ThreatFox IOC Database

You are browsing the Indicator Of Compromise (IOC) database of ThreatFox. If you would like to contribute IOCs to the corpuse, you can do so through either the web form or the API.

531

IOCs shared (past 24 hours)

ClearFake

Most seen malware family (past 24 hours)

1'671'557

IOCs in corpus

Using the form below, you can search for malware samples by a hash (MD5, SHA256, SHA1), imphash, tlsh hash, ClamAV signature, tag or malware family.

Browse Database

Search syntax is as follow: keyword:search_term

Following is a list of accepted keywords along with an example search_term

ioc:ms-debug-services.com ( run)
malware:CobaltStrike ( run)
tag:TA505 ( run)
threat_type:cc_skimming ( run)
uuid:87f310f3-540b-11eb-922c-42010aa4000a ( run)

Date (UTC)	IOC	Malware	Tags	Reporter
2026-04-29 10:20	https://mpla-clo.cc	Lumma Stealer	campaign1777454698 Lumma LummaC2 renengine	Anonymous
2026-04-29 10:20	https://cloback.icu	Lumma Stealer	campaign1777454698 Lumma LummaC2 renengine	Anonymous
2026-04-29 10:20	vkl2j.grove5s.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 10:20	79.124.59.142:80	Lumma Stealer	campaign1777454698 Lumma LummaC2 renengine	Anonymous
2026-04-29 10:20	lum-forgeal.peta1un.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 10:11	zenforgeos3.peta1un.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 09:59	loose-mesh.grove5s.garden	ClearFake	ClearFake	Anonymous
2026-04-29 09:42	1aun0-zone.verd1ya.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 09:42	ser-venet.grove5s.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 09:42	scan.aquasecurtiy.org	Unknown malware	payload rogue teampcp	johannes
2026-04-29 09:42	soltide9is.grove5s.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 09:30	r1dge2-stream.grove5s.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 09:28	yqql69g.grove5s.garden	ClearFake	ClearFake	Anonymous
2026-04-29 09:10	slowprim.verd1ya.garden	ClearFake	ClearFake	Anonymous
2026-04-29 09:04	taldraa.verd1ya.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 08:52	lumfluxor.verd1ya.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 08:45	photonstage.verd1ya.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 08:44	xtrafftrck.net	Unknown malware	chopi ClickFix ixwebsocket ocx WebDav	Lenny_3BO
2026-04-29 08:44	echo2pathnode.astrolinkview.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 08:44	bright3nodeview.kinetichostbit.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 08:44	signalwestport.kinetichostbit.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 08:28	deepcloud9base.kinetichostbit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 08:23	proxyfastzone.kinetichostbit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 08:09	shieldpurelink.kinetichostbit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 08:06	trendscan8meta.kinetichostbit.garden	ClearFake	ClearFake	Anonymous
2026-04-29 07:57	47.122.147.35:80	Cobalt Strike	CobaltStrike cs-watermark-987654321	abuse_ch
2026-04-29 07:56	8.136.155.237:80	Cobalt Strike	CobaltStrike	abuse_ch
2026-04-29 07:52	pitchzoneyview.astrolinkview.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 07:50	www.m88sut.com	Nanocore RAT	NanoCore	abuse_ch
2026-04-29 07:50	almendrawinery.com	Nanocore RAT	NanoCore	abuse_ch
2026-04-29 07:50	screenly.cam	Unknown malware	chopi ClickFix ixwebsocket ocx WebDav	Lenny_3BO
2026-04-29 07:50	70.34.205.43:443	Unknown malware	chopi ClickFix ixwebsocket ocx WebDav	Lenny_3BO
2026-04-29 07:50	45c8cbaeb5c7708e7b8030e701747c65203958e82eddc41f39e0ca93bd36c114	Unknown malware	chopi ClickFix dll ixwebsocket mbedtls ocx regsvr32	Lenny_3BO
2026-04-29 07:49	2b8d4f042daf703b7f152d146bfc892500f436279b0d1866995735998f267af0	Unknown malware	chopi ClickFix dll ixwebsocket mbedtls ocx regsvr32	Lenny_3BO
2026-04-29 07:49	d2e1ab10d5a0c16a724aeda8acb46b38f551ade58137969c3bc3c9cdc0a12425	Unknown malware	chopi ClickFix dll ixwebsocket mbedtls ocx regsvr32	Lenny_3BO
2026-04-29 07:49	75961f1208581c5154324ebe12f01673248374f3aa67317fe79a06fcd2fb9da5	Unknown malware	chopi ClickFix Dropper LNK WebDav	Lenny_3BO
2026-04-29 07:49	b450e893aafd94f2a81e2b70047e6d2faf20cf4056d39cfc17b69ee78912f8b2	Unknown malware	chopi ClickFix Dropper LNK WebDav	Lenny_3BO
2026-04-29 07:49	10d1c6165f86237950eaff9c19e87eaa3eb5045afedcc7e4db5ba1188e3911fe	Unknown malware	chopi ClickFix Dropper LNK WebDav	Lenny_3BO
2026-04-29 07:49	ba041a2dcf88f9ba5e4f9dd0f6e39679f394e6b1d97c6ee765bace9dad247317	Unknown malware	chopi ClickFix Dropper LNK WebDav	Lenny_3BO
2026-04-29 07:49	0ea172359ddfe89be701d8f80acb4f179ca56af2a214a46a2843367e7b05aa16	Unknown malware	chopi ClickFix Dropper LNK WebDav	Lenny_3BO
2026-04-29 07:49	b7b9d77c527e8c2588bfd5bcc573167bb6e83b68250b009aaa68dcd3ed0a21de	Unknown malware	chopi ClickFix Dropper LNK WebDav	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/f38c71	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/14867a	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/f5888f	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/048688	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/430d52	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/c13673	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/bb1452	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/b6e159	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/d240b0	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/bb358d	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/78188a	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/ce1620	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://xtrafftrck.net/files/updater.ocx	Unknown malware	chopi ClickFix ocx regsvr32	Lenny_3BO
2026-04-29 07:49	solidpathlink.basaltlogicnode.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	sand6tasksys.canyonsyncgate.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	aridlogicnode.canyonsyncgate.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	172.235.163.133:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	172.235.163.98:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	172.235.163.86:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	172.235.163.113:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	172.235.163.71:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	172.235.163.127:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	edgehostunit.vertexurbanhub.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	172.235.163.114:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	172.235.163.83:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	172.235.163.122:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	172.235.163.102:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	wave4zoneyview.oceanicmeshbit.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	tall5logicnet.pylonstaticnet.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	pure8siteview.marblewavebase.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	176.65.139.152:7716	Mirai	Mirai	seckle
2026-04-29 07:49	old3logicgate.fossilcryptoweb.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	sifthostunit.silicapathsys.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	bone7taskhub.fossilcryptoweb.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	past4pathgate.fossilcryptoweb.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	clay8siteview.fossilcryptoweb.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	104.248.85.23:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	142.93.143.216:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	64.225.66.108:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	clear3logicgate.nebulafluxbase.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	boldfluxsync.nebulafluxbase.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	trendnodeview.nebulafluxbase.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	neogatewayhub.vectorstarcity.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	grand6nodeunit.vectorstarcity.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	wild2pathbase.vectorstarcity.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	freetasklink.vectorstarcity.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	https://purplefeetwines.monster	Lumma Stealer	ClickFix ErrTraffic	YuanGeng
2026-04-29 07:49	91.92.243.111:8041	RemoteAdmin	ConnectWise fiscal-lure Flyservers port-8041 RAT RMM-abuse ScreenConnect	SamTheRuby
2026-04-29 07:49	https://sites.google.com/view/brewpage	Unknown Stealer	ClickFix	ineffyble
2026-04-29 07:49	smartmesh1unit.marinergridhub.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	gravitflux2box.titanmeshflow.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	lunarwaveunit.titanmeshflow.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	vector3sitehub.cobaltpathsys.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	https://macosforguide.gitlab.io/crw/	Unknown Stealer		ineffyble
2026-04-29 07:49	deltahostgate.pulsarlogicnet.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	zincflowbase.zenithdockunit.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	matrix6pathway.cobaltpathsys.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	linehostunit1.cobaltpathsys.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	corehostunit5.ferrumgateweb.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	staticflowsys.ferrumgateweb.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	176.65.139.59:3000	Mirai	Mirai	seckle
2026-04-29 07:49	point8fluxsys.cobaltpathsys.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	blablatst12345.net	Remus		johannes
2026-04-29 07:49	http://45.151.91.187/pa.php	Kamasers		johannes
2026-04-29 07:49	sad4w7h913-b4a57f9c36eb.herokuapp.com	Unknown malware	SNOWBASIN SNOWBELT SNOWGLAZE	johannes
2026-04-29 07:49	wss://sad4w7h913-b4a57f9c36eb.herokuapp.com:443/ws	Unknown malware	SNOWBASIN SNOWBELT SNOWGLAZE	johannes
2026-04-29 07:49	86.54.24.26:4433	Cobalt Strike	Agentemis Beacon Cobalt Strike CobaltStrike cobeacon	whoamix302
2026-04-29 07:49	156.245.147.101:9010	Cobalt Strike	Agentemis Beacon Cobalt Strike CobaltStrike cobeacon	whoamix302
2026-04-29 07:49	46.137.196.122:443	Cobalt Strike	Agentemis Beacon Cobalt Strike CobaltStrike cobeacon	whoamix302
2026-04-29 07:49	170.75.170.59:443	Unknown malware	BotManager	whoamix302
2026-04-29 07:49	170.75.162.74:443	Unknown malware	BotManager	whoamix302
2026-04-29 07:49	206.166.251.249:1604	DarkComet	Breut darkcomet Fynloski klovbot	whoamix302
2026-04-29 07:49	94.156.155.42:80	Stealc	Stealc	whoamix302
2026-04-29 07:49	151.246.238.186:9000	SectopRAT	1xxbot ArechClient SectopRAT	whoamix302
2026-04-29 07:49	185.158.250.188:80	Socks5 Systemz	ProxyBox Socks5 Systemz	whoamix302
2026-04-29 07:49	31.56.209.119:443	Remcos	remcos RemcosRAT Remvio Socmer	whoamix302
2026-04-29 07:49	31.57.38.106:443	Remcos	remcos RemcosRAT Remvio Socmer	whoamix302
2026-04-29 07:49	154.41.194.67:6379	Xtreme RAT	ExtRat Xtreme RAT	whoamix302
2026-04-29 07:49	audiomeshbase.astrolinkview.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:48	http://172.86.116.178:5918	Unknown malware		johannes
2026-04-29 07:48	prism6hostunit.quartzprismcloud.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:48	flintpathgate.quartzprismcloud.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:48	https://barsows.com/file.js	KongTuke	Kongtuke	monitorsg
2026-04-29 07:48	barsows.com	KongTuke	Kongtuke	monitorsg
2026-04-29 07:48	https://barsows.com/t	KongTuke	Kongtuke	monitorsg
2026-04-29 07:48	https://barsows.com/g	KongTuke	Kongtuke	monitorsg
2026-04-29 07:48	https://barsows.com/c	KongTuke	Kongtuke	monitorsg
2026-04-29 07:48	drift2logicnet.tundraflowunit.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:48	frosthostbase.tundraflowunit.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:48	galesync7zone.tundraflowunit.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:48	iron9siteview.basaltlogicnode.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:45	193.181.46.11:8000	Vjw0rm	Vjw0rm	abuse_ch
2026-04-29 07:45	http://62.109.20.226/secureAuthWindowsFlower.php	DCRat	dcrat RAT	abuse_ch
2026-04-29 07:45	http://a1161272.xsph.ru/2d54b470.php	DCRat	dcrat RAT	abuse_ch
2026-04-29 07:45	freq6taskunit.astrolinkview.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 07:45	48.220.32.238:1177	NjRAT	njrat	abuse_ch
2026-04-29 07:45	http://redlandcpu.mywire.org:8000/is-ready	Houdini	RAT WSHRAT	abuse_ch
2026-04-29 07:45	104.18.22.6:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-29 07:45	104.18.23.6:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-29 07:45	151.101.131.52:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-29 07:45	151.101.3.52:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-29 07:45	151.101.67.52:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-29 07:45	151.101.195.52:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-29 07:39	tonelogicgate7.astrolinkview.garden	ClearFake	ClearFake	Anonymous
2026-04-29 07:26	https://claudesave.beer/api/css.js	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-29 07:26	claudesave.beer	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-29 07:25	https://nsbdnscloud.beer/api/css.js	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-29 07:25	nsbdnscloud.beer	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-29 07:25	https://nsserdns.beer/api/css.js	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-29 07:24	nsserdns.beer	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-29 07:23	sonic4wavehub.astrolinkview.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 07:10	pulse8sitebox.ferrumgateweb.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 07:10	myremnew.duckdns.org	Remcos	remcos	abuse_ch
2026-04-29 07:10	newupdaterem.duckdns.org	Remcos	remcos	abuse_ch
2026-04-29 06:52	atom2logicnet.ferrumgateweb.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 06:44	orbitmeshpath.ferrumgateweb.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 06:38	quant9wavegate.ferrumgateweb.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 06:24	planemeshlogic.cobaltpathsys.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 06:15	scalezoneyview.cobaltpathsys.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 05:40	lead4tasksys.zenithdockunit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 05:25	goldunitpath5.zenithdockunit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 05:19	neon2logicgate.zenithdockunit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 05:10	carbonmeshnode.zenithdockunit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 05:04	silicon7point.zenithdockunit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 04:55	rapid8wavenet.pulsarlogicnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 04:33	puresyncbase1.pulsarlogicnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 04:26	iron5logicway.pulsarlogicnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 04:19	embermeshnode.pulsarlogicnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 04:12	frost9taskunit.pulsarlogicnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 04:06	atlasgrid4flow.titanmeshflow.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 03:59	macro6siteview.titanmeshflow.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 03:52	tempohost8link.titanmeshflow.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 03:36	solarpointnet.titanmeshflow.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 03:11	blue3zonepath.marinergridhub.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 03:03	urbanhostgate.marinergridhub.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 02:43	radiantpath9.marinergridhub.garden	ClearFake	ClearFake	Anonymous
2026-04-29 02:36	vastlogicnode.marinergridhub.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 02:30	stellarbit4sys.marinergridhub.garden	ClearFake	ClearFake	Anonymous
2026-04-29 02:19	coolmeshbit5.vectorstarcity.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 02:00	hgn.jornaltribunadearaxa.com.br	Vidar	Vidar	crep1x
2026-04-29 02:00	https://hgn.jornaltribunadearaxa.com.br/	Vidar	Vidar	crep1x
2026-04-29 02:00	hgn.trbombom.com	Vidar	Vidar	crep1x
2026-04-29 02:00	https://hgn.trbombom.com/	Vidar	Vidar	crep1x
2026-04-29 01:27	apex7stormweb.vectorstarcity.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 01:01	hostunit9site.nebulafluxbase.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 00:41	smartmeshpath.nebulafluxbase.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 00:35	proxyblue8wave.nebulafluxbase.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 00:15	https://globalrvsales.com.au/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://ecombustibil.ro/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://trianglepaintinganddrywallllc.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://banglachannel.net/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://residence.co.il/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://rockwoodepoxy.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://scoreboardd.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://swallowinternational.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://old.franchise.anemoneindonesia.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://peachtreecapitalllc.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://fotovoltaicapolaris.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://jenishchamling.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://mobilemarketco.online/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://upsetamerican.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://andlaw.vn/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://chart.infoik.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://spesiarecruitment.job-bank.co.uk/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:09	hardhostunit.fossilcryptoweb.garden	ClearFake	ClearFake	Anonymous
2026-04-28 23:53	stonemeshway.fossilcryptoweb.garden	ClearFake	ClearFake	Anonymous
2026-04-28 23:40	heat5siteview.silicapathsys.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 23:34	flow9pathgate.silicapathsys.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 23:20	sand6taskhub.silicapathsys.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 23:15	https://ixnova.com.ar/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 23:14	grainmeshnode.silicapathsys.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 23:08	fine2logicnet.silicapathsys.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 22:54	cold4pathgate.marblewavebase.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 22:42	greyhostunit.marblewavebase.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 22:32	pale9taskhub.marblewavebase.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 22:26	smoothmeshway.marblewavebase.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 22:20	soft3logicnet.marblewavebase.garden	ClearFake	ClearFake	Anonymous
2026-04-28 22:11	load8siteview.pylonstaticnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 22:05	wire2pathgate.pylonstaticnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 21:59	posthostunit.pylonstaticnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 21:54	grid9taskhub.pylonstaticnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 21:49	beammeshnode.pylonstaticnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 21:28	blue8hostunit.oceanicmeshbit.garden	ClearFake	ClearFake	Anonymous
2026-04-28 21:23	saltpathbase.oceanicmeshbit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 21:10	surf3logicgate.oceanicmeshbit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 21:03	tidemeshnode.oceanicmeshbit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 20:56	deep7siteview.oceanicmeshbit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 20:50	plotwavegate.vertexurbanhub.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 20:42	side9pathsite.vertexurbanhub.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 20:20	line5taskhub.vertexurbanhub.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 20:11	highmeshway.vertexurbanhub.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 20:05	top2logicnet.vertexurbanhub.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 19:59	peak8zoneview.canyonsyncgate.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 19:51	windpathgate.canyonsyncgate.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 19:46	dust4hostunit.canyonsyncgate.garden	ClearFake	ClearFake	Anonymous
2026-04-28 19:30	echomeshsite.canyonsyncgate.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 19:30	https://kineticnode.shop/ext.0ff2555835d3.js	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-28 19:29	https://kineticnode.shop/ext-b.58316c304236.js	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-28 19:29	https://kineticnode.shop//t.188cfd3975db.js	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-28 19:26	https://kineticnode.shop/t.js	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-28 19:26	kineticnode.shop	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-28 19:17	base7wavenet.basaltlogicnode.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 19:13	https://best-claudns-js.beer/api/css.js	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-28 19:12	best-claudns-js.beer	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-28 19:12	https://cloude-js-server.beer/api/css.js	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-28 19:12	cloude-js-server.beer	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-28 19:08	core3gatehost.basaltlogicnode.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 18:48	rockmeshunit.basaltlogicnode.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 18:42	hard5logicbox.basaltlogicnode.garden	ClearFake	ClearFake	Anonymous
2026-04-28 18:36	mist4wavepath.tundraflowunit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 18:00	https://dlh.jornaltribunadearaxa.com.br/	Vidar	Vidar	crep1x
2026-04-28 18:00	dlh.trbombom.com	Vidar	Vidar	crep1x
2026-04-28 18:00	https://dlh.trbombom.com/	Vidar	Vidar	crep1x
2026-04-28 18:00	dlh.jornaltribunadearaxa.com.br	Vidar	Vidar	crep1x
2026-04-28 17:56	chillmeshsite.tundraflowunit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 17:51	storm8taskhub.tundraflowunit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 17:45	shinenetview.quartzprismcloud.garden	ClearFake	ClearFake	Anonymous
2026-04-28 17:28	sparklogicway.quartzprismcloud.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 17:24	63efwnh.leafspring.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 17:22	glaze3meshnode.quartzprismcloud.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 17:15	opalview4site.quartzprismcloud.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 17:03	deepsurve.leafspring.garden	ClearFake	ClearFake	Anonymous
2026-04-28 17:02	64.190.113.73:80	MintsLoader	dropped-by-KongTuke MintsLoader	abuse_ch
2026-04-28 17:02	https://2n1ksf4h0va.com/api/v1/telemetry	MintsLoader	dropped-by-KongTuke MintsLoader	abuse_ch
2026-04-28 17:02	http://w3xasv14culvnqj.top/1.php	MintsLoader	dropped-by-KongTuke MintsLoader	abuse_ch
2026-04-28 17:00	w3xasv14culvnqj.top	MintsLoader	dropped-by-KongTuke MintsLoader	abuse_ch
2026-04-28 17:00	2n1ksf4h0va.com	MintsLoader	dropped-by-KongTuke MintsLoader	abuse_ch
2026-04-28 16:58	37dmj.leafspring.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 16:52	quor-draet.leafspring.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 16:50	23.95.62.25:7070	Remcos	remcos	abuse_ch
2026-04-28 16:45	sub-5ound.leafspring.garden	ClearFake	ClearFake	Anonymous
2026-04-28 16:42	https://gccsinc.com/file.js	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	gccsinc.com	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	https://gccsinc.com/t	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	https://gccsinc.com/g	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	https://gccsinc.com/c	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	https://2n1ksf4h0va.com/d	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	2n1ksf4h0va.com	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	solforgeal3.lightforge.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:42	https://truecorehub.top/handler/status-partial.js	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:42	truecorehub.top	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:42	https://truecorehub.top/handler/redirect-server.php	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:42	https://truecorehub.top/handler/realm-component.js	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:42	http://185.93.221.129	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:42	http://103.20.235.207	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:42	https://solidnexio.com/software/python	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:42	https://hx1.bounceme.net:4433/victim.dll	Unknown malware	AppDomainManager bounceme-net commodity-rev-shell JscLoader	Lenny_3BO
2026-04-28 16:42	154.240.183.11:4433	Unknown malware	AppDomainManager bounceme-net commodity-rev-shell JscLoader	Lenny_3BO
2026-04-28 16:42	ba6d68bbb99c6237c983d491abf42245e8a0d7a993ca3d27e59907288fd836c5	Unknown malware	AppDomainManager bounceme-net commodity-rev-shell JscLoader	Lenny_3BO
2026-04-28 16:42	http://hx1.bounceme.net:8080/trigger	Unknown malware	AppDomainManager bounceme-net commodity-rev-shell JscLoader	Lenny_3BO
2026-04-28 16:42	hx1.bounceme.net	Unknown malware	AppDomainManager bounceme-net commodity-rev-shell DDNS JscLoader	Lenny_3BO
2026-04-28 16:42	154.240.183.11:53	Unknown malware	AppDomainManager bounceme-net commodity-rev-shell JscLoader	Lenny_3BO
2026-04-28 16:42	154.240.183.11:8080	Unknown malware	AppDomainManager bounceme-net commodity-rev-shell JscLoader	Lenny_3BO
2026-04-28 16:42	nor-meshix.mossgrove.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:42	https://vtcircuits.com/file.js	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	vtcircuits.com	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	https://vtcircuits.com/t	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	https://vtcircuits.com/g	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	https://vtcircuits.com/c	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	hillwest.mossgrove.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:42	solidnexio.com	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:42	rlkz.stoneflare.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:42	rqhk6he.stoneflare.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:42	ivorystorage.stoneflare.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:42	104.105.69.73:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:42	104.105.69.51:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:42	104.105.69.37:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:42	104.105.69.71:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:42	kelcrestet.frosthaven.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:42	jicinvestments.monster	Unknown malware	ClickFix ErrTraffic	netgrain
2026-04-28 16:42	megustacoaching.monster	Unknown malware	ClickFix ErrTraffic	netgrain
2026-04-28 16:42	respondmeasure.monster	Unknown malware	ClickFix ErrTraffic	netgrain
2026-04-28 16:42	vhyip.monster	Unknown malware	ClickFix ErrTraffic	netgrain
2026-04-28 16:42	vosart.monster	Unknown malware	ClickFix ErrTraffic	netgrain
2026-04-28 16:42	104.105.69.76:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:42	104.105.69.50:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:42	104.105.69.40:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:42	swiftbann.voidstream.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:42	104.105.69.22:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:42	handlerfalc.voidstream.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:42	104.105.69.19:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:42	104.105.69.24:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:41	honestlab.voidstream.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	https://rapidforge.top/handler/redirect-server.php	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:41	rapidforge.top	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:41	https://rapidforge.top/handler/realm-component.js	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:41	brookcano.sunmeadow.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	api-sub.jrodacooker.dev	Unknown malware	PromptMink	johannes
2026-04-28 16:41	api.bensaru.site	Unknown malware	PromptMink	johannes
2026-04-28 16:41	api.fivefingerz.dev	Unknown malware	PromptMink	johannes
2026-04-28 16:41	api.mywalletsss.store	Unknown malware	PromptMink	johannes
2026-04-28 16:41	api.soladify.fun	Unknown malware	PromptMink	johannes
2026-04-28 16:41	blxrbn.com	Unknown malware	PromptMink	johannes
2026-04-28 16:41	changelog.rest	Unknown malware	PromptMink	johannes
2026-04-28 16:41	clob-polymarket.com	Unknown malware	PromptMink	johannes
2026-04-28 16:41	ghostraper.top	Unknown malware	PromptMink	johannes
2026-04-28 16:41	ipfs-url-validator.vercel.app	Unknown malware	PromptMink	johannes
2026-04-28 16:41	log.pricesheet.ink	Unknown malware	PromptMink	johannes
2026-04-28 16:41	logger.clob.health	Unknown malware	PromptMink	johannes
2026-04-28 16:41	navigatorshub.com	Unknown malware	PromptMink	johannes
2026-04-28 16:41	polblxpnl.space	Unknown malware	PromptMink	johannes
2026-04-28 16:41	polymarket-clob.com	Unknown malware	PromptMink	johannes
2026-04-28 16:41	rpc-amoy.polygon.technology	Unknown malware	PromptMink	johannes
2026-04-28 16:41	validator.uno	Unknown malware	PromptMink	johannes
2026-04-28 16:41	winstonjs.site	Unknown malware	PromptMink	johannes
2026-04-28 16:41	meta-v0ca.sunmeadow.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	ob53rv-mesh.greenbloom.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	http://192.253.248.10:8099/pages/login.php	Unknown malware	AS213790 Limited Network LTD UNAM	antiphishorg
2026-04-28 16:41	192.253.248.10:8099	Unknown malware	AS213790 Limited Network LTD UNAM	antiphishorg
2026-04-28 16:41	ie78lu.greenbloom.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	comp-vine.greenbloom.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	o6iz.rosevale.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	culturebold.rosevale.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	betav2ryazhsky.digital	ClearFake	28April2026 ClearFake Commandline macOS	Gi7w0rm
2026-04-28 16:41	https://sites.google.com/view/claudemacos	Unknown Stealer		ineffyble
2026-04-28 16:41	sonic4wavehub.sonicwavehost.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	audiomeshbase.sonicwavehost.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	tonelogicgate7.sonicwavehost.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	echo2pathnode.sonicwavehost.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	normark3en.shadowpeak.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	stormloader.shadowpeak.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	arrayterminal.shadowpeak.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	refinesail.shadowpeak.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	runvva-route.lightforge.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:39	alt-w1nd.leafspring.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 16:28	clisan.mossgrove.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 16:20	neo-payl0.mossgrove.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 16:15	https://effectiveguidesforexpansion.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:15	https://fixerupperdiy.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:15	https://homeinvestorhandbookoforganization.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:15	https://businessroadtogrowth.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:15	https://corporateguidebookforinnovation.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:15	https://45-76-122-23.cprapid.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:15	https://businessguidesforgrowth.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:15	https://valuefirsthome.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:15	https://everythingabouttravel.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:15	https://thebizmanualforsuccess.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:13	proto-hyp3r.mossgrove.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 16:00	b74fa.mossgrove.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 15:51	targ3t9-panel.rosevale.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 15:39	ggitwz7y.betav2ryazhsky.digital	ClearFake	ClearFake	Anonymous
2026-04-28 15:39	97d1n21t.betav2ryazhsky.digital	ClearFake	ClearFake	threatcat_ch
2026-04-28 15:29	kellinear1.rosevale.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 15:23	velvetlayout.rosevale.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 15:17	innerflee.rosevale.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 15:15	https://advancednewdiscoverysphere.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://homeefficiencycraft.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://businessroadtoexpansion.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://realvisionlink.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://thebizmanualforprofit.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://crowdbaron.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://daveandtom.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://strategicvisionfocus.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://strategicclarityden.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://strategicupskillingkings.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://corporatestability.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://entrepreneurmanualforsuccess.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://advancedinfoden.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://advancedlearningdomain.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://bizroadtogrowth.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://comprehensivesustainabilityfocus.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://effectiveguidesforsuccess.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://yourcompanycompanionformarketing.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://businessguidesforsustainability.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:57	if8drhcl.greenbloom.garden	ClearFake	ClearFake	Anonymous
2026-04-28 14:43	l4tt1c-index.greenbloom.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 14:43	1318289497-6hwi9hel8e.ap-beijing.tencentscf.com	Cobalt Strike	CobaltStrike drb-ra	abuse_ch
2026-04-28 14:37	tal-crestis.greenbloom.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 14:32	kelcrest9ar.sunmeadow.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 14:21	ew559.sunmeadow.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 14:15	https://gadgets4guys.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://odesforbeginners.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://maagraphics.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://realgrowthhub.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://21stcenturytoys.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://corporateguidebookformarketing.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://houseownerlandscaping.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://legalterminology.co/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://advancedproficiencystation.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://advancedupskillinghub.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://choosemedsonline.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://lawformodernlife.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://sailorproject.org/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://advancedinsightvault.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://opportunityconnection.net/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://stormhosts.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://erickhoo.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://dentalvideo.net/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://legalbusinessnews.net/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://beyondboundariestravel.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://businessbasicsofgrowth.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://hertechknowledgy.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://studysmarttips.au/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://thegooddentist.net/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://entrepreneurmanualforsales.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://frugalhomeowners.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://yourbizstrategyformarketing.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://actionforrenewables.org/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://americanpersonalrights.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://avictorias.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://pcpatching.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://residentadvisorfordesign.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://houseownerguidebookforefficiency.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://health-splash.org/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:10	csgsuo.ru.com	Nanocore RAT	NanoCore	abuse_ch
2026-04-28 14:08	1oade4-zone.sunmeadow.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 14:05	8.222.225.32:7777	ValleyRAT	RAT ValleyRAT	abuse_ch
2026-04-28 14:05	137.220.134.149:7799	ValleyRAT	RAT ValleyRAT	abuse_ch
2026-04-28 14:05	47.237.95.113:6523	ValleyRAT	RAT ValleyRAT	abuse_ch
2026-04-28 14:05	http://52.158.47.4/javascriptPollhttpLongpoll.php	DCRat	dcrat RAT	abuse_ch
2026-04-28 14:05	172.111.232.230:29810	Remcos	RAT RemcosRAT	abuse_ch
2026-04-28 14:05	129.151.142.36:5725	NjRAT	njrat	abuse_ch
2026-04-28 14:05	64.188.64.38:6001	AsyncRAT	asyncrat RAT	abuse_ch
2026-04-28 14:05	104.21.34.127:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-28 14:05	172.67.161.64:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-28 14:02	azur3-branch.sunmeadow.garden	ClearFake	ClearFake	Anonymous
2026-04-28 13:50	triggeveri.voidstream.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 13:45	po5ter-node.voidstream.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 13:39	yxhe.voidstream.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 13:30	https://bcc.jornaltribunadearaxa.com.br/	Vidar	Vidar	crep1x
2026-04-28 13:30	bcc.trbombom.com	Vidar	Vidar	crep1x
2026-04-28 13:30	https://bcc.trbombom.com/	Vidar	Vidar	crep1x
2026-04-28 13:30	bcc.jornaltribunadearaxa.com.br	Vidar	Vidar	crep1x
2026-04-28 13:22	5un-drive.frosthaven.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 13:20	13.233.224.203:3001	Quasar RAT	quasar	abuse_ch
2026-04-28 13:17	asse4-track.frosthaven.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 13:15	https://rjayfinance.co.nz/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 13:03	whnmkwvj.frosthaven.garden	ClearFake	ClearFake	Anonymous
2026-04-28 12:56	vormarkor.frosthaven.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 12:50	serlineis.frosthaven.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 12:33	5urv3-layer.stoneflare.garden	ClearFake	ClearFake	Anonymous
2026-04-28 12:27	pastureclien.stoneflare.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 12:15	https://infobymika.fr/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 12:15	https://agrotimes.in/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 12:14	dock-visu.stoneflare.garden	ClearFake	ClearFake	Anonymous
2026-04-28 12:03	f4ct0-span.lightforge.garden	ClearFake	ClearFake	Anonymous
2026-04-28 11:55	tpxovsr.lightforge.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 11:50	formpea.lightforge.garden	ClearFake	ClearFake	Anonymous
2026-04-28 11:50	138.199.246.59:443	Vidar	Vidar	crep1x
2026-04-28 11:50	162.55.89.244:443	Vidar	Vidar	crep1x
2026-04-28 11:50	136.243.169.148:443	Vidar	Vidar	crep1x
2026-04-28 11:50	136.243.116.27:443	Vidar	Vidar	crep1x
2026-04-28 11:50	136.243.87.142:443	Vidar	Vidar	crep1x
2026-04-28 11:49	https://138.199.246.59/	Vidar	Vidar	crep1x
2026-04-28 11:49	https://162.55.89.244/	Vidar	Vidar	crep1x
2026-04-28 11:49	https://136.243.169.148/	Vidar	Vidar	crep1x
2026-04-28 11:49	https://136.243.116.27/	Vidar	Vidar	crep1x
2026-04-28 11:49	https://136.243.87.142/	Vidar	Vidar	crep1x
2026-04-28 11:43	filt3-scope.lightforge.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 11:15	https://7medindia.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 11:09	civi-opti.shadowpeak.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 11:04	broad7-grid.shadowpeak.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 10:53	pitchzoneyview.sonicwavehost.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 10:47	freq6taskunit.sonicwavehost.garden	ClearFake	ClearFake	threatcat_ch