| 2026-05-01 07:27 | https://mambet.lol/log.php | Unknown malware | ClickFix ErrTraffic |  HuntYethHounds |
| 2026-05-01 07:27 | https://mambet.lol/api/index.php | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-05-01 07:25 | https://mambet.lol/cf.js | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-05-01 07:25 | mambet.lol | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-05-01 07:21 | surf2taskhub.felo7wave.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-01 07:14 | byte9taskhub.open2byte.surf | ClearFake | 1May2026 ClearFake Commandline Windows |  Gi7w0rm |
| 2026-05-01 07:14 | next4pathgate.kren3sync.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 07:14 | loadhostunit.open2byte.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 07:14 | port4pathgate.open2byte.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 07:14 | zero.masscan.cloud | Shai-Hulud | |  johannes |
| 2026-05-01 07:14 | vhs.delrosal.net | Unknown malware | | johannes |
| 2026-05-01 07:14 | tumama.hns.to | Unknown malware | | johannes |
| 2026-05-01 07:14 | blackice.sol-domain.org | Unknown malware | | johannes |
| 2026-05-01 07:14 | https://trindastal.com/8250d149-9bf8-566d-9d7d-ea925eae0a4c/ | CASTLELOADER | | johannes |
| 2026-05-01 07:14 | cheeshomireciple.com | CASTLELOADER | | johannes |
| 2026-05-01 07:14 | https://t.me/dusty_vintage | Unknown malware | OpenClaw | johannes |
| 2026-05-01 07:12 | bbbadfflkhroksd.cn | ValleyRAT | RAT ValleyRAT |  abuse_ch |
| 2026-05-01 07:12 | 18.167.65.85:8880 | ValleyRAT | RAT ValleyRAT | abuse_ch |
| 2026-05-01 07:10 | wave7logicnet.felo7wave.surf | ClearFake | ClearFake |  threatcat_ch |
| 2026-05-01 07:08 | 165.154.24.229:80 | Cobalt Strike | CobaltStrike cs-watermark-391144938 | abuse_ch |
| 2026-05-01 07:08 | 203.160.54.22:8080 | Cobalt Strike | CobaltStrike cs-watermark-987654321 | abuse_ch |
| 2026-05-01 07:08 | 103.230.15.38:81 | Cobalt Strike | CobaltStrike cs-watermark-987654321 | abuse_ch |
| 2026-05-01 07:08 | 106.75.31.247:80 | Cobalt Strike | CobaltStrike cs-watermark-987654321 | abuse_ch |
| 2026-05-01 07:08 | 146.19.125.9:80 | Cobalt Strike | CobaltStrike cs-watermark-987654321 | abuse_ch |
| 2026-05-01 07:04 | 92.112.127.184:17691 | MooBot | moobot | abuse_ch |
| 2026-05-01 07:02 | http://wheat.gardenplume.store/ | Vidar | bandoozle Vidar | abuse_ch |
| 2026-05-01 07:02 | wheat.gardenplume.store | Vidar | bandoozle Vidar | abuse_ch |
| 2026-05-01 07:02 | fast9siteview.kren3sync.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-01 07:01 | https://t.me/izjdbzps | Vidar | bandoozle Vidar | abuse_ch |
| 2026-05-01 07:00 | 45.148.120.78:23459 | Bashlite | Gafgyt | abuse_ch |
| 2026-05-01 06:53 | fix1logicnet.pavi1xen.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | patchmeshnode.pavi1xen.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | full7siteview.everfo7mat.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | run4taskhub.pavi1xen.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | starthostunit.pavi1xen.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | jump7pathgate.pavi1xen.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | save2siteview.pavi1xen.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | datehostunit.years-quackery.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | soil6logicway.grov6lira.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | rootmeshsite.grov6lira.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | grow3taskhub.grov6lira.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | leafhostunit.grov6lira.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | wild5pathgate.grov6lira.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | cut2taskhub.dismemb7harlot.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | base8siteview.grov6lira.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | cold3logicnet.flen3qor.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | ice7taskhub.flen3qor.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | mistmeshnode.flen3qor.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | rainhostunit.flen3qor.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | zero4pathgate.flen3qor.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | pure9siteview.flen3qor.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | temp4pathgate.kutsy-proquac.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | gold7logicway.verdi7rax.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | richmeshsite.verdi7rax.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | scan8siteview.kutsy-proquac.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | coin4taskhub.verdi7rax.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | view8logicnet.lookin8back.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | bankhostunit.verdi7rax.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | mint2pathgate.verdi7rax.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | map4logicnet.exceedvil1ager.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | scan5pathgate.lookin8back.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | gridmeshnode.exceedvil1ager.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | back9siteview.lookin8back.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | plot7taskhub.exceedvil1ager.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | basehostunit.exceedvil1ager.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | zone2pathgate.exceedvil1ager.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | mark9siteview.exceedvil1ager.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | scan3logicway.counter-graphol.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | zero7pathgate.eleuther-stupidity.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | void4siteview.eleuther-stupidity.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | sync8taskhub.counter-graphol.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | linkhostunit.counter-graphol.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | port5pathgate.counter-graphol.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | data1siteview.counter-graphol.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | peak6logicnet.finchre5t.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | stem4pathgate.goddess-tapir.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | tint7logicnet.colorfu1prep.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | highmeshnode.finchre5t.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | top2taskhub.finchre5t.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | starhostunit.finchre5t.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | huemeshnode.colorfu1prep.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | edge5pathgate.finchre5t.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | rich4taskhub.colorfu1prep.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | view9siteview.finchre5t.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | mask4logicway.mesper-faced.bet | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | hidemeshsite.mesper-faced.bet | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | glow8siteview.colorfu1prep.bet | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | null7taskhub.mesper-faced.bet | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | voidhostunit.mesper-faced.bet | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | none3pathgate.mesper-faced.bet | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | past9taskhub.centenary-kurgan.bet | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | zero8siteview.mesper-faced.bet | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | wind5logicnet.po5ehuweather.bet | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | rainmeshnode.po5ehuweather.bet | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | cold9taskhub.po5ehuweather.bet | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | heat5logicnet.chaevodh0t.bet | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | lasthostunit.po5ehuweather.bet | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | burnmeshnode.chaevodh0t.bet | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | mist2pathgate.po5ehuweather.bet | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | fire2taskhub.chaevodh0t.bet | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | move7logicnet.vibe7wave.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | fast7siteview.chaevodh0t.bet | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | stepmeshnode.vibe7wave.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | run4taskhub.vibe7wave.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | pathmeshsite.colorist-resignat.bet | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | starthostunit.vibe7wave.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | dash3taskhub.colorist-resignat.bet | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | jump2pathgate.vibe7wave.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | fast9siteview.vibe7wave.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | spin4logicway.flow4axis.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | turnmeshsite.flow4axis.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | axis8taskhub.flow4axis.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | high7logicnet.nexo7peak.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | gearhostunit.flow4axis.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | peakmeshnode.nexo7peak.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | bolt5pathgate.flow4axis.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | star4taskhub.nexo7peak.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | dash7siteview.flow4axis.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | pointhostunit.nexo7peak.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | clean9logicnet.pure9drift.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | top9pathgate.nexo7peak.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | washmeshnode.pure9drift.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | view2siteview.nexo7peak.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | voidhostunit.pure9drift.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | meltmeshsite.voda4flux.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | zero4pathgate.pure9drift.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:53 | free8siteview.pure9drift.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | glow8taskhub.voda4flux.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | link2logicway.flex2node.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | portmeshsite.flex2node.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | heat5pathgate.voda4flux.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | sync7taskhub.flex2node.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | http://217.145.227.150/stealer/public/login.php | Unknown malware | AS205775 NEON CORE NETWORK LLC qatar |  antiphishorg |
| 2026-05-01 06:52 | https://tools.doxbin.cy/windows | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-01 06:52 | fire1siteview.voda4flux.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | byte3pathgate.flex2node.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | slowmeshnode.kali9drift.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | null9siteview.flex2node.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | rest3taskhub.kali9drift.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | high5logicnet.tide5peak.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | basehostunit.kali9drift.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | topmeshnode.tide5peak.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | peak2taskhub.tide5peak.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | long2siteview.kali9drift.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | starhostunit.tide5peak.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | edge4pathgate.tide5peak.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | view8siteview.tide5peak.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | foci5taskhub.mero2beam.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | core8logicway.dash8core.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | lenshostunit.mero2beam.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | basemeshsite.dash8core.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | unit3taskhub.dash8core.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | pure4siteview.mero2beam.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | sync5logicnet.sora5link.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | hard5pathgate.dash8core.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | portmeshnode.sora5link.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | chip9siteview.dash8core.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | link1taskhub.sora5link.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | aero1logicnet.glid1zone.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | datahostunit.sora5link.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | wingmeshnode.glid1zone.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | flowhostunit.glid1zone.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | skypathgate4.glid1zone.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | map2taskhub.tavi8grid.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | areahostunit.tavi8grid.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | glowmeshsite.surf3beam.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | beam7taskhub.surf3beam.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | site7siteview.tavi8grid.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | focihostunit.surf3beam.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | lens4pathgate.surf3beam.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | pure8siteview.surf3beam.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | volt7logicnet.fast7link.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | loadmeshnode.pilo1byte.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | readhostunit.pilo1byte.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | ampmeshnode.fast7link.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | watt2taskhub.fast7link.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | loadhostunit.fast7link.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | fuse5pathgate.fast7link.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | grid9siteview.fast7link.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | open2logicway.open2byte.surf | ClearFake | 1May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | https://www.edwinmsarmiento.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-01 06:52 | https://snakcscornerbd.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-01 06:52 | https://labo.univ-msila.dz/labs/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-01 06:52 | https://www.drkonradrack.at/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-01 06:52 | https://70.34.205.43/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-01 06:52 | https://document-share-id382929992933.sisregcel.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-01 06:52 | http://47.238.118.2:8888/supershell/login/ | Unknown malware | AS45102 Supershell | antiphishorg |
| 2026-05-01 06:52 | 47.238.118.2:8888 | Unknown malware | AS45102 Supershell | antiphishorg |
| 2026-05-01 06:52 | fc042d5bfecb1da4d2821c28c3a3b754.5df12747c755c71bd07c59710b1567bf.traefik.default | Cobalt Strike | |  duggusa |
| 2026-05-01 06:52 | plotmeshsite.nelo2qir.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | naughtyza.co.za | ClearFake | ClearFake |  varysz |
| 2026-05-01 06:52 | mykeycounter.com | ClearFake | ClearFake | varysz |
| 2026-05-01 06:52 | weddingpioneer.com | ClearFake | ClearFake | varysz |
| 2026-05-01 06:52 | usanews24.info | ClearFake | ClearFake | varysz |
| 2026-05-01 06:52 | highpressurecleaningdurban.co.za | ClearFake | ClearFake | varysz |
| 2026-05-01 06:52 | 766866.com | ClearFake | ClearFake | varysz |
| 2026-05-01 06:52 | deal9siteview.sali8mor.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:52 | sachhiprerna.com | ClearFake | ClearFake | varysz |
| 2026-05-01 06:52 | 2339fba9695ad25fcd79f232c4b635023f5621eb927a53601db84eb428b3116e | Unknown malware | ClickFix ConnectWise RMM-as-RAT ScreenConnect | Lenny_3BO |
| 2026-05-01 06:51 | d19f88dc8c825614e4898d06c7eeb28bace5156344aed4d708bcdd25a970866d | Unknown malware | ClickFix ConnectWise RMM-as-RAT ScreenConnect | Lenny_3BO |
| 2026-05-01 06:51 | https://mawenterprises.co/.April/A3.msi | Unknown malware | ClickFix ConnectWise RMM-as-RAT ScreenConnect | Lenny_3BO |
| 2026-05-01 06:51 | http://mawenterprises.co/.April/A1.mp4 | Unknown malware | ClickFix ConnectWise RMM-as-RAT ScreenConnect | Lenny_3BO |
| 2026-05-01 06:51 | mawenterprises.co | Unknown malware | ClickFix ConnectWise RMM-as-RAT ScreenConnect | Lenny_3BO |
| 2026-05-01 06:51 | win4pathgate.sali8mor.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:51 | report.error-report.com | ClearFake | ClearFake | varysz |
| 2026-05-01 06:51 | 2026op.com | Unknown malware | ClickFix ConnectWise RMM-as-RAT ScreenConnect | Lenny_3BO |
| 2026-05-01 06:51 | html-load.cc | ClearFake | ClearFake | varysz |
| 2026-05-01 06:51 | error-report.com | ClearFake | ClearFake | varysz |
| 2026-05-01 06:51 | fb.content-loader.com | ClearFake | ClearFake | varysz |
| 2026-05-01 06:51 | ilmukomputer.org | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-01 06:51 | strategicadvisersllc.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-01 06:51 | pittsburgh-carpet.com | IClickFix | ClickFix | varysz |
| 2026-05-01 06:51 | pipingpotcurry.com | ClearFake | ClearFake | varysz |
| 2026-05-01 06:51 | luckhostunit.sali8mor.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:51 | diskmeshnode.everfo7mat.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:51 | past6siteview.undo-wingless.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:51 | zone7taskhub.nelo2qir.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:51 | areahostunit.nelo2qir.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:51 | axis3pathgate.nelo2qir.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:51 | core8taskhub.technic2lweak.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:51 | mark8siteview.nelo2qir.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:51 | heat5logicnet.thora5ven.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:51 | glowmeshnode.thora5ven.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:51 | burn9taskhub.thora5ven.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:51 | firehostunit.thora5ven.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:51 | dash2taskhub.expresser-pray.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:51 | warm7siteview.thora5ven.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:51 | risk3logicway.sali8mor.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:51 | send8siteview.expresser-pray.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:51 | spin6taskhub.sali8mor.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-01 06:50 | waithostunit.kren3sync.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-01 06:44 | last7taskhub.kren3sync.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-01 06:36 | tickmeshsite.kren3sync.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-01 06:30 | time3logicway.kren3sync.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-01 06:30 | t7h.plugazapp.com.br | Vidar | Vidar |  crep1x |
| 2026-05-01 06:30 | https://t7h.plugazapp.com.br/ | Vidar | Vidar | crep1x |
| 2026-05-01 06:30 | t7h.ambil-disini.web.id | Vidar | Vidar | crep1x |
| 2026-05-01 06:30 | https://t7h.ambil-disini.web.id/ | Vidar | Vidar | crep1x |
| 2026-05-01 06:24 | full2siteview.pilo1byte.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-01 06:19 | file7pathgate.pilo1byte.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-01 06:07 | save4taskhub.pilo1byte.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-01 05:56 | byte1logicnet.pilo1byte.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-01 05:45 | zone5pathgate.tavi8grid.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-01 05:28 | plotmeshsite.tavi8grid.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-01 05:23 | grid8logicway.tavi8grid.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-01 05:18 | null9siteview.sora5link.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-01 05:11 | byte4pathgate.sora5link.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-01 04:38 | beam8pathgate.mero2beam.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-01 04:21 | lightmeshsite.mero2beam.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-01 04:16 | ray2logicway.mero2beam.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-01 04:01 | stay7pathgate.kali9drift.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-01 03:36 | move9logicnet.kali9drift.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-01 03:16 | ionhostunit.voda4flux.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-01 02:54 | flow4logicway.voda4flux.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-01 02:43 | 94.176.3.228:48765 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 94.198.96.164:52452 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 94.198.96.164:55025 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 95.111.250.175:5435 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 98.81.111.167:4321 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 98.97.125.70:8883 | DanaBot | DanBot drb-ra | abuse_ch |
| 2026-05-01 02:43 | 91.202.233.153:43555 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 91.215.85.151:47653 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 91.219.238.234:2700 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 93.127.134.156:80 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 94.154.35.160:1234 | DCRat | dcrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 94.154.35.160:6466 | DCRat | dcrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 94.154.35.73:1111 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 84.54.33.7:6745 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 85.121.5.202:5689 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 85.155.186.2:3821 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 89.125.50.18:30031 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 90.58.26.10:6060 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 83.136.209.49:56002 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 83.136.209.49:56003 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 83.97.20.133:443 | BianLian | BianLian drb-ra | abuse_ch |
| 2026-05-01 02:43 | 83.97.20.133:80 | BianLian | BianLian drb-ra | abuse_ch |
| 2026-05-01 02:43 | 83.98.39.53:8443 | DanaBot | DanBot drb-ra | abuse_ch |
| 2026-05-01 02:43 | 83.98.39.54:8443 | DanaBot | DanBot drb-ra | abuse_ch |
| 2026-05-01 02:43 | 84.54.33.227:7829 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 79.135.160.20:9999 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 80.96.109.95:7443 | Unknown malware | Covenant drb-ra | abuse_ch |
| 2026-05-01 02:43 | 80.96.113.212:8080 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 81.229.251.143:443 | DanaBot | DanBot drb-ra | abuse_ch |
| 2026-05-01 02:43 | 83.136.209.49:56001 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 66.163.115.78:8808 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 66.85.27.18:80 | Havoc | drb-ra Havoc | abuse_ch |
| 2026-05-01 02:43 | 68.64.178.130:9900 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 72.56.246.58:443 | Chaos | CHAOS drb-ra | abuse_ch |
| 2026-05-01 02:43 | 72.56.246.58:8080 | Chaos | CHAOS drb-ra | abuse_ch |
| 2026-05-01 02:43 | 52.198.162.251:16000 | Havoc | drb-ra Havoc | abuse_ch |
| 2026-05-01 02:43 | 62.164.177.229:8088 | Chaos | CHAOS drb-ra | abuse_ch |
| 2026-05-01 02:43 | 62.171.150.165:7777 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 62.81.188.1:443 | DanaBot | DanBot drb-ra | abuse_ch |
| 2026-05-01 02:43 | 66.163.115.78:6606 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 66.163.115.78:7707 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 45.95.232.195:54655 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 46.101.77.223:3333 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 46.243.205.154:10666 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 5.255.111.155:32543 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 5.42.221.153:443 | DanaBot | DanBot drb-ra | abuse_ch |
| 2026-05-01 02:43 | 5.75.185.142:443 | Havoc | drb-ra Havoc | abuse_ch |
| 2026-05-01 02:43 | 45.155.69.175:42455 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 45.56.91.55:2003 | Unknown malware | Covenant drb-ra | abuse_ch |
| 2026-05-01 02:43 | 45.67.228.215:4323 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 45.77.127.102:7707 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 45.77.127.102:8808 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 45.81.243.52:4321 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 45.125.67.171:8443 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 45.144.137.216:38271 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 45.154.25.64:41236 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 45.155.69.106:42211 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 38.76.217.23:9443 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 43.134.133.177:8445 | BianLian | BianLian drb-ra | abuse_ch |
| 2026-05-01 02:43 | 43.142.77.170:443 | Chaos | CHAOS drb-ra | abuse_ch |
| 2026-05-01 02:43 | 43.142.77.170:80 | Chaos | CHAOS drb-ra | abuse_ch |
| 2026-05-01 02:43 | 43.160.225.40:39001 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 31.57.184.48:6523 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 37.72.140.15:5555 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 38.255.44.50:57893 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 38.54.108.229:19433 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 38.54.119.24:4321 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 38.60.134.130:62858 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 222.255.100.119:8080 | Chaos | CHAOS drb-ra | abuse_ch |
| 2026-05-01 02:43 | 23.227.203.6:42235 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 23.27.143.222:2850 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 3.113.66.233:80 | Brute Ratel C4 | BruteRatel drb-ra | abuse_ch |
| 2026-05-01 02:43 | 31.57.184.154:8808 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 31.57.184.48:2583 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 216.107.208.250:10444 | BianLian | BianLian drb-ra | abuse_ch |
| 2026-05-01 02:43 | 216.126.239.161:3333 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 217.28.130.143:443 | Havoc | drb-ra Havoc | abuse_ch |
| 2026-05-01 02:43 | 217.60.38.14:14421 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 219.142.15.101:4353 | DanaBot | DanBot drb-ra | abuse_ch |
| 2026-05-01 02:43 | 220.231.47.163:4353 | DanaBot | DanBot drb-ra | abuse_ch |
| 2026-05-01 02:43 | 221.130.42.19:4353 | DanaBot | DanBot drb-ra | abuse_ch |
| 2026-05-01 02:43 | 207.107.147.42:4438 | BianLian | BianLian drb-ra | abuse_ch |
| 2026-05-01 02:43 | 208.249.244.20:443 | BianLian | BianLian drb-ra | abuse_ch |
| 2026-05-01 02:43 | 209.151.145.164:8443 | DeimosC2 | Deimos drb-ra | abuse_ch |
| 2026-05-01 02:43 | 209.38.248.122:9443 | Havoc | drb-ra Havoc | abuse_ch |
| 2026-05-01 02:43 | 212.227.93.107:3333 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 212.43.144.122:9346 | DCRat | dcrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 213.199.35.149:80 | Brute Ratel C4 | BruteRatel drb-ra | abuse_ch |
| 2026-05-01 02:43 | 2.27.29.65:4321 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 202.171.43.176:443 | Havoc | drb-ra Havoc | abuse_ch |
| 2026-05-01 02:43 | 202.181.24.236:8443 | Havoc | drb-ra Havoc | abuse_ch |
| 2026-05-01 02:43 | 202.95.17.188:4321 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 206.189.40.107:443 | Havoc | drb-ra Havoc | abuse_ch |
| 2026-05-01 02:43 | 194.156.89.88:7707 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 194.156.89.88:8808 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 194.37.80.126:4430 | Havoc | drb-ra Havoc | abuse_ch |
| 2026-05-01 02:43 | 198.135.54.83:1995 | DCRat | dcrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 198.23.176.38:8080 | Chaos | CHAOS drb-ra | abuse_ch |
| 2026-05-01 02:43 | 192.109.200.183:6606 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 192.109.200.183:7707 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 192.109.200.183:8808 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 193.112.115.127:8989 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 193.112.169.214:30892 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 193.23.137.40:3334 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 194.156.89.88:6606 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 185.242.3.83:9909 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 185.247.224.40:4321 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 188.137.176.37:7707 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 188.137.183.184:9165 | DCRat | dcrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 188.137.250.221:8593 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 188.73.162.175:9443 | BianLian | BianLian drb-ra | abuse_ch |
| 2026-05-01 02:43 | 192.109.200.183:4040 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 185.212.128.81:9000 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 185.212.129.23:9000 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 185.212.129.24:9000 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 185.212.129.29:9000 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 185.212.129.30:9000 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 185.213.20.250:4321 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 185.242.245.120:42534 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 180.184.29.135:8080 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 182.255.45.114:4848 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 185.122.171.4:44355 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 185.163.204.62:963 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 185.163.204.62:972 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 185.212.128.25:9000 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 185.212.128.48:9000 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 173.249.214.203:3333 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 178.16.52.105:207 | DCRat | dcrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 178.16.52.22:8396 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 178.16.53.117:35630 | DCRat | dcrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 179.43.140.225:1488 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 172.94.17.208:72 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 172.94.17.208:73 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 172.94.17.208:79 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 173.211.106.231:21321 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 173.242.59.199:8888 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 162.243.100.39:3333 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 162.243.64.101:3333 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 166.88.4.28:3333 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 172.111.151.97:67 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 172.111.162.252:3030 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 172.9.165.216:8096 | Chaos | CHAOS drb-ra | abuse_ch |
| 2026-05-01 02:43 | 172.93.144.164:8580 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 153.75.224.159:5400 | BianLian | BianLian drb-ra | abuse_ch |
| 2026-05-01 02:43 | 154.219.115.123:60001 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 156.238.236.249:7930 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 158.94.209.132:99 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 158.94.209.132:999 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 161.248.179.92:1111 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 161.248.179.92:9999 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 162.14.124.25:4321 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 149.104.110.163:59349 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 149.104.28.204:3656 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 149.104.66.230:53661 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 149.56.190.92:7777 | DCRat | dcrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 150.230.160.171:443 | Havoc | drb-ra Havoc | abuse_ch |
| 2026-05-01 02:43 | 151.158.1.2:3333 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-01 02:43 | 151.236.4.135:443 | DanaBot | DanBot drb-ra | abuse_ch |
| 2026-05-01 02:43 | 142.93.88.220:443 | Havoc | drb-ra Havoc | abuse_ch |
| 2026-05-01 02:43 | 143.198.52.66:7707 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 143.198.52.66:8808 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 144.172.102.234:47653 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 144.172.65.125:4786 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 144.172.65.231:7001 | DCRat | dcrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 130.94.41.162:8443 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 134.175.253.242:8989 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 137.220.137.66:6606 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 137.220.137.66:8808 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 138.124.113.131:4211 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 138.197.119.51:7443 | Unknown malware | Covenant drb-ra | abuse_ch |
| 2026-05-01 02:43 | 139.64.164.72:63337 | Chaos | CHAOS drb-ra | abuse_ch |
| 2026-05-01 02:43 | 115.42.60.122:5440 | DCRat | dcrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 117.72.101.55:9520 | Chaos | CHAOS drb-ra | abuse_ch |
| 2026-05-01 02:43 | 119.91.247.247:8989 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 130.49.214.74:52452 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 130.49.214.74:55025 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 130.94.23.39:4321 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 103.151.52.35:3306 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 103.57.250.99:41895 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 103.75.190.47:54630 | DCRat | dcrat drb-ra RAT | abuse_ch |
| 2026-05-01 02:43 | 104.234.174.93:57712 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 106.55.71.62:8989 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 114.132.133.191:8989 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 115.190.247.97:4321 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:43 | 102.209.118.229:4321 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-01 02:07 | site8siteview.colorist-resignat.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-05-01 02:05 | 7326.info | XWorm | XWorm | abuse_ch |
| 2026-05-01 02:00 | jump5pathgate.colorist-resignat.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-05-01 01:55 | flowhostunit.colorist-resignat.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-05-01 01:38 | step6logicway.colorist-resignat.bet | ClearFake | ClearFake | Anonymous |
| 2026-05-01 01:25 | melt8pathgate.chaevodh0t.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-05-01 01:19 | ionhostunit.chaevodh0t.bet | ClearFake | ClearFake | Anonymous |
| 2026-05-01 00:57 | time6siteview.centenary-kurgan.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-05-01 00:49 | next1pathgate.centenary-kurgan.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-05-01 00:44 | datehostunit.centenary-kurgan.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-05-01 00:33 | longmeshsite.centenary-kurgan.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-05-01 00:22 | term4logicway.centenary-kurgan.bet | ClearFake | ClearFake | Anonymous |
| 2026-05-01 00:09 | fade2pathgate.colorfu1prep.bet | ClearFake | ClearFake | Anonymous |
| 2026-05-01 00:01 | starthostunit.colorfu1prep.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 23:32 | soil9siteview.goddess-tapir.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 23:20 | leafhostunit.goddess-tapir.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 23:15 | grow6taskhub.goddess-tapir.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 23:09 | rootmeshsite.goddess-tapir.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 23:04 | wild3logicway.goddess-tapir.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 22:47 | nonehostunit.eleuther-stupidity.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 22:41 | null1taskhub.eleuther-stupidity.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 22:34 | openmeshsite.eleuther-stupidity.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 22:30 | https://trb.ambil-disini.web.id/ | Vidar | Vidar | crep1x |
| 2026-04-30 22:30 | trb.plugazapp.com.br | Vidar | Vidar | crep1x |
| 2026-04-30 22:30 | https://trb.plugazapp.com.br/ | Vidar | Vidar | crep1x |
| 2026-04-30 22:30 | trb.ambil-disini.web.id | Vidar | Vidar | crep1x |
| 2026-04-30 22:28 | free5logicway.eleuther-stupidity.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 22:11 | hostunitgate.lookin8back.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 22:06 | seek2taskhub.lookin8back.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 21:57 | findmeshnode.lookin8back.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 21:29 | fakehostunit.kutsy-proquac.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 21:23 | mock7taskhub.kutsy-proquac.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 21:18 | testmeshsite.kutsy-proquac.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 21:12 | pure3logicway.kutsy-proquac.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 21:07 | null9siteview.dismemb7harlot.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 21:01 | drop5pathgate.dismemb7harlot.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 20:55 | voidhostunit.dismemb7harlot.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 20:45 | https://vectorgridzone.digital/script.sh | Unknown malware | macOS | HuntYethHounds |
| 2026-04-30 20:45 | vectorgridzone.digital | Unknown malware | macOS | HuntYethHounds |
| 2026-04-30 20:44 | splitmeshnode.dismemb7harlot.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 20:35 | part6logicnet.dismemb7harlot.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 20:29 | term5siteview.years-quackery.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 20:23 | next3pathgate.years-quackery.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 20:11 | past8taskhub.years-quackery.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 20:06 | https://olnsclaud.beer/api/css.js | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 20:06 | olnsclaud.beer | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 20:03 | zoofieiceroseoware.monster | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 20:01 | timemeshsite.years-quackery.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 20:00 | livekeypagespace.monster | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 20:00 | https://abs.ambil-disini.web.id/ | Vidar | Vidar | crep1x |
| 2026-04-30 20:00 | abs.plugazapp.com.br | Vidar | Vidar | crep1x |
| 2026-04-30 20:00 | https://abs.plugazapp.com.br/ | Vidar | Vidar | crep1x |
| 2026-04-30 20:00 | abs.ambil-disini.web.id | Vidar | Vidar | crep1x |
| 2026-04-30 19:55 | exchangesys.monster | Unknown malware | ClickFix | threatcat_ch |
| 2026-04-30 19:53 | bestzonedomainzone.com | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 19:52 | long4logicway.years-quackery.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 19:51 | bestzlearnkeyzone.monster | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 19:49 | zoomloungepodbytefile.monster | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 19:48 | wayfeedfivelyticfile.monster | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 19:46 | softifybitmixfile.monster | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 19:45 | recognizecentibox.monster | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 19:44 | livespacezonelink.monster | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 19:43 | learnpageflowhub.monster | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 19:42 | learnnextpagecore.monster | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 19:38 | bestzkeyflowhub.monster | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 19:36 | data2pathgate.everfo7mat.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 19:33 | learnzonepagehub.monster | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 19:32 | alldigipathplazz.monster | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 19:31 | livespacenextzone.monster | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 19:31 | agidelgembee.monster | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 19:31 | savehostunit.everfo7mat.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 19:31 | fastlistjabberboxvinu.com | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 19:30 | bestzrealpagehub.monster | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-04-30 19:25 | wipe3taskhub.everfo7mat.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 19:11 | form9logicnet.everfo7mat.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 19:00 | post5pathgate.expresser-pray.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 18:54 | flowhostunit.expresser-pray.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 18:43 | 82.156.219.31:8443 | Cobalt Strike | CobaltStrike drb-ra | abuse_ch |
| 2026-04-30 18:43 | 39.105.74.52:443 | Cobalt Strike | CobaltStrike drb-ra | abuse_ch |
| 2026-04-30 18:43 | 39.105.74.52:80 | Cobalt Strike | CobaltStrike drb-ra | abuse_ch |
| 2026-04-30 18:43 | 193.53.127.220:443 | Cobalt Strike | CobaltStrike drb-ra | abuse_ch |
| 2026-04-30 18:43 | 149.88.73.40:4443 | Cobalt Strike | CobaltStrike drb-ra | abuse_ch |
| 2026-04-30 18:43 | www.microsslcheck.com | Cobalt Strike | CobaltStrike drb-ra | abuse_ch |
| 2026-04-30 18:43 | releases-export-finishing-phillips.trycloudflare.com | Cobalt Strike | CobaltStrike drb-ra | abuse_ch |
| 2026-04-30 18:37 | rushmeshsite.expresser-pray.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 18:31 | fast7logicway.expresser-pray.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 18:25 | chip9siteview.technic2lweak.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 18:19 | firm4pathgate.technic2lweak.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 18:15 | https://swiftwraps.com/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-04-30 18:15 | https://masajetantricos.com/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-04-30 18:14 | basehostunit.technic2lweak.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 18:00 | hardmeshnode.technic2lweak.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 17:53 | tech3logicnet.technic2lweak.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 17:43 | moni8-wave.grov6lira.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:43 | volt8logicnet.vexa7lorn.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:43 | ampmeshnode.vexa7lorn.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:43 | watt2taskhub.vexa7lorn.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:43 | https://lone.design/xmlrpc.php | GootLoader | gootloader v3 | Gi7w0rm |
| 2026-04-30 17:43 | https://ariavan.ir/xmlrpc.php | GootLoader | gootloader v3 | Gi7w0rm |
| 2026-04-30 17:43 | https://oil24.kz/xmlrpc.php | GootLoader | gootloader v3 | Gi7w0rm |
| 2026-04-30 17:43 | https://thewatchspa.it/xmlrpc.php | GootLoader | gootloader v3 | Gi7w0rm |
| 2026-04-30 17:43 | https://saohaivuong.com/xmlrpc.php | GootLoader | gootloader v3 | Gi7w0rm |
| 2026-04-30 17:43 | https://ghaith.om/xmlrpc.php | GootLoader | gootloader v3 | Gi7w0rm |
| 2026-04-30 17:43 | https://fbdownhd.com/xmlrpc.php | GootLoader | gootloader v3 | Gi7w0rm |
| 2026-04-30 17:43 | https://paramviracademy.com/xmlrpc.php | GootLoader | gootloader v3 | Gi7w0rm |
| 2026-04-30 17:43 | https://lasceltamigliore.com/xmlrpc.php | GootLoader | gootloader v3 | Gi7w0rm |
| 2026-04-30 17:43 | https://ugglamassage.se/xmlrpc.php | GootLoader | gootloader v3 | Gi7w0rm |
| 2026-04-30 17:43 | mars8-path.pavi1xen.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:43 | gxamkq.producer5chming.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:43 | pfgkkq.pavi1xen.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:43 | 66.97.39.94:8080 | Chaos | AS27823 CHAOS Dattatec.com | antiphishorg |
| 2026-04-30 17:43 | mu62lt.pavi1xen.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:43 | schedule.re-canada.com | FAKEUPDATES | SocGholish |  monitorsg |
| 2026-04-30 17:43 | loadhostunit.vexa7lorn.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:43 | sailree.herod-terminology.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:43 | fuse5pathgate.vexa7lorn.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:43 | grid9siteview.vexa7lorn.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:43 | vaci-cloud.b-cdn.net | Unknown malware | ClickFix fingerfix python-sideload | Lenny_3BO |
| 2026-04-30 17:43 | kenoshakickersfilms.com | Unknown malware | ClickFix fingerfix python-sideload | Lenny_3BO |
| 2026-04-30 17:43 | https://vaci-cloud.b-cdn.net/Python.zip | Unknown malware | ClickFix fingerfix python-sideload | Lenny_3BO |
| 2026-04-30 17:43 | 185.216.71.59:443 | Unknown malware | ClickFix fingerfix python-sideload | Lenny_3BO |
| 2026-04-30 17:43 | 45.88.191.76:443 | Unknown malware | ClickFix fingerfix python-sideload | Lenny_3BO |
| 2026-04-30 17:43 | 7c54bcf3aea8348e8902cac80eb0df31b43a71601a62e2514087fef40a416bfd | Unknown malware | ClickFix fingerfix novii python-sideload | Lenny_3BO |
| 2026-04-30 17:43 | 02b507b498e280578b56974382519a5fee608208d6ad8e724032eade83bec8d9 | Unknown malware | ClickFix fingerfix novii python-sideload | Lenny_3BO |
| 2026-04-30 17:43 | novayastaruxa.com | Unknown malware | novii python-rat winhttp-websocket | Lenny_3BO |
| 2026-04-30 17:43 | echo4logicway.mira4then.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:43 | form7-beam.herod-terminology.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:43 | gain7taskhub.mira4then.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:43 | ping4logicnet.dusherport2ge.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:43 | tune3pathgate.mira4then.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:42 | vibe8siteview.mira4then.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:42 | routehostunit.dusherport2ge.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:42 | portmeshnode.zori9vax.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:42 | link8siteview.dusherport2ge.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:42 | sync2taskhub.zori9vax.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:42 | undo5logicway.undo-wingless.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:42 | datahostunit.zori9vax.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:42 | byte5pathgate.zori9vax.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:42 | null9siteview.zori9vax.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:42 | ptk2.xyz | Unknown RAT | | Anonymous |
| 2026-04-30 17:42 | mgnext2.xyz | Unknown RAT | | Anonymous |
| 2026-04-30 17:42 | mgtv3.xyz | Unknown RAT | | Anonymous |
| 2026-04-30 17:42 | map4logicway.nelo2qir.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:42 | last9pathgate.undo-wingless.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 17:36 | stephostunit.undo-wingless.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 17:30 | redo2taskhub.undo-wingless.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 17:24 | backmeshsite.undo-wingless.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 17:15 | https://anfitrionastrabajo.com/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-04-30 17:05 | port3pathgate.dusherport2ge.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 16:56 | trace7taskhub.dusherport2ge.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 16:49 | hopmeshnode.dusherport2ge.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 16:35 | crysta-close.herod-terminology.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 16:22 | zenvaleet.herod-terminology.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 16:16 | slxhibx.herod-terminology.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 16:15 | https://powerhouselaw.com.au/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-04-30 16:15 | https://powerhouselaw.sydney/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-04-30 16:00 | encod-vault.herod-terminology.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 15:55 | repa1r-track.producer5chming.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 15:49 | lab1-branch.producer5chming.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 15:40 | 38.240.51.143:43557 | Quasar RAT | quasar | abuse_ch |
| 2026-04-30 15:36 | talline8al.producer5chming.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 15:30 | rapidassay.producer5chming.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 15:24 | rur4l-signal.producer5chming.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 15:19 | igqe.belief-handcraft.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 15:13 | yagzws04.belief-handcraft.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 15:05 | 1oca1-trail.belief-handcraft.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 14:57 | m4rk-grid.belief-handcraft.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 14:54 | atomchec.belief-handcraft.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 14:54 | brookneuro.grov6lira.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 14:52 | 67mvmowu.belief-handcraft.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 14:46 | m01e-node.flen3qor.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 14:46 | sales-loop.grov6lira.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 14:46 | cliffcatalog.grov6lira.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 14:46 | ks3fup.grov6lira.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 14:46 | ijfitce.dis9ualescapes.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 14:33 | clos-aut.dis9ualescapes.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 14:28 | serven8on.dis9ualescapes.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 14:22 | d90aaos.dis9ualescapes.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 14:19 | routeligh.decommiss-mint.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 14:19 | moralcinema.verdi7rax.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 14:19 | 5il3nt4-mesh.verdi7rax.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 14:19 | jqh9drh.verdi7rax.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 14:19 | mermesh0ar.verdi7rax.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 14:19 | tallithar9.verdi7rax.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 14:19 | labelnotifier.flen3qor.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 14:19 | neuronmeado.flen3qor.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 14:19 | velcore8en.decommiss-mint.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 14:19 | https://ambergrid.top/private/acl-schema.js | SmartApeSG | SmartApeSG | monitorsg |
| 2026-04-30 14:19 | ambergrid.top | SmartApeSG | SmartApeSG | monitorsg |
| 2026-04-30 14:19 | https://ambergrid.top/private/oauth-thread.php | SmartApeSG | SmartApeSG | monitorsg |
| 2026-04-30 14:19 | https://ambergrid.top/private/role-partial.js | SmartApeSG | SmartApeSG | monitorsg |
| 2026-04-30 14:19 | courierree.flen3qor.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 14:19 | gkrhs.dis9ualescapes.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 14:19 | vorlith6um.flen3qor.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 14:17 | meta-fr0z.dis9ualescapes.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 14:15 | api.drazyland.us | Unknown malware | | abuse_ch |
| 2026-04-30 14:15 | remote.drazyland.us | Unknown malware | | abuse_ch |
| 2026-04-30 14:15 | http://drazyland.us/api/clients/update-system | Unknown malware | | abuse_ch |
| 2026-04-30 14:15 | https://tophealth.es/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-04-30 14:15 | drazyland.us | Unknown malware | | abuse_ch |
| 2026-04-30 14:15 | https://genuinelink.net/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-04-30 14:15 | http://drazyland.us/api/clients/register | Unknown malware | | abuse_ch |
| 2026-04-30 14:11 | 176.10.125.15:8443 | Unknown malware | | abuse_ch |
| 2026-04-30 14:11 | centralcoretech.com | Unknown malware | | abuse_ch |
| 2026-04-30 14:11 | https://tee.ambil-disini.web.id/ | Vidar | lv80gzr Vidar | abuse_ch |
| 2026-04-30 14:11 | tee.ambil-disini.web.id | Vidar | lv80gzr Vidar | abuse_ch |
| 2026-04-30 14:11 | tee.plugazapp.com.br | Vidar | lv80gzr Vidar | abuse_ch |
| 2026-04-30 14:11 | https://tee.plugazapp.com.br/ | Vidar | lv80gzr Vidar | abuse_ch |
| 2026-04-30 14:02 | 154.218.3.146:8853 | ValleyRAT | RAT ValleyRAT | abuse_ch |
| 2026-04-30 14:02 | 154.218.3.146:7070 | ValleyRAT | RAT ValleyRAT | abuse_ch |
| 2026-04-30 14:02 | yu3dc.com | ValleyRAT | RAT ValleyRAT | abuse_ch |
| 2026-04-30 13:59 | ivoryencoder.decommiss-mint.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 13:51 | fa1th3-wave.decommiss-mint.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 13:43 | 8ugxvfg.decommiss-mint.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 13:37 | repocra.decommiss-mint.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 13:35 | 158.160.75.185:40675 | RatonRAT | RatonRAT | abuse_ch |
| 2026-04-30 13:30 | 172.67.135.218:443 | Nanocore RAT | NanoCore RAT | abuse_ch |
| 2026-04-30 13:30 | 104.21.26.101:443 | Nanocore RAT | NanoCore RAT | abuse_ch |
| 2026-04-30 13:26 | meadopacka.convinc8mission.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 13:22 | darkdelivery.convinc8mission.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 13:20 | microsummit.sali8mor.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 13:20 | https://lucidanchor.top/private/oauth-thread.php | SmartApeSG | SmartApeSG | monitorsg |
| 2026-04-30 13:20 | lucidanchor.top | SmartApeSG | SmartApeSG | monitorsg |
| 2026-04-30 13:20 | https://lucidanchor.top/private/role-partial.js | SmartApeSG | SmartApeSG | monitorsg |
| 2026-04-30 13:20 | http://172.96.137.141 | SmartApeSG | SmartApeSG | monitorsg |
| 2026-04-30 13:20 | http://104.36.229.33 | SmartApeSG | SmartApeSG | monitorsg |
| 2026-04-30 13:20 | https://getprismledger.com/pop | SmartApeSG | SmartApeSG | monitorsg |
| 2026-04-30 13:20 | getprismledger.com | SmartApeSG | SmartApeSG | monitorsg |
| 2026-04-30 13:20 | innerazur.sali8mor.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 13:20 | opticdrive.sali8mor.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 13:17 | ui5cn.convinc8mission.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 13:15 | https://thynkia.net/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-04-30 13:11 | 781q.convinc8mission.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 13:05 | kqhgw.convinc8mission.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 13:00 | quorcore1ix.thora5ven.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 13:00 | meta-0bse.thora5ven.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 13:00 | vwpsn3.thora5ven.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 13:00 | st1t7-trace.convinc8mission.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 12:55 | 8.145.41.135:808 | Cobalt Strike | CobaltStrike cs-watermark-391144938 | abuse_ch |
| 2026-04-30 12:55 | 47.82.234.15:80 | Cobalt Strike | CobaltStrike cs-watermark-987654321 | abuse_ch |
| 2026-04-30 12:55 | 101.43.29.69:80 | Cobalt Strike | CobaltStrike cs-watermark-666666666 | abuse_ch |
| 2026-04-30 12:55 | 47.111.1.176:8888 | Cobalt Strike | CobaltStrike cs-watermark-987654321 | abuse_ch |
| 2026-04-30 12:54 | kelvenet8.dark-salittle.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 12:46 | toj4.dark-salittle.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 12:40 | zzpy.dark-salittle.bet | ClearFake | ClearFake | threatcat_ch |
| 2026-04-30 12:33 | 3yd5.dark-salittle.bet | ClearFake | ClearFake | Anonymous |
| 2026-04-30 12:31 | fire7siteview.fluxunitzone.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | sdfnet.stardrift.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | gate.novapath.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | cipher-meado.vexa7lorn.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | 55da.furrow-praise.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | ix9n.vexa7lorn.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | k29f.vexa7lorn.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | zenmarkos.vexa7lorn.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | lum-forgeen.furrow-praise.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | soci-vector.vexa7lorn.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | kel-coreex.furrow-praise.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | qba10o.mira4then.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | vorcrestal9.furrow-praise.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | foxultra.mira4then.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | ultra-d1scov.mira4then.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | wild-broo.mira4then.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | softpayload.retellin8tolle.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | 04cfyd.zori9vax.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | pipelinetempo.zori9vax.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | cz34e.zori9vax.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | quordraar.zori9vax.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | packfall.nelo2qir.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | index-dock.coraprimat0sis.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | proto-outl3.nelo2qir.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | hyper-ve1ve.nelo2qir.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | cedartone.nelo2qir.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | chan5-trail.nelo2qir.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | notifie-plate.thora5ven.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:31 | 185.102.115.84:443 | Unknown malware | chacha20-poly1305 kb_botnet max_panel socket.io | Lenny_3BO |
| 2026-04-30 12:31 | 86420c8dfedcacad48c8b4c2cb89a1f68a3e59002d396d36b955d7531aa9b6fc | Unknown malware | chacha20-poly1305 kb_botnet socket.io x25519 | Lenny_3BO |
| 2026-04-30 12:31 | site4siteview.novapath.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | step1taskhub.vectorpathsys.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | long3siteview.stardrift.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | gate5logicway.novapath.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | openmeshsite.novapath.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | new7taskhub.novapath.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | hostunitgate.novapath.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | path2pathgate.novapath.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | dash9pathgate.stardrift.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | abc.ilptour.com | ValleyRAT | | johannes |
| 2026-04-30 12:30 | abc.petitechanson.com | ValleyRAT | | johannes |
| 2026-04-30 12:30 | abc.doublemobile.com | ValleyRAT | | johannes |
| 2026-04-30 12:30 | mcagov.cc | ValleyRAT | | johannes |
| 2026-04-30 12:30 | roldco.com | ValleyRAT | | johannes |
| 2026-04-30 12:30 | vnc.kcii2.com | ValleyRAT | | johannes |
| 2026-04-30 12:30 | abc.woopami.com | ValleyRAT | | johannes |
| 2026-04-30 12:30 | abc.3mkorealtd.com | ValleyRAT | | johannes |
| 2026-04-30 12:30 | abc.sudsmama.com | ValleyRAT | | johannes |
| 2026-04-30 12:30 | ec2-18-208-244-120.compute-1.amazonaws.com | Unknown malware | | johannes |
| 2026-04-30 12:30 | abc.fetish-friends.com | ValleyRAT | | johannes |
| 2026-04-30 12:30 | techhostunit.astrosync.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | datameshsite.astrosync.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | byte8taskhub.astrosync.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | port4pathgate.astrosync.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | site2siteview.astrosync.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | datahostunit.matrixhostbit.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | move1logicnet.stardrift.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | flowmeshnode.stardrift.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | link3logicway.astrosync.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | fast6taskhub.stardrift.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | restmeshnode.inertianetway.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | cold2pathgate.voidsphere.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | dark7siteview.voidsphere.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | none5taskhub.voidsphere.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-04-30 12:30 | zero9logicnet.voidsphere.bet | ClearFake | 30April2026 ClearFake Commandline Windows | Gi7w0rm |