| 2026-05-05 17:37 | ftpsrv.torex6lin.surf | ClearFake | ClearFake |  threatcat_ch |
| 2026-05-05 17:37 | uykfqn.pavlore9.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 17:30 | libsys.torex6lin.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 17:28 | dawnsud.pavlore9.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 17:25 | jobadm.torex6lin.surf | ClearFake | 5May2026 ClearFake Commandline Windows |  Gi7w0rm |
| 2026-05-05 17:22 | trendinspect.pavlore9.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 17:20 | rawdat.torex6lin.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 17:17 | ceoally.com | IClickFix | |  GeNer8 |
| 2026-05-05 17:17 | https://silentmatrix.top/proxy/logout-client.php | SmartApeSG | SmartApeSG |  monitorsg |
| 2026-05-05 17:17 | silentmatrix.top | SmartApeSG | SmartApeSG | monitorsg |
| 2026-05-05 17:17 | https://silentmatrix.top/proxy/acl-pipeline.js | SmartApeSG | SmartApeSG | monitorsg |
| 2026-05-05 17:17 | images.tippytoespreschoolva.com | FAKEUPDATES | SocGholish | monitorsg |
| 2026-05-05 17:17 | http://5.252.177.67/bb7f17919d0a4d0aaf22.php | Stealc | c2 Loader Stealc stealer win20 |  Bitsight |
| 2026-05-05 17:17 | 95.214.55.177:2525 | Rhadamanthys | | GeNer8 |
| 2026-05-05 17:17 | http://45.131.214.189/6a4133a676c340b0b27b.php | Stealc | 1803 c2 Loader Stealc stealer | Bitsight |
| 2026-05-05 17:17 | modedapk.net | Lumma Stealer | | GeNer8 |
| 2026-05-05 17:17 | 205.196.123.189:443 | Lumma Stealer | | GeNer8 |
| 2026-05-05 17:17 | https://bobik.cfd/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-05 17:17 | http://dvxfigqyzgd.com/d | KongTuke | | Lenny_3BO |
| 2026-05-05 17:17 | 0a73595b5c7efcefe1e82174a3492aa903f4760d6c3202cb93e960a9b9cc9fc8 | KongTuke | | Lenny_3BO |
| 2026-05-05 17:17 | 28c86021ad35cc4e42684376314fe52aa02a5c2776c3a79abcc83a896295967e | KongTuke | | Lenny_3BO |
| 2026-05-05 17:17 | 16cfe58eab4573ff575c563839e65474da5569247d55fbb59fd56f2684cec610 | SmartApeSG | ClickFix SmartApeSG | Lenny_3BO |
| 2026-05-05 17:17 | 8e1ed8998519001d4f4af8e1fe9381950cf9c2501ca1b25c414712d29966aee6 | SmartApeSG | ClickFix SmartApeSG | Lenny_3BO |
| 2026-05-05 17:17 | 97f3bdf6db1c274da0e5e653ef59f49514f6d7ed531138f487912d1f9a8fac1c | SmartApeSG | ClickFix SmartApeSG | Lenny_3BO |
| 2026-05-05 17:17 | 144.208.127.215:443 | SmartApeSG | ClickFix SmartApeSG | Lenny_3BO |
| 2026-05-05 17:17 | 144.208.127.163:443 | SmartApeSG | ClickFix SmartApeSG | Lenny_3BO |
| 2026-05-05 17:17 | iontrai.pavlore9.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 17:15 | https://impress.com.pk/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 17:15 | https://jggoldstein.org/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 17:15 | https://notesyndication.com/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 17:15 | https://touraine-impression.fr/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 17:15 | https://beamriverenergy.org/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 17:11 | zipark.torex6lin.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 17:11 | couri-shall.pavlore9.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 17:05 | 4dapt3-node.pavlore9.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 17:05 | osbase.3zavlore.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 16:58 | prof9-point.xamir2el.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 16:54 | metalt.3zavlore.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 16:50 | port-mar.xamir2el.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 16:41 | apidoc.3zavlore.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 16:39 | dyn-lithos.xamir2el.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 16:36 | dbinst.3zavlore.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 16:33 | mxqbq.xamir2el.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 16:27 | skyvpn.3zavlore.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 16:27 | salemacro.xamir2el.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 16:15 | https://randyhood.com/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 16:15 | https://maranathapartyrentals.com/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 16:15 | https://napoleon-burt.client-demo-websites.com/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 16:15 | https://queenslandcaravansales.com.au/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 16:15 | https://hsc-agritechvn.com/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 16:15 | https://junayaid.previewmysite.online/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 16:15 | https://gil.org.il/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 16:15 | https://ada.yaron.work/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 16:15 | https://all4fun.gr/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 16:15 | https://eshelinfo.org.il/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 16:15 | https://geutdinbok.se/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 16:15 | https://refinishfirst.net/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 16:11 | cmdset.3zavlore.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 16:11 | gladefirm.xamir2el.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 16:06 | tmpdir.qeni8ral.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 16:05 | alt-b1oo.xamir2el.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 15:58 | n3ur4-route.torex5lin.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 15:53 | sshbin.qeni8ral.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 15:52 | lyiqe.torex5lin.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 15:47 | sslkey.qeni8ral.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 15:46 | 5parr-forge.torex5lin.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 15:42 | getcfg.qeni8ral.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 15:41 | stacksurvey.torex5lin.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 15:36 | ipnode.qeni8ral.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-05 15:32 | grandprocess.torex5lin.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 15:30 | hotfix.qeni8ral.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 15:26 | oczl.torex5lin.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 15:25 | bit-fox.mav2terol.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 15:21 | sprucevale.torex5lin.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 15:18 | top-svc.mav2terol.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 15:15 | svvif8-sheet.2zavlore.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 15:15 | https://pal-show.com/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 15:15 | https://bursanehirteknik.com/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 15:12 | ops-mgr.mav2terol.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 15:09 | vk9sjiuh.2zavlore.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 15:06 | cpu-pro.mav2terol.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 15:03 | open-lat.2zavlore.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 15:00 | https://cra.hidayahnetwork.com/ | Vidar | Vidar |  crep1x |
| 2026-05-05 15:00 | cra.smtpdenz.my.id | Vidar | Vidar | crep1x |
| 2026-05-05 15:00 | https://cra.smtpdenz.my.id/ | Vidar | Vidar | crep1x |
| 2026-05-05 15:00 | cra.hidayahnetwork.com | Vidar | Vidar | crep1x |
| 2026-05-05 14:55 | vps-run.mav2terol.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 14:52 | wvdaavfk.2zavlore.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 14:45 | dns-web.mav2terol.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 14:44 | hvkxevet.2zavlore.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 14:44 | specialclouds.com | Cobalt Strike | CobaltStrike drb-ra |  abuse_ch |
| 2026-05-05 14:44 | specialclouds.top | Cobalt Strike | CobaltStrike drb-ra | abuse_ch |
| 2026-05-05 14:37 | appbox.5lorexin.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 14:36 | mi5t-cache.2zavlore.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-05 14:32 | devbit.5lorexin.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-05 14:30 | 9thvfl.2zavlore.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 14:25 | 83.142.209.150:1602 | XWorm | XWorm | abuse_ch |
| 2026-05-05 14:23 | srvlog.5lorexin.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 14:23 | formreba.qeniral8.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 14:17 | dh4vdz12.doha-neutral.digital | ClearFake | ClearFake | Anonymous |
| 2026-05-05 14:16 | 9glrbavr.doha-neutral.digital | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 14:16 | doha-neutral.digital | ClearFake | 5May2026 ClearFake Commandline macOS | Gi7w0rm |
| 2026-05-05 14:15 | netapi.5lorexin.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 14:14 | 7m5mdmsm.qeniral8.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 14:09 | webcdn.5lorexin.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 14:09 | lum-cresta.qeniral8.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 14:06 | spectrumfloors.com | IClickFix | | GeNer8 |
| 2026-05-05 14:03 | srvhub.5lorexin.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 14:02 | sbg86o.qeniral8.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 13:59 | srvlog.devrunbox.5lorexin.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 13:58 | http://213.165.47.49/480bee37986b4097bc20.php | Stealc | c2 Loader Stealc stealer test | Bitsight |
| 2026-05-05 13:58 | 170.130.165.237:443 | Unknown malware | ClickFix fingerfix | Lenny_3BO |
| 2026-05-05 13:58 | candipoker.net | Unknown malware | ClickFix fingerfix | Lenny_3BO |
| 2026-05-05 13:58 | 38.55.75.235:443 | Unknown malware | ClickFix fingerfix pivot | Lenny_3BO |
| 2026-05-05 13:58 | opilph.cfd | Unknown malware | ClickFix fingerfix pivot | Lenny_3BO |
| 2026-05-05 13:58 | oviewram.top | Unknown malware | ClickFix fingerfix pivot | Lenny_3BO |
| 2026-05-05 13:58 | lsomebkac.top | Unknown malware | ClickFix fingerfix pivot | Lenny_3BO |
| 2026-05-05 13:58 | xvdocfiles.top | Unknown malware | ClickFix fingerfix pivot | Lenny_3BO |
| 2026-05-05 13:58 | d06990f1363135f4d4c6f3de65d6638e2874d509be6f32978ab306305a4818b2 | Unknown malware | ClickFix fingerfix | Lenny_3BO |
| 2026-05-05 13:58 | 96ed62bf3749b5b6559e733166683e2d4ef5ad5b50b0dadb7f235707a966ebaa | Unknown malware | ClickFix fingerfix | Lenny_3BO |
| 2026-05-05 13:58 | http://89.46.38.100/c0b30d15260a4d8888dc.php | Stealc | c2 Loader M1 Stealc stealer | Bitsight |
| 2026-05-05 13:58 | http://metalinmotion.org/ | IClickFix | | GeNer8 |
| 2026-05-05 13:57 | sampl-boo.qeniral8.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 13:53 | netapi.cloudlinkbox.5lorexin.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 13:51 | kfshh.qeniral8.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-05 13:48 | bobik.cfd | Unknown malware | ClickFix | threatcat_ch |
| 2026-05-05 13:45 | rnoon-panel.qeniral8.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 13:45 | webcdn.bitopsmgr.5lorexin.surf | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 13:37 | srvhub.netflowsys.5lorexin.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 13:37 | balance4-array.mav3torel.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 13:35 | 192.159.99.39:443 | Unknown RAT | ConnectWise rmm ScreenConnect | abuse_ch |
| 2026-05-05 13:31 | gitlab.primevortexbox.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 13:31 | ot2k.mav3torel.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-05 13:26 | apiops.primevortexbox.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 13:26 | muhwtwa.mav3torel.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 13:22 | http://178.16.55.25/39d9612df78e45b5a4bb.php | Stealc | c2 FFF0405 Loader Stealc stealer | Bitsight |
| 2026-05-05 13:20 | logbin.primevortexbox.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 13:17 | ovjcwn.mav3torel.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-05 13:12 | https://blueharborlab.top/proxy/logout-client.php | SmartApeSG | SmartApeSG | monitorsg |
| 2026-05-05 13:12 | blueharborlab.top | SmartApeSG | SmartApeSG | monitorsg |
| 2026-05-05 13:12 | https://blueharborlab.top/proxy/acl-pipeline.js | SmartApeSG | SmartApeSG | monitorsg |
| 2026-05-05 13:12 | http://144.208.127.163 | SmartApeSG | SmartApeSG | monitorsg |
| 2026-05-05 13:12 | http://144.208.127.215 | SmartApeSG | SmartApeSG | monitorsg |
| 2026-05-05 13:12 | https://openvectorstudio.com/psg | SmartApeSG | SmartApeSG | monitorsg |
| 2026-05-05 13:12 | openvectorstudio.com | SmartApeSG | SmartApeSG | monitorsg |
| 2026-05-05 13:12 | http://217.119.129.37/2a7400fe251b4b4687fe.php | Stealc | 2 c2 Loader Stealc stealer | Bitsight |
| 2026-05-05 13:12 | https://candipoker.net/ebd417db-979c-51f8-aedf-88a2bf8aa6c3/v1 | Unknown malware | ClickFix fingerfix | Lenny_3BO |
| 2026-05-05 13:12 | http://linkedwith.org/leyts.php?Npier=1 | Unknown malware | ClickFix fingerfix | Lenny_3BO |
| 2026-05-05 13:12 | https://candipoker.net/ebd417db-979c-51f8-aedf-88a2bf8aa6c3/t1 | Unknown malware | ClickFix fingerfix | Lenny_3BO |
| 2026-05-05 13:12 | 138.197.30.251:443 | Unknown malware | ClickFix fingerfix | Lenny_3BO |
| 2026-05-05 13:12 | linkedwith.org | Unknown malware | ClickFix fingerfix | Lenny_3BO |
| 2026-05-05 13:12 | finger.linkedwith.org | Unknown malware | ClickFix fingerfix | Lenny_3BO |
| 2026-05-05 13:08 | appsrc.primevortexbox.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 13:08 | r3ba-field.mav3torel.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 13:07 | http://94.156.155.42/ba4b1981c6311c6e6f1a.php | Stealc | c2 install Loader Stealc stealer | Bitsight |
| 2026-05-05 13:03 | nimblecoral.mav3torel.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 13:03 | webdoc.primevortexbox.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 12:59 | http://2.26.123.18/0f1da281ab93408e9369.php | Stealc | c2 Stealc |  burger |
| 2026-05-05 12:59 | 195.178.110.64:9090 | NightshadeC2 | NightshadeC2 |  BlinkzSec |
| 2026-05-05 12:59 | env-check.daemontools.cc | Unknown malware | DAEMON HoneyMyte |  johannes |
| 2026-05-05 12:59 | http://196.251.107.130/16b022998f754137b60a.php | Stealc | c2 Loader RUN Stealc stealer | Bitsight |
| 2026-05-05 12:59 | http://79.124.59.142/cl-ncl-following | HijackLoader | HijackLoader infostealer renengine SectopRAT | Anonymous |
| 2026-05-05 12:59 | http://79.124.59.142/cl-ncl-finalize | HijackLoader | HijackLoader infostealer renengine SectopRAT | Anonymous |
| 2026-05-05 12:59 | 2.26.123.18:80 | Stealc | c2 cheremshav1 Loader Stealc stealer | Bitsight |
| 2026-05-05 12:59 | http://88.216.70.128/9ed99f6a70c04c80860b.php | Stealc | c2 Loader Stealc stealer vhs87vs | Bitsight |
| 2026-05-05 12:59 | http://213.165.47.174/0cddd9346bd3479aab11.php | Stealc | c2 Loader Steal Stealc stealer | Bitsight |
| 2026-05-05 12:59 | http://213.176.72.215/2a7400fe251b4b4687fe.php | Stealc | build5 c2 Loader Stealc stealer | Bitsight |
| 2026-05-05 12:59 | http://89.169.12.194/2a7400fe251b4b4687fe.php | Stealc | b3 c2 Loader Stealc stealer | Bitsight |
| 2026-05-05 12:59 | http://178.16.55.72/2d3c04d39c634992b70b.php | Stealc | c2 Loader sdsdsdsd Stealc stealer | Bitsight |
| 2026-05-05 12:59 | http://193.111.117.51/94a5dbd165044e85b88e.php | Stealc | c2 Loader neverhigh Stealc stealer | Bitsight |
| 2026-05-05 12:55 | ehtpff9z.mav3torel.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 12:52 | syskey.primevortexbox.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 12:50 | cor38-loop.7lorexan.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 12:44 | faithfulresolver.7lorexan.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-05 12:42 | netman.ultradatastack.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 12:38 | anchocav.7lorexan.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 12:37 | tcpcon.ultradatastack.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 12:32 | wagonsummi.7lorexan.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 12:27 | sshpro.ultradatastack.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 12:27 | flovv-zone.7lorexan.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 12:18 | vmlist.ultradatastack.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 12:18 | casuashor.7lorexan.surf | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 12:11 | gcaeobl.7lorexan.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-05 12:07 | usrgrp.ultradatastack.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 12:02 | optweb.ultradatastack.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 11:59 | extnet.quantummetadatabox.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 11:55 | proxys.masterpowerweb.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 11:53 | pwrlog.quantummetadatabox.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 11:48 | lanhop.masterpowerweb.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 11:48 | domreg.quantummetadatabox.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 11:36 | subcli.masterpowerweb.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 11:34 | autbox.vertexpointlinknet.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 11:30 | sao.hidayahnetwork.com | Vidar | Vidar | crep1x |
| 2026-05-05 11:30 | https://sao.hidayahnetwork.com/ | Vidar | Vidar | crep1x |
| 2026-05-05 11:25 | bitkit.masterpowerweb.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 11:25 | refid.vertexpointlinknet.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 11:20 | cec.co.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-05 11:17 | envset.masterpowerweb.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 11:16 | comweb.vertexpointlinknet.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 11:16 | 185.53.179.137:8080 | Quasar RAT | quasar | abuse_ch |
| 2026-05-05 11:16 | 172.67.192.26:64 | Quasar RAT | quasar | abuse_ch |
| 2026-05-05 11:16 | 104.21.89.241:64 | Quasar RAT | quasar | abuse_ch |
| 2026-05-05 11:11 | doclab.masterpowerweb.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 11:11 | taskid.vertexpointlinknet.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 11:05 | ioflow.vertexpointlinknet.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 11:05 | syncit.vertexshifthub.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 11:00 | https://sao.sleepinggiantmedia.co.uk/ | Vidar | Vidar | crep1x |
| 2026-05-05 11:00 | sao.smtpdenz.my.id | Vidar | Vidar | crep1x |
| 2026-05-05 11:00 | https://sao.smtpdenz.my.id/ | Vidar | Vidar | crep1x |
| 2026-05-05 11:00 | sao.sleepinggiantmedia.co.uk | Vidar | Vidar | crep1x |
| 2026-05-05 10:59 | ioflow.vertexshifthub.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 10:57 | syncit.vertexpointlinknet.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 10:54 | 6eaba5c0ec1c0e536d8f9701e31d46922a178c7805dcb54270f3740d0fddb81c | ReverseRAT | malware powershell Windows |  Bubblegum |
| 2026-05-05 10:54 | 137.220.219.244:80 | ERMAC | ERMAC | BlinkzSec |
| 2026-05-05 10:54 | luvioros.site | Unknown malware | | burger |
| 2026-05-05 10:54 | bebra-dev.com | Unknown malware | | burger |
| 2026-05-05 10:51 | taskid.vertexshifthub.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 10:51 | doclab.masterhypernodehub.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 10:47 | 5.180.82.239:2404 | Remcos | drb-ra RAT RemcosRAT | abuse_ch |
| 2026-05-05 10:47 | 5.101.86.97:6913 | Remcos | drb-ra RAT RemcosRAT | abuse_ch |
| 2026-05-05 10:47 | 5.101.82.99:6031 | Remcos | drb-ra RAT RemcosRAT | abuse_ch |
| 2026-05-05 10:47 | 5.101.86.11:2428 | Remcos | drb-ra RAT RemcosRAT | abuse_ch |
| 2026-05-05 10:47 | 5.101.82.227:9521 | Remcos | drb-ra RAT RemcosRAT | abuse_ch |
| 2026-05-05 10:47 | 46.151.182.33:9545 | Remcos | drb-ra RAT RemcosRAT | abuse_ch |
| 2026-05-05 10:45 | comweb.vertexshifthub.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 10:44 | envset.masterhypernodehub.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 10:43 | 135.136.148.120:2003 | Remcos | drb-ra RAT RemcosRAT | abuse_ch |
| 2026-05-05 10:43 | 130.49.214.74:62582 | Remcos | drb-ra RAT RemcosRAT | abuse_ch |
| 2026-05-05 10:39 | refid.vertexshifthub.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 10:36 | bitkit.masterhypernodehub.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 10:32 | autbox.vertexshifthub.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 10:30 | subcli.masterhypernodehub.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 10:22 | domreg.quantumlinkpoint.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 10:19 | lanhop.masterhypernodehub.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 10:15 | njq.uk.com | Nanocore RAT | NanoCore | abuse_ch |
| 2026-05-05 10:15 | 158.160.75.185:40690 | RatonRAT | RatonRAT | abuse_ch |
| 2026-05-05 10:11 | pwrlog.quantumlinkpoint.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 10:11 | proxys.masterhypernodehub.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 10:10 | 172.67.201.60:443 | Nanocore RAT | NanoCore RAT | abuse_ch |
| 2026-05-05 10:10 | 104.21.82.113:443 | Nanocore RAT | NanoCore RAT | abuse_ch |
| 2026-05-05 10:05 | extnet.quantumlinkpoint.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 10:05 | optweb.ultratechstackweb.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 10:01 | api-download.us | Unknown malware | | threatcat_ch |
| 2026-05-05 09:59 | pkgrun.quantumlinkpoint.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 09:59 | usrgrp.ultratechstackweb.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 09:54 | modbus.quantumlinkpoint.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 09:53 | vmlist.ultratechstackweb.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 09:48 | srcget.quantumlinkpoint.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 09:48 | sshpro.ultratechstackweb.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 09:42 | uidmap.infinitydatagrid.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 09:41 | tcpcon.ultratechstackweb.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 09:34 | ftpsrv.infinitydatagrid.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 09:34 | netman.ultratechstackweb.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 09:24 | libsys.infinitydatagrid.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 09:23 | syskey.primevortextechbox.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 09:18 | jobadm.infinitydatagrid.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 09:17 | webdoc.primevortextechbox.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 09:12 | rawdat.infinitydatagrid.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 09:11 | appsrc.primevortextechbox.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 09:05 | zipark.infinitydatagrid.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 09:05 | logbin.primevortextechbox.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 08:57 | osbase.cyberlogicspace.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 08:54 | apiops.primevortextechbox.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 08:52 | metalt.cyberlogicspace.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 08:49 | gitlab.primevortextechbox.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 08:47 | apidoc.cyberlogicspace.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 08:46 | pkgrun.quantummetadatabox.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 08:45 | 8.211.130.16:443 | Cobalt Strike | CobaltStrike drb-ra | abuse_ch |
| 2026-05-05 08:44 | 172.245.156.179:18443 | Cobalt Strike | CobaltStrike drb-ra | abuse_ch |
| 2026-05-05 08:44 | webshareclouds.com | Cobalt Strike | CobaltStrike drb-ra | abuse_ch |
| 2026-05-05 08:44 | perfectgo.top | Cobalt Strike | CobaltStrike drb-ra | abuse_ch |
| 2026-05-05 08:43 | 209.99.187.44:2404 | Remcos | drb-ra RAT RemcosRAT | abuse_ch |
| 2026-05-05 08:43 | 136.244.67.94:7707 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-05 08:41 | dbinst.cyberlogicspace.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 08:41 | modbus.quantummetadatabox.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 08:34 | skyvpn.cyberlogicspace.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 08:34 | srcget.quantummetadatabox.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 08:29 | cmdset.cyberlogicspace.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 08:28 | uidmap.cryptoshiftgridsys.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 08:22 | tmpdir.securestreamnode.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 08:22 | ftpsrv.cryptoshiftgridsys.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 08:16 | sshbin.securestreamnode.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 08:16 | libsys.cryptoshiftgridsys.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 08:15 | 47.84.32.184:8888 | ValleyRAT | valleyrat_s2 | abuse_ch |
| 2026-05-05 08:15 | sadd.io | Nanocore RAT | NanoCore | abuse_ch |
| 2026-05-05 08:15 | https://paradisejets.com/ | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | Anonymous |
| 2026-05-05 08:10 | 47.84.32.184:6666 | ValleyRAT | RAT ValleyRAT | abuse_ch |
| 2026-05-05 08:10 | 193.161.193.99:30645 | Quasar RAT | QuasarRAT RAT | abuse_ch |
| 2026-05-05 08:10 | 62.164.177.227:443 | NetSupportManager RAT | NetSupport | abuse_ch |
| 2026-05-05 08:10 | http://bugmenot.site/bPwsAq2/ndex.php | Amadey | Amadey | abuse_ch |
| 2026-05-05 08:10 | http://arbitrarycode.site/bPwsAq2/ndex.php | Amadey | Amadey | abuse_ch |
| 2026-05-05 08:10 | http://adminstatus.site/bPwsAq2/ndex.php | Amadey | Amadey | abuse_ch |
| 2026-05-05 08:10 | 104.21.18.225:443 | Nanocore RAT | NanoCore RAT | abuse_ch |
| 2026-05-05 08:10 | 172.67.183.218:443 | Nanocore RAT | NanoCore RAT | abuse_ch |
| 2026-05-05 08:10 | 76.13.208.153:443 | Nanocore RAT | NanoCore RAT | abuse_ch |
| 2026-05-05 08:07 | sslkey.securestreamnode.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 08:07 | jobadm.cryptoshiftgridsys.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 07:59 | https://saviouronline.in | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:59 | saviouronline.in | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:59 | getcfg.securestreamnode.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 07:58 | https://atoposs.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:58 | rawdat.cryptoshiftgridsys.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 07:58 | atoposs.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:58 | roostersden.org | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:57 | https://roostersden.org | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:57 | https://rmcider.net | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:57 | rmcider.net | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:54 | https://indonesia-recipe.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:54 | indonesia-recipe.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:53 | https://provoseoproshub.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:53 | provoseoproshub.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:53 | https://provomarketingpros.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:52 | provomarketingpros.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:52 | https://provomarketigseo.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:51 | provomarketigseo.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:51 | zipark.cryptoshiftgridsys.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 07:51 | https://profreedownload.xyz | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:51 | profreedownload.xyz | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:51 | ipnode.securestreamnode.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 07:46 | osbase.logicflowspacehub.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 07:44 | https://pistol178.info | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:44 | pistol178.info | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:42 | https://pacificdredging.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:42 | pacificdredging.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:41 | https://othila.eu/ | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:41 | hotfix.securestreamnode.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 07:40 | othila.eu | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:40 | https://precommit.vercel.app/settings/mac?flag=5 | Unknown malware | BeaverTail InvisibleFerret Lazarus | johannes |
| 2026-05-05 07:40 | https://precommit.vercel.app/settings/linux?flag=5 | Unknown malware | BeaverTail InvisibleFerret Lazarus | johannes |
| 2026-05-05 07:40 | https://precommit.vercel.app/settings/windows?flag=5 | Unknown malware | BeaverTail InvisibleFerret Lazarus | johannes |
| 2026-05-05 07:40 | precommit.vercel.app | Unknown malware | BeaverTail InvisibleFerret Lazarus | johannes |
| 2026-05-05 07:40 | https://optiplax.us | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:40 | optiplax.us | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:40 | metalt.logicflowspacehub.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 07:38 | nuvixapp.shop | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:38 | https://nuvixapp.shop | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:36 | nockbase.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:36 | https://nockbase.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:35 | winupd.technoglobalnet.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 07:35 | https://nexusassetbd.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:35 | apidoc.logicflowspacehub.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 07:34 | nexusassetbd.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:30 | https://dde.sleepinggiantmedia.co.uk/ | Vidar | Vidar | crep1x |
| 2026-05-05 07:30 | dde.smtpdenz.my.id | Vidar | Vidar | crep1x |
| 2026-05-05 07:30 | https://dde.smtpdenz.my.id/ | Vidar | Vidar | crep1x |
| 2026-05-05 07:30 | dde.sleepinggiantmedia.co.uk | Vidar | Vidar | crep1x |
| 2026-05-05 07:30 | https://mymoroccanhouse.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:29 | mymoroccanhouse.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:29 | topsvc.technoglobalnet.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 07:29 | https://mylivv.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:29 | mylivv.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:29 | dbinst.logicflowspacehub.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 07:28 | https://mpotiger.org | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:28 | mpotiger.org | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:27 | https://mpobeting.net | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:27 | mpobeting.net | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:26 | https://montreal5a7.ca | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:26 | montreal5a7.ca | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:26 | https://metanailcomplex.us | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:25 | metanailcomplex.us | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 07:24 | 135.181.124.117:443 | Vidar | Vidar | crep1x |
| 2026-05-05 07:24 | 135.181.124.116:443 | Vidar | Vidar | crep1x |
| 2026-05-05 07:24 | 135.181.6.115:443 | Vidar | Vidar | crep1x |
| 2026-05-05 07:24 | 135.181.124.119:443 | Vidar | Vidar | crep1x |
| 2026-05-05 07:24 | 135.181.237.59:443 | Vidar | Vidar | crep1x |
| 2026-05-05 07:24 | https://135.181.124.119/ | Vidar | Vidar | crep1x |
| 2026-05-05 07:24 | https://135.181.237.59/ | Vidar | Vidar | crep1x |
| 2026-05-05 07:24 | https://135.181.124.117/ | Vidar | Vidar | crep1x |
| 2026-05-05 07:24 | https://135.181.124.116/ | Vidar | Vidar | crep1x |
| 2026-05-05 07:24 | https://135.181.6.115/ | Vidar | Vidar | crep1x |
| 2026-05-05 07:23 | devbox.technoglobalnet.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 07:22 | skyvpn.logicflowspacehub.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 07:22 | http://193.233.113.202/api/upload-data | Unknown RAT | RemoteX | abuse_ch |
| 2026-05-05 07:22 | http://212.162.150.121/api/keylog | Unknown RAT | RemoteX | abuse_ch |
| 2026-05-05 07:22 | http://193.233.113.202/ws/client | Unknown RAT | RemoteX | abuse_ch |
| 2026-05-05 07:22 | http://193.233.113.202/api/keylog | Unknown RAT | RemoteX | abuse_ch |
| 2026-05-05 07:21 | 193.233.113.202:80 | Unknown RAT | RemoteX | abuse_ch |
| 2026-05-05 07:20 | 108.165.100.97:80 | Cobalt Strike | CobaltStrike cs-watermark-987654321 | abuse_ch |
| 2026-05-05 07:20 | 45.194.20.130:80 | Cobalt Strike | CobaltStrike cs-watermark-666666666 | abuse_ch |
| 2026-05-05 07:17 | vpsrun.technoglobalnet.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 07:17 | cmdset.logicflowspacehub.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 07:12 | dnsapi.technoglobalnet.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 07:11 | tmpdir.extremesecureline.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 07:07 | applog.technoglobalnet.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 07:05 | sshbin.extremesecureline.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 07:01 | cdnpro.digitalcloudsys.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 07:00 | sslkey.extremesecureline.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 06:59 | https://matchsfood.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:59 | matchsfood.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:58 | https://marianmrva.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:58 | marianmrva.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:56 | https://mamoot.click | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:56 | mamoot.click | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:54 | https://procrastination.com.br | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:54 | procrastination.com.br | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:53 | https://nexthost.pk | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:53 | nexthost.pk | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:53 | bitly.digitalcloudsys.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 06:52 | getcfg.extremesecureline.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 06:51 | https://detroitcollisionworks.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:50 | detroitcollisionworks.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:49 | https://moneyepeople.com.br | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:48 | moneyepeople.com.br | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:47 | http://londonoutfits.co.uk | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:47 | londonoutfits.co.uk | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:45 | sysops.digitalcloudsys.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 06:45 | ipnode.extremesecureline.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 06:44 | https://loan-bd.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:44 | loan-bd.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:42 | https://litemailrun.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:42 | litemailrun.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:41 | https://litemailrise.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:40 | litemailrise.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:39 | webcpu.digitalcloudsys.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 06:39 | https://litemailhq.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:39 | hotfix.extremesecureline.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 06:39 | litemailhq.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:36 | https://litemailai.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:36 | litemailai.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:36 | https://linkbeting.org | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:35 | linkbeting.org | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:35 | https://lifehtx.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:34 | lifehtx.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:34 | netfox.digitalcloudsys.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 06:33 | winupd.smartcloudstorageset.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 06:33 | https://latamlegalhiring.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:33 | latamlegalhiring.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:30 | 193.233.202.17:443 | Sliver | sliver | abuse_ch |
| 2026-05-05 06:29 | 176.65.139.146:9111 | Unknown malware | | abuse_ch |
| 2026-05-05 06:25 | topsvc.smartcloudstorageset.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 06:22 | srvhub.digitalcloudsys.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 06:22 | https://kucing007.xyz | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:22 | kucing007.xyz | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:21 | https://jimmyloves.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:21 | jimmyloves.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:19 | devbox.smartcloudstorageset.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 06:19 | https://jaybhavaniwoodworks.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:19 | jaybhavaniwoodworks.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:18 | https://iyrixthink.info | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:18 | 176.65.139.141:9111 | Unknown malware | | abuse_ch |
| 2026-05-05 06:18 | iyrixthink.info | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:18 | https://iyrixstack.cloud | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:17 | iyrixstack.cloud | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:17 | indosf-2.shop | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:17 | https://indosf-2.shop | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:16 | gitlab.faro7qor.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 06:16 | https://hirelatamparalegals.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:16 | hirelatamparalegals.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:15 | https://hirelatamlawyer.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:15 | hirelatamlawyer.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:15 | broadswordcallingdannyboy.com | Remus | RemusStealer | abuse_ch |
| 2026-05-05 06:15 | intranetinnova.com | Remus | RemusStealer | abuse_ch |
| 2026-05-05 06:15 | crownsquareproductions.com | Remus | RemusStealer | abuse_ch |
| 2026-05-05 06:15 | yushspray.com | Remus | RemusStealer | abuse_ch |
| 2026-05-05 06:14 | https://hirelatamlaw.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:13 | hirelatamlaw.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:13 | fightwa.biz | Remus | RemusStealer | abuse_ch |
| 2026-05-05 06:13 | chalx.live | Remus | RemusStealer | abuse_ch |
| 2026-05-05 06:13 | carpesj.surf | Remus | RemusStealer | abuse_ch |
| 2026-05-05 06:13 | 5.189.165.117:7582 | Remus | RemusStealer | abuse_ch |
| 2026-05-05 06:13 | vpsrun.smartcloudstorageset.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 06:12 | woodfez.biz | Remus | RemusStealer | abuse_ch |
| 2026-05-05 06:10 | effitechltd.com | Remus | RemusStealer | abuse_ch |
| 2026-05-05 06:09 | sunderani.com | Remus | RemusStealer | abuse_ch |
| 2026-05-05 06:09 | apiops.faro7qor.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 06:07 | dnsapi.smartcloudstorageset.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 06:06 | hanyakamu007.xyz | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:06 | https://hanyakamu007.xyz | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:05 | 62.210.127.4:48261 | Remus | RemusStealer | abuse_ch |
| 2026-05-05 06:04 | hair50.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:04 | https://hair50.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:04 | 185.198.27.174:6589 | Remus | RemusStealer | abuse_ch |
| 2026-05-05 06:04 | logbin.faro7qor.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 06:03 | growthmoneyvault.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:03 | https://growthmoneyvault.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:02 | juno-106.com | Remus | RemusStealer | abuse_ch |
| 2026-05-05 06:02 | growthmagnet.world | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:02 | https://growthmagnet.world | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:02 | applog.smartcloudstorageset.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 06:01 | https://growthmagnet.cloud | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:01 | growthmagnet.cloud | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 06:00 | https://grahammarsh.com.au | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:59 | grahammarsh.com.au | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:59 | 139.59.42.245:4219 | Remus | RemusStealer | abuse_ch |
| 2026-05-05 05:59 | https://gositeline.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:59 | rvweldedmesh.com | Remus | RemusStealer | abuse_ch |
| 2026-05-05 05:59 | gositeline.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:55 | https://gondrong007.xyz | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:55 | gondrong007.xyz | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:55 | golcapresources.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:54 | https://golcapresources.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:54 | https://globalbusinessclubs.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:54 | globalbusinessclubs.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:53 | appsrc.faro7qor.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 05:53 | cdnpro.globaldatanetworksys.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 05:53 | gitlab.thejohnnysgrill.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:53 | http://gitlab.thejohnnysgrill.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:52 | https://gemez007.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:52 | gemez007.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:51 | https://gbclubs.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:51 | gbclubs.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:50 | http://g5.honestaicloud.site/ | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:50 | g5.honestaicloud.site | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:48 | bitly.globaldatanetworksys.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 05:47 | webdoc.faro7qor.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 05:47 | https://tcwdivisorias.com.br | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:47 | tcwdivisorias.com.br | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:45 | https://officinaitalia.net | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:45 | officinaitalia.net | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:43 | https://greenroomonline.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:43 | greenroomonline.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:42 | http://fr.litemailzone.space | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:42 | fr.litemailzone.space | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:41 | https://findmykasino.com/redirect | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:40 | https://findmykasino.com/good.txt | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:40 | daylightbomb.elite | Unknown malware | drifter | abuse_ch |
| 2026-05-05 05:40 | hikvision-cctv.su | Unknown malware | drifter | abuse_ch |
| 2026-05-05 05:40 | nvms9000.su | Unknown malware | drifter | abuse_ch |
| 2026-05-05 05:40 | https://findmykasino.com/stager1.txt | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:39 | findmykasino.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:38 | https://findseniorlawyers.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:38 | findseniorlawyers.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:37 | https://findlatamlegaltalent.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:37 | findlatamlegaltalent.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:36 | https://findlatamlaw.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:36 | findlatamlaw.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:35 | dailyhomreciple.com | Unknown malware | ClickFix | abuse_ch |
| 2026-05-05 05:35 | finger.linked-on.com | Unknown malware | ClickFix | abuse_ch |
| 2026-05-05 05:35 | groceryhomrecipes.com | Unknown malware | ClickFix | abuse_ch |
| 2026-05-05 05:35 | steakhomereciple.com | Unknown malware | ClickFix | abuse_ch |
| 2026-05-05 05:35 | steakhomireciple.com | Unknown malware | ClickFix | abuse_ch |
| 2026-05-05 05:35 | https://fernandopaula.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:34 | syskey.faro7qor.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 05:34 | fernandopaula.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:34 | ai-scan.digital | Unknown malware | ClickFix | abuse_ch |
| 2026-05-05 05:34 | backgroundformat.online | Unknown malware | ClickFix | abuse_ch |
| 2026-05-05 05:34 | background-ready.online | Unknown malware | ClickFix | abuse_ch |
| 2026-05-05 05:34 | bg-go.online | Unknown malware | ClickFix | abuse_ch |
| 2026-05-05 05:34 | bg-ready.online | Unknown malware | ClickFix | abuse_ch |
| 2026-05-05 05:34 | bg-removerok.online | Unknown malware | ClickFix | abuse_ch |
| 2026-05-05 05:34 | bg-transparency.online | Unknown malware | ClickFix | abuse_ch |
| 2026-05-05 05:34 | pdfworker.online | Unknown malware | ClickFix | abuse_ch |
| 2026-05-05 05:34 | pdf-work.online | Unknown malware | ClickFix | abuse_ch |
| 2026-05-05 05:34 | pqrnews.com | Unknown malware | ClickFix | abuse_ch |
| 2026-05-05 05:34 | ai-detect.online | Unknown malware | ClickFix | abuse_ch |
| 2026-05-05 05:34 | https://felixcam.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:34 | sysops.globaldatanetworksys.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 05:33 | felixcam.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:32 | https://microchlen.lat/log.php | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-05-05 05:32 | sitesupport.vip | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | store-content.net | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | stores-content.com | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | usps-trackin.us | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | west-report.com | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | jqueryuslibs.com | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | jqueurystatic.xyz | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | lgstd.net | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | lgstd.ws | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | logstash.in | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | logstorage.in | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | mxlclinfo.com | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | nexorxwa.com | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | onelitteday.com | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | ppheaimondon.store | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | prosoucediesel.com | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | qetbootstrap.com | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | redfromscalamandre.info | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | restratmed.com | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | siteanallizations.com | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | siteimproveanalytic.net | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | sitesocket.store | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | api-statics.com | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | astryxrix.com | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | beuatyplussalon.com | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | bootstrapcda.com | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | bootstrapcmd.com | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | bootstrapgui.com | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | deliastamaels.com | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | ebatkopat.click | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | esicm.biz | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | fontspace.us | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | https://microchlen.lat/api/index.php | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-05-05 05:32 | frontstatics.com | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | hexaqon-analytics.com | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | jonnienesimy.online | Unknown malware | Websocket | abuse_ch |
| 2026-05-05 05:32 | https://microchlen.lat/cf.js | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-05-05 05:31 | microchlen.lat | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-05-05 05:30 | 588gjas2aaxx.shop | Unknown malware | AdamantLocker ClickFix PureClaw | abuse_ch |
| 2026-05-05 05:30 | 588gjas2vax.shop | Unknown malware | AdamantLocker ClickFix PureClaw | abuse_ch |
| 2026-05-05 05:30 | 588gjasaaxax.shop | Unknown malware | AdamantLocker ClickFix PureClaw | abuse_ch |
| 2026-05-05 05:30 | 588gjasayux.shop | Unknown malware | AdamantLocker ClickFix PureClaw | abuse_ch |
| 2026-05-05 05:30 | 588gjjg2k.shop | Unknown malware | AdamantLocker ClickFix PureClaw | abuse_ch |
| 2026-05-05 05:30 | 588gjaoytnjax.shop | Unknown malware | AdamantLocker ClickFix PureClaw | abuse_ch |
| 2026-05-05 05:30 | 588gjakt3uax.shop | Unknown malware | AdamantLocker ClickFix PureClaw | abuse_ch |
| 2026-05-05 05:29 | https://en-us-plantsulin.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:29 | en-us-plantsulin.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:29 | netman.xena4vax.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 05:28 | https://en-us-herpafend.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:28 | webcpu.globaldatanetworksys.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 05:28 | en-us-herpafend.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:27 | https://electronicartmetal.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:27 | electronicartmetal.com | Unknown malware | ClickFix | HuntYethHounds |
| 2026-05-05 05:26 | netfox.globaldatanetworksys.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 05:22 | tcpcon.xena4vax.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 05:14 | sshpro.xena4vax.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 05:13 | srvhub.globaldatanetworksys.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 05:10 | 193.202.85.44:443 | Unknown malware | ClickFix msiexec sideload | Lenny_3BO |
| 2026-05-05 05:10 | 193.202.84.17:443 | Unknown malware | ClickFix msiexec sideload | Lenny_3BO |
| 2026-05-05 05:10 | 193.202.84.71:443 | Unknown malware | ClickFix msiexec sideload | Lenny_3BO |
| 2026-05-05 05:10 | 193.182.145.89:443 | Unknown malware | ClickFix msiexec sideload | Lenny_3BO |
| 2026-05-05 05:10 | 91.132.92.151:443 | Unknown malware | ClickFix msiexec sideload | Lenny_3BO |
| 2026-05-05 05:10 | 194.14.217.221:443 | Unknown malware | ClickFix msiexec sideload | Lenny_3BO |
| 2026-05-05 05:10 | msxns.us.com | Unknown malware | ClickFix msiexec sideload | Lenny_3BO |
| 2026-05-05 05:10 | 5bddefae5d5402344cb9e2f5ca88d6933678f1e127cea63ff4866e1ff2d08025 | Unknown malware | ClickFix msiexec sideload | Lenny_3BO |
| 2026-05-05 05:10 | 172.235.175.148:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-05 05:10 | 172.235.175.210:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-05 05:10 | 172.235.175.221:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-05 05:10 | 172.233.53.249:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-05 05:10 | 172.235.175.171:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-05 05:10 | 172.235.175.220:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-05 05:10 | 172.235.175.176:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-05 05:10 | 172.235.160.79:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-05 05:10 | 172.235.175.142:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-05 05:10 | 151.245.195.142:445 | Unknown Loader | | jacobholtz |
| 2026-05-05 05:10 | 195.226.92.129:443 | Cobalt Strike | ClickFix CobaltStrike | Anonymous |
| 2026-05-05 05:10 | 91.92.243.161:3083 | IClickFix | | GeNer8 |
| 2026-05-05 05:10 | 178.16.52.232:80 | IClickFix | | GeNer8 |
| 2026-05-05 05:10 | labodysculpture.com | IClickFix | | GeNer8 |
| 2026-05-05 05:10 | 172.233.53.149:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-05 05:10 | fepafut.com | IClickFix | | GeNer8 |
| 2026-05-05 05:10 | ccudmcx.xyz | IClickFix | | GeNer8 |
| 2026-05-05 05:10 | 158.94.209.188:3333 | IClickFix | | GeNer8 |
| 2026-05-05 05:10 | useclaude.pro | IClickFix | | GeNer8 |
| 2026-05-05 05:10 | 62.210.127.4:4782 | IClickFix | | GeNer8 |
| 2026-05-05 05:10 | 3ca0a7326e9485112e9c88e965f52f96 | AsyncRAT | | GeNer8 |
| 2026-05-05 05:10 | nbcdi.org | IClickFix | | GeNer8 |
| 2026-05-05 05:10 | https://www.notebookrosa.com.br.redeoferta.com.br/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-05 05:10 | 164.90.201.200:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-05 05:10 | 142.93.139.212:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-05 05:10 | 161.35.89.223:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-05 05:10 | 206.189.96.207:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-05 05:10 | 157.245.79.245:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-05 05:10 | 104.248.193.204:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-05 05:10 | 54.216.110.53:80 | Cobalt Strike | 16509 c2 censys Cobalt Strike |  sojubear |
| 2026-05-05 05:07 | gitlab.verdi7rax.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 05:06 | vmlist.xena4vax.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 05:00 | usrgrp.xena4vax.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 04:59 | apiops.verdi7rax.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 04:47 | optweb.xena4vax.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 04:46 | logbin.verdi7rax.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 04:41 | proxys.gavi1lor.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 04:40 | appsrc.verdi7rax.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 04:35 | webdoc.verdi7rax.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 04:34 | lanhop.gavi1lor.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 04:28 | subcli.gavi1lor.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 04:28 | syskey.verdi7rax.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 04:14 | bitkit.gavi1lor.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 04:13 | netman.flen3qor.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 04:03 | envset.gavi1lor.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 04:02 | tcpcon.flen3qor.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 03:57 | sshpro.flen3qor.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 03:56 | doclab.gavi1lor.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 03:48 | vmlist.flen3qor.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 03:46 | syncit.brix9mira.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 03:37 | ioflow.brix9mira.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 03:36 | usrgrp.flen3qor.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 03:27 | taskid.brix9mira.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 03:27 | optweb.flen3qor.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 03:20 | comweb.brix9mira.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 03:20 | proxys.grov6lira.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 03:10 | refid.brix9mira.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 03:09 | lanhop.grov6lira.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 03:04 | autbox.brix9mira.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 03:01 | subcli.grov6lira.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 02:59 | domreg.telo5reth.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 02:56 | bitkit.grov6lira.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 02:53 | envset.grov6lira.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 02:51 | pwrlog.telo5reth.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 02:45 | extnet.telo5reth.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 02:41 | doclab.grov6lira.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 02:36 | syncit.pavi1xen.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 02:36 | pkgrun.telo5reth.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 02:27 | modbus.telo5reth.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 02:27 | ioflow.pavi1xen.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 02:22 | srcget.telo5reth.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 02:21 | taskid.pavi1xen.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 02:11 | uidmap.nira6qen.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 02:11 | comweb.pavi1xen.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 02:03 | ftpsrv.nira6qen.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 02:02 | refid.pavi1xen.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 01:54 | autbox.pavi1xen.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 01:54 | libsys.nira6qen.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 01:48 | jobadm.nira6qen.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 01:48 | domreg.sali8mor.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 01:39 | rawdat.nira6qen.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 01:39 | pwrlog.sali8mor.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 01:34 | zipark.nira6qen.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 01:34 | extnet.sali8mor.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 01:28 | osbase.pano2vor.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 01:27 | pkgrun.sali8mor.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 01:22 | metalt.pano2vor.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 01:22 | modbus.sali8mor.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 01:14 | apidoc.pano2vor.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 01:13 | srcget.sali8mor.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 01:07 | uidmap.thora5ven.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 01:05 | dbinst.pano2vor.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 01:01 | ftpsrv.thora5ven.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 00:59 | skyvpn.pano2vor.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 00:55 | libsys.thora5ven.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 00:54 | cmdset.pano2vor.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 00:49 | jobadm.thora5ven.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 00:44 | rawdat.thora5ven.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 00:44 | tmpdir.sora8lin.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 00:37 | sshbin.sora8lin.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 00:35 | zipark.thora5ven.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 00:30 | gro.smtpdenz.my.id | Vidar | Vidar | crep1x |
| 2026-05-05 00:30 | https://gro.smtpdenz.my.id/ | Vidar | Vidar | crep1x |
| 2026-05-05 00:30 | gro.sleepinggiantmedia.co.uk | Vidar | Vidar | crep1x |
| 2026-05-05 00:30 | https://gro.sleepinggiantmedia.co.uk/ | Vidar | Vidar | crep1x |
| 2026-05-05 00:29 | sslkey.sora8lin.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-05 00:29 | osbase.nelo2qir.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 00:22 | metalt.nelo2qir.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-05 00:21 | getcfg.sora8lin.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 00:10 | ipnode.sora8lin.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 00:10 | apidoc.nelo2qir.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 00:05 | 104.168.5.25:5000 | Remcos | remcos | abuse_ch |
| 2026-05-05 00:01 | hotfix.sora8lin.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-05 00:01 | dbinst.nelo2qir.lat | ClearFake | 5May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-04 23:55 | winupd.lumo3ren.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-04 23:55 | skyvpn.nelo2qir.lat | ClearFake | 4May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-04 23:49 | cmdset.nelo2qir.lat | ClearFake | 4May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-04 23:49 | topsvc.lumo3ren.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-04 23:43 | devbox.lumo3ren.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-04 23:41 | tmpdir.zori9vax.lat | ClearFake | 4May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-04 23:37 | vpsrun.lumo3ren.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-04 23:34 | sshbin.zori9vax.lat | ClearFake | 4May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-04 23:31 | dnsapi.lumo3ren.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-04 23:29 | sslkey.zori9vax.lat | ClearFake | 4May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-04 23:26 | applog.lumo3ren.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-04 23:22 | getcfg.zori9vax.lat | ClearFake | 4May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-04 23:17 | ipnode.zori9vax.lat | ClearFake | 4May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-04 23:17 | cdnpro.kira7vex.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-04 23:11 | bitly.kira7vex.lat | ClearFake | 4May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-04 23:10 | hotfix.zori9vax.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-04 23:05 | sysops.kira7vex.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-04 23:04 | winupd.mira4then.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-04 22:55 | topsvc.mira4then.lat | ClearFake | ClearFake | Anonymous |
| 2026-05-04 22:53 | webcpu.kira7vex.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-04 22:48 | netfox.kira7vex.lat | ClearFake | ClearFake | threatcat_ch |
| 2026-05-04 22:47 | devbox.mira4then.lat | ClearFake | 4May2026 ClearFake Commandline Windows | Gi7w0rm |