019-10-07 09:54:39","http://5.75.38.160:1977/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240779/","Petras_Simeon"
@@ -116657,7 +116938,7 @@
 "240540","2019-10-07 06:37:34","http://45.182.139.53:30465/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240540/","Petras_Simeon"
 "240539","2019-10-07 06:37:28","http://45.123.8.84:36643/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240539/","Petras_Simeon"
 "240538","2019-10-07 06:37:23","http://43.230.159.66:49933/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240538/","Petras_Simeon"
-"240537","2019-10-07 06:37:16","http://36.66.168.45:13666/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240537/","Petras_Simeon"
+"240537","2019-10-07 06:37:16","http://36.66.168.45:13666/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240537/","Petras_Simeon"
 "240536","2019-10-07 06:37:10","http://31.28.244.241:2856/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240536/","Petras_Simeon"
 "240535","2019-10-07 06:37:04","http://31.223.65.216:58522/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240535/","Petras_Simeon"
 "240534","2019-10-07 06:36:57","http://27.72.40.22:49678/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240534/","Petras_Simeon"
@@ -116730,7 +117011,7 @@
 "240467","2019-10-07 06:25:48","http://134.236.252.28:14146/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240467/","Petras_Simeon"
 "240466","2019-10-07 06:25:43","http://103.89.252.135:7438/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240466/","Petras_Simeon"
 "240465","2019-10-07 06:25:38","http://103.78.12.220:1793/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240465/","Petras_Simeon"
-"240464","2019-10-07 06:25:33","http://103.50.7.19:20651/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240464/","Petras_Simeon"
+"240464","2019-10-07 06:25:33","http://103.50.7.19:20651/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240464/","Petras_Simeon"
 "240463","2019-10-07 06:25:27","http://103.47.57.204:39009/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240463/","Petras_Simeon"
 "240462","2019-10-07 06:25:22","http://103.249.180.114:7075/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240462/","Petras_Simeon"
 "240461","2019-10-07 06:25:17","http://103.233.123.233:14656/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240461/","Petras_Simeon"
@@ -116978,7 +117259,7 @@
 "240219","2019-10-07 04:56:15","http://208.163.58.18:20912/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240219/","Petras_Simeon"
 "240218","2019-10-07 04:56:11","http://206.248.136.6:44434/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240218/","Petras_Simeon"
 "240217","2019-10-07 04:56:08","http://206.201.0.41:49736/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240217/","Petras_Simeon"
-"240216","2019-10-07 04:56:02","http://203.80.171.149:36958/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240216/","Petras_Simeon"
+"240216","2019-10-07 04:56:02","http://203.80.171.149:36958/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240216/","Petras_Simeon"
 "240215","2019-10-07 04:55:46","http://203.202.246.246:3587/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240215/","Petras_Simeon"
 "240214","2019-10-07 04:55:41","http://203.193.173.179:14218/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240214/","Petras_Simeon"
 "240213","2019-10-07 04:55:36","http://203.193.156.43:39359/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240213/","Petras_Simeon"
@@ -117142,7 +117423,7 @@
 "240055","2019-10-07 04:28:12","http://181.162.161.57:20029/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240055/","Petras_Simeon"
 "240054","2019-10-07 04:28:04","http://181.114.133.120:8894/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240054/","Petras_Simeon"
 "240053","2019-10-07 04:27:58","http://181.112.41.38:16087/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240053/","Petras_Simeon"
-"240052","2019-10-07 04:27:53","http://180.92.226.47:20047/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240052/","Petras_Simeon"
+"240052","2019-10-07 04:27:53","http://180.92.226.47:20047/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240052/","Petras_Simeon"
 "240051","2019-10-07 04:27:48","http://179.99.164.72:26434/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240051/","Petras_Simeon"
 "240050","2019-10-07 04:27:36","http://179.98.21.41:1920/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240050/","Petras_Simeon"
 "240049","2019-10-07 04:27:29","http://179.98.158.238:8434/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240049/","Petras_Simeon"
@@ -117158,7 +117439,7 @@
 "240039","2019-10-07 04:24:41","http://178.210.129.150:10910/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240039/","Petras_Simeon"
 "240038","2019-10-07 04:24:36","http://178.165.122.141:17685/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240038/","Petras_Simeon"
 "240037","2019-10-07 04:24:33","http://178.156.64.52:63080/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240037/","Petras_Simeon"
-"240036","2019-10-07 04:24:29","http://178.151.143.2:21623/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240036/","Petras_Simeon"
+"240036","2019-10-07 04:24:29","http://178.151.143.2:21623/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240036/","Petras_Simeon"
 "240035","2019-10-07 04:24:23","http://178.150.54.4:36982/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240035/","Petras_Simeon"
 "240034","2019-10-07 04:24:19","http://178.136.195.90:37020/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/240034/","Petras_Simeon"
 "240033","2019-10-07 04:24:13","http://177.95.76.97:38821/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/240033/","Petras_Simeon"
@@ -117246,7 +117527,7 @@
 "239951","2019-10-07 04:13:35","http://12.132.247.91:1601/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239951/","Petras_Simeon"
 "239950","2019-10-07 04:13:30","http://119.15.92.126:49862/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239950/","Petras_Simeon"
 "239949","2019-10-07 04:13:24","http://113.11.95.254:54720/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239949/","Petras_Simeon"
-"239948","2019-10-07 04:13:17","http://109.95.15.210:54462/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239948/","Petras_Simeon"
+"239948","2019-10-07 04:13:17","http://109.95.15.210:54462/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239948/","Petras_Simeon"
 "239947","2019-10-07 04:13:13","http://109.94.117.17:46660/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239947/","Petras_Simeon"
 "239946","2019-10-07 04:13:05","http://109.94.113.209:36119/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239946/","Petras_Simeon"
 "239945","2019-10-07 04:13:00","http://109.72.192.218:37460/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239945/","Petras_Simeon"
@@ -117504,7 +117785,7 @@
 "239693","2019-10-06 11:27:37","http://62.69.241.72:35641/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239693/","Petras_Simeon"
 "239692","2019-10-06 11:27:33","http://5.236.170.251:52212/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239692/","Petras_Simeon"
 "239691","2019-10-06 11:27:26","http://37.6.178.118:14987/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239691/","Petras_Simeon"
-"239690","2019-10-06 11:27:21","http://203.202.245.77:64580/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239690/","Petras_Simeon"
+"239690","2019-10-06 11:27:21","http://203.202.245.77:64580/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239690/","Petras_Simeon"
 "239689","2019-10-06 11:27:17","http://202.191.124.185:60284/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239689/","Petras_Simeon"
 "239688","2019-10-06 11:27:04","http://189.110.222.185:29496/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239688/","Petras_Simeon"
 "239687","2019-10-06 11:26:58","http://185.94.172.29:4396/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239687/","Petras_Simeon"
@@ -117605,7 +117886,7 @@
 "239592","2019-10-06 11:10:03","http://www.orchardim.com/l7jbnx3/8c4wlk9s-ba0cr0sy-94564/","offline","malware_download","emotet,epoch3,exe","https://urlhaus.abuse.ch/url/239592/","Cryptolaemus1"
 "239591","2019-10-06 11:09:32","http://123.200.4.142:23764/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239591/","Petras_Simeon"
 "239590","2019-10-06 11:09:13","http://www.yesemtechnologies.com/css/xwxpjbj9z_zlrjt-71894126/","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/239590/","Cryptolaemus1"
-"239589","2019-10-06 11:09:10","http://120.29.81.99:26777/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239589/","Petras_Simeon"
+"239589","2019-10-06 11:09:10","http://120.29.81.99:26777/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239589/","Petras_Simeon"
 "239588","2019-10-06 11:09:03","http://119.252.171.222:56115/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239588/","Petras_Simeon"
 "239587","2019-10-06 11:08:58","https://thangmaychauau.com.vn/aj1xahh/dpTONdwm/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/239587/","Cryptolaemus1"
 "239586","2019-10-06 11:08:54","http://tutoriaenvivo.estudioovalle.com.ar/wp-content/gosPgvApQ/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/239586/","Cryptolaemus1"
@@ -117660,7 +117941,7 @@
 "239536","2019-10-06 09:19:08","http://177.102.91.195:52354/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239536/","Petras_Simeon"
 "239535","2019-10-06 09:19:01","http://151.235.251.80:18188/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239535/","Petras_Simeon"
 "239534","2019-10-06 09:18:56","http://131.221.193.9:65058/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239534/","Petras_Simeon"
-"239533","2019-10-06 09:18:51","http://125.209.71.6:33831/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239533/","Petras_Simeon"
+"239533","2019-10-06 09:18:51","http://125.209.71.6:33831/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239533/","Petras_Simeon"
 "239532","2019-10-06 09:18:45","http://125.162.65.174:19450/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239532/","Petras_Simeon"
 "239531","2019-10-06 09:18:40","http://124.248.184.246:9798/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239531/","Petras_Simeon"
 "239530","2019-10-06 09:18:35","http://111.67.75.186:48899/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239530/","Petras_Simeon"
@@ -117825,7 +118106,7 @@
 "239371","2019-10-06 07:44:22","http://66.103.9.249:57006/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239371/","Petras_Simeon"
 "239370","2019-10-06 07:44:16","http://62.82.172.42:2245/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239370/","Petras_Simeon"
 "239369","2019-10-06 07:44:11","http://62.24.109.37:29097/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239369/","Petras_Simeon"
-"239368","2019-10-06 07:44:07","http://62.1.98.131:26141/.i","online","malware_download","hajime","https://urlhaus.abuse.ch/url/239368/","Petras_Simeon"
+"239368","2019-10-06 07:44:07","http://62.1.98.131:26141/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239368/","Petras_Simeon"
 "239367","2019-10-06 07:44:02","http://59.153.16.144:41355/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239367/","Petras_Simeon"
 "239366","2019-10-06 07:43:56","http://5.54.122.194:50553/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239366/","Petras_Simeon"
 "239365","2019-10-06 07:43:50","http://5.236.172.224:21194/.i","offline","malware_download","hajime","https://urlhaus.abuse.ch/url/239365/","Petras_Simeon"
@@ -117876,7 +118157,7 @@
 "239320","2019-10-06 07:36:36","http://182.75.80.150:46662/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239320/","Petras_Simeon"
 "239319","2019-10-06 07:36:30","http://182.16.175.154:14126/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239319/","Petras_Simeon"
 "239318","2019-10-06 07:36:19","http://181.196.144.130:37751/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239318/","Petras_Simeon"
-"239317","2019-10-06 07:36:06","http://181.177.141.168:8733/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239317/","Petras_Simeon"
+"239317","2019-10-06 07:36:06","http://181.177.141.168:8733/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239317/","Petras_Simeon"
 "239316","2019-10-06 07:36:01","http://181.114.146.104:12088/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239316/","Petras_Simeon"
 "239315","2019-10-06 07:35:46","http://180.211.94.222:54737/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239315/","Petras_Simeon"
 "239314","2019-10-06 07:35:31","http://179.99.2.243:2420/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239314/","Petras_Simeon"
@@ -117967,7 +118248,7 @@
 "239229","2019-10-06 07:21:04","http://31.148.120.121:30286/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239229/","Petras_Simeon"
 "239228","2019-10-06 07:20:59","http://24.135.239.98:22456/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239228/","Petras_Simeon"
 "239227","2019-10-06 07:20:55","http://203.115.102.243:16200/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239227/","Petras_Simeon"
-"239226","2019-10-06 07:20:51","http://202.79.46.30:57770/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239226/","Petras_Simeon"
+"239226","2019-10-06 07:20:51","http://202.79.46.30:57770/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239226/","Petras_Simeon"
 "239225","2019-10-06 07:20:46","http://202.159.123.66:19084/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239225/","Petras_Simeon"
 "239224","2019-10-06 07:20:41","http://201.27.56.103:17301/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239224/","Petras_Simeon"
 "239223","2019-10-06 07:20:09","http://201.1.15.166:14014/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239223/","Petras_Simeon"
@@ -118170,7 +118451,7 @@
 "239025","2019-10-06 06:52:18","http://36.92.111.247:19704/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239025/","Petras_Simeon"
 "239024","2019-10-06 06:52:08","http://36.89.238.91:17941/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239024/","Petras_Simeon"
 "239023","2019-10-06 06:51:59","http://36.79.10.239:52563/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239023/","Petras_Simeon"
-"239022","2019-10-06 06:51:50","http://36.74.74.99:1653/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239022/","Petras_Simeon"
+"239022","2019-10-06 06:51:50","http://36.74.74.99:1653/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239022/","Petras_Simeon"
 "239021","2019-10-06 06:51:42","http://36.71.70.204:32955/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239021/","Petras_Simeon"
 "239020","2019-10-06 06:51:34","http://36.67.122.154:7907/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239020/","Petras_Simeon"
 "239019","2019-10-06 06:51:26","http://36.66.139.36:53736/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/239019/","Petras_Simeon"
@@ -118238,7 +118519,7 @@
 "238953","2019-10-06 06:39:59","http://195.162.70.104:8006/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238953/","Petras_Simeon"
 "238952","2019-10-06 06:39:54","http://194.28.170.115:9651/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238952/","Petras_Simeon"
 "238951","2019-10-06 06:39:39","http://194.187.154.27:44806/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238951/","Petras_Simeon"
-"238950","2019-10-06 06:39:34","http://194.152.35.139:45737/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238950/","Petras_Simeon"
+"238950","2019-10-06 06:39:34","http://194.152.35.139:45737/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238950/","Petras_Simeon"
 "238949","2019-10-06 06:39:31","http://193.92.248.253:59048/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238949/","Petras_Simeon"
 "238948","2019-10-06 06:39:26","http://192.162.194.132:21382/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238948/","Petras_Simeon"
 "238947","2019-10-06 06:39:21","http://191.5.215.52:32180/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238947/","Petras_Simeon"
@@ -118303,7 +118584,7 @@
 "238888","2019-10-06 06:31:36","http://181.112.139.62:38064/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238888/","Petras_Simeon"
 "238887","2019-10-06 06:31:32","http://181.111.163.169:3217/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238887/","Petras_Simeon"
 "238886","2019-10-06 06:31:26","http://180.250.174.42:56330/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238886/","Petras_Simeon"
-"238885","2019-10-06 06:31:18","http://180.248.80.38:6067/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238885/","Petras_Simeon"
+"238885","2019-10-06 06:31:18","http://180.248.80.38:6067/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238885/","Petras_Simeon"
 "238884","2019-10-06 06:31:10","http://179.99.57.86:5622/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238884/","Petras_Simeon"
 "238883","2019-10-06 06:31:04","http://179.99.56.37:22922/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238883/","Petras_Simeon"
 "238882","2019-10-06 06:30:58","http://179.98.216.63:14044/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238882/","Petras_Simeon"
@@ -118378,7 +118659,7 @@
 "238813","2019-10-06 06:18:02","http://117.20.65.76:15481/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238813/","Petras_Simeon"
 "238812","2019-10-06 06:17:56","http://116.193.221.17:48325/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238812/","Petras_Simeon"
 "238811","2019-10-06 06:17:52","http://115.70.135.248:13949/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238811/","Petras_Simeon"
-"238810","2019-10-06 06:17:18","http://111.90.187.162:25638/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238810/","Petras_Simeon"
+"238810","2019-10-06 06:17:18","http://111.90.187.162:25638/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238810/","Petras_Simeon"
 "238809","2019-10-06 06:17:13","http://110.169.33.220:51511/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238809/","Petras_Simeon"
 "238808","2019-10-06 06:17:06","http://110.139.116.233:42635/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238808/","Petras_Simeon"
 "238807","2019-10-06 06:16:54","http://109.94.113.240:15407/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238807/","Petras_Simeon"
@@ -119000,7 +119281,7 @@
 "238158","2019-10-05 10:45:07","http://190.221.35.122:47504/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238158/","Petras_Simeon"
 "238157","2019-10-05 10:44:59","http://190.141.205.6:31056/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238157/","Petras_Simeon"
 "238156","2019-10-05 10:44:50","http://189.68.12.90:53546/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238156/","Petras_Simeon"
-"238155","2019-10-05 10:44:42","http://189.45.44.86:5745/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238155/","Petras_Simeon"
+"238155","2019-10-05 10:44:42","http://189.45.44.86:5745/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238155/","Petras_Simeon"
 "238154","2019-10-05 10:44:36","http://189.0.32.217:12736/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238154/","Petras_Simeon"
 "238153","2019-10-05 10:44:27","http://188.75.240.200:2062/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238153/","Petras_Simeon"
 "238152","2019-10-05 10:44:22","http://188.158.144.127:50712/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238152/","Petras_Simeon"
@@ -119028,7 +119309,7 @@
 "238130","2019-10-05 10:40:38","http://115.134.0.22:63433/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238130/","Petras_Simeon"
 "238129","2019-10-05 10:40:33","http://114.47.112.134:61005/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238129/","Petras_Simeon"
 "238128","2019-10-05 10:40:26","http://1.1.226.93:61093/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238128/","Petras_Simeon"
-"238127","2019-10-05 10:40:21","http://109.248.58.238:50004/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238127/","Petras_Simeon"
+"238127","2019-10-05 10:40:21","http://109.248.58.238:50004/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238127/","Petras_Simeon"
 "238126","2019-10-05 10:40:17","http://103.73.183.53:44671/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238126/","Petras_Simeon"
 "238125","2019-10-05 10:40:12","http://103.209.176.85:54764/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238125/","Petras_Simeon"
 "238124","2019-10-05 10:40:07","http://103.124.173.72:13616/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/238124/","Petras_Simeon"
@@ -122212,7 +122493,7 @@
 "234879","2019-09-24 00:59:03","http://35.193.132.32/bins/owari.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/234879/","zbetcheckin"
 "234878","2019-09-23 22:36:17","http://systemgooglegooglegooglegooglegooglegoole.warzonedns.com/stsan/stsan.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/234878/","p5yb34m"
 "234877","2019-09-23 22:36:15","http://systemgooglegooglegooglegooglegooglegoole.warzonedns.com/stsan/sddsdddsdsdsdsd.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/234877/","p5yb34m"
-"234876","2019-09-23 22:31:07","http://yiyangjz.cn/wordpress/ysffVVcH/","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/234876/","Cryptolaemus1"
+"234876","2019-09-23 22:31:07","http://yiyangjz.cn/wordpress/ysffVVcH/","online","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/234876/","Cryptolaemus1"
 "234875","2019-09-23 22:31:04","http://vipcanadatours.com/wp-admin/20tikuee4l_88vynz4-856181111/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/234875/","Cryptolaemus1"
 "234874","2019-09-23 22:31:02","http://womenzie.com/wp-includes/x55z1ue_8o60gw-0988890/","offline","malware_download","emotet,epoch2","https://urlhaus.abuse.ch/url/234874/","Cryptolaemus1"
 "234873","2019-09-23 22:29:34","http://angelicaevelyn.com/wp-admin/cbo60/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/234873/","Cryptolaemus1"
@@ -123510,7 +123791,7 @@
 "233540","2019-09-20 10:35:07","http://facevalu.es/wp-admin/css/colors/blue/2c.jpg","offline","malware_download","Ransomware,Shade","https://urlhaus.abuse.ch/url/233540/","JAMESWT_MHT"
 "233539","2019-09-20 10:35:05","http://maximzaytsev.com/wp-content/themes/zaytsev2/fonts/2c.jpg","offline","malware_download","Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/233539/","JAMESWT_MHT"
 "233538","2019-09-20 10:34:20","http://valerieheslop.co.uk/templates/beez_20/fonts/doc/","offline","malware_download","downloader,js,Shade,zip","https://urlhaus.abuse.ch/url/233538/","JAMESWT_MHT"
-"233537","2019-09-20 10:34:16","http://activecost.com.au/wp-admin/css/colors/blue/xls/","offline","malware_download","downloader,js,Shade,zip","https://urlhaus.abuse.ch/url/233537/","JAMESWT_MHT"
+"233537","2019-09-20 10:34:16","http://activecost.com.au/wp-admin/css/colors/blue/xls/","online","malware_download","downloader,js,Shade,zip","https://urlhaus.abuse.ch/url/233537/","JAMESWT_MHT"
 "233536","2019-09-20 10:33:39","http://interyouth.net/wp-admin/css/colors/blue/xls/","offline","malware_download","downloader,js,Shade,zip","https://urlhaus.abuse.ch/url/233536/","JAMESWT_MHT"
 "233535","2019-09-20 10:33:37","http://karinaagency.com/templates/final/html/xls/","offline","malware_download","downloader,js,Shade,zip","https://urlhaus.abuse.ch/url/233535/","JAMESWT_MHT"
 "233534","2019-09-20 10:33:34","http://sat1000.org/dating/images/doc/","offline","malware_download","downloader,js,Shade,zip","https://urlhaus.abuse.ch/url/233534/","JAMESWT_MHT"
@@ -124357,7 +124638,7 @@
 "232650","2019-09-17 23:33:03","http://185.203.236.46/bins/RwmRemastered.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/232650/","zbetcheckin"
 "232649","2019-09-17 23:28:02","http://23.254.161.249/bins/hoho.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/232649/","zbetcheckin"
 "232648","2019-09-17 23:19:04","http://thequilterscorner.com.au/images/uploads/thequiltscorner.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232648/","zbetcheckin"
-"232647","2019-09-17 23:10:36","http://downcdn.xianshuabao.com/download/2.0.3/%E7%99%BE%E5%BA%A6%E8%87%AA%E7%84%B6%E6%B5%81%E9%87%8F/%E7%BA%BF%E5%88%B7%E5%AE%9D_V2.0.3.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/232647/","zbetcheckin"
+"232647","2019-09-17 23:10:36","http://downcdn.xianshuabao.com/download/2.0.3/%E7%99%BE%E5%BA%A6%E8%87%AA%E7%84%B6%E6%B5%81%E9%87%8F/%E7%BA%BF%E5%88%B7%E5%AE%9D_V2.0.3.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232647/","zbetcheckin"
 "232646","2019-09-17 22:57:17","http://hooksindia.com/anyiazo.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232646/","zbetcheckin"
 "232645","2019-09-17 21:54:08","https://xn--80abghbpe9aidnhd0a3ntb.xn--p1ai/wp-content/0487311637/IlNhofgPohXe/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/232645/","Cryptolaemus1"
 "232644","2019-09-17 21:54:06","https://www.sahabatsablon.com/wellsfargo_secure/paclm/BPyNrngbuOLnIIlFuwjCYjdZZMaWiN/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/232644/","Cryptolaemus1"
@@ -124538,7 +124819,7 @@
 "232465","2019-09-17 13:59:15","http://185.250.240.84/files/Black.rtf","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/232465/","zbetcheckin"
 "232464","2019-09-17 13:54:04","http://31.45.196.86:10697/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/232464/","zbetcheckin"
 "232463","2019-09-17 13:50:08","http://down.soft.flyidea.top/xpresszip/xpresszipinstall-4688.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232463/","zbetcheckin"
-"232462","2019-09-17 13:43:22","http://downcdn.xianshuabao.com/download/1.9.1/shuajicom/%E7%BA%BF%E5%88%B7%E5%AE%9D_V1.9.1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/232462/","zbetcheckin"
+"232462","2019-09-17 13:43:22","http://downcdn.xianshuabao.com/download/1.9.1/shuajicom/%E7%BA%BF%E5%88%B7%E5%AE%9D_V1.9.1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232462/","zbetcheckin"
 "232461","2019-09-17 13:40:21","http://down.soft.flyidea.top/xpresszip/XpressZipInstall-4721.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232461/","zbetcheckin"
 "232460","2019-09-17 13:36:14","http://down.soft.flyidea.top/xpresszip/xpresszipinstall-4711.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232460/","zbetcheckin"
 "232459","2019-09-17 13:36:08","http://down.soft.flyidea.top/Licecap/LiceCapInstall-4723.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232459/","zbetcheckin"
@@ -124551,9 +124832,9 @@
 "232452","2019-09-17 13:20:32","https://larissalinhares.com.br/wp-admin/ttzTQwatYY/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/232452/","Cryptolaemus1"
 "232451","2019-09-17 13:20:28","https://www.xinlou.info/wp-content/zomusjj_rgsps3-791960/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/232451/","Cryptolaemus1"
 "232450","2019-09-17 13:20:15","https://www.59055.cn/wp-content/f7c18_onqapey8-49048/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/232450/","Cryptolaemus1"
-"232449","2019-09-17 13:18:17","http://downcdn.xianshuabao.com/download/1.9.4/%E4%B8%89%E6%98%9F_shuajibaocom/%E4%B8%89%E6%98%9F%E5%88%B7%E6%9C%BA%E5%B7%A5%E5%85%B7_v1.9.4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/232449/","zbetcheckin"
-"232448","2019-09-17 13:17:39","http://downcdn.xianshuabao.com/download/2.0.3/%E7%BA%BF%E5%88%B7%E5%AE%9D_shuajibaocom/%E7%BA%BF%E5%88%B7%E5%AE%9D_V2.0.3.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/232448/","zbetcheckin"
-"232447","2019-09-17 13:12:36","http://downcdn.xianshuabao.com/download/2.0.3/%E5%B0%8F%E7%B1%B3_shuajibaocom/%E5%B0%8F%E7%B1%B3%E5%88%B7%E6%9C%BA%E5%B7%A5%E5%85%B7_v2.0.3.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/232447/","zbetcheckin"
+"232449","2019-09-17 13:18:17","http://downcdn.xianshuabao.com/download/1.9.4/%E4%B8%89%E6%98%9F_shuajibaocom/%E4%B8%89%E6%98%9F%E5%88%B7%E6%9C%BA%E5%B7%A5%E5%85%B7_v1.9.4.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232449/","zbetcheckin"
+"232448","2019-09-17 13:17:39","http://downcdn.xianshuabao.com/download/2.0.3/%E7%BA%BF%E5%88%B7%E5%AE%9D_shuajibaocom/%E7%BA%BF%E5%88%B7%E5%AE%9D_V2.0.3.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232448/","zbetcheckin"
+"232447","2019-09-17 13:12:36","http://downcdn.xianshuabao.com/download/2.0.3/%E5%B0%8F%E7%B1%B3_shuajibaocom/%E5%B0%8F%E7%B1%B3%E5%88%B7%E6%9C%BA%E5%B7%A5%E5%85%B7_v2.0.3.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/232447/","zbetcheckin"
 "232446","2019-09-17 12:27:07","http://hrpm.ca/hrExport/pos/shao.jpg","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/232446/","JAMESWT_MHT"
 "232445","2019-09-17 12:27:05","http://hrpm.ca/hrExport/pos/success.php","offline","malware_download","Trickbot","https://urlhaus.abuse.ch/url/232445/","JAMESWT_MHT"
 "232444","2019-09-17 12:26:04","http://www.illtaketwo.co.uk/Maersk%20Shipping%20AWB.exe","offline","malware_download","NetWire","https://urlhaus.abuse.ch/url/232444/","JAMESWT_MHT"
@@ -125822,7 +126103,7 @@
 "231114","2019-09-13 12:33:08","http://hooksindia.com/anyipx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/231114/","abuse_ch"
 "231113","2019-09-13 12:28:02","http://178.33.14.208/zehir/z3hir.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/231113/","zbetcheckin"
 "231112","2019-09-13 12:19:03","http://wirelord.us/img/IHVOIN.Doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/231112/","abuse_ch"
-"231111","2019-09-13 12:14:18","http://zsinstrument.com/js/pout/revc.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/231111/","zbetcheckin"
+"231111","2019-09-13 12:14:18","http://zsinstrument.com/js/pout/revc.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/231111/","zbetcheckin"
 "231110","2019-09-13 12:14:05","http://alanvarin2.hopto.org/upload/2342.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/231110/","zbetcheckin"
 "231109","2019-09-13 12:14:03","https://m.put.re/xr4pH4LD.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/231109/","zbetcheckin"
 "231108","2019-09-13 12:06:08","http://alkutechsllc.com/ACH%20Payment/invoice.exe","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/231108/","zbetcheckin"
@@ -125968,7 +126249,7 @@
 "230956","2019-09-13 04:48:29","http://mailserv93fd.world/stx777.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/230956/","JayTHL"
 "230955","2019-09-13 04:48:18","http://mailserv93fd.world/pix777.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/230955/","JayTHL"
 "230954","2019-09-13 04:48:16","http://mailserv93fd.world/yam.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/230954/","JayTHL"
-"230953","2019-09-13 04:48:14","http://zsinstrument.com/js/pout/nann.exe","offline","malware_download","NanoCore","https://urlhaus.abuse.ch/url/230953/","James_inthe_box"
+"230953","2019-09-13 04:48:14","http://zsinstrument.com/js/pout/nann.exe","online","malware_download","NanoCore","https://urlhaus.abuse.ch/url/230953/","James_inthe_box"
 "230952","2019-09-13 04:48:09","http://mailserv93fd.world/hil777.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/230952/","JayTHL"
 "230951","2019-09-13 04:48:05","http://mailserv93fd.world/fun777.exe","offline","malware_download","MedusaHTTP","https://urlhaus.abuse.ch/url/230951/","JayTHL"
 "230950","2019-09-13 04:48:03","http://mailserv93fd.world/sid.exe","offline","malware_download","KPOTStealer","https://urlhaus.abuse.ch/url/230950/","JayTHL"
@@ -126548,7 +126829,7 @@
 "230357","2019-09-10 21:58:02","http://185.244.25.60/bins/owari.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/230357/","zbetcheckin"
 "230356","2019-09-10 21:21:05","https://thebaptistfoundationofca.com/management/personal.emf","offline","malware_download","CAN,exe,geofenced,Trickbot","https://urlhaus.abuse.ch/url/230356/","anonymous"
 "230355","2019-09-10 21:21:02","https://albionhillpropertydevelo-my.sharepoint.com/:u:/g/personal/accounts_leicesterstudents_co_uk/Ea94j2Pp5mhMu8p5Sn7qxYAB_XhwhwpPWIo32J-HWYfP4Q?download=1&locale=en_CA?78ImAzLRMPZ=78ImAzLRMPZ&cta=viewinvoicenow","offline","malware_download","CAN,Trickbot,vbs,zip","https://urlhaus.abuse.ch/url/230355/","anonymous"
-"230354","2019-09-10 20:40:09","http://news.abfakerman.ir/wp-content/uploads/2019/09/copious_99cnC.zip","offline","malware_download","qbot","https://urlhaus.abuse.ch/url/230354/","p5yb34m"
+"230354","2019-09-10 20:40:09","http://news.abfakerman.ir/wp-content/uploads/2019/09/copious_99cnC.zip","online","malware_download","qbot","https://urlhaus.abuse.ch/url/230354/","p5yb34m"
 "230353","2019-09-10 20:25:05","http://23.82.185.164/bins/Hilix.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/230353/","zbetcheckin"
 "230352","2019-09-10 20:25:03","http://23.82.185.164/bins/Hilix.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/230352/","zbetcheckin"
 "230351","2019-09-10 20:24:04","http://23.82.185.164/bins/Hilix.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/230351/","zbetcheckin"
@@ -127729,7 +128010,7 @@
 "229148","2019-09-05 00:24:30","http://foodera.co/wp-includes/ID3/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/229148/","zbetcheckin"
 "229147","2019-09-04 22:29:08","http://rollscar.pk/update.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/229147/","zbetcheckin"
 "229146","2019-09-04 22:24:55","http://sgpf.eu/support/microsoft/help.exe","offline","malware_download","exe,njRAT","https://urlhaus.abuse.ch/url/229146/","zbetcheckin"
-"229145","2019-09-04 22:24:53","http://down.xrpdf.com/softdownload/xrpdf5050.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/229145/","zbetcheckin"
+"229145","2019-09-04 22:24:53","http://down.xrpdf.com/softdownload/xrpdf5050.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/229145/","zbetcheckin"
 "229144","2019-09-04 20:29:03","http://gdfdfv.ru/nwfsd43_signed.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/229144/","zbetcheckin"
 "229143","2019-09-04 20:21:04","http://acsetup5.icu/eu/2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/229143/","zbetcheckin"
 "229142","2019-09-04 20:12:03","http://5.56.133.111/AMANI0309.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/229142/","zbetcheckin"
@@ -127950,7 +128231,7 @@
 "228927","2019-09-03 17:09:20","http://jppost-ge.co/jppost.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/228927/","JayTHL"
 "228926","2019-09-03 17:09:15","http://jppost-ga.co/jppost.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/228926/","JayTHL"
 "228925","2019-09-03 17:09:11","http://jppost-pe.com/jppost.apk","offline","malware_download","None","https://urlhaus.abuse.ch/url/228925/","JayTHL"
-"228924","2019-09-03 17:07:10","http://www.handrush.com/wp-content/plugins/akismet/views/YangheLove.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/228924/","zbetcheckin"
+"228924","2019-09-03 17:07:10","http://www.handrush.com/wp-content/plugins/akismet/views/YangheLove.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/228924/","zbetcheckin"
 "228923","2019-09-03 17:02:14","http://www.handrush.com/wp-content/plugins/akismet/views/aw4hgpo.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/228923/","zbetcheckin"
 "228922","2019-09-03 16:57:15","http://xn--t8j4c442p5ikj4z.xyz/common/css/2c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/228922/","zbetcheckin"
 "228921","2019-09-03 16:53:18","http://absetup6.icu/ussetup.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/228921/","zbetcheckin"
@@ -128134,7 +128415,7 @@
 "228741","2019-09-02 22:13:17","http://45.76.47.156/bins.sh","offline","malware_download","None","https://urlhaus.abuse.ch/url/228741/","bjornruberg"
 "228740","2019-09-02 22:13:14","http://www.innova.com.pe/wp-content/uploads/2017/04/a/wwininilog.txt","offline","malware_download","AgentTesla,exe,Kpot,KPOTStealer,stealer","https://urlhaus.abuse.ch/url/228740/","Racco42"
 "228739","2019-09-02 22:12:47","http://rladnsdud3.cafe24.com/HackSever/login/Encrypted.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/228739/","P3pperP0tts"
-"228738","2019-09-02 22:10:40","http://ghwls44.gabia.io/svchost.exe","offline","malware_download","njRAT","https://urlhaus.abuse.ch/url/228738/","P3pperP0tts"
+"228738","2019-09-02 22:10:40","http://ghwls44.gabia.io/svchost.exe","online","malware_download","njRAT","https://urlhaus.abuse.ch/url/228738/","P3pperP0tts"
 "228737","2019-09-02 21:52:08","https://cdn.discordapp.com/attachments/493720209014915074/618065969746804786/SkypeHost.jpg","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/228737/","Racco42"
 "228736","2019-09-02 21:52:05","http://idrisselmehdi.com/fr/BA5AF37CFE7A81848CAC.zip","offline","malware_download","banker,trojan,zip","https://urlhaus.abuse.ch/url/228736/","anonymous"
 "228735","2019-09-02 21:49:26","http://45.76.47.156/Demon.ppc440fp","offline","malware_download","None","https://urlhaus.abuse.ch/url/228735/","bjornruberg"
@@ -129804,7 +130085,7 @@
 "227039","2019-08-26 09:11:07","http://209.97.142.42/bins/UnHAnaAW.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/227039/","zbetcheckin"
 "227038","2019-08-26 09:11:04","http://209.97.142.42/bins/UnHAnaAW.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/227038/","zbetcheckin"
 "227037","2019-08-26 09:11:03","http://209.97.142.42/bins/UnHAnaAW.mpsl","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/227037/","zbetcheckin"
-"227036","2019-08-26 09:06:44","http://www.handrush.com/wp-content/plugins/akismet/views/movecryp30k.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/227036/","zbetcheckin"
+"227036","2019-08-26 09:06:44","http://www.handrush.com/wp-content/plugins/akismet/views/movecryp30k.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/227036/","zbetcheckin"
 "227035","2019-08-26 09:06:23","http://www.mrjattz.com/wp-content/themes/islemag/ti-prevdem/img/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/227035/","zbetcheckin"
 "227034","2019-08-26 09:06:14","http://www.handrush.com/wp-content/plugins/akismet/views/BohMave.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/227034/","zbetcheckin"
 "227033","2019-08-26 09:06:03","http://209.97.142.42/bins/UnHAnaAW.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/227033/","zbetcheckin"
@@ -133037,7 +133318,7 @@
 "223735","2019-08-11 05:16:04","http://hgjkd.ru/nwdcre4_signed.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/223735/","zbetcheckin"
 "223734","2019-08-11 04:24:05","http://40.89.175.73/bins/distortion.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/223734/","zbetcheckin"
 "223733","2019-08-11 04:24:03","http://40.89.175.73/bins/distortion.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/223733/","zbetcheckin"
-"223732","2019-08-11 01:17:33","http://res.uf1.cn/web/uploads/20190730/c17fd5cbf52bb6d7c9b5222fbb13d263.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/223732/","zbetcheckin"
+"223732","2019-08-11 01:17:33","http://res.uf1.cn/web/uploads/20190730/c17fd5cbf52bb6d7c9b5222fbb13d263.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/223732/","zbetcheckin"
 "223731","2019-08-10 20:31:03","http://185.183.96.26/tin.png","offline","malware_download","exe","https://urlhaus.abuse.ch/url/223731/","abuse_ch"
 "223730","2019-08-10 20:31:02","http://185.183.96.26/sin.png","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/223730/","abuse_ch"
 "223729","2019-08-10 20:25:13","http://sevenj.club/files/svhosts.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/223729/","abuse_ch"
@@ -134176,7 +134457,7 @@
 "222593","2019-08-06 06:58:04","http://46.101.134.199/Demon.sh4","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/222593/","zbetcheckin"
 "222592","2019-08-06 06:58:02","http://45.95.147.15/bins/slump.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/222592/","zbetcheckin"
 "222591","2019-08-06 06:47:05","http://intras24.nichost.ru/errordocs/style/1c.jpg","offline","malware_download","GandCrab,Troldesh","https://urlhaus.abuse.ch/url/222591/","JAMESWT_MHT"
-"222590","2019-08-06 06:47:03","http://m93701t2.beget.tech/sitemaps/1c.jpg","online","malware_download","Troldesh","https://urlhaus.abuse.ch/url/222590/","JAMESWT_MHT"
+"222590","2019-08-06 06:47:03","http://m93701t2.beget.tech/sitemaps/1c.jpg","offline","malware_download","Troldesh","https://urlhaus.abuse.ch/url/222590/","JAMESWT_MHT"
 "222589","2019-08-06 06:41:51","http://192.99.167.75/i-5.8-6.SNOOPY","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/222589/","zbetcheckin"
 "222588","2019-08-06 06:41:19","http://167.99.125.11/Demon.i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/222588/","zbetcheckin"
 "222587","2019-08-06 06:41:17","http://165.22.211.81/sh","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/222587/","zbetcheckin"
@@ -138997,7 +139278,7 @@
 "217619","2019-07-17 23:56:05","http://lectual.net/jj/jj.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/217619/","zbetcheckin"
 "217617","2019-07-17 20:59:05","http://stingersrestaurant.com/wp-admin/js/firefox.bin","offline","malware_download","Dridex,Dridex-loader","https://urlhaus.abuse.ch/url/217617/","James_inthe_box"
 "217616","2019-07-17 20:25:15","http://kimotokisen.com/m/put.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/217616/","zbetcheckin"
-"217615","2019-07-17 20:17:07","http://download.ktkt.com/setupktpro_v1.1.8.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/217615/","zbetcheckin"
+"217615","2019-07-17 20:17:07","http://download.ktkt.com/setupktpro_v1.1.8.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/217615/","zbetcheckin"
 "217614","2019-07-17 20:05:08","http://4wereareyou.icu/us/2.exe","offline","malware_download","exe,racoon","https://urlhaus.abuse.ch/url/217614/","cocaman"
 "217613","2019-07-17 20:05:04","http://4wereareyou.icu/us/1.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/217613/","cocaman"
 "217611","2019-07-17 20:04:05","http://4wereareyou.icu/us/loader.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/217611/","cocaman"
@@ -139110,7 +139391,7 @@
 "217501","2019-07-17 07:54:08","http://cilico.com/HTP.jpg","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/217501/","zbetcheckin"
 "217500","2019-07-17 07:54:06","http://cilico.com/NET.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/217500/","zbetcheckin"
 "217499","2019-07-17 07:54:02","http://80.211.36.172/hoho.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/217499/","zbetcheckin"
-"217498","2019-07-17 07:36:11","https://codeload.github.com/Visgean/Zeus/zip/translation","online","malware_download","zip","https://urlhaus.abuse.ch/url/217498/","zbetcheckin"
+"217498","2019-07-17 07:36:11","https://codeload.github.com/Visgean/Zeus/zip/translation","offline","malware_download","zip","https://urlhaus.abuse.ch/url/217498/","zbetcheckin"
 "217497","2019-07-17 07:30:08","http://fcamylleibrahim.top/sywo/fgoow.php?l=dxclass11.gxl","offline","malware_download","exe,geofenced,Gozi,ITA","https://urlhaus.abuse.ch/url/217497/","anonymous"
 "217496","2019-07-17 07:30:07","http://fcamylleibrahim.top/sywo/fgoow.php?l=dxclass10.gxl","offline","malware_download","exe,geofenced,Gozi,ITA","https://urlhaus.abuse.ch/url/217496/","anonymous"
 "217490","2019-07-17 07:30:07","http://fcamylleibrahim.top/sywo/fgoow.php?l=dxclass4.gxl","offline","malware_download","exe,geofenced,Gozi,ITA","https://urlhaus.abuse.ch/url/217490/","anonymous"
@@ -139123,7 +139404,7 @@
 "217488","2019-07-17 07:30:06","http://fcamylleibrahim.top/sywo/fgoow.php?l=dxclass2.gxl","offline","malware_download","exe,geofenced,Gozi,ITA","https://urlhaus.abuse.ch/url/217488/","anonymous"
 "217489","2019-07-17 07:30:06","http://fcamylleibrahim.top/sywo/fgoow.php?l=dxclass3.gxl","offline","malware_download","exe,geofenced,Gozi,ITA","https://urlhaus.abuse.ch/url/217489/","anonymous"
 "217486","2019-07-17 07:18:04","https://codeload.github.com/MeteorAdminz/hidden-tear/zip/master","online","malware_download","zip","https://urlhaus.abuse.ch/url/217486/","zbetcheckin"
-"217485","2019-07-17 07:10:41","https://codeload.github.com/beefproject/beef/zip/beef-0.4.6.1","online","malware_download","zip","https://urlhaus.abuse.ch/url/217485/","zbetcheckin"
+"217485","2019-07-17 07:10:41","https://codeload.github.com/beefproject/beef/zip/beef-0.4.6.1","offline","malware_download","zip","https://urlhaus.abuse.ch/url/217485/","zbetcheckin"
 "217484","2019-07-17 07:07:05","http://45.67.14.181/pld/output.exe","offline","malware_download","AZORult","https://urlhaus.abuse.ch/url/217484/","anonymous"
 "217483","2019-07-17 07:07:03","https://www.dropbox.com/s/d32w26npiw44vfk/Purchase%20Order2019-00129.zip?dl=1","offline","malware_download","AZORult,lnk,zip","https://urlhaus.abuse.ch/url/217483/","anonymous"
 "217482","2019-07-17 06:52:24","http://taskulitbanyuwangi.com/wp-content/themes/lapax1.2.3c/fonts/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/217482/","zbetcheckin"
@@ -145713,7 +145994,7 @@
 "210775","2019-06-20 21:31:04","http://sharefile.annportercakes.info/citrix/downloads/notice.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/210775/","zbetcheckin"
 "210774","2019-06-20 21:31:03","http://doraraltareeq.com.sa/a/a.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/210774/","zbetcheckin"
 "210773","2019-06-20 21:23:07","http://jt-surabaya.online/wp-includes/81786017e4061ae9a0d388c28c08f0cf/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/210773/","zbetcheckin"
-"210772","2019-06-20 21:19:45","http://update.my.99.com/my/3975-3979.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/210772/","zbetcheckin"
+"210772","2019-06-20 21:19:45","http://update.my.99.com/my/3975-3979.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/210772/","zbetcheckin"
 "210771","2019-06-20 21:15:06","http://babyboncel.site/wp-includes/8a99efb415fee84583ffff0bf5d1f141/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/210771/","zbetcheckin"
 "210770","2019-06-20 19:49:04","http://185.82.200.189/yzwp/p.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/210770/","abuse_ch"
 "210769","2019-06-20 19:49:03","http://185.82.200.189/yzwp/2.jpg","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/210769/","abuse_ch"
@@ -145961,7 +146242,7 @@
 "210527","2019-06-20 01:47:03","http://51.79.53.247/lmaoWTF/loligang.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/210527/","zbetcheckin"
 "210526","2019-06-20 01:47:02","http://51.79.53.247/lmaoWTF/loligang.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/210526/","zbetcheckin"
 "210525","2019-06-20 01:39:07","http://fakers.co.jp/20.06.2019_130.22.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/210525/","zbetcheckin"
-"210524","2019-06-20 01:06:53","http://indonesias.me:9998/c64.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/210524/","zbetcheckin"
+"210524","2019-06-20 01:06:53","http://indonesias.me:9998/c64.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/210524/","zbetcheckin"
 "210523","2019-06-20 00:37:03","http://179.43.147.77/pm1","offline","malware_download","msi","https://urlhaus.abuse.ch/url/210523/","zbetcheckin"
 "210521","2019-06-20 00:20:06","http://46.101.218.87/bins/BaCkTrAcK.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/210521/","zbetcheckin"
 "210520","2019-06-20 00:20:06","http://46.101.218.87:80/bins/BaCkTrAcK.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/210520/","zbetcheckin"
@@ -150670,7 +150951,7 @@
 "205801","2019-06-03 14:32:03","http://enosburgreading.pbworks.com/f/Capone+Character+Scrapbook.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/205801/","zbetcheckin"
 "205800","2019-06-03 14:31:02","https://comteconerneraphedb.info/awvword7.tmp","offline","malware_download","DEU,exe,GandCrab,Ransomware","https://urlhaus.abuse.ch/url/205800/","anonymous"
 "205799","2019-06-03 14:24:09","http://atfile.com/ftp/data/02/CapZZang_Installer.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/205799/","zbetcheckin"
-"205798","2019-06-03 14:20:39","http://fastsoft.onlinedown.net/down/onekeyyijianhuanyuan.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/205798/","zbetcheckin"
+"205798","2019-06-03 14:20:39","http://fastsoft.onlinedown.net/down/onekeyyijianhuanyuan.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/205798/","zbetcheckin"
 "205797","2019-06-03 14:20:03","http://hawaiimli.pbworks.com/f/Architect.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/205797/","zbetcheckin"
 "205796","2019-06-03 14:04:06","http://wjhslanguagearts.pbworks.com/f/Holocaust+Plans+Revised.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/205796/","zbetcheckin"
 "205795","2019-06-03 14:04:05","http://msthompsonsclass.pbworks.com/f/Circlemaps.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/205795/","zbetcheckin"
@@ -150896,7 +151177,7 @@
 "205575","2019-06-02 10:06:03","http://95.214.113.221/bins/_-255.Net.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/205575/","zbetcheckin"
 "205574","2019-06-02 10:06:02","http://95.214.113.221/bins/_-255.Net.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/205574/","zbetcheckin"
 "205573","2019-06-02 10:01:06","http://1.34.168.211:6716/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/205573/","zbetcheckin"
-"205572","2019-06-02 09:48:29","http://k.ludong.tv/11PINGTAI/collegeenglish3/resource/syntax/yufa.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/205572/","zbetcheckin"
+"205572","2019-06-02 09:48:29","http://k.ludong.tv/11PINGTAI/collegeenglish3/resource/syntax/yufa.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/205572/","zbetcheckin"
 "205570","2019-06-02 09:03:03","http://95.214.113.221/bins/_-255.Net.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/205570/","zbetcheckin"
 "205569","2019-06-02 07:35:04","http://23.254.132.182/bins/hoho.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/205569/","zbetcheckin"
 "205568","2019-06-02 07:34:04","http://23.254.132.182:80/bins/hoho.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/205568/","zbetcheckin"
@@ -151418,7 +151699,7 @@
 "205052","2019-05-31 13:50:11","http://emacsoft.com/wp-content/Document/eGMTPjbSuEYBdrlFEIWLcFVARyFx/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/205052/","spamhaus"
 "205051","2019-05-31 13:42:06","http://viacomercial.com/mcc/Pages/scrmv1hnzwbg_83uqjsdcsh-420052296/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/205051/","spamhaus"
 "205050","2019-05-31 13:36:03","http://alya-international.com/wp-admin/zBTpEfnVpAuYpVwHsIjxNhnBTS/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/205050/","spamhaus"
-"205049","2019-05-31 13:32:13","http://ziliao.yunkaodian.com/all/ykdtest.exe","offline","malware_download","exe,GandCrab","https://urlhaus.abuse.ch/url/205049/","zbetcheckin"
+"205049","2019-05-31 13:32:13","http://ziliao.yunkaodian.com/all/ykdtest.exe","online","malware_download","exe,GandCrab","https://urlhaus.abuse.ch/url/205049/","zbetcheckin"
 "205048","2019-05-31 13:32:09","http://fullmoon.co.jp/wp-content/lm/RudddNZosVkYVAsOEgUKCw/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/205048/","spamhaus"
 "205047","2019-05-31 13:22:05","http://rubiz.smartsho.ir/wp-includes/sites/eUbvKLQYIuVdSZj/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/205047/","spamhaus"
 "205046","2019-05-31 13:16:04","http://elres.sk/tmp/install_51bb98598b536/mod_flexi_customcode_UNZIP_1st/1c.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/205046/","zbetcheckin"
@@ -152768,7 +153049,7 @@
 "203697","2019-05-29 22:55:03","http://softhotel.com/cgi-bin/hsKPeXHFNs/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203697/","spamhaus"
 "203696","2019-05-29 22:54:02","http://sneezy.be/files/lm/trlnuyp6txuxkahdf140m_b2ofh0v-1283763430810/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203696/","spamhaus"
 "203695","2019-05-29 22:46:02","http://snippen.de/301/sites/ICmlFyqgGCmcBnjoVnpOGzHE/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203695/","spamhaus"
-"203694","2019-05-29 22:43:40","http://download.ktkt.com/setupKtkt_V2.0.6.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/203694/","zbetcheckin"
+"203694","2019-05-29 22:43:40","http://download.ktkt.com/setupKtkt_V2.0.6.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/203694/","zbetcheckin"
 "203693","2019-05-29 22:40:03","http://solutions4brands.com/CREATion_files/INC/ka96r6o5ysrymdmfs9r_kplh9-4260408219/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203693/","Cryptolaemus1"
 "203692","2019-05-29 22:38:03","http://softem.de/TSV_1861_Mainburg/Pages/IhTNCxjEfBayZzNzqUKWY/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203692/","spamhaus"
 "203691","2019-05-29 22:34:06","http://dreamtrips.icu/dreamtrips_us1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/203691/","zbetcheckin"
@@ -152782,7 +153063,7 @@
 "203683","2019-05-29 22:19:03","http://spideronfire.com/css/esp/lhtbsyThX/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203683/","Cryptolaemus1"
 "203682","2019-05-29 22:17:12","http://www.whgaty.com/gs.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/203682/","zbetcheckin"
 "203681","2019-05-29 22:16:02","http://spiritofbeauty.de/AGBs/FILE/KZQzKdKpSJJQRiBAepUIdJlD/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203681/","spamhaus"
-"203680","2019-05-29 22:12:37","http://download.ktkt.com/setupKtPro_V1.0.4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/203680/","zbetcheckin"
+"203680","2019-05-29 22:12:37","http://download.ktkt.com/setupKtPro_V1.0.4.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/203680/","zbetcheckin"
 "203679","2019-05-29 22:12:11","http://tncnet.com/images/yh050r_w6ser-9083/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/203679/","Cryptolaemus1"
 "203678","2019-05-29 22:12:08","http://tittgen.eu/iXOWCOaq/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/203678/","Cryptolaemus1"
 "203677","2019-05-29 22:12:08","https://tecnocrimp.com/administrator/KkGEhGES/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/203677/","Cryptolaemus1"
@@ -152870,7 +153151,7 @@
 "203595","2019-05-29 18:58:05","http://siranagi.sakura.ne.jp/201611/4tyn6g6083pgtqzcieoz6y2cc2z0b_5db7in3ch3-6524113546/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203595/","spamhaus"
 "203594","2019-05-29 18:55:04","http://sampling-group.com/local-cgi/DOC/b1qyz9zd6u7fkraw74s4h2_67zmznv-7279456399299/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203594/","spamhaus"
 "203593","2019-05-29 18:50:05","http://schockenhoff.net/cgi-bin/SUljGppBcglbQygpSLapbPaSpHg/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203593/","spamhaus"
-"203592","2019-05-29 18:49:46","http://download.ktkt.com/setupktkt_v2.0.9.exe","online","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/203592/","zbetcheckin"
+"203592","2019-05-29 18:49:46","http://download.ktkt.com/setupktkt_v2.0.9.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/203592/","zbetcheckin"
 "203591","2019-05-29 18:46:03","http://timdudley.net/piano/DOC/DuOnqJSi/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203591/","spamhaus"
 "203590","2019-05-29 18:40:03","https://tischlereigrund.de/cgi-bin/DOC/hjhh4vqnlgf1bp_y3a4z-779938398181/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203590/","spamhaus"
 "203589","2019-05-29 18:37:04","http://elitetoys.dk/alcotell.com/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/203589/","zbetcheckin"
@@ -153301,7 +153582,7 @@
 "203160","2019-05-28 20:28:02","http://planologia.com/mail/parts_service/cn1yathgn1rs0_mhayfznqy0-143270358110018/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203160/","spamhaus"
 "203159","2019-05-28 20:14:03","https://popitnot.com/List/lm/mttsPaXTDb/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203159/","spamhaus"
 "203158","2019-05-28 20:07:05","http://sewamobilmurahdibali.co.id/wp-admin/sites/p6l77hrpl3a6btaqtg6izcmez_8utwvfzzk4-9823369595449/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/203158/","spamhaus"
-"203157","2019-05-28 20:06:16","http://hseda.com/download/qt51crk.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/203157/","zbetcheckin"
+"203157","2019-05-28 20:06:16","http://hseda.com/download/qt51crk.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/203157/","zbetcheckin"
 "203156","2019-05-28 20:06:14","http://nathanhubble.com/gallery/01/TheCooters-Photos.scr","offline","malware_download","exe","https://urlhaus.abuse.ch/url/203156/","zbetcheckin"
 "203155","2019-05-28 20:06:14","http://trm.cn/ggt/6-18C.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/203155/","zbetcheckin"
 "203154","2019-05-28 20:06:09","http://reservoirhill.org/reserv.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/203154/","zbetcheckin"
@@ -154523,7 +154804,7 @@
 "201931","2019-05-25 22:45:02","http://205.185.126.154/AB4g5/Extendo.ppc","offline","malware_download","None","https://urlhaus.abuse.ch/url/201931/","JayTHL"
 "201930","2019-05-25 22:44:32","http://205.185.126.154/AB4g5/Extendo.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/201930/","Gandylyan1"
 "201929","2019-05-25 22:29:06","http://lt02.datacomspecialists.net/labtech/transfer/tools/produkey64.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/201929/","zbetcheckin"
-"201928","2019-05-25 22:28:36","http://tup.com.cn/upload/books/kj/079629-01.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/201928/","zbetcheckin"
+"201928","2019-05-25 22:28:36","http://tup.com.cn/upload/books/kj/079629-01.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/201928/","zbetcheckin"
 "201927","2019-05-25 22:16:02","http://188.227.19.18/razdzn","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/201927/","zbetcheckin"
 "201926","2019-05-25 22:15:32","http://188.227.19.18/qtmzbn","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/201926/","zbetcheckin"
 "201925","2019-05-25 22:14:02","http://188.227.19.18/atxhua","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/201925/","zbetcheckin"
@@ -156762,7 +157043,7 @@
 "199686","2019-05-21 15:58:15","http://injazsupport.org/h7843u.xlsx","offline","malware_download","None","https://urlhaus.abuse.ch/url/199686/","JayTHL"
 "199685","2019-05-21 15:58:09","http://bestswimspas.co.uk/h7843u.xlsx","offline","malware_download","None","https://urlhaus.abuse.ch/url/199685/","JayTHL"
 "199684","2019-05-21 15:58:05","http://bestswimspa.co.uk/h7843u.xlsx","offline","malware_download","None","https://urlhaus.abuse.ch/url/199684/","JayTHL"
-"199683","2019-05-21 15:57:15","http://namuvpn.com/install/namu832.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/199683/","zbetcheckin"
+"199683","2019-05-21 15:57:15","http://namuvpn.com/install/namu832.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/199683/","zbetcheckin"
 "199682","2019-05-21 15:57:06","http://bestswimspa.com/h7843u.xlsx","offline","malware_download","None","https://urlhaus.abuse.ch/url/199682/","JayTHL"
 "199681","2019-05-21 15:57:05","http://arlingtonheartsandhands.com/h7843u.xlsx","offline","malware_download","None","https://urlhaus.abuse.ch/url/199681/","JayTHL"
 "199680","2019-05-21 15:57:03","http://arizonafamilyretailers.com/h7843u.xlsx","offline","malware_download","None","https://urlhaus.abuse.ch/url/199680/","JayTHL"
@@ -161262,7 +161543,7 @@
 "195151","2019-05-12 23:59:02","http://157.230.232.125/bins/hoho.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/195151/","zbetcheckin"
 "195152","2019-05-12 23:59:02","http://157.230.232.125/bins/hoho.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/195152/","zbetcheckin"
 "195150","2019-05-12 23:55:32","http://167.99.42.233/824982536/Nakuma.arm","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/195150/","zbetcheckin"
-"195149","2019-05-12 23:47:16","http://www.mmc.ru.com/updates/10E9F4EA1E14D1C28801008F58.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/195149/","zbetcheckin"
+"195149","2019-05-12 23:47:16","http://www.mmc.ru.com/updates/10E9F4EA1E14D1C28801008F58.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/195149/","zbetcheckin"
 "195148","2019-05-12 23:40:07","https://codeload.github.com/wss-manutencao-ltda/Download_do_Relatorio_em_PDF_09878454/zip/master","offline","malware_download","zip","https://urlhaus.abuse.ch/url/195148/","zbetcheckin"
 "195147","2019-05-12 23:36:11","http://rastreiamentonacionabr.com/Orcamento?rastreamentoobjetos/sistemas.html","offline","malware_download","zip","https://urlhaus.abuse.ch/url/195147/","zbetcheckin"
 "195146","2019-05-12 22:46:06","http://159.89.143.217:80/bins/x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/195146/","zbetcheckin"
@@ -161311,7 +161592,7 @@
 "195103","2019-05-12 19:59:04","http://134.255.233.157:80/lmaoWTF/loligang.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/195103/","zbetcheckin"
 "195102","2019-05-12 19:59:04","http://157.230.232.125:80/bins/hoho.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/195102/","zbetcheckin"
 "195101","2019-05-12 19:59:02","http://157.230.232.125:80/bins/hoho.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/195101/","zbetcheckin"
-"195100","2019-05-12 19:33:25","http://www.gov.kr/main?d=AA100DataDownApp&SAVE_FILE_NM=38500.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/195100/","zbetcheckin"
+"195100","2019-05-12 19:33:25","http://www.gov.kr/main?d=AA100DataDownApp&SAVE_FILE_NM=38500.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/195100/","zbetcheckin"
 "195099","2019-05-12 19:02:06","http://68.183.86.251:80/lmaoWTF/loligang.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/195099/","zbetcheckin"
 "195098","2019-05-12 19:01:08","http://157.230.232.125:80/bins/hoho.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/195098/","zbetcheckin"
 "195097","2019-05-12 19:01:05","http://134.255.233.157:80/lmaoWTF/loligang.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/195097/","zbetcheckin"
@@ -162441,7 +162722,7 @@
 "193973","2019-05-10 07:04:05","https://whessetervennielo.info/word1.tmp","offline","malware_download","DEU,exe,GandCrab,Ransomware","https://urlhaus.abuse.ch/url/193973/","anonymous"
 "193972","2019-05-10 07:01:36","http://biomedbg.com/aklp.scr","offline","malware_download","exe","https://urlhaus.abuse.ch/url/193972/","zbetcheckin"
 "193971","2019-05-10 07:01:31","http://flowca.top/cexplorer.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/193971/","zbetcheckin"
-"193970","2019-05-10 06:54:37","http://mmc.ru.com/updates/10E9F4EA1E14D1C28801008F58.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/193970/","zbetcheckin"
+"193970","2019-05-10 06:54:37","http://mmc.ru.com/updates/10E9F4EA1E14D1C28801008F58.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/193970/","zbetcheckin"
 "193969","2019-05-10 06:54:12","http://yusewing.com/orders.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/193969/","zbetcheckin"
 "193968","2019-05-10 06:49:17","http://185.244.25.230/Kosha.x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/193968/","zbetcheckin"
 "193967","2019-05-10 06:49:16","http://104.248.86.28/Amnesia.mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/193967/","zbetcheckin"
@@ -163830,7 +164111,7 @@
 "192507","2019-05-07 18:51:09","http://lejintian.cn/wp-admin/cnwu-qy560yj-kgtjn/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/192507/","spamhaus"
 "192506","2019-05-07 18:49:19","https://sillium.de/Scan/71qogdz-27m7a-zycwy/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/192506/","spamhaus"
 "192505","2019-05-07 18:49:15","http://observatorysystems.com/wp-content/x8wtyif-2f5seni-xtvacep/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/192505/","spamhaus"
-"192504","2019-05-07 18:49:07","http://simlun.com.ar/css/dara4qoxz40gg7ahnrjj0khs6ik49_6euh7t53fp-016999312723/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/192504/","spamhaus"
+"192504","2019-05-07 18:49:07","http://simlun.com.ar/css/dara4qoxz40gg7ahnrjj0khs6ik49_6euh7t53fp-016999312723/","online","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/192504/","spamhaus"
 "192503","2019-05-07 18:48:41","http://58.218.66.168:32221/ups.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/192503/","JayTHL"
 "192502","2019-05-07 18:48:37","http://58.218.66.168:32221/root4.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/192502/","JayTHL"
 "192501","2019-05-07 18:48:32","http://58.218.66.168:32221/root3.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/192501/","JayTHL"
@@ -167313,14 +167594,14 @@
 "188997","2019-05-02 04:51:03","http://46.47.106.63:50313/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/188997/","zbetcheckin"
 "188996","2019-05-02 04:46:01","http://157.230.17.79/Binarys/Owari.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/188996/","zbetcheckin"
 "188995","2019-05-02 04:41:27","http://backpack-vacuum-cleaners.com/wp-content/themes/enfold/config-events-calendar/views/pro/1c.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/188995/","zbetcheckin"
-"188994","2019-05-02 04:41:08","http://vitinhvnt.com/noadv/vntnoadv.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/188994/","zbetcheckin"
+"188994","2019-05-02 04:41:08","http://vitinhvnt.com/noadv/vntnoadv.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/188994/","zbetcheckin"
 "188993","2019-05-02 04:37:05","http://185.244.25.135/nope/daddyscum.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/188993/","zbetcheckin"
 "188992","2019-05-02 04:37:03","http://35.201.141.13/bins/tmp.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/188992/","zbetcheckin"
 "188991","2019-05-02 04:30:05","http://185.244.25.135/nope/daddyscum.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/188991/","zbetcheckin"
 "188990","2019-05-02 04:30:04","http://35.201.141.13/bins/tmp.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/188990/","zbetcheckin"
 "188989","2019-05-02 04:30:03","http://35.201.141.13/bins/tmp.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/188989/","zbetcheckin"
 "188988","2019-05-02 04:25:07","http://35.201.141.13/bins/tmp.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/188988/","zbetcheckin"
-"188987","2019-05-02 04:25:07","http://vitinhvnt.com/test/vntadv.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/188987/","zbetcheckin"
+"188987","2019-05-02 04:25:07","http://vitinhvnt.com/test/vntadv.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/188987/","zbetcheckin"
 "188986","2019-05-02 04:20:02","http://35.201.141.13/bins/tmp.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/188986/","zbetcheckin"
 "188985","2019-05-02 04:20:02","http://35.201.141.13/bins/tmp.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/188985/","zbetcheckin"
 "188984","2019-05-02 03:45:13","http://209.141.48.138/Demon.arm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/188984/","zbetcheckin"
@@ -168888,7 +169169,7 @@
 "187403","2019-04-29 18:09:03","https://psicopedagogia.com/glosario/INC/ggZ5AtNNX/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/187403/","Cryptolaemus1"
 "187402","2019-04-29 18:08:04","http://observatorysystems.com/wp-content/secure.accs.send.net/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/187402/","Cryptolaemus1"
 "187401","2019-04-29 18:07:06","http://grupofischermineracao.com.br/www/jsocketfile.duckdns.org.jar","offline","malware_download","Adwind,jar,rat,remcos","https://urlhaus.abuse.ch/url/187401/","p5yb34m"
-"187400","2019-04-29 18:04:09","http://simlun.com.ar/css/secure.myacc.resourses.com/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/187400/","Cryptolaemus1"
+"187400","2019-04-29 18:04:09","http://simlun.com.ar/css/secure.myacc.resourses.com/","online","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/187400/","Cryptolaemus1"
 "187399","2019-04-29 18:01:04","http://www.whwzyy.cn/wp-includes/DOC/FvgpZswZv/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/187399/","Cryptolaemus1"
 "187398","2019-04-29 17:59:03","https://eaziit.com/wp-admin/sec.myaccount.docs.net/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/187398/","Cryptolaemus1"
 "187397","2019-04-29 17:57:04","http://musicfacile.com/cgi-bin/Document/SnE00HjeSbMl/","offline","malware_download","None","https://urlhaus.abuse.ch/url/187397/","spamhaus"
@@ -170039,7 +170320,7 @@
 "186245","2019-04-27 18:07:07","http://194.156.120.5/H20.i686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/186245/","zbetcheckin"
 "186244","2019-04-27 18:07:06","http://194.156.120.5/H20.mpsl","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/186244/","zbetcheckin"
 "186243","2019-04-27 18:07:04","http://188.166.51.96:80/Nazi/Nazi.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/186243/","zbetcheckin"
-"186242","2019-04-27 17:18:22","http://gx-10012947.file.myqcloud.com/001my7.0.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/186242/","zbetcheckin"
+"186242","2019-04-27 17:18:22","http://gx-10012947.file.myqcloud.com/001my7.0.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/186242/","zbetcheckin"
 "186241","2019-04-27 17:06:19","http://139.59.74.176/zehir/z3hir.sh4","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/186241/","0xrb"
 "186240","2019-04-27 17:06:16","http://139.59.74.176/zehir/z3hir.m68k","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/186240/","0xrb"
 "186239","2019-04-27 17:06:14","http://139.59.74.176/zehir/z3hir.ppc","offline","malware_download","elf,mirai,upx","https://urlhaus.abuse.ch/url/186239/","0xrb"
@@ -170817,7 +171098,7 @@
 "185464","2019-04-26 13:08:04","http://perfax.com.mx/cckG-iJ0tBPscI3afgSS_HRsdwWrra-aG/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/185464/","Cryptolaemus1"
 "185463","2019-04-26 13:05:03","https://psicopedagogia.com/glosario/XxaML-UsEtCmRfjDC0L54_SEpmRWVf-lg/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/185463/","Cryptolaemus1"
 "185462","2019-04-26 12:59:06","http://observatorysystems.com/wp-content/cOVq-APAzkQZGmYaE2j_otZKkCmlO-o33/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/185462/","Cryptolaemus1"
-"185461","2019-04-26 12:59:05","http://simlun.com.ar/css/INC/mOD9SC4aJ/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/185461/","spamhaus"
+"185461","2019-04-26 12:59:05","http://simlun.com.ar/css/INC/mOD9SC4aJ/","online","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/185461/","spamhaus"
 "185460","2019-04-26 12:56:08","http://sciww.com.pe/img/Scan/CXjxHHNSd/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/185460/","spamhaus"
 "185459","2019-04-26 12:51:03","http://fon-gsm.pl/ip5daee/gEet-4WOWlqsPw1W2UDZ_OOjAvXsrP-zW/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/185459/","Cryptolaemus1"
 "185458","2019-04-26 12:50:07","http://slenz.de/cgi-bin/Scan/RuwJYSsAZ/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/185458/","spamhaus"
@@ -171388,7 +171669,7 @@
 "184892","2019-04-25 19:35:02","http://159.89.3.235:80/bins/Akai.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/184892/","zbetcheckin"
 "184891","2019-04-25 19:32:07","http://wordcooper.com/wp-includes/Scan/p4oJcoyx/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/184891/","spamhaus"
 "184890","2019-04-25 19:32:05","http://walstan.com/sites/pages/css/DmVwE-E930rsBsCvfbTW_CLhOhinJ-8Ve/","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/184890/","Cryptolaemus1"
-"184889","2019-04-25 19:31:16","http://openclient.sroinfo.com/op/vSRO%20Version:%201.088/sro_client.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/184889/","zbetcheckin"
+"184889","2019-04-25 19:31:16","http://openclient.sroinfo.com/op/vSRO%20Version:%201.088/sro_client.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/184889/","zbetcheckin"
 "184888","2019-04-25 19:31:09","http://procareinsurance.gr/wp-content/kcf.jpg","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/184888/","zbetcheckin"
 "184887","2019-04-25 19:31:04","http://bcn-pool.us/shell/r.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/184887/","zbetcheckin"
 "184886","2019-04-25 19:31:03","https://winfo.ro/_TO_DELETE/m/DOC/yUrwSrFogQDz/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/184886/","spamhaus"
@@ -172235,7 +172516,7 @@
 "184013","2019-04-24 16:44:25","http://baldorclip.icu/clp/2.exe","offline","malware_download","ArkeiStealer,exe","https://urlhaus.abuse.ch/url/184013/","x42x5a"
 "184012","2019-04-24 16:44:12","http://baldorclip.icu/clp/1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/184012/","x42x5a"
 "184011","2019-04-24 16:44:03","http://nehty-maki.cz/wp-content/LLC/A4LYwMGwFg/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/184011/","spamhaus"
-"184010","2019-04-24 16:43:19","http://mutec.jp/.www/aloha.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/184010/","x42x5a"
+"184010","2019-04-24 16:43:19","http://mutec.jp/.www/aloha.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/184010/","x42x5a"
 "184009","2019-04-24 16:41:42","http://www.sunnysani.com/hasr/REMEME.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/184009/","de_aviation"
 "184008","2019-04-24 16:41:06","http://92.38.135.134/dom2","offline","malware_download","None","https://urlhaus.abuse.ch/url/184008/","de_aviation"
 "184007","2019-04-24 16:40:06","http://beautybusiness.by/bitrix/admin/css/order.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/184007/","de_aviation"
@@ -174285,9 +174566,9 @@
 "181956","2019-04-22 11:43:06","http://bostonseafarms.com/images/aous-d4NxSsxmPBUT3S_HntmDnUf-5G9/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/181956/","Cryptolaemus1"
 "181955","2019-04-22 11:31:05","http://rinconadarolandovera.com/calendar/yRZq-KweOFhLnjD4HNq_PTxZUdHJH-irr/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/181955/","Cryptolaemus1"
 "181954","2019-04-22 11:27:04","http://imagine8ni.com/wp-includes/QIci-VZ818adl76JzBJ_CKFvQlZx-wCt/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/181954/","Cryptolaemus1"
-"181953","2019-04-22 11:23:08","http://pat4.jetos.com/w2008.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/181953/","zbetcheckin"
+"181953","2019-04-22 11:23:08","http://pat4.jetos.com/w2008.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/181953/","zbetcheckin"
 "181952","2019-04-22 11:23:06","http://jbmshows.com/wp-includes/HiGnw-MvrFN1wKvkPrZWv_wqPLQoTtd-sp/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/181952/","Cryptolaemus1"
-"181951","2019-04-22 11:19:04","http://pat4.jetos.com/pxp.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/181951/","zbetcheckin"
+"181951","2019-04-22 11:19:04","http://pat4.jetos.com/pxp.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/181951/","zbetcheckin"
 "181950","2019-04-22 11:19:03","http://jointhegoodcampaign.com/XgzxR-s10yqIJNY7O7Qn_iuuplDxh-U6w/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/181950/","Cryptolaemus1"
 "181949","2019-04-22 11:16:03","http://zagruz.dnset.com/DEDKO.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/181949/","zbetcheckin"
 "181948","2019-04-22 11:08:20","http://speed.myz.info/arp.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/181948/","zbetcheckin"
@@ -180371,7 +180652,7 @@
 "175862","2019-04-11 18:34:08","http://sabbath.weswesmusic.com/wp-includes/ID3/inf.inf","offline","malware_download","exe,Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/175862/","malware_traffic"
 "175861","2019-04-11 18:34:01","http://rablake.pairserver.com/inf.inf","offline","malware_download","exe,Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/175861/","malware_traffic"
 "175860","2019-04-11 18:33:43","http://northernoceanmarine.com/wp-content/themes/nom/images/inf.inf","offline","malware_download","exe,Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/175860/","malware_traffic"
-"175859","2019-04-11 18:33:26","http://meeweb.com/admin/swfupload/css/inf.inf","online","malware_download","exe,Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/175859/","malware_traffic"
+"175859","2019-04-11 18:33:26","http://meeweb.com/admin/swfupload/css/inf.inf","offline","malware_download","exe,Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/175859/","malware_traffic"
 "175858","2019-04-11 18:33:10","http://mediagrabber.dafdigitalhub.com/EasyMediaGrabber/admincp/compilation_cache/inf.inf","offline","malware_download","exe,Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/175858/","malware_traffic"
 "175857","2019-04-11 18:32:50","http://maps.standard-cement.com/js/inf.inf","offline","malware_download","exe,Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/175857/","malware_traffic"
 "175856","2019-04-11 18:32:38","http://mail.zadiaks90.com/installer/images/inf.inf","offline","malware_download","exe,Ransomware,Shade,Troldesh","https://urlhaus.abuse.ch/url/175856/","malware_traffic"
@@ -183347,7 +183628,7 @@
 "172853","2019-04-07 22:38:32","http://hdias.com.br/dotz/Dotz_Envio_Email.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/172853/","zbetcheckin"
 "172852","2019-04-07 21:17:16","http://dl.mqego.com/LX/LCZPSXTZX.ZIP","offline","malware_download","zip","https://urlhaus.abuse.ch/url/172852/","zbetcheckin"
 "172851","2019-04-07 21:17:12","http://adpas.nfile.net/files/adpas.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/172851/","zbetcheckin"
-"172850","2019-04-07 21:17:09","http://sslv3.at/cryptolocker/encrypt2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/172850/","zbetcheckin"
+"172850","2019-04-07 21:17:09","http://sslv3.at/cryptolocker/encrypt2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/172850/","zbetcheckin"
 "172849","2019-04-07 20:29:08","http://knutschmidt.de/wwvvv/orrQ-8t5PRIUJaA3PMbN_ygOOJVYeq-1E/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/172849/","zbetcheckin"
 "172848","2019-04-07 17:19:05","http://dolphinheights.co.za/mms/sk.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/172848/","zbetcheckin"
 "172847","2019-04-07 17:19:03","http://134.209.71.79/bins/sora.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/172847/","zbetcheckin"
@@ -183886,7 +184167,7 @@
 "172314","2019-04-06 03:58:12","http://egar.peekicon.com/lmaoWTF/loligang.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/172314/","zbetcheckin"
 "172313","2019-04-06 03:46:05","http://xiaidown.com/soft/UploadFile/2015-2/20152282311249926.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/172313/","zbetcheckin"
 "172312","2019-04-06 03:46:04","http://saphonzee.com/wp-includes/sec.myacc.send.biz/%20","offline","malware_download","doc","https://urlhaus.abuse.ch/url/172312/","zbetcheckin"
-"172311","2019-04-06 03:17:22","http://www.xiaidown.com/soft/uploadfile/2015-2/20152282311249926.exe","online","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/172311/","zbetcheckin"
+"172311","2019-04-06 03:17:22","http://www.xiaidown.com/soft/uploadfile/2015-2/20152282311249926.exe","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/172311/","zbetcheckin"
 "172310","2019-04-06 03:17:14","http://gestomarket.co/4qhowhtr.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/172310/","zbetcheckin"
 "172309","2019-04-06 03:13:03","http://159.203.73.80/bins/kowai.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/172309/","zbetcheckin"
 "172308","2019-04-06 03:04:04","http://89.34.26.174/lmaoWTF/loligang.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/172308/","zbetcheckin"
@@ -184748,7 +185029,7 @@
 "171452","2019-04-04 16:44:03","http://94.191.48.164/hf9tasw/secure.accs.resourses.net/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/171452/","Cryptolaemus1"
 "171451","2019-04-04 16:32:04","http://xxx-lorem.xyz/install_flash_player.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/171451/","zbetcheckin"
 "171450","2019-04-04 16:27:02","http://pool.ug/tesptc/penelop/updatewin2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/171450/","zbetcheckin"
-"171449","2019-04-04 16:26:10","http://gimscompany.com/wp-admin/user/1/klx.doc","online","malware_download","RTF","https://urlhaus.abuse.ch/url/171449/","zbetcheckin"
+"171449","2019-04-04 16:26:10","http://gimscompany.com/wp-admin/user/1/klx.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/171449/","zbetcheckin"
 "171448","2019-04-04 16:26:07","http://charlesremcos.duckdns.org/a.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/171448/","zbetcheckin"
 "171447","2019-04-04 16:26:04","http://6qa5da.bn1303.livefilestore.com/y4mmzHLySAJrp-4LhNU_OgkI2hiTt2rNhP_wpk-NvTRk_RkmwAW--KKXus1qsmYdMlBySY5p30Q-h62WohI0tnXIPVgg-S3JxcpVtDj9Vj0t-yeWF1dmOqeOPsuUa2xGknT03EOAI15yFJ9Wcsgom3Y2ld9tdEqUuYE9UPQl0Js319HyvpwcaQqYIGZeh2o4g0xf768y85aAaZ2IRUpULVVGg/Purchase%20order%203%202.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/171447/","zbetcheckin"
 "171446","2019-04-04 16:22:07","http://automatrix2.com/361015192ee19db6f000b4855c12e18f0c5a54d269e1/notaflscaleletronlcavisualizarword.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/171446/","zbetcheckin"
@@ -184772,7 +185053,7 @@
 "171428","2019-04-04 14:28:04","http://www.primaybordon.com/wordpress/wp-content/themes/sketch/ssm.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/171428/","zbetcheckin"
 "171427","2019-04-04 14:28:03","http://www.primaybordon.com/wordpress/wp-content/themes/sketch/sms.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/171427/","zbetcheckin"
 "171426","2019-04-04 14:23:20","http://pwss.proactionfluids.net/api?gyutsw","offline","malware_download","AUT,exe,geofenced,gootkit","https://urlhaus.abuse.ch/url/171426/","anonymous"
-"171425","2019-04-04 14:23:14","http://granportale.com.br/img/cryptedkalu.exe","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/171425/","zbetcheckin"
+"171425","2019-04-04 14:23:14","http://granportale.com.br/img/cryptedkalu.exe","online","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/171425/","zbetcheckin"
 "171424","2019-04-04 13:39:03","http://hii4keenan.com/2poef1/j.php?l=typk11.fgs","offline","malware_download","Gozi","https://urlhaus.abuse.ch/url/171424/","FullM3talPacket"
 "171423","2019-04-04 13:28:05","https://uc55b654465941f1cff5b379179d.dl.dropboxusercontent.com/cd/0/get/AeYFGAHCxRLobyWIYJymMIq-8udRKMT_3qOStPHpBkGIJPa-O3lVz4Ggf5OwElKWLJDabMCIGjSGdna88S3j_hbW-_ZVy4SaE2VelBLOjrDINQ/file?dl=1","offline","malware_download","msi","https://urlhaus.abuse.ch/url/171423/","zbetcheckin"
 "171422","2019-04-04 13:17:23","http://bayboratek.com/28032019yedek/Kk6Y/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/171422/","Cryptolaemus1"
@@ -184781,7 +185062,7 @@
 "171419","2019-04-04 13:17:12","http://ersanenglish.com/backup/un/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/171419/","Cryptolaemus1"
 "171418","2019-04-04 13:17:05","http://adilabtech.com/newweb/O8T/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/171418/","Cryptolaemus1"
 "171417","2019-04-04 13:15:17","http://granportale.com.br/imagens/3TEGDLnbc1q.jpg","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/171417/","zbetcheckin"
-"171416","2019-04-04 13:15:10","http://granportale.com.br/imagens/KAL37EYHD1.jpg","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/171416/","zbetcheckin"
+"171416","2019-04-04 13:15:10","http://granportale.com.br/imagens/KAL37EYHD1.jpg","online","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/171416/","zbetcheckin"
 "171415","2019-04-04 12:57:06","http://granportale.com.br/imagens/CLINRTDFFG342EWS.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/171415/","zbetcheckin"
 "171414","2019-04-04 12:46:33","http://charlesremcos.duckdns.org/dd.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/171414/","zbetcheckin"
 "171413","2019-04-04 12:46:09","http://automatrix2.com/css/t45kl23j432lh432432kjh665htrhtrnf32.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/171413/","zbetcheckin"
@@ -185370,7 +185651,7 @@
 "170829","2019-04-03 16:27:03","http://ceaningthe.com/svchost.exe","offline","malware_download","Smokebot,Task","https://urlhaus.abuse.ch/url/170829/","anonymous"
 "170828","2019-04-03 16:25:05","http://valentindiehl.de/writers/sec.accounts.send.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/170828/","Cryptolaemus1"
 "170827","2019-04-03 16:18:04","http://urbaniak.waw.pl/wp-includes/trust.accounts.resourses.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/170827/","Cryptolaemus1"
-"170826","2019-04-03 16:09:04","http://incredicole.com/wp-content/themes/elegant-grunge/images/msg.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/170826/","zbetcheckin"
+"170826","2019-04-03 16:09:04","http://incredicole.com/wp-content/themes/elegant-grunge/images/msg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/170826/","zbetcheckin"
 "170825","2019-04-03 15:33:09","http://stegwee.eu/aanbieding/secure.accounts.docs.net/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/170825/","Cryptolaemus1"
 "170824","2019-04-03 15:30:05","http://tsk-winery.com/wp-includes/trust.myacc.send.net/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/170824/","Cryptolaemus1"
 "170823","2019-04-03 15:23:18","http://www.eviar.com/databases/jdi/","offline","malware_download","emotet,epoch1,exe,heodo,Trickbot","https://urlhaus.abuse.ch/url/170823/","Cryptolaemus1"
@@ -185569,7 +185850,7 @@
 "170628","2019-04-03 08:20:06","http://185.244.25.107/bins/Matrix.arm","offline","malware_download","None","https://urlhaus.abuse.ch/url/170628/","VtLyra"
 "170629","2019-04-03 08:20:06","http://185.244.25.107/bins/Matrix.arm5","offline","malware_download","None","https://urlhaus.abuse.ch/url/170629/","VtLyra"
 "170627","2019-04-03 08:20:05","http://tanpaobat.com/cgi-bin/verif.myacc.docs.biz/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/170627/","spamhaus"
-"170626","2019-04-03 08:17:07","http://thaisell.com/AM/hp.gf","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/170626/","zbetcheckin"
+"170626","2019-04-03 08:17:07","http://thaisell.com/AM/hp.gf","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/170626/","zbetcheckin"
 "170625","2019-04-03 08:13:03","http://www.e-ki-libre.fr/wp-content/themes/ekilibre-v2/fonts/gr.mpwq","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/170625/","zbetcheckin"
 "170624","2019-04-03 08:10:06","http://goldshoreoutsourcing.com/zi1lwr3/verif.accs.send.com/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/170624/","spamhaus"
 "170623","2019-04-03 08:09:35","http://robertoperezgayo.com/1vzp53p/secure.accs.docs.net/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/170623/","spamhaus"
@@ -185822,7 +186103,7 @@
 "170370","2019-04-02 19:49:05","http://107.173.219.101/doc/word/pdf.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/170370/","zbetcheckin"
 "170369","2019-04-02 19:49:03","http://zhiti.cf/prezentatsia.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/170369/","zbetcheckin"
 "170368","2019-04-02 19:41:04","http://kaankaramanoglu.com/wp-content/themes/twentyseventeen/template-parts/footer/sserv.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/170368/","zbetcheckin"
-"170367","2019-04-02 19:40:20","http://zmmore.com/stats/images/msg.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/170367/","zbetcheckin"
+"170367","2019-04-02 19:40:20","http://zmmore.com/stats/images/msg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/170367/","zbetcheckin"
 "170366","2019-04-02 19:40:09","http://thesteammopguy.com/wp-content/themes.old/twentyfourteen/Ugee1.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/170366/","zbetcheckin"
 "170364","2019-04-02 19:20:04","http://ibcompany.pl/wp-admin/css/colors/blue/msg.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/170364/","zbetcheckin"
 "170363","2019-04-02 19:16:05","http://thesteammopguy.com/wp-content/themes.old/twentyfourteen/Gosp.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/170363/","zbetcheckin"
@@ -186304,7 +186585,7 @@
 "169888","2019-04-02 02:59:04","http://139.59.133.213/cc9x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/169888/","zbetcheckin"
 "169886","2019-04-02 02:52:04","http://204.44.96.26:8080/lyisnx64","offline","malware_download","elf","https://urlhaus.abuse.ch/url/169886/","zbetcheckin"
 "169885","2019-04-02 02:43:04","http://acessocriativo.com.br/wp-admin/verif.myacc.send.net/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/169885/","spamhaus"
-"169884","2019-04-02 02:19:05","http://webarte.com.br/css/secure.myaccount.send.biz/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/169884/","Cryptolaemus1"
+"169884","2019-04-02 02:19:05","http://webarte.com.br/css/secure.myaccount.send.biz/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/169884/","Cryptolaemus1"
 "169883","2019-04-02 00:58:13","http://conwinonline.com/thelatest/verif.myacc.send.net/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/169883/","Cryptolaemus1"
 "169882","2019-04-02 00:58:08","https://phelieuhoanghung.com/wp-admin/sec.accs.docs.biz/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/169882/","Cryptolaemus1"
 "169881","2019-04-02 00:57:17","http://biederman.net/christywalkercreations/verif.accounts.send.net/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/169881/","spamhaus"
@@ -187117,7 +187398,7 @@
 "168727","2019-03-29 21:35:08","http://taylorpemberton.com/cgi-bin/269749181081/sWHcl-nAe_VRkD-j4/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/168727/","Cryptolaemus1"
 "168725","2019-03-29 21:32:02","http://cbmagency.com/wp-content/trust.accs.docs.com","offline","malware_download","doc","https://urlhaus.abuse.ch/url/168725/","zbetcheckin"
 "168722","2019-03-29 21:31:08","http://taltus.co.uk/cgi-bin/7517650/hwyW-ggPC_ZZZj-LNJ/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/168722/","Cryptolaemus1"
-"168721","2019-03-29 21:31:07","http://webarte.com.br/css/sec.accs.send.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/168721/","Cryptolaemus1"
+"168721","2019-03-29 21:31:07","http://webarte.com.br/css/sec.accs.send.com/","online","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/168721/","Cryptolaemus1"
 "168719","2019-03-29 21:28:02","http://bmservice.dk/www/wmt.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/168719/","zbetcheckin"
 "168718","2019-03-29 21:27:04","http://opark.in/wp-includes/2604038/QcJut-Ey5FF_fFWCGx-SZ/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/168718/","Cryptolaemus1"
 "168716","2019-03-29 21:25:16","http://walburg.pl/libraries/verif.myaccount.resourses.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/168716/","Cryptolaemus1"
@@ -189845,17 +190126,17 @@
 "165925","2019-03-26 06:18:03","http://138.197.173.233/lmaoWTF/loligang.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/165925/","zbetcheckin"
 "165924","2019-03-26 06:13:44","http://megaklik.top/jay/jay.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/165924/","zbetcheckin"
 "165923","2019-03-26 06:13:43","http://0400msc.com/templets/shenbo/sunbetgamesetup5.4.5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/165923/","zbetcheckin"
-"165922","2019-03-26 06:09:05","http://grafchekloder.rebatesrule.net/grafchek.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/165922/","zbetcheckin"
+"165922","2019-03-26 06:09:05","http://grafchekloder.rebatesrule.net/grafchek.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/165922/","zbetcheckin"
 "165921","2019-03-26 06:09:03","http://grafil.ninth.biz/grafil.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/165921/","zbetcheckin"
 "165920","2019-03-26 06:09:02","http://138.197.173.233/lmaoWTF/loligang.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/165920/","zbetcheckin"
 "165919","2019-03-26 06:07:18","http://suncity727.com/templets/shenbo/sunbetgamesetup5.4.5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/165919/","zbetcheckin"
-"165918","2019-03-26 06:05:29","http://88mscco.com/templets/shenbo/SunbetGameSetup5.4.5.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/165918/","zbetcheckin"
+"165918","2019-03-26 06:05:29","http://88mscco.com/templets/shenbo/SunbetGameSetup5.4.5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/165918/","zbetcheckin"
 "165916","2019-03-26 06:01:19","http://denkagida.com.tr/wp-content/themes/modern/images/list/Dlhost.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/165916/","zbetcheckin"
 "165915","2019-03-26 06:01:14","http://megaklik.top/arinze/arinze.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/165915/","zbetcheckin"
 "165914","2019-03-26 05:53:04","http://megaklik.top/ejike/ejike.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/165914/","zbetcheckin"
 "165913","2019-03-26 05:49:22","http://denkagida.com.tr/wp-content/themes/modern/images/Client-built.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/165913/","zbetcheckin"
 "165912","2019-03-26 05:49:21","http://www.9983suncity.com/templets/shenbo/SunbetGameSetup5.4.5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/165912/","zbetcheckin"
-"165911","2019-03-26 05:45:21","http://887sconline.com/templets/shenbo/sunbetgamesetup5.4.5.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/165911/","zbetcheckin"
+"165911","2019-03-26 05:45:21","http://887sconline.com/templets/shenbo/sunbetgamesetup5.4.5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/165911/","zbetcheckin"
 "165910","2019-03-26 04:46:04","http://bfbelectrical.co.uk/wp-content/4271022/wBBS-Uq_k-DYe///","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/165910/","Cryptolaemus1"
 "165909","2019-03-26 04:34:04","http://138.197.173.233/lmaoWTF/loligang.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/165909/","zbetcheckin"
 "165908","2019-03-26 04:34:03","http://138.197.173.233/lmaoWTF/loligang.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/165908/","zbetcheckin"
@@ -190819,7 +191100,7 @@
 "164945","2019-03-24 17:56:47","http://dongacds.vn/include/ckeditor/plugins/pagebreak/ada/orcy32.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/164945/","zbetcheckin"
 "164944","2019-03-24 17:56:13","http://dongacds.vn/include/ckeditor/plugins/pagebreak/ada/wrkot.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/164944/","zbetcheckin"
 "164943","2019-03-24 17:36:25","http://app100700930.static.xyimg.net/logintools/lhtl.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/164943/","zbetcheckin"
-"164942","2019-03-24 17:36:21","http://unilevercopabr.mbiz20.net/portal/mseriesdesktopinstallers/mseriesdesktop.initialversion.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/164942/","zbetcheckin"
+"164942","2019-03-24 17:36:21","http://unilevercopabr.mbiz20.net/portal/mseriesdesktopinstallers/mseriesdesktop.initialversion.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/164942/","zbetcheckin"
 "164941","2019-03-24 17:28:09","http://134.209.125.4/lmaoz.armv5","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/164941/","zbetcheckin"
 "164940","2019-03-24 17:28:06","http://134.209.125.4/lmaoz.mpsl","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/164940/","zbetcheckin"
 "164939","2019-03-24 17:28:04","http://134.209.125.4/lmaoz.x86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/164939/","zbetcheckin"
@@ -190939,7 +191220,7 @@
 "164825","2019-03-24 08:52:03","http://134.209.125.198/bins/sbot.x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/164825/","zbetcheckin"
 "164824","2019-03-24 08:52:02","http://134.209.125.198/bins/sbot.arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/164824/","zbetcheckin"
 "164823","2019-03-24 08:47:02","http://134.209.125.198/bins/sbot.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/164823/","zbetcheckin"
-"164822","2019-03-24 08:43:22","http://k3.etfiber.net/K3Cloud/ClientBin/SilverlightResources/Silverlight.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/164822/","zbetcheckin"
+"164822","2019-03-24 08:43:22","http://k3.etfiber.net/K3Cloud/ClientBin/SilverlightResources/Silverlight.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/164822/","zbetcheckin"
 "164821","2019-03-24 08:43:02","http://134.209.125.198/bins/sbot.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/164821/","zbetcheckin"
 "164820","2019-03-24 08:34:03","http://68.183.207.14/vi/x86.yakuza","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/164820/","zbetcheckin"
 "164819","2019-03-24 08:30:19","http://46.101.146.86/bins/hoho.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/164819/","zbetcheckin"
@@ -191895,7 +192176,7 @@
 "163868","2019-03-22 06:05:06","http://46.101.156.58:80/gaybub/miori.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/163868/","zbetcheckin"
 "163867","2019-03-22 06:05:04","http://46.101.156.58:80/gaybub/miori.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/163867/","zbetcheckin"
 "163866","2019-03-22 06:03:32","http://www.twinplaza.jp/library/use/Photo.scr","offline","malware_download","None","https://urlhaus.abuse.ch/url/163866/","papa_anniekey"
-"163865","2019-03-22 05:52:06","http://s14b.91danji.com/20151215/%E9%87%91%E5%AD%97%E5%A1%94%E6%96%B9%E5%9D%97.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/163865/","zbetcheckin"
+"163865","2019-03-22 05:52:06","http://s14b.91danji.com/20151215/%E9%87%91%E5%AD%97%E5%A1%94%E6%96%B9%E5%9D%97.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/163865/","zbetcheckin"
 "163864","2019-03-22 05:48:02","https://electromada.com/bbl.jpg","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/163864/","cocaman"
 "163862","2019-03-22 05:42:15","http://206.189.30.147/bins/sbot.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/163862/","Gandylyan1"
 "163861","2019-03-22 05:42:15","http://206.189.30.147/bins/sbot.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/163861/","Gandylyan1"
@@ -191927,12 +192208,12 @@
 "163835","2019-03-22 05:16:03","http://turismolenzarote.com/accounting/documents/download.php?file=ODQ3Mjk5NjI2OF9fX19lbGV3dWwuZXhl","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163835/","zbetcheckin"
 "163834","2019-03-22 05:08:08","http://declic-prospection.com/installation_declic.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163834/","zbetcheckin"
 "163833","2019-03-22 05:08:02","http://turismolenzarote.com/accounting/documents/download.php?file=NDg0ODU5MDQyNl9fX19zY2FuczM0LnBuZw==","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163833/","zbetcheckin"
-"163832","2019-03-22 05:03:14","http://s14b.groundyun.cn/20151218/%E5%B0%8F%E9%B8%A1%E5%85%A5%E4%BE%B5%E8%80%853.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/163832/","zbetcheckin"
+"163832","2019-03-22 05:03:14","http://s14b.groundyun.cn/20151218/%E5%B0%8F%E9%B8%A1%E5%85%A5%E4%BE%B5%E8%80%853.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163832/","zbetcheckin"
 "163831","2019-03-22 05:02:43","http://rrbmexico.com/license.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163831/","zbetcheckin"
 "163830","2019-03-22 04:51:04","https://www.drivingwitharrow.com/wp-content/plugins/w8KF86/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/163830/","Cryptolaemus1"
 "163829","2019-03-22 04:49:06","http://www.winkniga.ru/installw.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163829/","zbetcheckin"
-"163828","2019-03-22 04:40:28","http://s14b.91danji.com/20151218/%E5%B0%8F%E9%B8%A1%E5%85%A5%E4%BE%B5%E8%80%853.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/163828/","zbetcheckin"
-"163827","2019-03-22 04:24:44","http://s14b.91danji.com/20151220/%E5%8C%97%E6%96%97%E7%A5%9E%E6%8B%B3%E4%B8%96%E7%BA%AA%E6%9C%AB%E6%95%91%E4%B8%96%E4%B8%BB%E4%BC%A0%E8%AF%B4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/163827/","zbetcheckin"
+"163828","2019-03-22 04:40:28","http://s14b.91danji.com/20151218/%E5%B0%8F%E9%B8%A1%E5%85%A5%E4%BE%B5%E8%80%853.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163828/","zbetcheckin"
+"163827","2019-03-22 04:24:44","http://s14b.91danji.com/20151220/%E5%8C%97%E6%96%97%E7%A5%9E%E6%8B%B3%E4%B8%96%E7%BA%AA%E6%9C%AB%E6%95%91%E4%B8%96%E4%B8%BB%E4%BC%A0%E8%AF%B4.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163827/","zbetcheckin"
 "163826","2019-03-22 03:53:18","http://ahsantiago.pt/templates/beez3/images/personal/rTRhOOmU4duXOXr.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/163826/","zbetcheckin"
 "163825","2019-03-22 03:47:11","http://turismolenzarote.com/accounting/documents/download.php?file=NjU0NDM3NjE4M19fX19pd2VjZXR1LmV4ZQ==","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163825/","zbetcheckin"
 "163824","2019-03-22 03:26:08","http://fileloader.netx.host/ktr/227.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163824/","zbetcheckin"
@@ -191942,7 +192223,7 @@
 "163820","2019-03-22 03:10:06","http://107.172.41.9/pftp","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/163820/","zbetcheckin"
 "163819","2019-03-22 03:10:05","http://145.239.222.222/armv7l","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/163819/","zbetcheckin"
 "163818","2019-03-22 03:10:03","http://104.248.23.140/tenshiarm6","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/163818/","zbetcheckin"
-"163817","2019-03-22 03:08:23","http://s14b.91danji.com/20160101/%E7%9C%9F%E5%AE%9E%E8%B0%8E%E8%A8%80%E4%B8%96%E7%95%8C%E7%89%88.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/163817/","zbetcheckin"
+"163817","2019-03-22 03:08:23","http://s14b.91danji.com/20160101/%E7%9C%9F%E5%AE%9E%E8%B0%8E%E8%A8%80%E4%B8%96%E7%95%8C%E7%89%88.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163817/","zbetcheckin"
 "163815","2019-03-22 02:52:25","http://104.248.23.140/tenshim68k","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/163815/","zbetcheckin"
 "163813","2019-03-22 02:50:05","http://104.248.23.140/tenshii686","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/163813/","zbetcheckin"
 "163814","2019-03-22 02:50:05","http://104.248.23.140/tenshix86","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/163814/","zbetcheckin"
@@ -192358,7 +192639,7 @@
 "163398","2019-03-21 11:10:14","http://dinobacciotti.com.br/2eqt/vdm8-uyuyv-dfiwnrk/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/163398/","spamhaus"
 "163397","2019-03-21 11:10:09","http://docecreativo.com/ykex-n27cn-ywfdxyg/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/163397/","spamhaus"
 "163396","2019-03-21 11:10:06","http://ciadostapetes.com.br/logssite/xrw2-c640ec-wwdjul/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/163396/","spamhaus"
-"163395","2019-03-21 11:09:40","http://g.7230.com/pcv/xzys_dnb_jf.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/163395/","zbetcheckin"
+"163395","2019-03-21 11:09:40","http://g.7230.com/pcv/xzys_dnb_jf.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163395/","zbetcheckin"
 "163394","2019-03-21 10:59:17","http://dingesgang.com/wp-admin/uhgv-jsyr0r-kotcqw/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/163394/","spamhaus"
 "163393","2019-03-21 10:59:16","http://dirproperties.com/cgi-bin/tewyf-1q3nn-pxjtnaug/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/163393/","spamhaus"
 "163392","2019-03-21 10:59:14","http://colbydix.com/mailer/ayzmf-bcwjgtl-dqojfyz/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/163392/","spamhaus"
@@ -192546,7 +192827,7 @@
 "163210","2019-03-21 05:23:21","http://somnathskider.com/wp-content/themes/oceanwp/assets/css/edd/msg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/163210/","zbetcheckin"
 "163209","2019-03-21 05:22:08","http://91.134.210.118:80/Nazi/Nazi.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/163209/","zbetcheckin"
 "163208","2019-03-21 05:22:05","http://91.134.210.118:80/Nazi/Nazi.arm6","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/163208/","zbetcheckin"
-"163207","2019-03-21 04:07:10","http://cdn.truelife.vn/webtube/201310/2139273/pianito.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/163207/","zbetcheckin"
+"163207","2019-03-21 04:07:10","http://cdn.truelife.vn/webtube/201310/2139273/pianito.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/163207/","zbetcheckin"
 "163206","2019-03-21 03:09:04","http://157.230.21.45/AB4g5/Extendo.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/163206/","zbetcheckin"
 "163205","2019-03-21 03:09:03","http://157.230.21.45/AB4g5/Extendo.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/163205/","zbetcheckin"
 "163204","2019-03-21 03:09:03","http://157.230.21.45/AB4g5/Extendo.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/163204/","zbetcheckin"
@@ -193056,7 +193337,7 @@
 "162694","2019-03-20 07:53:15","http://www.siruk-design.ru/370828890418-19644606605361779046.zip","offline","malware_download","DEU,exe,Nymaim,zip","https://urlhaus.abuse.ch/url/162694/","anonymous"
 "162693","2019-03-20 07:50:01","http://5.230.141.14/mipsel","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/162693/","zbetcheckin"
 "162692","2019-03-20 07:45:03","http://82.81.196.247:31239/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/162692/","x42x5a"
-"162691","2019-03-20 07:43:29","http://118.42.208.62:30153/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/162691/","x42x5a"
+"162691","2019-03-20 07:43:29","http://118.42.208.62:30153/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/162691/","x42x5a"
 "162690","2019-03-20 07:43:28","http://187.10.104.118:48511/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/162690/","x42x5a"
 "162689","2019-03-20 07:43:24","http://92.223.177.227:16097/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/162689/","x42x5a"
 "162688","2019-03-20 07:43:22","http://82.81.106.65:59035/.i","online","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/162688/","x42x5a"
@@ -196067,7 +196348,7 @@
 "159667","2019-03-14 21:06:13","http://nfbio.com/img/upload_Image/edm/pic_2/h1te-t8jpu-yadpky/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/159667/","Cryptolaemus1"
 "159666","2019-03-14 21:01:03","http://jargongeneration.com/Gambia/iuhz3-mi76u-idqrwi/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/159666/","spamhaus"
 "159665","2019-03-14 20:57:02","http://doughnut-snack.live/new7800.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/159665/","zbetcheckin"
-"159664","2019-03-14 20:56:03","http://ermekanik.com/templates/mybusiness/html/com_content/article/sserv.jpg","online","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/159664/","zbetcheckin"
+"159664","2019-03-14 20:56:03","http://ermekanik.com/templates/mybusiness/html/com_content/article/sserv.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/159664/","zbetcheckin"
 "159663","2019-03-14 20:54:03","http://multiesfera.com/wp-content/814et-buyfq5-nkahh/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/159663/","Cryptolaemus1"
 "159662","2019-03-14 20:50:06","http://sohuco.com.vn/wp-includes/yl0a7-sv25l-ubbkqwiqh/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/159662/","spamhaus"
 "159661","2019-03-14 20:49:13","http://doughnut-snack.live/new.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/159661/","zbetcheckin"
@@ -197133,7 +197414,7 @@
 "158594","2019-03-13 16:58:05","http://visualdata.ru/files/postsending-1.25.0.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/158594/","zbetcheckin"
 "158593","2019-03-13 16:56:25","http://orltargujiu.ro/wp-content/plugins/easyrotator-for-wordpress/73.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/158593/","zbetcheckin"
 "158592","2019-03-13 16:54:15","http://vinyldesign.com.au/templates/vp_supermart/admin/fields/jscolor/msg.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/158592/","zbetcheckin"
-"158591","2019-03-13 16:54:09","http://visualdata.ru/files/cash-memo-free-7.0.0%20(free).exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/158591/","zbetcheckin"
+"158591","2019-03-13 16:54:09","http://visualdata.ru/files/cash-memo-free-7.0.0%20(free).exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/158591/","zbetcheckin"
 "158590","2019-03-13 16:53:22","http://aapr.org.au/templates/aapr/css/sserv.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/158590/","zbetcheckin"
 "158589","2019-03-13 16:53:19","http://crazy0216.dx14.topnic.net/fzad/fzad.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/158589/","zbetcheckin"
 "158588","2019-03-13 16:46:10","http://www.fabiennebakker.nl/wp-content/uploads/1rW0P/","offline","malware_download","emotet,epoch1,exe,heodo","https://urlhaus.abuse.ch/url/158588/","unixronin"
@@ -198854,7 +199135,7 @@
 "156862","2019-03-12 08:51:35","http://35.200.202.215/wp-content/uploads/k8iag-wulnvn-ahohpbt/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/156862/","spamhaus"
 "156861","2019-03-12 08:51:30","http://65.153.160.125:23498/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/156861/","VtLyra"
 "156860","2019-03-12 08:51:25","http://31.168.18.27:18555/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/156860/","VtLyra"
-"156859","2019-03-12 08:51:17","http://203.77.80.159:36829/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/156859/","VtLyra"
+"156859","2019-03-12 08:51:17","http://203.77.80.159:36829/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/156859/","VtLyra"
 "156858","2019-03-12 08:51:13","http://35.200.238.170/EN_en/z0kap-i4orz-cfnqra/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/156858/","spamhaus"
 "156857","2019-03-12 08:51:08","http://82.62.97.104:24061/.i","offline","malware_download","None","https://urlhaus.abuse.ch/url/156857/","VtLyra"
 "156856","2019-03-12 08:51:05","http://76.243.189.77:62976/.i","online","malware_download","None","https://urlhaus.abuse.ch/url/156856/","VtLyra"
@@ -202789,7 +203070,7 @@
 "152916","2019-03-06 02:57:09","http://59.17.151.194:38709/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/152916/","zbetcheckin"
 "152915","2019-03-06 02:57:06","http://41.38.184.252:60422/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/152915/","zbetcheckin"
 "152914","2019-03-06 02:57:03","http://46.27.18.158:30604/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/152914/","zbetcheckin"
-"152913","2019-03-06 02:13:28","http://dl2.soft-lenta.ru/L21pc2NlbGxhbmVvdXMvUG9ydGFibGVfU29mdC9tYWdpY2lzby5leGU%3D/MTUzNTQzNTYxMQ%3D%3D","online","malware_download","exe","https://urlhaus.abuse.ch/url/152913/","zbetcheckin"
+"152913","2019-03-06 02:13:28","http://dl2.soft-lenta.ru/L21pc2NlbGxhbmVvdXMvUG9ydGFibGVfU29mdC9tYWdpY2lzby5leGU%3D/MTUzNTQzNTYxMQ%3D%3D","offline","malware_download","exe","https://urlhaus.abuse.ch/url/152913/","zbetcheckin"
 "152912","2019-03-06 02:09:04","http://essensualsnepal.com/wp-admin/includes/Swift_BancoPopula_pedido0047221.jar","offline","malware_download","zip","https://urlhaus.abuse.ch/url/152912/","zbetcheckin"
 "152911","2019-03-06 01:49:46","http://ingchuang.com/YMITC/sendincverif/service/ios/en_EN/032019/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152911/","Cryptolaemus1"
 "152910","2019-03-06 01:49:32","http://hsoft.ir/2UmJPdYAct_LIK/sendinc/messages/secure/en_EN/032019/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152910/","Cryptolaemus1"
@@ -203237,7 +203518,7 @@
 "152468","2019-03-05 12:50:10","http://blog.atxin.cc/wp-admin/sendincsec/messages/trust/EN/032019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152468/","Cryptolaemus1"
 "152467","2019-03-05 12:45:05","http://project.hoangnq.com/tour/images/catalog/sendincverif/service/secure/EN_en/03-2019/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/152467/","Cryptolaemus1"
 "152466","2019-03-05 12:35:02","http://ozemag.com/wp-content/themes/emag/template-parts/ashan.russia.zakaz.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/152466/","zbetcheckin"
-"152465","2019-03-05 12:34:07","http://ozemag.com/wp-content/themes/emag/template-parts/metro.cash.and.carry.zakaz.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/152465/","zbetcheckin"
+"152465","2019-03-05 12:34:07","http://ozemag.com/wp-content/themes/emag/template-parts/metro.cash.and.carry.zakaz.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/152465/","zbetcheckin"
 "152464","2019-03-05 12:34:04","http://46.29.160.82/mips","offline","malware_download","bashlite,elf,gafgyt","https://urlhaus.abuse.ch/url/152464/","zbetcheckin"
 "152463","2019-03-05 12:33:03","http://pantone-iq.com/wp-admin/kboh-1vr6p-jzks.view/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/152463/","Cryptolaemus1"
 "152462","2019-03-05 12:30:44","http://mohidigi.com/wp-admin/woic5-n2xz2-qjlnc.view/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/152462/","spamhaus"
@@ -205993,7 +206274,7 @@
 "149667","2019-03-01 14:34:05","http://199.38.245.231/vb/Amakano.arm5","offline","malware_download","elf","https://urlhaus.abuse.ch/url/149667/","Gandylyan1"
 "149666","2019-03-01 14:34:03","http://199.38.245.231/vb/Amakano.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/149666/","Gandylyan1"
 "149665","2019-03-01 13:30:08","https://storage.googleapis.com/wzukusers/user-34654398/documents/5c6fd6b4eb1c08aAMus8/go.jpeg","online","malware_download","gomes,javascript","https://urlhaus.abuse.ch/url/149665/","anonymous"
-"149664","2019-03-01 13:30:05","https://storage.googleapis.com/wzukusers/user-34654398/documents/5c7921a2cf26cUnJcGVm/nanocoregomes.txt","online","malware_download","base64,gomes","https://urlhaus.abuse.ch/url/149664/","anonymous"
+"149664","2019-03-01 13:30:05","https://storage.googleapis.com/wzukusers/user-34654398/documents/5c7921a2cf26cUnJcGVm/nanocoregomes.txt","offline","malware_download","base64,gomes","https://urlhaus.abuse.ch/url/149664/","anonymous"
 "149663","2019-03-01 13:25:07","https://www.zeeppro.com/IMG_809913_164652_.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/149663/","zbetcheckin"
 "149662","2019-03-01 13:12:04","http://88.255.142.202:63034/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/149662/","zbetcheckin"
 "149661","2019-03-01 13:08:04","http://shirkeswitch.net/jkt/oga/nnor.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/149661/","zbetcheckin"
@@ -206998,7 +207279,7 @@
 "148656","2019-02-27 13:10:02","http://149.154.68.154/table.png","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/148656/","abuse_ch"
 "148657","2019-02-27 13:10:02","http://149.154.68.154/worming.png","offline","malware_download","exe,Trickbot","https://urlhaus.abuse.ch/url/148657/","abuse_ch"
 "148654","2019-02-27 13:05:15","http://ihat.jp/wp-content/themes/www.ihat.jp/fonts/msg.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/148654/","zbetcheckin"
-"148653","2019-02-27 13:05:14","http://filen5.utengine.co.kr/LiveService/Update/02/Tool02_1221.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/148653/","zbetcheckin"
+"148653","2019-02-27 13:05:14","http://filen5.utengine.co.kr/LiveService/Update/02/Tool02_1221.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/148653/","zbetcheckin"
 "148652","2019-02-27 13:02:07","https://tundefowe.org/wp-content/themes/monster-business/template-parts/Vseros.Bank.zakaz.docx.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/148652/","zbetcheckin"
 "148651","2019-02-27 13:02:05","http://www.dejong-greiner.at/wp-content/themes/revolution-code-blue/gray/_vti_cnf/msg.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/148651/","zbetcheckin"
 "148650","2019-02-27 13:01:05","http://simlock.us/fafa.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/148650/","zbetcheckin"
@@ -210313,7 +210594,7 @@
 "145166","2019-02-25 06:30:05","http://gweboffice.co.uk/admin1@office3.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/145166/","abuse_ch"
 "145165","2019-02-25 06:27:02","http://77.73.70.115/dkfjb/ke1.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/145165/","zbetcheckin"
 "145164","2019-02-25 06:26:03","http://baycityfence.com/BUBA-PO.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/145164/","abuse_ch"
-"145163","2019-02-25 06:13:07","http://down.tgjkbx.cn/openlink/xzq1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/145163/","zbetcheckin"
+"145163","2019-02-25 06:13:07","http://down.tgjkbx.cn/openlink/xzq1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/145163/","zbetcheckin"
 "145161","2019-02-25 06:01:57","http://80.211.172.75/armv5l","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/145161/","0xrb"
 "145162","2019-02-25 06:01:57","http://80.211.172.75/powerpc-440fp","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/145162/","0xrb"
 "145160","2019-02-25 06:01:54","http://80.211.172.75/armv4l","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/145160/","0xrb"
@@ -213586,7 +213867,7 @@
 "141748","2019-02-21 11:31:33","http://iltopdeltop.com/de_DE/IANJTUAEE4785475/","offline","malware_download","None","https://urlhaus.abuse.ch/url/141748/","spamhaus"
 "141747","2019-02-21 11:28:04","http://khoangsanbg.com.vn/themes/De_de/JAKPOL2671693/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/141747/","spamhaus"
 "141746","2019-02-21 11:25:50","http://kamagra4uk.com/tadmin/ff/zic.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/141746/","zbetcheckin"
-"141745","2019-02-21 11:25:43","http://granportale.com.br/bros/22.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/141745/","zbetcheckin"
+"141745","2019-02-21 11:25:43","http://granportale.com.br/bros/22.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/141745/","zbetcheckin"
 "141744","2019-02-21 11:25:09","http://hyper.gaminggo.website/DE/DE/MGCRMUHE2025190/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/141744/","spamhaus"
 "141743","2019-02-21 11:24:06","http://granportale.com.br/bros/14.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/141743/","zbetcheckin"
 "141742","2019-02-21 11:23:48","http://granportale.com.br/img/nel.jpg","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/141742/","zbetcheckin"
@@ -213628,7 +213909,7 @@
 "141706","2019-02-21 10:44:10","http://files.anjian.com/forum/201307/24/194027tt7gtjutf89fjpfj.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/141706/","zbetcheckin"
 "141705","2019-02-21 10:44:03","http://b.top4top.net/p_1113zezwp1.jpg","offline","malware_download","exe,njRAT","https://urlhaus.abuse.ch/url/141705/","zbetcheckin"
 "141704","2019-02-21 10:44:03","http://kamagra4uk.com/tadmin/mor/nmor.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/141704/","zbetcheckin"
-"141703","2019-02-21 10:43:07","http://granportale.com.br/img/prince.jpg","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/141703/","zbetcheckin"
+"141703","2019-02-21 10:43:07","http://granportale.com.br/img/prince.jpg","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/141703/","zbetcheckin"
 "141702","2019-02-21 10:41:02","http://34.229.7.66/Februar2019/DAHDDBMJW2146584/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/141702/","spamhaus"
 "141701","2019-02-21 10:39:08","http://185.120.58.196/leag.bin","offline","malware_download","ArkeiStealer,exe,stealer,Vidar","https://urlhaus.abuse.ch/url/141701/","anonymous"
 "141700","2019-02-21 10:37:08","http://ngkidshop.com/DE/CWIRDUAYAA0892717/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/141700/","spamhaus"
@@ -213827,7 +214108,7 @@
 "141505","2019-02-21 08:20:08","http://lojamariadenazare.com/ERoa6umx53Ycv0HN_jhVO7N/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/141505/","Cryptolaemus1"
 "141504","2019-02-21 08:20:03","http://188.192.104.226/wordpress/WLc3L83MPzz0b_Y5/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/141504/","Cryptolaemus1"
 "141503","2019-02-21 08:15:05","https://uccea5e316cd14ad1ec0a2084d92.dl.dropboxusercontent.com/cd/0/get/Abu2XJyXhuO7ahLGSkLWm2vvvrZkszcwfEC37Lmli-R4WBGoro7aZ7h8zDTwYYAIoewdKMNUmYArLAirRGI18-p0DYaZQBMhfPolpZru69v1EQ/file?dl=1","offline","malware_download","zip","https://urlhaus.abuse.ch/url/141503/","zbetcheckin"
-"141502","2019-02-21 08:12:27","http://granportale.com.br/imagens/dek.jpg","offline","malware_download","exe,payload,stage2","https://urlhaus.abuse.ch/url/141502/","shotgunner101"
+"141502","2019-02-21 08:12:27","http://granportale.com.br/imagens/dek.jpg","online","malware_download","exe,payload,stage2","https://urlhaus.abuse.ch/url/141502/","shotgunner101"
 "141501","2019-02-21 08:06:10","http://36.78.126.219:33095/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/141501/","zbetcheckin"
 "141500","2019-02-21 08:06:02","http://185.244.25.198:80/bins/arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/141500/","zbetcheckin"
 "141499","2019-02-21 08:05:06","http://116.109.202.44:58728/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/141499/","zbetcheckin"
@@ -215013,7 +215294,7 @@
 "140318","2019-02-20 02:22:02","http://chuthapdobg.org.vn/tmp/Invoice/hgjz-zS1_rC-tl3","offline","malware_download","doc","https://urlhaus.abuse.ch/url/140318/","zbetcheckin"
 "140317","2019-02-20 02:21:10","http://yrsmartshoppy.com/t.exe","offline","malware_download","exe,GandCrab","https://urlhaus.abuse.ch/url/140317/","zbetcheckin"
 "140316","2019-02-20 02:21:06","http://139.99.186.18/xml/akin.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/140316/","zbetcheckin"
-"140315","2019-02-20 02:15:08","http://static.topxgun.com/1465810383951_443.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/140315/","zbetcheckin"
+"140315","2019-02-20 02:15:08","http://static.topxgun.com/1465810383951_443.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/140315/","zbetcheckin"
 "140314","2019-02-20 02:13:05","http://kamagra4uk.com/sa/jo/jeo.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/140314/","zbetcheckin"
 "140313","2019-02-20 02:13:04","http://oliveiraejesus.com.br/js/p.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/140313/","zbetcheckin"
 "140312","2019-02-20 02:06:07","http://nondollarreport.com/wp-content/cache/jboy.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/140312/","zbetcheckin"
@@ -220136,7 +220417,7 @@
 "135193","2019-02-18 21:13:04","https://agilife.pl/Februar2019/OTFLSOJ5769126/Rechnungskorrektur/Rechnungsanschrift/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/135193/","Cryptolaemus1"
 "135192","2019-02-18 20:54:13","http://missionautosalesinc.com/secure.myaccount.resourses.com/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/135192/","Cryptolaemus1"
 "135191","2019-02-18 20:45:07","http://dverliga.ru/En_us/corporation/Invoice_Notice/DVahQ-cLr_Gqhq-OlY","offline","malware_download","doc","https://urlhaus.abuse.ch/url/135191/","zbetcheckin"
-"135190","2019-02-18 20:44:14","http://d3.99ddd.com/down/cicillk1.9.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/135190/","zbetcheckin"
+"135190","2019-02-18 20:44:14","http://d3.99ddd.com/down/cicillk1.9.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/135190/","zbetcheckin"
 "135189","2019-02-18 20:37:02","http://weiweinote.com/US/New_invoice/yiURQ-1c_K-Gop","offline","malware_download","doc","https://urlhaus.abuse.ch/url/135189/","zbetcheckin"
 "135188","2019-02-18 20:15:04","https://109.169.89.4/doc/doc.exe","offline","malware_download","Formbook","https://urlhaus.abuse.ch/url/135188/","JRoosen"
 "135187","2019-02-18 20:09:08","http://supdate.mediaweb.co.kr/download/pica/client/data/uninstall_1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/135187/","zbetcheckin"
@@ -222820,7 +223101,7 @@
 "132508","2019-02-18 12:02:03","http://185.224.249.181:80/bins/despise.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/132508/","zbetcheckin"
 "132507","2019-02-18 12:01:04","http://82.253.156.136/wordpress/Februar2019/RXZOTII4866226/GER/Rechnungszahlung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132507/","spamhaus"
 "132506","2019-02-18 11:58:09","http://hourofcode.cn/De_de/WMUPSXLK9917373/Rechnungskorrektur/Zahlungserinnerung/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132506/","spamhaus"
-"132505","2019-02-18 11:55:02","http://down.softlist.tcroot.cn/xbdtfences4310v1426.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/132505/","zbetcheckin"
+"132505","2019-02-18 11:55:02","http://down.softlist.tcroot.cn/xbdtfences4310v1426.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/132505/","zbetcheckin"
 "132504","2019-02-18 11:53:11","http://menardvidal.com/new.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/132504/","zbetcheckin"
 "132503","2019-02-18 11:53:08","http://159.203.101.9/de_DE/XNTTSEBRUB9943814/Scan/DOC/","offline","malware_download","emotet,heodo,Tinba","https://urlhaus.abuse.ch/url/132503/","spamhaus"
 "132502","2019-02-18 11:52:14","http://185.224.249.181:80/bins/despise.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/132502/","zbetcheckin"
@@ -226622,8 +226903,8 @@
 "128705","2019-02-17 06:26:06","https://www.e-basvur.com/wp-content/themes/bizcorp/inc/ssj.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/128705/","lovemalware"
 "128704","2019-02-17 06:26:04","http://104.168.149.180/vb/Amakano.i686","offline","malware_download","elf","https://urlhaus.abuse.ch/url/128704/","Gandylyan1"
 "128703","2019-02-17 06:26:02","http://104.168.149.180/vb/Amakano.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/128703/","Gandylyan1"
-"128702","2019-02-17 06:20:10","http://dl-gameplayer.dmm.com/product/apkggame/silkys_angelica/silkys_angelica/win/src/content/data/AI5WIN.exe","online","malware_download","CoinMiner,exe","https://urlhaus.abuse.ch/url/128702/","zbetcheckin"
-"128701","2019-02-17 05:43:08","http://dl-gameplayer.dmm.com/product/apkggame/nel_narikiri/nel_narikiri/win/src/content/data/%E3%81%AA%E3%82%8A%E3%81%8D%E3%82%8A%E3%83%90%E3%82%AB%E3%83%83%E3%83%97%E3%83%AB%EF%BC%81.exe","online","malware_download","exe,GandCrab","https://urlhaus.abuse.ch/url/128701/","zbetcheckin"
+"128702","2019-02-17 06:20:10","http://dl-gameplayer.dmm.com/product/apkggame/silkys_angelica/silkys_angelica/win/src/content/data/AI5WIN.exe","offline","malware_download","CoinMiner,exe","https://urlhaus.abuse.ch/url/128702/","zbetcheckin"
+"128701","2019-02-17 05:43:08","http://dl-gameplayer.dmm.com/product/apkggame/nel_narikiri/nel_narikiri/win/src/content/data/%E3%81%AA%E3%82%8A%E3%81%8D%E3%82%8A%E3%83%90%E3%82%AB%E3%83%83%E3%83%97%E3%83%AB%EF%BC%81.exe","offline","malware_download","exe,GandCrab","https://urlhaus.abuse.ch/url/128701/","zbetcheckin"
 "128700","2019-02-17 05:41:05","http://dl-gameplayer.dmm.com/product/apkggame/GIGA_BaldrBringerExtendCode/GIGA_BaldrBringerExtendCode/win/src/content/data/Data/Uninstall.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/128700/","zbetcheckin"
 "128699","2019-02-17 05:39:00","http://helpyouman.tk/files/f0276370.xsph.ru.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/128699/","zbetcheckin"
 "128698","2019-02-17 03:22:05","http://forodigitalpyme.es/US/file/Invoice_Notice/YSBoc-HFsMY_FXHFU-bf","offline","malware_download","doc","https://urlhaus.abuse.ch/url/128698/","zbetcheckin"
@@ -227682,7 +227963,7 @@
 "127644","2019-02-16 16:43:26","http://fair-watduoliprudential.com.watchdogdns.duckdns.org/jack/dmw.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/127644/","shotgunner101"
 "127643","2019-02-16 16:43:06","http://fair-watduoliprudential.com.watchdogdns.duckdns.org/jack/dd.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/127643/","shotgunner101"
 "127642","2019-02-16 16:42:57","http://fair-watduoliprudential.com.watchdogdns.duckdns.org/global/vvc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/127642/","shotgunner101"
-"127641","2019-02-16 16:42:48","http://garenanow4.myvnc.com/CIG.dat","online","malware_download","exe","https://urlhaus.abuse.ch/url/127641/","zbetcheckin"
+"127641","2019-02-16 16:42:48","http://garenanow4.myvnc.com/CIG.dat","offline","malware_download","exe","https://urlhaus.abuse.ch/url/127641/","zbetcheckin"
 "127640","2019-02-16 16:42:32","http://fair-watduoliprudential.com.watchdogdns.duckdns.org/global/vc.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/127640/","shotgunner101"
 "127639","2019-02-16 16:42:29","http://fair-watduoliprudential.com.watchdogdns.duckdns.org/global/vb.exe","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/127639/","shotgunner101"
 "127638","2019-02-16 16:42:16","http://fair-watduoliprudential.com.watchdogdns.duckdns.org/global/global.doc","offline","malware_download","exe,payload","https://urlhaus.abuse.ch/url/127638/","shotgunner101"
@@ -230216,7 +230497,7 @@
 "125109","2019-02-15 11:20:05","http://46.29.166.149:80/bins/daku.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/125109/","zbetcheckin"
 "125108","2019-02-15 11:20:03","http://91.105.126.31:28395/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/125108/","zbetcheckin"
 "125107","2019-02-15 11:17:03","http://18.188.113.212/DE_de/UPNEDGNCRR5337942/de/RECHNUNG/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125107/","spamhaus"
-"125106","2019-02-15 11:16:03","http://www.iremart.es/farmautils/FarmaUtils.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/125106/","abuse_ch"
+"125106","2019-02-15 11:16:03","http://www.iremart.es/farmautils/FarmaUtils.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/125106/","abuse_ch"
 "125105","2019-02-15 11:15:03","http://46.249.62.199/Tinx86_14.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/125105/","abuse_ch"
 "125104","2019-02-15 11:12:34","http://139.59.130.73/De_de/XFTAUDVWI4985024/Scan/DOC/","offline","malware_download","emotet,heodo","https://urlhaus.abuse.ch/url/125104/","spamhaus"
 "125103","2019-02-15 11:12:34","http://157.230.11.49/yakuza.arm5","offline","malware_download","elf,gafgyt","https://urlhaus.abuse.ch/url/125103/","0xrb"
@@ -239149,7 +239430,7 @@
 "116033","2019-02-02 08:37:09","http://mariacollectionfashion.com/En/New_invoice/IbOXa-vU_gogZMlMJ-mgI/","offline","malware_download","emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/116033/","Cryptolaemus1"
 "116032","2019-02-02 08:37:04","http://uckelecorp.com/QNTVLmNmt//","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/116032/","Cryptolaemus1"
 "116031","2019-02-02 08:28:08","http://apware.co.kr/Common/Apw_RemoteXP.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/116031/","zbetcheckin"
-"116030","2019-02-02 08:21:10","http://www.apware.co.kr/PartsOffer/Exe/PartsOffer.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/116030/","zbetcheckin"
+"116030","2019-02-02 08:21:10","http://www.apware.co.kr/PartsOffer/Exe/PartsOffer.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/116030/","zbetcheckin"
 "116029","2019-02-02 08:01:08","http://104.244.74.55/tomandjerry.exe","offline","malware_download","exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/116029/","abuse_ch"
 "116028","2019-02-02 07:36:09","http://67.205.150.97/bins/VPNFilter.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/116028/","0xrb"
 "116027","2019-02-02 07:36:08","http://67.205.150.97/bins/VPNFilter.sh4","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/116027/","0xrb"
@@ -239872,7 +240153,7 @@
 "115305","2019-02-01 13:57:06","http://efreedommaker.com/GFZmz_LsLs-qvmQ/eM/Payments/02_19/","offline","malware_download","doc,emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/115305/","Cryptolaemus1"
 "115304","2019-02-01 13:53:07","http://94.156.35.177/ftpuser001/released.exe","offline","malware_download","exe,njRAT,payload,stage2","https://urlhaus.abuse.ch/url/115304/","shotgunner101"
 "115302","2019-02-01 13:23:07","http://hhind.co.kr/intra/fant_fct.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/115302/","zbetcheckin"
-"115301","2019-02-01 13:22:38","http://cnhdsoft.com/english/SuperLANadmin.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/115301/","zbetcheckin"
+"115301","2019-02-01 13:22:38","http://cnhdsoft.com/english/SuperLANadmin.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/115301/","zbetcheckin"
 "115299","2019-02-01 13:08:19","http://bestsearchonweb.com/downloadpremiumsoftware/setupff/license%20keys%20for%20all%20antivirus%20latest.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/115299/","zbetcheckin"
 "115297","2019-02-01 13:03:02","https://p.dropmy.nl/dcqcms.hta","offline","malware_download","hta","https://urlhaus.abuse.ch/url/115297/","abuse_ch"
 "115296","2019-02-01 13:01:05","https://p.dropmy.nl/wmuycv.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/115296/","abuse_ch"
@@ -241881,7 +242162,7 @@
 "113169","2019-01-29 18:55:12","http://fr.buzzimag.com/cDFKb_t4oAf-mrA/6B3/Information/2019-01/","offline","malware_download","emotet,epoch1,heodo,Quakbot","https://urlhaus.abuse.ch/url/113169/","Cryptolaemus1"
 "113168","2019-01-29 18:55:08","http://myracc.com/YcKe_lBGYi-RGToXv/nS/Messages/012019/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/113168/","Cryptolaemus1"
 "113167","2019-01-29 18:55:05","http://tbadool.com/fZNn_bnpvc-BUq/F6A/Information/012019/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/113167/","Cryptolaemus1"
-"113166","2019-01-29 18:38:18","http://czsl.91756.cn/plugin/iasetup.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/113166/","zbetcheckin"
+"113166","2019-01-29 18:38:18","http://czsl.91756.cn/plugin/iasetup.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/113166/","zbetcheckin"
 "113165","2019-01-29 18:31:13","http://rybinskbarhat.ru/gAZpEuKDbV6kcuHyb_E1/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/113165/","Cryptolaemus1"
 "113164","2019-01-29 18:31:11","http://partnerkamany.ru/yZOQDu3Nr8/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/113164/","Cryptolaemus1"
 "113163","2019-01-29 18:31:10","https://xizanglvyou.org/uomisj2l/967LbGKLg_RjJrgY1sW/","offline","malware_download","emotet,epoch2,exe,heodo","https://urlhaus.abuse.ch/url/113163/","Cryptolaemus1"
@@ -241952,7 +242233,7 @@
 "113096","2019-01-29 17:03:03","http://109.169.89.4/job/job.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/113096/","de_aviation"
 "113095","2019-01-29 17:02:02","http://salongolenarges.ir/urEO_Gj9-Ze/hsk/Clients_information/01_19/","offline","malware_download","heodo","https://urlhaus.abuse.ch/url/113095/","spamhaus"
 "113094","2019-01-29 16:50:10","http://dawaphoto.co.kr/software/HANAPHOTO.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/113094/","zbetcheckin"
-"113093","2019-01-29 16:49:09","http://dawaphoto.co.kr/software/DAWAPHOTOBB.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/113093/","zbetcheckin"
+"113093","2019-01-29 16:49:09","http://dawaphoto.co.kr/software/DAWAPHOTOBB.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/113093/","zbetcheckin"
 "113092","2019-01-29 16:48:03","http://165.227.36.38:80/bins/hoho.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/113092/","zbetcheckin"
 "113091","2019-01-29 16:48:02","http://194.147.35.54:80/ankit/os.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/113091/","zbetcheckin"
 "113090","2019-01-29 16:46:05","http://194.147.35.54:80/ankit/os.ppc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/113090/","zbetcheckin"
@@ -242007,8 +242288,8 @@
 "113041","2019-01-29 16:31:05","http://alexxrvra.com/dKDWJ_bmd5E-RCRSAs/Ib0/Transactions/2019-01/","offline","malware_download","doc,emotet,epoch1,heodo,Quakbot","https://urlhaus.abuse.ch/url/113041/","Cryptolaemus1"
 "113040","2019-01-29 16:26:03","http://194.147.35.54/ankit/os.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/113040/","zbetcheckin"
 "113039","2019-01-29 16:25:02","http://194.147.35.54/ankit/os.arm","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/113039/","zbetcheckin"
-"113038","2019-01-29 16:24:21","http://www.hanaphoto.co.kr/software/HANAPHOTO.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/113038/","zbetcheckin"
-"113037","2019-01-29 16:24:13","http://hanaphoto.co.kr/software/HANAPHOTO.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/113037/","zbetcheckin"
+"113038","2019-01-29 16:24:21","http://www.hanaphoto.co.kr/software/HANAPHOTO.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/113038/","zbetcheckin"
+"113037","2019-01-29 16:24:13","http://hanaphoto.co.kr/software/HANAPHOTO.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/113037/","zbetcheckin"
 "113036","2019-01-29 16:22:02","http://194.147.35.54/ankit/os.m68k","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/113036/","zbetcheckin"
 "113035","2019-01-29 16:20:03","http://alkmaarculinairplaza.nl/TKuWw_0v-qNDDEkO/iir/Attachments/2019-01/","offline","malware_download","heodo,Quakbot","https://urlhaus.abuse.ch/url/113035/","spamhaus"
 "113034","2019-01-29 16:17:02","http://194.147.35.54/ankit/os.arm7","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/113034/","zbetcheckin"
@@ -243380,7 +243661,7 @@
 "111630","2019-01-27 21:58:38","http://189.180.253.216:29339/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/111630/","zbetcheckin"
 "111629","2019-01-27 21:58:34","http://177.68.147.145:1142/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/111629/","zbetcheckin"
 "111628","2019-01-27 21:58:28","http://37.34.244.167:16848/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/111628/","zbetcheckin"
-"111627","2019-01-27 21:52:04","http://amd.alibuf.com:7723/dsc.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/111627/","zbetcheckin"
+"111627","2019-01-27 21:52:04","http://amd.alibuf.com:7723/dsc.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/111627/","zbetcheckin"
 "111626","2019-01-27 21:51:06","http://66.117.6.174/wpd.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/111626/","zbetcheckin"
 "111625","2019-01-27 21:08:06","http://moha-group.ir/nazy/PurchaseOrder.exe","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/111625/","zbetcheckin"
 "111624","2019-01-27 21:07:05","http://komax.ir/Adobe_Flash_Player_Plugin.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/111624/","zbetcheckin"
@@ -243586,9 +243867,9 @@
 "111423","2019-01-27 14:46:10","http://ca.hashpost.org:443/123.exe","offline","malware_download","CoinMiner,EBDP","https://urlhaus.abuse.ch/url/111423/","anonymous"
 "111422","2019-01-27 14:43:03","http://cnm.idc3389.top/download.exe","offline","malware_download","EBDP","https://urlhaus.abuse.ch/url/111422/","anonymous"
 "111421","2019-01-27 14:42:08","http://ca.monerov8.com:443/321.exe","offline","malware_download","CoinMiner,EBDP,Redosdru","https://urlhaus.abuse.ch/url/111421/","anonymous"
-"111420","2019-01-27 14:39:16","http://dnn.alibuf.com:7723/dsc12.exe","online","malware_download","CoinMiner,EBDP","https://urlhaus.abuse.ch/url/111420/","anonymous"
-"111419","2019-01-27 14:39:07","http://dnn.alibuf.com:7723/dsc.exe","online","malware_download","CoinMiner,EBDP","https://urlhaus.abuse.ch/url/111419/","anonymous"
-"111418","2019-01-27 14:38:14","http://t.honker.info:8/madk.exe","online","malware_download","CoinMiner,EBDP","https://urlhaus.abuse.ch/url/111418/","anonymous"
+"111420","2019-01-27 14:39:16","http://dnn.alibuf.com:7723/dsc12.exe","offline","malware_download","CoinMiner,EBDP","https://urlhaus.abuse.ch/url/111420/","anonymous"
+"111419","2019-01-27 14:39:07","http://dnn.alibuf.com:7723/dsc.exe","offline","malware_download","CoinMiner,EBDP","https://urlhaus.abuse.ch/url/111419/","anonymous"
+"111418","2019-01-27 14:38:14","http://t.honker.info:8/madk.exe","offline","malware_download","CoinMiner,EBDP","https://urlhaus.abuse.ch/url/111418/","anonymous"
 "111417","2019-01-27 14:38:06","http://t.honker.info:8/445.exe","online","malware_download","CoinMiner,EBDP","https://urlhaus.abuse.ch/url/111417/","anonymous"
 "111416","2019-01-27 14:30:03","http://80.211.110.193/AB4g5/Josho.mips","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/111416/","zbetcheckin"
 "111415","2019-01-27 14:30:02","http://185.101.105.162/bins/Solstice.arm5","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/111415/","zbetcheckin"
@@ -244245,7 +244526,7 @@
 "110703","2019-01-26 01:13:12","http://ztds2.online/20190118/ppi02.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110703/","zbetcheckin"
 "110702","2019-01-26 01:13:06","http://cartomanzia-al-telefono.org/resigos.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110702/","zbetcheckin"
 "110701","2019-01-26 01:12:29","http://cartomanzia-italia.org/risten.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110701/","zbetcheckin"
-"110700","2019-01-26 01:12:25","http://jzny.com.cn/pdfdownload/foxitreader_setup.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/110700/","zbetcheckin"
+"110700","2019-01-26 01:12:25","http://jzny.com.cn/pdfdownload/foxitreader_setup.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/110700/","zbetcheckin"
 "110699","2019-01-26 01:07:12","http://cbet.ca/wp-content/themes/twentyseventeen/noyyy.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/110699/","zbetcheckin"
 "110698","2019-01-26 00:49:40","http://yclasdy.cf/vhzV-Okb_pAkDId-rxm/EXT/PaymentStatus/EN_en/Past-Due-Invoices/","offline","malware_download","doc,emotet,epoch2,heodo","https://urlhaus.abuse.ch/url/110698/","Cryptolaemus1"
 "110697","2019-01-26 00:49:30","http://kortinakomarno.sk/Rechnungen/012019./","offline","malware_download","doc,emotet,epoch1","https://urlhaus.abuse.ch/url/110697/","Cryptolaemus1"
@@ -245782,7 +246063,7 @@
 "109075","2019-01-24 06:32:12","http://142.93.227.149/bins/arm5.b","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/109075/","0xrb"
 "109074","2019-01-24 06:32:11","http://142.93.227.149/bins/arm.b","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/109074/","0xrb"
 "109073","2019-01-24 06:30:11","http://pro-tone.ru/label/CanadaPostLabel.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/109073/","zbetcheckin"
-"109072","2019-01-24 06:29:11","http://sv.pvroe.com/roe/loader/update.dat","online","malware_download","exe","https://urlhaus.abuse.ch/url/109072/","zbetcheckin"
+"109072","2019-01-24 06:29:11","http://sv.pvroe.com/roe/loader/update.dat","offline","malware_download","exe","https://urlhaus.abuse.ch/url/109072/","zbetcheckin"
 "109071","2019-01-24 06:29:07","https://access-cash.ae.org/filestorage/Agreement.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/109071/","zbetcheckin"
 "109070","2019-01-24 06:23:19","http://51.38.83.33/bins/kowai.x86","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/109070/","0xrb"
 "109069","2019-01-24 06:23:18","http://51.38.83.33/bins/kowai.spc","offline","malware_download","elf,mirai","https://urlhaus.abuse.ch/url/109069/","0xrb"
@@ -245821,7 +246102,7 @@
 "109036","2019-01-24 06:22:08","http://blackfridaytvoitreider.store/errordocs/style/ssj.jpg","offline","malware_download","Troldesh","https://urlhaus.abuse.ch/url/109036/","wugeej"
 "109035","2019-01-24 04:49:14","http://psb-india.com/file/Agreement.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/109035/","zbetcheckin"
 "109034","2019-01-24 04:49:04","http://apprunhouse.com/1/skype.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/109034/","zbetcheckin"
-"109033","2019-01-24 03:45:26","http://104.192.108.19/softdl.360tpcdn.com/LOLBox/LOLBox_3.7.2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/109033/","zbetcheckin"
+"109033","2019-01-24 03:45:26","http://104.192.108.19/softdl.360tpcdn.com/LOLBox/LOLBox_3.7.2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/109033/","zbetcheckin"
 "109032","2019-01-24 03:31:19","http://focusbrand.cn/Documents/012019/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/109032/","Cryptolaemus1"
 "109031","2019-01-24 03:31:16","http://humanjournal.site/Clients_information/012019/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/109031/","Cryptolaemus1"
 "109030","2019-01-24 03:31:07","http://topstick.co.kr/wp-content/uploads/Transactions/012019/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/109030/","Cryptolaemus1"
@@ -246554,7 +246835,7 @@
 "108283","2019-01-23 11:13:02","http://attach.mail.daum.net/bigfile/v1/urls/d/4QnWTDd-4XsuUy1XlRMzcibqJfU/IHdzYO55cuS7ds4lmMKxpA","offline","malware_download","Loki,lokibot","https://urlhaus.abuse.ch/url/108283/","de_aviation"
 "108284","2019-01-23 11:13:02","https://sites.google.com/site/trojanhorse8776/crypter/Spider%20Hack%20Tools%20Plus%20v1.0%20By%20Spider%20Virus.rar?attredirects=0&d=1","offline","malware_download","njRAT,rat","https://urlhaus.abuse.ch/url/108284/","de_aviation"
 "108280","2019-01-23 11:12:59","http://druzim.freewww.biz/clr.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/108280/","de_aviation"
-"108279","2019-01-23 11:12:59","http://druzim.freewww.biz/rstyle.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/108279/","de_aviation"
+"108279","2019-01-23 11:12:59","http://druzim.freewww.biz/rstyle.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/108279/","de_aviation"
 "108278","2019-01-23 11:12:58","http://druzim.freewww.biz/ASUFER.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/108278/","de_aviation"
 "108277","2019-01-23 11:12:57","http://webq.wikaba.com/grafil.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/108277/","de_aviation"
 "108275","2019-01-23 11:12:51","http://druzim.freewww.biz/Aabes.exe","online","malware_download","exe,Loader","https://urlhaus.abuse.ch/url/108275/","de_aviation"
@@ -248459,7 +248740,7 @@
 "106332","2019-01-21 13:36:36","http://qdgi.com/Videos/index.php","offline","malware_download","cab","https://urlhaus.abuse.ch/url/106332/","oppimaniac"
 "106331","2019-01-21 13:32:08","https://dev-point.co/uploads1/0f6f5727b9841.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106331/","zbetcheckin"
 "106330","2019-01-21 13:32:06","http://dev-point.co/uploads1/bf538abc25841.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106330/","zbetcheckin"
-"106329","2019-01-21 13:27:48","http://filen3.utengine.co.kr/LiveService/Update/02/Tool02_1217.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106329/","zbetcheckin"
+"106329","2019-01-21 13:27:48","http://filen3.utengine.co.kr/LiveService/Update/02/Tool02_1217.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106329/","zbetcheckin"
 "106328","2019-01-21 13:26:12","http://appsstatic2fd4se5em.s3.amazonaws.com/mediaplayer_update.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106328/","zbetcheckin"
 "106327","2019-01-21 13:26:02","http://dev-point.co/uploads1/630cdefc4bf41.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106327/","zbetcheckin"
 "106326","2019-01-21 13:06:04","http://pingtelecom.eu/Factura,vodafone.exe","offline","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/106326/","zbetcheckin"
@@ -248692,8 +248973,8 @@
 "106097","2019-01-20 18:36:59","http://cdnpic.mgyun.com/files/products/vRoot/2013/17039360/VRoot_1.4.0.2955_Setup_183.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106097/","zbetcheckin"
 "106096","2019-01-20 17:56:07","http://ocrn597v5.bkt.clouddn.com/cjtaoke2.9.5.0.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106096/","zbetcheckin"
 "106095","2019-01-20 17:08:24","http://down.leyoucoc.cn/LYSetup.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106095/","zbetcheckin"
-"106094","2019-01-20 16:54:32","http://download.rising.com.cn/zsgj/ravmofei.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106094/","zbetcheckin"
-"106093","2019-01-20 16:50:33","http://download.rising.com.cn/zsgj/RavMGF.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106093/","zbetcheckin"
+"106094","2019-01-20 16:54:32","http://download.rising.com.cn/zsgj/ravmofei.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106094/","zbetcheckin"
+"106093","2019-01-20 16:50:33","http://download.rising.com.cn/zsgj/RavMGF.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106093/","zbetcheckin"
 "106092","2019-01-20 16:47:33","http://futurealind.com/a.exe","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/106092/","abuse_ch"
 "106091","2019-01-20 15:53:36","http://179.162.177.249:21381/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/106091/","zbetcheckin"
 "106090","2019-01-20 15:48:09","http://config.myjhxl.com/updater/newupate.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106090/","zbetcheckin"
@@ -248727,10 +249008,10 @@
 "106062","2019-01-20 11:16:09","http://www.wyptk.com/openlink/openlink1.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106062/","zbetcheckin"
 "106061","2019-01-20 11:16:04","http://wbd.5636.com/d5/5636.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106061/","zbetcheckin"
 "106060","2019-01-20 11:07:12","http://kimyen.net/upload/CTCTanthu.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106060/","zbetcheckin"
-"106059","2019-01-20 10:57:56","http://download.rising.com.cn/zsgj/ravnetsky.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106059/","zbetcheckin"
+"106059","2019-01-20 10:57:56","http://download.rising.com.cn/zsgj/ravnetsky.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106059/","zbetcheckin"
 "106058","2019-01-20 10:53:12","http://kimyen.net/upload/VLTKNhatRac.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106058/","zbetcheckin"
 "106057","2019-01-20 10:47:12","http://d1.udashi.com/soft/dnyx/20348/%E5%B0%8F%E8%8D%89%E8%BE%85%E5%8A%A9%E6%9C%80%E6%96%B0%E7%89%88.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106057/","zbetcheckin"
-"106056","2019-01-20 10:40:16","http://kimyen.net/upload/VLTKBacdau.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106056/","zbetcheckin"
+"106056","2019-01-20 10:40:16","http://kimyen.net/upload/VLTKBacdau.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106056/","zbetcheckin"
 "106054","2019-01-20 10:35:41","http://adobe-flashplayer.hopto.org/adobe_fplayerv51.0.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106054/","zbetcheckin"
 "106053","2019-01-20 10:09:35","http://wbd.5636.com/d5/Client62156.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106053/","zbetcheckin"
 "106052","2019-01-20 10:04:36","http://179.225.172.83:46727/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/106052/","zbetcheckin"
@@ -248741,7 +249022,7 @@
 "106047","2019-01-20 09:40:42","http://rosalos.ug/xxx/39.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106047/","abuse_ch"
 "106046","2019-01-20 09:37:03","https://pomf.pyonpyon.moe/ggesuy.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106046/","abuse_ch"
 "106045","2019-01-20 09:30:07","http://d1exe.com/daqqcD87Y6.exe","offline","malware_download","exe,GandCrab,Ransomware,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/106045/","de_aviation"
-"106044","2019-01-20 08:58:29","http://down.pdflist.cqhbkjzx.com/SetupJSGsPDF_4416.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106044/","zbetcheckin"
+"106044","2019-01-20 08:58:29","http://down.pdflist.cqhbkjzx.com/SetupJSGsPDF_4416.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106044/","zbetcheckin"
 "106043","2019-01-20 08:45:05","http://cf.uuu9.com/pifu/tubiao/mianbao.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106043/","zbetcheckin"
 "106042","2019-01-20 08:36:10","http://dk5gckyelnxjl.cloudfront.net/c5.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106042/","zbetcheckin"
 "106041","2019-01-20 08:10:34","http://177.18.10.8:3243/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/106041/","zbetcheckin"
@@ -248749,7 +249030,7 @@
 "106039","2019-01-20 08:02:14","http://pcr1.pc6.com/rm/fixvidio.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/106039/","zbetcheckin"
 "106038","2019-01-20 08:00:13","http://station.brinkleyspubs.com/wp-includes/rssp.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106038/","zbetcheckin"
 "106037","2019-01-20 08:00:11","http://config.wwmhdq.com/bug/jkpic/JikePicUpFile.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106037/","zbetcheckin"
-"106036","2019-01-20 06:11:48","http://kimyen.net/upload/CTCKeoxe2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106036/","zbetcheckin"
+"106036","2019-01-20 06:11:48","http://kimyen.net/upload/CTCKeoxe2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106036/","zbetcheckin"
 "106035","2019-01-20 05:26:31","http://sgm.pc6.com/xiao/llk00.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106035/","zbetcheckin"
 "106034","2019-01-20 05:26:18","http://sgm.pc6.com/xiao4/kongjiangbing_65337.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106034/","zbetcheckin"
 "106033","2019-01-20 05:20:09","http://config.wwmhdq.com/bug/jkpic/sub/GeekPicMPage.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106033/","zbetcheckin"
@@ -248775,23 +249056,23 @@
 "106012","2019-01-19 23:30:07","http://d2.udashi.com/soft/29691/ICOshengchengqi.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106012/","zbetcheckin"
 "106011","2019-01-19 23:24:19","http://d2.udashi.com/soft/27957/dqeswds1.0.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106011/","zbetcheckin"
 "106009","2019-01-19 23:07:05","http://listmyfloor.com/file.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106009/","zbetcheckin"
-"106008","2019-01-19 22:27:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin135.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106008/","zbetcheckin"
+"106008","2019-01-19 22:27:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin135.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106008/","zbetcheckin"
 "106007","2019-01-19 22:24:35","http://220.135.8.93:1543/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/106007/","zbetcheckin"
 "106006","2019-01-19 22:20:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin128.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106006/","zbetcheckin"
 "106005","2019-01-19 22:19:59","http://121.41.0.159/mjsoft/Config/llctk/LLCTK.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106005/","zbetcheckin"
-"106003","2019-01-19 22:08:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin133.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106003/","zbetcheckin"
+"106003","2019-01-19 22:08:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin133.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/106003/","zbetcheckin"
 "106002","2019-01-19 22:05:07","http://cdn-10049480.file.myqcloud.com/jd/jd156.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106002/","zbetcheckin"
 "106000","2019-01-19 21:55:08","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin130.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/106000/","zbetcheckin"
 "105999","2019-01-19 21:43:05","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin142.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105999/","zbetcheckin"
 "105998","2019-01-19 21:43:03","http://cdn-10049480.file.myqcloud.com/jd/jd124.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105998/","zbetcheckin"
 "105997","2019-01-19 21:42:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin141.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105997/","zbetcheckin"
 "105996","2019-01-19 21:32:05","http://cdn-10049480.file.myqcloud.com/jd/jd127.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105996/","zbetcheckin"
-"105994","2019-01-19 21:31:03","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin146.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105994/","zbetcheckin"
+"105994","2019-01-19 21:31:03","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin146.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105994/","zbetcheckin"
 "105993","2019-01-19 21:29:10","http://ah.download.cycore.cn/rrt/32287da69c40a12819fe3874d0b63e66/73728155/684642c35e6d9fa859d961031ed2f626.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/105993/","zbetcheckin"
 "105992","2019-01-19 21:29:07","http://cdn-10049480.file.myqcloud.com/jd/jd145.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105992/","zbetcheckin"
 "105991","2019-01-19 21:29:06","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin140.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105991/","zbetcheckin"
 "105990","2019-01-19 21:21:19","http://clarabellebaby.com/wp-content/themes/wpex-pytheas/functions/meta/gallery-metabox/sserv.jpg","offline","malware_download","exe,Troldesh","https://urlhaus.abuse.ch/url/105990/","zbetcheckin"
-"105989","2019-01-19 21:13:05","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin131.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105989/","zbetcheckin"
+"105989","2019-01-19 21:13:05","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin131.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/105989/","zbetcheckin"
 "105988","2019-01-19 21:10:07","http://cdn-10049480.file.myqcloud.com/jd/jd144.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105988/","zbetcheckin"
 "105987","2019-01-19 21:05:05","http://cdn-10049480.file.myqcloud.com/jd/jd138.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105987/","zbetcheckin"
 "105985","2019-01-19 20:56:16","http://cdn-10049480.file.myqcloud.com/jd/jd136.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105985/","zbetcheckin"
@@ -248801,7 +249082,7 @@
 "105980","2019-01-19 20:55:03","http://193.148.69.33/bins/telnet.mips","offline","malware_download","elf","https://urlhaus.abuse.ch/url/105980/","Gandylyan1"
 "105981","2019-01-19 20:55:03","http://193.148.69.33/bins/telnet.mpsl","offline","malware_download","elf","https://urlhaus.abuse.ch/url/105981/","Gandylyan1"
 "105979","2019-01-19 20:55:02","http://193.148.69.33/bins/telnet.arm","offline","malware_download","elf","https://urlhaus.abuse.ch/url/105979/","Gandylyan1"
-"105977","2019-01-19 20:30:14","http://files.fqapps.com/hl3.3.8.0.exe","online","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/105977/","zbetcheckin"
+"105977","2019-01-19 20:30:14","http://files.fqapps.com/hl3.3.8.0.exe","offline","malware_download","AgentTesla,exe","https://urlhaus.abuse.ch/url/105977/","zbetcheckin"
 "105976","2019-01-19 20:20:07","http://cdn-10049480.file.myqcloud.com/qcoin/qcoin139.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105976/","zbetcheckin"
 "105975","2019-01-19 20:20:05","http://cdn-10049480.file.myqcloud.com/jd/jd137.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/105975/","zbetcheckin"
 "105973","2019-01-19 19:44:06","http://89.165.4.105:60255/.i","offline","malware_download","elf,hajime","https://urlhaus.abuse.ch/url/105973/","zbetcheckin"
@@ -254599,7 +254880,7 @@
 "100056","2018-12-27 14:39:03","http://174.128.239.250/b.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/100056/","zbetcheckin"
 "100055","2018-12-27 14:37:04","http://174.128.239.250/upsnew2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/100055/","zbetcheckin"
 "100054","2018-12-27 14:22:04","http://174.128.239.250/up.rar","offline","malware_download","exe","https://urlhaus.abuse.ch/url/100054/","zbetcheckin"
-"100053","2018-12-27 13:53:05","http://kuaizip.com/down/affiliate/KuaiZip_setup_10029.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/100053/","zbetcheckin"
+"100053","2018-12-27 13:53:05","http://kuaizip.com/down/affiliate/KuaiZip_setup_10029.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/100053/","zbetcheckin"
 "100052","2018-12-27 13:52:09","http://kuaizip.com/down/hps2.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/100052/","zbetcheckin"
 "100051","2018-12-27 13:36:13","http://add3565office.com/rstr","offline","malware_download","Encoded,ServHelper","https://urlhaus.abuse.ch/url/100051/","anonymous"
 "100050","2018-12-27 13:36:03","http://bursalilarinsaat.com/images/Akt724.zip","offline","malware_download","Ransomware,RUS,Troldesh,zipped-JS","https://urlhaus.abuse.ch/url/100050/","anonymous"
@@ -259652,7 +259933,7 @@
 "94856","2018-12-14 05:48:02","http://spth.virii.lu/monad.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94856/","zbetcheckin"
 "94855","2018-12-14 05:47:11","http://ini.egkj.com/soft/58wangwei/musicclub.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94855/","zbetcheckin"
 "94854","2018-12-14 05:47:10","http://s.51shijuan.com/cz09/51cz200908105172se.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/94854/","zbetcheckin"
-"94853","2018-12-14 05:47:05","http://ini.egkj.com/soft/58wangwei/merlin.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/94853/","zbetcheckin"
+"94853","2018-12-14 05:47:05","http://ini.egkj.com/soft/58wangwei/merlin.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94853/","zbetcheckin"
 "94852","2018-12-14 05:46:07","http://teamfluegel.com/WU_Receipt01.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/94852/","zbetcheckin"
 "94851","2018-12-14 05:46:04","https://sites.google.com/a/cvcatholic.org/middle-school-reading/home/participation-discussion-rubric/participation:discussionrubric.doc","offline","malware_download","doc","https://urlhaus.abuse.ch/url/94851/","zbetcheckin"
 "94850","2018-12-14 05:46:03","http://www.itwss.com/wp-content/themes/sydney/bolu.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/94850/","zbetcheckin"
@@ -261129,7 +261410,7 @@
 "93260","2018-12-11 19:37:03","http://kkorner.net/US/ACH/12_18/","offline","malware_download","emotet,epoch1,heodo","https://urlhaus.abuse.ch/url/93260/","Cryptolaemus1"
 "93259","2018-12-11 19:37:02","http://zoom-machinery.com/US/Attachments/12_18/","offline","malware_download","emotet,epoch1","https://urlhaus.abuse.ch/url/93259/","Cryptolaemus1"
 "93258","2018-12-11 18:52:02","http://kkorner.net/US/ACH/12_18","offline","malware_download","emotet","https://urlhaus.abuse.ch/url/93258/","zoomequipd"
-"93257","2018-12-11 18:50:03","http://94.244.25.21:51274/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/93257/","zbetcheckin"
+"93257","2018-12-11 18:50:03","http://94.244.25.21:51274/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/93257/","zbetcheckin"
 "93256","2018-12-11 18:49:01","http://vw-stickerspro.fr/wp-content/languages/plugins/bs.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/93256/","zbetcheckin"
 "93255","2018-12-11 18:48:08","http://ssosi.ru/huj/sprites/1234.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/93255/","malware_traffic"
 "93254","2018-12-11 18:48:07","http://ssosi.ru/idiot.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/93254/","malware_traffic"
@@ -263075,7 +263356,7 @@
 "91258","2018-12-07 16:06:07","http://essenceofkaroo.co.za/IRS.gov/Tax-Return-Transcript/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91258/","malware_traffic"
 "91257","2018-12-07 16:06:04","http://equite.co.za/IRS.GOV/IRS-Online-Center/Verification-of-Non-filing-Letter/12072018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91257/","malware_traffic"
 "91256","2018-12-07 16:05:04","https://www.dropbox.com/s/fpk0z8z23bo87nk/rbs.dll?dl=1","offline","malware_download","DanaBot,dll,ITA,POL","https://urlhaus.abuse.ch/url/91256/","anonymous"
-"91255","2018-12-07 16:02:11","http://digilib.dianhusada.ac.id/Dec2018/En_us/Past-Due-Invoices/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91255/","malware_traffic"
+"91255","2018-12-07 16:02:11","http://digilib.dianhusada.ac.id/Dec2018/En_us/Past-Due-Invoices/","online","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91255/","malware_traffic"
 "91254","2018-12-07 16:02:08","http://childcaretrinity.org/LLC/US/Important-Please-Read/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91254/","malware_traffic"
 "91253","2018-12-07 16:02:06","http://artscreenstudio.ru/IRS.GOV/Internal-Revenue-Service/Tax-Account-Transcript/12062018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91253/","malware_traffic"
 "91252","2018-12-07 16:02:05","http://159.65.107.159/En_us/ACH/122018/","offline","malware_download","doc,emotet,heodo","https://urlhaus.abuse.ch/url/91252/","malware_traffic"
@@ -268569,7 +268850,7 @@
 "85695","2018-11-27 12:50:04","http://heirloomsindia.net/paki/pp.exe","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/85695/","dvk01uk"
 "85696","2018-11-27 12:50:04","http://heirloomsindia.net/sjj/cj.exe","offline","malware_download","AgentTesla,exe,nonocore","https://urlhaus.abuse.ch/url/85696/","dvk01uk"
 "85694","2018-11-27 12:49:03","https://a.doko.moe/hoasum.jpg","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/85694/","oppimaniac"
-"85693","2018-11-27 12:30:03","http://ohe.ie/cp/icon.png","offline","malware_download","base64,powershell","https://urlhaus.abuse.ch/url/85693/","anonymous"
+"85693","2018-11-27 12:30:03","http://ohe.ie/cp/icon.png","online","malware_download","base64,powershell","https://urlhaus.abuse.ch/url/85693/","anonymous"
 "85690","2018-11-27 12:14:04","http://egyptecotours.comAaw5tZ","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/85690/","Cryptolaemus1"
 "85689","2018-11-27 12:14:04","http://secretariaextension.unt.edu.arwp-content/00002/l24wo4I","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/85689/","Cryptolaemus1"
 "85688","2018-11-27 12:14:01","http://nowley-rus.ruadministrator/cache/tguHgQZ","offline","malware_download","emotet,epoch2,exe","https://urlhaus.abuse.ch/url/85688/","Cryptolaemus1"
@@ -286363,7 +286644,7 @@
 "67529","2018-10-13 05:02:07","http://www.aractidf.org/misc/rl8109.jpg","offline","malware_download","exxe","https://urlhaus.abuse.ch/url/67529/","de_aviation"
 "67528","2018-10-13 05:02:06","http://www.aractidf.org/misc/pw8109.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/67528/","de_aviation"
 "67527","2018-10-13 05:02:02","http://www.aractidf.org/misc/dr8109.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/67527/","de_aviation"
-"67526","2018-10-13 04:13:41","http://ftpcnc-p2sp.pconline.com.cn/pub/download/200509/CH-Nebula_225_PConline.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/67526/","zbetcheckin"
+"67526","2018-10-13 04:13:41","http://ftpcnc-p2sp.pconline.com.cn/pub/download/200509/CH-Nebula_225_PConline.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/67526/","zbetcheckin"
 "67525","2018-10-13 03:28:41","http://ftpcnc-p2sp.pconline.com.cn/pub/download/200408/001TV.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/67525/","zbetcheckin"
 "67524","2018-10-13 03:14:05","http://www.msmapparelsourcing.com/wp-admin/users/newnaocor.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/67524/","zbetcheckin"
 "67523","2018-10-13 02:30:18","http://smplmods-ru.1gb.ru/ptss_crypted.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/67523/","zbetcheckin"
@@ -287484,7 +287765,7 @@
 "66385","2018-10-10 00:37:04","http://dx2.qqtn.com/QQ2/xxjpq.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66385/","zbetcheckin"
 "66384","2018-10-10 00:37:03","http://dx2.qqtn.com/qq2/jywgxrj.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66384/","zbetcheckin"
 "66383","2018-10-10 00:36:07","http://gallery.mailchimp.com/8fda4e1d3758c37f74f3de96d/files/inv0ice_0019936.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/66383/","zbetcheckin"
-"66382","2018-10-10 00:36:05","http://dx2.qqtn.com/qq3/bdjpq.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66382/","zbetcheckin"
+"66382","2018-10-10 00:36:05","http://dx2.qqtn.com/qq3/bdjpq.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/66382/","zbetcheckin"
 "66381","2018-10-10 00:29:10","http://198.1.188.107/ys808e","offline","malware_download","elf","https://urlhaus.abuse.ch/url/66381/","zbetcheckin"
 "66380","2018-10-10 00:29:08","http://dx2.qqtn.com/qq3/qqlogins.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/66380/","zbetcheckin"
 "66379","2018-10-10 00:29:06","http://dx2.qqtn.com/qq3/x5lydt.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/66379/","zbetcheckin"
@@ -289970,10 +290251,10 @@
 "63864","2018-10-03 04:46:03","http://xn----7sbhjz6ajgd7b.xn--p1ai/wp-admin/359175637670136014377931909833.php","offline","malware_download","DEU,exe,Nymaim","https://urlhaus.abuse.ch/url/63864/","anonymous"
 "63863","2018-10-03 03:50:04","http://duanvinhomeshanoi.net/3EA/identity/Personal","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/63863/","zbetcheckin"
 "63862","2018-10-03 03:42:02","http://protivokrazhka.ru/En_us/Attachments/10_18","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/63862/","zbetcheckin"
-"63861","2018-10-03 03:41:17","http://charm.bizfxr.com/charm.exe?rnd=%3cmachine_name%3e_","online","malware_download","exe","https://urlhaus.abuse.ch/url/63861/","zbetcheckin"
-"63860","2018-10-03 03:41:13","http://charm.bizfxr.com/CHARM.exe?RND=0E2E44DF465C41A","online","malware_download","exe","https://urlhaus.abuse.ch/url/63860/","zbetcheckin"
+"63861","2018-10-03 03:41:17","http://charm.bizfxr.com/charm.exe?rnd=%3cmachine_name%3e_","offline","malware_download","exe","https://urlhaus.abuse.ch/url/63861/","zbetcheckin"
+"63860","2018-10-03 03:41:13","http://charm.bizfxr.com/CHARM.exe?RND=0E2E44DF465C41A","offline","malware_download","exe","https://urlhaus.abuse.ch/url/63860/","zbetcheckin"
 "63859","2018-10-03 03:41:09","http://1stniag.com/5732090R/com/Personal","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/63859/","zbetcheckin"
-"63858","2018-10-03 03:41:07","http://charm.bizfxr.com/CHARM.exe?RND=C2F3F0B206C14E9_","online","malware_download","exe","https://urlhaus.abuse.ch/url/63858/","zbetcheckin"
+"63858","2018-10-03 03:41:07","http://charm.bizfxr.com/CHARM.exe?RND=C2F3F0B206C14E9_","offline","malware_download","exe","https://urlhaus.abuse.ch/url/63858/","zbetcheckin"
 "63857","2018-10-03 02:58:03","https://malehequities.com/wp-includes/Corporation/US_us/Invoice-Corrections-for-77/86/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/63857/","zbetcheckin"
 "63856","2018-10-03 02:47:02","http://142.93.39.71/apache2","offline","malware_download","elf","https://urlhaus.abuse.ch/url/63856/","zbetcheckin"
 "63855","2018-10-03 02:46:05","http://172.245.173.145/kara.wget","offline","malware_download","elf","https://urlhaus.abuse.ch/url/63855/","zbetcheckin"
@@ -290224,13 +290505,13 @@
 "63609","2018-10-02 14:20:07","http://77190.prohoster.biz/Fuhacksgameijctr.exe","offline","malware_download","CoinMiner,exe,W64","https://urlhaus.abuse.ch/url/63609/","MJRooter"
 "63608","2018-10-02 14:20:06","http://77190.prohoster.biz/Fuhackssafebanprtct.exe","offline","malware_download","exe,spyware,Themida","https://urlhaus.abuse.ch/url/63608/","MJRooter"
 "63607","2018-10-02 14:20:03","http://very.ruvmp.ru/77777.exe","offline","malware_download","ArkeiStealer,Dapato,dropper,exe","https://urlhaus.abuse.ch/url/63607/","MJRooter"
-"63606","2018-10-02 14:06:09","http://bd11.52lishi.com/bd75837.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/63606/","zbetcheckin"
+"63606","2018-10-02 14:06:09","http://bd11.52lishi.com/bd75837.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/63606/","zbetcheckin"
 "63605","2018-10-02 14:06:03","http://darnellsim.us/doc/WIZZY.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/63605/","zbetcheckin"
 "63604","2018-10-02 14:01:08","http://cosmictone.com.au/lHyBcgn/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/63604/","abuse_ch"
 "63603","2018-10-02 14:01:06","http://www.expressarsetelagoas.com.br/8tr1wP/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/63603/","abuse_ch"
 "63602","2018-10-02 14:01:03","http://www.acilisbalon.com/zDLorjW/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/63602/","abuse_ch"
 "63601","2018-10-02 14:01:02","http://jany.be/UsCX/","offline","malware_download","emotet,exe,heodo","https://urlhaus.abuse.ch/url/63601/","abuse_ch"
-"63600","2018-10-02 13:58:07","http://bd11.52lishi.com/bd55878.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/63600/","zbetcheckin"
+"63600","2018-10-02 13:58:07","http://bd11.52lishi.com/bd55878.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/63600/","zbetcheckin"
 "63599","2018-10-02 13:57:05","http://bd11.52lishi.com/bd11536.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/63599/","zbetcheckin"
 "63598","2018-10-02 13:45:03","http://anonupload.net/uploads/poipkgde/WindowsFormsApp1.exe","offline","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/63598/","cocaman"
 "63597","2018-10-02 13:04:03","http://23.94.53.164/e5rnad8bjk.exe","offline","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/63597/","zbetcheckin"
@@ -291486,7 +291767,7 @@
 "62307","2018-09-30 01:34:12","http://anonupload.net/uploads/ntvitnai/http%3A/anonupload.net/uploads","offline","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/62307/","zbetcheckin"
 "62306","2018-09-30 01:34:11","http://anonupload.net/uploads/oncvwnvc","offline","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/62306/","zbetcheckin"
 "62305","2018-09-30 01:34:10","http://anonupload.net/uploads/uvcahein","offline","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/62305/","zbetcheckin"
-"62304","2018-09-30 01:34:09","http://charm.bizfxr.com/CHARM.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/62304/","zbetcheckin"
+"62304","2018-09-30 01:34:09","http://charm.bizfxr.com/CHARM.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/62304/","zbetcheckin"
 "62303","2018-09-30 01:28:04","http://188.215.245.237/tnxl000.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/62303/","zbetcheckin"
 "62302","2018-09-30 01:28:03","http://188.215.245.237/tnxl000.m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/62302/","zbetcheckin"
 "62301","2018-09-30 01:28:02","http://188.215.245.237/tnxl000.arm6","offline","malware_download","elf","https://urlhaus.abuse.ch/url/62301/","zbetcheckin"
@@ -294094,7 +294375,7 @@
 "59655","2018-09-24 09:26:04","http://jxbaohusan.com/files/En_us/Latest-payment","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59655/","zbetcheckin"
 "59654","2018-09-24 09:25:35","http://van-wonders.co.uk/wwvvv/646IZV/com/Smallbusiness","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59654/","zbetcheckin"
 "59653","2018-09-24 09:24:04","http://small.962.net/bd/ylyxfblxgbd.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/59653/","zbetcheckin"
-"59652","2018-09-24 09:23:53","http://small.962.net/bd/rxwlsegjjcdlc.rar","offline","malware_download","rar","https://urlhaus.abuse.ch/url/59652/","zbetcheckin"
+"59652","2018-09-24 09:23:53","http://small.962.net/bd/rxwlsegjjcdlc.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/59652/","zbetcheckin"
 "59651","2018-09-24 09:22:06","http://woodchips.com.ua/files/US/INVOICES/Invoice-57697","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59651/","zbetcheckin"
 "59650","2018-09-24 09:12:04","http://23.249.161.109/shell/vb.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/59650/","oppimaniac"
 "59649","2018-09-24 09:10:18","http://files6.uludagbilisim.com/Setup/NBYS_AH/v10487/eimzaKurulum.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/59649/","zbetcheckin"
@@ -294738,7 +295019,7 @@
 "58996","2018-09-22 07:51:06","http://51.68.120.61/real.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/58996/","zbetcheckin"
 "58995","2018-09-22 07:50:03","http://habarimoto24.com/34147LUV/ACH/Business/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/58995/","zbetcheckin"
 "58994","2018-09-22 07:49:06","http://focuscapitalcorp.com/3151500668.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/58994/","zbetcheckin"
-"58993","2018-09-22 07:42:08","http://dw.58wangdun.com/sf5/testrgcom.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/58993/","zbetcheckin"
+"58993","2018-09-22 07:42:08","http://dw.58wangdun.com/sf5/testrgcom.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/58993/","zbetcheckin"
 "58992","2018-09-22 06:50:08","http://dongybavi.com/wp-includes/FILE/US/Open-invoices","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/58992/","zbetcheckin"
 "58991","2018-09-22 06:26:06","http://millenniumusic.com/1461739.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/58991/","zbetcheckin"
 "58990","2018-09-22 06:24:06","http://zeanhxxjotpqfeu.usa.cc/ex.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/58990/","zbetcheckin"
@@ -330379,7 +330660,7 @@
 "22727","2018-06-22 16:46:11","http://cryptonias.top/jora.exe","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/22727/","lovemalware"
 "22726","2018-06-22 16:46:09","http://to-purchase.ru/files/taskcompnt.exe","offline","malware_download","exe,Gozi,Pony","https://urlhaus.abuse.ch/url/22726/","lovemalware"
 "22725","2018-06-22 16:46:06","http://werge21.ru/hddexpert.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/22725/","lovemalware"
-"22724","2018-06-22 16:46:05","http://download.ware.ru/win/29890_passwordspy.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/22724/","lovemalware"
+"22724","2018-06-22 16:46:05","http://download.ware.ru/win/29890_passwordspy.exe","online","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/22724/","lovemalware"
 "22723","2018-06-22 16:46:02","http://37.48.125.107/selll.exe","offline","malware_download","AZORult,exe","https://urlhaus.abuse.ch/url/22723/","lovemalware"
 "22722","2018-06-22 16:45:21","https://www.avantirevista.com/Setup.exe","offline","malware_download","AZORult,exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/22722/","lovemalware"
 "22721","2018-06-22 16:45:19","http://avantirevista.com/Setup.exe","offline","malware_download","AZORult,exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/22721/","lovemalware"
diff --git a/urlhaus-filter-bind-online.conf b/urlhaus-filter-bind-online.conf
index 6d30b997..71f140fd 100644
--- a/urlhaus-filter-bind-online.conf
+++ b/urlhaus-filter-bind-online.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains BIND Blocklist
-# Updated: Thu, 07 May 2020 12:09:37 UTC
+# Updated: Fri, 08 May 2020 00:09:41 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -17,7 +17,6 @@ zone "402musicfest.com" { type master; notify no; file "null.zone.file"; };
 zone "49parallel.ca" { type master; notify no; file "null.zone.file"; };
 zone "786suncity.com" { type master; notify no; file "null.zone.file"; };
 zone "8200msc.com" { type master; notify no; file "null.zone.file"; };
-zone "887sconline.com" { type master; notify no; file "null.zone.file"; };
 zone "88mscco.com" { type master; notify no; file "null.zone.file"; };
 zone "a-reality.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "a.xiazai163.com" { type master; notify no; file "null.zone.file"; };
@@ -25,6 +24,7 @@ zone "aaasolution.co.th" { type master; notify no; file "null.zone.file"; };
 zone "accessyouraudience.com" { type master; notify no; file "null.zone.file"; };
 zone "acdesignhub.com" { type master; notify no; file "null.zone.file"; };
 zone "acteon.com.ar" { type master; notify no; file "null.zone.file"; };
+zone "activecost.com.au" { type master; notify no; file "null.zone.file"; };
 zone "adamtcarruthers.com" { type master; notify no; file "null.zone.file"; };
 zone "adnquocte.com" { type master; notify no; file "null.zone.file"; };
 zone "agiandsam.com" { type master; notify no; file "null.zone.file"; };
@@ -43,23 +43,25 @@ zone "allloveseries.com" { type master; notify no; file "null.zone.file"; };
 zone "alohasoftware.net" { type master; notify no; file "null.zone.file"; };
 zone "alphaconsumer.net" { type master; notify no; file "null.zone.file"; };
 zone "am-concepts.ca" { type master; notify no; file "null.zone.file"; };
-zone "amd.alibuf.com" { type master; notify no; file "null.zone.file"; };
+zone "amedeoscognamiglio.329263.com" { type master; notify no; file "null.zone.file"; };
 zone "amemarine.co.th" { type master; notify no; file "null.zone.file"; };
 zone "americanrange.com" { type master; notify no; file "null.zone.file"; };
 zone "anadolutatili.com" { type master; notify no; file "null.zone.file"; };
-zone "anamikaindanegas.in" { type master; notify no; file "null.zone.file"; };
 zone "andreelapeyre.com" { type master; notify no; file "null.zone.file"; };
 zone "andremaraisbeleggings.co.za" { type master; notify no; file "null.zone.file"; };
 zone "angthong.nfe.go.th" { type master; notify no; file "null.zone.file"; };
+zone "anjsolution.com" { type master; notify no; file "null.zone.file"; };
 zone "anvietpro.com" { type master; notify no; file "null.zone.file"; };
 zone "anysbergbiltong.co.za" { type master; notify no; file "null.zone.file"; };
 zone "aoujlift.ir" { type master; notify no; file "null.zone.file"; };
 zone "apartdelpinar.com.ar" { type master; notify no; file "null.zone.file"; };
 zone "apoolcondo.com" { type master; notify no; file "null.zone.file"; };
 zone "apware.co.kr" { type master; notify no; file "null.zone.file"; };
+zone "arabenergyclub.org" { type master; notify no; file "null.zone.file"; };
 zone "archiv.bg" { type master; notify no; file "null.zone.file"; };
 zone "areac-agr.com" { type master; notify no; file "null.zone.file"; };
 zone "ascentive.com" { type master; notify no; file "null.zone.file"; };
+zone "ashoakacharya.com" { type master; notify no; file "null.zone.file"; };
 zone "askarindo.or.id" { type master; notify no; file "null.zone.file"; };
 zone "asload01.top" { type master; notify no; file "null.zone.file"; };
 zone "atfile.com" { type master; notify no; file "null.zone.file"; };
@@ -69,7 +71,6 @@ zone "atteuqpotentialunlimited.com" { type master; notify no; file "null.zone.fi
 zone "audiosv.com" { type master; notify no; file "null.zone.file"; };
 zone "aulist.com" { type master; notify no; file "null.zone.file"; };
 zone "auraco.ca" { type master; notify no; file "null.zone.file"; };
-zone "aurumboy.com" { type master; notify no; file "null.zone.file"; };
 zone "azmeasurement.com" { type master; notify no; file "null.zone.file"; };
 zone "aznetsolutions.com" { type master; notify no; file "null.zone.file"; };
 zone "azureautomation.co.uk" { type master; notify no; file "null.zone.file"; };
@@ -79,16 +80,15 @@ zone "bamakobleach.free.fr" { type master; notify no; file "null.zone.file"; };
 zone "bangkok-orchids.com" { type master; notify no; file "null.zone.file"; };
 zone "banzaimonkey.com" { type master; notify no; file "null.zone.file"; };
 zone "bapo.granudan.cn" { type master; notify no; file "null.zone.file"; };
-zone "baritaco.com" { type master; notify no; file "null.zone.file"; };
 zone "bbs.sunwy.org" { type master; notify no; file "null.zone.file"; };
 zone "bbs1.marisfrolg.com" { type master; notify no; file "null.zone.file"; };
 zone "bd11.52lishi.com" { type master; notify no; file "null.zone.file"; };
 zone "bd12.52lishi.com" { type master; notify no; file "null.zone.file"; };
 zone "bd18.52lishi.com" { type master; notify no; file "null.zone.file"; };
 zone "bd19.52lishi.com" { type master; notify no; file "null.zone.file"; };
+zone "beachbeaty.com" { type master; notify no; file "null.zone.file"; };
 zone "beibei.xx007.cc" { type master; notify no; file "null.zone.file"; };
 zone "bepgroup.com.hk" { type master; notify no; file "null.zone.file"; };
-zone "bergamote.org" { type master; notify no; file "null.zone.file"; };
 zone "besserblok-ufa.ru" { type master; notify no; file "null.zone.file"; };
 zone "besttasimacilik.com.tr" { type master; notify no; file "null.zone.file"; };
 zone "beta.pterosol.com" { type master; notify no; file "null.zone.file"; };
@@ -103,6 +103,7 @@ zone "bjkumdo.com" { type master; notify no; file "null.zone.file"; };
 zone "blog.241optical.com" { type master; notify no; file "null.zone.file"; };
 zone "blog.hanxe.com" { type master; notify no; file "null.zone.file"; };
 zone "bolidar.dnset.com" { type master; notify no; file "null.zone.file"; };
+zone "borawebservicioscl1.com" { type master; notify no; file "null.zone.file"; };
 zone "bovientix.com" { type master; notify no; file "null.zone.file"; };
 zone "bpo.correct.go.th" { type master; notify no; file "null.zone.file"; };
 zone "brasstec.com.br" { type master; notify no; file "null.zone.file"; };
@@ -112,15 +113,16 @@ zone "btlocum.pl" { type master; notify no; file "null.zone.file"; };
 zone "bugansavings.com" { type master; notify no; file "null.zone.file"; };
 zone "byqkdy.com" { type master; notify no; file "null.zone.file"; };
 zone "c.vvvvvvvvv.ga" { type master; notify no; file "null.zone.file"; };
-zone "c9f44961.ngrok.io" { type master; notify no; file "null.zone.file"; };
 zone "cameli.vn" { type master; notify no; file "null.zone.file"; };
 zone "cantikekinian.com" { type master; notify no; file "null.zone.file"; };
 zone "caravella.com.br" { type master; notify no; file "null.zone.file"; };
 zone "cassovia.sk" { type master; notify no; file "null.zone.file"; };
 zone "cbk.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
 zone "ccnn.xiaomier.cn" { type master; notify no; file "null.zone.file"; };
+zone "cdn-10049480.file.myqcloud.com" { type master; notify no; file "null.zone.file"; };
 zone "cdn.xiaoduoai.com" { type master; notify no; file "null.zone.file"; };
 zone "cdnus.laboratoryconecpttoday.com" { type master; notify no; file "null.zone.file"; };
+zone "ceirecrear.com.br" { type master; notify no; file "null.zone.file"; };
 zone "cellas.sk" { type master; notify no; file "null.zone.file"; };
 zone "cf.uuu9.com" { type master; notify no; file "null.zone.file"; };
 zone "cf0.pw" { type master; notify no; file "null.zone.file"; };
@@ -128,7 +130,7 @@ zone "cfs5.tistory.com" { type master; notify no; file "null.zone.file"; };
 zone "ch.rmu.ac.th" { type master; notify no; file "null.zone.file"; };
 zone "changematterscounselling.com" { type master; notify no; file "null.zone.file"; };
 zone "chanvribloc.com" { type master; notify no; file "null.zone.file"; };
-zone "charm.bizfxr.com" { type master; notify no; file "null.zone.file"; };
+zone "chattosport.com" { type master; notify no; file "null.zone.file"; };
 zone "chedea.eu" { type master; notify no; file "null.zone.file"; };
 zone "chinhdropfile.myvnc.com" { type master; notify no; file "null.zone.file"; };
 zone "chinhdropfile80.myvnc.com" { type master; notify no; file "null.zone.file"; };
@@ -138,15 +140,17 @@ zone "chj.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
 zone "chuckweiss.com" { type master; notify no; file "null.zone.file"; };
 zone "clareiamente.clareiamente.com" { type master; notify no; file "null.zone.file"; };
 zone "clearwaterriveroutfitting.com" { type master; notify no; file "null.zone.file"; };
-zone "cleversoft.vn" { type master; notify no; file "null.zone.file"; };
 zone "client.yaap.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "clinicamariademolina.com" { type master; notify no; file "null.zone.file"; };
+zone "cmecobrancas.com" { type master; notify no; file "null.zone.file"; };
+zone "cnhdsoft.com" { type master; notify no; file "null.zone.file"; };
 zone "compesat.com" { type master; notify no; file "null.zone.file"; };
 zone "complan.hu" { type master; notify no; file "null.zone.file"; };
 zone "complanbt.hu" { type master; notify no; file "null.zone.file"; };
 zone "comtechadsl.com" { type master; notify no; file "null.zone.file"; };
 zone "config.kuaisousou.top" { type master; notify no; file "null.zone.file"; };
 zone "consultingcy.com" { type master; notify no; file "null.zone.file"; };
+zone "cosmea.pl" { type master; notify no; file "null.zone.file"; };
 zone "counciloflight.bravepages.com" { type master; notify no; file "null.zone.file"; };
 zone "cqjcc.org" { type master; notify no; file "null.zone.file"; };
 zone "crittersbythebay.com" { type master; notify no; file "null.zone.file"; };
@@ -154,8 +158,6 @@ zone "cryline.net" { type master; notify no; file "null.zone.file"; };
 zone "csnserver.com" { type master; notify no; file "null.zone.file"; };
 zone "csw.hu" { type master; notify no; file "null.zone.file"; };
 zone "cyclomove.com" { type master; notify no; file "null.zone.file"; };
-zone "czsl.91756.cn" { type master; notify no; file "null.zone.file"; };
-zone "d3.99ddd.com" { type master; notify no; file "null.zone.file"; };
 zone "d9.99ddd.com" { type master; notify no; file "null.zone.file"; };
 zone "da.alibuf.com" { type master; notify no; file "null.zone.file"; };
 zone "daithanhphung.com" { type master; notify no; file "null.zone.file"; };
@@ -167,15 +169,18 @@ zone "datvensaigon.com" { type master; notify no; file "null.zone.file"; };
 zone "davinadouthard.com" { type master; notify no; file "null.zone.file"; };
 zone "dawaphoto.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "daynightgym.com" { type master; notify no; file "null.zone.file"; };
+zone "dbssistem.com.tr" { type master; notify no; file "null.zone.file"; };
 zone "de.gsearch.com.de" { type master; notify no; file "null.zone.file"; };
+zone "dehkadenovin.com" { type master; notify no; file "null.zone.file"; };
 zone "deixameuskls.tripod.com" { type master; notify no; file "null.zone.file"; };
-zone "demo10.onbm.ir" { type master; notify no; file "null.zone.file"; };
+zone "demo13.dsdemosite.com" { type master; notify no; file "null.zone.file"; };
 zone "denkagida.com.tr" { type master; notify no; file "null.zone.file"; };
 zone "depgrup.com" { type master; notify no; file "null.zone.file"; };
 zone "depot7.com" { type master; notify no; file "null.zone.file"; };
 zone "derivativespro.in" { type master; notify no; file "null.zone.file"; };
 zone "desighiza.com" { type master; notify no; file "null.zone.file"; };
 zone "detafa.com" { type master; notify no; file "null.zone.file"; };
+zone "dev.nona-polska.pl" { type master; notify no; file "null.zone.file"; };
 zone "dev.sebpo.net" { type master; notify no; file "null.zone.file"; };
 zone "dev1.xicom.us" { type master; notify no; file "null.zone.file"; };
 zone "dev5.mypagevn.com" { type master; notify no; file "null.zone.file"; };
@@ -185,10 +190,9 @@ zone "dfd.zhzy999.net" { type master; notify no; file "null.zone.file"; };
 zone "dfzm.91756.cn" { type master; notify no; file "null.zone.file"; };
 zone "dgecolesdepolice.bf" { type master; notify no; file "null.zone.file"; };
 zone "dgnj.cn" { type master; notify no; file "null.zone.file"; };
-zone "dhlservices.duckdns.org" { type master; notify no; file "null.zone.file"; };
 zone "diazavendano.cl" { type master; notify no; file "null.zone.file"; };
 zone "dichvuvesinhcongnghiep.top" { type master; notify no; file "null.zone.file"; };
-zone "dienmayminhan.com" { type master; notify no; file "null.zone.file"; };
+zone "dienmaycu.vn" { type master; notify no; file "null.zone.file"; };
 zone "digilib.dianhusada.ac.id" { type master; notify no; file "null.zone.file"; };
 zone "digital-marketing-institute-delhi.empeeevents.com" { type master; notify no; file "null.zone.file"; };
 zone "digitaldog.de" { type master; notify no; file "null.zone.file"; };
@@ -199,13 +203,12 @@ zone "dl.1003b.56a.com" { type master; notify no; file "null.zone.file"; };
 zone "dl.198424.com" { type master; notify no; file "null.zone.file"; };
 zone "dl.dzqzd.com" { type master; notify no; file "null.zone.file"; };
 zone "dl.kuaile-u.com" { type master; notify no; file "null.zone.file"; };
-zone "dl2.soft-lenta.ru" { type master; notify no; file "null.zone.file"; };
 zone "dlist.iqilie.com" { type master; notify no; file "null.zone.file"; };
 zone "dmresor.se" { type master; notify no; file "null.zone.file"; };
-zone "dnn.alibuf.com" { type master; notify no; file "null.zone.file"; };
 zone "dns.alibuf.com" { type master; notify no; file "null.zone.file"; };
 zone "dodsonimaging.com" { type master; notify no; file "null.zone.file"; };
 zone "don.viameventos.com.br" { type master; notify no; file "null.zone.file"; };
+zone "dongiln.co" { type master; notify no; file "null.zone.file"; };
 zone "donmago.com" { type master; notify no; file "null.zone.file"; };
 zone "doostansocks.ir" { type master; notify no; file "null.zone.file"; };
 zone "doransky.info" { type master; notify no; file "null.zone.file"; };
@@ -214,22 +217,16 @@ zone "down.ancamera.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "down.gogominer.com" { type master; notify no; file "null.zone.file"; };
 zone "down.haote.com" { type master; notify no; file "null.zone.file"; };
 zone "down.pcclear.com" { type master; notify no; file "null.zone.file"; };
-zone "down.pdflist.cqhbkjzx.com" { type master; notify no; file "null.zone.file"; };
-zone "down.softlist.tcroot.cn" { type master; notify no; file "null.zone.file"; };
 zone "down.startools.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "down.tgjkbx.cn" { type master; notify no; file "null.zone.file"; };
 zone "down.upzxt.com" { type master; notify no; file "null.zone.file"; };
 zone "down.webbora.com" { type master; notify no; file "null.zone.file"; };
 zone "down.xrpdf.com" { type master; notify no; file "null.zone.file"; };
 zone "down1.arpun.com" { type master; notify no; file "null.zone.file"; };
-zone "downcdn.xianshuabao.com" { type master; notify no; file "null.zone.file"; };
 zone "download.1ys.com" { type master; notify no; file "null.zone.file"; };
-zone "download.beveilingsdienst.info" { type master; notify no; file "null.zone.file"; };
 zone "download.doumaibiji.cn" { type master; notify no; file "null.zone.file"; };
 zone "download.kaobeitu.com" { type master; notify no; file "null.zone.file"; };
-zone "download.ktkt.com" { type master; notify no; file "null.zone.file"; };
 zone "download.pdf00.cn" { type master; notify no; file "null.zone.file"; };
-zone "download.rising.com.cn" { type master; notify no; file "null.zone.file"; };
 zone "download.skycn.com" { type master; notify no; file "null.zone.file"; };
 zone "download.ttz3.cn" { type master; notify no; file "null.zone.file"; };
 zone "download.ware.ru" { type master; notify no; file "null.zone.file"; };
@@ -241,11 +238,9 @@ zone "dralpaslan.com" { type master; notify no; file "null.zone.file"; };
 zone "drools-moved.46999.n3.nabble.com" { type master; notify no; file "null.zone.file"; };
 zone "droversmouser.at" { type master; notify no; file "null.zone.file"; };
 zone "druzim.freewww.biz" { type master; notify no; file "null.zone.file"; };
-zone "ds.obmenvsemfiles.com" { type master; notify no; file "null.zone.file"; };
 zone "dtsay.xyz" { type master; notify no; file "null.zone.file"; };
 zone "dudulm.com" { type master; notify no; file "null.zone.file"; };
 zone "dusdn.mireene.com" { type master; notify no; file "null.zone.file"; };
-zone "dw.58wangdun.com" { type master; notify no; file "null.zone.file"; };
 zone "dx.qqyewu.com" { type master; notify no; file "null.zone.file"; };
 zone "dx1.qqtn.com" { type master; notify no; file "null.zone.file"; };
 zone "dx2.qqtn.com" { type master; notify no; file "null.zone.file"; };
@@ -254,7 +249,6 @@ zone "dx60.siweidaoxiang.com" { type master; notify no; file "null.zone.file"; }
 zone "dzinestudio87.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "e.dangeana.com" { type master; notify no; file "null.zone.file"; };
 zone "easydown.workday360.cn" { type master; notify no; file "null.zone.file"; };
-zone "ebook.w3wvg.com" { type master; notify no; file "null.zone.file"; };
 zone "edicolanazionale.it" { type master; notify no; file "null.zone.file"; };
 zone "emadamini.co.za" { type master; notify no; file "null.zone.file"; };
 zone "emir-elbahr.com" { type master; notify no; file "null.zone.file"; };
@@ -265,38 +259,34 @@ zone "er-bulisguvenligi.com" { type master; notify no; file "null.zone.file"; };
 zone "ermekanik.com" { type master; notify no; file "null.zone.file"; };
 zone "esolvent.pl" { type master; notify no; file "null.zone.file"; };
 zone "esteteam.org" { type master; notify no; file "null.zone.file"; };
-zone "evdeyizrahatiz.com" { type master; notify no; file "null.zone.file"; };
 zone "exposvision.com" { type master; notify no; file "null.zone.file"; };
 zone "ezfintechcorp.com" { type master; notify no; file "null.zone.file"; };
 zone "fafhoafouehfuh.su" { type master; notify no; file "null.zone.file"; };
 zone "fairyqueenstore.com" { type master; notify no; file "null.zone.file"; };
-zone "fastsoft.onlinedown.net" { type master; notify no; file "null.zone.file"; };
 zone "fazi.pl" { type master; notify no; file "null.zone.file"; };
+zone "ffv322.ru" { type master; notify no; file "null.zone.file"; };
+zone "ffv32223.ru" { type master; notify no; file "null.zone.file"; };
 zone "fidiag.kymco.com" { type master; notify no; file "null.zone.file"; };
 zone "fifa555easy.329263.com" { type master; notify no; file "null.zone.file"; };
 zone "figuig.net" { type master; notify no; file "null.zone.file"; };
 zone "fileco.jobkorea.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "filen3.utengine.co.kr" { type master; notify no; file "null.zone.file"; };
-zone "filen5.utengine.co.kr" { type master; notify no; file "null.zone.file"; };
-zone "files.fqapps.com" { type master; notify no; file "null.zone.file"; };
 zone "files.rakbot.ru" { type master; notify no; file "null.zone.file"; };
 zone "files6.uludagbilisim.com" { type master; notify no; file "null.zone.file"; };
 zone "fishingbigstore.com" { type master; notify no; file "null.zone.file"; };
 zone "fitmanacademy.com" { type master; notify no; file "null.zone.file"; };
 zone "fkd.derpcity.ru" { type master; notify no; file "null.zone.file"; };
 zone "flex.ru" { type master; notify no; file "null.zone.file"; };
-zone "flood-protection.org" { type master; notify no; file "null.zone.file"; };
 zone "fordlamdong.com.vn" { type master; notify no; file "null.zone.file"; };
 zone "foreverprecious.org" { type master; notify no; file "null.zone.file"; };
 zone "foxfennecs.com" { type master; notify no; file "null.zone.file"; };
 zone "frin.ng" { type master; notify no; file "null.zone.file"; };
 zone "fte.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
-zone "ftpcnc-p2sp.pconline.com.cn" { type master; notify no; file "null.zone.file"; };
 zone "ftpftpftp.com" { type master; notify no; file "null.zone.file"; };
 zone "funletters.net" { type master; notify no; file "null.zone.file"; };
 zone "futuregraphics.com.ar" { type master; notify no; file "null.zone.file"; };
-zone "g.7230.com" { type master; notify no; file "null.zone.file"; };
 zone "g0ogle.free.fr" { type master; notify no; file "null.zone.file"; };
+zone "gainsdirectory.com" { type master; notify no; file "null.zone.file"; };
 zone "galuhtea.com" { type master; notify no; file "null.zone.file"; };
 zone "gamebazaar.club" { type master; notify no; file "null.zone.file"; };
 zone "gamee.top" { type master; notify no; file "null.zone.file"; };
@@ -305,10 +295,9 @@ zone "garenanow4.myvnc.com" { type master; notify no; file "null.zone.file"; };
 zone "gateway-heide.de" { type master; notify no; file "null.zone.file"; };
 zone "gateway.ethlqd.com" { type master; notify no; file "null.zone.file"; };
 zone "genesisconstruction.co.za" { type master; notify no; file "null.zone.file"; };
-zone "genstaff.gov.kg" { type master; notify no; file "null.zone.file"; };
 zone "germistonmiraclecentre.co.za" { type master; notify no; file "null.zone.file"; };
 zone "ghislain.dartois.pagesperso-orange.fr" { type master; notify no; file "null.zone.file"; };
-zone "gimscompany.com" { type master; notify no; file "null.zone.file"; };
+zone "ghwls44.gabia.io" { type master; notify no; file "null.zone.file"; };
 zone "glitzygal.net" { type master; notify no; file "null.zone.file"; };
 zone "globaleuropeans.com" { type master; notify no; file "null.zone.file"; };
 zone "gmassurance.fr" { type master; notify no; file "null.zone.file"; };
@@ -316,14 +305,13 @@ zone "gnimelf.net" { type master; notify no; file "null.zone.file"; };
 zone "go.xsuad.com" { type master; notify no; file "null.zone.file"; };
 zone "google.ghststr.com" { type master; notify no; file "null.zone.file"; };
 zone "govhotel.us" { type master; notify no; file "null.zone.file"; };
-zone "grafchekloder.rebatesrule.net" { type master; notify no; file "null.zone.file"; };
 zone "granportale.com.br" { type master; notify no; file "null.zone.file"; };
+zone "grantoveporadenstvi.eu" { type master; notify no; file "null.zone.file"; };
 zone "gray-takeo-7170.chowder.jp" { type master; notify no; file "null.zone.file"; };
 zone "green100.cn" { type master; notify no; file "null.zone.file"; };
 zone "greenfood.sa.com" { type master; notify no; file "null.zone.file"; };
 zone "gssgroups.com" { type master; notify no; file "null.zone.file"; };
 zone "gundemdekihaber.com" { type master; notify no; file "null.zone.file"; };
-zone "gx-10012947.file.myqcloud.com" { type master; notify no; file "null.zone.file"; };
 zone "habbotips.free.fr" { type master; notify no; file "null.zone.file"; };
 zone "hagebakken.no" { type master; notify no; file "null.zone.file"; };
 zone "haisannhatrang.com.vn" { type master; notify no; file "null.zone.file"; };
@@ -332,12 +320,11 @@ zone "hanaphoto.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "handrush.com" { type master; notify no; file "null.zone.file"; };
 zone "hanoihub.vn" { type master; notify no; file "null.zone.file"; };
 zone "hazel-azure.co.th" { type master; notify no; file "null.zone.file"; };
-zone "hdxa.net" { type master; notify no; file "null.zone.file"; };
 zone "healtina.com" { type master; notify no; file "null.zone.file"; };
 zone "heavenif.co.za" { type master; notify no; file "null.zone.file"; };
 zone "hellomessager.com" { type master; notify no; file "null.zone.file"; };
-zone "hevizapartments.net" { type master; notify no; file "null.zone.file"; };
 zone "hfsoftware.cl" { type master; notify no; file "null.zone.file"; };
+zone "hi-event.vn" { type master; notify no; file "null.zone.file"; };
 zone "hingcheong.hk" { type master; notify no; file "null.zone.file"; };
 zone "hldschool.com" { type master; notify no; file "null.zone.file"; };
 zone "hmbwgroup.com" { type master; notify no; file "null.zone.file"; };
@@ -348,13 +335,13 @@ zone "hotart.co.nz" { type master; notify no; file "null.zone.file"; };
 zone "hotel-le-relais-des-moulins.com" { type master; notify no; file "null.zone.file"; };
 zone "hottestxxxvideo.com" { type master; notify no; file "null.zone.file"; };
 zone "housewifes.co" { type master; notify no; file "null.zone.file"; };
-zone "hseda.com" { type master; notify no; file "null.zone.file"; };
 zone "hsmwebapp.com" { type master; notify no; file "null.zone.file"; };
 zone "htxl.cn" { type master; notify no; file "null.zone.file"; };
 zone "huishuren.nu" { type master; notify no; file "null.zone.file"; };
 zone "hwsrv-675710.hostwindsdns.com" { type master; notify no; file "null.zone.file"; };
 zone "hwsrv-720737.hostwindsdns.com" { type master; notify no; file "null.zone.file"; };
 zone "hyadegari.ir" { type master; notify no; file "null.zone.file"; };
+zone "hyundainamdinh.org" { type master; notify no; file "null.zone.file"; };
 zone "hyvat-olutravintolat.fi" { type master; notify no; file "null.zone.file"; };
 zone "i333.wang" { type master; notify no; file "null.zone.file"; };
 zone "ibda.adv.br" { type master; notify no; file "null.zone.file"; };
@@ -363,13 +350,11 @@ zone "ihpmed.ae" { type master; notify no; file "null.zone.file"; };
 zone "ileolaherbalcare.com.ng" { type master; notify no; file "null.zone.file"; };
 zone "imellda.com" { type master; notify no; file "null.zone.file"; };
 zone "imenizeh.ir" { type master; notify no; file "null.zone.file"; };
+zone "imobiliarianossacasamt.com.br" { type master; notify no; file "null.zone.file"; };
 zone "impression-gobelet.com" { type master; notify no; file "null.zone.file"; };
 zone "in-sect.com" { type master; notify no; file "null.zone.file"; };
 zone "inapadvance.com" { type master; notify no; file "null.zone.file"; };
 zone "incrediblepixels.com" { type master; notify no; file "null.zone.file"; };
-zone "incredicole.com" { type master; notify no; file "null.zone.file"; };
-zone "infogue.id" { type master; notify no; file "null.zone.file"; };
-zone "ini.egkj.com" { type master; notify no; file "null.zone.file"; };
 zone "innovation4crisis.org" { type master; notify no; file "null.zone.file"; };
 zone "instanttechnology.com.au" { type master; notify no; file "null.zone.file"; };
 zone "intelicasa.ro" { type master; notify no; file "null.zone.file"; };
@@ -380,8 +365,8 @@ zone "intoxicated-twilight.com" { type master; notify no; file "null.zone.file";
 zone "iran-gold.com" { type master; notify no; file "null.zone.file"; };
 zone "iremart.es" { type master; notify no; file "null.zone.file"; };
 zone "isso.ps" { type master; notify no; file "null.zone.file"; };
-zone "it.shopforever.pk" { type master; notify no; file "null.zone.file"; };
 zone "itd.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
+zone "itohukuk.com" { type master; notify no; file "null.zone.file"; };
 zone "itrigger.cn" { type master; notify no; file "null.zone.file"; };
 zone "itsnixielou.com" { type master; notify no; file "null.zone.file"; };
 zone "ixlonbcc.com" { type master; notify no; file "null.zone.file"; };
@@ -394,6 +379,7 @@ zone "janvierassocies.fr" { type master; notify no; file "null.zone.file"; };
 zone "javatank.ru" { type master; notify no; file "null.zone.file"; };
 zone "jcedu.org" { type master; notify no; file "null.zone.file"; };
 zone "jessymart.flexyhub.com" { type master; notify no; file "null.zone.file"; };
+zone "jim.webengineerteam.com" { type master; notify no; file "null.zone.file"; };
 zone "jjjexx.329263.com" { type master; notify no; file "null.zone.file"; };
 zone "jmtc.91756.cn" { type master; notify no; file "null.zone.file"; };
 zone "jocuri.trophygaming.net" { type master; notify no; file "null.zone.file"; };
@@ -405,11 +391,12 @@ zone "jppost-cde.top" { type master; notify no; file "null.zone.file"; };
 zone "jsd618.com" { type master; notify no; file "null.zone.file"; };
 zone "jsq.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
 zone "jsya.co.kr" { type master; notify no; file "null.zone.file"; };
+zone "jumla.biz" { type master; notify no; file "null.zone.file"; };
 zone "jutvac.com" { type master; notify no; file "null.zone.file"; };
 zone "jvalert.com" { type master; notify no; file "null.zone.file"; };
 zone "jyv.fi" { type master; notify no; file "null.zone.file"; };
-zone "jzny.com.cn" { type master; notify no; file "null.zone.file"; };
-zone "k3.etfiber.net" { type master; notify no; file "null.zone.file"; };
+zone "k.ludong.tv" { type master; notify no; file "null.zone.file"; };
+zone "kabiru.ru" { type master; notify no; file "null.zone.file"; };
 zone "kachsurf.mylftv.com" { type master; notify no; file "null.zone.file"; };
 zone "kamasu11.cafe24.com" { type master; notify no; file "null.zone.file"; };
 zone "kamisecurity.com.my" { type master; notify no; file "null.zone.file"; };
@@ -420,6 +407,7 @@ zone "kassohome.com.tr" { type master; notify no; file "null.zone.file"; };
 zone "kdsp.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "kejpa.com" { type master; notify no; file "null.zone.file"; };
 zone "kenareh-gostare-aras.ir" { type master; notify no; file "null.zone.file"; };
+zone "kgfs3.329263.com" { type master; notify no; file "null.zone.file"; };
 zone "khunnapap.com" { type master; notify no; file "null.zone.file"; };
 zone "kiencuonghotel.vn" { type master; notify no; file "null.zone.file"; };
 zone "kjbm9.mof.gov.cn" { type master; notify no; file "null.zone.file"; };
@@ -432,7 +420,6 @@ zone "kristofferdaniels.com" { type master; notify no; file "null.zone.file"; };
 zone "kupaliskohs.sk" { type master; notify no; file "null.zone.file"; };
 zone "kuznetsov.ca" { type master; notify no; file "null.zone.file"; };
 zone "kwanfromhongkong.com" { type master; notify no; file "null.zone.file"; };
-zone "kwikomfi-lab.com" { type master; notify no; file "null.zone.file"; };
 zone "lagalaxy88easy.329263.com" { type master; notify no; file "null.zone.file"; };
 zone "lameguard.ru" { type master; notify no; file "null.zone.file"; };
 zone "lammaixep.com" { type master; notify no; file "null.zone.file"; };
@@ -445,6 +432,8 @@ zone "ld.mediaget.com" { type master; notify no; file "null.zone.file"; };
 zone "learnbuddy.com" { type master; notify no; file "null.zone.file"; };
 zone "learningcomputing.org" { type master; notify no; file "null.zone.file"; };
 zone "lebedyn.info" { type master; notify no; file "null.zone.file"; };
+zone "lecafedesartistes.com" { type master; notify no; file "null.zone.file"; };
+zone "leukkado.be" { type master; notify no; file "null.zone.file"; };
 zone "lfcsghosi.co.in" { type master; notify no; file "null.zone.file"; };
 zone "lhbfirst.com" { type master; notify no; file "null.zone.file"; };
 zone "libya-info.com" { type master; notify no; file "null.zone.file"; };
@@ -452,6 +441,7 @@ zone "lifeapt.biz" { type master; notify no; file "null.zone.file"; };
 zone "linx.li" { type master; notify no; file "null.zone.file"; };
 zone "lists.ibiblio.org" { type master; notify no; file "null.zone.file"; };
 zone "lists.mplayerhq.hu" { type master; notify no; file "null.zone.file"; };
+zone "lodergord.com" { type master; notify no; file "null.zone.file"; };
 zone "log.yundabao.cn" { type master; notify no; file "null.zone.file"; };
 zone "lsyr.net" { type master; notify no; file "null.zone.file"; };
 zone "lt02.datacomspecialists.net" { type master; notify no; file "null.zone.file"; };
@@ -461,28 +451,27 @@ zone "luckytriumph.com" { type master; notify no; file "null.zone.file"; };
 zone "luisnacht.com.ar" { type master; notify no; file "null.zone.file"; };
 zone "lvr.samacomplus.com" { type master; notify no; file "null.zone.file"; };
 zone "m.0757kd.cn" { type master; notify no; file "null.zone.file"; };
-zone "m93701t2.beget.tech" { type master; notify no; file "null.zone.file"; };
 zone "mackleyn.com" { type master; notify no; file "null.zone.file"; };
 zone "magda.zelentourism.com" { type master; notify no; file "null.zone.file"; };
 zone "magic-living.com" { type master; notify no; file "null.zone.file"; };
 zone "makosoft.hu" { type master; notify no; file "null.zone.file"; };
 zone "malin-akerman.net" { type master; notify no; file "null.zone.file"; };
+zone "mangawt.com" { type master; notify no; file "null.zone.file"; };
 zone "margopassadorestylist.com" { type master; notify no; file "null.zone.file"; };
+zone "mariereiko.com" { type master; notify no; file "null.zone.file"; };
 zone "maringareservas.com.br" { type master; notify no; file "null.zone.file"; };
 zone "marketprice.com.ng" { type master; notify no; file "null.zone.file"; };
 zone "marksidfgs.ug" { type master; notify no; file "null.zone.file"; };
-zone "marocaji.com" { type master; notify no; file "null.zone.file"; };
 zone "matt-e.it" { type master; notify no; file "null.zone.file"; };
 zone "mattayom31.go.th" { type master; notify no; file "null.zone.file"; };
-zone "maynenkhivinhphat.com" { type master; notify no; file "null.zone.file"; };
 zone "mazury4x4.pl" { type master; notify no; file "null.zone.file"; };
 zone "mbgrm.com" { type master; notify no; file "null.zone.file"; };
+zone "mecbox.cn" { type master; notify no; file "null.zone.file"; };
 zone "mediamatkat.fi" { type master; notify no; file "null.zone.file"; };
 zone "medianews.ge" { type master; notify no; file "null.zone.file"; };
 zone "medlinee.com" { type master; notify no; file "null.zone.file"; };
 zone "medreg.uz" { type master; notify no; file "null.zone.file"; };
 zone "meert.org" { type master; notify no; file "null.zone.file"; };
-zone "meeweb.com" { type master; notify no; file "null.zone.file"; };
 zone "meitao886.com" { type master; notify no; file "null.zone.file"; };
 zone "members.chello.nl" { type master; notify no; file "null.zone.file"; };
 zone "members.westnet.com.au" { type master; notify no; file "null.zone.file"; };
@@ -497,6 +486,7 @@ zone "micahproducts.com" { type master; notify no; file "null.zone.file"; };
 zone "micalle.com.au" { type master; notify no; file "null.zone.file"; };
 zone "mirror.mypage.sk" { type master; notify no; file "null.zone.file"; };
 zone "mis.nbcc.ac.th" { type master; notify no; file "null.zone.file"; };
+zone "misskproductions.co.za" { type master; notify no; file "null.zone.file"; };
 zone "misterson.com" { type master; notify no; file "null.zone.file"; };
 zone "mistydeblasiophotography.com" { type master; notify no; file "null.zone.file"; };
 zone "mkk09.kr" { type master; notify no; file "null.zone.file"; };
@@ -509,17 +499,18 @@ zone "moha-group.com" { type master; notify no; file "null.zone.file"; };
 zone "monmariage.info" { type master; notify no; file "null.zone.file"; };
 zone "moscow11.at" { type master; notify no; file "null.zone.file"; };
 zone "mountveederwines.com" { type master; notify no; file "null.zone.file"; };
+zone "movingsolutionsus.com" { type master; notify no; file "null.zone.file"; };
 zone "moyo.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "mperez.com.ar" { type master; notify no; file "null.zone.file"; };
 zone "mrtool.ir" { type master; notify no; file "null.zone.file"; };
 zone "msecurity.ro" { type master; notify no; file "null.zone.file"; };
+zone "mteng.mmj7.com" { type master; notify no; file "null.zone.file"; };
 zone "mtfelektroteknik.com" { type master; notify no; file "null.zone.file"; };
-zone "mudita.vn" { type master; notify no; file "null.zone.file"; };
 zone "mueblesjcp.cl" { type master; notify no; file "null.zone.file"; };
+zone "mutec.jp" { type master; notify no; file "null.zone.file"; };
 zone "mv360.net" { type master; notify no; file "null.zone.file"; };
 zone "mvb.kz" { type master; notify no; file "null.zone.file"; };
 zone "mxpiqw.am.files.1drv.com" { type master; notify no; file "null.zone.file"; };
-zone "mydesign.thinkeraibirds.com" { type master; notify no; file "null.zone.file"; };
 zone "myexpertca.in" { type master; notify no; file "null.zone.file"; };
 zone "myhood.cl" { type master; notify no; file "null.zone.file"; };
 zone "myo.net.au" { type master; notify no; file "null.zone.file"; };
@@ -529,6 +520,7 @@ zone "mytrains.net" { type master; notify no; file "null.zone.file"; };
 zone "mywp.asia" { type master; notify no; file "null.zone.file"; };
 zone "myyttilukukansasta.fi" { type master; notify no; file "null.zone.file"; };
 zone "naildumarche.com" { type master; notify no; file "null.zone.file"; };
+zone "namuvpn.com" { type master; notify no; file "null.zone.file"; };
 zone "narty.laserteam.pl" { type master; notify no; file "null.zone.file"; };
 zone "naturalma.es" { type master; notify no; file "null.zone.file"; };
 zone "naturepack.cc" { type master; notify no; file "null.zone.file"; };
@@ -538,11 +530,13 @@ zone "ndrs.cloud" { type master; notify no; file "null.zone.file"; };
 zone "nebraskacharters.com.au" { type master; notify no; file "null.zone.file"; };
 zone "neocity1.free.fr" { type master; notify no; file "null.zone.file"; };
 zone "nerve.untergrund.net" { type master; notify no; file "null.zone.file"; };
+zone "news.abfakerman.ir" { type master; notify no; file "null.zone.file"; };
 zone "news.omumusic.net" { type master; notify no; file "null.zone.file"; };
 zone "newsun-shop.com" { type master; notify no; file "null.zone.file"; };
 zone "newxing.com" { type master; notify no; file "null.zone.file"; };
+zone "nexity.me" { type master; notify no; file "null.zone.file"; };
 zone "nfbio.com" { type master; notify no; file "null.zone.file"; };
-zone "ngoaingu.garage.com.vn" { type master; notify no; file "null.zone.file"; };
+zone "nkdhub.com" { type master; notify no; file "null.zone.file"; };
 zone "nofound.000webhostapp.com" { type master; notify no; file "null.zone.file"; };
 zone "norperuinge.com.pe" { type master; notify no; file "null.zone.file"; };
 zone "nprg.ru" { type master; notify no; file "null.zone.file"; };
@@ -552,12 +546,14 @@ zone "oa.fnysw.com" { type master; notify no; file "null.zone.file"; };
 zone "oa.hys.cn" { type master; notify no; file "null.zone.file"; };
 zone "obnova.zzux.com" { type master; notify no; file "null.zone.file"; };
 zone "obseques-conseils.com" { type master; notify no; file "null.zone.file"; };
+zone "ohe.ie" { type master; notify no; file "null.zone.file"; };
 zone "oknoplastik.sk" { type master; notify no; file "null.zone.file"; };
 zone "omega.az" { type master; notify no; file "null.zone.file"; };
+zone "omitkyspisar.cz" { type master; notify no; file "null.zone.file"; };
 zone "omsk-osma.ru" { type master; notify no; file "null.zone.file"; };
 zone "omuzgor.tj" { type master; notify no; file "null.zone.file"; };
 zone "onestin.ro" { type master; notify no; file "null.zone.file"; };
-zone "openclient.sroinfo.com" { type master; notify no; file "null.zone.file"; };
+zone "onlyart.in" { type master; notify no; file "null.zone.file"; };
 zone "operasanpiox.bravepages.com" { type master; notify no; file "null.zone.file"; };
 zone "ophtalmiccenter.com" { type master; notify no; file "null.zone.file"; };
 zone "opolis.io" { type master; notify no; file "null.zone.file"; };
@@ -576,8 +572,8 @@ zone "p500.mon-application.com" { type master; notify no; file "null.zone.file";
 zone "pack301.bravepages.com" { type master; notify no; file "null.zone.file"; };
 zone "pakdesighee.com" { type master; notify no; file "null.zone.file"; };
 zone "palochusvet.szm.com" { type master; notify no; file "null.zone.file"; };
-zone "paperbrick.peachtest.com" { type master; notify no; file "null.zone.file"; };
 zone "partyflix.net" { type master; notify no; file "null.zone.file"; };
+zone "pat4.jetos.com" { type master; notify no; file "null.zone.file"; };
 zone "pat4.qpoe.com" { type master; notify no; file "null.zone.file"; };
 zone "patch2.51lg.com" { type master; notify no; file "null.zone.file"; };
 zone "patch2.99ddd.com" { type master; notify no; file "null.zone.file"; };
@@ -586,8 +582,8 @@ zone "patrickchan-hk.net" { type master; notify no; file "null.zone.file"; };
 zone "pawel-sikora.pl" { type master; notify no; file "null.zone.file"; };
 zone "pcginsure.com" { type master; notify no; file "null.zone.file"; };
 zone "pcsoori.com" { type master; notify no; file "null.zone.file"; };
-zone "peachtest.com" { type master; notify no; file "null.zone.file"; };
 zone "pedidoslalacteo.com.ar" { type master; notify no; file "null.zone.file"; };
+zone "peterssandmay.com" { type master; notify no; file "null.zone.file"; };
 zone "petromltd.com" { type master; notify no; file "null.zone.file"; };
 zone "ph4s.ru" { type master; notify no; file "null.zone.file"; };
 zone "phamchilong.com" { type master; notify no; file "null.zone.file"; };
@@ -597,15 +593,19 @@ zone "piapendet.com" { type master; notify no; file "null.zone.file"; };
 zone "pink99.com" { type master; notify no; file "null.zone.file"; };
 zone "pocketfsa.com" { type master; notify no; file "null.zone.file"; };
 zone "podiatristlansdale.com" { type master; notify no; file "null.zone.file"; };
+zone "pokids.vn" { type master; notify no; file "null.zone.file"; };
 zone "ponto50.com.br" { type master; notify no; file "null.zone.file"; };
 zone "poolbook.ir" { type master; notify no; file "null.zone.file"; };
 zone "portal.nfbpc.org" { type master; notify no; file "null.zone.file"; };
 zone "ppl.ac.id" { type master; notify no; file "null.zone.file"; };
+zone "prepaenunsoloexamen.academiagalileoac.com" { type master; notify no; file "null.zone.file"; };
+zone "primaart.vn" { type master; notify no; file "null.zone.file"; };
 zone "probost.cz" { type master; notify no; file "null.zone.file"; };
 zone "prosoc.nl" { type master; notify no; file "null.zone.file"; };
 zone "prowin.co.th" { type master; notify no; file "null.zone.file"; };
 zone "pujashoppe.in" { type master; notify no; file "null.zone.file"; };
 zone "purelondonhyg.com" { type master; notify no; file "null.zone.file"; };
+zone "purewood.in" { type master; notify no; file "null.zone.file"; };
 zone "qchms.qcpro.vn" { type master; notify no; file "null.zone.file"; };
 zone "qfjys.com.img.800cdn.com" { type master; notify no; file "null.zone.file"; };
 zone "qmsled.com" { type master; notify no; file "null.zone.file"; };
@@ -634,13 +634,13 @@ zone "rkverify.securestudies.com" { type master; notify no; file "null.zone.file
 zone "robertmcardle.com" { type master; notify no; file "null.zone.file"; };
 zone "robotrade.com.vn" { type master; notify no; file "null.zone.file"; };
 zone "rollscar.pk" { type master; notify no; file "null.zone.file"; };
+zone "rosdal.abouttobeawesome.com" { type master; notify no; file "null.zone.file"; };
 zone "rossogato.com" { type master; notify no; file "null.zone.file"; };
+zone "royalplusmobile.ir" { type master; notify no; file "null.zone.file"; };
 zone "ruisgood.ru" { type master; notify no; file "null.zone.file"; };
 zone "rusch.nu" { type master; notify no; file "null.zone.file"; };
 zone "s.51shijuan.com" { type master; notify no; file "null.zone.file"; };
 zone "s.kk30.com" { type master; notify no; file "null.zone.file"; };
-zone "s14b.91danji.com" { type master; notify no; file "null.zone.file"; };
-zone "s14b.groundyun.cn" { type master; notify no; file "null.zone.file"; };
 zone "sabiupd.compress.to" { type master; notify no; file "null.zone.file"; };
 zone "saboorjaam.ir" { type master; notify no; file "null.zone.file"; };
 zone "sabupda.vizvaz.com" { type master; notify no; file "null.zone.file"; };
@@ -667,14 +667,14 @@ zone "sgm.pc6.com" { type master; notify no; file "null.zone.file"; };
 zone "shacked.webdepot.co.il" { type master; notify no; file "null.zone.file"; };
 zone "shahtoba.faqserv.com" { type master; notify no; file "null.zone.file"; };
 zone "shaoxiaofei.cn" { type master; notify no; file "null.zone.file"; };
-zone "share.dmca.gripe" { type master; notify no; file "null.zone.file"; };
 zone "sharjahas.com" { type master; notify no; file "null.zone.file"; };
-zone "shembefoundation.com" { type master; notify no; file "null.zone.file"; };
 zone "shy-obi-0122.jellybean.jp" { type master; notify no; file "null.zone.file"; };
+zone "simlun.com.ar" { type master; notify no; file "null.zone.file"; };
 zone "simpl.pw" { type master; notify no; file "null.zone.file"; };
 zone "sinastorage.cn" { type master; notify no; file "null.zone.file"; };
 zone "sindicato1ucm.cl" { type master; notify no; file "null.zone.file"; };
 zone "sinerjias.com.tr" { type master; notify no; file "null.zone.file"; };
+zone "siriyun.top" { type master; notify no; file "null.zone.file"; };
 zone "sistemagema.com.ar" { type master; notify no; file "null.zone.file"; };
 zone "skyscan.com" { type master; notify no; file "null.zone.file"; };
 zone "slmconduct.dk" { type master; notify no; file "null.zone.file"; };
@@ -685,7 +685,6 @@ zone "snapit.solutions" { type master; notify no; file "null.zone.file"; };
 zone "sncshyamavan.org" { type master; notify no; file "null.zone.file"; };
 zone "snp2m.poliupg.ac.id" { type master; notify no; file "null.zone.file"; };
 zone "social.scottsimard.com" { type master; notify no; file "null.zone.file"; };
-zone "socialhelp.ir" { type master; notify no; file "null.zone.file"; };
 zone "sodmalwa.pl" { type master; notify no; file "null.zone.file"; };
 zone "softdown.55.la" { type master; notify no; file "null.zone.file"; };
 zone "somudigital.in" { type master; notify no; file "null.zone.file"; };
@@ -708,13 +707,12 @@ zone "standardalloysindia.com" { type master; notify no; file "null.zone.file";
 zone "starbeatdance.com" { type master; notify no; file "null.zone.file"; };
 zone "starcountry.net" { type master; notify no; file "null.zone.file"; };
 zone "static.ilclock.com" { type master; notify no; file "null.zone.file"; };
-zone "static.topxgun.com" { type master; notify no; file "null.zone.file"; };
 zone "stecit.nl" { type master; notify no; file "null.zone.file"; };
 zone "stevewalker.com.au" { type master; notify no; file "null.zone.file"; };
 zone "story-maker.jp" { type master; notify no; file "null.zone.file"; };
+zone "stubbackup.ru" { type master; notify no; file "null.zone.file"; };
 zone "suaritmafirmalari.com" { type master; notify no; file "null.zone.file"; };
 zone "support.clz.kr" { type master; notify no; file "null.zone.file"; };
-zone "sv.pvroe.com" { type master; notify no; file "null.zone.file"; };
 zone "svkacademy.com" { type master; notify no; file "null.zone.file"; };
 zone "svn.cc.jyu.fi" { type master; notify no; file "null.zone.file"; };
 zone "sweaty.dk" { type master; notify no; file "null.zone.file"; };
@@ -730,15 +728,13 @@ zone "tcy.198424.com" { type master; notify no; file "null.zone.file"; };
 zone "teamtnt.red" { type master; notify no; file "null.zone.file"; };
 zone "teardrop-productions.ro" { type master; notify no; file "null.zone.file"; };
 zone "technoites.com" { type master; notify no; file "null.zone.file"; };
+zone "tecnobella.cl" { type master; notify no; file "null.zone.file"; };
 zone "tehrenberg.com" { type master; notify no; file "null.zone.file"; };
 zone "telescopelms.com" { type master; notify no; file "null.zone.file"; };
 zone "telsiai.info" { type master; notify no; file "null.zone.file"; };
-zone "tepatitlan.gob.mx" { type master; notify no; file "null.zone.file"; };
 zone "test.iyibakkendine.com" { type master; notify no; file "null.zone.file"; };
-zone "test.presta-com.ru" { type master; notify no; file "null.zone.file"; };
 zone "testdatabaseforcepoint.com" { type master; notify no; file "null.zone.file"; };
 zone "thaibbqculver.com" { type master; notify no; file "null.zone.file"; };
-zone "thaisell.com" { type master; notify no; file "null.zone.file"; };
 zone "tharringtonsponsorship.com" { type master; notify no; file "null.zone.file"; };
 zone "thc-annex.com" { type master; notify no; file "null.zone.file"; };
 zone "theclinicabarros.com" { type master; notify no; file "null.zone.file"; };
@@ -747,7 +743,6 @@ zone "theprestige.ro" { type master; notify no; file "null.zone.file"; };
 zone "theptiendat.com" { type master; notify no; file "null.zone.file"; };
 zone "thepyramids.nl" { type master; notify no; file "null.zone.file"; };
 zone "therecruiter.io" { type master; notify no; file "null.zone.file"; };
-zone "thornadops.com" { type master; notify no; file "null.zone.file"; };
 zone "thosewebbs.com" { type master; notify no; file "null.zone.file"; };
 zone "thuong.bidiworks.com" { type master; notify no; file "null.zone.file"; };
 zone "tianangdep.com" { type master; notify no; file "null.zone.file"; };
@@ -766,7 +761,6 @@ zone "tsredco.telangana.gov.in" { type master; notify no; file "null.zone.file";
 zone "tulli.info" { type master; notify no; file "null.zone.file"; };
 zone "tumso.org" { type master; notify no; file "null.zone.file"; };
 zone "tuneup.ibk.me" { type master; notify no; file "null.zone.file"; };
-zone "tup.com.cn" { type master; notify no; file "null.zone.file"; };
 zone "tutuler.com" { type master; notify no; file "null.zone.file"; };
 zone "uc-56.ru" { type master; notify no; file "null.zone.file"; };
 zone "ufabet168168.329263.com" { type master; notify no; file "null.zone.file"; };
@@ -776,14 +770,11 @@ zone "ultimatepointsstore.com" { type master; notify no; file "null.zone.file";
 zone "ulusalofis.com" { type master; notify no; file "null.zone.file"; };
 zone "undantagforlag.se" { type master; notify no; file "null.zone.file"; };
 zone "unicorpbrunei.com" { type master; notify no; file "null.zone.file"; };
-zone "unilevercopabr.mbiz20.net" { type master; notify no; file "null.zone.file"; };
 zone "uniquehall.net" { type master; notify no; file "null.zone.file"; };
 zone "unitenrk.com" { type master; notify no; file "null.zone.file"; };
 zone "unokaoeojoejfghr.ru" { type master; notify no; file "null.zone.file"; };
 zone "upd.m.dodo52.com" { type master; notify no; file "null.zone.file"; };
 zone "update.iwang8.com" { type master; notify no; file "null.zone.file"; };
-zone "update.my.99.com" { type master; notify no; file "null.zone.file"; };
-zone "updateflashiplayer.xyz" { type master; notify no; file "null.zone.file"; };
 zone "urgentmessage.org" { type master; notify no; file "null.zone.file"; };
 zone "usd-gold.com" { type master; notify no; file "null.zone.file"; };
 zone "users.skynet.be" { type master; notify no; file "null.zone.file"; };
@@ -802,9 +793,11 @@ zone "vietducbio.com" { type master; notify no; file "null.zone.file"; };
 zone "vigilar.com.br" { type master; notify no; file "null.zone.file"; };
 zone "vip.recommendedtoyoo.com" { type master; notify no; file "null.zone.file"; };
 zone "virustreatments.empeeevents.com" { type master; notify no; file "null.zone.file"; };
-zone "visualdata.ru" { type master; notify no; file "null.zone.file"; };
+zone "visagepk.com" { type master; notify no; file "null.zone.file"; };
+zone "vitinhvnt.com" { type master; notify no; file "null.zone.file"; };
 zone "vitromed.ro" { type master; notify no; file "null.zone.file"; };
 zone "vjhascv.ru" { type master; notify no; file "null.zone.file"; };
+zone "voyageur.sisnettdesign.com" { type master; notify no; file "null.zone.file"; };
 zone "vrrumover0.vrrum0.farted.net" { type master; notify no; file "null.zone.file"; };
 zone "vvff.in" { type master; notify no; file "null.zone.file"; };
 zone "w.zhzy999.net" { type master; notify no; file "null.zone.file"; };
@@ -814,6 +807,7 @@ zone "ware.ru" { type master; notify no; file "null.zone.file"; };
 zone "warriorllc.com" { type master; notify no; file "null.zone.file"; };
 zone "wbd.5636.com" { type master; notify no; file "null.zone.file"; };
 zone "wbkmt.com" { type master; notify no; file "null.zone.file"; };
+zone "webarte.com.br" { type master; notify no; file "null.zone.file"; };
 zone "webq.wikaba.com" { type master; notify no; file "null.zone.file"; };
 zone "webserverthai.com" { type master; notify no; file "null.zone.file"; };
 zone "webservice99.com" { type master; notify no; file "null.zone.file"; };
@@ -821,7 +815,6 @@ zone "websound.ru" { type master; notify no; file "null.zone.file"; };
 zone "welcometothefuture.com" { type master; notify no; file "null.zone.file"; };
 zone "whgaty.com" { type master; notify no; file "null.zone.file"; };
 zone "wiebe-sanitaer.de" { type master; notify no; file "null.zone.file"; };
-zone "wishngifts.com" { type master; notify no; file "null.zone.file"; };
 zone "wmd9e.a3i1vvv.feteboc.com" { type master; notify no; file "null.zone.file"; };
 zone "wnksupply.co.th" { type master; notify no; file "null.zone.file"; };
 zone "wood-expert.net" { type master; notify no; file "null.zone.file"; };
@@ -836,17 +829,15 @@ zone "wt9.siweidaoxiang.com" { type master; notify no; file "null.zone.file"; };
 zone "www2.recepty5.com" { type master; notify no; file "null.zone.file"; };
 zone "x2vn.com" { type master; notify no; file "null.zone.file"; };
 zone "xia.vzboot.com" { type master; notify no; file "null.zone.file"; };
-zone "xiaidown.com" { type master; notify no; file "null.zone.file"; };
 zone "xiaoma-10021647.file.myqcloud.com" { type master; notify no; file "null.zone.file"; };
 zone "xinwenwang123.cn" { type master; notify no; file "null.zone.file"; };
 zone "xirfad.com" { type master; notify no; file "null.zone.file"; };
-zone "xn--20gb-hediyefrsati-nvc.com" { type master; notify no; file "null.zone.file"; };
 zone "xtremeforumz.com" { type master; notify no; file "null.zone.file"; };
 zone "xxwl.kuaiyunds.com" { type master; notify no; file "null.zone.file"; };
-zone "xxxze.co.nu" { type master; notify no; file "null.zone.file"; };
 zone "yeez.net" { type master; notify no; file "null.zone.file"; };
 zone "yesky.51down.org.cn" { type master; notify no; file "null.zone.file"; };
 zone "yesky.xzstatic.com" { type master; notify no; file "null.zone.file"; };
+zone "yiyangjz.cn" { type master; notify no; file "null.zone.file"; };
 zone "yuluobo.com" { type master; notify no; file "null.zone.file"; };
 zone "yun-1.lenku.cn" { type master; notify no; file "null.zone.file"; };
 zone "yuyu02004-10043918.file.myqcloud.com" { type master; notify no; file "null.zone.file"; };
@@ -862,8 +853,10 @@ zone "zentealounge.com.au" { type master; notify no; file "null.zone.file"; };
 zone "zeytinyagisabun.com" { type master; notify no; file "null.zone.file"; };
 zone "zhetysu360.kz" { type master; notify no; file "null.zone.file"; };
 zone "zhzy999.net" { type master; notify no; file "null.zone.file"; };
+zone "ziliao.yunkaodian.com" { type master; notify no; file "null.zone.file"; };
 zone "zj.9553.com" { type master; notify no; file "null.zone.file"; };
 zone "zmmore.com" { type master; notify no; file "null.zone.file"; };
 zone "zoetermeerov.nl" { type master; notify no; file "null.zone.file"; };
 zone "zoeydeutchweb.com" { type master; notify no; file "null.zone.file"; };
 zone "zonefound.com.cn" { type master; notify no; file "null.zone.file"; };
+zone "zsinstrument.com" { type master; notify no; file "null.zone.file"; };
diff --git a/urlhaus-filter-bind.conf b/urlhaus-filter-bind.conf
index 85d3cdd8..d5522300 100644
--- a/urlhaus-filter-bind.conf
+++ b/urlhaus-filter-bind.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains BIND Blocklist
-# Updated: Thu, 07 May 2020 12:09:37 UTC
+# Updated: Fri, 08 May 2020 00:09:41 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -1598,6 +1598,7 @@ zone "aastudios.co.in" { type master; notify no; file "null.zone.file"; };
 zone "aaswim.co.za" { type master; notify no; file "null.zone.file"; };
 zone "aatlantictreeservices.com" { type master; notify no; file "null.zone.file"; };
 zone "aavasolution.com" { type master; notify no; file "null.zone.file"; };
+zone "aaversalrelo.com" { type master; notify no; file "null.zone.file"; };
 zone "aavip.cn" { type master; notify no; file "null.zone.file"; };
 zone "aavra.com.ar" { type master; notify no; file "null.zone.file"; };
 zone "aawajmedia.com" { type master; notify no; file "null.zone.file"; };
@@ -3859,6 +3860,7 @@ zone "allenhenson.com" { type master; notify no; file "null.zone.file"; };
 zone "allenmarks.se" { type master; notify no; file "null.zone.file"; };
 zone "allens.youcheckit.ca" { type master; notify no; file "null.zone.file"; };
 zone "allenservice.ga" { type master; notify no; file "null.zone.file"; };
+zone "allexampdf.com" { type master; notify no; file "null.zone.file"; };
 zone "allexcursion.com" { type master; notify no; file "null.zone.file"; };
 zone "allexpressstores.com" { type master; notify no; file "null.zone.file"; };
 zone "alleyesonus.pt" { type master; notify no; file "null.zone.file"; };
@@ -4612,6 +4614,7 @@ zone "analisesfarma.com.br" { type master; notify no; file "null.zone.file"; };
 zone "analisiclinichecatania.it" { type master; notify no; file "null.zone.file"; };
 zone "analiskimia.undiksha.ac.id" { type master; notify no; file "null.zone.file"; };
 zone "analistarastirma.com" { type master; notify no; file "null.zone.file"; };
+zone "analistaspadel.com" { type master; notify no; file "null.zone.file"; };
 zone "analizator.online" { type master; notify no; file "null.zone.file"; };
 zone "analytics.theminersunion.com" { type master; notify no; file "null.zone.file"; };
 zone "analyze-it.co.za" { type master; notify no; file "null.zone.file"; };
@@ -5550,6 +5553,7 @@ zone "arabaresmi.com" { type master; notify no; file "null.zone.file"; };
 zone "arabcb.org" { type master; notify no; file "null.zone.file"; };
 zone "arabcoegypt.com" { type master; notify no; file "null.zone.file"; };
 zone "arabdubaisafari.com" { type master; notify no; file "null.zone.file"; };
+zone "arabenergyclub.org" { type master; notify no; file "null.zone.file"; };
 zone "arabianbrother.com" { type master; notify no; file "null.zone.file"; };
 zone "arabiantongue.net" { type master; notify no; file "null.zone.file"; };
 zone "arabiantravelhouse.com" { type master; notify no; file "null.zone.file"; };
@@ -11772,6 +11776,7 @@ zone "bushari.com" { type master; notify no; file "null.zone.file"; };
 zone "bushmansafaris.co.zw" { type master; notify no; file "null.zone.file"; };
 zone "bushnell.by" { type master; notify no; file "null.zone.file"; };
 zone "business-blueprint.top-startups.com" { type master; notify no; file "null.zone.file"; };
+zone "business-expert.md" { type master; notify no; file "null.zone.file"; };
 zone "business-insight.aptoilab.com" { type master; notify no; file "null.zone.file"; };
 zone "business-solution-ltd.org" { type master; notify no; file "null.zone.file"; };
 zone "business.bityaris.com" { type master; notify no; file "null.zone.file"; };
@@ -14430,6 +14435,7 @@ zone "cjb-law.com" { type master; notify no; file "null.zone.file"; };
 zone "cjcmail-oln040092069015.outbound.protection.sketchwefair-watduoliprudential.com.watchdogdns.duckdns.org" { type master; notify no; file "null.zone.file"; };
 zone "cjcurrent.com" { type master; notify no; file "null.zone.file"; };
 zone "cjd.com.br" { type master; notify no; file "null.zone.file"; };
+zone "cjemskayyoor.com" { type master; notify no; file "null.zone.file"; };
 zone "cjextm.ro" { type master; notify no; file "null.zone.file"; };
 zone "cjj.lanibio.net" { type master; notify no; file "null.zone.file"; };
 zone "cjllcmonthlysub.ga" { type master; notify no; file "null.zone.file"; };
@@ -15974,6 +15980,7 @@ zone "cosi-ilmercatodeisapori.com" { type master; notify no; file "null.zone.fil
 zone "coskunkuyumculuk.com" { type master; notify no; file "null.zone.file"; };
 zone "cosmatos.org" { type master; notify no; file "null.zone.file"; };
 zone "cosme.kyawaiiiii.com" { type master; notify no; file "null.zone.file"; };
+zone "cosmea.pl" { type master; notify no; file "null.zone.file"; };
 zone "cosmeis.com" { type master; notify no; file "null.zone.file"; };
 zone "cosmeliti.com" { type master; notify no; file "null.zone.file"; };
 zone "cosmet-log.com" { type master; notify no; file "null.zone.file"; };
@@ -17961,6 +17968,7 @@ zone "deguia.net" { type master; notify no; file "null.zone.file"; };
 zone "degustibeer.it" { type master; notify no; file "null.zone.file"; };
 zone "deheld100.nl" { type master; notify no; file "null.zone.file"; };
 zone "dehkadeh-tameshk.ir" { type master; notify no; file "null.zone.file"; };
+zone "dehkadenovin.com" { type master; notify no; file "null.zone.file"; };
 zone "dehlie.dk" { type master; notify no; file "null.zone.file"; };
 zone "dehneshin.com" { type master; notify no; file "null.zone.file"; };
 zone "dehydrated.sk" { type master; notify no; file "null.zone.file"; };
@@ -18728,6 +18736,7 @@ zone "dev.mountainwatch.com" { type master; notify no; file "null.zone.file"; };
 zone "dev.networkscy.com" { type master; notify no; file "null.zone.file"; };
 zone "dev.nextg.io" { type master; notify no; file "null.zone.file"; };
 zone "dev.nida.ac.th" { type master; notify no; file "null.zone.file"; };
+zone "dev.nona-polska.pl" { type master; notify no; file "null.zone.file"; };
 zone "dev.novembit.com" { type master; notify no; file "null.zone.file"; };
 zone "dev.optitek.com" { type master; notify no; file "null.zone.file"; };
 zone "dev.pacificsymposium.org" { type master; notify no; file "null.zone.file"; };
@@ -20879,6 +20888,7 @@ zone "drzimin.com" { type master; notify no; file "null.zone.file"; };
 zone "ds-al.er42.org" { type master; notify no; file "null.zone.file"; };
 zone "ds-cocoa.com" { type master; notify no; file "null.zone.file"; };
 zone "ds-stoneroots.com" { type master; notify no; file "null.zone.file"; };
+zone "ds.nashobmenfiles.com" { type master; notify no; file "null.zone.file"; };
 zone "ds.obmenvsemfiles.com" { type master; notify no; file "null.zone.file"; };
 zone "ds.veedence.co.uk" { type master; notify no; file "null.zone.file"; };
 zone "ds04.projectstatus.co.uk" { type master; notify no; file "null.zone.file"; };
@@ -24211,6 +24221,7 @@ zone "f0267229.xsph.ru" { type master; notify no; file "null.zone.file"; };
 zone "f0269025.xsph.ru" { type master; notify no; file "null.zone.file"; };
 zone "f0316439.xsph.ru" { type master; notify no; file "null.zone.file"; };
 zone "f0384177.xsph.ru" { type master; notify no; file "null.zone.file"; };
+zone "f0434589.xsph.ru" { type master; notify no; file "null.zone.file"; };
 zone "f0hc7osjnl2vi61g.com" { type master; notify no; file "null.zone.file"; };
 zone "f0jgqwejaisdqjwnqwe.com" { type master; notify no; file "null.zone.file"; };
 zone "f12.file-upload.com" { type master; notify no; file "null.zone.file"; };
@@ -27083,6 +27094,7 @@ zone "gamee.top" { type master; notify no; file "null.zone.file"; };
 zone "gameforte.com" { type master; notify no; file "null.zone.file"; };
 zone "gamehack.chat.ru" { type master; notify no; file "null.zone.file"; };
 zone "gamelaboratory.ru" { type master; notify no; file "null.zone.file"; };
+zone "gamelounge.club" { type master; notify no; file "null.zone.file"; };
 zone "gamemechanics.com" { type master; notify no; file "null.zone.file"; };
 zone "gameonline.web.id" { type master; notify no; file "null.zone.file"; };
 zone "gameonline11.com" { type master; notify no; file "null.zone.file"; };
@@ -28703,6 +28715,7 @@ zone "gorontula.com" { type master; notify no; file "null.zone.file"; };
 zone "goroute3.com" { type master; notify no; file "null.zone.file"; };
 zone "goruklecilingirci.com" { type master; notify no; file "null.zone.file"; };
 zone "goruklefitness.com" { type master; notify no; file "null.zone.file"; };
+zone "goschiele.com" { type master; notify no; file "null.zone.file"; };
 zone "goshhh.com" { type master; notify no; file "null.zone.file"; };
 zone "goshowcar.com" { type master; notify no; file "null.zone.file"; };
 zone "gosiltechono.co" { type master; notify no; file "null.zone.file"; };
@@ -28913,6 +28926,7 @@ zone "granpri.info" { type master; notify no; file "null.zone.file"; };
 zone "grant-massage.ru" { type master; notify no; file "null.zone.file"; };
 zone "granthawkinsdesign.com" { type master; notify no; file "null.zone.file"; };
 zone "grantkulinar.ru" { type master; notify no; file "null.zone.file"; };
+zone "grantoveporadenstvi.eu" { type master; notify no; file "null.zone.file"; };
 zone "grantpromotion.icu" { type master; notify no; file "null.zone.file"; };
 zone "grantwritersresource.com" { type master; notify no; file "null.zone.file"; };
 zone "granube.us-east-1.elasticbeanstalk.com" { type master; notify no; file "null.zone.file"; };
@@ -30823,6 +30837,7 @@ zone "hho3.com" { type master; notify no; file "null.zone.file"; };
 zone "hhold.ru" { type master; notify no; file "null.zone.file"; };
 zone "hhoorn.nl" { type master; notify no; file "null.zone.file"; };
 zone "hhristov.net" { type master; notify no; file "null.zone.file"; };
+zone "hi-event.vn" { type master; notify no; file "null.zone.file"; };
 zone "hi-fam.com" { type master; notify no; file "null.zone.file"; };
 zone "hi-shop.ml" { type master; notify no; file "null.zone.file"; };
 zone "hialeahprivateinvestigators.com" { type master; notify no; file "null.zone.file"; };
@@ -31180,6 +31195,7 @@ zone "hobi-sport.ch" { type master; notify no; file "null.zone.file"; };
 zone "hobi.de" { type master; notify no; file "null.zone.file"; };
 zone "hobimsiseyler.com" { type master; notify no; file "null.zone.file"; };
 zone "hobokendoulas.com" { type master; notify no; file "null.zone.file"; };
+zone "hobsnchimney.in" { type master; notify no; file "null.zone.file"; };
 zone "hobus.zema-sul.com" { type master; notify no; file "null.zone.file"; };
 zone "hocalarlaofis.com" { type master; notify no; file "null.zone.file"; };
 zone "hocdelamgi.000webhostapp.com" { type master; notify no; file "null.zone.file"; };
@@ -32169,6 +32185,7 @@ zone "hyundai-autoalbania.com.al" { type master; notify no; file "null.zone.file
 zone "hyundai-danang.com.vn" { type master; notify no; file "null.zone.file"; };
 zone "hyundai-services.ir" { type master; notify no; file "null.zone.file"; };
 zone "hyundailongbien.hanoi.vn" { type master; notify no; file "null.zone.file"; };
+zone "hyundainamdinh.org" { type master; notify no; file "null.zone.file"; };
 zone "hyunmee.se" { type master; notify no; file "null.zone.file"; };
 zone "hyunmoon.nfile.net" { type master; notify no; file "null.zone.file"; };
 zone "hyvat-olutravintolat.fi" { type master; notify no; file "null.zone.file"; };
@@ -41367,6 +41384,7 @@ zone "luzevida.com.br" { type master; notify no; file "null.zone.file"; };
 zone "luzfloral.com" { type master; notify no; file "null.zone.file"; };
 zone "luzy.vn" { type master; notify no; file "null.zone.file"; };
 zone "lvajnczdy.cf" { type master; notify no; file "null.zone.file"; };
+zone "lvecarehomes.com" { type master; notify no; file "null.zone.file"; };
 zone "lvita.co" { type master; notify no; file "null.zone.file"; };
 zone "lvksdy.cf" { type master; notify no; file "null.zone.file"; };
 zone "lvr.samacomplus.com" { type master; notify no; file "null.zone.file"; };
@@ -42942,6 +42960,7 @@ zone "marie-oms-psychologue.fr" { type master; notify no; file "null.zone.file";
 zone "marienthal.info" { type master; notify no; file "null.zone.file"; };
 zone "marientumba.com" { type master; notify no; file "null.zone.file"; };
 zone "mariepeters.com" { type master; notify no; file "null.zone.file"; };
+zone "mariereiko.com" { type master; notify no; file "null.zone.file"; };
 zone "mariesshopoutfit.com" { type master; notify no; file "null.zone.file"; };
 zone "marieva.pro" { type master; notify no; file "null.zone.file"; };
 zone "marijuana420site.com" { type master; notify no; file "null.zone.file"; };
@@ -45938,6 +45957,7 @@ zone "movin.cloud" { type master; notify no; file "null.zone.file"; };
 zone "moving-dubai.com" { type master; notify no; file "null.zone.file"; };
 zone "movingimagesmultimedia.com" { type master; notify no; file "null.zone.file"; };
 zone "movingmountainsfoods.com" { type master; notify no; file "null.zone.file"; };
+zone "movingsolutionsus.com" { type master; notify no; file "null.zone.file"; };
 zone "mowbaza.chat.ru" { type master; notify no; file "null.zone.file"; };
 zone "mowdsdflogin.usa.cc" { type master; notify no; file "null.zone.file"; };
 zone "mowwierzbica.lh.pl" { type master; notify no; file "null.zone.file"; };
@@ -49935,6 +49955,7 @@ zone "onlinewp.it" { type master; notify no; file "null.zone.file"; };
 zone "onlineyogaplatform.com" { type master; notify no; file "null.zone.file"; };
 zone "onlink-aoiuvr.com" { type master; notify no; file "null.zone.file"; };
 zone "onlyapteka.ru" { type master; notify no; file "null.zone.file"; };
+zone "onlyart.in" { type master; notify no; file "null.zone.file"; };
 zone "onlycane.in" { type master; notify no; file "null.zone.file"; };
 zone "onlychild.org" { type master; notify no; file "null.zone.file"; };
 zone "onlycocktaildresses.com" { type master; notify no; file "null.zone.file"; };
@@ -50653,6 +50674,7 @@ zone "p12.zdusercontent.com" { type master; notify no; file "null.zone.file"; };
 zone "p2.jugalvyas.com" { type master; notify no; file "null.zone.file"; };
 zone "p2.lingpao8.com" { type master; notify no; file "null.zone.file"; };
 zone "p23tv.studio" { type master; notify no; file "null.zone.file"; };
+zone "p2b.in" { type master; notify no; file "null.zone.file"; };
 zone "p2btechnologies.com" { type master; notify no; file "null.zone.file"; };
 zone "p2piptv.net" { type master; notify no; file "null.zone.file"; };
 zone "p2pmedia.org" { type master; notify no; file "null.zone.file"; };
@@ -53396,6 +53418,7 @@ zone "prihlaska.sagitta.cz" { type master; notify no; file "null.zone.file"; };
 zone "priintzone.com" { type master; notify no; file "null.zone.file"; };
 zone "prijzen-dakkapel.nl" { type master; notify no; file "null.zone.file"; };
 zone "prim.sydneyrobbins.net" { type master; notify no; file "null.zone.file"; };
+zone "primaart.vn" { type master; notify no; file "null.zone.file"; };
 zone "primagamahomeschool.com" { type master; notify no; file "null.zone.file"; };
 zone "primainnaparthotel.com" { type master; notify no; file "null.zone.file"; };
 zone "primakaryasteel.com" { type master; notify no; file "null.zone.file"; };
@@ -54232,6 +54255,7 @@ zone "purepropertiesobx.com" { type master; notify no; file "null.zone.file"; };
 zone "pureprotea.com" { type master; notify no; file "null.zone.file"; };
 zone "purerls.com" { type master; notify no; file "null.zone.file"; };
 zone "pureslimketoreviews.club" { type master; notify no; file "null.zone.file"; };
+zone "purewood.in" { type master; notify no; file "null.zone.file"; };
 zone "purgers-eventmanagement.de" { type master; notify no; file "null.zone.file"; };
 zone "puri-puri.sg" { type master; notify no; file "null.zone.file"; };
 zone "purifiq.co.za" { type master; notify no; file "null.zone.file"; };
@@ -60976,6 +61000,7 @@ zone "skiddump.cf" { type master; notify no; file "null.zone.file"; };
 zone "skiddump.ga" { type master; notify no; file "null.zone.file"; };
 zone "skiddump.ru" { type master; notify no; file "null.zone.file"; };
 zone "skidurham.com" { type master; notify no; file "null.zone.file"; };
+zone "skidware-malwrhunterteams.com" { type master; notify no; file "null.zone.file"; };
 zone "skiffinsconsuming.co.kr" { type master; notify no; file "null.zone.file"; };
 zone "skiinspa.com" { type master; notify no; file "null.zone.file"; };
 zone "skilancein.000webhostapp.com" { type master; notify no; file "null.zone.file"; };
@@ -61968,6 +61993,7 @@ zone "sooqxrpm.yjdata.me" { type master; notify no; file "null.zone.file"; };
 zone "sophiacarta.de" { type master; notify no; file "null.zone.file"; };
 zone "sophiacollegemumbai.com" { type master; notify no; file "null.zone.file"; };
 zone "sophiahotel.vn" { type master; notify no; file "null.zone.file"; };
+zone "sophiasbridalandtux.com" { type master; notify no; file "null.zone.file"; };
 zone "sophiaskyhotel.vn" { type master; notify no; file "null.zone.file"; };
 zone "sophiasuites-santorini.com" { type master; notify no; file "null.zone.file"; };
 zone "sophiebarthelemy.fr" { type master; notify no; file "null.zone.file"; };
@@ -69599,6 +69625,7 @@ zone "update.com.br" { type master; notify no; file "null.zone.file"; };
 zone "update.covid-19.casa" { type master; notify no; file "null.zone.file"; };
 zone "update.gk-mtm.ru" { type master; notify no; file "null.zone.file"; };
 zone "update.hoiucvl.com" { type master; notify no; file "null.zone.file"; };
+zone "update.id" { type master; notify no; file "null.zone.file"; };
 zone "update.igra123.com" { type master; notify no; file "null.zone.file"; };
 zone "update.iwang8.com" { type master; notify no; file "null.zone.file"; };
 zone "update.jirisancapital.com" { type master; notify no; file "null.zone.file"; };
@@ -70063,6 +70090,7 @@ zone "vaguevague.com" { type master; notify no; file "null.zone.file"; };
 zone "vahan24.in" { type master; notify no; file "null.zone.file"; };
 zone "vaheracouncil.com" { type master; notify no; file "null.zone.file"; };
 zone "vahokad.sk" { type master; notify no; file "null.zone.file"; };
+zone "vaico.co" { type master; notify no; file "null.zone.file"; };
 zone "vaigacafe.com" { type master; notify no; file "null.zone.file"; };
 zone "vaileather.com" { type master; notify no; file "null.zone.file"; };
 zone "vaillantteknikservisibursa.com" { type master; notify no; file "null.zone.file"; };
@@ -70917,6 +70945,7 @@ zone "vinalpapel.com" { type master; notify no; file "null.zone.file"; };
 zone "vinarycard.com" { type master; notify no; file "null.zone.file"; };
 zone "vinaschool.com.vn" { type master; notify no; file "null.zone.file"; };
 zone "vinastone.com" { type master; notify no; file "null.zone.file"; };
+zone "vinastory.vn" { type master; notify no; file "null.zone.file"; };
 zone "vinatuoi.com" { type master; notify no; file "null.zone.file"; };
 zone "vinay29.000webhostapp.com" { type master; notify no; file "null.zone.file"; };
 zone "vinaykhatri.in" { type master; notify no; file "null.zone.file"; };
diff --git a/urlhaus-filter-dnsmasq-online.conf b/urlhaus-filter-dnsmasq-online.conf
index 0208a1e4..234abce7 100644
--- a/urlhaus-filter-dnsmasq-online.conf
+++ b/urlhaus-filter-dnsmasq-online.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains dnsmasq Blocklist
-# Updated: Thu, 07 May 2020 12:09:37 UTC
+# Updated: Fri, 08 May 2020 00:09:41 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -17,7 +17,6 @@ address=/402musicfest.com/0.0.0.0
 address=/49parallel.ca/0.0.0.0
 address=/786suncity.com/0.0.0.0
 address=/8200msc.com/0.0.0.0
-address=/887sconline.com/0.0.0.0
 address=/88mscco.com/0.0.0.0
 address=/a-reality.co.uk/0.0.0.0
 address=/a.xiazai163.com/0.0.0.0
@@ -25,6 +24,7 @@ address=/aaasolution.co.th/0.0.0.0
 address=/accessyouraudience.com/0.0.0.0
 address=/acdesignhub.com/0.0.0.0
 address=/acteon.com.ar/0.0.0.0
+address=/activecost.com.au/0.0.0.0
 address=/adamtcarruthers.com/0.0.0.0
 address=/adnquocte.com/0.0.0.0
 address=/agiandsam.com/0.0.0.0
@@ -43,23 +43,25 @@ address=/allloveseries.com/0.0.0.0
 address=/alohasoftware.net/0.0.0.0
 address=/alphaconsumer.net/0.0.0.0
 address=/am-concepts.ca/0.0.0.0
-address=/amd.alibuf.com/0.0.0.0
+address=/amedeoscognamiglio.329263.com/0.0.0.0
 address=/amemarine.co.th/0.0.0.0
 address=/americanrange.com/0.0.0.0
 address=/anadolutatili.com/0.0.0.0
-address=/anamikaindanegas.in/0.0.0.0
 address=/andreelapeyre.com/0.0.0.0
 address=/andremaraisbeleggings.co.za/0.0.0.0
 address=/angthong.nfe.go.th/0.0.0.0
+address=/anjsolution.com/0.0.0.0
 address=/anvietpro.com/0.0.0.0
 address=/anysbergbiltong.co.za/0.0.0.0
 address=/aoujlift.ir/0.0.0.0
 address=/apartdelpinar.com.ar/0.0.0.0
 address=/apoolcondo.com/0.0.0.0
 address=/apware.co.kr/0.0.0.0
+address=/arabenergyclub.org/0.0.0.0
 address=/archiv.bg/0.0.0.0
 address=/areac-agr.com/0.0.0.0
 address=/ascentive.com/0.0.0.0
+address=/ashoakacharya.com/0.0.0.0
 address=/askarindo.or.id/0.0.0.0
 address=/asload01.top/0.0.0.0
 address=/atfile.com/0.0.0.0
@@ -69,7 +71,6 @@ address=/atteuqpotentialunlimited.com/0.0.0.0
 address=/audiosv.com/0.0.0.0
 address=/aulist.com/0.0.0.0
 address=/auraco.ca/0.0.0.0
-address=/aurumboy.com/0.0.0.0
 address=/azmeasurement.com/0.0.0.0
 address=/aznetsolutions.com/0.0.0.0
 address=/azureautomation.co.uk/0.0.0.0
@@ -79,16 +80,15 @@ address=/bamakobleach.free.fr/0.0.0.0
 address=/bangkok-orchids.com/0.0.0.0
 address=/banzaimonkey.com/0.0.0.0
 address=/bapo.granudan.cn/0.0.0.0
-address=/baritaco.com/0.0.0.0
 address=/bbs.sunwy.org/0.0.0.0
 address=/bbs1.marisfrolg.com/0.0.0.0
 address=/bd11.52lishi.com/0.0.0.0
 address=/bd12.52lishi.com/0.0.0.0
 address=/bd18.52lishi.com/0.0.0.0
 address=/bd19.52lishi.com/0.0.0.0
+address=/beachbeaty.com/0.0.0.0
 address=/beibei.xx007.cc/0.0.0.0
 address=/bepgroup.com.hk/0.0.0.0
-address=/bergamote.org/0.0.0.0
 address=/besserblok-ufa.ru/0.0.0.0
 address=/besttasimacilik.com.tr/0.0.0.0
 address=/beta.pterosol.com/0.0.0.0
@@ -103,6 +103,7 @@ address=/bjkumdo.com/0.0.0.0
 address=/blog.241optical.com/0.0.0.0
 address=/blog.hanxe.com/0.0.0.0
 address=/bolidar.dnset.com/0.0.0.0
+address=/borawebservicioscl1.com/0.0.0.0
 address=/bovientix.com/0.0.0.0
 address=/bpo.correct.go.th/0.0.0.0
 address=/brasstec.com.br/0.0.0.0
@@ -112,15 +113,16 @@ address=/btlocum.pl/0.0.0.0
 address=/bugansavings.com/0.0.0.0
 address=/byqkdy.com/0.0.0.0
 address=/c.vvvvvvvvv.ga/0.0.0.0
-address=/c9f44961.ngrok.io/0.0.0.0
 address=/cameli.vn/0.0.0.0
 address=/cantikekinian.com/0.0.0.0
 address=/caravella.com.br/0.0.0.0
 address=/cassovia.sk/0.0.0.0
 address=/cbk.m.dodo52.com/0.0.0.0
 address=/ccnn.xiaomier.cn/0.0.0.0
+address=/cdn-10049480.file.myqcloud.com/0.0.0.0
 address=/cdn.xiaoduoai.com/0.0.0.0
 address=/cdnus.laboratoryconecpttoday.com/0.0.0.0
+address=/ceirecrear.com.br/0.0.0.0
 address=/cellas.sk/0.0.0.0
 address=/cf.uuu9.com/0.0.0.0
 address=/cf0.pw/0.0.0.0
@@ -128,7 +130,7 @@ address=/cfs5.tistory.com/0.0.0.0
 address=/ch.rmu.ac.th/0.0.0.0
 address=/changematterscounselling.com/0.0.0.0
 address=/chanvribloc.com/0.0.0.0
-address=/charm.bizfxr.com/0.0.0.0
+address=/chattosport.com/0.0.0.0
 address=/chedea.eu/0.0.0.0
 address=/chinhdropfile.myvnc.com/0.0.0.0
 address=/chinhdropfile80.myvnc.com/0.0.0.0
@@ -138,15 +140,17 @@ address=/chj.m.dodo52.com/0.0.0.0
 address=/chuckweiss.com/0.0.0.0
 address=/clareiamente.clareiamente.com/0.0.0.0
 address=/clearwaterriveroutfitting.com/0.0.0.0
-address=/cleversoft.vn/0.0.0.0
 address=/client.yaap.co.uk/0.0.0.0
 address=/clinicamariademolina.com/0.0.0.0
+address=/cmecobrancas.com/0.0.0.0
+address=/cnhdsoft.com/0.0.0.0
 address=/compesat.com/0.0.0.0
 address=/complan.hu/0.0.0.0
 address=/complanbt.hu/0.0.0.0
 address=/comtechadsl.com/0.0.0.0
 address=/config.kuaisousou.top/0.0.0.0
 address=/consultingcy.com/0.0.0.0
+address=/cosmea.pl/0.0.0.0
 address=/counciloflight.bravepages.com/0.0.0.0
 address=/cqjcc.org/0.0.0.0
 address=/crittersbythebay.com/0.0.0.0
@@ -154,8 +158,6 @@ address=/cryline.net/0.0.0.0
 address=/csnserver.com/0.0.0.0
 address=/csw.hu/0.0.0.0
 address=/cyclomove.com/0.0.0.0
-address=/czsl.91756.cn/0.0.0.0
-address=/d3.99ddd.com/0.0.0.0
 address=/d9.99ddd.com/0.0.0.0
 address=/da.alibuf.com/0.0.0.0
 address=/daithanhphung.com/0.0.0.0
@@ -167,15 +169,18 @@ address=/datvensaigon.com/0.0.0.0
 address=/davinadouthard.com/0.0.0.0
 address=/dawaphoto.co.kr/0.0.0.0
 address=/daynightgym.com/0.0.0.0
+address=/dbssistem.com.tr/0.0.0.0
 address=/de.gsearch.com.de/0.0.0.0
+address=/dehkadenovin.com/0.0.0.0
 address=/deixameuskls.tripod.com/0.0.0.0
-address=/demo10.onbm.ir/0.0.0.0
+address=/demo13.dsdemosite.com/0.0.0.0
 address=/denkagida.com.tr/0.0.0.0
 address=/depgrup.com/0.0.0.0
 address=/depot7.com/0.0.0.0
 address=/derivativespro.in/0.0.0.0
 address=/desighiza.com/0.0.0.0
 address=/detafa.com/0.0.0.0
+address=/dev.nona-polska.pl/0.0.0.0
 address=/dev.sebpo.net/0.0.0.0
 address=/dev1.xicom.us/0.0.0.0
 address=/dev5.mypagevn.com/0.0.0.0
@@ -185,10 +190,9 @@ address=/dfd.zhzy999.net/0.0.0.0
 address=/dfzm.91756.cn/0.0.0.0
 address=/dgecolesdepolice.bf/0.0.0.0
 address=/dgnj.cn/0.0.0.0
-address=/dhlservices.duckdns.org/0.0.0.0
 address=/diazavendano.cl/0.0.0.0
 address=/dichvuvesinhcongnghiep.top/0.0.0.0
-address=/dienmayminhan.com/0.0.0.0
+address=/dienmaycu.vn/0.0.0.0
 address=/digilib.dianhusada.ac.id/0.0.0.0
 address=/digital-marketing-institute-delhi.empeeevents.com/0.0.0.0
 address=/digitaldog.de/0.0.0.0
@@ -199,13 +203,12 @@ address=/dl.1003b.56a.com/0.0.0.0
 address=/dl.198424.com/0.0.0.0
 address=/dl.dzqzd.com/0.0.0.0
 address=/dl.kuaile-u.com/0.0.0.0
-address=/dl2.soft-lenta.ru/0.0.0.0
 address=/dlist.iqilie.com/0.0.0.0
 address=/dmresor.se/0.0.0.0
-address=/dnn.alibuf.com/0.0.0.0
 address=/dns.alibuf.com/0.0.0.0
 address=/dodsonimaging.com/0.0.0.0
 address=/don.viameventos.com.br/0.0.0.0
+address=/dongiln.co/0.0.0.0
 address=/donmago.com/0.0.0.0
 address=/doostansocks.ir/0.0.0.0
 address=/doransky.info/0.0.0.0
@@ -214,22 +217,16 @@ address=/down.ancamera.co.kr/0.0.0.0
 address=/down.gogominer.com/0.0.0.0
 address=/down.haote.com/0.0.0.0
 address=/down.pcclear.com/0.0.0.0
-address=/down.pdflist.cqhbkjzx.com/0.0.0.0
-address=/down.softlist.tcroot.cn/0.0.0.0
 address=/down.startools.co.kr/0.0.0.0
 address=/down.tgjkbx.cn/0.0.0.0
 address=/down.upzxt.com/0.0.0.0
 address=/down.webbora.com/0.0.0.0
 address=/down.xrpdf.com/0.0.0.0
 address=/down1.arpun.com/0.0.0.0
-address=/downcdn.xianshuabao.com/0.0.0.0
 address=/download.1ys.com/0.0.0.0
-address=/download.beveilingsdienst.info/0.0.0.0
 address=/download.doumaibiji.cn/0.0.0.0
 address=/download.kaobeitu.com/0.0.0.0
-address=/download.ktkt.com/0.0.0.0
 address=/download.pdf00.cn/0.0.0.0
-address=/download.rising.com.cn/0.0.0.0
 address=/download.skycn.com/0.0.0.0
 address=/download.ttz3.cn/0.0.0.0
 address=/download.ware.ru/0.0.0.0
@@ -241,11 +238,9 @@ address=/dralpaslan.com/0.0.0.0
 address=/drools-moved.46999.n3.nabble.com/0.0.0.0
 address=/droversmouser.at/0.0.0.0
 address=/druzim.freewww.biz/0.0.0.0
-address=/ds.obmenvsemfiles.com/0.0.0.0
 address=/dtsay.xyz/0.0.0.0
 address=/dudulm.com/0.0.0.0
 address=/dusdn.mireene.com/0.0.0.0
-address=/dw.58wangdun.com/0.0.0.0
 address=/dx.qqyewu.com/0.0.0.0
 address=/dx1.qqtn.com/0.0.0.0
 address=/dx2.qqtn.com/0.0.0.0
@@ -254,7 +249,6 @@ address=/dx60.siweidaoxiang.com/0.0.0.0
 address=/dzinestudio87.co.uk/0.0.0.0
 address=/e.dangeana.com/0.0.0.0
 address=/easydown.workday360.cn/0.0.0.0
-address=/ebook.w3wvg.com/0.0.0.0
 address=/edicolanazionale.it/0.0.0.0
 address=/emadamini.co.za/0.0.0.0
 address=/emir-elbahr.com/0.0.0.0
@@ -265,38 +259,34 @@ address=/er-bulisguvenligi.com/0.0.0.0
 address=/ermekanik.com/0.0.0.0
 address=/esolvent.pl/0.0.0.0
 address=/esteteam.org/0.0.0.0
-address=/evdeyizrahatiz.com/0.0.0.0
 address=/exposvision.com/0.0.0.0
 address=/ezfintechcorp.com/0.0.0.0
 address=/fafhoafouehfuh.su/0.0.0.0
 address=/fairyqueenstore.com/0.0.0.0
-address=/fastsoft.onlinedown.net/0.0.0.0
 address=/fazi.pl/0.0.0.0
+address=/ffv322.ru/0.0.0.0
+address=/ffv32223.ru/0.0.0.0
 address=/fidiag.kymco.com/0.0.0.0
 address=/fifa555easy.329263.com/0.0.0.0
 address=/figuig.net/0.0.0.0
 address=/fileco.jobkorea.co.kr/0.0.0.0
 address=/filen3.utengine.co.kr/0.0.0.0
-address=/filen5.utengine.co.kr/0.0.0.0
-address=/files.fqapps.com/0.0.0.0
 address=/files.rakbot.ru/0.0.0.0
 address=/files6.uludagbilisim.com/0.0.0.0
 address=/fishingbigstore.com/0.0.0.0
 address=/fitmanacademy.com/0.0.0.0
 address=/fkd.derpcity.ru/0.0.0.0
 address=/flex.ru/0.0.0.0
-address=/flood-protection.org/0.0.0.0
 address=/fordlamdong.com.vn/0.0.0.0
 address=/foreverprecious.org/0.0.0.0
 address=/foxfennecs.com/0.0.0.0
 address=/frin.ng/0.0.0.0
 address=/fte.m.dodo52.com/0.0.0.0
-address=/ftpcnc-p2sp.pconline.com.cn/0.0.0.0
 address=/ftpftpftp.com/0.0.0.0
 address=/funletters.net/0.0.0.0
 address=/futuregraphics.com.ar/0.0.0.0
-address=/g.7230.com/0.0.0.0
 address=/g0ogle.free.fr/0.0.0.0
+address=/gainsdirectory.com/0.0.0.0
 address=/galuhtea.com/0.0.0.0
 address=/gamebazaar.club/0.0.0.0
 address=/gamee.top/0.0.0.0
@@ -305,10 +295,9 @@ address=/garenanow4.myvnc.com/0.0.0.0
 address=/gateway-heide.de/0.0.0.0
 address=/gateway.ethlqd.com/0.0.0.0
 address=/genesisconstruction.co.za/0.0.0.0
-address=/genstaff.gov.kg/0.0.0.0
 address=/germistonmiraclecentre.co.za/0.0.0.0
 address=/ghislain.dartois.pagesperso-orange.fr/0.0.0.0
-address=/gimscompany.com/0.0.0.0
+address=/ghwls44.gabia.io/0.0.0.0
 address=/glitzygal.net/0.0.0.0
 address=/globaleuropeans.com/0.0.0.0
 address=/gmassurance.fr/0.0.0.0
@@ -316,14 +305,13 @@ address=/gnimelf.net/0.0.0.0
 address=/go.xsuad.com/0.0.0.0
 address=/google.ghststr.com/0.0.0.0
 address=/govhotel.us/0.0.0.0
-address=/grafchekloder.rebatesrule.net/0.0.0.0
 address=/granportale.com.br/0.0.0.0
+address=/grantoveporadenstvi.eu/0.0.0.0
 address=/gray-takeo-7170.chowder.jp/0.0.0.0
 address=/green100.cn/0.0.0.0
 address=/greenfood.sa.com/0.0.0.0
 address=/gssgroups.com/0.0.0.0
 address=/gundemdekihaber.com/0.0.0.0
-address=/gx-10012947.file.myqcloud.com/0.0.0.0
 address=/habbotips.free.fr/0.0.0.0
 address=/hagebakken.no/0.0.0.0
 address=/haisannhatrang.com.vn/0.0.0.0
@@ -332,12 +320,11 @@ address=/hanaphoto.co.kr/0.0.0.0
 address=/handrush.com/0.0.0.0
 address=/hanoihub.vn/0.0.0.0
 address=/hazel-azure.co.th/0.0.0.0
-address=/hdxa.net/0.0.0.0
 address=/healtina.com/0.0.0.0
 address=/heavenif.co.za/0.0.0.0
 address=/hellomessager.com/0.0.0.0
-address=/hevizapartments.net/0.0.0.0
 address=/hfsoftware.cl/0.0.0.0
+address=/hi-event.vn/0.0.0.0
 address=/hingcheong.hk/0.0.0.0
 address=/hldschool.com/0.0.0.0
 address=/hmbwgroup.com/0.0.0.0
@@ -348,13 +335,13 @@ address=/hotart.co.nz/0.0.0.0
 address=/hotel-le-relais-des-moulins.com/0.0.0.0
 address=/hottestxxxvideo.com/0.0.0.0
 address=/housewifes.co/0.0.0.0
-address=/hseda.com/0.0.0.0
 address=/hsmwebapp.com/0.0.0.0
 address=/htxl.cn/0.0.0.0
 address=/huishuren.nu/0.0.0.0
 address=/hwsrv-675710.hostwindsdns.com/0.0.0.0
 address=/hwsrv-720737.hostwindsdns.com/0.0.0.0
 address=/hyadegari.ir/0.0.0.0
+address=/hyundainamdinh.org/0.0.0.0
 address=/hyvat-olutravintolat.fi/0.0.0.0
 address=/i333.wang/0.0.0.0
 address=/ibda.adv.br/0.0.0.0
@@ -363,13 +350,11 @@ address=/ihpmed.ae/0.0.0.0
 address=/ileolaherbalcare.com.ng/0.0.0.0
 address=/imellda.com/0.0.0.0
 address=/imenizeh.ir/0.0.0.0
+address=/imobiliarianossacasamt.com.br/0.0.0.0
 address=/impression-gobelet.com/0.0.0.0
 address=/in-sect.com/0.0.0.0
 address=/inapadvance.com/0.0.0.0
 address=/incrediblepixels.com/0.0.0.0
-address=/incredicole.com/0.0.0.0
-address=/infogue.id/0.0.0.0
-address=/ini.egkj.com/0.0.0.0
 address=/innovation4crisis.org/0.0.0.0
 address=/instanttechnology.com.au/0.0.0.0
 address=/intelicasa.ro/0.0.0.0
@@ -380,8 +365,8 @@ address=/intoxicated-twilight.com/0.0.0.0
 address=/iran-gold.com/0.0.0.0
 address=/iremart.es/0.0.0.0
 address=/isso.ps/0.0.0.0
-address=/it.shopforever.pk/0.0.0.0
 address=/itd.m.dodo52.com/0.0.0.0
+address=/itohukuk.com/0.0.0.0
 address=/itrigger.cn/0.0.0.0
 address=/itsnixielou.com/0.0.0.0
 address=/ixlonbcc.com/0.0.0.0
@@ -394,6 +379,7 @@ address=/janvierassocies.fr/0.0.0.0
 address=/javatank.ru/0.0.0.0
 address=/jcedu.org/0.0.0.0
 address=/jessymart.flexyhub.com/0.0.0.0
+address=/jim.webengineerteam.com/0.0.0.0
 address=/jjjexx.329263.com/0.0.0.0
 address=/jmtc.91756.cn/0.0.0.0
 address=/jocuri.trophygaming.net/0.0.0.0
@@ -405,11 +391,12 @@ address=/jppost-cde.top/0.0.0.0
 address=/jsd618.com/0.0.0.0
 address=/jsq.m.dodo52.com/0.0.0.0
 address=/jsya.co.kr/0.0.0.0
+address=/jumla.biz/0.0.0.0
 address=/jutvac.com/0.0.0.0
 address=/jvalert.com/0.0.0.0
 address=/jyv.fi/0.0.0.0
-address=/jzny.com.cn/0.0.0.0
-address=/k3.etfiber.net/0.0.0.0
+address=/k.ludong.tv/0.0.0.0
+address=/kabiru.ru/0.0.0.0
 address=/kachsurf.mylftv.com/0.0.0.0
 address=/kamasu11.cafe24.com/0.0.0.0
 address=/kamisecurity.com.my/0.0.0.0
@@ -420,6 +407,7 @@ address=/kassohome.com.tr/0.0.0.0
 address=/kdsp.co.kr/0.0.0.0
 address=/kejpa.com/0.0.0.0
 address=/kenareh-gostare-aras.ir/0.0.0.0
+address=/kgfs3.329263.com/0.0.0.0
 address=/khunnapap.com/0.0.0.0
 address=/kiencuonghotel.vn/0.0.0.0
 address=/kjbm9.mof.gov.cn/0.0.0.0
@@ -432,7 +420,6 @@ address=/kristofferdaniels.com/0.0.0.0
 address=/kupaliskohs.sk/0.0.0.0
 address=/kuznetsov.ca/0.0.0.0
 address=/kwanfromhongkong.com/0.0.0.0
-address=/kwikomfi-lab.com/0.0.0.0
 address=/lagalaxy88easy.329263.com/0.0.0.0
 address=/lameguard.ru/0.0.0.0
 address=/lammaixep.com/0.0.0.0
@@ -445,6 +432,8 @@ address=/ld.mediaget.com/0.0.0.0
 address=/learnbuddy.com/0.0.0.0
 address=/learningcomputing.org/0.0.0.0
 address=/lebedyn.info/0.0.0.0
+address=/lecafedesartistes.com/0.0.0.0
+address=/leukkado.be/0.0.0.0
 address=/lfcsghosi.co.in/0.0.0.0
 address=/lhbfirst.com/0.0.0.0
 address=/libya-info.com/0.0.0.0
@@ -452,6 +441,7 @@ address=/lifeapt.biz/0.0.0.0
 address=/linx.li/0.0.0.0
 address=/lists.ibiblio.org/0.0.0.0
 address=/lists.mplayerhq.hu/0.0.0.0
+address=/lodergord.com/0.0.0.0
 address=/log.yundabao.cn/0.0.0.0
 address=/lsyr.net/0.0.0.0
 address=/lt02.datacomspecialists.net/0.0.0.0
@@ -461,28 +451,27 @@ address=/luckytriumph.com/0.0.0.0
 address=/luisnacht.com.ar/0.0.0.0
 address=/lvr.samacomplus.com/0.0.0.0
 address=/m.0757kd.cn/0.0.0.0
-address=/m93701t2.beget.tech/0.0.0.0
 address=/mackleyn.com/0.0.0.0
 address=/magda.zelentourism.com/0.0.0.0
 address=/magic-living.com/0.0.0.0
 address=/makosoft.hu/0.0.0.0
 address=/malin-akerman.net/0.0.0.0
+address=/mangawt.com/0.0.0.0
 address=/margopassadorestylist.com/0.0.0.0
+address=/mariereiko.com/0.0.0.0
 address=/maringareservas.com.br/0.0.0.0
 address=/marketprice.com.ng/0.0.0.0
 address=/marksidfgs.ug/0.0.0.0
-address=/marocaji.com/0.0.0.0
 address=/matt-e.it/0.0.0.0
 address=/mattayom31.go.th/0.0.0.0
-address=/maynenkhivinhphat.com/0.0.0.0
 address=/mazury4x4.pl/0.0.0.0
 address=/mbgrm.com/0.0.0.0
+address=/mecbox.cn/0.0.0.0
 address=/mediamatkat.fi/0.0.0.0
 address=/medianews.ge/0.0.0.0
 address=/medlinee.com/0.0.0.0
 address=/medreg.uz/0.0.0.0
 address=/meert.org/0.0.0.0
-address=/meeweb.com/0.0.0.0
 address=/meitao886.com/0.0.0.0
 address=/members.chello.nl/0.0.0.0
 address=/members.westnet.com.au/0.0.0.0
@@ -497,6 +486,7 @@ address=/micahproducts.com/0.0.0.0
 address=/micalle.com.au/0.0.0.0
 address=/mirror.mypage.sk/0.0.0.0
 address=/mis.nbcc.ac.th/0.0.0.0
+address=/misskproductions.co.za/0.0.0.0
 address=/misterson.com/0.0.0.0
 address=/mistydeblasiophotography.com/0.0.0.0
 address=/mkk09.kr/0.0.0.0
@@ -509,17 +499,18 @@ address=/moha-group.com/0.0.0.0
 address=/monmariage.info/0.0.0.0
 address=/moscow11.at/0.0.0.0
 address=/mountveederwines.com/0.0.0.0
+address=/movingsolutionsus.com/0.0.0.0
 address=/moyo.co.kr/0.0.0.0
 address=/mperez.com.ar/0.0.0.0
 address=/mrtool.ir/0.0.0.0
 address=/msecurity.ro/0.0.0.0
+address=/mteng.mmj7.com/0.0.0.0
 address=/mtfelektroteknik.com/0.0.0.0
-address=/mudita.vn/0.0.0.0
 address=/mueblesjcp.cl/0.0.0.0
+address=/mutec.jp/0.0.0.0
 address=/mv360.net/0.0.0.0
 address=/mvb.kz/0.0.0.0
 address=/mxpiqw.am.files.1drv.com/0.0.0.0
-address=/mydesign.thinkeraibirds.com/0.0.0.0
 address=/myexpertca.in/0.0.0.0
 address=/myhood.cl/0.0.0.0
 address=/myo.net.au/0.0.0.0
@@ -529,6 +520,7 @@ address=/mytrains.net/0.0.0.0
 address=/mywp.asia/0.0.0.0
 address=/myyttilukukansasta.fi/0.0.0.0
 address=/naildumarche.com/0.0.0.0
+address=/namuvpn.com/0.0.0.0
 address=/narty.laserteam.pl/0.0.0.0
 address=/naturalma.es/0.0.0.0
 address=/naturepack.cc/0.0.0.0
@@ -538,11 +530,13 @@ address=/ndrs.cloud/0.0.0.0
 address=/nebraskacharters.com.au/0.0.0.0
 address=/neocity1.free.fr/0.0.0.0
 address=/nerve.untergrund.net/0.0.0.0
+address=/news.abfakerman.ir/0.0.0.0
 address=/news.omumusic.net/0.0.0.0
 address=/newsun-shop.com/0.0.0.0
 address=/newxing.com/0.0.0.0
+address=/nexity.me/0.0.0.0
 address=/nfbio.com/0.0.0.0
-address=/ngoaingu.garage.com.vn/0.0.0.0
+address=/nkdhub.com/0.0.0.0
 address=/nofound.000webhostapp.com/0.0.0.0
 address=/norperuinge.com.pe/0.0.0.0
 address=/nprg.ru/0.0.0.0
@@ -552,12 +546,14 @@ address=/oa.fnysw.com/0.0.0.0
 address=/oa.hys.cn/0.0.0.0
 address=/obnova.zzux.com/0.0.0.0
 address=/obseques-conseils.com/0.0.0.0
+address=/ohe.ie/0.0.0.0
 address=/oknoplastik.sk/0.0.0.0
 address=/omega.az/0.0.0.0
+address=/omitkyspisar.cz/0.0.0.0
 address=/omsk-osma.ru/0.0.0.0
 address=/omuzgor.tj/0.0.0.0
 address=/onestin.ro/0.0.0.0
-address=/openclient.sroinfo.com/0.0.0.0
+address=/onlyart.in/0.0.0.0
 address=/operasanpiox.bravepages.com/0.0.0.0
 address=/ophtalmiccenter.com/0.0.0.0
 address=/opolis.io/0.0.0.0
@@ -576,8 +572,8 @@ address=/p500.mon-application.com/0.0.0.0
 address=/pack301.bravepages.com/0.0.0.0
 address=/pakdesighee.com/0.0.0.0
 address=/palochusvet.szm.com/0.0.0.0
-address=/paperbrick.peachtest.com/0.0.0.0
 address=/partyflix.net/0.0.0.0
+address=/pat4.jetos.com/0.0.0.0
 address=/pat4.qpoe.com/0.0.0.0
 address=/patch2.51lg.com/0.0.0.0
 address=/patch2.99ddd.com/0.0.0.0
@@ -586,8 +582,8 @@ address=/patrickchan-hk.net/0.0.0.0
 address=/pawel-sikora.pl/0.0.0.0
 address=/pcginsure.com/0.0.0.0
 address=/pcsoori.com/0.0.0.0
-address=/peachtest.com/0.0.0.0
 address=/pedidoslalacteo.com.ar/0.0.0.0
+address=/peterssandmay.com/0.0.0.0
 address=/petromltd.com/0.0.0.0
 address=/ph4s.ru/0.0.0.0
 address=/phamchilong.com/0.0.0.0
@@ -597,15 +593,19 @@ address=/piapendet.com/0.0.0.0
 address=/pink99.com/0.0.0.0
 address=/pocketfsa.com/0.0.0.0
 address=/podiatristlansdale.com/0.0.0.0
+address=/pokids.vn/0.0.0.0
 address=/ponto50.com.br/0.0.0.0
 address=/poolbook.ir/0.0.0.0
 address=/portal.nfbpc.org/0.0.0.0
 address=/ppl.ac.id/0.0.0.0
+address=/prepaenunsoloexamen.academiagalileoac.com/0.0.0.0
+address=/primaart.vn/0.0.0.0
 address=/probost.cz/0.0.0.0
 address=/prosoc.nl/0.0.0.0
 address=/prowin.co.th/0.0.0.0
 address=/pujashoppe.in/0.0.0.0
 address=/purelondonhyg.com/0.0.0.0
+address=/purewood.in/0.0.0.0
 address=/qchms.qcpro.vn/0.0.0.0
 address=/qfjys.com.img.800cdn.com/0.0.0.0
 address=/qmsled.com/0.0.0.0
@@ -634,13 +634,13 @@ address=/rkverify.securestudies.com/0.0.0.0
 address=/robertmcardle.com/0.0.0.0
 address=/robotrade.com.vn/0.0.0.0
 address=/rollscar.pk/0.0.0.0
+address=/rosdal.abouttobeawesome.com/0.0.0.0
 address=/rossogato.com/0.0.0.0
+address=/royalplusmobile.ir/0.0.0.0
 address=/ruisgood.ru/0.0.0.0
 address=/rusch.nu/0.0.0.0
 address=/s.51shijuan.com/0.0.0.0
 address=/s.kk30.com/0.0.0.0
-address=/s14b.91danji.com/0.0.0.0
-address=/s14b.groundyun.cn/0.0.0.0
 address=/sabiupd.compress.to/0.0.0.0
 address=/saboorjaam.ir/0.0.0.0
 address=/sabupda.vizvaz.com/0.0.0.0
@@ -667,14 +667,14 @@ address=/sgm.pc6.com/0.0.0.0
 address=/shacked.webdepot.co.il/0.0.0.0
 address=/shahtoba.faqserv.com/0.0.0.0
 address=/shaoxiaofei.cn/0.0.0.0
-address=/share.dmca.gripe/0.0.0.0
 address=/sharjahas.com/0.0.0.0
-address=/shembefoundation.com/0.0.0.0
 address=/shy-obi-0122.jellybean.jp/0.0.0.0
+address=/simlun.com.ar/0.0.0.0
 address=/simpl.pw/0.0.0.0
 address=/sinastorage.cn/0.0.0.0
 address=/sindicato1ucm.cl/0.0.0.0
 address=/sinerjias.com.tr/0.0.0.0
+address=/siriyun.top/0.0.0.0
 address=/sistemagema.com.ar/0.0.0.0
 address=/skyscan.com/0.0.0.0
 address=/slmconduct.dk/0.0.0.0
@@ -685,7 +685,6 @@ address=/snapit.solutions/0.0.0.0
 address=/sncshyamavan.org/0.0.0.0
 address=/snp2m.poliupg.ac.id/0.0.0.0
 address=/social.scottsimard.com/0.0.0.0
-address=/socialhelp.ir/0.0.0.0
 address=/sodmalwa.pl/0.0.0.0
 address=/softdown.55.la/0.0.0.0
 address=/somudigital.in/0.0.0.0
@@ -708,13 +707,12 @@ address=/standardalloysindia.com/0.0.0.0
 address=/starbeatdance.com/0.0.0.0
 address=/starcountry.net/0.0.0.0
 address=/static.ilclock.com/0.0.0.0
-address=/static.topxgun.com/0.0.0.0
 address=/stecit.nl/0.0.0.0
 address=/stevewalker.com.au/0.0.0.0
 address=/story-maker.jp/0.0.0.0
+address=/stubbackup.ru/0.0.0.0
 address=/suaritmafirmalari.com/0.0.0.0
 address=/support.clz.kr/0.0.0.0
-address=/sv.pvroe.com/0.0.0.0
 address=/svkacademy.com/0.0.0.0
 address=/svn.cc.jyu.fi/0.0.0.0
 address=/sweaty.dk/0.0.0.0
@@ -730,15 +728,13 @@ address=/tcy.198424.com/0.0.0.0
 address=/teamtnt.red/0.0.0.0
 address=/teardrop-productions.ro/0.0.0.0
 address=/technoites.com/0.0.0.0
+address=/tecnobella.cl/0.0.0.0
 address=/tehrenberg.com/0.0.0.0
 address=/telescopelms.com/0.0.0.0
 address=/telsiai.info/0.0.0.0
-address=/tepatitlan.gob.mx/0.0.0.0
 address=/test.iyibakkendine.com/0.0.0.0
-address=/test.presta-com.ru/0.0.0.0
 address=/testdatabaseforcepoint.com/0.0.0.0
 address=/thaibbqculver.com/0.0.0.0
-address=/thaisell.com/0.0.0.0
 address=/tharringtonsponsorship.com/0.0.0.0
 address=/thc-annex.com/0.0.0.0
 address=/theclinicabarros.com/0.0.0.0
@@ -747,7 +743,6 @@ address=/theprestige.ro/0.0.0.0
 address=/theptiendat.com/0.0.0.0
 address=/thepyramids.nl/0.0.0.0
 address=/therecruiter.io/0.0.0.0
-address=/thornadops.com/0.0.0.0
 address=/thosewebbs.com/0.0.0.0
 address=/thuong.bidiworks.com/0.0.0.0
 address=/tianangdep.com/0.0.0.0
@@ -766,7 +761,6 @@ address=/tsredco.telangana.gov.in/0.0.0.0
 address=/tulli.info/0.0.0.0
 address=/tumso.org/0.0.0.0
 address=/tuneup.ibk.me/0.0.0.0
-address=/tup.com.cn/0.0.0.0
 address=/tutuler.com/0.0.0.0
 address=/uc-56.ru/0.0.0.0
 address=/ufabet168168.329263.com/0.0.0.0
@@ -776,14 +770,11 @@ address=/ultimatepointsstore.com/0.0.0.0
 address=/ulusalofis.com/0.0.0.0
 address=/undantagforlag.se/0.0.0.0
 address=/unicorpbrunei.com/0.0.0.0
-address=/unilevercopabr.mbiz20.net/0.0.0.0
 address=/uniquehall.net/0.0.0.0
 address=/unitenrk.com/0.0.0.0
 address=/unokaoeojoejfghr.ru/0.0.0.0
 address=/upd.m.dodo52.com/0.0.0.0
 address=/update.iwang8.com/0.0.0.0
-address=/update.my.99.com/0.0.0.0
-address=/updateflashiplayer.xyz/0.0.0.0
 address=/urgentmessage.org/0.0.0.0
 address=/usd-gold.com/0.0.0.0
 address=/users.skynet.be/0.0.0.0
@@ -802,9 +793,11 @@ address=/vietducbio.com/0.0.0.0
 address=/vigilar.com.br/0.0.0.0
 address=/vip.recommendedtoyoo.com/0.0.0.0
 address=/virustreatments.empeeevents.com/0.0.0.0
-address=/visualdata.ru/0.0.0.0
+address=/visagepk.com/0.0.0.0
+address=/vitinhvnt.com/0.0.0.0
 address=/vitromed.ro/0.0.0.0
 address=/vjhascv.ru/0.0.0.0
+address=/voyageur.sisnettdesign.com/0.0.0.0
 address=/vrrumover0.vrrum0.farted.net/0.0.0.0
 address=/vvff.in/0.0.0.0
 address=/w.zhzy999.net/0.0.0.0
@@ -814,6 +807,7 @@ address=/ware.ru/0.0.0.0
 address=/warriorllc.com/0.0.0.0
 address=/wbd.5636.com/0.0.0.0
 address=/wbkmt.com/0.0.0.0
+address=/webarte.com.br/0.0.0.0
 address=/webq.wikaba.com/0.0.0.0
 address=/webserverthai.com/0.0.0.0
 address=/webservice99.com/0.0.0.0
@@ -821,7 +815,6 @@ address=/websound.ru/0.0.0.0
 address=/welcometothefuture.com/0.0.0.0
 address=/whgaty.com/0.0.0.0
 address=/wiebe-sanitaer.de/0.0.0.0
-address=/wishngifts.com/0.0.0.0
 address=/wmd9e.a3i1vvv.feteboc.com/0.0.0.0
 address=/wnksupply.co.th/0.0.0.0
 address=/wood-expert.net/0.0.0.0
@@ -836,17 +829,15 @@ address=/wt9.siweidaoxiang.com/0.0.0.0
 address=/www2.recepty5.com/0.0.0.0
 address=/x2vn.com/0.0.0.0
 address=/xia.vzboot.com/0.0.0.0
-address=/xiaidown.com/0.0.0.0
 address=/xiaoma-10021647.file.myqcloud.com/0.0.0.0
 address=/xinwenwang123.cn/0.0.0.0
 address=/xirfad.com/0.0.0.0
-address=/xn--20gb-hediyefrsati-nvc.com/0.0.0.0
 address=/xtremeforumz.com/0.0.0.0
 address=/xxwl.kuaiyunds.com/0.0.0.0
-address=/xxxze.co.nu/0.0.0.0
 address=/yeez.net/0.0.0.0
 address=/yesky.51down.org.cn/0.0.0.0
 address=/yesky.xzstatic.com/0.0.0.0
+address=/yiyangjz.cn/0.0.0.0
 address=/yuluobo.com/0.0.0.0
 address=/yun-1.lenku.cn/0.0.0.0
 address=/yuyu02004-10043918.file.myqcloud.com/0.0.0.0
@@ -862,8 +853,10 @@ address=/zentealounge.com.au/0.0.0.0
 address=/zeytinyagisabun.com/0.0.0.0
 address=/zhetysu360.kz/0.0.0.0
 address=/zhzy999.net/0.0.0.0
+address=/ziliao.yunkaodian.com/0.0.0.0
 address=/zj.9553.com/0.0.0.0
 address=/zmmore.com/0.0.0.0
 address=/zoetermeerov.nl/0.0.0.0
 address=/zoeydeutchweb.com/0.0.0.0
 address=/zonefound.com.cn/0.0.0.0
+address=/zsinstrument.com/0.0.0.0
diff --git a/urlhaus-filter-dnsmasq.conf b/urlhaus-filter-dnsmasq.conf
index 6312219c..94d069f4 100644
--- a/urlhaus-filter-dnsmasq.conf
+++ b/urlhaus-filter-dnsmasq.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains dnsmasq Blocklist
-# Updated: Thu, 07 May 2020 12:09:37 UTC
+# Updated: Fri, 08 May 2020 00:09:41 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -1598,6 +1598,7 @@ address=/aastudios.co.in/0.0.0.0
 address=/aaswim.co.za/0.0.0.0
 address=/aatlantictreeservices.com/0.0.0.0
 address=/aavasolution.com/0.0.0.0
+address=/aaversalrelo.com/0.0.0.0
 address=/aavip.cn/0.0.0.0
 address=/aavra.com.ar/0.0.0.0
 address=/aawajmedia.com/0.0.0.0
@@ -3859,6 +3860,7 @@ address=/allenhenson.com/0.0.0.0
 address=/allenmarks.se/0.0.0.0
 address=/allens.youcheckit.ca/0.0.0.0
 address=/allenservice.ga/0.0.0.0
+address=/allexampdf.com/0.0.0.0
 address=/allexcursion.com/0.0.0.0
 address=/allexpressstores.com/0.0.0.0
 address=/alleyesonus.pt/0.0.0.0
@@ -4612,6 +4614,7 @@ address=/analisesfarma.com.br/0.0.0.0
 address=/analisiclinichecatania.it/0.0.0.0
 address=/analiskimia.undiksha.ac.id/0.0.0.0
 address=/analistarastirma.com/0.0.0.0
+address=/analistaspadel.com/0.0.0.0
 address=/analizator.online/0.0.0.0
 address=/analytics.theminersunion.com/0.0.0.0
 address=/analyze-it.co.za/0.0.0.0
@@ -5550,6 +5553,7 @@ address=/arabaresmi.com/0.0.0.0
 address=/arabcb.org/0.0.0.0
 address=/arabcoegypt.com/0.0.0.0
 address=/arabdubaisafari.com/0.0.0.0
+address=/arabenergyclub.org/0.0.0.0
 address=/arabianbrother.com/0.0.0.0
 address=/arabiantongue.net/0.0.0.0
 address=/arabiantravelhouse.com/0.0.0.0
@@ -11772,6 +11776,7 @@ address=/bushari.com/0.0.0.0
 address=/bushmansafaris.co.zw/0.0.0.0
 address=/bushnell.by/0.0.0.0
 address=/business-blueprint.top-startups.com/0.0.0.0
+address=/business-expert.md/0.0.0.0
 address=/business-insight.aptoilab.com/0.0.0.0
 address=/business-solution-ltd.org/0.0.0.0
 address=/business.bityaris.com/0.0.0.0
@@ -14430,6 +14435,7 @@ address=/cjb-law.com/0.0.0.0
 address=/cjcmail-oln040092069015.outbound.protection.sketchwefair-watduoliprudential.com.watchdogdns.duckdns.org/0.0.0.0
 address=/cjcurrent.com/0.0.0.0
 address=/cjd.com.br/0.0.0.0
+address=/cjemskayyoor.com/0.0.0.0
 address=/cjextm.ro/0.0.0.0
 address=/cjj.lanibio.net/0.0.0.0
 address=/cjllcmonthlysub.ga/0.0.0.0
@@ -15974,6 +15980,7 @@ address=/cosi-ilmercatodeisapori.com/0.0.0.0
 address=/coskunkuyumculuk.com/0.0.0.0
 address=/cosmatos.org/0.0.0.0
 address=/cosme.kyawaiiiii.com/0.0.0.0
+address=/cosmea.pl/0.0.0.0
 address=/cosmeis.com/0.0.0.0
 address=/cosmeliti.com/0.0.0.0
 address=/cosmet-log.com/0.0.0.0
@@ -17961,6 +17968,7 @@ address=/deguia.net/0.0.0.0
 address=/degustibeer.it/0.0.0.0
 address=/deheld100.nl/0.0.0.0
 address=/dehkadeh-tameshk.ir/0.0.0.0
+address=/dehkadenovin.com/0.0.0.0
 address=/dehlie.dk/0.0.0.0
 address=/dehneshin.com/0.0.0.0
 address=/dehydrated.sk/0.0.0.0
@@ -18728,6 +18736,7 @@ address=/dev.mountainwatch.com/0.0.0.0
 address=/dev.networkscy.com/0.0.0.0
 address=/dev.nextg.io/0.0.0.0
 address=/dev.nida.ac.th/0.0.0.0
+address=/dev.nona-polska.pl/0.0.0.0
 address=/dev.novembit.com/0.0.0.0
 address=/dev.optitek.com/0.0.0.0
 address=/dev.pacificsymposium.org/0.0.0.0
@@ -20879,6 +20888,7 @@ address=/drzimin.com/0.0.0.0
 address=/ds-al.er42.org/0.0.0.0
 address=/ds-cocoa.com/0.0.0.0
 address=/ds-stoneroots.com/0.0.0.0
+address=/ds.nashobmenfiles.com/0.0.0.0
 address=/ds.obmenvsemfiles.com/0.0.0.0
 address=/ds.veedence.co.uk/0.0.0.0
 address=/ds04.projectstatus.co.uk/0.0.0.0
@@ -24211,6 +24221,7 @@ address=/f0267229.xsph.ru/0.0.0.0
 address=/f0269025.xsph.ru/0.0.0.0
 address=/f0316439.xsph.ru/0.0.0.0
 address=/f0384177.xsph.ru/0.0.0.0
+address=/f0434589.xsph.ru/0.0.0.0
 address=/f0hc7osjnl2vi61g.com/0.0.0.0
 address=/f0jgqwejaisdqjwnqwe.com/0.0.0.0
 address=/f12.file-upload.com/0.0.0.0
@@ -27083,6 +27094,7 @@ address=/gamee.top/0.0.0.0
 address=/gameforte.com/0.0.0.0
 address=/gamehack.chat.ru/0.0.0.0
 address=/gamelaboratory.ru/0.0.0.0
+address=/gamelounge.club/0.0.0.0
 address=/gamemechanics.com/0.0.0.0
 address=/gameonline.web.id/0.0.0.0
 address=/gameonline11.com/0.0.0.0
@@ -28703,6 +28715,7 @@ address=/gorontula.com/0.0.0.0
 address=/goroute3.com/0.0.0.0
 address=/goruklecilingirci.com/0.0.0.0
 address=/goruklefitness.com/0.0.0.0
+address=/goschiele.com/0.0.0.0
 address=/goshhh.com/0.0.0.0
 address=/goshowcar.com/0.0.0.0
 address=/gosiltechono.co/0.0.0.0
@@ -28913,6 +28926,7 @@ address=/granpri.info/0.0.0.0
 address=/grant-massage.ru/0.0.0.0
 address=/granthawkinsdesign.com/0.0.0.0
 address=/grantkulinar.ru/0.0.0.0
+address=/grantoveporadenstvi.eu/0.0.0.0
 address=/grantpromotion.icu/0.0.0.0
 address=/grantwritersresource.com/0.0.0.0
 address=/granube.us-east-1.elasticbeanstalk.com/0.0.0.0
@@ -30823,6 +30837,7 @@ address=/hho3.com/0.0.0.0
 address=/hhold.ru/0.0.0.0
 address=/hhoorn.nl/0.0.0.0
 address=/hhristov.net/0.0.0.0
+address=/hi-event.vn/0.0.0.0
 address=/hi-fam.com/0.0.0.0
 address=/hi-shop.ml/0.0.0.0
 address=/hialeahprivateinvestigators.com/0.0.0.0
@@ -31180,6 +31195,7 @@ address=/hobi-sport.ch/0.0.0.0
 address=/hobi.de/0.0.0.0
 address=/hobimsiseyler.com/0.0.0.0
 address=/hobokendoulas.com/0.0.0.0
+address=/hobsnchimney.in/0.0.0.0
 address=/hobus.zema-sul.com/0.0.0.0
 address=/hocalarlaofis.com/0.0.0.0
 address=/hocdelamgi.000webhostapp.com/0.0.0.0
@@ -32169,6 +32185,7 @@ address=/hyundai-autoalbania.com.al/0.0.0.0
 address=/hyundai-danang.com.vn/0.0.0.0
 address=/hyundai-services.ir/0.0.0.0
 address=/hyundailongbien.hanoi.vn/0.0.0.0
+address=/hyundainamdinh.org/0.0.0.0
 address=/hyunmee.se/0.0.0.0
 address=/hyunmoon.nfile.net/0.0.0.0
 address=/hyvat-olutravintolat.fi/0.0.0.0
@@ -41367,6 +41384,7 @@ address=/luzevida.com.br/0.0.0.0
 address=/luzfloral.com/0.0.0.0
 address=/luzy.vn/0.0.0.0
 address=/lvajnczdy.cf/0.0.0.0
+address=/lvecarehomes.com/0.0.0.0
 address=/lvita.co/0.0.0.0
 address=/lvksdy.cf/0.0.0.0
 address=/lvr.samacomplus.com/0.0.0.0
@@ -42942,6 +42960,7 @@ address=/marie-oms-psychologue.fr/0.0.0.0
 address=/marienthal.info/0.0.0.0
 address=/marientumba.com/0.0.0.0
 address=/mariepeters.com/0.0.0.0
+address=/mariereiko.com/0.0.0.0
 address=/mariesshopoutfit.com/0.0.0.0
 address=/marieva.pro/0.0.0.0
 address=/marijuana420site.com/0.0.0.0
@@ -45938,6 +45957,7 @@ address=/movin.cloud/0.0.0.0
 address=/moving-dubai.com/0.0.0.0
 address=/movingimagesmultimedia.com/0.0.0.0
 address=/movingmountainsfoods.com/0.0.0.0
+address=/movingsolutionsus.com/0.0.0.0
 address=/mowbaza.chat.ru/0.0.0.0
 address=/mowdsdflogin.usa.cc/0.0.0.0
 address=/mowwierzbica.lh.pl/0.0.0.0
@@ -49935,6 +49955,7 @@ address=/onlinewp.it/0.0.0.0
 address=/onlineyogaplatform.com/0.0.0.0
 address=/onlink-aoiuvr.com/0.0.0.0
 address=/onlyapteka.ru/0.0.0.0
+address=/onlyart.in/0.0.0.0
 address=/onlycane.in/0.0.0.0
 address=/onlychild.org/0.0.0.0
 address=/onlycocktaildresses.com/0.0.0.0
@@ -50653,6 +50674,7 @@ address=/p12.zdusercontent.com/0.0.0.0
 address=/p2.jugalvyas.com/0.0.0.0
 address=/p2.lingpao8.com/0.0.0.0
 address=/p23tv.studio/0.0.0.0
+address=/p2b.in/0.0.0.0
 address=/p2btechnologies.com/0.0.0.0
 address=/p2piptv.net/0.0.0.0
 address=/p2pmedia.org/0.0.0.0
@@ -53396,6 +53418,7 @@ address=/prihlaska.sagitta.cz/0.0.0.0
 address=/priintzone.com/0.0.0.0
 address=/prijzen-dakkapel.nl/0.0.0.0
 address=/prim.sydneyrobbins.net/0.0.0.0
+address=/primaart.vn/0.0.0.0
 address=/primagamahomeschool.com/0.0.0.0
 address=/primainnaparthotel.com/0.0.0.0
 address=/primakaryasteel.com/0.0.0.0
@@ -54232,6 +54255,7 @@ address=/purepropertiesobx.com/0.0.0.0
 address=/pureprotea.com/0.0.0.0
 address=/purerls.com/0.0.0.0
 address=/pureslimketoreviews.club/0.0.0.0
+address=/purewood.in/0.0.0.0
 address=/purgers-eventmanagement.de/0.0.0.0
 address=/puri-puri.sg/0.0.0.0
 address=/purifiq.co.za/0.0.0.0
@@ -60976,6 +61000,7 @@ address=/skiddump.cf/0.0.0.0
 address=/skiddump.ga/0.0.0.0
 address=/skiddump.ru/0.0.0.0
 address=/skidurham.com/0.0.0.0
+address=/skidware-malwrhunterteams.com/0.0.0.0
 address=/skiffinsconsuming.co.kr/0.0.0.0
 address=/skiinspa.com/0.0.0.0
 address=/skilancein.000webhostapp.com/0.0.0.0
@@ -61968,6 +61993,7 @@ address=/sooqxrpm.yjdata.me/0.0.0.0
 address=/sophiacarta.de/0.0.0.0
 address=/sophiacollegemumbai.com/0.0.0.0
 address=/sophiahotel.vn/0.0.0.0
+address=/sophiasbridalandtux.com/0.0.0.0
 address=/sophiaskyhotel.vn/0.0.0.0
 address=/sophiasuites-santorini.com/0.0.0.0
 address=/sophiebarthelemy.fr/0.0.0.0
@@ -69599,6 +69625,7 @@ address=/update.com.br/0.0.0.0
 address=/update.covid-19.casa/0.0.0.0
 address=/update.gk-mtm.ru/0.0.0.0
 address=/update.hoiucvl.com/0.0.0.0
+address=/update.id/0.0.0.0
 address=/update.igra123.com/0.0.0.0
 address=/update.iwang8.com/0.0.0.0
 address=/update.jirisancapital.com/0.0.0.0
@@ -70063,6 +70090,7 @@ address=/vaguevague.com/0.0.0.0
 address=/vahan24.in/0.0.0.0
 address=/vaheracouncil.com/0.0.0.0
 address=/vahokad.sk/0.0.0.0
+address=/vaico.co/0.0.0.0
 address=/vaigacafe.com/0.0.0.0
 address=/vaileather.com/0.0.0.0
 address=/vaillantteknikservisibursa.com/0.0.0.0
@@ -70917,6 +70945,7 @@ address=/vinalpapel.com/0.0.0.0
 address=/vinarycard.com/0.0.0.0
 address=/vinaschool.com.vn/0.0.0.0
 address=/vinastone.com/0.0.0.0
+address=/vinastory.vn/0.0.0.0
 address=/vinatuoi.com/0.0.0.0
 address=/vinay29.000webhostapp.com/0.0.0.0
 address=/vinaykhatri.in/0.0.0.0
diff --git a/urlhaus-filter-domains-online.txt b/urlhaus-filter-domains-online.txt
index 982ab2ff..fa78985d 100644
--- a/urlhaus-filter-domains-online.txt
+++ b/urlhaus-filter-domains-online.txt
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Online Malicious Domains Blocklist
-# Updated: Thu, 07 May 2020 12:09:37 UTC
+# Updated: Fri, 08 May 2020 00:09:41 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -10,22 +10,26 @@
 1.246.222.123
 1.246.222.134
 1.246.222.138
+1.246.222.14
 1.246.222.153
 1.246.222.165
 1.246.222.174
 1.246.222.20
 1.246.222.228
+1.246.222.232
 1.246.222.234
 1.246.222.237
 1.246.222.245
 1.246.222.36
 1.246.222.38
+1.246.222.4
 1.246.222.41
 1.246.222.43
 1.246.222.44
 1.246.222.49
 1.246.222.63
 1.246.222.69
+1.246.222.80
 1.246.222.83
 1.246.222.87
 1.246.222.98
@@ -45,10 +49,12 @@
 1.246.223.35
 1.246.223.39
 1.246.223.44
+1.246.223.52
 1.246.223.54
 1.246.223.55
 1.246.223.58
 1.246.223.6
+1.246.223.60
 1.246.223.61
 1.246.223.64
 1.246.223.71
@@ -68,8 +74,8 @@
 102.141.240.139
 102.141.241.14
 102.182.126.91
-103.138.73.125
 103.139.219.9
+103.16.145.25
 103.204.168.34
 103.212.225.238
 103.214.6.199
@@ -77,13 +83,15 @@
 103.230.62.146
 103.237.173.218
 103.240.249.121
+103.247.217.147
 103.254.205.135
 103.255.235.219
 103.31.47.214
 103.4.117.26
+103.42.252.130
 103.47.57.204
 103.49.56.38
-103.50.7.19
+103.50.4.235
 103.51.249.64
 103.60.110.111
 103.76.20.197
@@ -99,7 +107,6 @@
 104.168.198.194
 104.168.96.168
 104.175.99.243
-104.192.108.19
 104.33.52.85
 106.104.115.213
 106.105.197.111
@@ -119,17 +126,19 @@
 108.237.60.93
 108.77.246.129
 109.104.197.153
+109.107.249.137
 109.185.130.131
 109.185.173.21
 109.185.229.159
 109.185.26.178
 109.233.196.232
-109.248.58.238
 109.86.168.132
 109.86.85.253
 109.88.185.119
+109.95.15.210
 109.95.200.102
 109.96.57.246
+110.138.229.8
 110.154.1.149
 110.156.65.88
 110.179.30.218
@@ -141,6 +150,7 @@
 110.35.239.25
 110.49.109.152
 110.49.109.156
+110.74.209.190
 111.185.227.170
 111.185.231.198
 111.185.235.13
@@ -158,7 +168,9 @@
 111.38.27.80
 111.38.30.47
 111.38.9.115
+111.43.223.155
 111.61.52.53
+111.90.187.162
 111.93.169.90
 112.123.109.196
 112.123.61.56
@@ -177,11 +189,9 @@
 112.17.78.163
 112.17.80.187
 112.17.94.217
-112.170.165.71
 112.170.205.16
 112.170.205.85
 112.170.23.21
-112.184.221.213
 112.184.231.90
 112.185.140.99
 112.187.143.180
@@ -198,15 +208,17 @@
 112.27.91.241
 112.27.91.247
 112.28.98.61
+112.28.98.69
 112.28.98.70
 112.78.45.158
 113.102.207.149
 113.103.57.113
 113.11.95.254
-113.219.81.166
+113.133.224.99
 113.221.50.64
 113.240.186.132
 113.254.169.251
+113.53.52.8
 113.98.242.211
 114.168.158.117
 114.226.139.37
@@ -222,40 +234,30 @@
 114.234.162.101
 114.234.69.205
 114.235.153.32
+114.235.197.18
 114.235.202.95
 114.235.208.243
 114.235.246.18
 114.239.112.118
+114.239.39.47
 114.239.46.132
+114.239.75.243
 114.239.80.42
+114.32.246.196
 114.79.172.42
-115.216.208.162
+115.197.192.193
 115.224.68.109
 115.229.250.129
 115.50.0.131
-115.50.20.92
 115.52.163.73
 115.54.183.113
 115.55.205.188
+115.56.161.84
 115.63.186.148
 115.77.186.182
 115.85.65.211
 116.100.249.121
 116.103.218.57
-116.114.95.100
-116.114.95.164
-116.114.95.168
-116.114.95.176
-116.114.95.194
-116.114.95.198
-116.114.95.204
-116.114.95.210
-116.114.95.230
-116.114.95.44
-116.114.95.68
-116.114.95.7
-116.114.95.92
-116.149.240.73
 116.177.178.206
 116.177.179.202
 116.206.164.46
@@ -293,7 +295,6 @@
 119.201.68.12
 119.203.9.192
 119.206.188.150
-119.206.2.248
 119.212.101.8
 119.77.165.204
 12.171.247.123
@@ -309,7 +310,7 @@
 120.209.99.118
 120.209.99.122
 120.209.99.201
-120.212.211.71
+120.29.81.99
 120.52.120.11
 120.52.33.2
 120.71.104.6
@@ -320,21 +321,19 @@
 121.148.122.219
 121.148.72.160
 121.150.77.164
-121.154.107.249
 121.154.43.105
 121.155.233.13
 121.155.233.159
 121.159.208.28
 121.159.77.97
+121.162.174.59
 121.163.48.30
 121.165.140.117
 121.168.227.85
 121.169.121.246
 121.176.31.174
 121.177.37.127
-121.178.96.50
 121.179.232.246
-121.180.181.177
 121.184.131.249
 121.186.105.200
 121.186.74.53
@@ -347,17 +346,19 @@
 121.233.127.156
 121.233.68.89
 121.86.113.254
+122.116.211.220
 122.160.111.68
+122.160.60.236
 122.173.244.25
 122.176.72.49
 123.0.198.186
 123.0.209.88
-123.10.229.141
 123.10.50.209
-123.11.11.18
+123.10.62.26
+123.10.84.18
 123.11.14.137
+123.11.14.199
 123.113.102.36
-123.12.243.99
 123.13.7.143
 123.194.235.37
 123.194.60.105
@@ -377,6 +378,7 @@
 125.136.94.85
 125.137.120.38
 125.18.28.170
+125.209.71.6
 125.25.89.230
 125.26.165.244
 125.45.79.20
@@ -398,7 +400,6 @@
 14.41.57.152
 14.45.167.58
 14.46.209.82
-14.46.51.53
 14.48.245.16
 14.49.212.151
 14.53.20.41
@@ -410,16 +411,16 @@
 142.11.194.209
 142.11.195.135
 142.11.206.45
+142.11.222.172
 142.169.129.243
 142.44.211.179
 144.132.166.70
 144.136.155.166
+144.202.97.69
 144.217.117.146
-145.255.26.115
 146.71.79.230
 147.91.212.250
 149.56.79.215
-149.56.84.15
 150.co.il
 151.232.56.134
 151.236.38.234
@@ -429,12 +430,9 @@
 159.224.23.120
 159.224.74.112
 162.194.28.60
-162.212.113.29
 162.212.113.70
 162.212.114.57
-162.212.115.107
 162.212.115.189
-162.212.115.219
 162.212.115.49
 162.250.126.186
 163.13.182.105
@@ -449,6 +447,7 @@
 171.248.114.46
 172.84.255.201
 172.90.37.142
+173.15.162.146
 173.160.86.173
 173.161.208.193
 173.168.197.166
@@ -462,7 +461,7 @@
 174.128.226.101
 174.2.176.60
 174.48.14.129
-175.10.145.138
+175.199.142.182
 175.200.153.48
 175.202.162.120
 175.208.203.123
@@ -470,16 +469,16 @@
 175.211.16.150
 175.212.31.241
 175.212.52.9
+175.212.95.112
 175.213.134.89
+175.215.116.123
 175.215.226.31
 176.108.58.123
 176.113.161.101
 176.113.161.104
 176.113.161.111
 176.113.161.113
-176.113.161.116
 176.113.161.120
-176.113.161.121
 176.113.161.128
 176.113.161.129
 176.113.161.138
@@ -489,10 +488,12 @@
 176.113.161.47
 176.113.161.51
 176.113.161.52
+176.113.161.53
 176.113.161.57
 176.113.161.59
 176.113.161.64
 176.113.161.66
+176.113.161.67
 176.113.161.68
 176.113.161.72
 176.113.161.76
@@ -501,6 +502,7 @@
 176.12.117.70
 176.14.234.5
 176.214.78.192
+177.11.92.78
 177.128.126.70
 177.137.107.131
 177.152.139.214
@@ -518,7 +520,6 @@
 178.134.248.74
 178.134.61.94
 178.136.195.90
-178.151.143.2
 178.165.122.141
 178.212.53.57
 178.212.54.200
@@ -548,11 +549,13 @@
 180.116.224.151
 180.116.224.91
 180.116.96.229
+180.117.195.21
 180.117.89.28
 180.117.91.251
 180.118.100.106
 180.120.12.85
 180.123.219.198
+180.123.36.177
 180.123.59.159
 180.123.85.31
 180.124.126.74
@@ -560,19 +563,16 @@
 180.124.214.4
 180.124.235.240
 180.124.6.47
-180.125.240.53
-180.125.249.46
 180.176.105.41
 180.176.110.243
 180.176.211.171
 180.177.104.65
 180.177.242.73
-180.189.104.106
 180.218.105.80
 180.218.161.128
+180.248.80.38
 180.43.82.186
 180.64.214.48
-180.92.226.47
 181.111.163.169
 181.111.233.18
 181.112.138.154
@@ -585,6 +585,7 @@
 181.143.60.163
 181.143.70.194
 181.164.69.233
+181.177.141.168
 181.193.107.10
 181.196.144.130
 181.197.17.97
@@ -595,11 +596,10 @@
 181.40.117.138
 181.48.187.146
 181.49.241.50
+182.114.247.31
 182.114.250.201
-182.117.41.97
-182.117.71.167
 182.124.173.124
-182.126.82.71
+182.142.112.88
 182.160.101.51
 182.160.125.229
 182.160.98.250
@@ -610,9 +610,9 @@
 183.106.201.118
 183.107.57.170
 183.109.5.228
-183.151.121.12
 183.221.125.206
 183.4.28.24
+183.4.30.175
 183.80.55.227
 183.87.255.182
 184.163.2.58
@@ -620,6 +620,7 @@
 185.12.78.161
 185.136.193.70
 185.153.196.209
+185.172.110.208
 185.172.110.216
 185.172.110.224
 185.172.110.232
@@ -646,9 +647,11 @@
 186.251.253.134
 186.34.4.40
 186.42.255.230
+186.73.188.132
 187.12.10.98
 187.183.213.88
 187.250.220.89
+187.33.71.68
 187.36.134.227
 187.44.167.14
 187.45.49.101
@@ -670,10 +673,10 @@
 188.242.242.144
 188.36.121.184
 188.83.202.25
-189.126.70.222
 189.127.33.22
 189.223.178.117
 189.252.214.199
+189.45.44.86
 189.91.80.82
 190.0.42.106
 190.109.189.120
@@ -711,20 +714,21 @@
 192.119.87.242
 192.236.146.53
 192.236.147.189
-192.236.192.71
 193.106.57.83
 193.228.135.144
+193.228.91.105
 193.248.246.94
 193.53.163.179
 193.95.254.50
 194.0.157.1
-194.152.35.139
 194.180.224.106
 194.180.224.113
 194.208.91.114
 194.54.160.248
+195.123.213.216
 195.162.70.104
 195.24.94.187
+195.28.15.110
 195.66.194.6
 196.202.26.182
 196.218.202.115
@@ -736,11 +740,14 @@
 197.210.214.11
 197.51.235.38
 198.24.75.52
+199.116.237.125
 199.36.76.2
 199.83.203.104
 199.83.203.137
+199.83.203.53
 199.83.203.85
 199.83.204.244
+199.83.207.154
 2.180.33.118
 2.185.150.180
 2.229.41.205
@@ -754,6 +761,7 @@
 200.105.167.98
 200.107.7.242
 200.111.189.70
+200.116.110.36
 200.180.159.138
 200.2.161.171
 200.217.148.218
@@ -761,6 +769,7 @@
 200.30.132.50
 200.38.79.134
 200.6.167.42
+200.69.74.28
 200.85.168.202
 2000kumdo.com
 201.103.20.67
@@ -785,7 +794,6 @@
 202.4.124.58
 202.51.191.174
 202.74.236.9
-202.79.46.30
 203.114.116.37
 203.129.254.50
 203.163.211.46
@@ -793,14 +801,13 @@
 203.188.242.148
 203.193.173.179
 203.202.243.233
-203.202.245.77
 203.202.246.246
 203.202.248.237
 203.204.217.4
 203.234.151.163
 203.70.166.107
-203.77.80.159
 203.80.171.138
+203.80.171.149
 203.82.36.34
 208.113.130.13
 208.163.58.18
@@ -846,7 +853,6 @@
 213.109.235.169
 213.157.39.242
 213.16.63.103
-213.202.255.4
 213.215.85.141
 213.241.10.110
 213.27.8.6
@@ -856,7 +862,7 @@
 213.92.198.8
 213.97.24.164
 216.15.112.251
-216.180.117.164
+216.180.117.201
 216.183.54.169
 216.189.145.11
 216.36.12.98
@@ -867,7 +873,6 @@
 217.8.117.23
 217.8.117.76
 218.144.252.19
-218.154.126.150
 218.156.132.7
 218.156.26.85
 218.157.214.219
@@ -892,7 +897,6 @@
 220.80.136.75
 220.82.140.17
 221.13.185.127
-221.13.236.180
 221.144.153.139
 221.15.11.116
 221.15.6.221
@@ -910,6 +914,7 @@
 222.116.73.41
 222.118.213.93
 222.140.153.57
+222.140.162.213
 222.142.226.246
 222.185.161.165
 222.185.199.202
@@ -917,19 +922,16 @@
 222.187.159.223
 222.187.191.224
 222.188.131.220
-222.242.158.161
 222.243.14.67
 222.74.186.176
 223.154.81.219
 223.199.243.56
-223.93.171.210
+223.93.157.244
 223.95.78.250
 224001.selcdn.ru
 23.122.183.241
 23.227.207.140
 23.228.143.58
-23.247.102.120
-23.254.211.179
 23.254.226.60
 23.94.154.115
 24.0.252.145
@@ -953,8 +955,7 @@
 27.147.40.128
 27.155.87.120
 27.238.33.39
-27.41.147.103
-27.41.175.30
+27.41.174.178
 27.48.138.13
 3.112.254.173
 3.zhzy999.net
@@ -962,12 +963,12 @@
 31.128.173.853.zhzy999.net
 31.128.173.853.zhzy999.net31.128.173.853.zhzy999.net
 31.132.143.21
-31.146.124.177
 31.146.212.197
 31.146.212.252
 31.146.229.140
 31.146.229.169
 31.154.232.106
+31.155.158.20
 31.168.194.67
 31.168.214.28
 31.168.216.132
@@ -992,17 +993,15 @@
 31.44.54.110
 35.141.217.189
 36.105.241.235
-36.107.138.217
 36.107.211.17
 36.107.235.83
 36.33.248.102
-36.66.105.159
 36.66.133.125
 36.66.139.36
-36.66.168.45
 36.66.190.11
 36.67.223.231
 36.67.42.193
+36.74.74.99
 36.89.133.67
 36.89.18.133
 36.91.89.187
@@ -1012,7 +1011,6 @@
 37.142.138.126
 37.17.21.242
 37.222.98.51
-37.232.98.44
 37.235.162.131
 37.29.67.145
 37.34.250.243
@@ -1022,7 +1020,6 @@
 37.49.226.228
 37.49.226.231
 37.49.230.103
-37.49.230.128
 37.49.230.141
 37.49.230.234
 37.54.14.36
@@ -1038,29 +1035,24 @@
 41.211.112.82
 41.219.185.171
 41.228.175.30
-41.32.132.218
 41.32.170.13
 41.39.182.198
 41.64.170.241
 41.67.137.162
 41.72.203.82
 41.77.74.146
-41.84.227.250
 41.86.19.200
 42.115.86.142
 42.227.121.217
-42.227.166.179
 42.227.184.46
 42.232.102.85
 42.239.225.24
-42.239.96.146
 42.61.99.155
 42.82.191.105
 43.252.8.94
 45.114.68.156
 45.115.253.82
 45.115.254.154
-45.118.165.115
 45.138.97.46
 45.139.236.14
 45.14.150.29
@@ -1073,7 +1065,6 @@
 45.95.168.202
 45.95.168.207
 45.95.168.97
-45.95.169.249
 45.95.55.58
 46.100.251.72
 46.100.56.152
@@ -1120,7 +1111,6 @@
 49.68.250.118
 49.68.54.141
 49.68.81.61
-49.70.127.10
 49.70.137.78
 49.70.234.20
 49.70.34.196
@@ -1139,7 +1129,9 @@
 49.89.139.161
 49.89.228.167
 49.89.232.163
+49.89.233.47
 49.89.234.53
+49.89.241.11
 49.89.64.24
 49.89.80.45
 49parallel.ca
@@ -1151,7 +1143,7 @@
 5.198.241.29
 5.201.130.125
 5.201.142.118
-5.206.227.18
+5.206.224.216
 5.238.110.62
 5.29.175.150
 5.57.133.136
@@ -1170,9 +1162,9 @@
 58.230.89.42
 58.238.186.91
 58.243.121.118
-58.243.121.200
 58.243.122.144
 58.243.123.161
+58.243.125.95
 58.243.20.165
 58.40.122.158
 59.0.224.88
@@ -1184,9 +1176,9 @@
 59.22.144.136
 59.23.208.62
 59.24.69.58
+59.3.253.82
 59.4.104.15
 59.7.40.82
-60.189.24.112
 61.174.126.132
 61.247.224.66
 61.52.128.79
@@ -1197,9 +1189,7 @@
 61.70.45.130
 61.77.146.65
 61.82.215.186
-62.1.98.131
 62.103.77.120
-62.117.124.114
 62.140.224.186
 62.16.60.215
 62.201.230.43
@@ -1290,7 +1280,6 @@
 77.79.191.32
 77.89.203.238
 78.159.97.56
-78.186.190.222
 78.186.49.146
 78.188.224.31
 78.189.104.157
@@ -1320,7 +1309,6 @@
 80.235.214.123
 80.92.189.70
 81.157.66.50
-81.17.16.122
 81.184.88.173
 81.19.215.118
 81.196.213.134
@@ -1347,6 +1335,7 @@
 82.80.143.205
 82.80.176.116
 82.81.106.65
+82.81.108.172
 82.81.131.158
 82.81.196.247
 82.81.197.254
@@ -1365,7 +1354,6 @@
 83.234.147.99
 83.234.218.42
 83.67.163.73
-84.10.31.238
 84.197.14.92
 84.20.68.26
 84.228.102.152
@@ -1410,11 +1398,11 @@
 88.248.121.238
 88.250.196.101
 88.250.85.219
-887sconline.com
 88mscco.com
 89.116.174.223
 89.121.31.159
 89.122.77.154
+89.136.197.170
 89.141.1.115
 89.165.10.137
 89.189.184.225
@@ -1424,12 +1412,10 @@
 89.40.85.166
 89.40.87.5
 89.46.237.89
-91.134.252.221
 91.177.139.132
 91.187.103.32
 91.187.119.26
 91.191.32.34
-91.196.36.84
 91.215.126.208
 91.216.149.130
 91.217.2.120
@@ -1455,8 +1441,8 @@
 93.171.33.234
 93.176.185.223
 93.185.10.131
+93.47.168.43
 93.56.36.84
-93.70.125.94
 93.73.99.102
 93.75.190.19
 93.77.52.138
@@ -1469,6 +1455,7 @@
 94.202.61.191
 94.230.152.192
 94.244.113.217
+94.244.25.21
 94.41.0.174
 94.53.120.109
 94.64.246.247
@@ -1499,6 +1486,7 @@ aaasolution.co.th
 accessyouraudience.com
 acdesignhub.com
 acteon.com.ar
+activecost.com.au
 adamtcarruthers.com
 adnquocte.com
 agiandsam.com
@@ -1517,23 +1505,25 @@ allloveseries.com
 alohasoftware.net
 alphaconsumer.net
 am-concepts.ca
-amd.alibuf.com
+amedeoscognamiglio.329263.com
 amemarine.co.th
 americanrange.com
 anadolutatili.com
-anamikaindanegas.in
 andreelapeyre.com
 andremaraisbeleggings.co.za
 angthong.nfe.go.th
+anjsolution.com
 anvietpro.com
 anysbergbiltong.co.za
 aoujlift.ir
 apartdelpinar.com.ar
 apoolcondo.com
 apware.co.kr
+arabenergyclub.org
 archiv.bg
 areac-agr.com
 ascentive.com
+ashoakacharya.com
 askarindo.or.id
 asload01.top
 atfile.com
@@ -1543,7 +1533,6 @@ atteuqpotentialunlimited.com
 audiosv.com
 aulist.com
 auraco.ca
-aurumboy.com
 azmeasurement.com
 aznetsolutions.com
 azureautomation.co.uk
@@ -1553,16 +1542,15 @@ bamakobleach.free.fr
 bangkok-orchids.com
 banzaimonkey.com
 bapo.granudan.cn
-baritaco.com
 bbs.sunwy.org
 bbs1.marisfrolg.com
 bd11.52lishi.com
 bd12.52lishi.com
 bd18.52lishi.com
 bd19.52lishi.com
+beachbeaty.com
 beibei.xx007.cc
 bepgroup.com.hk
-bergamote.org
 besserblok-ufa.ru
 besttasimacilik.com.tr
 beta.pterosol.com
@@ -1577,6 +1565,7 @@ bjkumdo.com
 blog.241optical.com
 blog.hanxe.com
 bolidar.dnset.com
+borawebservicioscl1.com
 bovientix.com
 bpo.correct.go.th
 brasstec.com.br
@@ -1586,15 +1575,16 @@ btlocum.pl
 bugansavings.com
 byqkdy.com
 c.vvvvvvvvv.ga
-c9f44961.ngrok.io
 cameli.vn
 cantikekinian.com
 caravella.com.br
 cassovia.sk
 cbk.m.dodo52.com
 ccnn.xiaomier.cn
+cdn-10049480.file.myqcloud.com
 cdn.xiaoduoai.com
 cdnus.laboratoryconecpttoday.com
+ceirecrear.com.br
 cellas.sk
 cf.uuu9.com
 cf0.pw
@@ -1602,7 +1592,7 @@ cfs5.tistory.com
 ch.rmu.ac.th
 changematterscounselling.com
 chanvribloc.com
-charm.bizfxr.com
+chattosport.com
 chedea.eu
 chinhdropfile.myvnc.com
 chinhdropfile80.myvnc.com
@@ -1612,15 +1602,17 @@ chj.m.dodo52.com
 chuckweiss.com
 clareiamente.clareiamente.com
 clearwaterriveroutfitting.com
-cleversoft.vn
 client.yaap.co.uk
 clinicamariademolina.com
+cmecobrancas.com
+cnhdsoft.com
 compesat.com
 complan.hu
 complanbt.hu
 comtechadsl.com
 config.kuaisousou.top
 consultingcy.com
+cosmea.pl
 counciloflight.bravepages.com
 cqjcc.org
 crittersbythebay.com
@@ -1628,8 +1620,6 @@ cryline.net
 csnserver.com
 csw.hu
 cyclomove.com
-czsl.91756.cn
-d3.99ddd.com
 d9.99ddd.com
 da.alibuf.com
 daithanhphung.com
@@ -1641,15 +1631,18 @@ datvensaigon.com
 davinadouthard.com
 dawaphoto.co.kr
 daynightgym.com
+dbssistem.com.tr
 de.gsearch.com.de
+dehkadenovin.com
 deixameuskls.tripod.com
-demo10.onbm.ir
+demo13.dsdemosite.com
 denkagida.com.tr
 depgrup.com
 depot7.com
 derivativespro.in
 desighiza.com
 detafa.com
+dev.nona-polska.pl
 dev.sebpo.net
 dev1.xicom.us
 dev5.mypagevn.com
@@ -1659,10 +1652,9 @@ dfd.zhzy999.net
 dfzm.91756.cn
 dgecolesdepolice.bf
 dgnj.cn
-dhlservices.duckdns.org
 diazavendano.cl
 dichvuvesinhcongnghiep.top
-dienmayminhan.com
+dienmaycu.vn
 digilib.dianhusada.ac.id
 digital-marketing-institute-delhi.empeeevents.com
 digitaldog.de
@@ -1673,13 +1665,12 @@ dl.1003b.56a.com
 dl.198424.com
 dl.dzqzd.com
 dl.kuaile-u.com
-dl2.soft-lenta.ru
 dlist.iqilie.com
 dmresor.se
-dnn.alibuf.com
 dns.alibuf.com
 dodsonimaging.com
 don.viameventos.com.br
+dongiln.co
 donmago.com
 doostansocks.ir
 doransky.info
@@ -1688,22 +1679,16 @@ down.ancamera.co.kr
 down.gogominer.com
 down.haote.com
 down.pcclear.com
-down.pdflist.cqhbkjzx.com
-down.softlist.tcroot.cn
 down.startools.co.kr
 down.tgjkbx.cn
 down.upzxt.com
 down.webbora.com
 down.xrpdf.com
 down1.arpun.com
-downcdn.xianshuabao.com
 download.1ys.com
-download.beveilingsdienst.info
 download.doumaibiji.cn
 download.kaobeitu.com
-download.ktkt.com
 download.pdf00.cn
-download.rising.com.cn
 download.skycn.com
 download.ttz3.cn
 download.ware.ru
@@ -1715,11 +1700,9 @@ dralpaslan.com
 drools-moved.46999.n3.nabble.com
 droversmouser.at
 druzim.freewww.biz
-ds.obmenvsemfiles.com
 dtsay.xyz
 dudulm.com
 dusdn.mireene.com
-dw.58wangdun.com
 dx.qqyewu.com
 dx1.qqtn.com
 dx2.qqtn.com
@@ -1728,7 +1711,6 @@ dx60.siweidaoxiang.com
 dzinestudio87.co.uk
 e.dangeana.com
 easydown.workday360.cn
-ebook.w3wvg.com
 edicolanazionale.it
 emadamini.co.za
 emir-elbahr.com
@@ -1739,38 +1721,34 @@ er-bulisguvenligi.com
 ermekanik.com
 esolvent.pl
 esteteam.org
-evdeyizrahatiz.com
 exposvision.com
 ezfintechcorp.com
 fafhoafouehfuh.su
 fairyqueenstore.com
-fastsoft.onlinedown.net
 fazi.pl
+ffv322.ru
+ffv32223.ru
 fidiag.kymco.com
 fifa555easy.329263.com
 figuig.net
 fileco.jobkorea.co.kr
 filen3.utengine.co.kr
-filen5.utengine.co.kr
-files.fqapps.com
 files.rakbot.ru
 files6.uludagbilisim.com
 fishingbigstore.com
 fitmanacademy.com
 fkd.derpcity.ru
 flex.ru
-flood-protection.org
 fordlamdong.com.vn
 foreverprecious.org
 foxfennecs.com
 frin.ng
 fte.m.dodo52.com
-ftpcnc-p2sp.pconline.com.cn
 ftpftpftp.com
 funletters.net
 futuregraphics.com.ar
-g.7230.com
 g0ogle.free.fr
+gainsdirectory.com
 galuhtea.com
 gamebazaar.club
 gamee.top
@@ -1779,10 +1757,9 @@ garenanow4.myvnc.com
 gateway-heide.de
 gateway.ethlqd.com
 genesisconstruction.co.za
-genstaff.gov.kg
 germistonmiraclecentre.co.za
 ghislain.dartois.pagesperso-orange.fr
-gimscompany.com
+ghwls44.gabia.io
 glitzygal.net
 globaleuropeans.com
 gmassurance.fr
@@ -1790,14 +1767,13 @@ gnimelf.net
 go.xsuad.com
 google.ghststr.com
 govhotel.us
-grafchekloder.rebatesrule.net
 granportale.com.br
+grantoveporadenstvi.eu
 gray-takeo-7170.chowder.jp
 green100.cn
 greenfood.sa.com
 gssgroups.com
 gundemdekihaber.com
-gx-10012947.file.myqcloud.com
 habbotips.free.fr
 hagebakken.no
 haisannhatrang.com.vn
@@ -1806,12 +1782,11 @@ hanaphoto.co.kr
 handrush.com
 hanoihub.vn
 hazel-azure.co.th
-hdxa.net
 healtina.com
 heavenif.co.za
 hellomessager.com
-hevizapartments.net
 hfsoftware.cl
+hi-event.vn
 hingcheong.hk
 hldschool.com
 hmbwgroup.com
@@ -1822,13 +1797,13 @@ hotart.co.nz
 hotel-le-relais-des-moulins.com
 hottestxxxvideo.com
 housewifes.co
-hseda.com
 hsmwebapp.com
 htxl.cn
 huishuren.nu
 hwsrv-675710.hostwindsdns.com
 hwsrv-720737.hostwindsdns.com
 hyadegari.ir
+hyundainamdinh.org
 hyvat-olutravintolat.fi
 i333.wang
 ibda.adv.br
@@ -1837,13 +1812,11 @@ ihpmed.ae
 ileolaherbalcare.com.ng
 imellda.com
 imenizeh.ir
+imobiliarianossacasamt.com.br
 impression-gobelet.com
 in-sect.com
 inapadvance.com
 incrediblepixels.com
-incredicole.com
-infogue.id
-ini.egkj.com
 innovation4crisis.org
 instanttechnology.com.au
 intelicasa.ro
@@ -1854,8 +1827,8 @@ intoxicated-twilight.com
 iran-gold.com
 iremart.es
 isso.ps
-it.shopforever.pk
 itd.m.dodo52.com
+itohukuk.com
 itrigger.cn
 itsnixielou.com
 ixlonbcc.com
@@ -1868,6 +1841,7 @@ janvierassocies.fr
 javatank.ru
 jcedu.org
 jessymart.flexyhub.com
+jim.webengineerteam.com
 jjjexx.329263.com
 jmtc.91756.cn
 jocuri.trophygaming.net
@@ -1879,11 +1853,12 @@ jppost-cde.top
 jsd618.com
 jsq.m.dodo52.com
 jsya.co.kr
+jumla.biz
 jutvac.com
 jvalert.com
 jyv.fi
-jzny.com.cn
-k3.etfiber.net
+k.ludong.tv
+kabiru.ru
 kachsurf.mylftv.com
 kamasu11.cafe24.com
 kamisecurity.com.my
@@ -1894,6 +1869,7 @@ kassohome.com.tr
 kdsp.co.kr
 kejpa.com
 kenareh-gostare-aras.ir
+kgfs3.329263.com
 khunnapap.com
 kiencuonghotel.vn
 kjbm9.mof.gov.cn
@@ -1906,7 +1882,6 @@ kristofferdaniels.com
 kupaliskohs.sk
 kuznetsov.ca
 kwanfromhongkong.com
-kwikomfi-lab.com
 lagalaxy88easy.329263.com
 lameguard.ru
 lammaixep.com
@@ -1919,6 +1894,8 @@ ld.mediaget.com
 learnbuddy.com
 learningcomputing.org
 lebedyn.info
+lecafedesartistes.com
+leukkado.be
 lfcsghosi.co.in
 lhbfirst.com
 libya-info.com
@@ -1926,6 +1903,7 @@ lifeapt.biz
 linx.li
 lists.ibiblio.org
 lists.mplayerhq.hu
+lodergord.com
 log.yundabao.cn
 lsyr.net
 lt02.datacomspecialists.net
@@ -1935,28 +1913,27 @@ luckytriumph.com
 luisnacht.com.ar
 lvr.samacomplus.com
 m.0757kd.cn
-m93701t2.beget.tech
 mackleyn.com
 magda.zelentourism.com
 magic-living.com
 makosoft.hu
 malin-akerman.net
+mangawt.com
 margopassadorestylist.com
+mariereiko.com
 maringareservas.com.br
 marketprice.com.ng
 marksidfgs.ug
-marocaji.com
 matt-e.it
 mattayom31.go.th
-maynenkhivinhphat.com
 mazury4x4.pl
 mbgrm.com
+mecbox.cn
 mediamatkat.fi
 medianews.ge
 medlinee.com
 medreg.uz
 meert.org
-meeweb.com
 meitao886.com
 members.chello.nl
 members.westnet.com.au
@@ -1971,6 +1948,7 @@ micahproducts.com
 micalle.com.au
 mirror.mypage.sk
 mis.nbcc.ac.th
+misskproductions.co.za
 misterson.com
 mistydeblasiophotography.com
 mkk09.kr
@@ -1983,17 +1961,18 @@ moha-group.com
 monmariage.info
 moscow11.at
 mountveederwines.com
+movingsolutionsus.com
 moyo.co.kr
 mperez.com.ar
 mrtool.ir
 msecurity.ro
+mteng.mmj7.com
 mtfelektroteknik.com
-mudita.vn
 mueblesjcp.cl
+mutec.jp
 mv360.net
 mvb.kz
 mxpiqw.am.files.1drv.com
-mydesign.thinkeraibirds.com
 myexpertca.in
 myhood.cl
 myo.net.au
@@ -2003,6 +1982,7 @@ mytrains.net
 mywp.asia
 myyttilukukansasta.fi
 naildumarche.com
+namuvpn.com
 narty.laserteam.pl
 naturalma.es
 naturepack.cc
@@ -2012,11 +1992,13 @@ ndrs.cloud
 nebraskacharters.com.au
 neocity1.free.fr
 nerve.untergrund.net
+news.abfakerman.ir
 news.omumusic.net
 newsun-shop.com
 newxing.com
+nexity.me
 nfbio.com
-ngoaingu.garage.com.vn
+nkdhub.com
 nofound.000webhostapp.com
 norperuinge.com.pe
 nprg.ru
@@ -2026,12 +2008,14 @@ oa.fnysw.com
 oa.hys.cn
 obnova.zzux.com
 obseques-conseils.com
+ohe.ie
 oknoplastik.sk
 omega.az
+omitkyspisar.cz
 omsk-osma.ru
 omuzgor.tj
 onestin.ro
-openclient.sroinfo.com
+onlyart.in
 operasanpiox.bravepages.com
 ophtalmiccenter.com
 opolis.io
@@ -2050,8 +2034,8 @@ p500.mon-application.com
 pack301.bravepages.com
 pakdesighee.com
 palochusvet.szm.com
-paperbrick.peachtest.com
 partyflix.net
+pat4.jetos.com
 pat4.qpoe.com
 patch2.51lg.com
 patch2.99ddd.com
@@ -2060,8 +2044,8 @@ patrickchan-hk.net
 pawel-sikora.pl
 pcginsure.com
 pcsoori.com
-peachtest.com
 pedidoslalacteo.com.ar
+peterssandmay.com
 petromltd.com
 ph4s.ru
 phamchilong.com
@@ -2071,15 +2055,19 @@ piapendet.com
 pink99.com
 pocketfsa.com
 podiatristlansdale.com
+pokids.vn
 ponto50.com.br
 poolbook.ir
 portal.nfbpc.org
 ppl.ac.id
+prepaenunsoloexamen.academiagalileoac.com
+primaart.vn
 probost.cz
 prosoc.nl
 prowin.co.th
 pujashoppe.in
 purelondonhyg.com
+purewood.in
 qchms.qcpro.vn
 qfjys.com.img.800cdn.com
 qmsled.com
@@ -2108,13 +2096,13 @@ rkverify.securestudies.com
 robertmcardle.com
 robotrade.com.vn
 rollscar.pk
+rosdal.abouttobeawesome.com
 rossogato.com
+royalplusmobile.ir
 ruisgood.ru
 rusch.nu
 s.51shijuan.com
 s.kk30.com
-s14b.91danji.com
-s14b.groundyun.cn
 sabiupd.compress.to
 saboorjaam.ir
 sabupda.vizvaz.com
@@ -2141,14 +2129,14 @@ sgm.pc6.com
 shacked.webdepot.co.il
 shahtoba.faqserv.com
 shaoxiaofei.cn
-share.dmca.gripe
 sharjahas.com
-shembefoundation.com
 shy-obi-0122.jellybean.jp
+simlun.com.ar
 simpl.pw
 sinastorage.cn
 sindicato1ucm.cl
 sinerjias.com.tr
+siriyun.top
 sistemagema.com.ar
 skyscan.com
 slmconduct.dk
@@ -2159,7 +2147,6 @@ snapit.solutions
 sncshyamavan.org
 snp2m.poliupg.ac.id
 social.scottsimard.com
-socialhelp.ir
 sodmalwa.pl
 softdown.55.la
 somudigital.in
@@ -2182,13 +2169,12 @@ standardalloysindia.com
 starbeatdance.com
 starcountry.net
 static.ilclock.com
-static.topxgun.com
 stecit.nl
 stevewalker.com.au
 story-maker.jp
+stubbackup.ru
 suaritmafirmalari.com
 support.clz.kr
-sv.pvroe.com
 svkacademy.com
 svn.cc.jyu.fi
 sweaty.dk
@@ -2204,15 +2190,13 @@ tcy.198424.com
 teamtnt.red
 teardrop-productions.ro
 technoites.com
+tecnobella.cl
 tehrenberg.com
 telescopelms.com
 telsiai.info
-tepatitlan.gob.mx
 test.iyibakkendine.com
-test.presta-com.ru
 testdatabaseforcepoint.com
 thaibbqculver.com
-thaisell.com
 tharringtonsponsorship.com
 thc-annex.com
 theclinicabarros.com
@@ -2221,7 +2205,6 @@ theprestige.ro
 theptiendat.com
 thepyramids.nl
 therecruiter.io
-thornadops.com
 thosewebbs.com
 thuong.bidiworks.com
 tianangdep.com
@@ -2240,7 +2223,6 @@ tsredco.telangana.gov.in
 tulli.info
 tumso.org
 tuneup.ibk.me
-tup.com.cn
 tutuler.com
 uc-56.ru
 ufabet168168.329263.com
@@ -2250,14 +2232,11 @@ ultimatepointsstore.com
 ulusalofis.com
 undantagforlag.se
 unicorpbrunei.com
-unilevercopabr.mbiz20.net
 uniquehall.net
 unitenrk.com
 unokaoeojoejfghr.ru
 upd.m.dodo52.com
 update.iwang8.com
-update.my.99.com
-updateflashiplayer.xyz
 urgentmessage.org
 usd-gold.com
 users.skynet.be
@@ -2276,9 +2255,11 @@ vietducbio.com
 vigilar.com.br
 vip.recommendedtoyoo.com
 virustreatments.empeeevents.com
-visualdata.ru
+visagepk.com
+vitinhvnt.com
 vitromed.ro
 vjhascv.ru
+voyageur.sisnettdesign.com
 vrrumover0.vrrum0.farted.net
 vvff.in
 w.zhzy999.net
@@ -2288,6 +2269,7 @@ ware.ru
 warriorllc.com
 wbd.5636.com
 wbkmt.com
+webarte.com.br
 webq.wikaba.com
 webserverthai.com
 webservice99.com
@@ -2295,7 +2277,6 @@ websound.ru
 welcometothefuture.com
 whgaty.com
 wiebe-sanitaer.de
-wishngifts.com
 wmd9e.a3i1vvv.feteboc.com
 wnksupply.co.th
 wood-expert.net
@@ -2310,17 +2291,15 @@ wt9.siweidaoxiang.com
 www2.recepty5.com
 x2vn.com
 xia.vzboot.com
-xiaidown.com
 xiaoma-10021647.file.myqcloud.com
 xinwenwang123.cn
 xirfad.com
-xn--20gb-hediyefrsati-nvc.com
 xtremeforumz.com
 xxwl.kuaiyunds.com
-xxxze.co.nu
 yeez.net
 yesky.51down.org.cn
 yesky.xzstatic.com
+yiyangjz.cn
 yuluobo.com
 yun-1.lenku.cn
 yuyu02004-10043918.file.myqcloud.com
@@ -2336,8 +2315,10 @@ zentealounge.com.au
 zeytinyagisabun.com
 zhetysu360.kz
 zhzy999.net
+ziliao.yunkaodian.com
 zj.9553.com
 zmmore.com
 zoetermeerov.nl
 zoeydeutchweb.com
 zonefound.com.cn
+zsinstrument.com
diff --git a/urlhaus-filter-domains.txt b/urlhaus-filter-domains.txt
index 039860ed..4d19d4d4 100644
--- a/urlhaus-filter-domains.txt
+++ b/urlhaus-filter-domains.txt
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains Blocklist
-# Updated: Thu, 07 May 2020 12:09:37 UTC
+# Updated: Fri, 08 May 2020 00:09:41 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -1186,6 +1186,7 @@
 104.244.75.179
 104.244.75.25
 104.244.75.46
+104.244.76.124
 104.244.76.15
 104.244.76.190
 104.244.76.210
@@ -2041,6 +2042,7 @@
 11.gxdx2.crsky.com
 110.137.21.15
 110.138.165.220
+110.138.229.8
 110.138.36.115
 110.138.88.6
 110.139.116.233
@@ -3211,6 +3213,7 @@
 113.133.224.68
 113.133.224.74
 113.133.224.80
+113.133.224.99
 113.133.225.176
 113.133.225.180
 113.133.225.185
@@ -3631,6 +3634,7 @@
 113.4.133.3
 113.4.20.86
 113.53.205.206
+113.53.52.8
 113.56.150.152
 113.56.151.131
 113.59.29.147
@@ -3974,6 +3978,7 @@
 114.235.185.19
 114.235.187.219
 114.235.190.4
+114.235.197.18
 114.235.199.165
 114.235.200.115
 114.235.200.56
@@ -4257,6 +4262,7 @@
 114.239.36.91
 114.239.37.159
 114.239.39.210
+114.239.39.47
 114.239.39.76
 114.239.41.70
 114.239.42.136
@@ -4293,6 +4299,7 @@
 114.239.74.228
 114.239.74.4
 114.239.74.46
+114.239.75.243
 114.239.75.49
 114.239.75.82
 114.239.76.140
@@ -4346,6 +4353,7 @@
 114.32.242.135
 114.32.242.166
 114.32.245.198
+114.32.246.196
 114.32.26.159
 114.32.36.141
 114.32.39.100
@@ -4482,6 +4490,7 @@
 115.196.66.1
 115.197.111.204
 115.197.170.45
+115.197.192.193
 115.197.202.209
 115.197.232.220
 115.197.83.141
@@ -4735,6 +4744,7 @@
 115.49.151.207
 115.49.153.167
 115.49.154.25
+115.49.156.123
 115.49.157.144
 115.49.157.178
 115.49.158.101
@@ -4960,6 +4970,7 @@
 115.49.76.245
 115.49.76.33
 115.49.76.45
+115.49.76.50
 115.49.76.83
 115.49.76.91
 115.49.77.0
@@ -5455,6 +5466,7 @@
 115.56.153.235
 115.56.155.155
 115.56.155.99
+115.56.161.84
 115.56.179.65
 115.56.179.78
 115.56.181.122
@@ -8237,6 +8249,7 @@
 122.155.197.12
 122.160.111.68
 122.160.196.105
+122.160.60.236
 122.162.161.66
 122.164.205.61
 122.164.205.76
@@ -8652,11 +8665,13 @@
 123.10.6.59
 123.10.60.68
 123.10.61.204
+123.10.62.26
 123.10.63.89
 123.10.7.85
 123.10.8.243
 123.10.82.228
 123.10.84.166
+123.10.84.18
 123.10.84.187
 123.10.84.188
 123.10.85.0
@@ -8750,6 +8765,7 @@
 123.11.14.146
 123.11.14.147
 123.11.14.194
+123.11.14.199
 123.11.14.215
 123.11.14.221
 123.11.14.24
@@ -11363,6 +11379,7 @@
 139.99.27.1
 139.99.37.27
 139.99.42.75
+139.99.52.100
 13noj.org
 13pope.com
 13r.lg.ua
@@ -11609,6 +11626,7 @@
 142.11.219.202
 142.11.219.41
 142.11.222.125
+142.11.222.172
 142.11.227.202
 142.11.227.246
 142.11.227.252
@@ -11895,6 +11913,7 @@
 144.202.58.124
 144.202.69.45
 144.202.8.114
+144.202.97.69
 144.217.0.194
 144.217.117.146
 144.217.12.66
@@ -12445,6 +12464,7 @@
 157.245.1.67
 157.245.106.38
 157.245.117.219
+157.245.127.232
 157.245.129.86
 157.245.130.209
 157.245.132.4
@@ -13043,6 +13063,7 @@
 162.212.113.149
 162.212.113.156
 162.212.113.160
+162.212.113.165
 162.212.113.166
 162.212.113.168
 162.212.113.173
@@ -13168,6 +13189,7 @@
 162.212.114.77
 162.212.114.8
 162.212.114.80
+162.212.114.82
 162.212.114.88
 162.212.114.96
 162.212.115.101
@@ -13725,6 +13747,7 @@
 167.172.209.209
 167.172.211.112
 167.172.211.131
+167.172.215.157
 167.172.215.218
 167.172.220.98
 167.172.222.27
@@ -15652,6 +15675,7 @@
 172.39.81.50
 172.39.81.71
 172.39.82.100
+172.39.82.115
 172.39.82.148
 172.39.82.173
 172.39.82.174
@@ -16045,6 +16069,7 @@
 175.107.44.239
 175.11.165.83
 175.11.171.12
+175.11.192.189
 175.11.193.118
 175.11.193.122
 175.11.193.71
@@ -16171,6 +16196,7 @@
 175.214.73.244
 175.214.73.247
 175.214.73.252
+175.215.116.123
 175.215.226.31
 175.251.15.205
 175.3.180.113
@@ -17664,6 +17690,7 @@
 180.117.194.37
 180.117.195.123
 180.117.195.168
+180.117.195.21
 180.117.198.33
 180.117.204.119
 180.117.204.162
@@ -17770,6 +17797,7 @@
 180.123.29.150
 180.123.29.68
 180.123.29.9
+180.123.36.177
 180.123.36.33
 180.123.40.249
 180.123.47.58
@@ -18411,6 +18439,7 @@
 182.114.246.26
 182.114.247.10
 182.114.247.192
+182.114.247.31
 182.114.248.10
 182.114.248.129
 182.114.248.140
@@ -19632,6 +19661,7 @@
 182.136.16.42
 182.141.221.103
 182.142.112.180
+182.142.112.88
 182.142.113.100
 182.142.113.170
 182.142.114.18
@@ -19875,6 +19905,7 @@
 183.4.28.254
 183.4.28.72
 183.4.30.105
+183.4.30.175
 183.4.30.194
 183.4.30.20
 183.4.30.251
@@ -22323,6 +22354,7 @@
 193.218.118.100
 193.226.232.72
 193.228.135.144
+193.228.91.105
 193.233.191.18
 193.238.36.33
 193.238.47.118
@@ -22531,6 +22563,7 @@
 195.123.212.134
 195.123.212.29
 195.123.213.126
+195.123.213.216
 195.123.218.152
 195.123.220.160
 195.123.221.103
@@ -22883,6 +22916,7 @@
 198.98.62.237
 198.98.62.43
 199.116.235.213
+199.116.237.125
 199.175.51.173
 199.180.133.129
 199.180.133.174
@@ -23081,6 +23115,7 @@
 199.83.207.139
 199.83.207.152
 199.83.207.153
+199.83.207.154
 199.83.207.158
 199.83.207.160
 199.83.207.162
@@ -24800,6 +24835,7 @@
 216.180.117.124
 216.180.117.132
 216.180.117.142
+216.180.117.147
 216.180.117.152
 216.180.117.159
 216.180.117.16
@@ -24814,6 +24850,7 @@
 216.180.117.190
 216.180.117.191
 216.180.117.195
+216.180.117.201
 216.180.117.202
 216.180.117.208
 216.180.117.209
@@ -26501,6 +26538,7 @@
 222.140.161.145
 222.140.161.181
 222.140.161.67
+222.140.162.213
 222.140.162.229
 222.140.162.31
 222.140.162.57
@@ -26834,6 +26872,7 @@
 222.246.20.121
 222.246.20.148
 222.246.20.201
+222.246.226.160
 222.246.228.185
 222.246.228.193
 222.246.229.159
@@ -28091,6 +28130,7 @@
 31.154.195.254
 31.154.232.106
 31.154.84.141
+31.155.158.20
 31.156.181.93
 31.162.57.135
 31.163.57.231
@@ -28948,6 +28988,7 @@
 36.35.161.251
 36.35.161.65
 36.35.161.7
+36.35.161.72
 36.35.161.83
 36.35.164.148
 36.35.164.221
@@ -31655,6 +31696,7 @@
 45.153.184.67
 45.153.240.115
 45.154.1.122
+45.154.1.150
 45.154.1.58
 45.156.180.112
 45.156.195.205
@@ -33638,6 +33680,7 @@
 49.89.232.55
 49.89.233.155
 49.89.233.205
+49.89.233.47
 49.89.233.77
 49.89.234.147
 49.89.234.53
@@ -33646,6 +33689,7 @@
 49.89.235.12
 49.89.235.32
 49.89.240.188
+49.89.241.11
 49.89.241.78
 49.89.242.116
 49.89.242.125
@@ -33857,6 +33901,7 @@
 5.182.210.84
 5.182.211.138
 5.182.211.144
+5.182.211.184
 5.182.211.241
 5.182.211.76
 5.182.39.203
@@ -33935,6 +33980,7 @@
 5.202.41.223
 5.204.170.150
 5.204.249.111
+5.206.224.216
 5.206.225.104
 5.206.225.246
 5.206.226.15
@@ -34131,6 +34177,7 @@
 50.115.172.117
 50.115.172.132
 50.115.172.143
+50.115.172.172
 50.115.173.112
 50.115.173.126
 50.115.175.110
@@ -34667,6 +34714,7 @@
 58.243.124.204
 58.243.124.51
 58.243.125.227
+58.243.125.95
 58.243.126.111
 58.243.126.134
 58.243.126.93
@@ -36028,6 +36076,7 @@
 61.241.170.35
 61.241.170.37
 61.241.170.39
+61.241.170.76
 61.241.170.8
 61.241.170.83
 61.241.170.94
@@ -36458,6 +36507,7 @@
 64.20.36.234
 64.225.103.186
 64.225.103.215
+64.225.119.229
 64.225.120.179
 64.225.26.164
 64.225.36.224
@@ -38211,6 +38261,7 @@
 81.213.166.175
 81.213.174.199
 81.213.198.116
+81.213.219.145
 81.214.141.91
 81.214.22.43
 81.214.220.87
@@ -40281,6 +40332,7 @@ aastudios.co.in
 aaswim.co.za
 aatlantictreeservices.com
 aavasolution.com
+aaversalrelo.com
 aavip.cn
 aavra.com.ar
 aawajmedia.com
@@ -42542,6 +42594,7 @@ allenhenson.com
 allenmarks.se
 allens.youcheckit.ca
 allenservice.ga
+allexampdf.com
 allexcursion.com
 allexpressstores.com
 alleyesonus.pt
@@ -43295,6 +43348,7 @@ analisesfarma.com.br
 analisiclinichecatania.it
 analiskimia.undiksha.ac.id
 analistarastirma.com
+analistaspadel.com
 analizator.online
 analytics.theminersunion.com
 analyze-it.co.za
@@ -44233,6 +44287,7 @@ arabaresmi.com
 arabcb.org
 arabcoegypt.com
 arabdubaisafari.com
+arabenergyclub.org
 arabianbrother.com
 arabiantongue.net
 arabiantravelhouse.com
@@ -50455,6 +50510,7 @@ bushari.com
 bushmansafaris.co.zw
 bushnell.by
 business-blueprint.top-startups.com
+business-expert.md
 business-insight.aptoilab.com
 business-solution-ltd.org
 business.bityaris.com
@@ -53113,6 +53169,7 @@ cjb-law.com
 cjcmail-oln040092069015.outbound.protection.sketchwefair-watduoliprudential.com.watchdogdns.duckdns.org
 cjcurrent.com
 cjd.com.br
+cjemskayyoor.com
 cjextm.ro
 cjj.lanibio.net
 cjllcmonthlysub.ga
@@ -54657,6 +54714,7 @@ cosi-ilmercatodeisapori.com
 coskunkuyumculuk.com
 cosmatos.org
 cosme.kyawaiiiii.com
+cosmea.pl
 cosmeis.com
 cosmeliti.com
 cosmet-log.com
@@ -56644,6 +56702,7 @@ deguia.net
 degustibeer.it
 deheld100.nl
 dehkadeh-tameshk.ir
+dehkadenovin.com
 dehlie.dk
 dehneshin.com
 dehydrated.sk
@@ -57411,6 +57470,7 @@ dev.mountainwatch.com
 dev.networkscy.com
 dev.nextg.io
 dev.nida.ac.th
+dev.nona-polska.pl
 dev.novembit.com
 dev.optitek.com
 dev.pacificsymposium.org
@@ -59562,6 +59622,7 @@ drzimin.com
 ds-al.er42.org
 ds-cocoa.com
 ds-stoneroots.com
+ds.nashobmenfiles.com
 ds.obmenvsemfiles.com
 ds.veedence.co.uk
 ds04.projectstatus.co.uk
@@ -62894,6 +62955,7 @@ f0267229.xsph.ru
 f0269025.xsph.ru
 f0316439.xsph.ru
 f0384177.xsph.ru
+f0434589.xsph.ru
 f0hc7osjnl2vi61g.com
 f0jgqwejaisdqjwnqwe.com
 f12.file-upload.com
@@ -65766,6 +65828,7 @@ gamee.top
 gameforte.com
 gamehack.chat.ru
 gamelaboratory.ru
+gamelounge.club
 gamemechanics.com
 gameonline.web.id
 gameonline11.com
@@ -67386,6 +67449,7 @@ gorontula.com
 goroute3.com
 goruklecilingirci.com
 goruklefitness.com
+goschiele.com
 goshhh.com
 goshowcar.com
 gosiltechono.co
@@ -67596,6 +67660,7 @@ granpri.info
 grant-massage.ru
 granthawkinsdesign.com
 grantkulinar.ru
+grantoveporadenstvi.eu
 grantpromotion.icu
 grantwritersresource.com
 granube.us-east-1.elasticbeanstalk.com
@@ -69506,6 +69571,7 @@ hho3.com
 hhold.ru
 hhoorn.nl
 hhristov.net
+hi-event.vn
 hi-fam.com
 hi-shop.ml
 hialeahprivateinvestigators.com
@@ -69863,6 +69929,7 @@ hobi-sport.ch
 hobi.de
 hobimsiseyler.com
 hobokendoulas.com
+hobsnchimney.in
 hobus.zema-sul.com
 hocalarlaofis.com
 hocdelamgi.000webhostapp.com
@@ -70852,6 +70919,7 @@ hyundai-autoalbania.com.al
 hyundai-danang.com.vn
 hyundai-services.ir
 hyundailongbien.hanoi.vn
+hyundainamdinh.org
 hyunmee.se
 hyunmoon.nfile.net
 hyvat-olutravintolat.fi
@@ -80050,6 +80118,7 @@ luzevida.com.br
 luzfloral.com
 luzy.vn
 lvajnczdy.cf
+lvecarehomes.com
 lvita.co
 lvksdy.cf
 lvr.samacomplus.com
@@ -81625,6 +81694,7 @@ marie-oms-psychologue.fr
 marienthal.info
 marientumba.com
 mariepeters.com
+mariereiko.com
 mariesshopoutfit.com
 marieva.pro
 marijuana420site.com
@@ -84621,6 +84691,7 @@ movin.cloud
 moving-dubai.com
 movingimagesmultimedia.com
 movingmountainsfoods.com
+movingsolutionsus.com
 mowbaza.chat.ru
 mowdsdflogin.usa.cc
 mowwierzbica.lh.pl
@@ -88618,6 +88689,7 @@ onlinewp.it
 onlineyogaplatform.com
 onlink-aoiuvr.com
 onlyapteka.ru
+onlyart.in
 onlycane.in
 onlychild.org
 onlycocktaildresses.com
@@ -89336,6 +89408,7 @@ p12.zdusercontent.com
 p2.jugalvyas.com
 p2.lingpao8.com
 p23tv.studio
+p2b.in
 p2btechnologies.com
 p2piptv.net
 p2pmedia.org
@@ -92079,6 +92152,7 @@ prihlaska.sagitta.cz
 priintzone.com
 prijzen-dakkapel.nl
 prim.sydneyrobbins.net
+primaart.vn
 primagamahomeschool.com
 primainnaparthotel.com
 primakaryasteel.com
@@ -92915,6 +92989,7 @@ purepropertiesobx.com
 pureprotea.com
 purerls.com
 pureslimketoreviews.club
+purewood.in
 purgers-eventmanagement.de
 puri-puri.sg
 purifiq.co.za
@@ -99659,6 +99734,7 @@ skiddump.cf
 skiddump.ga
 skiddump.ru
 skidurham.com
+skidware-malwrhunterteams.com
 skiffinsconsuming.co.kr
 skiinspa.com
 skilancein.000webhostapp.com
@@ -100651,6 +100727,7 @@ sooqxrpm.yjdata.me
 sophiacarta.de
 sophiacollegemumbai.com
 sophiahotel.vn
+sophiasbridalandtux.com
 sophiaskyhotel.vn
 sophiasuites-santorini.com
 sophiebarthelemy.fr
@@ -108285,6 +108362,7 @@ update.com.br
 update.covid-19.casa
 update.gk-mtm.ru
 update.hoiucvl.com
+update.id
 update.igra123.com
 update.iwang8.com
 update.jirisancapital.com
@@ -108749,6 +108827,7 @@ vaguevague.com
 vahan24.in
 vaheracouncil.com
 vahokad.sk
+vaico.co
 vaigacafe.com
 vaileather.com
 vaillantteknikservisibursa.com
@@ -109603,6 +109682,7 @@ vinalpapel.com
 vinarycard.com
 vinaschool.com.vn
 vinastone.com
+vinastory.vn
 vinatuoi.com
 vinay29.000webhostapp.com
 vinaykhatri.in
diff --git a/urlhaus-filter-hosts-online.txt b/urlhaus-filter-hosts-online.txt
index ba294dd9..7938a14f 100644
--- a/urlhaus-filter-hosts-online.txt
+++ b/urlhaus-filter-hosts-online.txt
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Online Hosts Blocklist
-# Updated: Thu, 07 May 2020 12:09:37 UTC
+# Updated: Fri, 08 May 2020 00:09:41 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -17,7 +17,6 @@
 0.0.0.0 49parallel.ca
 0.0.0.0 786suncity.com
 0.0.0.0 8200msc.com
-0.0.0.0 887sconline.com
 0.0.0.0 88mscco.com
 0.0.0.0 a-reality.co.uk
 0.0.0.0 a.xiazai163.com
@@ -25,6 +24,7 @@
 0.0.0.0 accessyouraudience.com
 0.0.0.0 acdesignhub.com
 0.0.0.0 acteon.com.ar
+0.0.0.0 activecost.com.au
 0.0.0.0 adamtcarruthers.com
 0.0.0.0 adnquocte.com
 0.0.0.0 agiandsam.com
@@ -43,23 +43,25 @@
 0.0.0.0 alohasoftware.net
 0.0.0.0 alphaconsumer.net
 0.0.0.0 am-concepts.ca
-0.0.0.0 amd.alibuf.com
+0.0.0.0 amedeoscognamiglio.329263.com
 0.0.0.0 amemarine.co.th
 0.0.0.0 americanrange.com
 0.0.0.0 anadolutatili.com
-0.0.0.0 anamikaindanegas.in
 0.0.0.0 andreelapeyre.com
 0.0.0.0 andremaraisbeleggings.co.za
 0.0.0.0 angthong.nfe.go.th
+0.0.0.0 anjsolution.com
 0.0.0.0 anvietpro.com
 0.0.0.0 anysbergbiltong.co.za
 0.0.0.0 aoujlift.ir
 0.0.0.0 apartdelpinar.com.ar
 0.0.0.0 apoolcondo.com
 0.0.0.0 apware.co.kr
+0.0.0.0 arabenergyclub.org
 0.0.0.0 archiv.bg
 0.0.0.0 areac-agr.com
 0.0.0.0 ascentive.com
+0.0.0.0 ashoakacharya.com
 0.0.0.0 askarindo.or.id
 0.0.0.0 asload01.top
 0.0.0.0 atfile.com
@@ -69,7 +71,6 @@
 0.0.0.0 audiosv.com
 0.0.0.0 aulist.com
 0.0.0.0 auraco.ca
-0.0.0.0 aurumboy.com
 0.0.0.0 azmeasurement.com
 0.0.0.0 aznetsolutions.com
 0.0.0.0 azureautomation.co.uk
@@ -79,16 +80,15 @@
 0.0.0.0 bangkok-orchids.com
 0.0.0.0 banzaimonkey.com
 0.0.0.0 bapo.granudan.cn
-0.0.0.0 baritaco.com
 0.0.0.0 bbs.sunwy.org
 0.0.0.0 bbs1.marisfrolg.com
 0.0.0.0 bd11.52lishi.com
 0.0.0.0 bd12.52lishi.com
 0.0.0.0 bd18.52lishi.com
 0.0.0.0 bd19.52lishi.com
+0.0.0.0 beachbeaty.com
 0.0.0.0 beibei.xx007.cc
 0.0.0.0 bepgroup.com.hk
-0.0.0.0 bergamote.org
 0.0.0.0 besserblok-ufa.ru
 0.0.0.0 besttasimacilik.com.tr
 0.0.0.0 beta.pterosol.com
@@ -103,6 +103,7 @@
 0.0.0.0 blog.241optical.com
 0.0.0.0 blog.hanxe.com
 0.0.0.0 bolidar.dnset.com
+0.0.0.0 borawebservicioscl1.com
 0.0.0.0 bovientix.com
 0.0.0.0 bpo.correct.go.th
 0.0.0.0 brasstec.com.br
@@ -112,15 +113,16 @@
 0.0.0.0 bugansavings.com
 0.0.0.0 byqkdy.com
 0.0.0.0 c.vvvvvvvvv.ga
-0.0.0.0 c9f44961.ngrok.io
 0.0.0.0 cameli.vn
 0.0.0.0 cantikekinian.com
 0.0.0.0 caravella.com.br
 0.0.0.0 cassovia.sk
 0.0.0.0 cbk.m.dodo52.com
 0.0.0.0 ccnn.xiaomier.cn
+0.0.0.0 cdn-10049480.file.myqcloud.com
 0.0.0.0 cdn.xiaoduoai.com
 0.0.0.0 cdnus.laboratoryconecpttoday.com
+0.0.0.0 ceirecrear.com.br
 0.0.0.0 cellas.sk
 0.0.0.0 cf.uuu9.com
 0.0.0.0 cf0.pw
@@ -128,7 +130,7 @@
 0.0.0.0 ch.rmu.ac.th
 0.0.0.0 changematterscounselling.com
 0.0.0.0 chanvribloc.com
-0.0.0.0 charm.bizfxr.com
+0.0.0.0 chattosport.com
 0.0.0.0 chedea.eu
 0.0.0.0 chinhdropfile.myvnc.com
 0.0.0.0 chinhdropfile80.myvnc.com
@@ -138,15 +140,17 @@
 0.0.0.0 chuckweiss.com
 0.0.0.0 clareiamente.clareiamente.com
 0.0.0.0 clearwaterriveroutfitting.com
-0.0.0.0 cleversoft.vn
 0.0.0.0 client.yaap.co.uk
 0.0.0.0 clinicamariademolina.com
+0.0.0.0 cmecobrancas.com
+0.0.0.0 cnhdsoft.com
 0.0.0.0 compesat.com
 0.0.0.0 complan.hu
 0.0.0.0 complanbt.hu
 0.0.0.0 comtechadsl.com
 0.0.0.0 config.kuaisousou.top
 0.0.0.0 consultingcy.com
+0.0.0.0 cosmea.pl
 0.0.0.0 counciloflight.bravepages.com
 0.0.0.0 cqjcc.org
 0.0.0.0 crittersbythebay.com
@@ -154,8 +158,6 @@
 0.0.0.0 csnserver.com
 0.0.0.0 csw.hu
 0.0.0.0 cyclomove.com
-0.0.0.0 czsl.91756.cn
-0.0.0.0 d3.99ddd.com
 0.0.0.0 d9.99ddd.com
 0.0.0.0 da.alibuf.com
 0.0.0.0 daithanhphung.com
@@ -167,15 +169,18 @@
 0.0.0.0 davinadouthard.com
 0.0.0.0 dawaphoto.co.kr
 0.0.0.0 daynightgym.com
+0.0.0.0 dbssistem.com.tr
 0.0.0.0 de.gsearch.com.de
+0.0.0.0 dehkadenovin.com
 0.0.0.0 deixameuskls.tripod.com
-0.0.0.0 demo10.onbm.ir
+0.0.0.0 demo13.dsdemosite.com
 0.0.0.0 denkagida.com.tr
 0.0.0.0 depgrup.com
 0.0.0.0 depot7.com
 0.0.0.0 derivativespro.in
 0.0.0.0 desighiza.com
 0.0.0.0 detafa.com
+0.0.0.0 dev.nona-polska.pl
 0.0.0.0 dev.sebpo.net
 0.0.0.0 dev1.xicom.us
 0.0.0.0 dev5.mypagevn.com
@@ -185,10 +190,9 @@
 0.0.0.0 dfzm.91756.cn
 0.0.0.0 dgecolesdepolice.bf
 0.0.0.0 dgnj.cn
-0.0.0.0 dhlservices.duckdns.org
 0.0.0.0 diazavendano.cl
 0.0.0.0 dichvuvesinhcongnghiep.top
-0.0.0.0 dienmayminhan.com
+0.0.0.0 dienmaycu.vn
 0.0.0.0 digilib.dianhusada.ac.id
 0.0.0.0 digital-marketing-institute-delhi.empeeevents.com
 0.0.0.0 digitaldog.de
@@ -199,13 +203,12 @@
 0.0.0.0 dl.198424.com
 0.0.0.0 dl.dzqzd.com
 0.0.0.0 dl.kuaile-u.com
-0.0.0.0 dl2.soft-lenta.ru
 0.0.0.0 dlist.iqilie.com
 0.0.0.0 dmresor.se
-0.0.0.0 dnn.alibuf.com
 0.0.0.0 dns.alibuf.com
 0.0.0.0 dodsonimaging.com
 0.0.0.0 don.viameventos.com.br
+0.0.0.0 dongiln.co
 0.0.0.0 donmago.com
 0.0.0.0 doostansocks.ir
 0.0.0.0 doransky.info
@@ -214,22 +217,16 @@
 0.0.0.0 down.gogominer.com
 0.0.0.0 down.haote.com
 0.0.0.0 down.pcclear.com
-0.0.0.0 down.pdflist.cqhbkjzx.com
-0.0.0.0 down.softlist.tcroot.cn
 0.0.0.0 down.startools.co.kr
 0.0.0.0 down.tgjkbx.cn
 0.0.0.0 down.upzxt.com
 0.0.0.0 down.webbora.com
 0.0.0.0 down.xrpdf.com
 0.0.0.0 down1.arpun.com
-0.0.0.0 downcdn.xianshuabao.com
 0.0.0.0 download.1ys.com
-0.0.0.0 download.beveilingsdienst.info
 0.0.0.0 download.doumaibiji.cn
 0.0.0.0 download.kaobeitu.com
-0.0.0.0 download.ktkt.com
 0.0.0.0 download.pdf00.cn
-0.0.0.0 download.rising.com.cn
 0.0.0.0 download.skycn.com
 0.0.0.0 download.ttz3.cn
 0.0.0.0 download.ware.ru
@@ -241,11 +238,9 @@
 0.0.0.0 drools-moved.46999.n3.nabble.com
 0.0.0.0 droversmouser.at
 0.0.0.0 druzim.freewww.biz
-0.0.0.0 ds.obmenvsemfiles.com
 0.0.0.0 dtsay.xyz
 0.0.0.0 dudulm.com
 0.0.0.0 dusdn.mireene.com
-0.0.0.0 dw.58wangdun.com
 0.0.0.0 dx.qqyewu.com
 0.0.0.0 dx1.qqtn.com
 0.0.0.0 dx2.qqtn.com
@@ -254,7 +249,6 @@
 0.0.0.0 dzinestudio87.co.uk
 0.0.0.0 e.dangeana.com
 0.0.0.0 easydown.workday360.cn
-0.0.0.0 ebook.w3wvg.com
 0.0.0.0 edicolanazionale.it
 0.0.0.0 emadamini.co.za
 0.0.0.0 emir-elbahr.com
@@ -265,38 +259,34 @@
 0.0.0.0 ermekanik.com
 0.0.0.0 esolvent.pl
 0.0.0.0 esteteam.org
-0.0.0.0 evdeyizrahatiz.com
 0.0.0.0 exposvision.com
 0.0.0.0 ezfintechcorp.com
 0.0.0.0 fafhoafouehfuh.su
 0.0.0.0 fairyqueenstore.com
-0.0.0.0 fastsoft.onlinedown.net
 0.0.0.0 fazi.pl
+0.0.0.0 ffv322.ru
+0.0.0.0 ffv32223.ru
 0.0.0.0 fidiag.kymco.com
 0.0.0.0 fifa555easy.329263.com
 0.0.0.0 figuig.net
 0.0.0.0 fileco.jobkorea.co.kr
 0.0.0.0 filen3.utengine.co.kr
-0.0.0.0 filen5.utengine.co.kr
-0.0.0.0 files.fqapps.com
 0.0.0.0 files.rakbot.ru
 0.0.0.0 files6.uludagbilisim.com
 0.0.0.0 fishingbigstore.com
 0.0.0.0 fitmanacademy.com
 0.0.0.0 fkd.derpcity.ru
 0.0.0.0 flex.ru
-0.0.0.0 flood-protection.org
 0.0.0.0 fordlamdong.com.vn
 0.0.0.0 foreverprecious.org
 0.0.0.0 foxfennecs.com
 0.0.0.0 frin.ng
 0.0.0.0 fte.m.dodo52.com
-0.0.0.0 ftpcnc-p2sp.pconline.com.cn
 0.0.0.0 ftpftpftp.com
 0.0.0.0 funletters.net
 0.0.0.0 futuregraphics.com.ar
-0.0.0.0 g.7230.com
 0.0.0.0 g0ogle.free.fr
+0.0.0.0 gainsdirectory.com
 0.0.0.0 galuhtea.com
 0.0.0.0 gamebazaar.club
 0.0.0.0 gamee.top
@@ -305,10 +295,9 @@
 0.0.0.0 gateway-heide.de
 0.0.0.0 gateway.ethlqd.com
 0.0.0.0 genesisconstruction.co.za
-0.0.0.0 genstaff.gov.kg
 0.0.0.0 germistonmiraclecentre.co.za
 0.0.0.0 ghislain.dartois.pagesperso-orange.fr
-0.0.0.0 gimscompany.com
+0.0.0.0 ghwls44.gabia.io
 0.0.0.0 glitzygal.net
 0.0.0.0 globaleuropeans.com
 0.0.0.0 gmassurance.fr
@@ -316,14 +305,13 @@
 0.0.0.0 go.xsuad.com
 0.0.0.0 google.ghststr.com
 0.0.0.0 govhotel.us
-0.0.0.0 grafchekloder.rebatesrule.net
 0.0.0.0 granportale.com.br
+0.0.0.0 grantoveporadenstvi.eu
 0.0.0.0 gray-takeo-7170.chowder.jp
 0.0.0.0 green100.cn
 0.0.0.0 greenfood.sa.com
 0.0.0.0 gssgroups.com
 0.0.0.0 gundemdekihaber.com
-0.0.0.0 gx-10012947.file.myqcloud.com
 0.0.0.0 habbotips.free.fr
 0.0.0.0 hagebakken.no
 0.0.0.0 haisannhatrang.com.vn
@@ -332,12 +320,11 @@
 0.0.0.0 handrush.com
 0.0.0.0 hanoihub.vn
 0.0.0.0 hazel-azure.co.th
-0.0.0.0 hdxa.net
 0.0.0.0 healtina.com
 0.0.0.0 heavenif.co.za
 0.0.0.0 hellomessager.com
-0.0.0.0 hevizapartments.net
 0.0.0.0 hfsoftware.cl
+0.0.0.0 hi-event.vn
 0.0.0.0 hingcheong.hk
 0.0.0.0 hldschool.com
 0.0.0.0 hmbwgroup.com
@@ -348,13 +335,13 @@
 0.0.0.0 hotel-le-relais-des-moulins.com
 0.0.0.0 hottestxxxvideo.com
 0.0.0.0 housewifes.co
-0.0.0.0 hseda.com
 0.0.0.0 hsmwebapp.com
 0.0.0.0 htxl.cn
 0.0.0.0 huishuren.nu
 0.0.0.0 hwsrv-675710.hostwindsdns.com
 0.0.0.0 hwsrv-720737.hostwindsdns.com
 0.0.0.0 hyadegari.ir
+0.0.0.0 hyundainamdinh.org
 0.0.0.0 hyvat-olutravintolat.fi
 0.0.0.0 i333.wang
 0.0.0.0 ibda.adv.br
@@ -363,13 +350,11 @@
 0.0.0.0 ileolaherbalcare.com.ng
 0.0.0.0 imellda.com
 0.0.0.0 imenizeh.ir
+0.0.0.0 imobiliarianossacasamt.com.br
 0.0.0.0 impression-gobelet.com
 0.0.0.0 in-sect.com
 0.0.0.0 inapadvance.com
 0.0.0.0 incrediblepixels.com
-0.0.0.0 incredicole.com
-0.0.0.0 infogue.id
-0.0.0.0 ini.egkj.com
 0.0.0.0 innovation4crisis.org
 0.0.0.0 instanttechnology.com.au
 0.0.0.0 intelicasa.ro
@@ -380,8 +365,8 @@
 0.0.0.0 iran-gold.com
 0.0.0.0 iremart.es
 0.0.0.0 isso.ps
-0.0.0.0 it.shopforever.pk
 0.0.0.0 itd.m.dodo52.com
+0.0.0.0 itohukuk.com
 0.0.0.0 itrigger.cn
 0.0.0.0 itsnixielou.com
 0.0.0.0 ixlonbcc.com
@@ -394,6 +379,7 @@
 0.0.0.0 javatank.ru
 0.0.0.0 jcedu.org
 0.0.0.0 jessymart.flexyhub.com
+0.0.0.0 jim.webengineerteam.com
 0.0.0.0 jjjexx.329263.com
 0.0.0.0 jmtc.91756.cn
 0.0.0.0 jocuri.trophygaming.net
@@ -405,11 +391,12 @@
 0.0.0.0 jsd618.com
 0.0.0.0 jsq.m.dodo52.com
 0.0.0.0 jsya.co.kr
+0.0.0.0 jumla.biz
 0.0.0.0 jutvac.com
 0.0.0.0 jvalert.com
 0.0.0.0 jyv.fi
-0.0.0.0 jzny.com.cn
-0.0.0.0 k3.etfiber.net
+0.0.0.0 k.ludong.tv
+0.0.0.0 kabiru.ru
 0.0.0.0 kachsurf.mylftv.com
 0.0.0.0 kamasu11.cafe24.com
 0.0.0.0 kamisecurity.com.my
@@ -420,6 +407,7 @@
 0.0.0.0 kdsp.co.kr
 0.0.0.0 kejpa.com
 0.0.0.0 kenareh-gostare-aras.ir
+0.0.0.0 kgfs3.329263.com
 0.0.0.0 khunnapap.com
 0.0.0.0 kiencuonghotel.vn
 0.0.0.0 kjbm9.mof.gov.cn
@@ -432,7 +420,6 @@
 0.0.0.0 kupaliskohs.sk
 0.0.0.0 kuznetsov.ca
 0.0.0.0 kwanfromhongkong.com
-0.0.0.0 kwikomfi-lab.com
 0.0.0.0 lagalaxy88easy.329263.com
 0.0.0.0 lameguard.ru
 0.0.0.0 lammaixep.com
@@ -445,6 +432,8 @@
 0.0.0.0 learnbuddy.com
 0.0.0.0 learningcomputing.org
 0.0.0.0 lebedyn.info
+0.0.0.0 lecafedesartistes.com
+0.0.0.0 leukkado.be
 0.0.0.0 lfcsghosi.co.in
 0.0.0.0 lhbfirst.com
 0.0.0.0 libya-info.com
@@ -452,6 +441,7 @@
 0.0.0.0 linx.li
 0.0.0.0 lists.ibiblio.org
 0.0.0.0 lists.mplayerhq.hu
+0.0.0.0 lodergord.com
 0.0.0.0 log.yundabao.cn
 0.0.0.0 lsyr.net
 0.0.0.0 lt02.datacomspecialists.net
@@ -461,28 +451,27 @@
 0.0.0.0 luisnacht.com.ar
 0.0.0.0 lvr.samacomplus.com
 0.0.0.0 m.0757kd.cn
-0.0.0.0 m93701t2.beget.tech
 0.0.0.0 mackleyn.com
 0.0.0.0 magda.zelentourism.com
 0.0.0.0 magic-living.com
 0.0.0.0 makosoft.hu
 0.0.0.0 malin-akerman.net
+0.0.0.0 mangawt.com
 0.0.0.0 margopassadorestylist.com
+0.0.0.0 mariereiko.com
 0.0.0.0 maringareservas.com.br
 0.0.0.0 marketprice.com.ng
 0.0.0.0 marksidfgs.ug
-0.0.0.0 marocaji.com
 0.0.0.0 matt-e.it
 0.0.0.0 mattayom31.go.th
-0.0.0.0 maynenkhivinhphat.com
 0.0.0.0 mazury4x4.pl
 0.0.0.0 mbgrm.com
+0.0.0.0 mecbox.cn
 0.0.0.0 mediamatkat.fi
 0.0.0.0 medianews.ge
 0.0.0.0 medlinee.com
 0.0.0.0 medreg.uz
 0.0.0.0 meert.org
-0.0.0.0 meeweb.com
 0.0.0.0 meitao886.com
 0.0.0.0 members.chello.nl
 0.0.0.0 members.westnet.com.au
@@ -497,6 +486,7 @@
 0.0.0.0 micalle.com.au
 0.0.0.0 mirror.mypage.sk
 0.0.0.0 mis.nbcc.ac.th
+0.0.0.0 misskproductions.co.za
 0.0.0.0 misterson.com
 0.0.0.0 mistydeblasiophotography.com
 0.0.0.0 mkk09.kr
@@ -509,17 +499,18 @@
 0.0.0.0 monmariage.info
 0.0.0.0 moscow11.at
 0.0.0.0 mountveederwines.com
+0.0.0.0 movingsolutionsus.com
 0.0.0.0 moyo.co.kr
 0.0.0.0 mperez.com.ar
 0.0.0.0 mrtool.ir
 0.0.0.0 msecurity.ro
+0.0.0.0 mteng.mmj7.com
 0.0.0.0 mtfelektroteknik.com
-0.0.0.0 mudita.vn
 0.0.0.0 mueblesjcp.cl
+0.0.0.0 mutec.jp
 0.0.0.0 mv360.net
 0.0.0.0 mvb.kz
 0.0.0.0 mxpiqw.am.files.1drv.com
-0.0.0.0 mydesign.thinkeraibirds.com
 0.0.0.0 myexpertca.in
 0.0.0.0 myhood.cl
 0.0.0.0 myo.net.au
@@ -529,6 +520,7 @@
 0.0.0.0 mywp.asia
 0.0.0.0 myyttilukukansasta.fi
 0.0.0.0 naildumarche.com
+0.0.0.0 namuvpn.com
 0.0.0.0 narty.laserteam.pl
 0.0.0.0 naturalma.es
 0.0.0.0 naturepack.cc
@@ -538,11 +530,13 @@
 0.0.0.0 nebraskacharters.com.au
 0.0.0.0 neocity1.free.fr
 0.0.0.0 nerve.untergrund.net
+0.0.0.0 news.abfakerman.ir
 0.0.0.0 news.omumusic.net
 0.0.0.0 newsun-shop.com
 0.0.0.0 newxing.com
+0.0.0.0 nexity.me
 0.0.0.0 nfbio.com
-0.0.0.0 ngoaingu.garage.com.vn
+0.0.0.0 nkdhub.com
 0.0.0.0 nofound.000webhostapp.com
 0.0.0.0 norperuinge.com.pe
 0.0.0.0 nprg.ru
@@ -552,12 +546,14 @@
 0.0.0.0 oa.hys.cn
 0.0.0.0 obnova.zzux.com
 0.0.0.0 obseques-conseils.com
+0.0.0.0 ohe.ie
 0.0.0.0 oknoplastik.sk
 0.0.0.0 omega.az
+0.0.0.0 omitkyspisar.cz
 0.0.0.0 omsk-osma.ru
 0.0.0.0 omuzgor.tj
 0.0.0.0 onestin.ro
-0.0.0.0 openclient.sroinfo.com
+0.0.0.0 onlyart.in
 0.0.0.0 operasanpiox.bravepages.com
 0.0.0.0 ophtalmiccenter.com
 0.0.0.0 opolis.io
@@ -576,8 +572,8 @@
 0.0.0.0 pack301.bravepages.com
 0.0.0.0 pakdesighee.com
 0.0.0.0 palochusvet.szm.com
-0.0.0.0 paperbrick.peachtest.com
 0.0.0.0 partyflix.net
+0.0.0.0 pat4.jetos.com
 0.0.0.0 pat4.qpoe.com
 0.0.0.0 patch2.51lg.com
 0.0.0.0 patch2.99ddd.com
@@ -586,8 +582,8 @@
 0.0.0.0 pawel-sikora.pl
 0.0.0.0 pcginsure.com
 0.0.0.0 pcsoori.com
-0.0.0.0 peachtest.com
 0.0.0.0 pedidoslalacteo.com.ar
+0.0.0.0 peterssandmay.com
 0.0.0.0 petromltd.com
 0.0.0.0 ph4s.ru
 0.0.0.0 phamchilong.com
@@ -597,15 +593,19 @@
 0.0.0.0 pink99.com
 0.0.0.0 pocketfsa.com
 0.0.0.0 podiatristlansdale.com
+0.0.0.0 pokids.vn
 0.0.0.0 ponto50.com.br
 0.0.0.0 poolbook.ir
 0.0.0.0 portal.nfbpc.org
 0.0.0.0 ppl.ac.id
+0.0.0.0 prepaenunsoloexamen.academiagalileoac.com
+0.0.0.0 primaart.vn
 0.0.0.0 probost.cz
 0.0.0.0 prosoc.nl
 0.0.0.0 prowin.co.th
 0.0.0.0 pujashoppe.in
 0.0.0.0 purelondonhyg.com
+0.0.0.0 purewood.in
 0.0.0.0 qchms.qcpro.vn
 0.0.0.0 qfjys.com.img.800cdn.com
 0.0.0.0 qmsled.com
@@ -634,13 +634,13 @@
 0.0.0.0 robertmcardle.com
 0.0.0.0 robotrade.com.vn
 0.0.0.0 rollscar.pk
+0.0.0.0 rosdal.abouttobeawesome.com
 0.0.0.0 rossogato.com
+0.0.0.0 royalplusmobile.ir
 0.0.0.0 ruisgood.ru
 0.0.0.0 rusch.nu
 0.0.0.0 s.51shijuan.com
 0.0.0.0 s.kk30.com
-0.0.0.0 s14b.91danji.com
-0.0.0.0 s14b.groundyun.cn
 0.0.0.0 sabiupd.compress.to
 0.0.0.0 saboorjaam.ir
 0.0.0.0 sabupda.vizvaz.com
@@ -667,14 +667,14 @@
 0.0.0.0 shacked.webdepot.co.il
 0.0.0.0 shahtoba.faqserv.com
 0.0.0.0 shaoxiaofei.cn
-0.0.0.0 share.dmca.gripe
 0.0.0.0 sharjahas.com
-0.0.0.0 shembefoundation.com
 0.0.0.0 shy-obi-0122.jellybean.jp
+0.0.0.0 simlun.com.ar
 0.0.0.0 simpl.pw
 0.0.0.0 sinastorage.cn
 0.0.0.0 sindicato1ucm.cl
 0.0.0.0 sinerjias.com.tr
+0.0.0.0 siriyun.top
 0.0.0.0 sistemagema.com.ar
 0.0.0.0 skyscan.com
 0.0.0.0 slmconduct.dk
@@ -685,7 +685,6 @@
 0.0.0.0 sncshyamavan.org
 0.0.0.0 snp2m.poliupg.ac.id
 0.0.0.0 social.scottsimard.com
-0.0.0.0 socialhelp.ir
 0.0.0.0 sodmalwa.pl
 0.0.0.0 softdown.55.la
 0.0.0.0 somudigital.in
@@ -708,13 +707,12 @@
 0.0.0.0 starbeatdance.com
 0.0.0.0 starcountry.net
 0.0.0.0 static.ilclock.com
-0.0.0.0 static.topxgun.com
 0.0.0.0 stecit.nl
 0.0.0.0 stevewalker.com.au
 0.0.0.0 story-maker.jp
+0.0.0.0 stubbackup.ru
 0.0.0.0 suaritmafirmalari.com
 0.0.0.0 support.clz.kr
-0.0.0.0 sv.pvroe.com
 0.0.0.0 svkacademy.com
 0.0.0.0 svn.cc.jyu.fi
 0.0.0.0 sweaty.dk
@@ -730,15 +728,13 @@
 0.0.0.0 teamtnt.red
 0.0.0.0 teardrop-productions.ro
 0.0.0.0 technoites.com
+0.0.0.0 tecnobella.cl
 0.0.0.0 tehrenberg.com
 0.0.0.0 telescopelms.com
 0.0.0.0 telsiai.info
-0.0.0.0 tepatitlan.gob.mx
 0.0.0.0 test.iyibakkendine.com
-0.0.0.0 test.presta-com.ru
 0.0.0.0 testdatabaseforcepoint.com
 0.0.0.0 thaibbqculver.com
-0.0.0.0 thaisell.com
 0.0.0.0 tharringtonsponsorship.com
 0.0.0.0 thc-annex.com
 0.0.0.0 theclinicabarros.com
@@ -747,7 +743,6 @@
 0.0.0.0 theptiendat.com
 0.0.0.0 thepyramids.nl
 0.0.0.0 therecruiter.io
-0.0.0.0 thornadops.com
 0.0.0.0 thosewebbs.com
 0.0.0.0 thuong.bidiworks.com
 0.0.0.0 tianangdep.com
@@ -766,7 +761,6 @@
 0.0.0.0 tulli.info
 0.0.0.0 tumso.org
 0.0.0.0 tuneup.ibk.me
-0.0.0.0 tup.com.cn
 0.0.0.0 tutuler.com
 0.0.0.0 uc-56.ru
 0.0.0.0 ufabet168168.329263.com
@@ -776,14 +770,11 @@
 0.0.0.0 ulusalofis.com
 0.0.0.0 undantagforlag.se
 0.0.0.0 unicorpbrunei.com
-0.0.0.0 unilevercopabr.mbiz20.net
 0.0.0.0 uniquehall.net
 0.0.0.0 unitenrk.com
 0.0.0.0 unokaoeojoejfghr.ru
 0.0.0.0 upd.m.dodo52.com
 0.0.0.0 update.iwang8.com
-0.0.0.0 update.my.99.com
-0.0.0.0 updateflashiplayer.xyz
 0.0.0.0 urgentmessage.org
 0.0.0.0 usd-gold.com
 0.0.0.0 users.skynet.be
@@ -802,9 +793,11 @@
 0.0.0.0 vigilar.com.br
 0.0.0.0 vip.recommendedtoyoo.com
 0.0.0.0 virustreatments.empeeevents.com
-0.0.0.0 visualdata.ru
+0.0.0.0 visagepk.com
+0.0.0.0 vitinhvnt.com
 0.0.0.0 vitromed.ro
 0.0.0.0 vjhascv.ru
+0.0.0.0 voyageur.sisnettdesign.com
 0.0.0.0 vrrumover0.vrrum0.farted.net
 0.0.0.0 vvff.in
 0.0.0.0 w.zhzy999.net
@@ -814,6 +807,7 @@
 0.0.0.0 warriorllc.com
 0.0.0.0 wbd.5636.com
 0.0.0.0 wbkmt.com
+0.0.0.0 webarte.com.br
 0.0.0.0 webq.wikaba.com
 0.0.0.0 webserverthai.com
 0.0.0.0 webservice99.com
@@ -821,7 +815,6 @@
 0.0.0.0 welcometothefuture.com
 0.0.0.0 whgaty.com
 0.0.0.0 wiebe-sanitaer.de
-0.0.0.0 wishngifts.com
 0.0.0.0 wmd9e.a3i1vvv.feteboc.com
 0.0.0.0 wnksupply.co.th
 0.0.0.0 wood-expert.net
@@ -836,17 +829,15 @@
 0.0.0.0 www2.recepty5.com
 0.0.0.0 x2vn.com
 0.0.0.0 xia.vzboot.com
-0.0.0.0 xiaidown.com
 0.0.0.0 xiaoma-10021647.file.myqcloud.com
 0.0.0.0 xinwenwang123.cn
 0.0.0.0 xirfad.com
-0.0.0.0 xn--20gb-hediyefrsati-nvc.com
 0.0.0.0 xtremeforumz.com
 0.0.0.0 xxwl.kuaiyunds.com
-0.0.0.0 xxxze.co.nu
 0.0.0.0 yeez.net
 0.0.0.0 yesky.51down.org.cn
 0.0.0.0 yesky.xzstatic.com
+0.0.0.0 yiyangjz.cn
 0.0.0.0 yuluobo.com
 0.0.0.0 yun-1.lenku.cn
 0.0.0.0 yuyu02004-10043918.file.myqcloud.com
@@ -862,8 +853,10 @@
 0.0.0.0 zeytinyagisabun.com
 0.0.0.0 zhetysu360.kz
 0.0.0.0 zhzy999.net
+0.0.0.0 ziliao.yunkaodian.com
 0.0.0.0 zj.9553.com
 0.0.0.0 zmmore.com
 0.0.0.0 zoetermeerov.nl
 0.0.0.0 zoeydeutchweb.com
 0.0.0.0 zonefound.com.cn
+0.0.0.0 zsinstrument.com
diff --git a/urlhaus-filter-hosts.txt b/urlhaus-filter-hosts.txt
index 666ad6e9..e1545d1e 100644
--- a/urlhaus-filter-hosts.txt
+++ b/urlhaus-filter-hosts.txt
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Hosts Blocklist
-# Updated: Thu, 07 May 2020 12:09:37 UTC
+# Updated: Fri, 08 May 2020 00:09:41 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -1598,6 +1598,7 @@
 0.0.0.0 aaswim.co.za
 0.0.0.0 aatlantictreeservices.com
 0.0.0.0 aavasolution.com
+0.0.0.0 aaversalrelo.com
 0.0.0.0 aavip.cn
 0.0.0.0 aavra.com.ar
 0.0.0.0 aawajmedia.com
@@ -3859,6 +3860,7 @@
 0.0.0.0 allenmarks.se
 0.0.0.0 allens.youcheckit.ca
 0.0.0.0 allenservice.ga
+0.0.0.0 allexampdf.com
 0.0.0.0 allexcursion.com
 0.0.0.0 allexpressstores.com
 0.0.0.0 alleyesonus.pt
@@ -4612,6 +4614,7 @@
 0.0.0.0 analisiclinichecatania.it
 0.0.0.0 analiskimia.undiksha.ac.id
 0.0.0.0 analistarastirma.com
+0.0.0.0 analistaspadel.com
 0.0.0.0 analizator.online
 0.0.0.0 analytics.theminersunion.com
 0.0.0.0 analyze-it.co.za
@@ -5550,6 +5553,7 @@
 0.0.0.0 arabcb.org
 0.0.0.0 arabcoegypt.com
 0.0.0.0 arabdubaisafari.com
+0.0.0.0 arabenergyclub.org
 0.0.0.0 arabianbrother.com
 0.0.0.0 arabiantongue.net
 0.0.0.0 arabiantravelhouse.com
@@ -11772,6 +11776,7 @@
 0.0.0.0 bushmansafaris.co.zw
 0.0.0.0 bushnell.by
 0.0.0.0 business-blueprint.top-startups.com
+0.0.0.0 business-expert.md
 0.0.0.0 business-insight.aptoilab.com
 0.0.0.0 business-solution-ltd.org
 0.0.0.0 business.bityaris.com
@@ -14430,6 +14435,7 @@
 0.0.0.0 cjcmail-oln040092069015.outbound.protection.sketchwefair-watduoliprudential.com.watchdogdns.duckdns.org
 0.0.0.0 cjcurrent.com
 0.0.0.0 cjd.com.br
+0.0.0.0 cjemskayyoor.com
 0.0.0.0 cjextm.ro
 0.0.0.0 cjj.lanibio.net
 0.0.0.0 cjllcmonthlysub.ga
@@ -15974,6 +15980,7 @@
 0.0.0.0 coskunkuyumculuk.com
 0.0.0.0 cosmatos.org
 0.0.0.0 cosme.kyawaiiiii.com
+0.0.0.0 cosmea.pl
 0.0.0.0 cosmeis.com
 0.0.0.0 cosmeliti.com
 0.0.0.0 cosmet-log.com
@@ -17961,6 +17968,7 @@
 0.0.0.0 degustibeer.it
 0.0.0.0 deheld100.nl
 0.0.0.0 dehkadeh-tameshk.ir
+0.0.0.0 dehkadenovin.com
 0.0.0.0 dehlie.dk
 0.0.0.0 dehneshin.com
 0.0.0.0 dehydrated.sk
@@ -18728,6 +18736,7 @@
 0.0.0.0 dev.networkscy.com
 0.0.0.0 dev.nextg.io
 0.0.0.0 dev.nida.ac.th
+0.0.0.0 dev.nona-polska.pl
 0.0.0.0 dev.novembit.com
 0.0.0.0 dev.optitek.com
 0.0.0.0 dev.pacificsymposium.org
@@ -20879,6 +20888,7 @@
 0.0.0.0 ds-al.er42.org
 0.0.0.0 ds-cocoa.com
 0.0.0.0 ds-stoneroots.com
+0.0.0.0 ds.nashobmenfiles.com
 0.0.0.0 ds.obmenvsemfiles.com
 0.0.0.0 ds.veedence.co.uk
 0.0.0.0 ds04.projectstatus.co.uk
@@ -24211,6 +24221,7 @@
 0.0.0.0 f0269025.xsph.ru
 0.0.0.0 f0316439.xsph.ru
 0.0.0.0 f0384177.xsph.ru
+0.0.0.0 f0434589.xsph.ru
 0.0.0.0 f0hc7osjnl2vi61g.com
 0.0.0.0 f0jgqwejaisdqjwnqwe.com
 0.0.0.0 f12.file-upload.com
@@ -27083,6 +27094,7 @@
 0.0.0.0 gameforte.com
 0.0.0.0 gamehack.chat.ru
 0.0.0.0 gamelaboratory.ru
+0.0.0.0 gamelounge.club
 0.0.0.0 gamemechanics.com
 0.0.0.0 gameonline.web.id
 0.0.0.0 gameonline11.com
@@ -28703,6 +28715,7 @@
 0.0.0.0 goroute3.com
 0.0.0.0 goruklecilingirci.com
 0.0.0.0 goruklefitness.com
+0.0.0.0 goschiele.com
 0.0.0.0 goshhh.com
 0.0.0.0 goshowcar.com
 0.0.0.0 gosiltechono.co
@@ -28913,6 +28926,7 @@
 0.0.0.0 grant-massage.ru
 0.0.0.0 granthawkinsdesign.com
 0.0.0.0 grantkulinar.ru
+0.0.0.0 grantoveporadenstvi.eu
 0.0.0.0 grantpromotion.icu
 0.0.0.0 grantwritersresource.com
 0.0.0.0 granube.us-east-1.elasticbeanstalk.com
@@ -30823,6 +30837,7 @@
 0.0.0.0 hhold.ru
 0.0.0.0 hhoorn.nl
 0.0.0.0 hhristov.net
+0.0.0.0 hi-event.vn
 0.0.0.0 hi-fam.com
 0.0.0.0 hi-shop.ml
 0.0.0.0 hialeahprivateinvestigators.com
@@ -31180,6 +31195,7 @@
 0.0.0.0 hobi.de
 0.0.0.0 hobimsiseyler.com
 0.0.0.0 hobokendoulas.com
+0.0.0.0 hobsnchimney.in
 0.0.0.0 hobus.zema-sul.com
 0.0.0.0 hocalarlaofis.com
 0.0.0.0 hocdelamgi.000webhostapp.com
@@ -32169,6 +32185,7 @@
 0.0.0.0 hyundai-danang.com.vn
 0.0.0.0 hyundai-services.ir
 0.0.0.0 hyundailongbien.hanoi.vn
+0.0.0.0 hyundainamdinh.org
 0.0.0.0 hyunmee.se
 0.0.0.0 hyunmoon.nfile.net
 0.0.0.0 hyvat-olutravintolat.fi
@@ -41367,6 +41384,7 @@
 0.0.0.0 luzfloral.com
 0.0.0.0 luzy.vn
 0.0.0.0 lvajnczdy.cf
+0.0.0.0 lvecarehomes.com
 0.0.0.0 lvita.co
 0.0.0.0 lvksdy.cf
 0.0.0.0 lvr.samacomplus.com
@@ -42942,6 +42960,7 @@
 0.0.0.0 marienthal.info
 0.0.0.0 marientumba.com
 0.0.0.0 mariepeters.com
+0.0.0.0 mariereiko.com
 0.0.0.0 mariesshopoutfit.com
 0.0.0.0 marieva.pro
 0.0.0.0 marijuana420site.com
@@ -45938,6 +45957,7 @@
 0.0.0.0 moving-dubai.com
 0.0.0.0 movingimagesmultimedia.com
 0.0.0.0 movingmountainsfoods.com
+0.0.0.0 movingsolutionsus.com
 0.0.0.0 mowbaza.chat.ru
 0.0.0.0 mowdsdflogin.usa.cc
 0.0.0.0 mowwierzbica.lh.pl
@@ -49935,6 +49955,7 @@
 0.0.0.0 onlineyogaplatform.com
 0.0.0.0 onlink-aoiuvr.com
 0.0.0.0 onlyapteka.ru
+0.0.0.0 onlyart.in
 0.0.0.0 onlycane.in
 0.0.0.0 onlychild.org
 0.0.0.0 onlycocktaildresses.com
@@ -50653,6 +50674,7 @@
 0.0.0.0 p2.jugalvyas.com
 0.0.0.0 p2.lingpao8.com
 0.0.0.0 p23tv.studio
+0.0.0.0 p2b.in
 0.0.0.0 p2btechnologies.com
 0.0.0.0 p2piptv.net
 0.0.0.0 p2pmedia.org
@@ -53396,6 +53418,7 @@
 0.0.0.0 priintzone.com
 0.0.0.0 prijzen-dakkapel.nl
 0.0.0.0 prim.sydneyrobbins.net
+0.0.0.0 primaart.vn
 0.0.0.0 primagamahomeschool.com
 0.0.0.0 primainnaparthotel.com
 0.0.0.0 primakaryasteel.com
@@ -54232,6 +54255,7 @@
 0.0.0.0 pureprotea.com
 0.0.0.0 purerls.com
 0.0.0.0 pureslimketoreviews.club
+0.0.0.0 purewood.in
 0.0.0.0 purgers-eventmanagement.de
 0.0.0.0 puri-puri.sg
 0.0.0.0 purifiq.co.za
@@ -60976,6 +61000,7 @@
 0.0.0.0 skiddump.ga
 0.0.0.0 skiddump.ru
 0.0.0.0 skidurham.com
+0.0.0.0 skidware-malwrhunterteams.com
 0.0.0.0 skiffinsconsuming.co.kr
 0.0.0.0 skiinspa.com
 0.0.0.0 skilancein.000webhostapp.com
@@ -61968,6 +61993,7 @@
 0.0.0.0 sophiacarta.de
 0.0.0.0 sophiacollegemumbai.com
 0.0.0.0 sophiahotel.vn
+0.0.0.0 sophiasbridalandtux.com
 0.0.0.0 sophiaskyhotel.vn
 0.0.0.0 sophiasuites-santorini.com
 0.0.0.0 sophiebarthelemy.fr
@@ -69599,6 +69625,7 @@
 0.0.0.0 update.covid-19.casa
 0.0.0.0 update.gk-mtm.ru
 0.0.0.0 update.hoiucvl.com
+0.0.0.0 update.id
 0.0.0.0 update.igra123.com
 0.0.0.0 update.iwang8.com
 0.0.0.0 update.jirisancapital.com
@@ -70063,6 +70090,7 @@
 0.0.0.0 vahan24.in
 0.0.0.0 vaheracouncil.com
 0.0.0.0 vahokad.sk
+0.0.0.0 vaico.co
 0.0.0.0 vaigacafe.com
 0.0.0.0 vaileather.com
 0.0.0.0 vaillantteknikservisibursa.com
@@ -70917,6 +70945,7 @@
 0.0.0.0 vinarycard.com
 0.0.0.0 vinaschool.com.vn
 0.0.0.0 vinastone.com
+0.0.0.0 vinastory.vn
 0.0.0.0 vinatuoi.com
 0.0.0.0 vinay29.000webhostapp.com
 0.0.0.0 vinaykhatri.in
diff --git a/urlhaus-filter-online.txt b/urlhaus-filter-online.txt
index 62aa3fe8..6e5a030a 100644
--- a/urlhaus-filter-online.txt
+++ b/urlhaus-filter-online.txt
@@ -1,5 +1,5 @@
 ! Title: abuse.ch URLhaus Online Malicious URL Blocklist
-! Updated: Thu, 07 May 2020 12:09:37 UTC
+! Updated: Fri, 08 May 2020 00:09:41 UTC
 ! Expires: 1 day (update frequency)
 ! Repo: https://gitlab.com/curben/urlhaus-filter
 ! License: https://creativecommons.org/publicdomain/zero/1.0/
@@ -11,22 +11,26 @@
 1.246.222.123
 1.246.222.134
 1.246.222.138
+1.246.222.14
 1.246.222.153
 1.246.222.165
 1.246.222.174
 1.246.222.20
 1.246.222.228
+1.246.222.232
 1.246.222.234
 1.246.222.237
 1.246.222.245
 1.246.222.36
 1.246.222.38
+1.246.222.4
 1.246.222.41
 1.246.222.43
 1.246.222.44
 1.246.222.49
 1.246.222.63
 1.246.222.69
+1.246.222.80
 1.246.222.83
 1.246.222.87
 1.246.222.98
@@ -46,10 +50,12 @@
 1.246.223.35
 1.246.223.39
 1.246.223.44
+1.246.223.52
 1.246.223.54
 1.246.223.55
 1.246.223.58
 1.246.223.6
+1.246.223.60
 1.246.223.61
 1.246.223.64
 1.246.223.71
@@ -69,8 +75,8 @@
 102.141.240.139
 102.141.241.14
 102.182.126.91
-103.138.73.125
 103.139.219.9
+103.16.145.25
 103.204.168.34
 103.212.225.238
 103.214.6.199
@@ -78,13 +84,15 @@
 103.230.62.146
 103.237.173.218
 103.240.249.121
+103.247.217.147
 103.254.205.135
 103.255.235.219
 103.31.47.214
 103.4.117.26
+103.42.252.130
 103.47.57.204
 103.49.56.38
-103.50.7.19
+103.50.4.235
 103.51.249.64
 103.60.110.111
 103.76.20.197
@@ -100,7 +108,6 @@
 104.168.198.194
 104.168.96.168
 104.175.99.243
-104.192.108.19
 104.33.52.85
 106.104.115.213
 106.105.197.111
@@ -120,17 +127,19 @@
 108.237.60.93
 108.77.246.129
 109.104.197.153
+109.107.249.137
 109.185.130.131
 109.185.173.21
 109.185.229.159
 109.185.26.178
 109.233.196.232
-109.248.58.238
 109.86.168.132
 109.86.85.253
 109.88.185.119
+109.95.15.210
 109.95.200.102
 109.96.57.246
+110.138.229.8
 110.154.1.149
 110.156.65.88
 110.179.30.218
@@ -142,6 +151,7 @@
 110.35.239.25
 110.49.109.152
 110.49.109.156
+110.74.209.190
 111.185.227.170
 111.185.231.198
 111.185.235.13
@@ -159,7 +169,9 @@
 111.38.27.80
 111.38.30.47
 111.38.9.115
+111.43.223.155
 111.61.52.53
+111.90.187.162
 111.93.169.90
 112.123.109.196
 112.123.61.56
@@ -178,11 +190,9 @@
 112.17.78.163
 112.17.80.187
 112.17.94.217
-112.170.165.71
 112.170.205.16
 112.170.205.85
 112.170.23.21
-112.184.221.213
 112.184.231.90
 112.185.140.99
 112.187.143.180
@@ -199,15 +209,17 @@
 112.27.91.241
 112.27.91.247
 112.28.98.61
+112.28.98.69
 112.28.98.70
 112.78.45.158
 113.102.207.149
 113.103.57.113
 113.11.95.254
-113.219.81.166
+113.133.224.99
 113.221.50.64
 113.240.186.132
 113.254.169.251
+113.53.52.8
 113.98.242.211
 114.168.158.117
 114.226.139.37
@@ -223,40 +235,30 @@
 114.234.162.101
 114.234.69.205
 114.235.153.32
+114.235.197.18
 114.235.202.95
 114.235.208.243
 114.235.246.18
 114.239.112.118
+114.239.39.47
 114.239.46.132
+114.239.75.243
 114.239.80.42
+114.32.246.196
 114.79.172.42
-115.216.208.162
+115.197.192.193
 115.224.68.109
 115.229.250.129
 115.50.0.131
-115.50.20.92
 115.52.163.73
 115.54.183.113
 115.55.205.188
+115.56.161.84
 115.63.186.148
 115.77.186.182
 115.85.65.211
 116.100.249.121
 116.103.218.57
-116.114.95.100
-116.114.95.164
-116.114.95.168
-116.114.95.176
-116.114.95.194
-116.114.95.198
-116.114.95.204
-116.114.95.210
-116.114.95.230
-116.114.95.44
-116.114.95.68
-116.114.95.7
-116.114.95.92
-116.149.240.73
 116.177.178.206
 116.177.179.202
 116.206.164.46
@@ -294,7 +296,6 @@
 119.201.68.12
 119.203.9.192
 119.206.188.150
-119.206.2.248
 119.212.101.8
 119.77.165.204
 12.171.247.123
@@ -310,7 +311,7 @@
 120.209.99.118
 120.209.99.122
 120.209.99.201
-120.212.211.71
+120.29.81.99
 120.52.120.11
 120.52.33.2
 120.71.104.6
@@ -321,21 +322,19 @@
 121.148.122.219
 121.148.72.160
 121.150.77.164
-121.154.107.249
 121.154.43.105
 121.155.233.13
 121.155.233.159
 121.159.208.28
 121.159.77.97
+121.162.174.59
 121.163.48.30
 121.165.140.117
 121.168.227.85
 121.169.121.246
 121.176.31.174
 121.177.37.127
-121.178.96.50
 121.179.232.246
-121.180.181.177
 121.184.131.249
 121.186.105.200
 121.186.74.53
@@ -348,17 +347,19 @@
 121.233.127.156
 121.233.68.89
 121.86.113.254
+122.116.211.220
 122.160.111.68
+122.160.60.236
 122.173.244.25
 122.176.72.49
 123.0.198.186
 123.0.209.88
-123.10.229.141
 123.10.50.209
-123.11.11.18
+123.10.62.26
+123.10.84.18
 123.11.14.137
+123.11.14.199
 123.113.102.36
-123.12.243.99
 123.13.7.143
 123.194.235.37
 123.194.60.105
@@ -378,6 +379,7 @@
 125.136.94.85
 125.137.120.38
 125.18.28.170
+125.209.71.6
 125.25.89.230
 125.26.165.244
 125.45.79.20
@@ -399,7 +401,6 @@
 14.41.57.152
 14.45.167.58
 14.46.209.82
-14.46.51.53
 14.48.245.16
 14.49.212.151
 14.53.20.41
@@ -411,16 +412,16 @@
 142.11.194.209
 142.11.195.135
 142.11.206.45
+142.11.222.172
 142.169.129.243
 142.44.211.179
 144.132.166.70
 144.136.155.166
+144.202.97.69
 144.217.117.146
-145.255.26.115
 146.71.79.230
 147.91.212.250
 149.56.79.215
-149.56.84.15
 150.co.il
 151.232.56.134
 151.236.38.234
@@ -430,12 +431,9 @@
 159.224.23.120
 159.224.74.112
 162.194.28.60
-162.212.113.29
 162.212.113.70
 162.212.114.57
-162.212.115.107
 162.212.115.189
-162.212.115.219
 162.212.115.49
 162.250.126.186
 163.13.182.105
@@ -450,6 +448,7 @@
 171.248.114.46
 172.84.255.201
 172.90.37.142
+173.15.162.146
 173.160.86.173
 173.161.208.193
 173.168.197.166
@@ -463,7 +462,7 @@
 174.128.226.101
 174.2.176.60
 174.48.14.129
-175.10.145.138
+175.199.142.182
 175.200.153.48
 175.202.162.120
 175.208.203.123
@@ -471,16 +470,16 @@
 175.211.16.150
 175.212.31.241
 175.212.52.9
+175.212.95.112
 175.213.134.89
+175.215.116.123
 175.215.226.31
 176.108.58.123
 176.113.161.101
 176.113.161.104
 176.113.161.111
 176.113.161.113
-176.113.161.116
 176.113.161.120
-176.113.161.121
 176.113.161.128
 176.113.161.129
 176.113.161.138
@@ -490,10 +489,12 @@
 176.113.161.47
 176.113.161.51
 176.113.161.52
+176.113.161.53
 176.113.161.57
 176.113.161.59
 176.113.161.64
 176.113.161.66
+176.113.161.67
 176.113.161.68
 176.113.161.72
 176.113.161.76
@@ -502,6 +503,7 @@
 176.12.117.70
 176.14.234.5
 176.214.78.192
+177.11.92.78
 177.128.126.70
 177.137.107.131
 177.152.139.214
@@ -519,7 +521,6 @@
 178.134.248.74
 178.134.61.94
 178.136.195.90
-178.151.143.2
 178.165.122.141
 178.212.53.57
 178.212.54.200
@@ -549,11 +550,13 @@
 180.116.224.151
 180.116.224.91
 180.116.96.229
+180.117.195.21
 180.117.89.28
 180.117.91.251
 180.118.100.106
 180.120.12.85
 180.123.219.198
+180.123.36.177
 180.123.59.159
 180.123.85.31
 180.124.126.74
@@ -561,19 +564,16 @@
 180.124.214.4
 180.124.235.240
 180.124.6.47
-180.125.240.53
-180.125.249.46
 180.176.105.41
 180.176.110.243
 180.176.211.171
 180.177.104.65
 180.177.242.73
-180.189.104.106
 180.218.105.80
 180.218.161.128
+180.248.80.38
 180.43.82.186
 180.64.214.48
-180.92.226.47
 181.111.163.169
 181.111.233.18
 181.112.138.154
@@ -586,6 +586,7 @@
 181.143.60.163
 181.143.70.194
 181.164.69.233
+181.177.141.168
 181.193.107.10
 181.196.144.130
 181.197.17.97
@@ -596,11 +597,10 @@
 181.40.117.138
 181.48.187.146
 181.49.241.50
+182.114.247.31
 182.114.250.201
-182.117.41.97
-182.117.71.167
 182.124.173.124
-182.126.82.71
+182.142.112.88
 182.160.101.51
 182.160.125.229
 182.160.98.250
@@ -611,9 +611,9 @@
 183.106.201.118
 183.107.57.170
 183.109.5.228
-183.151.121.12
 183.221.125.206
 183.4.28.24
+183.4.30.175
 183.80.55.227
 183.87.255.182
 184.163.2.58
@@ -621,6 +621,7 @@
 185.12.78.161
 185.136.193.70
 185.153.196.209
+185.172.110.208
 185.172.110.216
 185.172.110.224
 185.172.110.232
@@ -647,9 +648,11 @@
 186.251.253.134
 186.34.4.40
 186.42.255.230
+186.73.188.132
 187.12.10.98
 187.183.213.88
 187.250.220.89
+187.33.71.68
 187.36.134.227
 187.44.167.14
 187.45.49.101
@@ -671,10 +674,10 @@
 188.242.242.144
 188.36.121.184
 188.83.202.25
-189.126.70.222
 189.127.33.22
 189.223.178.117
 189.252.214.199
+189.45.44.86
 189.91.80.82
 190.0.42.106
 190.109.189.120
@@ -712,20 +715,21 @@
 192.119.87.242
 192.236.146.53
 192.236.147.189
-192.236.192.71
 193.106.57.83
 193.228.135.144
+193.228.91.105
 193.248.246.94
 193.53.163.179
 193.95.254.50
 194.0.157.1
-194.152.35.139
 194.180.224.106
 194.180.224.113
 194.208.91.114
 194.54.160.248
+195.123.213.216
 195.162.70.104
 195.24.94.187
+195.28.15.110
 195.66.194.6
 196.202.26.182
 196.218.202.115
@@ -737,11 +741,14 @@
 197.210.214.11
 197.51.235.38
 198.24.75.52
+199.116.237.125
 199.36.76.2
 199.83.203.104
 199.83.203.137
+199.83.203.53
 199.83.203.85
 199.83.204.244
+199.83.207.154
 2.180.33.118
 2.185.150.180
 2.229.41.205
@@ -756,6 +763,7 @@
 200.105.167.98
 200.107.7.242
 200.111.189.70
+200.116.110.36
 200.180.159.138
 200.2.161.171
 200.217.148.218
@@ -763,6 +771,7 @@
 200.30.132.50
 200.38.79.134
 200.6.167.42
+200.69.74.28
 200.85.168.202
 2000kumdo.com
 201.103.20.67
@@ -787,7 +796,6 @@
 202.4.124.58
 202.51.191.174
 202.74.236.9
-202.79.46.30
 203.114.116.37
 203.129.254.50
 203.163.211.46
@@ -795,14 +803,13 @@
 203.188.242.148
 203.193.173.179
 203.202.243.233
-203.202.245.77
 203.202.246.246
 203.202.248.237
 203.204.217.4
 203.234.151.163
 203.70.166.107
-203.77.80.159
 203.80.171.138
+203.80.171.149
 203.82.36.34
 208.113.130.13
 208.163.58.18
@@ -848,7 +855,6 @@
 213.109.235.169
 213.157.39.242
 213.16.63.103
-213.202.255.4
 213.215.85.141
 213.241.10.110
 213.27.8.6
@@ -858,7 +864,7 @@
 213.92.198.8
 213.97.24.164
 216.15.112.251
-216.180.117.164
+216.180.117.201
 216.183.54.169
 216.189.145.11
 216.36.12.98
@@ -869,7 +875,6 @@
 217.8.117.23
 217.8.117.76
 218.144.252.19
-218.154.126.150
 218.156.132.7
 218.156.26.85
 218.157.214.219
@@ -894,7 +899,6 @@
 220.80.136.75
 220.82.140.17
 221.13.185.127
-221.13.236.180
 221.144.153.139
 221.15.11.116
 221.15.6.221
@@ -912,6 +916,7 @@
 222.116.73.41
 222.118.213.93
 222.140.153.57
+222.140.162.213
 222.142.226.246
 222.185.161.165
 222.185.199.202
@@ -919,19 +924,16 @@
 222.187.159.223
 222.187.191.224
 222.188.131.220
-222.242.158.161
 222.243.14.67
 222.74.186.176
 223.154.81.219
 223.199.243.56
-223.93.171.210
+223.93.157.244
 223.95.78.250
 224001.selcdn.ru
 23.122.183.241
 23.227.207.140
 23.228.143.58
-23.247.102.120
-23.254.211.179
 23.254.226.60
 23.94.154.115
 24.0.252.145
@@ -955,8 +957,7 @@
 27.147.40.128
 27.155.87.120
 27.238.33.39
-27.41.147.103
-27.41.175.30
+27.41.174.178
 27.48.138.13
 3.112.254.173
 3.zhzy999.net
@@ -964,12 +965,12 @@
 31.128.173.853.zhzy999.net
 31.128.173.853.zhzy999.net31.128.173.853.zhzy999.net
 31.132.143.21
-31.146.124.177
 31.146.212.197
 31.146.212.252
 31.146.229.140
 31.146.229.169
 31.154.232.106
+31.155.158.20
 31.168.194.67
 31.168.214.28
 31.168.216.132
@@ -994,17 +995,15 @@
 31.44.54.110
 35.141.217.189
 36.105.241.235
-36.107.138.217
 36.107.211.17
 36.107.235.83
 36.33.248.102
-36.66.105.159
 36.66.133.125
 36.66.139.36
-36.66.168.45
 36.66.190.11
 36.67.223.231
 36.67.42.193
+36.74.74.99
 36.89.133.67
 36.89.18.133
 36.91.89.187
@@ -1014,7 +1013,6 @@
 37.142.138.126
 37.17.21.242
 37.222.98.51
-37.232.98.44
 37.235.162.131
 37.29.67.145
 37.34.250.243
@@ -1024,7 +1022,6 @@
 37.49.226.228
 37.49.226.231
 37.49.230.103
-37.49.230.128
 37.49.230.141
 37.49.230.234
 37.54.14.36
@@ -1040,29 +1037,24 @@
 41.211.112.82
 41.219.185.171
 41.228.175.30
-41.32.132.218
 41.32.170.13
 41.39.182.198
 41.64.170.241
 41.67.137.162
 41.72.203.82
 41.77.74.146
-41.84.227.250
 41.86.19.200
 42.115.86.142
 42.227.121.217
-42.227.166.179
 42.227.184.46
 42.232.102.85
 42.239.225.24
-42.239.96.146
 42.61.99.155
 42.82.191.105
 43.252.8.94
 45.114.68.156
 45.115.253.82
 45.115.254.154
-45.118.165.115
 45.138.97.46
 45.139.236.14
 45.14.150.29
@@ -1075,7 +1067,6 @@
 45.95.168.202
 45.95.168.207
 45.95.168.97
-45.95.169.249
 45.95.55.58
 46.100.251.72
 46.100.56.152
@@ -1122,7 +1113,6 @@
 49.68.250.118
 49.68.54.141
 49.68.81.61
-49.70.127.10
 49.70.137.78
 49.70.234.20
 49.70.34.196
@@ -1141,7 +1131,9 @@
 49.89.139.161
 49.89.228.167
 49.89.232.163
+49.89.233.47
 49.89.234.53
+49.89.241.11
 49.89.64.24
 49.89.80.45
 49parallel.ca
@@ -1153,7 +1145,7 @@
 5.198.241.29
 5.201.130.125
 5.201.142.118
-5.206.227.18
+5.206.224.216
 5.238.110.62
 5.29.175.150
 5.57.133.136
@@ -1172,9 +1164,9 @@
 58.230.89.42
 58.238.186.91
 58.243.121.118
-58.243.121.200
 58.243.122.144
 58.243.123.161
+58.243.125.95
 58.243.20.165
 58.40.122.158
 59.0.224.88
@@ -1186,9 +1178,9 @@
 59.22.144.136
 59.23.208.62
 59.24.69.58
+59.3.253.82
 59.4.104.15
 59.7.40.82
-60.189.24.112
 61.174.126.132
 61.247.224.66
 61.52.128.79
@@ -1199,9 +1191,7 @@
 61.70.45.130
 61.77.146.65
 61.82.215.186
-62.1.98.131
 62.103.77.120
-62.117.124.114
 62.140.224.186
 62.16.60.215
 62.201.230.43
@@ -1292,7 +1282,6 @@
 77.79.191.32
 77.89.203.238
 78.159.97.56
-78.186.190.222
 78.186.49.146
 78.188.224.31
 78.189.104.157
@@ -1322,7 +1311,6 @@
 80.235.214.123
 80.92.189.70
 81.157.66.50
-81.17.16.122
 81.184.88.173
 81.19.215.118
 81.196.213.134
@@ -1349,6 +1337,7 @@
 82.80.143.205
 82.80.176.116
 82.81.106.65
+82.81.108.172
 82.81.131.158
 82.81.196.247
 82.81.197.254
@@ -1367,7 +1356,6 @@
 83.234.147.99
 83.234.218.42
 83.67.163.73
-84.10.31.238
 84.197.14.92
 84.20.68.26
 84.228.102.152
@@ -1412,11 +1400,11 @@
 88.248.121.238
 88.250.196.101
 88.250.85.219
-887sconline.com
 88mscco.com
 89.116.174.223
 89.121.31.159
 89.122.77.154
+89.136.197.170
 89.141.1.115
 89.165.10.137
 89.189.184.225
@@ -1426,12 +1414,10 @@
 89.40.85.166
 89.40.87.5
 89.46.237.89
-91.134.252.221
 91.177.139.132
 91.187.103.32
 91.187.119.26
 91.191.32.34
-91.196.36.84
 91.215.126.208
 91.216.149.130
 91.217.2.120
@@ -1457,8 +1443,8 @@
 93.171.33.234
 93.176.185.223
 93.185.10.131
+93.47.168.43
 93.56.36.84
-93.70.125.94
 93.73.99.102
 93.75.190.19
 93.77.52.138
@@ -1471,6 +1457,7 @@
 94.202.61.191
 94.230.152.192
 94.244.113.217
+94.244.25.21
 94.41.0.174
 94.53.120.109
 94.64.246.247
@@ -1501,6 +1488,7 @@ aaasolution.co.th
 accessyouraudience.com
 acdesignhub.com
 acteon.com.ar
+activecost.com.au
 adamtcarruthers.com
 adnquocte.com
 agiandsam.com
@@ -1527,24 +1515,26 @@ allloveseries.com
 alohasoftware.net
 alphaconsumer.net
 am-concepts.ca
-amd.alibuf.com
+amedeoscognamiglio.329263.com
 amemarine.co.th
 americanrange.com
 ams3.digitaloceanspaces.com/paymentref00/PaymentRefS309388282.exe
 anadolutatili.com
-anamikaindanegas.in
 andreelapeyre.com
 andremaraisbeleggings.co.za
 angthong.nfe.go.th
+anjsolution.com
 anvietpro.com
 anysbergbiltong.co.za
 aoujlift.ir
 apartdelpinar.com.ar
 apoolcondo.com
 apware.co.kr
+arabenergyclub.org
 archiv.bg
 areac-agr.com
 ascentive.com
+ashoakacharya.com
 askarindo.or.id
 asload01.top
 atfile.com
@@ -1554,7 +1544,6 @@ atteuqpotentialunlimited.com
 audiosv.com
 aulist.com
 auraco.ca
-aurumboy.com
 azmeasurement.com
 aznetsolutions.com
 azureautomation.co.uk
@@ -1564,16 +1553,15 @@ bamakobleach.free.fr
 bangkok-orchids.com
 banzaimonkey.com
 bapo.granudan.cn
-baritaco.com
 bbs.sunwy.org
 bbs1.marisfrolg.com
 bd11.52lishi.com
 bd12.52lishi.com
 bd18.52lishi.com
 bd19.52lishi.com
+beachbeaty.com
 beibei.xx007.cc
 bepgroup.com.hk
-bergamote.org
 besserblok-ufa.ru
 besttasimacilik.com.tr
 beta.pterosol.com
@@ -1583,12 +1571,15 @@ bildeboks.no
 bilim-pavlodar.gov.kz
 billieellish.org
 bingxiong.vip
+bitbucket.org/destek21/3reklam/downloads/20gbhediyesi.apk
 bitbucket.org/destek21/3reklam/downloads/androidsecurity.apk
+bitbucket.org/shobaka420/222333/downloads/usb.exe
 biyexing.cn
 bjkumdo.com
 blog.241optical.com
 blog.hanxe.com
 bolidar.dnset.com
+borawebservicioscl1.com
 bovientix.com
 bpo.correct.go.th
 brasstec.com.br
@@ -1598,18 +1589,18 @@ btlocum.pl
 bugansavings.com
 byqkdy.com
 c.vvvvvvvvv.ga
-c9f44961.ngrok.io
 cameli.vn
 cantikekinian.com
 caravella.com.br
 cassovia.sk
 cbk.m.dodo52.com
 ccnn.xiaomier.cn
+cdn-10049480.file.myqcloud.com
 cdn.discordapp.com/attachments/422956597141307392/520711166608015380/PFPX-Keygen.zip
 cdn.speedof.me/sample4096k.bin?r=0.1570982201
-cdn.truelife.vn/webtube/201310/2139273/pianito.exe
 cdn.xiaoduoai.com
 cdnus.laboratoryconecpttoday.com
+ceirecrear.com.br
 cellas.sk
 cf.uuu9.com
 cf0.pw
@@ -1617,7 +1608,7 @@ cfs5.tistory.com
 ch.rmu.ac.th
 changematterscounselling.com
 chanvribloc.com
-charm.bizfxr.com
+chattosport.com
 chedea.eu
 chinhdropfile.myvnc.com
 chinhdropfile80.myvnc.com
@@ -1627,12 +1618,11 @@ chj.m.dodo52.com
 chuckweiss.com
 clareiamente.clareiamente.com
 clearwaterriveroutfitting.com
-cleversoft.vn
 client.yaap.co.uk
 clinicamariademolina.com
+cmecobrancas.com
+cnhdsoft.com
 codeload.github.com/MeteorAdminz/hidden-tear/zip/master
-codeload.github.com/Visgean/Zeus/zip/translation
-codeload.github.com/beefproject/beef/zip/beef-0.4.6.1
 codeload.github.com/beefproject/beef/zip/master
 compesat.com
 complan.hu
@@ -1640,6 +1630,7 @@ complanbt.hu
 comtechadsl.com
 config.kuaisousou.top
 consultingcy.com
+cosmea.pl
 counciloflight.bravepages.com
 cqjcc.org
 crittersbythebay.com
@@ -1647,10 +1638,8 @@ cryline.net
 csnserver.com
 csw.hu
 cyclomove.com
-czsl.91756.cn
 d.top4top.io/p_101949r3r1.jpg
 d.top4top.io/p_794twvdh1.jpg
-d3.99ddd.com
 d9.99ddd.com
 da.alibuf.com
 daithanhphung.com
@@ -1662,15 +1651,18 @@ datvensaigon.com
 davinadouthard.com
 dawaphoto.co.kr
 daynightgym.com
+dbssistem.com.tr
 de.gsearch.com.de
+dehkadenovin.com
 deixameuskls.tripod.com
-demo10.onbm.ir
+demo13.dsdemosite.com
 denkagida.com.tr
 depgrup.com
 depot7.com
 derivativespro.in
 desighiza.com
 detafa.com
+dev.nona-polska.pl
 dev.sebpo.net
 dev1.xicom.us
 dev5.mypagevn.com
@@ -1680,10 +1672,9 @@ dfd.zhzy999.net
 dfzm.91756.cn
 dgecolesdepolice.bf
 dgnj.cn
-dhlservices.duckdns.org
 diazavendano.cl
 dichvuvesinhcongnghiep.top
-dienmayminhan.com
+dienmaycu.vn
 digilib.dianhusada.ac.id
 digital-marketing-institute-delhi.empeeevents.com
 digitaldog.de
@@ -1694,16 +1685,15 @@ dl.1003b.56a.com
 dl.198424.com
 dl.dzqzd.com
 dl.kuaile-u.com
-dl2.soft-lenta.ru
 dlist.iqilie.com
 dmresor.se
-dnn.alibuf.com
 dns.alibuf.com
 docs.google.com/uc?authuser=0&id=1423iV9Ze5V1pNpU0omqvp-u46EpKft94&export=download
 docs.google.com/uc?export=download&id=1ia3WELHtRhs0Fe4ag2_O0aVkyzi_zUpx
 docs.google.com/uc?id=1R0ybQzfybvmes2v71jwlMHBvFe8-MVMy
 dodsonimaging.com
 don.viameventos.com.br
+dongiln.co
 donmago.com
 doostansocks.ir
 doransky.info
@@ -1712,23 +1702,17 @@ down.ancamera.co.kr
 down.gogominer.com
 down.haote.com
 down.pcclear.com
-down.pdflist.cqhbkjzx.com
-down.softlist.tcroot.cn
 down.startools.co.kr
 down.tgjkbx.cn
 down.upzxt.com
 down.webbora.com
 down.xrpdf.com
 down1.arpun.com
-downcdn.xianshuabao.com
 download.1ys.com
-download.beveilingsdienst.info
 download.doumaibiji.cn
 download.kaobeitu.com
-download.ktkt.com
 download.ningzhidata.com/download/svminstall.exe
 download.pdf00.cn
-download.rising.com.cn
 download.skycn.com
 download.ttz3.cn
 download.ware.ru
@@ -1755,7 +1739,6 @@ drive.google.com/u/0/uc?id=12iFCPIkFttDepyF-50TP5ToEO5PUJTkl&export=download
 drive.google.com/u/0/uc?id=14478IMd3BD6V_Igv0a4E6gV_rPgeIMI4&export=download
 drive.google.com/u/0/uc?id=17MK_rc41hpFJXpVYtF8tkeWaczBfoDTK&export=download
 drive.google.com/u/0/uc?id=1I0-c_3_PA4CFUVxQuWatIce-YMim6K1F&export=download
-drive.google.com/u/0/uc?id=1lf5uj0OZtEz0Da4uloCglElnO0cqqaJ7&export=download
 drive.google.com/u/0/uc?id=1rFX0WSnjWfD_S-CsbnECFidz0FIpqaYm&export=download
 drive.google.com/uc?id=1-3kFaMujRY9yLfLp1Lt1nhK9_KO30wAu&export=download
 drive.google.com/uc?id=1-ChWS7gPh0DGbxuL6tu2KyWbrUuhfErV&export=download
@@ -1889,11 +1872,9 @@ drive.google.com/uc?id=1zpS--8sfyN8bSD4ghtmaXu3yzha6apH6&export=download
 drools-moved.46999.n3.nabble.com
 droversmouser.at
 druzim.freewww.biz
-ds.obmenvsemfiles.com
 dtsay.xyz
 dudulm.com
 dusdn.mireene.com
-dw.58wangdun.com
 dx.qqyewu.com
 dx1.qqtn.com
 dx2.qqtn.com
@@ -1902,7 +1883,6 @@ dx60.siweidaoxiang.com
 dzinestudio87.co.uk
 e.dangeana.com
 easydown.workday360.cn
-ebook.w3wvg.com
 edicolanazionale.it
 emadamini.co.za
 emir-elbahr.com
@@ -1913,22 +1893,20 @@ er-bulisguvenligi.com
 ermekanik.com
 esolvent.pl
 esteteam.org
-evdeyizrahatiz.com
 exposvision.com
 ezfintechcorp.com
 fafhoafouehfuh.su
 fairyqueenstore.com
-fastsoft.onlinedown.net
 fazi.pl
+ffv322.ru
+ffv32223.ru
 fidiag.kymco.com
 fifa555easy.329263.com
 figuig.net
 fileco.jobkorea.co.kr
 filen3.utengine.co.kr
-filen5.utengine.co.kr
 files.constantcontact.com/0996938c001/6e8a2a4f-40ac-464f-9a70-7c67f0a0da19.pdf
 files.constantcontact.com/ee304de9001/7e533e73-e272-4a44-9d9e-138cab64bf19.docx
-files.fqapps.com
 files.gamebanana.com/tools/tagconverter.exe
 files.rakbot.ru
 files6.uludagbilisim.com
@@ -1938,7 +1916,6 @@ fishingbigstore.com
 fitmanacademy.com
 fkd.derpcity.ru
 flex.ru
-flood-protection.org
 fordlamdong.com.vn
 foreverprecious.org
 foxfennecs.com
@@ -1952,12 +1929,11 @@ fs13n2.sendspace.com/dlpro/1e8c1cd8c02d5526e29b58a15ed1682f/5d768242/ckbps9/rjFN
 fs13n2.sendspace.com/dlpro/420c91b4b59cab211b713393caa97633/5d7425ed/ckbps9/rjfnc6mcj6oaux0.exe
 fs13n4.sendspace.com/dlpro/785e938a0412e80983385f128036ddb0/5d7425ef/ckbps9/rjfnc6mcj6oaux0.exe
 fte.m.dodo52.com
-ftpcnc-p2sp.pconline.com.cn
 ftpftpftp.com
 funletters.net
 futuregraphics.com.ar
-g.7230.com
 g0ogle.free.fr
+gainsdirectory.com
 galuhtea.com
 gamebazaar.club
 gamee.top
@@ -1966,10 +1942,9 @@ garenanow4.myvnc.com
 gateway-heide.de
 gateway.ethlqd.com
 genesisconstruction.co.za
-genstaff.gov.kg
 germistonmiraclecentre.co.za
 ghislain.dartois.pagesperso-orange.fr
-gimscompany.com
+ghwls44.gabia.io
 gist.githubusercontent.com/Zibri/19f9838ffd12349bb2c6c3afddc9388f/raw/01977fd3c7e036c3a38f062f626fd189ba1e1aa3/UEFIVAR.EXE
 glitzygal.net
 globaleuropeans.com
@@ -1977,16 +1952,14 @@ gmassurance.fr
 gnimelf.net
 go.xsuad.com
 google.ghststr.com
-gov.kr/main?d=AA100DataDownApp&SAVE_FILE_NM=38500.exe
 govhotel.us
-grafchekloder.rebatesrule.net
 granportale.com.br
+grantoveporadenstvi.eu
 gray-takeo-7170.chowder.jp
 green100.cn
 greenfood.sa.com
 gssgroups.com
 gundemdekihaber.com
-gx-10012947.file.myqcloud.com
 habbotips.free.fr
 hagebakken.no
 haisannhatrang.com.vn
@@ -1995,12 +1968,11 @@ hanaphoto.co.kr
 handrush.com
 hanoihub.vn
 hazel-azure.co.th
-hdxa.net
 healtina.com
 heavenif.co.za
 hellomessager.com
-hevizapartments.net
 hfsoftware.cl
+hi-event.vn
 hingcheong.hk
 hldschool.com
 hmbwgroup.com
@@ -2011,13 +1983,13 @@ hotart.co.nz
 hotel-le-relais-des-moulins.com
 hottestxxxvideo.com
 housewifes.co
-hseda.com
 hsmwebapp.com
 htxl.cn
 huishuren.nu
 hwsrv-675710.hostwindsdns.com
 hwsrv-720737.hostwindsdns.com
 hyadegari.ir
+hyundainamdinh.org
 hyvat-olutravintolat.fi
 i.imgur.com/6q5qHHD.png
 i333.wang
@@ -2028,13 +2000,12 @@ ileolaherbalcare.com.ng
 imellda.com
 imenizeh.ir
 img1.wsimg.com/blobby/go/716ce6c5-e07c-43a7-a685-6d934b9f51c3/downloads/1cqdpmlgu_930218.doc
+imobiliarianossacasamt.com.br
 impression-gobelet.com
 in-sect.com
 inapadvance.com
 incrediblepixels.com
-incredicole.com
-infogue.id
-ini.egkj.com
+indonesias.me:9998/c64.exe
 innovation4crisis.org
 instanttechnology.com.au
 intelicasa.ro
@@ -2045,8 +2016,8 @@ intoxicated-twilight.com
 iran-gold.com
 iremart.es
 isso.ps
-it.shopforever.pk
 itd.m.dodo52.com
+itohukuk.com
 itrigger.cn
 itsnixielou.com
 ixlonbcc.com
@@ -2059,6 +2030,7 @@ janvierassocies.fr
 javatank.ru
 jcedu.org
 jessymart.flexyhub.com
+jim.webengineerteam.com
 jjjexx.329263.com
 jmtc.91756.cn
 jocuri.trophygaming.net
@@ -2070,11 +2042,12 @@ jppost-cde.top
 jsd618.com
 jsq.m.dodo52.com
 jsya.co.kr
+jumla.biz
 jutvac.com
 jvalert.com
 jyv.fi
-jzny.com.cn
-k3.etfiber.net
+k.ludong.tv
+kabiru.ru
 kachsurf.mylftv.com
 kamasu11.cafe24.com
 kamisecurity.com.my
@@ -2085,12 +2058,11 @@ kassohome.com.tr
 kdsp.co.kr
 kejpa.com
 kenareh-gostare-aras.ir
+kgfs3.329263.com
 khunnapap.com
 kiencuonghotel.vn
-kimyen.net/upload/CTCKeoxe2.exe
 kimyen.net/upload/CTCTanthu.exe
 kimyen.net/upload/VLMPLogin.exe
-kimyen.net/upload/VLTKBacdau.exe
 kimyen.net/upload/VLTKNhatRac.exe
 kjbm9.mof.gov.cn
 kleinendeli.co.za
@@ -2099,10 +2071,10 @@ koppemotta.com.br
 koralli.if.ua
 kqq.kz
 kristofferdaniels.com
+kuaizip.com/down/affiliate/KuaiZip_setup_10029.exe
 kupaliskohs.sk
 kuznetsov.ca
 kwanfromhongkong.com
-kwikomfi-lab.com
 lagalaxy88easy.329263.com
 lameguard.ru
 lammaixep.com
@@ -2115,6 +2087,8 @@ ld.mediaget.com
 learnbuddy.com
 learningcomputing.org
 lebedyn.info
+lecafedesartistes.com
+leukkado.be
 lfcsghosi.co.in
 lhbfirst.com
 libya-info.com
@@ -2123,6 +2097,7 @@ linx.li
 lists.ibiblio.org
 lists.mplayerhq.hu
 livetrack.in/EmployeeMasterImages/qace.jpg
+lodergord.com
 log.yundabao.cn
 lsyr.net
 lt02.datacomspecialists.net
@@ -2132,28 +2107,27 @@ luckytriumph.com
 luisnacht.com.ar
 lvr.samacomplus.com
 m.0757kd.cn
-m93701t2.beget.tech
 mackleyn.com
 magda.zelentourism.com
 magic-living.com
 makosoft.hu
 malin-akerman.net
+mangawt.com
 margopassadorestylist.com
+mariereiko.com
 maringareservas.com.br
 marketprice.com.ng
 marksidfgs.ug
-marocaji.com
 matt-e.it
 mattayom31.go.th
-maynenkhivinhphat.com
 mazury4x4.pl
 mbgrm.com
+mecbox.cn
 mediamatkat.fi
 medianews.ge
 medlinee.com
 medreg.uz
 meert.org
-meeweb.com
 meitao886.com
 members.chello.nl
 members.westnet.com.au
@@ -2168,6 +2142,7 @@ micahproducts.com
 micalle.com.au
 mirror.mypage.sk
 mis.nbcc.ac.th
+misskproductions.co.za
 misterson.com
 mistydeblasiophotography.com
 mkk09.kr
@@ -2180,17 +2155,18 @@ moha-group.com
 monmariage.info
 moscow11.at
 mountveederwines.com
+movingsolutionsus.com
 moyo.co.kr
 mperez.com.ar
 mrtool.ir
 msecurity.ro
+mteng.mmj7.com
 mtfelektroteknik.com
-mudita.vn
 mueblesjcp.cl
+mutec.jp
 mv360.net
 mvb.kz
 mxpiqw.am.files.1drv.com
-mydesign.thinkeraibirds.com
 myexpertca.in
 myhood.cl
 myo.net.au
@@ -2200,6 +2176,7 @@ mytrains.net
 mywp.asia
 myyttilukukansasta.fi
 naildumarche.com
+namuvpn.com
 narty.laserteam.pl
 naturalma.es
 naturepack.cc
@@ -2210,11 +2187,13 @@ ndrs.cloud
 nebraskacharters.com.au
 neocity1.free.fr
 nerve.untergrund.net
+news.abfakerman.ir
 news.omumusic.net
 newsun-shop.com
 newxing.com
+nexity.me
 nfbio.com
-ngoaingu.garage.com.vn
+nkdhub.com
 nofound.000webhostapp.com
 norperuinge.com.pe
 note.youdao.com/yws/api/personal/file/WEB3a243b322cf83ca7cae587a92916bac7?method=download&inline=true&shareKey=649ac0bb5d5b13d15cbf50b2609e193a
@@ -2225,8 +2204,10 @@ oa.fnysw.com
 oa.hys.cn
 obnova.zzux.com
 obseques-conseils.com
+ohe.ie
 oknoplastik.sk
 omega.az
+omitkyspisar.cz
 omsk-osma.ru
 omuzgor.tj
 onedrive.live.com/download.aspx?authkey=%21AGZmMCN0fitqqSg&cid=B49DE58B11F93798&resid=B49DE58B11F93798%21107&parId=root&o=OneUp
@@ -2264,7 +2245,6 @@ onedrive.live.com/download?cid=0D59C202E35694C2&resid=D59C202E35694C2%21274&auth
 onedrive.live.com/download?cid=0F0A5AADC4C3C242&resid=F0A5AADC4C3C242!309&authkey=ALFe36DRAi1zmWc
 onedrive.live.com/download?cid=0F0A5AADC4C3C242&resid=F0A5AADC4C3C242%21309&authkey=ALFe36DRAi1zmWc
 onedrive.live.com/download?cid=0F48D15360733D06&resid=F48D15360733D06!106&authkey=AChi3rQkGbcN-KA
-onedrive.live.com/download?cid=0F48D15360733D06&resid=F48D15360733D06%21106&authkey=AChi3rQkGbcN-KA
 onedrive.live.com/download?cid=1164EA2B0783A793&resid=1164EA2B0783A793!128&authkey=AOoJuE9Aw_IzFkA
 onedrive.live.com/download?cid=1164EA2B0783A793&resid=1164EA2B0783A793%21128&authkey=AOoJuE9Aw_IzFkA
 onedrive.live.com/download?cid=165468846F076EE7&resid=165468846F076EE7!118&authkey=ANTAsh3IG98aQTE
@@ -2280,21 +2260,18 @@ onedrive.live.com/download?cid=1DBDF62BC3C2B05B&resid=1DBDF62BC3C2B05B!134&authk
 onedrive.live.com/download?cid=21757E11F03B2792&resid=21757E11F03B2792!109&authkey=!ANHBzyBkG3MeKig
 onedrive.live.com/download?cid=22DE7FE70990A7F4&resid=22DE7FE70990A7F4!185&authkey=ALxzoQx-dTHHDBc
 onedrive.live.com/download?cid=22DE7FE70990A7F4&resid=22DE7FE70990A7F4%21185&authkey=ALxzoQx-dTHHDBc
-onedrive.live.com/download?cid=265DAF943BE0D06F&resid=265DAF943BE0D06F!191&authkey=AJVUmPkZPLA_nCA
 onedrive.live.com/download?cid=265DAF943BE0D06F&resid=265DAF943BE0D06F%21191&authkey=AJVUmPkZPLA_nCA
 onedrive.live.com/download?cid=2CBD310015BC2D37&resid=2CBD310015BC2D37!183&authkey=AKon9I9zzHusiUk
 onedrive.live.com/download?cid=2CBD310015BC2D37&resid=2CBD310015BC2D37%21183&authkey=AKon9I9zzHusiUk
 onedrive.live.com/download?cid=2D6A6389F3FC6C0F&resid=2D6A6389F3FC6C0F!14381&authkey=AO1xvCnKh6J1ur8
 onedrive.live.com/download?cid=2D6A6389F3FC6C0F&resid=2D6A6389F3FC6C0F!14383&authkey=AKYk6OJd0P6PQwI
 onedrive.live.com/download?cid=2F01A497B687285E&resid=2F01A497B687285E!561&authkey=ANXQKHHEC0ORDlI
-onedrive.live.com/download?cid=2F4D6884E933CB1A&resid=2F4D6884E933CB1A!116&authkey=!ABWlEdjhFsqWaP4
 onedrive.live.com/download?cid=2F4D6884E933CB1A&resid=2F4D6884E933CB1A!121&authkey=!AA0qbUUSS-wb13w
 onedrive.live.com/download?cid=2F947402293C14C1&resid=2F947402293C14C1!119&authkey=APMAkX2CQB9rImU
 onedrive.live.com/download?cid=2F947402293C14C1&resid=2F947402293C14C1%21118&authkey=ACrL2Iiem-ZJer8
 onedrive.live.com/download?cid=2F947402293C14C1&resid=2F947402293C14C1%21119&authkey=APMAkX2CQB9rImU
 onedrive.live.com/download?cid=3112E77688F09693&resid=3112E77688F09693%21320&authkey=AOOUjzuf408Dclw
 onedrive.live.com/download?cid=3112E77688F09693&resid=3112E77688F09693%21321&authkey=ALmpxnBTSBzAUnA
-onedrive.live.com/download?cid=3892A0364CB5DA65&resid=3892A0364CB5DA65!153&authkey=AJS0JKOEQkqjRZE
 onedrive.live.com/download?cid=3892A0364CB5DA65&resid=3892A0364CB5DA65%21152&authkey=AM09Sv26NjxZyn0
 onedrive.live.com/download?cid=3892A0364CB5DA65&resid=3892A0364CB5DA65%21153&authkey=AJS0JKOEQkqjRZE
 onedrive.live.com/download?cid=3F2905EFA1C7AC3F&resid=3F2905EFA1C7AC3F!154&authkey=AAsJ15d0G_p2pOg
@@ -2304,7 +2281,6 @@ onedrive.live.com/download?cid=4000200B3FB8C24F&resid=4000200B3FB8C24F%21134&aut
 onedrive.live.com/download?cid=41F2978DA9CE0256&resid=41F2978DA9CE0256!111&authkey=AJZp62LMPZKHUMQ
 onedrive.live.com/download?cid=41F2978DA9CE0256&resid=41F2978DA9CE0256!113&authkey=AEOaNIW0sQpOAcU
 onedrive.live.com/download?cid=41F2978DA9CE0256&resid=41F2978DA9CE0256!120&authkey=AJFZZ_HBF2UlaSk
-onedrive.live.com/download?cid=41F2978DA9CE0256&resid=41F2978DA9CE0256%21111&authkey=AJZp62LMPZKHUMQ
 onedrive.live.com/download?cid=41F2978DA9CE0256&resid=41F2978DA9CE0256%21113&authkey=AEOaNIW0sQpOAcU
 onedrive.live.com/download?cid=41F2978DA9CE0256&resid=41F2978DA9CE0256%21120&authkey=AJFZZ_HBF2UlaSk
 onedrive.live.com/download?cid=470FEBB155BE50FA&resid=470FEBB155BE50FA!450&authkey=AHW0J-CME0jg6pw
@@ -2317,14 +2293,12 @@ onedrive.live.com/download?cid=4B676EA3FF139B93&resid=4B676EA3FF139B93!133&authk
 onedrive.live.com/download?cid=4DF11EDA676A355F&resid=4DF11EDA676A355F!130&authkey=!AKd6uxvLjTLVpxU
 onedrive.live.com/download?cid=4E45A2988ED9335B&resid=4E45A2988ED9335B!108&authkey=ANbjpQXG-iwr4G8
 onedrive.live.com/download?cid=4E45A2988ED9335B&resid=4E45A2988ED9335B%21108&authkey=ANbjpQXG-iwr4G8
-onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!395&authkey=ALWvuB_YHtOgJXw
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!398&authkey=ABAA_TJd7OHh4So
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!406&authkey=AARnp48wUMgu6TQ
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!415&authkey=AGLZsD6-G0NzJ7s
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!420&authkey=AKk5DROUng_eCWw
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C!440&authkey=AI7-dpR11WNzyQ8
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C%21395&authkey=ALWvuB_YHtOgJXw
-onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C%21398&authkey=ABAA_TJd7OHh4So
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C%21406&authkey=AARnp48wUMgu6TQ
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C%21415&authkey=AGLZsD6-G0NzJ7s
 onedrive.live.com/download?cid=505BE76830F4DC4C&resid=505BE76830F4DC4C%21420&authkey=AKk5DROUng_eCWw
@@ -2384,7 +2358,6 @@ onedrive.live.com/download?cid=7366FEFC2190D2E3&resid=7366FEFC2190D2E3%21205&aut
 onedrive.live.com/download?cid=7A5E689DD1DC641F&resid=7A5E689DD1DC641F!119&authkey=AOzJAi26IzpRqto
 onedrive.live.com/download?cid=7A5E689DD1DC641F&resid=7A5E689DD1DC641F!120&authkey=AJj7uEqJvobgFUM
 onedrive.live.com/download?cid=7A5E689DD1DC641F&resid=7A5E689DD1DC641F%21119&authkey=AOzJAi26IzpRqto
-onedrive.live.com/download?cid=7A5E689DD1DC641F&resid=7A5E689DD1DC641F%21120&authkey=AJj7uEqJvobgFUM
 onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7!5295&authkey=AASCEQJ1MDoDEuo
 onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7!5296&authkey=ANk3vz5syaF6BNY
 onedrive.live.com/download?cid=7C41DDCFA01AEFF7&resid=7C41DDCFA01AEFF7!5298&authkey=ALbZYIzuqCZFv9s
@@ -2411,7 +2384,6 @@ onedrive.live.com/download?cid=A6DD95780C6C7E21&resid=A6DD95780C6C7E21%216053&au
 onedrive.live.com/download?cid=ABC264E92CDBDF89&resid=ABC264E92CDBDF89!130&authkey=AFrvjRChICYZNcA
 onedrive.live.com/download?cid=AE80108520D75992&resid=AE80108520D75992!113&authkey=AGH9q_ZzYJjcsPc
 onedrive.live.com/download?cid=AE80108520D75992&resid=AE80108520D75992%21113&authkey=AGH9q_ZzYJjcsPc
-onedrive.live.com/download?cid=B03EE17D51411308&resid=B03EE17D51411308!2152&authkey=ABuTaAC83l5UTKs
 onedrive.live.com/download?cid=B03EE17D51411308&resid=B03EE17D51411308%212152&authkey=ABuTaAC83l5UTKs
 onedrive.live.com/download?cid=B24535E108E4D261&resid=B24535E108E4D261!135&authkey=ANFVTJtGpOuMnJc
 onedrive.live.com/download?cid=B3B98222C3EF96E0&resid=B3B98222C3EF96E0!166&authkey=AM6Hz6Klyos92OY
@@ -2422,9 +2394,7 @@ onedrive.live.com/download?cid=B5EA8D4249D866E6&resid=B5EA8D4249D866E6!164&authk
 onedrive.live.com/download?cid=B5EA8D4249D866E6&resid=B5EA8D4249D866E6%21164&authkey=ADFsfCDAw3bIboY
 onedrive.live.com/download?cid=B8BA73DB68DA7C0B&resid=B8BA73DB68DA7C0B!7521&authkey=ABLT9zDyq2D4rb0
 onedrive.live.com/download?cid=B8BA73DB68DA7C0B&resid=B8BA73DB68DA7C0B%217521&authkey=ABLT9zDyq2D4rb0
-onedrive.live.com/download?cid=BEAF30DA1F621C9B&resid=BEAF30DA1F621C9B!246&authkey=AFyrcHdutALpu90
-onedrive.live.com/download?cid=BEAF30DA1F621C9B&resid=BEAF30DA1F621C9B%21246&authkey=AFyrcHdutALpu90
-onedrive.live.com/download?cid=C359B1A8BABC6019&resid=C359B1A8BABC6019%211251&authkey=ACt34EIZpzJUGfA
+onedrive.live.com/download?cid=C359B1A8BABC6019&resid=C359B1A8BABC6019!1251&authkey=ACt34EIZpzJUGfA
 onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E!1338&authkey=AJNgAmbOsWs75_c
 onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E!1340&authkey=AL1Ay3FbTUde6D8
 onedrive.live.com/download?cid=C3D8AD85BA2ADD4E&resid=C3D8AD85BA2ADD4E!1342&authkey=ACPr_HTn2jtAXfU
@@ -2456,7 +2426,6 @@ onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85!875&authk
 onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85%21872&authkey=AP9HcHZTYWO8ZUo
 onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85%21874&authkey=ALKzCbXZ-dSCGuM
 onedrive.live.com/download?cid=D06D60404544FB85&resid=D06D60404544FB85%21875&authkey=AKa55YbDhQNOC6c
-onedrive.live.com/download?cid=D718E3C8E3BC53C0&resid=D718E3C8E3BC53C0!191&authkey=AJL2UegQunSGC3Q
 onedrive.live.com/download?cid=D718E3C8E3BC53C0&resid=D718E3C8E3BC53C0!192&authkey=ACD_Hx4BkA3z0Nw
 onedrive.live.com/download?cid=D718E3C8E3BC53C0&resid=D718E3C8E3BC53C0%21191&authkey=AJL2UegQunSGC3Q
 onedrive.live.com/download?cid=D718E3C8E3BC53C0&resid=D718E3C8E3BC53C0%21192&authkey=ACD_Hx4BkA3z0Nw
@@ -2478,11 +2447,8 @@ onedrive.live.com/download?cid=E859DA0F2C81D5F2&resid=E859DA0F2C81D5F2!142&authk
 onedrive.live.com/download?cid=E859DA0F2C81D5F2&resid=E859DA0F2C81D5F2%21142&authkey=AIS88UaD5AOm6qU
 onedrive.live.com/download?cid=EAE9B5435CFAEBAA&resid=EAE9B5435CFAEBAA!232&authkey=AAuY9sGJCcGPZX8
 onedrive.live.com/download?cid=EAE9B5435CFAEBAA&resid=EAE9B5435CFAEBAA%21232&authkey=AAuY9sGJCcGPZX8
-onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928!202&authkey=AH1gjQ8j29DArW4
 onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928!203&authkey=AF8Xr99mRQP8Um8
-onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928!204&authkey=AD0NbZlscbg-0sA
 onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928%21202&authkey=AH1gjQ8j29DArW4
-onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928%21203&authkey=AF8Xr99mRQP8Um8
 onedrive.live.com/download?cid=EFDF2C8D834A1928&resid=EFDF2C8D834A1928%21204&authkey=AD0NbZlscbg-0sA
 onedrive.live.com/download?cid=F79E41C0E32D3314&resid=F79E41C0E32D3314%211182&authkey=AIQTPtbeRyvLGQk&em=2%22
 onedrive.live.com/download?cid=F7AE097903082806&resid=F7AE097903082806!1368&authkey=ANphh1fIjHVZv6c
@@ -2499,7 +2465,7 @@ onedrive.live.com/download?cid=FF1D187273DFBF73&resid=FF1D187273DFBF73!694&authk
 onedrive.live.com/download?cid=FF1D187273DFBF73&resid=FF1D187273DFBF73%21693&authkey=AGcpKHnEWFTE_Yc
 onedrive.live.com/download?cid=FF1D187273DFBF73&resid=FF1D187273DFBF73%21694&authkey=AA5jQZJSp0eSr1s
 onestin.ro
-openclient.sroinfo.com
+onlyart.in
 operasanpiox.bravepages.com
 ophtalmiccenter.com
 opolis.io
@@ -2522,7 +2488,6 @@ p500.mon-application.com
 pack301.bravepages.com
 pakdesighee.com
 palochusvet.szm.com
-paperbrick.peachtest.com
 partyflix.net
 pastebin.com/raw/0LfEkEjA
 pastebin.com/raw/0YdyRCYf
@@ -2542,25 +2507,21 @@ pastebin.com/raw/EUHHeGa1
 pastebin.com/raw/KFCvJMhW
 pastebin.com/raw/NbtLVnaN
 pastebin.com/raw/PUncVV2C
-pastebin.com/raw/PZj1stmq
 pastebin.com/raw/RiMGY5fb
 pastebin.com/raw/VmZqzhF1
-pastebin.com/raw/Ypz5N3Kj
 pastebin.com/raw/Yt0EUBML
 pastebin.com/raw/Yz2xcpaV
 pastebin.com/raw/cFS3qbdQ
-pastebin.com/raw/dSt4esBQ
 pastebin.com/raw/e8kSryaf
 pastebin.com/raw/fDpf4JYj
 pastebin.com/raw/fWbdHjTH
-pastebin.com/raw/iiHJ45D8
-pastebin.com/raw/kec5tXHt
 pastebin.com/raw/m3Gkz6As
 pastebin.com/raw/qsVVM0xt
 pastebin.com/raw/rWWytiGk
 pastebin.com/raw/vJrm3cs2
 pastebin.com/raw/vbzLQ1Dz
 pastebin.com/raw/xGXyTALF
+pat4.jetos.com
 pat4.qpoe.com
 patch2.51lg.com
 patch2.99ddd.com
@@ -2569,8 +2530,8 @@ patrickchan-hk.net
 pawel-sikora.pl
 pcginsure.com
 pcsoori.com
-peachtest.com
 pedidoslalacteo.com.ar
+peterssandmay.com
 petromltd.com
 ph4s.ru
 phamchilong.com
@@ -2580,15 +2541,19 @@ piapendet.com
 pink99.com
 pocketfsa.com
 podiatristlansdale.com
+pokids.vn
 ponto50.com.br
 poolbook.ir
 portal.nfbpc.org
 ppl.ac.id
+prepaenunsoloexamen.academiagalileoac.com
+primaart.vn
 probost.cz
 prosoc.nl
 prowin.co.th
 pujashoppe.in
 purelondonhyg.com
+purewood.in
 qchms.qcpro.vn
 qfjys.com.img.800cdn.com
 qmsled.com
@@ -2609,6 +2574,7 @@ raw.githubusercontent.com/fuzzbunch/fuzzbunch/master/payloads/Doublepulsar-1.3.1
 raw.githubusercontent.com/inquisb/shellcodeexec/master/windows/shellcodeexec.x32.exe
 raw.githubusercontent.com/malwares/WebShell/master/Ajax_PHP%20Command%20Shell.rar
 raw.githubusercontent.com/tennc/webshell/master/other/small_shell.txt
+rawcdn.githack.com/c9cdxguem39s7f1w/reddit/095f2efb735af838bfb013499b00e4263b5315e6/1808164.jpg
 rc.ixiaoyang.cn
 readytalk.github.io
 real-song.tjmedia.co.kr
@@ -2629,13 +2595,13 @@ rkverify.securestudies.com
 robertmcardle.com
 robotrade.com.vn
 rollscar.pk
+rosdal.abouttobeawesome.com
 rossogato.com
+royalplusmobile.ir
 ruisgood.ru
 rusch.nu
 s.51shijuan.com
 s.kk30.com
-s14b.91danji.com
-s14b.groundyun.cn
 sabiupd.compress.to
 saboorjaam.ir
 sabupda.vizvaz.com
@@ -2653,7 +2619,6 @@ sefp-boispro.fr
 seibee.biz
 selekture.com
 selvikoyunciftligi.com
-sendspace.com/pro/dl/dcvd2q
 serpentrising.com
 servicemhkd.myvnc.com
 servicemhkd80.myvnc.com
@@ -2663,16 +2628,16 @@ sgm.pc6.com
 shacked.webdepot.co.il
 shahtoba.faqserv.com
 shaoxiaofei.cn
-share.dmca.gripe
 sharjahas.com
-shembefoundation.com
 shy-obi-0122.jellybean.jp
+simlun.com.ar
 simpl.pw
 sinacloud.net/yun2016/Bwin732d.rar
 sinacloud.net/yun2016/PrsProt32.rar
 sinastorage.cn
 sindicato1ucm.cl
 sinerjias.com.tr
+siriyun.top
 sistemagema.com.ar
 sites.google.com/site/stormqk/dn/StormAgent.apk?attredirects=0
 skyscan.com
@@ -2684,7 +2649,6 @@ snapit.solutions
 sncshyamavan.org
 snp2m.poliupg.ac.id
 social.scottsimard.com
-socialhelp.ir
 sodmalwa.pl
 softdown.55.la
 somudigital.in
@@ -2708,7 +2672,6 @@ starbeatdance.com
 starcountry.net
 static.3001.net/upload/20140812/14078161556897.rar
 static.ilclock.com
-static.topxgun.com
 stats.gov.cn/tjsj/tjzd/gjtjzd/201909/P020190909619147287331.doc
 stecit.nl
 stevewalker.com.au
@@ -2720,12 +2683,11 @@ storage.googleapis.com/wzukusers/user-34654398/documents/5c6e2f6c8c5aduP2Yiwx/ba
 storage.googleapis.com/wzukusers/user-34654398/documents/5c6eab37b8dadMY1gX7C/base3.5.txt
 storage.googleapis.com/wzukusers/user-34654398/documents/5c6eb2aa215a8CVWCf6s/fudjs.txt
 storage.googleapis.com/wzukusers/user-34654398/documents/5c6fd6b4eb1c08aAMus8/go.jpeg
-storage.googleapis.com/wzukusers/user-34654398/documents/5c7921a2cf26cUnJcGVm/nanocoregomes.txt
 storage.googleapis.com/wzukusers/user-34654398/documents/5c9e24cc08a4dLmV7CJO/CDT.txt
 story-maker.jp
+stubbackup.ru
 suaritmafirmalari.com
 support.clz.kr
-sv.pvroe.com
 svkacademy.com
 svn.cc.jyu.fi
 sweaty.dk
@@ -2741,15 +2703,13 @@ tcy.198424.com
 teamtnt.red
 teardrop-productions.ro
 technoites.com
+tecnobella.cl
 tehrenberg.com
 telescopelms.com
 telsiai.info
-tepatitlan.gob.mx
 test.iyibakkendine.com
-test.presta-com.ru
 testdatabaseforcepoint.com
 thaibbqculver.com
-thaisell.com
 tharringtonsponsorship.com
 thc-annex.com
 theclinicabarros.com
@@ -2758,7 +2718,6 @@ theprestige.ro
 theptiendat.com
 thepyramids.nl
 therecruiter.io
-thornadops.com
 thosewebbs.com
 thuong.bidiworks.com
 tianangdep.com
@@ -2781,7 +2740,6 @@ tsredco.telangana.gov.in
 tulli.info
 tumso.org
 tuneup.ibk.me
-tup.com.cn
 tutuler.com
 uc-56.ru
 ufabet168168.329263.com
@@ -2791,14 +2749,11 @@ ultimatepointsstore.com
 ulusalofis.com
 undantagforlag.se
 unicorpbrunei.com
-unilevercopabr.mbiz20.net
 uniquehall.net
 unitenrk.com
 unokaoeojoejfghr.ru
 upd.m.dodo52.com
 update.iwang8.com
-update.my.99.com
-updateflashiplayer.xyz
 urgentmessage.org
 usd-gold.com
 users.skynet.be
@@ -2817,9 +2772,11 @@ vietducbio.com
 vigilar.com.br
 vip.recommendedtoyoo.com
 virustreatments.empeeevents.com
-visualdata.ru
+visagepk.com
+vitinhvnt.com
 vitromed.ro
 vjhascv.ru
+voyageur.sisnettdesign.com
 vrrumover0.vrrum0.farted.net
 vvff.in
 w.zhzy999.net
@@ -2831,6 +2788,7 @@ wbd.5636.com
 wbkmt.com
 web.mit.edu/kolya/.f/root/net.mit.edu/net/user/chris/WinNT/MIT_Agenda2a.doc
 web.mit.edu/kolya/.f/root/net.mit.edu/sipb/user/kolya/afs/root.afs/net/user/chris/WinNT/MIT_Agenda2a.doc
+webarte.com.br
 webq.wikaba.com
 webserverthai.com
 webservice99.com
@@ -2839,7 +2797,6 @@ welcometothefuture.com
 whgaty.com
 wiebe-sanitaer.de
 wikileaks.org/syria-files/attach/222/222051_instruction.zip
-wishngifts.com
 wmd9e.a3i1vvv.feteboc.com
 wmi.1217bye.host/1.txt
 wnksupply.co.th
@@ -2855,17 +2812,15 @@ wt9.siweidaoxiang.com
 www2.recepty5.com
 x2vn.com
 xia.vzboot.com
-xiaidown.com
 xiaoma-10021647.file.myqcloud.com
 xinwenwang123.cn
 xirfad.com
-xn--20gb-hediyefrsati-nvc.com
 xtremeforumz.com
 xxwl.kuaiyunds.com
-xxxze.co.nu
 yeez.net
 yesky.51down.org.cn
 yesky.xzstatic.com
+yiyangjz.cn
 yuluobo.com
 yun-1.lenku.cn
 yuyu02004-10043918.file.myqcloud.com
@@ -2881,8 +2836,10 @@ zentealounge.com.au
 zeytinyagisabun.com
 zhetysu360.kz
 zhzy999.net
+ziliao.yunkaodian.com
 zj.9553.com
 zmmore.com
 zoetermeerov.nl
 zoeydeutchweb.com
 zonefound.com.cn
+zsinstrument.com
diff --git a/urlhaus-filter-unbound-online.conf b/urlhaus-filter-unbound-online.conf
index 04f04805..3e17b5d7 100644
--- a/urlhaus-filter-unbound-online.conf
+++ b/urlhaus-filter-unbound-online.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains Unbound Blocklist
-# Updated: Thu, 07 May 2020 12:09:37 UTC
+# Updated: Fri, 08 May 2020 00:09:41 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -17,7 +17,6 @@ local-zone: "402musicfest.com" always_nxdomain
 local-zone: "49parallel.ca" always_nxdomain
 local-zone: "786suncity.com" always_nxdomain
 local-zone: "8200msc.com" always_nxdomain
-local-zone: "887sconline.com" always_nxdomain
 local-zone: "88mscco.com" always_nxdomain
 local-zone: "a-reality.co.uk" always_nxdomain
 local-zone: "a.xiazai163.com" always_nxdomain
@@ -25,6 +24,7 @@ local-zone: "aaasolution.co.th" always_nxdomain
 local-zone: "accessyouraudience.com" always_nxdomain
 local-zone: "acdesignhub.com" always_nxdomain
 local-zone: "acteon.com.ar" always_nxdomain
+local-zone: "activecost.com.au" always_nxdomain
 local-zone: "adamtcarruthers.com" always_nxdomain
 local-zone: "adnquocte.com" always_nxdomain
 local-zone: "agiandsam.com" always_nxdomain
@@ -43,23 +43,25 @@ local-zone: "allloveseries.com" always_nxdomain
 local-zone: "alohasoftware.net" always_nxdomain
 local-zone: "alphaconsumer.net" always_nxdomain
 local-zone: "am-concepts.ca" always_nxdomain
-local-zone: "amd.alibuf.com" always_nxdomain
+local-zone: "amedeoscognamiglio.329263.com" always_nxdomain
 local-zone: "amemarine.co.th" always_nxdomain
 local-zone: "americanrange.com" always_nxdomain
 local-zone: "anadolutatili.com" always_nxdomain
-local-zone: "anamikaindanegas.in" always_nxdomain
 local-zone: "andreelapeyre.com" always_nxdomain
 local-zone: "andremaraisbeleggings.co.za" always_nxdomain
 local-zone: "angthong.nfe.go.th" always_nxdomain
+local-zone: "anjsolution.com" always_nxdomain
 local-zone: "anvietpro.com" always_nxdomain
 local-zone: "anysbergbiltong.co.za" always_nxdomain
 local-zone: "aoujlift.ir" always_nxdomain
 local-zone: "apartdelpinar.com.ar" always_nxdomain
 local-zone: "apoolcondo.com" always_nxdomain
 local-zone: "apware.co.kr" always_nxdomain
+local-zone: "arabenergyclub.org" always_nxdomain
 local-zone: "archiv.bg" always_nxdomain
 local-zone: "areac-agr.com" always_nxdomain
 local-zone: "ascentive.com" always_nxdomain
+local-zone: "ashoakacharya.com" always_nxdomain
 local-zone: "askarindo.or.id" always_nxdomain
 local-zone: "asload01.top" always_nxdomain
 local-zone: "atfile.com" always_nxdomain
@@ -69,7 +71,6 @@ local-zone: "atteuqpotentialunlimited.com" always_nxdomain
 local-zone: "audiosv.com" always_nxdomain
 local-zone: "aulist.com" always_nxdomain
 local-zone: "auraco.ca" always_nxdomain
-local-zone: "aurumboy.com" always_nxdomain
 local-zone: "azmeasurement.com" always_nxdomain
 local-zone: "aznetsolutions.com" always_nxdomain
 local-zone: "azureautomation.co.uk" always_nxdomain
@@ -79,16 +80,15 @@ local-zone: "bamakobleach.free.fr" always_nxdomain
 local-zone: "bangkok-orchids.com" always_nxdomain
 local-zone: "banzaimonkey.com" always_nxdomain
 local-zone: "bapo.granudan.cn" always_nxdomain
-local-zone: "baritaco.com" always_nxdomain
 local-zone: "bbs.sunwy.org" always_nxdomain
 local-zone: "bbs1.marisfrolg.com" always_nxdomain
 local-zone: "bd11.52lishi.com" always_nxdomain
 local-zone: "bd12.52lishi.com" always_nxdomain
 local-zone: "bd18.52lishi.com" always_nxdomain
 local-zone: "bd19.52lishi.com" always_nxdomain
+local-zone: "beachbeaty.com" always_nxdomain
 local-zone: "beibei.xx007.cc" always_nxdomain
 local-zone: "bepgroup.com.hk" always_nxdomain
-local-zone: "bergamote.org" always_nxdomain
 local-zone: "besserblok-ufa.ru" always_nxdomain
 local-zone: "besttasimacilik.com.tr" always_nxdomain
 local-zone: "beta.pterosol.com" always_nxdomain
@@ -103,6 +103,7 @@ local-zone: "bjkumdo.com" always_nxdomain
 local-zone: "blog.241optical.com" always_nxdomain
 local-zone: "blog.hanxe.com" always_nxdomain
 local-zone: "bolidar.dnset.com" always_nxdomain
+local-zone: "borawebservicioscl1.com" always_nxdomain
 local-zone: "bovientix.com" always_nxdomain
 local-zone: "bpo.correct.go.th" always_nxdomain
 local-zone: "brasstec.com.br" always_nxdomain
@@ -112,15 +113,16 @@ local-zone: "btlocum.pl" always_nxdomain
 local-zone: "bugansavings.com" always_nxdomain
 local-zone: "byqkdy.com" always_nxdomain
 local-zone: "c.vvvvvvvvv.ga" always_nxdomain
-local-zone: "c9f44961.ngrok.io" always_nxdomain
 local-zone: "cameli.vn" always_nxdomain
 local-zone: "cantikekinian.com" always_nxdomain
 local-zone: "caravella.com.br" always_nxdomain
 local-zone: "cassovia.sk" always_nxdomain
 local-zone: "cbk.m.dodo52.com" always_nxdomain
 local-zone: "ccnn.xiaomier.cn" always_nxdomain
+local-zone: "cdn-10049480.file.myqcloud.com" always_nxdomain
 local-zone: "cdn.xiaoduoai.com" always_nxdomain
 local-zone: "cdnus.laboratoryconecpttoday.com" always_nxdomain
+local-zone: "ceirecrear.com.br" always_nxdomain
 local-zone: "cellas.sk" always_nxdomain
 local-zone: "cf.uuu9.com" always_nxdomain
 local-zone: "cf0.pw" always_nxdomain
@@ -128,7 +130,7 @@ local-zone: "cfs5.tistory.com" always_nxdomain
 local-zone: "ch.rmu.ac.th" always_nxdomain
 local-zone: "changematterscounselling.com" always_nxdomain
 local-zone: "chanvribloc.com" always_nxdomain
-local-zone: "charm.bizfxr.com" always_nxdomain
+local-zone: "chattosport.com" always_nxdomain
 local-zone: "chedea.eu" always_nxdomain
 local-zone: "chinhdropfile.myvnc.com" always_nxdomain
 local-zone: "chinhdropfile80.myvnc.com" always_nxdomain
@@ -138,15 +140,17 @@ local-zone: "chj.m.dodo52.com" always_nxdomain
 local-zone: "chuckweiss.com" always_nxdomain
 local-zone: "clareiamente.clareiamente.com" always_nxdomain
 local-zone: "clearwaterriveroutfitting.com" always_nxdomain
-local-zone: "cleversoft.vn" always_nxdomain
 local-zone: "client.yaap.co.uk" always_nxdomain
 local-zone: "clinicamariademolina.com" always_nxdomain
+local-zone: "cmecobrancas.com" always_nxdomain
+local-zone: "cnhdsoft.com" always_nxdomain
 local-zone: "compesat.com" always_nxdomain
 local-zone: "complan.hu" always_nxdomain
 local-zone: "complanbt.hu" always_nxdomain
 local-zone: "comtechadsl.com" always_nxdomain
 local-zone: "config.kuaisousou.top" always_nxdomain
 local-zone: "consultingcy.com" always_nxdomain
+local-zone: "cosmea.pl" always_nxdomain
 local-zone: "counciloflight.bravepages.com" always_nxdomain
 local-zone: "cqjcc.org" always_nxdomain
 local-zone: "crittersbythebay.com" always_nxdomain
@@ -154,8 +158,6 @@ local-zone: "cryline.net" always_nxdomain
 local-zone: "csnserver.com" always_nxdomain
 local-zone: "csw.hu" always_nxdomain
 local-zone: "cyclomove.com" always_nxdomain
-local-zone: "czsl.91756.cn" always_nxdomain
-local-zone: "d3.99ddd.com" always_nxdomain
 local-zone: "d9.99ddd.com" always_nxdomain
 local-zone: "da.alibuf.com" always_nxdomain
 local-zone: "daithanhphung.com" always_nxdomain
@@ -167,15 +169,18 @@ local-zone: "datvensaigon.com" always_nxdomain
 local-zone: "davinadouthard.com" always_nxdomain
 local-zone: "dawaphoto.co.kr" always_nxdomain
 local-zone: "daynightgym.com" always_nxdomain
+local-zone: "dbssistem.com.tr" always_nxdomain
 local-zone: "de.gsearch.com.de" always_nxdomain
+local-zone: "dehkadenovin.com" always_nxdomain
 local-zone: "deixameuskls.tripod.com" always_nxdomain
-local-zone: "demo10.onbm.ir" always_nxdomain
+local-zone: "demo13.dsdemosite.com" always_nxdomain
 local-zone: "denkagida.com.tr" always_nxdomain
 local-zone: "depgrup.com" always_nxdomain
 local-zone: "depot7.com" always_nxdomain
 local-zone: "derivativespro.in" always_nxdomain
 local-zone: "desighiza.com" always_nxdomain
 local-zone: "detafa.com" always_nxdomain
+local-zone: "dev.nona-polska.pl" always_nxdomain
 local-zone: "dev.sebpo.net" always_nxdomain
 local-zone: "dev1.xicom.us" always_nxdomain
 local-zone: "dev5.mypagevn.com" always_nxdomain
@@ -185,10 +190,9 @@ local-zone: "dfd.zhzy999.net" always_nxdomain
 local-zone: "dfzm.91756.cn" always_nxdomain
 local-zone: "dgecolesdepolice.bf" always_nxdomain
 local-zone: "dgnj.cn" always_nxdomain
-local-zone: "dhlservices.duckdns.org" always_nxdomain
 local-zone: "diazavendano.cl" always_nxdomain
 local-zone: "dichvuvesinhcongnghiep.top" always_nxdomain
-local-zone: "dienmayminhan.com" always_nxdomain
+local-zone: "dienmaycu.vn" always_nxdomain
 local-zone: "digilib.dianhusada.ac.id" always_nxdomain
 local-zone: "digital-marketing-institute-delhi.empeeevents.com" always_nxdomain
 local-zone: "digitaldog.de" always_nxdomain
@@ -199,13 +203,12 @@ local-zone: "dl.1003b.56a.com" always_nxdomain
 local-zone: "dl.198424.com" always_nxdomain
 local-zone: "dl.dzqzd.com" always_nxdomain
 local-zone: "dl.kuaile-u.com" always_nxdomain
-local-zone: "dl2.soft-lenta.ru" always_nxdomain
 local-zone: "dlist.iqilie.com" always_nxdomain
 local-zone: "dmresor.se" always_nxdomain
-local-zone: "dnn.alibuf.com" always_nxdomain
 local-zone: "dns.alibuf.com" always_nxdomain
 local-zone: "dodsonimaging.com" always_nxdomain
 local-zone: "don.viameventos.com.br" always_nxdomain
+local-zone: "dongiln.co" always_nxdomain
 local-zone: "donmago.com" always_nxdomain
 local-zone: "doostansocks.ir" always_nxdomain
 local-zone: "doransky.info" always_nxdomain
@@ -214,22 +217,16 @@ local-zone: "down.ancamera.co.kr" always_nxdomain
 local-zone: "down.gogominer.com" always_nxdomain
 local-zone: "down.haote.com" always_nxdomain
 local-zone: "down.pcclear.com" always_nxdomain
-local-zone: "down.pdflist.cqhbkjzx.com" always_nxdomain
-local-zone: "down.softlist.tcroot.cn" always_nxdomain
 local-zone: "down.startools.co.kr" always_nxdomain
 local-zone: "down.tgjkbx.cn" always_nxdomain
 local-zone: "down.upzxt.com" always_nxdomain
 local-zone: "down.webbora.com" always_nxdomain
 local-zone: "down.xrpdf.com" always_nxdomain
 local-zone: "down1.arpun.com" always_nxdomain
-local-zone: "downcdn.xianshuabao.com" always_nxdomain
 local-zone: "download.1ys.com" always_nxdomain
-local-zone: "download.beveilingsdienst.info" always_nxdomain
 local-zone: "download.doumaibiji.cn" always_nxdomain
 local-zone: "download.kaobeitu.com" always_nxdomain
-local-zone: "download.ktkt.com" always_nxdomain
 local-zone: "download.pdf00.cn" always_nxdomain
-local-zone: "download.rising.com.cn" always_nxdomain
 local-zone: "download.skycn.com" always_nxdomain
 local-zone: "download.ttz3.cn" always_nxdomain
 local-zone: "download.ware.ru" always_nxdomain
@@ -241,11 +238,9 @@ local-zone: "dralpaslan.com" always_nxdomain
 local-zone: "drools-moved.46999.n3.nabble.com" always_nxdomain
 local-zone: "droversmouser.at" always_nxdomain
 local-zone: "druzim.freewww.biz" always_nxdomain
-local-zone: "ds.obmenvsemfiles.com" always_nxdomain
 local-zone: "dtsay.xyz" always_nxdomain
 local-zone: "dudulm.com" always_nxdomain
 local-zone: "dusdn.mireene.com" always_nxdomain
-local-zone: "dw.58wangdun.com" always_nxdomain
 local-zone: "dx.qqyewu.com" always_nxdomain
 local-zone: "dx1.qqtn.com" always_nxdomain
 local-zone: "dx2.qqtn.com" always_nxdomain
@@ -254,7 +249,6 @@ local-zone: "dx60.siweidaoxiang.com" always_nxdomain
 local-zone: "dzinestudio87.co.uk" always_nxdomain
 local-zone: "e.dangeana.com" always_nxdomain
 local-zone: "easydown.workday360.cn" always_nxdomain
-local-zone: "ebook.w3wvg.com" always_nxdomain
 local-zone: "edicolanazionale.it" always_nxdomain
 local-zone: "emadamini.co.za" always_nxdomain
 local-zone: "emir-elbahr.com" always_nxdomain
@@ -265,38 +259,34 @@ local-zone: "er-bulisguvenligi.com" always_nxdomain
 local-zone: "ermekanik.com" always_nxdomain
 local-zone: "esolvent.pl" always_nxdomain
 local-zone: "esteteam.org" always_nxdomain
-local-zone: "evdeyizrahatiz.com" always_nxdomain
 local-zone: "exposvision.com" always_nxdomain
 local-zone: "ezfintechcorp.com" always_nxdomain
 local-zone: "fafhoafouehfuh.su" always_nxdomain
 local-zone: "fairyqueenstore.com" always_nxdomain
-local-zone: "fastsoft.onlinedown.net" always_nxdomain
 local-zone: "fazi.pl" always_nxdomain
+local-zone: "ffv322.ru" always_nxdomain
+local-zone: "ffv32223.ru" always_nxdomain
 local-zone: "fidiag.kymco.com" always_nxdomain
 local-zone: "fifa555easy.329263.com" always_nxdomain
 local-zone: "figuig.net" always_nxdomain
 local-zone: "fileco.jobkorea.co.kr" always_nxdomain
 local-zone: "filen3.utengine.co.kr" always_nxdomain
-local-zone: "filen5.utengine.co.kr" always_nxdomain
-local-zone: "files.fqapps.com" always_nxdomain
 local-zone: "files.rakbot.ru" always_nxdomain
 local-zone: "files6.uludagbilisim.com" always_nxdomain
 local-zone: "fishingbigstore.com" always_nxdomain
 local-zone: "fitmanacademy.com" always_nxdomain
 local-zone: "fkd.derpcity.ru" always_nxdomain
 local-zone: "flex.ru" always_nxdomain
-local-zone: "flood-protection.org" always_nxdomain
 local-zone: "fordlamdong.com.vn" always_nxdomain
 local-zone: "foreverprecious.org" always_nxdomain
 local-zone: "foxfennecs.com" always_nxdomain
 local-zone: "frin.ng" always_nxdomain
 local-zone: "fte.m.dodo52.com" always_nxdomain
-local-zone: "ftpcnc-p2sp.pconline.com.cn" always_nxdomain
 local-zone: "ftpftpftp.com" always_nxdomain
 local-zone: "funletters.net" always_nxdomain
 local-zone: "futuregraphics.com.ar" always_nxdomain
-local-zone: "g.7230.com" always_nxdomain
 local-zone: "g0ogle.free.fr" always_nxdomain
+local-zone: "gainsdirectory.com" always_nxdomain
 local-zone: "galuhtea.com" always_nxdomain
 local-zone: "gamebazaar.club" always_nxdomain
 local-zone: "gamee.top" always_nxdomain
@@ -305,10 +295,9 @@ local-zone: "garenanow4.myvnc.com" always_nxdomain
 local-zone: "gateway-heide.de" always_nxdomain
 local-zone: "gateway.ethlqd.com" always_nxdomain
 local-zone: "genesisconstruction.co.za" always_nxdomain
-local-zone: "genstaff.gov.kg" always_nxdomain
 local-zone: "germistonmiraclecentre.co.za" always_nxdomain
 local-zone: "ghislain.dartois.pagesperso-orange.fr" always_nxdomain
-local-zone: "gimscompany.com" always_nxdomain
+local-zone: "ghwls44.gabia.io" always_nxdomain
 local-zone: "glitzygal.net" always_nxdomain
 local-zone: "globaleuropeans.com" always_nxdomain
 local-zone: "gmassurance.fr" always_nxdomain
@@ -316,14 +305,13 @@ local-zone: "gnimelf.net" always_nxdomain
 local-zone: "go.xsuad.com" always_nxdomain
 local-zone: "google.ghststr.com" always_nxdomain
 local-zone: "govhotel.us" always_nxdomain
-local-zone: "grafchekloder.rebatesrule.net" always_nxdomain
 local-zone: "granportale.com.br" always_nxdomain
+local-zone: "grantoveporadenstvi.eu" always_nxdomain
 local-zone: "gray-takeo-7170.chowder.jp" always_nxdomain
 local-zone: "green100.cn" always_nxdomain
 local-zone: "greenfood.sa.com" always_nxdomain
 local-zone: "gssgroups.com" always_nxdomain
 local-zone: "gundemdekihaber.com" always_nxdomain
-local-zone: "gx-10012947.file.myqcloud.com" always_nxdomain
 local-zone: "habbotips.free.fr" always_nxdomain
 local-zone: "hagebakken.no" always_nxdomain
 local-zone: "haisannhatrang.com.vn" always_nxdomain
@@ -332,12 +320,11 @@ local-zone: "hanaphoto.co.kr" always_nxdomain
 local-zone: "handrush.com" always_nxdomain
 local-zone: "hanoihub.vn" always_nxdomain
 local-zone: "hazel-azure.co.th" always_nxdomain
-local-zone: "hdxa.net" always_nxdomain
 local-zone: "healtina.com" always_nxdomain
 local-zone: "heavenif.co.za" always_nxdomain
 local-zone: "hellomessager.com" always_nxdomain
-local-zone: "hevizapartments.net" always_nxdomain
 local-zone: "hfsoftware.cl" always_nxdomain
+local-zone: "hi-event.vn" always_nxdomain
 local-zone: "hingcheong.hk" always_nxdomain
 local-zone: "hldschool.com" always_nxdomain
 local-zone: "hmbwgroup.com" always_nxdomain
@@ -348,13 +335,13 @@ local-zone: "hotart.co.nz" always_nxdomain
 local-zone: "hotel-le-relais-des-moulins.com" always_nxdomain
 local-zone: "hottestxxxvideo.com" always_nxdomain
 local-zone: "housewifes.co" always_nxdomain
-local-zone: "hseda.com" always_nxdomain
 local-zone: "hsmwebapp.com" always_nxdomain
 local-zone: "htxl.cn" always_nxdomain
 local-zone: "huishuren.nu" always_nxdomain
 local-zone: "hwsrv-675710.hostwindsdns.com" always_nxdomain
 local-zone: "hwsrv-720737.hostwindsdns.com" always_nxdomain
 local-zone: "hyadegari.ir" always_nxdomain
+local-zone: "hyundainamdinh.org" always_nxdomain
 local-zone: "hyvat-olutravintolat.fi" always_nxdomain
 local-zone: "i333.wang" always_nxdomain
 local-zone: "ibda.adv.br" always_nxdomain
@@ -363,13 +350,11 @@ local-zone: "ihpmed.ae" always_nxdomain
 local-zone: "ileolaherbalcare.com.ng" always_nxdomain
 local-zone: "imellda.com" always_nxdomain
 local-zone: "imenizeh.ir" always_nxdomain
+local-zone: "imobiliarianossacasamt.com.br" always_nxdomain
 local-zone: "impression-gobelet.com" always_nxdomain
 local-zone: "in-sect.com" always_nxdomain
 local-zone: "inapadvance.com" always_nxdomain
 local-zone: "incrediblepixels.com" always_nxdomain
-local-zone: "incredicole.com" always_nxdomain
-local-zone: "infogue.id" always_nxdomain
-local-zone: "ini.egkj.com" always_nxdomain
 local-zone: "innovation4crisis.org" always_nxdomain
 local-zone: "instanttechnology.com.au" always_nxdomain
 local-zone: "intelicasa.ro" always_nxdomain
@@ -380,8 +365,8 @@ local-zone: "intoxicated-twilight.com" always_nxdomain
 local-zone: "iran-gold.com" always_nxdomain
 local-zone: "iremart.es" always_nxdomain
 local-zone: "isso.ps" always_nxdomain
-local-zone: "it.shopforever.pk" always_nxdomain
 local-zone: "itd.m.dodo52.com" always_nxdomain
+local-zone: "itohukuk.com" always_nxdomain
 local-zone: "itrigger.cn" always_nxdomain
 local-zone: "itsnixielou.com" always_nxdomain
 local-zone: "ixlonbcc.com" always_nxdomain
@@ -394,6 +379,7 @@ local-zone: "janvierassocies.fr" always_nxdomain
 local-zone: "javatank.ru" always_nxdomain
 local-zone: "jcedu.org" always_nxdomain
 local-zone: "jessymart.flexyhub.com" always_nxdomain
+local-zone: "jim.webengineerteam.com" always_nxdomain
 local-zone: "jjjexx.329263.com" always_nxdomain
 local-zone: "jmtc.91756.cn" always_nxdomain
 local-zone: "jocuri.trophygaming.net" always_nxdomain
@@ -405,11 +391,12 @@ local-zone: "jppost-cde.top" always_nxdomain
 local-zone: "jsd618.com" always_nxdomain
 local-zone: "jsq.m.dodo52.com" always_nxdomain
 local-zone: "jsya.co.kr" always_nxdomain
+local-zone: "jumla.biz" always_nxdomain
 local-zone: "jutvac.com" always_nxdomain
 local-zone: "jvalert.com" always_nxdomain
 local-zone: "jyv.fi" always_nxdomain
-local-zone: "jzny.com.cn" always_nxdomain
-local-zone: "k3.etfiber.net" always_nxdomain
+local-zone: "k.ludong.tv" always_nxdomain
+local-zone: "kabiru.ru" always_nxdomain
 local-zone: "kachsurf.mylftv.com" always_nxdomain
 local-zone: "kamasu11.cafe24.com" always_nxdomain
 local-zone: "kamisecurity.com.my" always_nxdomain
@@ -420,6 +407,7 @@ local-zone: "kassohome.com.tr" always_nxdomain
 local-zone: "kdsp.co.kr" always_nxdomain
 local-zone: "kejpa.com" always_nxdomain
 local-zone: "kenareh-gostare-aras.ir" always_nxdomain
+local-zone: "kgfs3.329263.com" always_nxdomain
 local-zone: "khunnapap.com" always_nxdomain
 local-zone: "kiencuonghotel.vn" always_nxdomain
 local-zone: "kjbm9.mof.gov.cn" always_nxdomain
@@ -432,7 +420,6 @@ local-zone: "kristofferdaniels.com" always_nxdomain
 local-zone: "kupaliskohs.sk" always_nxdomain
 local-zone: "kuznetsov.ca" always_nxdomain
 local-zone: "kwanfromhongkong.com" always_nxdomain
-local-zone: "kwikomfi-lab.com" always_nxdomain
 local-zone: "lagalaxy88easy.329263.com" always_nxdomain
 local-zone: "lameguard.ru" always_nxdomain
 local-zone: "lammaixep.com" always_nxdomain
@@ -445,6 +432,8 @@ local-zone: "ld.mediaget.com" always_nxdomain
 local-zone: "learnbuddy.com" always_nxdomain
 local-zone: "learningcomputing.org" always_nxdomain
 local-zone: "lebedyn.info" always_nxdomain
+local-zone: "lecafedesartistes.com" always_nxdomain
+local-zone: "leukkado.be" always_nxdomain
 local-zone: "lfcsghosi.co.in" always_nxdomain
 local-zone: "lhbfirst.com" always_nxdomain
 local-zone: "libya-info.com" always_nxdomain
@@ -452,6 +441,7 @@ local-zone: "lifeapt.biz" always_nxdomain
 local-zone: "linx.li" always_nxdomain
 local-zone: "lists.ibiblio.org" always_nxdomain
 local-zone: "lists.mplayerhq.hu" always_nxdomain
+local-zone: "lodergord.com" always_nxdomain
 local-zone: "log.yundabao.cn" always_nxdomain
 local-zone: "lsyr.net" always_nxdomain
 local-zone: "lt02.datacomspecialists.net" always_nxdomain
@@ -461,28 +451,27 @@ local-zone: "luckytriumph.com" always_nxdomain
 local-zone: "luisnacht.com.ar" always_nxdomain
 local-zone: "lvr.samacomplus.com" always_nxdomain
 local-zone: "m.0757kd.cn" always_nxdomain
-local-zone: "m93701t2.beget.tech" always_nxdomain
 local-zone: "mackleyn.com" always_nxdomain
 local-zone: "magda.zelentourism.com" always_nxdomain
 local-zone: "magic-living.com" always_nxdomain
 local-zone: "makosoft.hu" always_nxdomain
 local-zone: "malin-akerman.net" always_nxdomain
+local-zone: "mangawt.com" always_nxdomain
 local-zone: "margopassadorestylist.com" always_nxdomain
+local-zone: "mariereiko.com" always_nxdomain
 local-zone: "maringareservas.com.br" always_nxdomain
 local-zone: "marketprice.com.ng" always_nxdomain
 local-zone: "marksidfgs.ug" always_nxdomain
-local-zone: "marocaji.com" always_nxdomain
 local-zone: "matt-e.it" always_nxdomain
 local-zone: "mattayom31.go.th" always_nxdomain
-local-zone: "maynenkhivinhphat.com" always_nxdomain
 local-zone: "mazury4x4.pl" always_nxdomain
 local-zone: "mbgrm.com" always_nxdomain
+local-zone: "mecbox.cn" always_nxdomain
 local-zone: "mediamatkat.fi" always_nxdomain
 local-zone: "medianews.ge" always_nxdomain
 local-zone: "medlinee.com" always_nxdomain
 local-zone: "medreg.uz" always_nxdomain
 local-zone: "meert.org" always_nxdomain
-local-zone: "meeweb.com" always_nxdomain
 local-zone: "meitao886.com" always_nxdomain
 local-zone: "members.chello.nl" always_nxdomain
 local-zone: "members.westnet.com.au" always_nxdomain
@@ -497,6 +486,7 @@ local-zone: "micahproducts.com" always_nxdomain
 local-zone: "micalle.com.au" always_nxdomain
 local-zone: "mirror.mypage.sk" always_nxdomain
 local-zone: "mis.nbcc.ac.th" always_nxdomain
+local-zone: "misskproductions.co.za" always_nxdomain
 local-zone: "misterson.com" always_nxdomain
 local-zone: "mistydeblasiophotography.com" always_nxdomain
 local-zone: "mkk09.kr" always_nxdomain
@@ -509,17 +499,18 @@ local-zone: "moha-group.com" always_nxdomain
 local-zone: "monmariage.info" always_nxdomain
 local-zone: "moscow11.at" always_nxdomain
 local-zone: "mountveederwines.com" always_nxdomain
+local-zone: "movingsolutionsus.com" always_nxdomain
 local-zone: "moyo.co.kr" always_nxdomain
 local-zone: "mperez.com.ar" always_nxdomain
 local-zone: "mrtool.ir" always_nxdomain
 local-zone: "msecurity.ro" always_nxdomain
+local-zone: "mteng.mmj7.com" always_nxdomain
 local-zone: "mtfelektroteknik.com" always_nxdomain
-local-zone: "mudita.vn" always_nxdomain
 local-zone: "mueblesjcp.cl" always_nxdomain
+local-zone: "mutec.jp" always_nxdomain
 local-zone: "mv360.net" always_nxdomain
 local-zone: "mvb.kz" always_nxdomain
 local-zone: "mxpiqw.am.files.1drv.com" always_nxdomain
-local-zone: "mydesign.thinkeraibirds.com" always_nxdomain
 local-zone: "myexpertca.in" always_nxdomain
 local-zone: "myhood.cl" always_nxdomain
 local-zone: "myo.net.au" always_nxdomain
@@ -529,6 +520,7 @@ local-zone: "mytrains.net" always_nxdomain
 local-zone: "mywp.asia" always_nxdomain
 local-zone: "myyttilukukansasta.fi" always_nxdomain
 local-zone: "naildumarche.com" always_nxdomain
+local-zone: "namuvpn.com" always_nxdomain
 local-zone: "narty.laserteam.pl" always_nxdomain
 local-zone: "naturalma.es" always_nxdomain
 local-zone: "naturepack.cc" always_nxdomain
@@ -538,11 +530,13 @@ local-zone: "ndrs.cloud" always_nxdomain
 local-zone: "nebraskacharters.com.au" always_nxdomain
 local-zone: "neocity1.free.fr" always_nxdomain
 local-zone: "nerve.untergrund.net" always_nxdomain
+local-zone: "news.abfakerman.ir" always_nxdomain
 local-zone: "news.omumusic.net" always_nxdomain
 local-zone: "newsun-shop.com" always_nxdomain
 local-zone: "newxing.com" always_nxdomain
+local-zone: "nexity.me" always_nxdomain
 local-zone: "nfbio.com" always_nxdomain
-local-zone: "ngoaingu.garage.com.vn" always_nxdomain
+local-zone: "nkdhub.com" always_nxdomain
 local-zone: "nofound.000webhostapp.com" always_nxdomain
 local-zone: "norperuinge.com.pe" always_nxdomain
 local-zone: "nprg.ru" always_nxdomain
@@ -552,12 +546,14 @@ local-zone: "oa.fnysw.com" always_nxdomain
 local-zone: "oa.hys.cn" always_nxdomain
 local-zone: "obnova.zzux.com" always_nxdomain
 local-zone: "obseques-conseils.com" always_nxdomain
+local-zone: "ohe.ie" always_nxdomain
 local-zone: "oknoplastik.sk" always_nxdomain
 local-zone: "omega.az" always_nxdomain
+local-zone: "omitkyspisar.cz" always_nxdomain
 local-zone: "omsk-osma.ru" always_nxdomain
 local-zone: "omuzgor.tj" always_nxdomain
 local-zone: "onestin.ro" always_nxdomain
-local-zone: "openclient.sroinfo.com" always_nxdomain
+local-zone: "onlyart.in" always_nxdomain
 local-zone: "operasanpiox.bravepages.com" always_nxdomain
 local-zone: "ophtalmiccenter.com" always_nxdomain
 local-zone: "opolis.io" always_nxdomain
@@ -576,8 +572,8 @@ local-zone: "p500.mon-application.com" always_nxdomain
 local-zone: "pack301.bravepages.com" always_nxdomain
 local-zone: "pakdesighee.com" always_nxdomain
 local-zone: "palochusvet.szm.com" always_nxdomain
-local-zone: "paperbrick.peachtest.com" always_nxdomain
 local-zone: "partyflix.net" always_nxdomain
+local-zone: "pat4.jetos.com" always_nxdomain
 local-zone: "pat4.qpoe.com" always_nxdomain
 local-zone: "patch2.51lg.com" always_nxdomain
 local-zone: "patch2.99ddd.com" always_nxdomain
@@ -586,8 +582,8 @@ local-zone: "patrickchan-hk.net" always_nxdomain
 local-zone: "pawel-sikora.pl" always_nxdomain
 local-zone: "pcginsure.com" always_nxdomain
 local-zone: "pcsoori.com" always_nxdomain
-local-zone: "peachtest.com" always_nxdomain
 local-zone: "pedidoslalacteo.com.ar" always_nxdomain
+local-zone: "peterssandmay.com" always_nxdomain
 local-zone: "petromltd.com" always_nxdomain
 local-zone: "ph4s.ru" always_nxdomain
 local-zone: "phamchilong.com" always_nxdomain
@@ -597,15 +593,19 @@ local-zone: "piapendet.com" always_nxdomain
 local-zone: "pink99.com" always_nxdomain
 local-zone: "pocketfsa.com" always_nxdomain
 local-zone: "podiatristlansdale.com" always_nxdomain
+local-zone: "pokids.vn" always_nxdomain
 local-zone: "ponto50.com.br" always_nxdomain
 local-zone: "poolbook.ir" always_nxdomain
 local-zone: "portal.nfbpc.org" always_nxdomain
 local-zone: "ppl.ac.id" always_nxdomain
+local-zone: "prepaenunsoloexamen.academiagalileoac.com" always_nxdomain
+local-zone: "primaart.vn" always_nxdomain
 local-zone: "probost.cz" always_nxdomain
 local-zone: "prosoc.nl" always_nxdomain
 local-zone: "prowin.co.th" always_nxdomain
 local-zone: "pujashoppe.in" always_nxdomain
 local-zone: "purelondonhyg.com" always_nxdomain
+local-zone: "purewood.in" always_nxdomain
 local-zone: "qchms.qcpro.vn" always_nxdomain
 local-zone: "qfjys.com.img.800cdn.com" always_nxdomain
 local-zone: "qmsled.com" always_nxdomain
@@ -634,13 +634,13 @@ local-zone: "rkverify.securestudies.com" always_nxdomain
 local-zone: "robertmcardle.com" always_nxdomain
 local-zone: "robotrade.com.vn" always_nxdomain
 local-zone: "rollscar.pk" always_nxdomain
+local-zone: "rosdal.abouttobeawesome.com" always_nxdomain
 local-zone: "rossogato.com" always_nxdomain
+local-zone: "royalplusmobile.ir" always_nxdomain
 local-zone: "ruisgood.ru" always_nxdomain
 local-zone: "rusch.nu" always_nxdomain
 local-zone: "s.51shijuan.com" always_nxdomain
 local-zone: "s.kk30.com" always_nxdomain
-local-zone: "s14b.91danji.com" always_nxdomain
-local-zone: "s14b.groundyun.cn" always_nxdomain
 local-zone: "sabiupd.compress.to" always_nxdomain
 local-zone: "saboorjaam.ir" always_nxdomain
 local-zone: "sabupda.vizvaz.com" always_nxdomain
@@ -667,14 +667,14 @@ local-zone: "sgm.pc6.com" always_nxdomain
 local-zone: "shacked.webdepot.co.il" always_nxdomain
 local-zone: "shahtoba.faqserv.com" always_nxdomain
 local-zone: "shaoxiaofei.cn" always_nxdomain
-local-zone: "share.dmca.gripe" always_nxdomain
 local-zone: "sharjahas.com" always_nxdomain
-local-zone: "shembefoundation.com" always_nxdomain
 local-zone: "shy-obi-0122.jellybean.jp" always_nxdomain
+local-zone: "simlun.com.ar" always_nxdomain
 local-zone: "simpl.pw" always_nxdomain
 local-zone: "sinastorage.cn" always_nxdomain
 local-zone: "sindicato1ucm.cl" always_nxdomain
 local-zone: "sinerjias.com.tr" always_nxdomain
+local-zone: "siriyun.top" always_nxdomain
 local-zone: "sistemagema.com.ar" always_nxdomain
 local-zone: "skyscan.com" always_nxdomain
 local-zone: "slmconduct.dk" always_nxdomain
@@ -685,7 +685,6 @@ local-zone: "snapit.solutions" always_nxdomain
 local-zone: "sncshyamavan.org" always_nxdomain
 local-zone: "snp2m.poliupg.ac.id" always_nxdomain
 local-zone: "social.scottsimard.com" always_nxdomain
-local-zone: "socialhelp.ir" always_nxdomain
 local-zone: "sodmalwa.pl" always_nxdomain
 local-zone: "softdown.55.la" always_nxdomain
 local-zone: "somudigital.in" always_nxdomain
@@ -708,13 +707,12 @@ local-zone: "standardalloysindia.com" always_nxdomain
 local-zone: "starbeatdance.com" always_nxdomain
 local-zone: "starcountry.net" always_nxdomain
 local-zone: "static.ilclock.com" always_nxdomain
-local-zone: "static.topxgun.com" always_nxdomain
 local-zone: "stecit.nl" always_nxdomain
 local-zone: "stevewalker.com.au" always_nxdomain
 local-zone: "story-maker.jp" always_nxdomain
+local-zone: "stubbackup.ru" always_nxdomain
 local-zone: "suaritmafirmalari.com" always_nxdomain
 local-zone: "support.clz.kr" always_nxdomain
-local-zone: "sv.pvroe.com" always_nxdomain
 local-zone: "svkacademy.com" always_nxdomain
 local-zone: "svn.cc.jyu.fi" always_nxdomain
 local-zone: "sweaty.dk" always_nxdomain
@@ -730,15 +728,13 @@ local-zone: "tcy.198424.com" always_nxdomain
 local-zone: "teamtnt.red" always_nxdomain
 local-zone: "teardrop-productions.ro" always_nxdomain
 local-zone: "technoites.com" always_nxdomain
+local-zone: "tecnobella.cl" always_nxdomain
 local-zone: "tehrenberg.com" always_nxdomain
 local-zone: "telescopelms.com" always_nxdomain
 local-zone: "telsiai.info" always_nxdomain
-local-zone: "tepatitlan.gob.mx" always_nxdomain
 local-zone: "test.iyibakkendine.com" always_nxdomain
-local-zone: "test.presta-com.ru" always_nxdomain
 local-zone: "testdatabaseforcepoint.com" always_nxdomain
 local-zone: "thaibbqculver.com" always_nxdomain
-local-zone: "thaisell.com" always_nxdomain
 local-zone: "tharringtonsponsorship.com" always_nxdomain
 local-zone: "thc-annex.com" always_nxdomain
 local-zone: "theclinicabarros.com" always_nxdomain
@@ -747,7 +743,6 @@ local-zone: "theprestige.ro" always_nxdomain
 local-zone: "theptiendat.com" always_nxdomain
 local-zone: "thepyramids.nl" always_nxdomain
 local-zone: "therecruiter.io" always_nxdomain
-local-zone: "thornadops.com" always_nxdomain
 local-zone: "thosewebbs.com" always_nxdomain
 local-zone: "thuong.bidiworks.com" always_nxdomain
 local-zone: "tianangdep.com" always_nxdomain
@@ -766,7 +761,6 @@ local-zone: "tsredco.telangana.gov.in" always_nxdomain
 local-zone: "tulli.info" always_nxdomain
 local-zone: "tumso.org" always_nxdomain
 local-zone: "tuneup.ibk.me" always_nxdomain
-local-zone: "tup.com.cn" always_nxdomain
 local-zone: "tutuler.com" always_nxdomain
 local-zone: "uc-56.ru" always_nxdomain
 local-zone: "ufabet168168.329263.com" always_nxdomain
@@ -776,14 +770,11 @@ local-zone: "ultimatepointsstore.com" always_nxdomain
 local-zone: "ulusalofis.com" always_nxdomain
 local-zone: "undantagforlag.se" always_nxdomain
 local-zone: "unicorpbrunei.com" always_nxdomain
-local-zone: "unilevercopabr.mbiz20.net" always_nxdomain
 local-zone: "uniquehall.net" always_nxdomain
 local-zone: "unitenrk.com" always_nxdomain
 local-zone: "unokaoeojoejfghr.ru" always_nxdomain
 local-zone: "upd.m.dodo52.com" always_nxdomain
 local-zone: "update.iwang8.com" always_nxdomain
-local-zone: "update.my.99.com" always_nxdomain
-local-zone: "updateflashiplayer.xyz" always_nxdomain
 local-zone: "urgentmessage.org" always_nxdomain
 local-zone: "usd-gold.com" always_nxdomain
 local-zone: "users.skynet.be" always_nxdomain
@@ -802,9 +793,11 @@ local-zone: "vietducbio.com" always_nxdomain
 local-zone: "vigilar.com.br" always_nxdomain
 local-zone: "vip.recommendedtoyoo.com" always_nxdomain
 local-zone: "virustreatments.empeeevents.com" always_nxdomain
-local-zone: "visualdata.ru" always_nxdomain
+local-zone: "visagepk.com" always_nxdomain
+local-zone: "vitinhvnt.com" always_nxdomain
 local-zone: "vitromed.ro" always_nxdomain
 local-zone: "vjhascv.ru" always_nxdomain
+local-zone: "voyageur.sisnettdesign.com" always_nxdomain
 local-zone: "vrrumover0.vrrum0.farted.net" always_nxdomain
 local-zone: "vvff.in" always_nxdomain
 local-zone: "w.zhzy999.net" always_nxdomain
@@ -814,6 +807,7 @@ local-zone: "ware.ru" always_nxdomain
 local-zone: "warriorllc.com" always_nxdomain
 local-zone: "wbd.5636.com" always_nxdomain
 local-zone: "wbkmt.com" always_nxdomain
+local-zone: "webarte.com.br" always_nxdomain
 local-zone: "webq.wikaba.com" always_nxdomain
 local-zone: "webserverthai.com" always_nxdomain
 local-zone: "webservice99.com" always_nxdomain
@@ -821,7 +815,6 @@ local-zone: "websound.ru" always_nxdomain
 local-zone: "welcometothefuture.com" always_nxdomain
 local-zone: "whgaty.com" always_nxdomain
 local-zone: "wiebe-sanitaer.de" always_nxdomain
-local-zone: "wishngifts.com" always_nxdomain
 local-zone: "wmd9e.a3i1vvv.feteboc.com" always_nxdomain
 local-zone: "wnksupply.co.th" always_nxdomain
 local-zone: "wood-expert.net" always_nxdomain
@@ -836,17 +829,15 @@ local-zone: "wt9.siweidaoxiang.com" always_nxdomain
 local-zone: "www2.recepty5.com" always_nxdomain
 local-zone: "x2vn.com" always_nxdomain
 local-zone: "xia.vzboot.com" always_nxdomain
-local-zone: "xiaidown.com" always_nxdomain
 local-zone: "xiaoma-10021647.file.myqcloud.com" always_nxdomain
 local-zone: "xinwenwang123.cn" always_nxdomain
 local-zone: "xirfad.com" always_nxdomain
-local-zone: "xn--20gb-hediyefrsati-nvc.com" always_nxdomain
 local-zone: "xtremeforumz.com" always_nxdomain
 local-zone: "xxwl.kuaiyunds.com" always_nxdomain
-local-zone: "xxxze.co.nu" always_nxdomain
 local-zone: "yeez.net" always_nxdomain
 local-zone: "yesky.51down.org.cn" always_nxdomain
 local-zone: "yesky.xzstatic.com" always_nxdomain
+local-zone: "yiyangjz.cn" always_nxdomain
 local-zone: "yuluobo.com" always_nxdomain
 local-zone: "yun-1.lenku.cn" always_nxdomain
 local-zone: "yuyu02004-10043918.file.myqcloud.com" always_nxdomain
@@ -862,8 +853,10 @@ local-zone: "zentealounge.com.au" always_nxdomain
 local-zone: "zeytinyagisabun.com" always_nxdomain
 local-zone: "zhetysu360.kz" always_nxdomain
 local-zone: "zhzy999.net" always_nxdomain
+local-zone: "ziliao.yunkaodian.com" always_nxdomain
 local-zone: "zj.9553.com" always_nxdomain
 local-zone: "zmmore.com" always_nxdomain
 local-zone: "zoetermeerov.nl" always_nxdomain
 local-zone: "zoeydeutchweb.com" always_nxdomain
 local-zone: "zonefound.com.cn" always_nxdomain
+local-zone: "zsinstrument.com" always_nxdomain
diff --git a/urlhaus-filter-unbound.conf b/urlhaus-filter-unbound.conf
index 98b2a02f..1981da7f 100644
--- a/urlhaus-filter-unbound.conf
+++ b/urlhaus-filter-unbound.conf
@@ -1,5 +1,5 @@
 # Title: abuse.ch URLhaus Malicious Domains Unbound Blocklist
-# Updated: Thu, 07 May 2020 12:09:37 UTC
+# Updated: Fri, 08 May 2020 00:09:41 UTC
 # Repo: https://gitlab.com/curben/urlhaus-filter
 # License: https://creativecommons.org/publicdomain/zero/1.0/
 # Source: https://urlhaus.abuse.ch/api/
@@ -1598,6 +1598,7 @@ local-zone: "aastudios.co.in" always_nxdomain
 local-zone: "aaswim.co.za" always_nxdomain
 local-zone: "aatlantictreeservices.com" always_nxdomain
 local-zone: "aavasolution.com" always_nxdomain
+local-zone: "aaversalrelo.com" always_nxdomain
 local-zone: "aavip.cn" always_nxdomain
 local-zone: "aavra.com.ar" always_nxdomain
 local-zone: "aawajmedia.com" always_nxdomain
@@ -3859,6 +3860,7 @@ local-zone: "allenhenson.com" always_nxdomain
 local-zone: "allenmarks.se" always_nxdomain
 local-zone: "allens.youcheckit.ca" always_nxdomain
 local-zone: "allenservice.ga" always_nxdomain
+local-zone: "allexampdf.com" always_nxdomain
 local-zone: "allexcursion.com" always_nxdomain
 local-zone: "allexpressstores.com" always_nxdomain
 local-zone: "alleyesonus.pt" always_nxdomain
@@ -4612,6 +4614,7 @@ local-zone: "analisesfarma.com.br" always_nxdomain
 local-zone: "analisiclinichecatania.it" always_nxdomain
 local-zone: "analiskimia.undiksha.ac.id" always_nxdomain
 local-zone: "analistarastirma.com" always_nxdomain
+local-zone: "analistaspadel.com" always_nxdomain
 local-zone: "analizator.online" always_nxdomain
 local-zone: "analytics.theminersunion.com" always_nxdomain
 local-zone: "analyze-it.co.za" always_nxdomain
@@ -5550,6 +5553,7 @@ local-zone: "arabaresmi.com" always_nxdomain
 local-zone: "arabcb.org" always_nxdomain
 local-zone: "arabcoegypt.com" always_nxdomain
 local-zone: "arabdubaisafari.com" always_nxdomain
+local-zone: "arabenergyclub.org" always_nxdomain
 local-zone: "arabianbrother.com" always_nxdomain
 local-zone: "arabiantongue.net" always_nxdomain
 local-zone: "arabiantravelhouse.com" always_nxdomain
@@ -11772,6 +11776,7 @@ local-zone: "bushari.com" always_nxdomain
 local-zone: "bushmansafaris.co.zw" always_nxdomain
 local-zone: "bushnell.by" always_nxdomain
 local-zone: "business-blueprint.top-startups.com" always_nxdomain
+local-zone: "business-expert.md" always_nxdomain
 local-zone: "business-insight.aptoilab.com" always_nxdomain
 local-zone: "business-solution-ltd.org" always_nxdomain
 local-zone: "business.bityaris.com" always_nxdomain
@@ -14430,6 +14435,7 @@ local-zone: "cjb-law.com" always_nxdomain
 local-zone: "cjcmail-oln040092069015.outbound.protection.sketchwefair-watduoliprudential.com.watchdogdns.duckdns.org" always_nxdomain
 local-zone: "cjcurrent.com" always_nxdomain
 local-zone: "cjd.com.br" always_nxdomain
+local-zone: "cjemskayyoor.com" always_nxdomain
 local-zone: "cjextm.ro" always_nxdomain
 local-zone: "cjj.lanibio.net" always_nxdomain
 local-zone: "cjllcmonthlysub.ga" always_nxdomain
@@ -15974,6 +15980,7 @@ local-zone: "cosi-ilmercatodeisapori.com" always_nxdomain
 local-zone: "coskunkuyumculuk.com" always_nxdomain
 local-zone: "cosmatos.org" always_nxdomain
 local-zone: "cosme.kyawaiiiii.com" always_nxdomain
+local-zone: "cosmea.pl" always_nxdomain
 local-zone: "cosmeis.com" always_nxdomain
 local-zone: "cosmeliti.com" always_nxdomain
 local-zone: "cosmet-log.com" always_nxdomain
@@ -17961,6 +17968,7 @@ local-zone: "deguia.net" always_nxdomain
 local-zone: "degustibeer.it" always_nxdomain
 local-zone: "deheld100.nl" always_nxdomain
 local-zone: "dehkadeh-tameshk.ir" always_nxdomain
+local-zone: "dehkadenovin.com" always_nxdomain
 local-zone: "dehlie.dk" always_nxdomain
 local-zone: "dehneshin.com" always_nxdomain
 local-zone: "dehydrated.sk" always_nxdomain
@@ -18728,6 +18736,7 @@ local-zone: "dev.mountainwatch.com" always_nxdomain
 local-zone: "dev.networkscy.com" always_nxdomain
 local-zone: "dev.nextg.io" always_nxdomain
 local-zone: "dev.nida.ac.th" always_nxdomain
+local-zone: "dev.nona-polska.pl" always_nxdomain
 local-zone: "dev.novembit.com" always_nxdomain
 local-zone: "dev.optitek.com" always_nxdomain
 local-zone: "dev.pacificsymposium.org" always_nxdomain
@@ -20879,6 +20888,7 @@ local-zone: "drzimin.com" always_nxdomain
 local-zone: "ds-al.er42.org" always_nxdomain
 local-zone: "ds-cocoa.com" always_nxdomain
 local-zone: "ds-stoneroots.com" always_nxdomain
+local-zone: "ds.nashobmenfiles.com" always_nxdomain
 local-zone: "ds.obmenvsemfiles.com" always_nxdomain
 local-zone: "ds.veedence.co.uk" always_nxdomain
 local-zone: "ds04.projectstatus.co.uk" always_nxdomain
@@ -24211,6 +24221,7 @@ local-zone: "f0267229.xsph.ru" always_nxdomain
 local-zone: "f0269025.xsph.ru" always_nxdomain
 local-zone: "f0316439.xsph.ru" always_nxdomain
 local-zone: "f0384177.xsph.ru" always_nxdomain
+local-zone: "f0434589.xsph.ru" always_nxdomain
 local-zone: "f0hc7osjnl2vi61g.com" always_nxdomain
 local-zone: "f0jgqwejaisdqjwnqwe.com" always_nxdomain
 local-zone: "f12.file-upload.com" always_nxdomain
@@ -27083,6 +27094,7 @@ local-zone: "gamee.top" always_nxdomain
 local-zone: "gameforte.com" always_nxdomain
 local-zone: "gamehack.chat.ru" always_nxdomain
 local-zone: "gamelaboratory.ru" always_nxdomain
+local-zone: "gamelounge.club" always_nxdomain
 local-zone: "gamemechanics.com" always_nxdomain
 local-zone: "gameonline.web.id" always_nxdomain
 local-zone: "gameonline11.com" always_nxdomain
@@ -28703,6 +28715,7 @@ local-zone: "gorontula.com" always_nxdomain
 local-zone: "goroute3.com" always_nxdomain
 local-zone: "goruklecilingirci.com" always_nxdomain
 local-zone: "goruklefitness.com" always_nxdomain
+local-zone: "goschiele.com" always_nxdomain
 local-zone: "goshhh.com" always_nxdomain
 local-zone: "goshowcar.com" always_nxdomain
 local-zone: "gosiltechono.co" always_nxdomain
@@ -28913,6 +28926,7 @@ local-zone: "granpri.info" always_nxdomain
 local-zone: "grant-massage.ru" always_nxdomain
 local-zone: "granthawkinsdesign.com" always_nxdomain
 local-zone: "grantkulinar.ru" always_nxdomain
+local-zone: "grantoveporadenstvi.eu" always_nxdomain
 local-zone: "grantpromotion.icu" always_nxdomain
 local-zone: "grantwritersresource.com" always_nxdomain
 local-zone: "granube.us-east-1.elasticbeanstalk.com" always_nxdomain
@@ -30823,6 +30837,7 @@ local-zone: "hho3.com" always_nxdomain
 local-zone: "hhold.ru" always_nxdomain
 local-zone: "hhoorn.nl" always_nxdomain
 local-zone: "hhristov.net" always_nxdomain
+local-zone: "hi-event.vn" always_nxdomain
 local-zone: "hi-fam.com" always_nxdomain
 local-zone: "hi-shop.ml" always_nxdomain
 local-zone: "hialeahprivateinvestigators.com" always_nxdomain
@@ -31180,6 +31195,7 @@ local-zone: "hobi-sport.ch" always_nxdomain
 local-zone: "hobi.de" always_nxdomain
 local-zone: "hobimsiseyler.com" always_nxdomain
 local-zone: "hobokendoulas.com" always_nxdomain
+local-zone: "hobsnchimney.in" always_nxdomain
 local-zone: "hobus.zema-sul.com" always_nxdomain
 local-zone: "hocalarlaofis.com" always_nxdomain
 local-zone: "hocdelamgi.000webhostapp.com" always_nxdomain
@@ -32169,6 +32185,7 @@ local-zone: "hyundai-autoalbania.com.al" always_nxdomain
 local-zone: "hyundai-danang.com.vn" always_nxdomain
 local-zone: "hyundai-services.ir" always_nxdomain
 local-zone: "hyundailongbien.hanoi.vn" always_nxdomain
+local-zone: "hyundainamdinh.org" always_nxdomain
 local-zone: "hyunmee.se" always_nxdomain
 local-zone: "hyunmoon.nfile.net" always_nxdomain
 local-zone: "hyvat-olutravintolat.fi" always_nxdomain
@@ -41367,6 +41384,7 @@ local-zone: "luzevida.com.br" always_nxdomain
 local-zone: "luzfloral.com" always_nxdomain
 local-zone: "luzy.vn" always_nxdomain
 local-zone: "lvajnczdy.cf" always_nxdomain
+local-zone: "lvecarehomes.com" always_nxdomain
 local-zone: "lvita.co" always_nxdomain
 local-zone: "lvksdy.cf" always_nxdomain
 local-zone: "lvr.samacomplus.com" always_nxdomain
@@ -42942,6 +42960,7 @@ local-zone: "marie-oms-psychologue.fr" always_nxdomain
 local-zone: "marienthal.info" always_nxdomain
 local-zone: "marientumba.com" always_nxdomain
 local-zone: "mariepeters.com" always_nxdomain
+local-zone: "mariereiko.com" always_nxdomain
 local-zone: "mariesshopoutfit.com" always_nxdomain
 local-zone: "marieva.pro" always_nxdomain
 local-zone: "marijuana420site.com" always_nxdomain
@@ -45938,6 +45957,7 @@ local-zone: "movin.cloud" always_nxdomain
 local-zone: "moving-dubai.com" always_nxdomain
 local-zone: "movingimagesmultimedia.com" always_nxdomain
 local-zone: "movingmountainsfoods.com" always_nxdomain
+local-zone: "movingsolutionsus.com" always_nxdomain
 local-zone: "mowbaza.chat.ru" always_nxdomain
 local-zone: "mowdsdflogin.usa.cc" always_nxdomain
 local-zone: "mowwierzbica.lh.pl" always_nxdomain
@@ -49935,6 +49955,7 @@ local-zone: "onlinewp.it" always_nxdomain
 local-zone: "onlineyogaplatform.com" always_nxdomain
 local-zone: "onlink-aoiuvr.com" always_nxdomain
 local-zone: "onlyapteka.ru" always_nxdomain
+local-zone: "onlyart.in" always_nxdomain
 local-zone: "onlycane.in" always_nxdomain
 local-zone: "onlychild.org" always_nxdomain
 local-zone: "onlycocktaildresses.com" always_nxdomain
@@ -50653,6 +50674,7 @@ local-zone: "p12.zdusercontent.com" always_nxdomain
 local-zone: "p2.jugalvyas.com" always_nxdomain
 local-zone: "p2.lingpao8.com" always_nxdomain
 local-zone: "p23tv.studio" always_nxdomain
+local-zone: "p2b.in" always_nxdomain
 local-zone: "p2btechnologies.com" always_nxdomain
 local-zone: "p2piptv.net" always_nxdomain
 local-zone: "p2pmedia.org" always_nxdomain
@@ -53396,6 +53418,7 @@ local-zone: "prihlaska.sagitta.cz" always_nxdomain
 local-zone: "priintzone.com" always_nxdomain
 local-zone: "prijzen-dakkapel.nl" always_nxdomain
 local-zone: "prim.sydneyrobbins.net" always_nxdomain
+local-zone: "primaart.vn" always_nxdomain
 local-zone: "primagamahomeschool.com" always_nxdomain
 local-zone: "primainnaparthotel.com" always_nxdomain
 local-zone: "primakaryasteel.com" always_nxdomain
@@ -54232,6 +54255,7 @@ local-zone: "purepropertiesobx.com" always_nxdomain
 local-zone: "pureprotea.com" always_nxdomain
 local-zone: "purerls.com" always_nxdomain
 local-zone: "pureslimketoreviews.club" always_nxdomain
+local-zone: "purewood.in" always_nxdomain
 local-zone: "purgers-eventmanagement.de" always_nxdomain
 local-zone: "puri-puri.sg" always_nxdomain
 local-zone: "purifiq.co.za" always_nxdomain
@@ -60976,6 +61000,7 @@ local-zone: "skiddump.cf" always_nxdomain
 local-zone: "skiddump.ga" always_nxdomain
 local-zone: "skiddump.ru" always_nxdomain
 local-zone: "skidurham.com" always_nxdomain
+local-zone: "skidware-malwrhunterteams.com" always_nxdomain
 local-zone: "skiffinsconsuming.co.kr" always_nxdomain
 local-zone: "skiinspa.com" always_nxdomain
 local-zone: "skilancein.000webhostapp.com" always_nxdomain
@@ -61968,6 +61993,7 @@ local-zone: "sooqxrpm.yjdata.me" always_nxdomain
 local-zone: "sophiacarta.de" always_nxdomain
 local-zone: "sophiacollegemumbai.com" always_nxdomain
 local-zone: "sophiahotel.vn" always_nxdomain
+local-zone: "sophiasbridalandtux.com" always_nxdomain
 local-zone: "sophiaskyhotel.vn" always_nxdomain
 local-zone: "sophiasuites-santorini.com" always_nxdomain
 local-zone: "sophiebarthelemy.fr" always_nxdomain
@@ -69599,6 +69625,7 @@ local-zone: "update.com.br" always_nxdomain
 local-zone: "update.covid-19.casa" always_nxdomain
 local-zone: "update.gk-mtm.ru" always_nxdomain
 local-zone: "update.hoiucvl.com" always_nxdomain
+local-zone: "update.id" always_nxdomain
 local-zone: "update.igra123.com" always_nxdomain
 local-zone: "update.iwang8.com" always_nxdomain
 local-zone: "update.jirisancapital.com" always_nxdomain
@@ -70063,6 +70090,7 @@ local-zone: "vaguevague.com" always_nxdomain
 local-zone: "vahan24.in" always_nxdomain
 local-zone: "vaheracouncil.com" always_nxdomain
 local-zone: "vahokad.sk" always_nxdomain
+local-zone: "vaico.co" always_nxdomain
 local-zone: "vaigacafe.com" always_nxdomain
 local-zone: "vaileather.com" always_nxdomain
 local-zone: "vaillantteknikservisibursa.com" always_nxdomain
@@ -70917,6 +70945,7 @@ local-zone: "vinalpapel.com" always_nxdomain
 local-zone: "vinarycard.com" always_nxdomain
 local-zone: "vinaschool.com.vn" always_nxdomain
 local-zone: "vinastone.com" always_nxdomain
+local-zone: "vinastory.vn" always_nxdomain
 local-zone: "vinatuoi.com" always_nxdomain
 local-zone: "vinay29.000webhostapp.com" always_nxdomain
 local-zone: "vinaykhatri.in" always_nxdomain
diff --git a/urlhaus-filter.txt b/urlhaus-filter.txt
index 52a3fe5b..4a3500b5 100644
--- a/urlhaus-filter.txt
+++ b/urlhaus-filter.txt
@@ -1,5 +1,5 @@
 ! Title: abuse.ch URLhaus Malicious URL Blocklist
-! Updated: Thu, 07 May 2020 12:09:37 UTC
+! Updated: Fri, 08 May 2020 00:09:41 UTC
 ! Expires: 1 day (update frequency)
 ! Repo: https://gitlab.com/curben/urlhaus-filter
 ! License: https://creativecommons.org/publicdomain/zero/1.0/
@@ -1187,6 +1187,7 @@
 104.244.75.179
 104.244.75.25
 104.244.75.46
+104.244.76.124
 104.244.76.15
 104.244.76.190
 104.244.76.210
@@ -2044,6 +2045,7 @@
 11.gxdx2.crsky.com
 110.137.21.15
 110.138.165.220
+110.138.229.8
 110.138.36.115
 110.138.88.6
 110.139.116.233
@@ -3214,6 +3216,7 @@
 113.133.224.68
 113.133.224.74
 113.133.224.80
+113.133.224.99
 113.133.225.176
 113.133.225.180
 113.133.225.185
@@ -3634,6 +3637,7 @@
 113.4.133.3
 113.4.20.86
 113.53.205.206
+113.53.52.8
 113.56.150.152
 113.56.151.131
 113.59.29.147
@@ -3977,6 +3981,7 @@
 114.235.185.19
 114.235.187.219
 114.235.190.4
+114.235.197.18
 114.235.199.165
 114.235.200.115
 114.235.200.56
@@ -4260,6 +4265,7 @@
 114.239.36.91
 114.239.37.159
 114.239.39.210
+114.239.39.47
 114.239.39.76
 114.239.41.70
 114.239.42.136
@@ -4296,6 +4302,7 @@
 114.239.74.228
 114.239.74.4
 114.239.74.46
+114.239.75.243
 114.239.75.49
 114.239.75.82
 114.239.76.140
@@ -4349,6 +4356,7 @@
 114.32.242.135
 114.32.242.166
 114.32.245.198
+114.32.246.196
 114.32.26.159
 114.32.36.141
 114.32.39.100
@@ -4485,6 +4493,7 @@
 115.196.66.1
 115.197.111.204
 115.197.170.45
+115.197.192.193
 115.197.202.209
 115.197.232.220
 115.197.83.141
@@ -4738,6 +4747,7 @@
 115.49.151.207
 115.49.153.167
 115.49.154.25
+115.49.156.123
 115.49.157.144
 115.49.157.178
 115.49.158.101
@@ -4963,6 +4973,7 @@
 115.49.76.245
 115.49.76.33
 115.49.76.45
+115.49.76.50
 115.49.76.83
 115.49.76.91
 115.49.77.0
@@ -5458,6 +5469,7 @@
 115.56.153.235
 115.56.155.155
 115.56.155.99
+115.56.161.84
 115.56.179.65
 115.56.179.78
 115.56.181.122
@@ -8240,6 +8252,7 @@
 122.155.197.12
 122.160.111.68
 122.160.196.105
+122.160.60.236
 122.162.161.66
 122.164.205.61
 122.164.205.76
@@ -8655,11 +8668,13 @@
 123.10.6.59
 123.10.60.68
 123.10.61.204
+123.10.62.26
 123.10.63.89
 123.10.7.85
 123.10.8.243
 123.10.82.228
 123.10.84.166
+123.10.84.18
 123.10.84.187
 123.10.84.188
 123.10.85.0
@@ -8753,6 +8768,7 @@
 123.11.14.146
 123.11.14.147
 123.11.14.194
+123.11.14.199
 123.11.14.215
 123.11.14.221
 123.11.14.24
@@ -11366,6 +11382,7 @@
 139.99.27.1
 139.99.37.27
 139.99.42.75
+139.99.52.100
 13noj.org
 13pope.com
 13r.lg.ua
@@ -11612,6 +11629,7 @@
 142.11.219.202
 142.11.219.41
 142.11.222.125
+142.11.222.172
 142.11.227.202
 142.11.227.246
 142.11.227.252
@@ -11898,6 +11916,7 @@
 144.202.58.124
 144.202.69.45
 144.202.8.114
+144.202.97.69
 144.217.0.194
 144.217.117.146
 144.217.12.66
@@ -12448,6 +12467,7 @@
 157.245.1.67
 157.245.106.38
 157.245.117.219
+157.245.127.232
 157.245.129.86
 157.245.130.209
 157.245.132.4
@@ -13046,6 +13066,7 @@
 162.212.113.149
 162.212.113.156
 162.212.113.160
+162.212.113.165
 162.212.113.166
 162.212.113.168
 162.212.113.173
@@ -13171,6 +13192,7 @@
 162.212.114.77
 162.212.114.8
 162.212.114.80
+162.212.114.82
 162.212.114.88
 162.212.114.96
 162.212.115.101
@@ -13728,6 +13750,7 @@
 167.172.209.209
 167.172.211.112
 167.172.211.131
+167.172.215.157
 167.172.215.218
 167.172.220.98
 167.172.222.27
@@ -15655,6 +15678,7 @@
 172.39.81.50
 172.39.81.71
 172.39.82.100
+172.39.82.115
 172.39.82.148
 172.39.82.173
 172.39.82.174
@@ -16048,6 +16072,7 @@
 175.107.44.239
 175.11.165.83
 175.11.171.12
+175.11.192.189
 175.11.193.118
 175.11.193.122
 175.11.193.71
@@ -16174,6 +16199,7 @@
 175.214.73.244
 175.214.73.247
 175.214.73.252
+175.215.116.123
 175.215.226.31
 175.251.15.205
 175.3.180.113
@@ -17667,6 +17693,7 @@
 180.117.194.37
 180.117.195.123
 180.117.195.168
+180.117.195.21
 180.117.198.33
 180.117.204.119
 180.117.204.162
@@ -17773,6 +17800,7 @@
 180.123.29.150
 180.123.29.68
 180.123.29.9
+180.123.36.177
 180.123.36.33
 180.123.40.249
 180.123.47.58
@@ -18414,6 +18442,7 @@
 182.114.246.26
 182.114.247.10
 182.114.247.192
+182.114.247.31
 182.114.248.10
 182.114.248.129
 182.114.248.140
@@ -19635,6 +19664,7 @@
 182.136.16.42
 182.141.221.103
 182.142.112.180
+182.142.112.88
 182.142.113.100
 182.142.113.170
 182.142.114.18
@@ -19878,6 +19908,7 @@
 183.4.28.254
 183.4.28.72
 183.4.30.105
+183.4.30.175
 183.4.30.194
 183.4.30.20
 183.4.30.251
@@ -22326,6 +22357,7 @@
 193.218.118.100
 193.226.232.72
 193.228.135.144
+193.228.91.105
 193.233.191.18
 193.238.36.33
 193.238.47.118
@@ -22534,6 +22566,7 @@
 195.123.212.134
 195.123.212.29
 195.123.213.126
+195.123.213.216
 195.123.218.152
 195.123.220.160
 195.123.221.103
@@ -22886,6 +22919,7 @@
 198.98.62.237
 198.98.62.43
 199.116.235.213
+199.116.237.125
 199.175.51.173
 199.180.133.129
 199.180.133.174
@@ -23084,6 +23118,7 @@
 199.83.207.139
 199.83.207.152
 199.83.207.153
+199.83.207.154
 199.83.207.158
 199.83.207.160
 199.83.207.162
@@ -24835,6 +24870,7 @@
 216.180.117.124
 216.180.117.132
 216.180.117.142
+216.180.117.147
 216.180.117.152
 216.180.117.159
 216.180.117.16
@@ -24849,6 +24885,7 @@
 216.180.117.190
 216.180.117.191
 216.180.117.195
+216.180.117.201
 216.180.117.202
 216.180.117.208
 216.180.117.209
@@ -26536,6 +26573,7 @@
 222.140.161.145
 222.140.161.181
 222.140.161.67
+222.140.162.213
 222.140.162.229
 222.140.162.31
 222.140.162.57
@@ -26869,6 +26907,7 @@
 222.246.20.121
 222.246.20.148
 222.246.20.201
+222.246.226.160
 222.246.228.185
 222.246.228.193
 222.246.229.159
@@ -28129,6 +28168,7 @@
 31.154.195.254
 31.154.232.106
 31.154.84.141
+31.155.158.20
 31.156.181.93
 31.162.57.135
 31.163.57.231
@@ -28986,6 +29026,7 @@
 36.35.161.251
 36.35.161.65
 36.35.161.7
+36.35.161.72
 36.35.161.83
 36.35.164.148
 36.35.164.221
@@ -31696,6 +31737,7 @@
 45.153.184.67
 45.153.240.115
 45.154.1.122
+45.154.1.150
 45.154.1.58
 45.156.180.112
 45.156.195.205
@@ -33679,6 +33721,7 @@
 49.89.232.55
 49.89.233.155
 49.89.233.205
+49.89.233.47
 49.89.233.77
 49.89.234.147
 49.89.234.53
@@ -33687,6 +33730,7 @@
 49.89.235.12
 49.89.235.32
 49.89.240.188
+49.89.241.11
 49.89.241.78
 49.89.242.116
 49.89.242.125
@@ -33900,6 +33944,7 @@
 5.182.210.84
 5.182.211.138
 5.182.211.144
+5.182.211.184
 5.182.211.241
 5.182.211.76
 5.182.39.203
@@ -33978,6 +34023,7 @@
 5.202.41.223
 5.204.170.150
 5.204.249.111
+5.206.224.216
 5.206.225.104
 5.206.225.246
 5.206.226.15
@@ -34179,6 +34225,7 @@
 50.115.172.117
 50.115.172.132
 50.115.172.143
+50.115.172.172
 50.115.173.112
 50.115.173.126
 50.115.175.110
@@ -34717,6 +34764,7 @@
 58.243.124.204
 58.243.124.51
 58.243.125.227
+58.243.125.95
 58.243.126.111
 58.243.126.134
 58.243.126.93
@@ -36079,6 +36127,7 @@
 61.241.170.35
 61.241.170.37
 61.241.170.39
+61.241.170.76
 61.241.170.8
 61.241.170.83
 61.241.170.94
@@ -36509,6 +36558,7 @@
 64.20.36.234
 64.225.103.186
 64.225.103.215
+64.225.119.229
 64.225.120.179
 64.225.26.164
 64.225.36.224
@@ -38263,6 +38313,7 @@
 81.213.166.175
 81.213.174.199
 81.213.198.116
+81.213.219.145
 81.214.141.91
 81.214.22.43
 81.214.220.87
@@ -40337,6 +40388,7 @@ aastudios.co.in
 aaswim.co.za
 aatlantictreeservices.com
 aavasolution.com
+aaversalrelo.com
 aavip.cn
 aavra.com.ar
 aawajmedia.com
@@ -42622,6 +42674,7 @@ allenhenson.com
 allenmarks.se
 allens.youcheckit.ca
 allenservice.ga
+allexampdf.com
 allexcursion.com
 allexpressstores.com
 alleyesonus.pt
@@ -43382,6 +43435,7 @@ analisesfarma.com.br
 analisiclinichecatania.it
 analiskimia.undiksha.ac.id
 analistarastirma.com
+analistaspadel.com
 analizator.online
 analytics.theminersunion.com
 analyze-it.co.za
@@ -44329,6 +44383,7 @@ arabaresmi.com
 arabcb.org
 arabcoegypt.com
 arabdubaisafari.com
+arabenergyclub.org
 arabianbrother.com
 arabiantongue.net
 arabiantravelhouse.com
@@ -50963,6 +51018,7 @@ bushari.com
 bushmansafaris.co.zw
 bushnell.by
 business-blueprint.top-startups.com
+business-expert.md
 business-insight.aptoilab.com
 business-solution-ltd.org
 business.bityaris.com
@@ -54037,6 +54093,7 @@ cjb-law.com
 cjcmail-oln040092069015.outbound.protection.sketchwefair-watduoliprudential.com.watchdogdns.duckdns.org
 cjcurrent.com
 cjd.com.br
+cjemskayyoor.com
 cjextm.ro
 cjj.lanibio.net
 cjllcmonthlysub.ga
@@ -55613,6 +55670,7 @@ cosi-ilmercatodeisapori.com
 coskunkuyumculuk.com
 cosmatos.org
 cosme.kyawaiiiii.com
+cosmea.pl
 cosmeis.com
 cosmeliti.com
 cosmet-log.com
@@ -57639,6 +57697,7 @@ deguia.net
 degustibeer.it
 deheld100.nl
 dehkadeh-tameshk.ir
+dehkadenovin.com
 dehlie.dk
 dehneshin.com
 dehydrated.sk
@@ -58431,6 +58490,7 @@ dev.mountainwatch.com
 dev.networkscy.com
 dev.nextg.io
 dev.nida.ac.th
+dev.nona-polska.pl
 dev.novembit.com
 dev.optitek.com
 dev.pacificsymposium.org
@@ -73224,6 +73284,7 @@ drzimin.com
 ds-al.er42.org
 ds-cocoa.com
 ds-stoneroots.com
+ds.nashobmenfiles.com
 ds.obmenvsemfiles.com
 ds.veedence.co.uk
 ds04.projectstatus.co.uk
@@ -76582,6 +76643,7 @@ f0267229.xsph.ru
 f0269025.xsph.ru
 f0316439.xsph.ru
 f0384177.xsph.ru
+f0434589.xsph.ru
 f0hc7osjnl2vi61g.com
 f0jgqwejaisdqjwnqwe.com
 f12.file-upload.com
@@ -79663,6 +79725,7 @@ gamee.top
 gameforte.com
 gamehack.chat.ru
 gamelaboratory.ru
+gamelounge.club
 gamemechanics.com
 gameonline.web.id
 gameonline11.com
@@ -81386,6 +81449,7 @@ gorontula.com
 goroute3.com
 goruklecilingirci.com
 goruklefitness.com
+goschiele.com
 goshhh.com
 goshowcar.com
 gosiltechono.co
@@ -81597,6 +81661,7 @@ granpri.info
 grant-massage.ru
 granthawkinsdesign.com
 grantkulinar.ru
+grantoveporadenstvi.eu
 grantpromotion.icu
 grantwritersresource.com
 granube.us-east-1.elasticbeanstalk.com
@@ -83516,6 +83581,7 @@ hho3.com
 hhold.ru
 hhoorn.nl
 hhristov.net
+hi-event.vn
 hi-fam.com
 hi-shop.ml
 hialeahprivateinvestigators.com
@@ -83874,6 +83940,7 @@ hobi-sport.ch
 hobi.de
 hobimsiseyler.com
 hobokendoulas.com
+hobsnchimney.in
 hobus.zema-sul.com
 hocalarlaofis.com
 hocdelamgi.000webhostapp.com
@@ -84883,6 +84950,7 @@ hyundai-autoalbania.com.al
 hyundai-danang.com.vn
 hyundai-services.ir
 hyundailongbien.hanoi.vn
+hyundainamdinh.org
 hyunmee.se
 hyunmoon.nfile.net
 hyvat-olutravintolat.fi
@@ -94212,6 +94280,7 @@ luzevida.com.br
 luzfloral.com
 luzy.vn
 lvajnczdy.cf
+lvecarehomes.com
 lvita.co
 lvksdy.cf
 lvr.samacomplus.com
@@ -95873,6 +95942,7 @@ marie-oms-psychologue.fr
 marienthal.info
 marientumba.com
 mariepeters.com
+mariereiko.com
 mariesshopoutfit.com
 marieva.pro
 marijuana420site.com
@@ -98927,6 +98997,7 @@ movin.cloud
 moving-dubai.com
 movingimagesmultimedia.com
 movingmountainsfoods.com
+movingsolutionsus.com
 mowbaza.chat.ru
 mowdsdflogin.usa.cc
 mowwierzbica.lh.pl
@@ -103843,6 +103914,7 @@ onlinewp.it
 onlineyogaplatform.com
 onlink-aoiuvr.com
 onlyapteka.ru
+onlyart.in
 onlycane.in
 onlychild.org
 onlycocktaildresses.com
@@ -104588,6 +104660,7 @@ p20.zdusercontent.com/attachment/387804/jsBvNcgFVs4ELgPF4okoU1R3T?token=eyJhbGci
 p20.zdusercontent.com/attachment/387804/jsBvNcgFVs4ELgPF4okoU1R3T?token=eyJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..rhkSMKwbDZir8qRUoeDNzw.Hegu7Id0SguSiv7q8d8Vd-XC7wLW6Y7DsVmpyj_diToLybxbBitSC2Gy7eVP96aqt5pw0UfUf24b7FAn_biqJW3zEx16fc6EKB5UZ8ZXQF9yMGFs9Te_jMuAxlDiW1aUzfahBCowmKz0TS9ePo_FS5p8XWtaXgb7NUwDuchOa0c4ll-vNSzpH5came-pFG9yJ6LuzbaiEP39iIfY_13MhqApAX27HKAmxpTNlSMe2NS-fcVUtzpKhlUjZLtD7u7W5T5bijhiCSkTl0gBDEodPw.IhGtQnnDooa7QU8N4XJg_Q
 p20.zdusercontent.com/attachment/387804/xCWWSqPpKBAsDytaWCGdA0pYq?token=eyJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..mPR_lGlX1PWtG5HeAuZZIQ.SSgSkrkiUaC8pvobs1Pt4cAalBG-GPA9Uassi9Eyq0Xe7iP9rAhYGVS3ykDpVLglk3zMQw9P7l8Y5P1VcrutPndN1cUGWAQSXFGHfzhCsN_1XRrlPl3rkQDYqqCky1I3BT53WCsvJJevOdZR6i97lhoag8BYMcpUlC_CwPFYWOXhw16GNMATeyWStuskbeoXxPN7DpRIUIpzgaUdHDoKN4rptwU3KwlM1a1Ky5CaUiqRXgq707-cl1SCI7WUqqKAoEpvjoZ8MWR2SYod3cfhhQ.4Yn3zbaVpBNLmJlUPby-8Q
 p23tv.studio
+p2b.in
 p2btechnologies.com
 p2piptv.net
 p2pmedia.org
@@ -105504,6 +105577,7 @@ pastebin.com/raw/4A653NFB
 pastebin.com/raw/4Aa2NDW0
 pastebin.com/raw/4An5J2as
 pastebin.com/raw/4CNrzdDM
+pastebin.com/raw/4Crsf7Au
 pastebin.com/raw/4Cu1z5Zr
 pastebin.com/raw/4FxyzaZz
 pastebin.com/raw/4GVU6r5t
@@ -105808,6 +105882,7 @@ pastebin.com/raw/99s8SY4R
 pastebin.com/raw/9CgNpCi1
 pastebin.com/raw/9EH2MwwL
 pastebin.com/raw/9EnMtt5Y
+pastebin.com/raw/9EvmY0Dg
 pastebin.com/raw/9J3VdNeX
 pastebin.com/raw/9JjjPKKH
 pastebin.com/raw/9JpPaPB7
@@ -105819,6 +105894,7 @@ pastebin.com/raw/9Ld1YZnH
 pastebin.com/raw/9LvWCyFv
 pastebin.com/raw/9MEM4fFL
 pastebin.com/raw/9N5Dq3w8
+pastebin.com/raw/9NPxzhCt
 pastebin.com/raw/9PVFJ4q9
 pastebin.com/raw/9PeqYHYL
 pastebin.com/raw/9PfUKBdA
@@ -105927,6 +106003,7 @@ pastebin.com/raw/Aw4JkSj3
 pastebin.com/raw/Aw4pgKn7
 pastebin.com/raw/Awxjirpz
 pastebin.com/raw/AxRJbHcj
+pastebin.com/raw/AyVu0W9M
 pastebin.com/raw/B0dcMR45
 pastebin.com/raw/B1XWipLA
 pastebin.com/raw/B2RkB7u0
@@ -106087,6 +106164,7 @@ pastebin.com/raw/DACEEaq4
 pastebin.com/raw/DAamJM9r
 pastebin.com/raw/DBpBcSWA
 pastebin.com/raw/DCe3VjwA
+pastebin.com/raw/DDZLbPgn
 pastebin.com/raw/DDfFbJrr
 pastebin.com/raw/DEA23wcF
 pastebin.com/raw/DFiYDANN
@@ -106861,6 +106939,7 @@ pastebin.com/raw/QgiWpK8F
 pastebin.com/raw/Qh4pF3Ed
 pastebin.com/raw/QhN6zBAJ
 pastebin.com/raw/Qj9JG6kG
+pastebin.com/raw/QjRZEpaU
 pastebin.com/raw/QkNKFEsg
 pastebin.com/raw/QkVpqnX4
 pastebin.com/raw/Qmbq6RP8
@@ -107280,6 +107359,7 @@ pastebin.com/raw/X83FzZpu
 pastebin.com/raw/X8Z4VGkM
 pastebin.com/raw/XDT0rngj
 pastebin.com/raw/XEXSZtR1
+pastebin.com/raw/XGJ6GUhh
 pastebin.com/raw/XHHspvwJ
 pastebin.com/raw/XJ11Sfj1
 pastebin.com/raw/XJM6mWJS
@@ -107456,6 +107536,7 @@ pastebin.com/raw/ZsWQg7Up
 pastebin.com/raw/Zt3fQmYs
 pastebin.com/raw/Zt5c88F6
 pastebin.com/raw/ZtVibdaA
+pastebin.com/raw/Zta5WRwr
 pastebin.com/raw/ZtsLYu3S
 pastebin.com/raw/Zunvk1Lm
 pastebin.com/raw/ZuvAaJy9
@@ -107495,6 +107576,7 @@ pastebin.com/raw/aRHLvP3a
 pastebin.com/raw/aRLZNHf6
 pastebin.com/raw/aS1gXPdk
 pastebin.com/raw/aSXHPSnt
+pastebin.com/raw/aSuJ5p5z
 pastebin.com/raw/aTK8WhqA
 pastebin.com/raw/aTUX1ZPX
 pastebin.com/raw/aUinCLey
@@ -107851,6 +107933,7 @@ pastebin.com/raw/fQ9hAMp5
 pastebin.com/raw/fQcPXM89
 pastebin.com/raw/fRShK2UX
 pastebin.com/raw/fRbvWMSC
+pastebin.com/raw/fRk8MF23
 pastebin.com/raw/fSe4Z9bi
 pastebin.com/raw/fSfjrS3D
 pastebin.com/raw/fShhe9DA
@@ -108351,6 +108434,7 @@ pastebin.com/raw/p4FzdArN
 pastebin.com/raw/p4Wr4jxt
 pastebin.com/raw/p4nDx4VP
 pastebin.com/raw/p54YhNVR
+pastebin.com/raw/p5Tw4H7U
 pastebin.com/raw/p6USVwBq
 pastebin.com/raw/p6jSSpgA
 pastebin.com/raw/p74tenEd
@@ -108429,6 +108513,7 @@ pastebin.com/raw/q47beBAB
 pastebin.com/raw/q4Hh7DU3
 pastebin.com/raw/q4aZ29D1
 pastebin.com/raw/q54ktR4N
+pastebin.com/raw/q5GRRNuy
 pastebin.com/raw/q7WtqUWZ
 pastebin.com/raw/q83Zw5zR
 pastebin.com/raw/q96BKN12
@@ -108962,6 +109047,7 @@ pastebin.com/raw/yxA5Ew5Z
 pastebin.com/raw/yxQb4WkZ
 pastebin.com/raw/yy30ZSfm
 pastebin.com/raw/yy3610gW
+pastebin.com/raw/z0LaYmyL
 pastebin.com/raw/z2b9M9VC
 pastebin.com/raw/z2mMWN1u
 pastebin.com/raw/z30jWTDB
@@ -111261,6 +111347,7 @@ prihlaska.sagitta.cz
 priintzone.com
 prijzen-dakkapel.nl
 prim.sydneyrobbins.net
+primaart.vn
 primagamahomeschool.com
 primainnaparthotel.com
 primakaryasteel.com
@@ -112115,6 +112202,7 @@ purepropertiesobx.com
 pureprotea.com
 purerls.com
 pureslimketoreviews.club
+purewood.in
 purgers-eventmanagement.de
 puri-puri.sg
 purifiq.co.za
@@ -119236,6 +119324,7 @@ skiddump.cf
 skiddump.ga
 skiddump.ru
 skidurham.com
+skidware-malwrhunterteams.com
 skiffinsconsuming.co.kr
 skiinspa.com
 skilancein.000webhostapp.com
@@ -120233,6 +120322,7 @@ sooqxrpm.yjdata.me
 sophiacarta.de
 sophiacollegemumbai.com
 sophiahotel.vn
+sophiasbridalandtux.com
 sophiaskyhotel.vn
 sophiasuites-santorini.com
 sophiebarthelemy.fr
@@ -130108,6 +130198,7 @@ update.drp.su/nps/online/bin/tools/run.hta
 update.drp.su/oc/oc.zip
 update.gk-mtm.ru
 update.hoiucvl.com
+update.id
 update.igra123.com
 update.iwang8.com
 update.jirisancapital.com
@@ -130627,6 +130718,7 @@ vaguevague.com
 vahan24.in
 vaheracouncil.com
 vahokad.sk
+vaico.co
 vaidapt.s3.amazonaws.com/0.zip
 vaigacafe.com
 vaileather.com
@@ -131486,6 +131578,7 @@ vinalpapel.com
 vinarycard.com
 vinaschool.com.vn
 vinastone.com
+vinastory.vn
 vinatuoi.com
 vinay29.000webhostapp.com
 vinaykhatri.in