| 2026-05-12 18:45 | 89.213.118.219:2000 | AsyncRAT | asyncrat RAT |  abuse_ch |
| 2026-05-12 18:41 | byteforge.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-12 18:21 | scriptmesh.surf | ClearFake | ClearFake | Anonymous |
| 2026-05-12 17:06 | codeframe.wiki | ClearFake | ClearFake |  threatcat_ch |
| 2026-05-12 16:45 | stackforge.wiki | ClearFake | ClearFake | Anonymous |
| 2026-05-12 16:30 | prt.loniluekegerman.com | Vidar | Vidar |  crep1x |
| 2026-05-12 16:30 | https://prt.loniluekegerman.com/ | Vidar | Vidar | crep1x |
| 2026-05-12 16:30 | prt.chriskendall.media | Vidar | Vidar | crep1x |
| 2026-05-12 16:30 | https://prt.chriskendall.media/ | Vidar | Vidar | crep1x |
| 2026-05-12 15:50 | https://duclongetc.com/vvvv/need/work/Panel/five/fre.php? | Loki Password Stealer (PWS) | LokiBot | abuse_ch |
| 2026-05-12 15:45 | http://duclongetc.com/vvvv/need/work/Panel/five/fre.php | Loki Password Stealer (PWS) | Loki | abuse_ch |
| 2026-05-12 15:30 | 95.85.246.53:443 | NetSupportManager RAT | NetSupport | abuse_ch |
| 2026-05-12 15:12 | www.apartuk.info | Formbook | ViriBack xloader | abuse_ch |
| 2026-05-12 15:12 | www.axilo.top | Formbook | ViriBack xloader | abuse_ch |
| 2026-05-12 15:06 | caribb.ru | Unknown malware | crpx0 |  johannes |
| 2026-05-12 15:06 | mekhovaya-shuba.ru | Unknown malware | crpx0 | johannes |
| 2026-05-12 15:06 | beboss34.ru | Unknown malware | crpx0 | johannes |
| 2026-05-12 15:06 | 7lqe804i.greyhounds1uidor.digital | ClearFake | ClearFake | threatcat_ch |
| 2026-05-12 15:05 | elbowfrisk.digital | ClearFake | 12May2026 ClearFake Commandline macOS |  Gi7w0rm |
| 2026-05-12 14:59 | lekeitioikt.eus | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress |  varysz |
| 2026-05-12 14:59 | leafypage.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | lengochuan.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | lindabrasil.store | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | linqr.info | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | lionsclubs-ghana.org | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | lisanslandiniz.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | littleshutterhomes.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | livewelltoday.site | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | lmrentacar.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | lnded.net | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | lumyq.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | luxehavenretrat.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | maddog-supply.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | maidog.fr | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | majestichomecare.nl | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | manuelaguerra.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | marmodelkaiser.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | masakaschools.sc.tz | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | massagebienetre-badia.fr | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | matthewsbuildingadvisors.co.uk | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | mdthomasconstructions.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | meccabot.id | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | mechanicalseals.co.za | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | medinova.ng | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | medoratechlabs.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | medraa.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | mesonandaluz.es | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | mgo.vn | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | michellebarton.love | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | miohome.com.tw | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | miraducksolutions.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | missflocage.fr | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | mlbodesign.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | mnasalonsuites.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | mosw.gov.sl | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | motomorini.mg | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | msg3d.com.br | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:59 | muqtasid.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | mwcmetals.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | myachtconsulting.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | myhouseinspain.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | mykonos-explorer.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | mymedicarebasics.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | mysaraoutfit.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | nateberger.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | nelsonmrodriguez.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | netcooilfield.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | networthadjusters.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | neuronoetics.org | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | newhomerebatesdfw.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | newspaperhelp.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | nextcell.com.my | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | nhatnamco.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | nidhidigital.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | nigerianconsulatesa.org | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | noblegeneralconstruction.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | nomoretype2.site | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | novacasasv.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | novaluxoptica.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | nsantosmaintenanceltd.co.uk | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | ntdepannage.fr | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | offersnbrands.site | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | officialguidebarcelona.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | omicsynergy.net | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | onlinebutor.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | onoffsound.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | onyon.org | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | osnfabtech.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | oxar.dz | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | ozchph-sabinov.sk | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | p33.info | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | pachagadgets.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | panaceafarmakeio.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | pantipendowokudus.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | parenthesegourmande.fr | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | parolaajans.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | pasbannews.net | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | pcccthanhhuy.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | peoplesphone.co.uk | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | peptidguide.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | permacyclists.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | picorad.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | picsofficial.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | pietepublice.ro | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | pillar-ms.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | pilotandcar.ae | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | pishealth.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | pixelgraphy.in | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | plansbid.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | platinumedical.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:58 | plusgeek.net | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | pods.emkay.id | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | poledreamstudio.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | pollyplayford.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | premasa.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | primecareheart.co.ke | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | primeenvironmentalgroup.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | printingshell.co.uk | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | properio.co.il | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | proteinplus.com.br | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | psychotherapie-praxis-tenner-paustian.de | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | pulp-design.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | radioamistadaucayacu.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | radiodeputter.nl | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | rashedi.studio | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | realtechengineeringltd.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | realxlbd.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | references.c3pluriel.fr | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | retiredmafia.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | rnceducation.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | riah.dev | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | robertkandell.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | rosecutdiamonds.ca | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | rutherfordinvestments.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | safarwithsasha.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | safeschoolsandhealthylearning.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | sangromeccanica.it | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | santamarialanghe.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | sanycur.com.ar | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | school60.kiev.ua | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | sciencenewstoday.online | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | seniorenbund.oevp-burgenland.at | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | sethsawariyabizmart.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | sgka.co.uk | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | shakirhajjservices.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | sharkltd.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | shbnet.id | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | shinevervecosmetics.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | shirazicafe.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | shivshaktidancecostumes.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | showerdoorsrepair.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | shootingcreekbrewery.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | sidneymanzo.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | sigma-medicare.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | simpledaytips.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | sina-global.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | sitepacket.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | skchs.org | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | skpnijmegen.nl | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | sleetindustries.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:57 | smartenviro.ro | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | smkbuildingmaroc.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | snabinegoce.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | soarebc.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | solar-parks.ch | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | solarpowercentre.com.ng | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | sonjacapeller.at | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | soroptimist.sk | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | sotothailand.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | soufaempowermentfoundation.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | southernriversdental.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | sparklestepclean.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | speakup-pharos.grantthornton.gr | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | springglobalmedia.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | spymyheart.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | startmarketing.com.vn | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | stgeo.org | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | sthapottobid.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | stradacapital.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | strongholdone.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | struk-tur.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | studiolegaleterrazzano.it | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | sufiyakashif.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | suitsgaming.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | sulfomax-dz.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | superinventario.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | superslot-gmae.net | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | supremeriverside.xyz | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | sv-1890-nordshausen.de | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | swiped.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | swiss-tradingacademy.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | tabelafipe.site | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | takeawaytwenty2.com.au | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | tbgcleaningsystems.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | teambuildingstrand.nl | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | teamtacticals.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | techmillsolutions.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | techno-sem.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | technopliancee.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | teckdg.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | telemania.hu | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | tesvoraustralia.au | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | thaithainoodle.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | thayamkeryroyalinn.in | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | thegioisocorp.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | theglobalhub.net | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | thehumanxpress.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | tmcelitehomes.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | tomcat.vn | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | toussaintlouverture.org | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | traiteurvincent.be | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | tranquilhavenresort.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:56 | transportestmm.com.mx | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:55 | tridestined.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:55 | triumphcapitalltd.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:55 | truckstotal.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:55 | trulandscape.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:55 | tuganetcloud.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:55 | tuivaikhongdetaz.vn | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:55 | tuttodrink.it | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:55 | tvmarinternet.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:55 | tweewees.nl | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:55 | uilfplnapolicampania.it | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:55 | uitjesscheveningen.nl | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:55 | urf-careers.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:55 | ursula-strauss.at | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:55 | usmanelectronics.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | variedades-monica.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | vdumas.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | vedro.fr | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | vergaderenstrand.nl | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | vermoegen-mit-plan.de | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | vicunaadventuresperu.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | viennoithat.vn | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | wallybaleja.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | wari.com.pe | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | weddingcarsofmaleny.com.au | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | wereldfestival.be | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | wine-more.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | winworkorders.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | wistineservices.co.ke | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | wnwfm.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | wolfcabinetsandgranites.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | wordpresstraininglondon.co.uk | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | xlmeubels.nl | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | xn--sanmartindecaaveras-73b.es | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | yaronamotorspares.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | yousufdigitalcenter.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | zaciszewbobrzy.pl | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | zadaljnna.org | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | zerosyntax.in | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | ziaurrahmanbd.com | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | zoomcreatives.jp | Vidar | ClickFix compromised etherhiding Polygon Vidar WordPress | varysz |
| 2026-05-12 14:54 | https://ktgafurov.com/ | Unknown malware | ClickFix |  CarsonWilliams |
| 2026-05-12 14:54 | https://kawamawidows.org/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | https://www.jessicaassociates.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | https://infodehrifcam.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | https://www.hudaaldosari.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | https://www.ianvance.co.uk/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | https://www.centralathleticfoundation.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | https://www.drisdellehomes.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | https://www.diversidadecatolica.com.br/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | https://compraway.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | https://www.berylsegerschronicles.com.au/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | https://b2b.castorsunglasses.es/opciones/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | https://columbusisles.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | https://speedpc.info/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | https://stgeo.org/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | 172.233.43.225:25001 | Kimwolf | c2 kimwolf |  Bitsight |
| 2026-05-12 14:54 | 172.233.43.151:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:54 | 172.233.43.176:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:54 | 172.233.43.136:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:54 | https://www.proplayuk.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | https://zofianatra.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | https://www.yogaonthewallkill.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | https://www.shivshankarexp.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | https://www.scalp-coiffure.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | https://kidspepe.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:54 | 172.233.43.94:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:54 | 172.233.43.144:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:53 | 172.233.43.254:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:53 | 172.233.43.193:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:53 | 172.233.43.198:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:53 | 172.233.43.234:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:53 | https://jm-reformas.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:53 | https://htfautoparts.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:53 | https://jobloom.info/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:53 | 204.168.207.15:80 | Unknown malware | OdinC2 panel |  BlinkzSec |
| 2026-05-12 14:53 | https://tramproject.com/private-page-do-not-access/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:53 | https://winesportbet.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:53 | https://www.mkscoffee.co.uk/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:53 | https://www.njfamilyphotography.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:53 | https://miariym.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:53 | https://mamaspusties.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:53 | https://www.lombardoautomotive.it/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:53 | 172.235.189.92:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:53 | 172.235.189.160:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:53 | 172.235.189.85:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:53 | 172.235.189.128:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:53 | 172.233.38.5:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:53 | 172.235.189.19:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:53 | 172.235.189.167:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:53 | 172.233.38.211:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:53 | 172.235.189.171:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:53 | 172.233.38.38:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:53 | 3941d2e13d9ed19d7f867bd266338e9ec0c8eb986ff656743c83c6d1a03555cc | AsyncRAT | asyncrat dotNET RAT | Lenny_3BO |
| 2026-05-12 14:53 | https://realxlbd.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:53 | 167.99.42.187:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:52 | 146.190.21.60:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:52 | 161.35.156.86:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:52 | 159.223.236.216:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:52 | 167.71.4.59:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:52 | 188.166.91.46:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:52 | 164.90.194.88:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:52 | 167.172.33.114:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:52 | 188.166.95.66:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:52 | 134.122.49.151:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:52 | 52.15.149.177:80 | Cobalt Strike | 16509 c2 censys Cobalt Strike |  sojubear |
| 2026-05-12 14:52 | 91.197.97.122:4848 | Cobalt Strike | 197695 c2 censys Cobalt Strike | sojubear |
| 2026-05-12 14:52 | 43.132.129.236:6007 | Cobalt Strike | 132203 c2 censys Cobalt Strike | sojubear |
| 2026-05-12 14:52 | 18.221.198.1:1961 | Meterpreter | 16509 c2 censys MetaSploit | sojubear |
| 2026-05-12 14:52 | 35.152.145.168:48063 | Meterpreter | 16509 c2 censys MetaSploit | sojubear |
| 2026-05-12 14:52 | 3.110.138.170:1911 | Meterpreter | 16509 c2 censys MetaSploit | sojubear |
| 2026-05-12 14:52 | https://www.gustavogorriaran.com.uy/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:52 | https://hyper-evm.pages.dev/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:52 | briskinternet.com | Unknown Stealer | MacSync |  ineffyble |
| 2026-05-12 14:52 | ghdfhfjhfg.webhop.me | Unknown Stealer | |  solostalking |
| 2026-05-12 14:52 | 0kt.one | Unknown Stealer | | solostalking |
| 2026-05-12 14:52 | iloveyoulucid.space | Unknown Stealer | | solostalking |
| 2026-05-12 14:52 | lucidstealer.one | Unknown Stealer | | solostalking |
| 2026-05-12 14:52 | storedonutsmp.net | Unknown Stealer | | solostalking |
| 2026-05-12 14:52 | http://192.253.234.96:4040/login | Unknown Stealer | | solostalking |
| 2026-05-12 14:52 | http://45.141.119.91/b74ec2afc8f3449ba8f9.php | Stealc | build c2 Loader Stealc stealer | Bitsight |
| 2026-05-12 14:52 | https://greyandbold.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:52 | 209.99.191.194:443 | Unknown malware | panel THERMITEC2 | BlinkzSec |
| 2026-05-12 14:52 | 193.233.113.45:443 | Unknown malware | panel StealthC2 | BlinkzSec |
| 2026-05-12 14:52 | 206.189.9.152:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:52 | 209.38.46.60:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:52 | 104.248.95.144:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:52 | 209.38.35.250:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:52 | 68.183.8.89:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:52 | 64.225.70.117:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:52 | 165.232.92.190:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:52 | customroofingcontractors.com | Unknown malware | | johannes |
| 2026-05-12 14:52 | cloudservbr.com | Unknown malware | SHADOW-AETHER | johannes |
| 2026-05-12 14:52 | infra-telemetry.com | Unknown malware | SHADOW-AETHER | johannes |
| 2026-05-12 14:52 | wrned.com | Unknown malware | | johannes |
| 2026-05-12 14:52 | https://parkspringshotel.com/m/Lu6aeloo.php | Unknown malware | | johannes |
| 2026-05-12 14:52 | https://auraguest.lk/m/douV2quu.php | Unknown malware | | johannes |
| 2026-05-12 14:52 | http://31.130.132.86:80 | Unknown malware | | johannes |
| 2026-05-12 14:52 | http://85.11.161.32:80 | Unknown malware | | johannes |
| 2026-05-12 14:52 | basandor.top | Unknown malware | | johannes |
| 2026-05-12 14:52 | nasdam.xyz | Unknown malware | | johannes |
| 2026-05-12 14:52 | wehatasm.xyz | Unknown malware | | johannes |
| 2026-05-12 14:52 | davanatas.top | Unknown malware | | johannes |
| 2026-05-12 14:52 | 172.235.189.108:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:52 | 172.235.189.146:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | 172.235.189.209:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | 172.235.189.157:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | 172.235.189.253:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | api-v2.needlestich.com | FAKEUPDATES | SocGholish |  monitorsg |
| 2026-05-12 14:51 | 172.235.189.7:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | 172.235.189.42:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | 172.235.189.14:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | 172.235.175.45:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | https://bradtte.lol/file.js | KongTuke | Kongtuke | monitorsg |
| 2026-05-12 14:51 | bradtte.lol | KongTuke | Kongtuke | monitorsg |
| 2026-05-12 14:51 | https://bradtte.lol/t | KongTuke | Kongtuke | monitorsg |
| 2026-05-12 14:51 | https://bradtte.lol/g | KongTuke | Kongtuke | monitorsg |
| 2026-05-12 14:51 | https://bradtte.lol/c | KongTuke | Kongtuke | monitorsg |
| 2026-05-12 14:51 | https://mlzabnwk6xx.com/d | KongTuke | Kongtuke | monitorsg |
| 2026-05-12 14:51 | mlzabnwk6xx.com | KongTuke | Kongtuke | monitorsg |
| 2026-05-12 14:51 | 172.235.175.205:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | 172.235.175.147:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | 172.235.175.202:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | 172.235.175.188:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | 172.235.175.185:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | 172.235.175.117:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | 172.235.175.197:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | recargapopular.com | Unknown malware | | johannes |
| 2026-05-12 14:51 | welovechinatown.info | Unknown malware | | johannes |
| 2026-05-12 14:51 | update-treix.com | Unknown malware | Beagle Backdoor | johannes |
| 2026-05-12 14:51 | https://milksos.cfd/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:51 | https://pleasurewarlock.com/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:51 | n8toji7qc96.com | KongTuke | ClickFix endpointdlp Kongtuke sideload T1574.002 | Lenny_3BO |
| 2026-05-12 14:51 | http://mlzabnwk6xx.com/d | KongTuke | ClickFix conhost-headless Kongtuke mpextms | Lenny_3BO |
| 2026-05-12 14:51 | 971f76da2e6af3dd892550411d2bb53208f21f114f8835c0582f8bd1f4becbcc | KongTuke | ClickFix endpointdlp Kongtuke sideload T1574.002 | Lenny_3BO |
| 2026-05-12 14:51 | 172.235.168.34:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | 172.235.168.206:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | 172.235.168.86:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | 172.235.168.9:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | 172.235.168.119:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | 172.235.190.108:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | 172.233.57.11:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:51 | 103.48.133.153:80 | Cobalt Strike | 138415 c2 censys Cobalt Strike | sojubear |
| 2026-05-12 14:51 | 23.235.186.175:9003 | Cobalt Strike | 138415 c2 censys Cobalt Strike | sojubear |
| 2026-05-12 14:51 | 103.48.133.143:80 | Cobalt Strike | 138415 c2 censys Cobalt Strike | sojubear |
| 2026-05-12 14:51 | 103.48.133.145:80 | Cobalt Strike | 138415 c2 censys Cobalt Strike | sojubear |
| 2026-05-12 14:51 | 42.193.244.172:2083 | Cobalt Strike | 45090 c2 censys Cobalt Strike | sojubear |
| 2026-05-12 14:51 | 156.234.65.182:8902 | Cobalt Strike | 138415 c2 censys Cobalt Strike | sojubear |
| 2026-05-12 14:51 | 156.234.20.19:8902 | Cobalt Strike | 138415 c2 censys Cobalt Strike | sojubear |
| 2026-05-12 14:51 | 103.48.133.143:8902 | Cobalt Strike | 138415 c2 censys Cobalt Strike | sojubear |
| 2026-05-12 14:51 | 103.48.133.145:8902 | Cobalt Strike | 138415 c2 censys Cobalt Strike | sojubear |
| 2026-05-12 14:51 | 177.22.88.133:1105 | Sliver | 52892 c2 censys sliver | sojubear |
| 2026-05-12 14:51 | 177.22.88.133:1111 | Sliver | 52892 c2 censys sliver | sojubear |
| 2026-05-12 14:51 | 177.22.88.133:1201 | Sliver | 52892 c2 censys sliver | sojubear |
| 2026-05-12 14:51 | 177.22.88.133:1601 | Sliver | 52892 c2 censys sliver | sojubear |
| 2026-05-12 14:51 | 177.22.88.133:1701 | Sliver | 52892 c2 censys sliver | sojubear |
| 2026-05-12 14:51 | 177.22.88.133:1801 | Sliver | 52892 c2 censys sliver | sojubear |
| 2026-05-12 14:51 | 177.22.88.133:1901 | Sliver | 52892 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 54.254.223.245:443 | Sliver | 16509 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 143.198.142.73:21 | Sliver | 14061 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 139.59.75.111:10000 | Sliver | 14061 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 159.89.25.242:443 | Sliver | 14061 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 134.122.31.17:443 | Sliver | 14061 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 20.244.14.203:443 | Sliver | 8075 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 63.178.31.141:443 | Sliver | 16509 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 18.135.60.110:443 | Sliver | 16509 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 143.198.106.101:9273 | Sliver | 14061 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 64.23.222.19:3000 | Sliver | 14061 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 54.187.229.58:443 | Sliver | 16509 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 103.75.118.29:3790 | Meterpreter | 136258 c2 censys MetaSploit | sojubear |
| 2026-05-12 14:50 | 85.217.248.191:443 | Quasar RAT | 39401 c2 censys quasar | sojubear |
| 2026-05-12 14:50 | 52.254.91.238:443 | Sliver | 8075 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 217.11.63.202:9130 | Sliver | 34240 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 98.89.112.9:443 | Sliver | 14618 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 52.45.107.143:8443 | Sliver | 14618 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 197.144.116.119:5000 | AsyncRAT | 36884 asyncrat c2 censys | sojubear |
| 2026-05-12 14:50 | 188.166.69.11:443 | Sliver | 14061 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 85.198.70.219:443 | Sliver | 198610 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 3.139.13.90:443 | Sliver | 16509 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 63.141.255.205:31337 | Sliver | 33387 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 190.255.90.152:6000 | AsyncRAT | 3816 asyncrat c2 censys | sojubear |
| 2026-05-12 14:50 | 161.35.137.162:443 | Sliver | 14061 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 54.65.46.61:80 | Brute Ratel C4 | 16509 brute ratel c2 censys | sojubear |
| 2026-05-12 14:50 | 199.101.111.64:3790 | Meterpreter | 58580 c2 censys MetaSploit | sojubear |
| 2026-05-12 14:50 | 59.19.73.104:2288 | Quasar RAT | 4766 c2 censys quasar | sojubear |
| 2026-05-12 14:50 | 150.107.31.116:8888 | Sliver | 131447 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 45.113.226.187:31337 | Sliver | 146943 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 144.76.33.44:443 | Sliver | 24940 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 109.123.253.45:8808 | AsyncRAT | 51167 asyncrat c2 censys | sojubear |
| 2026-05-12 14:50 | 202.95.8.97:443 | Quasar RAT | 152194 c2 censys quasar | sojubear |
| 2026-05-12 14:50 | 165.227.46.205:443 | Sliver | 14061 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 174.138.32.236:8808 | AsyncRAT | 14061 asyncrat c2 censys | sojubear |
| 2026-05-12 14:50 | 63.182.244.34:443 | Sliver | 16509 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 77.110.119.103:8080 | Quasar RAT | 210644 c2 censys quasar | sojubear |
| 2026-05-12 14:50 | 52.211.131.104:443 | Sliver | 16509 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 34.79.100.34:3307 | Sliver | 396982 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 54.237.98.166:443 | Sliver | 14618 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 34.76.168.156:3307 | Sliver | 396982 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 79.72.77.73:443 | Sliver | 31898 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 202.155.8.170:35333 | Sliver | 398256 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 44.247.75.6:443 | Sliver | 16509 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 108.131.78.238:443 | Sliver | 16509 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 3.65.255.43:443 | Sliver | 16509 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 3.79.216.26:443 | Sliver | 16509 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 13.59.22.162:443 | Sliver | 16509 c2 censys sliver | sojubear |
| 2026-05-12 14:50 | 54.195.183.174:443 | Sliver | 16509 c2 censys sliver | sojubear |
| 2026-05-12 14:49 | 18.158.198.90:443 | Sliver | 16509 c2 censys sliver | sojubear |
| 2026-05-12 14:49 | 185.193.126.141:31337 | Sliver | 39287 c2 censys sliver | sojubear |
| 2026-05-12 14:49 | 185.234.69.58:31337 | Sliver | 51167 c2 censys sliver | sojubear |
| 2026-05-12 14:49 | 3.135.82.100:443 | Sliver | 16509 c2 censys sliver | sojubear |
| 2026-05-12 14:49 | 3.105.89.29:443 | Sliver | 16509 c2 censys sliver | sojubear |
| 2026-05-12 14:49 | cpanel.importersexportersltd.com | FAKEUPDATES | SocGholish | monitorsg |
| 2026-05-12 14:49 | https://j2rconsulting.fr/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:49 | https://ewtbv.be/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:49 | git-tanstack.com | Shai-Hulud | | johannes |
| 2026-05-12 14:49 | filev2.getsession.org | Unknown malware | | johannes |
| 2026-05-12 14:49 | seed1.getsession.org | Unknown malware | | johannes |
| 2026-05-12 14:49 | api.masscan.cloud | Unknown malware | | johannes |
| 2026-05-12 14:49 | http://filev2.getsession.org/file/ | Unknown malware | | johannes |
| 2026-05-12 14:49 | https://git-tanstack.com/transformers.pyz | Unknown malware | | johannes |
| 2026-05-12 14:49 | https://filev2.getsession.org/file/ | Shai-Hulud | | johannes |
| 2026-05-12 14:49 | https://ponikas.cyou/ | Unknown malware | ClickFix | CarsonWilliams |
| 2026-05-12 14:49 | 167.99.220.224:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:49 | 134.209.200.130:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:49 | 146.190.21.63:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:49 | 64.225.68.89:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:49 | 164.92.219.1:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:49 | 188.166.17.50:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:49 | 159.223.215.79:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:49 | 164.90.203.145:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:49 | spreader.grabber.cy | Unknown malware | |  burger |
| 2026-05-12 14:49 | vexxproject.org | Unknown malware | VexxStealer | burger |
| 2026-05-12 14:49 | api.vexxproject.org | Unknown malware | VexxStealer | burger |
| 2026-05-12 14:49 | http://www.apartuk.info/hpum/index.php?account=w4naf290 | XLoader | AS22612 Namecheap Inc. subdomain xloader |  antiphishorg |
| 2026-05-12 14:49 | http://www.axilo.top/00ab/index.php?account=scb0vgw | XLoader | AS22612 Namecheap Inc. NAMECHEAP INC subdomain xloader | antiphishorg |
| 2026-05-12 14:49 | 77.110.127.178:6969 | Unknown malware | |  renanmontoro |
| 2026-05-12 14:49 | kmot.co.kr | Unknown malware | | johannes |
| 2026-05-12 14:49 | choisy.fr | Unknown malware | | johannes |
| 2026-05-12 14:49 | abledom.net | Unknown malware | | johannes |
| 2026-05-12 14:49 | 172.233.51.64:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:49 | 172.233.61.72:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:49 | 172.233.41.120:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:49 | 172.235.166.9:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:49 | 172.235.174.113:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:49 | 172.233.47.162:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:49 | 172.233.39.7:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:49 | 172.233.57.164:25001 | Kimwolf | c2 kimwolf | Bitsight |
| 2026-05-12 14:48 | http://cdntestconnect.com/ed54b97a570943999715.php | Stealc | c2 first Loader Stealc stealer | Bitsight |
| 2026-05-12 14:48 | https://precisionorbitlabs.com/python | SmartApeSG | Aorta ClickFix sideload SmartApeSG t1036.005 t1574.001 | Lenny_3BO |
| 2026-05-12 14:48 | http://5.78.196.67/ | SmartApeSG | Aorta ClickFix sideload SmartApeSG t1036.005 t1574.001 | Lenny_3BO |
| 2026-05-12 14:48 | http://5.78.222.200/ | SmartApeSG | Aorta ClickFix sideload SmartApeSG t1036.005 t1574.001 | Lenny_3BO |
| 2026-05-12 14:48 | precisionorbitlabs.com | SmartApeSG | Aorta ClickFix sideload SmartApeSG t1036.005 t1574.001 | Lenny_3BO |
| 2026-05-12 14:48 | 5.78.196.67:443 | SmartApeSG | Aorta ClickFix sideload SmartApeSG t1036.005 t1574.001 | Lenny_3BO |
| 2026-05-12 14:48 | 5.78.222.200:443 | SmartApeSG | Aorta ClickFix sideload SmartApeSG t1036.005 t1574.001 | Lenny_3BO |
| 2026-05-12 14:48 | 045479ee61a4b0035941606b5efb1d9fdd7dc8c82b8982bd6ea2228a1f2fbf27 | SmartApeSG | Aorta ClickFix sideload SmartApeSG t1036.005 t1574.001 | Lenny_3BO |
| 2026-05-12 14:48 | 4bc79922cb13d5ea727818222b14f28c69ae6fd161212ed4e136ff7456c4d652 | SmartApeSG | Aorta ClickFix sideload SmartApeSG t1036.005 t1574.001 | Lenny_3BO |
| 2026-05-12 14:48 | firstclassiptv.info | StrelaStealer | StrelaStealer | varysz |
| 2026-05-12 14:48 | company21d.com | StrelaStealer | StrelaStealer | varysz |
| 2026-05-12 14:47 | 194.87.198.120:80 | Cobalt Strike | CobaltStrike cs-watermark-987654321 | abuse_ch |
| 2026-05-12 14:47 | 122.51.144.88:801 | Cobalt Strike | CobaltStrike cs-watermark-987654321 | abuse_ch |
| 2026-05-12 14:47 | 101.245.103.200:8081 | Cobalt Strike | CobaltStrike cs-watermark-987654321 | abuse_ch |
| 2026-05-12 14:46 | 139.155.112.211:443 | Cobalt Strike | CobaltStrike cs-watermark-987654321 | abuse_ch |
| 2026-05-12 14:46 | 47.108.62.225:3000 | Cobalt Strike | CobaltStrike cs-watermark-666666666 | abuse_ch |
| 2026-05-12 14:46 | 198.44.179.38:80 | Cobalt Strike | CobaltStrike cs-watermark-305419896 | abuse_ch |
| 2026-05-12 14:46 | 175.178.36.137:8080 | Cobalt Strike | CobaltStrike cs-watermark-987654321 | abuse_ch |
| 2026-05-12 14:46 | 121.41.78.82:443 | Cobalt Strike | CobaltStrike cs-watermark-987654321 | abuse_ch |
| 2026-05-12 14:46 | 115.42.60.72:80 | Cobalt Strike | CobaltStrike cs-watermark-1234567890 | abuse_ch |
| 2026-05-12 14:19 | b5fdl2mw.hor1inka-lonely.digital | ClearFake | ClearFake | Anonymous |
| 2026-05-12 14:17 | ox18mx54.hor1inka-lonely.digital | ClearFake | ClearFake | threatcat_ch |
| 2026-05-12 14:15 | p9015zuh.unp2idvalk.digital | ClearFake | ClearFake | Anonymous |
| 2026-05-12 14:14 | 5hx0aygl.unp2idvalk.digital | ClearFake | ClearFake | threatcat_ch |
| 2026-05-12 14:05 | 134.122.163.220:7880 | ValleyRAT | RAT ValleyRAT | abuse_ch |
| 2026-05-12 14:05 | 134.122.163.220:7881 | ValleyRAT | RAT ValleyRAT | abuse_ch |
| 2026-05-12 13:20 | http://cdntestconnect.com | Stealc | Stealc | abuse_ch |
| 2026-05-12 12:25 | http://wwnbslklfdsrf.cn:8880/getinstall64 | ValleyRAT | RAT ValleyRAT | abuse_ch |
| 2026-05-12 12:20 | 103.45.65.107:10102 | ValleyRAT | valleyrat_s2 | abuse_ch |
| 2026-05-12 12:05 | http://ch375962.tw1.ru/L1nc0In.php | DCRat | dcrat RAT | abuse_ch |
| 2026-05-12 12:00 | https://ndg.loniluekegerman.com/ | Vidar | Vidar | crep1x |
| 2026-05-12 12:00 | https://ndg.chriskendall.media/ | Vidar | Vidar | crep1x |
| 2026-05-12 12:00 | ndg.loniluekegerman.com | Vidar | Vidar | crep1x |
| 2026-05-12 12:00 | ndg.chriskendall.media | Vidar | Vidar | crep1x |
| 2026-05-12 11:55 | 103.45.65.107:10101 | ValleyRAT | RAT ValleyRAT | abuse_ch |
| 2026-05-12 11:45 | 118.31.62.238:443 | Cobalt Strike | CobaltStrike drb-ra | abuse_ch |
| 2026-05-12 11:45 | 117.72.168.103:50011 | Cobalt Strike | CobaltStrike drb-ra | abuse_ch |
| 2026-05-12 11:45 | 101.132.156.12:443 | Cobalt Strike | CobaltStrike drb-ra | abuse_ch |
| 2026-05-12 11:45 | 101.35.102.87:18443 | Cobalt Strike | CobaltStrike drb-ra | abuse_ch |
| 2026-05-12 11:21 | netvector.wiki | ClearFake | ClearFake | threatcat_ch |
| 2026-05-12 11:01 | datapulse.wiki | ClearFake | 12May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-12 11:00 | dashcorpcloud.co | ClearFake | ClearFake | threatcat_ch |
| 2026-05-12 10:35 | thijsbroekhuizen.nl | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 10:07 | master-system-data-core-wiki.wiki | ClearFake | 12May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-12 09:45 | 91.92.243.38:35630 | DCRat | dcrat drb-ra RAT | abuse_ch |
| 2026-05-12 09:45 | 91.215.85.121:6466 | DCRat | dcrat drb-ra RAT | abuse_ch |
| 2026-05-12 09:45 | 85.158.57.247:4321 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-12 09:45 | 67.180.188.88:443 | Remcos | drb-ra RAT RemcosRAT | abuse_ch |
| 2026-05-12 09:45 | 62.84.114.70:4321 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-12 09:44 | 62.171.190.148:443 | Havoc | drb-ra Havoc | abuse_ch |
| 2026-05-12 09:44 | 45.142.107.41:1030 | Sliver | drb-ra sliver | abuse_ch |
| 2026-05-12 09:44 | 45.142.107.41:31337 | Sliver | drb-ra sliver | abuse_ch |
| 2026-05-12 09:44 | 31.57.184.48:7456 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-12 09:44 | 31.57.201.105:443 | Havoc | drb-ra Havoc | abuse_ch |
| 2026-05-12 09:43 | 213.27.221.200:443 | BianLian | BianLian drb-ra | abuse_ch |
| 2026-05-12 09:43 | 207.148.2.115:60060 | Sliver | drb-ra sliver | abuse_ch |
| 2026-05-12 09:43 | 207.148.2.115:60061 | Sliver | drb-ra sliver | abuse_ch |
| 2026-05-12 09:43 | 2.26.96.209:8080 | Havoc | drb-ra Havoc | abuse_ch |
| 2026-05-12 09:43 | 155.103.71.115:14549 | Remcos | drb-ra RAT RemcosRAT | abuse_ch |
| 2026-05-12 09:43 | 146.185.233.71:41254 | Remcos | drb-ra RAT RemcosRAT | abuse_ch |
| 2026-05-12 09:43 | 104.243.248.63:1803 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-12 09:43 | 103.143.207.71:443 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-12 09:16 | warframe-builder.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | v3.colatv88xb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | v3.unpkg.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | v3.xoilackvb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | v2.unpkg.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | v2.xoilackvb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | v3.adminxoilac1.site | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | v3.chatboxvs.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | v2.adminxoilac1.site | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | v2.chatboxvs.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | v2.colatv88xb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | tracker.colatv88xb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | quantri.unpkg.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | quantri.xoilackvb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | quantri.chatboxvs.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | quantri.colatv88xb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | phishing.unpkg.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | phishing.xoilackvb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | quantri.adminxoilac1.site | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | phishing.adminxoilac1.site | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | phishing.chatboxvs.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | phishing.colatv88xb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | malware.unpkg.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | malware.xoilackvb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | malware.chatboxvs.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | malware.colatv88xb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | live.colatv88xb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | live5.msrktz.app | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | malware.adminxoilac1.site | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | img.colatv88xd.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | img.thesports.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | gatex.colatv88xb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | gatex.unpkg.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | gatex.xoilackvb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | gatex.adminxoilac1.site | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | gatex.chatboxvs.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:16 | donghua.jmsec.app | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | ddos.unpkg.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | ddos.xoilackvb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | data.xoilackvb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | ddos.adminxoilac1.site | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | ddos.chatboxvs.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | ddos.colatv88xb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | data.chatboxvs.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | data.colatv88xb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | data.unpkg.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | d3j9d91vxmbmsx.cloudfront.net | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | data.adminxoilac1.site | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | cel-robox.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | cdn.haircutmenfrederickmd.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | cdn.colatv88xb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | backup.colatv88xb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | backup.unpkg.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | backup.xoilackvb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | backup.adminxoilac1.site | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | backup.chatboxvs.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | apiv1.alilicloud.com | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | api.colatv88xb.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | api17.colatv88xd.cc | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | adminxoilac1.site | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 09:15 | tech-script-logic-unit-reference.wiki | ClearFake | 12May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-12 09:08 | pvn.xybcaap.my.id | Vidar | | threatcat_ch |
| 2026-05-12 09:05 | bz6o5g3c.hor1inka-lonely.digital | ClearFake | ClearFake | threatcat_ch |
| 2026-05-12 09:05 | yywyvtur.hor1inka-lonely.digital | ClearFake | ClearFake | Anonymous |
| 2026-05-12 08:49 | wemovetoanewrelablesourcewhichverymanans.duckdns.org | Remcos | |  proxylife |
| 2026-05-12 08:41 | ponikas.cyou | Unknown malware | ClickFix | threatcat_ch |
| 2026-05-12 08:35 | tiktikmod.ru.com | XWorm | XWorm | abuse_ch |
| 2026-05-12 08:24 | digital-node-cloud-ops-manual.wiki | ClearFake | 12May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-12 07:45 | brandy.it.com | XWorm | XWorm | abuse_ch |
| 2026-05-12 07:45 | bildad.us.org | Quasar RAT | quasar | abuse_ch |
| 2026-05-12 07:31 | infra-point-bits-service-atlas.wiki | ClearFake | ClearFake | threatcat_ch |
| 2026-05-12 07:17 | bcncdncl-ns.beer | Unknown malware | ClickFix | threatcat_ch |
| 2026-05-12 07:00 | 212.34.142.145:443 | NetSupportManager RAT | NetSupport | abuse_ch |
| 2026-05-12 06:59 | ehj.chriskendall.media | Vidar | Vidar | crep1x |
| 2026-05-12 06:59 | mpd.chriskendall.media | Vidar | Vidar | crep1x |
| 2026-05-12 06:59 | wnm.chriskendall.media | Vidar | Vidar | crep1x |
| 2026-05-12 06:59 | https://wnm.chriskendall.media/ | Vidar | Vidar | crep1x |
| 2026-05-12 06:59 | https://ehj.chriskendall.media/ | Vidar | Vidar | crep1x |
| 2026-05-12 06:59 | https://mpd.chriskendall.media/ | Vidar | Vidar | crep1x |
| 2026-05-12 06:41 | web-logic-stack-dev-notebook.wiki | ClearFake | 12May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-12 05:51 | data-core-logic-resource-center.wiki | ClearFake | 12May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-12 05:00 | network-security-ops-flow-base.wiki | ClearFake | 12May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-12 04:10 | open-api-protocol-storage-guide.wiki | ClearFake | 12May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-12 04:05 | x88.run | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-12 04:05 | sc88885.com | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-12 03:19 | system-stack-node-data-reference.wiki | ClearFake | 12May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-12 02:29 | global-cloud-infra-logic-manual.wiki | ClearFake | ClearFake | threatcat_ch |
| 2026-05-12 01:38 | sys-core-node-stack.co | ClearFake | 12May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-12 01:30 | https://dba.chriskendall.media/ | Vidar | Vidar | crep1x |
| 2026-05-12 01:30 | dba.chriskendall.media | Vidar | Vidar | crep1x |
| 2026-05-12 00:52 | data-flow-ops-mgr.co | ClearFake | ClearFake | threatcat_ch |
| 2026-05-12 00:01 | infra-net-logic-unit.co | ClearFake | ClearFake | threatcat_ch |
| 2026-05-11 23:30 | https://dba.loniluekegerman.com/ | Vidar | Vidar | crep1x |
| 2026-05-11 23:30 | dba.loniluekegerman.com | Vidar | Vidar | crep1x |
| 2026-05-11 23:11 | cloud-stack-run-base.co | ClearFake | ClearFake | threatcat_ch |
| 2026-05-11 23:00 | brc.chriskendall.media | Vidar | Vidar | crep1x |
| 2026-05-11 23:00 | https://brc.chriskendall.media/ | Vidar | Vidar | crep1x |
| 2026-05-11 23:00 | mpd.pegasus-77.biz.id | Vidar | Vidar | crep1x |
| 2026-05-11 23:00 | https://mpd.pegasus-77.biz.id/ | Vidar | Vidar | crep1x |
| 2026-05-11 22:45 | 117.50.184.221:10080 | Cobalt Strike | CobaltStrike drb-ra | abuse_ch |
| 2026-05-11 22:45 | 112.124.71.123:55555 | Cobalt Strike | CobaltStrike drb-ra | abuse_ch |
| 2026-05-11 22:18 | system-core-set.co | ClearFake | 11May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-11 22:03 | global-cloud-infra-logic.co | ClearFake | 11May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-11 21:36 | data-stack-node.co | ClearFake | 11May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-11 20:58 | https://light-copying5ingle.digital/script.sh | Unknown malware | macOS | HuntYethHounds |
| 2026-05-11 20:58 | light-copying5ingle.digital | Unknown malware | macOS | HuntYethHounds |
| 2026-05-11 20:57 | https://baroquecam-up.digital/script.sh | Unknown malware | macOS | HuntYethHounds |
| 2026-05-11 20:57 | baroquecam-up.digital | Unknown malware | macOS | HuntYethHounds |
| 2026-05-11 20:56 | https://vexon1al.digital/script.sh | Unknown malware | macOS | HuntYethHounds |
| 2026-05-11 20:56 | vexon1al.digital | Unknown malware | macOS | HuntYethHounds |
| 2026-05-11 20:56 | net-ops-flow-master.co | ClearFake | 11May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-11 20:55 | https://tale-neurosurgery.digital/script.sh | Unknown malware | macOS | HuntYethHounds |
| 2026-05-11 20:55 | tale-neurosurgery.digital | Unknown malware | macOS | HuntYethHounds |
| 2026-05-11 20:54 | https://greyhounds1uidor.digital/script.sh | Unknown malware | macOS | HuntYethHounds |
| 2026-05-11 20:54 | greyhounds1uidor.digital | Unknown malware | macOS | HuntYethHounds |
| 2026-05-11 20:53 | https://bel1tower.digital/script.sh | Unknown malware | macOS | HuntYethHounds |
| 2026-05-11 20:53 | bel1tower.digital | Unknown malware | macOS | HuntYethHounds |
| 2026-05-11 20:51 | https://riihard.top/c | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:50 | https://riihard.top/g | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:50 | https://riihard.top/t | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:50 | https://riihard.top/file.js | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:49 | riihard.top | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:48 | https://gautter.lol/c | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:48 | https://gautter.lol/g | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:48 | https://gautter.lol/t | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:47 | https://gautter.lol/file.js | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:47 | gautter.lol | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:46 | https://chauvet.club/c | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:46 | https://chauvet.club/g | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:45 | https://chauvet.club/t | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:45 | https://chauvet.club/file.js | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:45 | chauvet.club | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:44 | https://olovier.lol/c | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:43 | https://olovier.lol/g | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:43 | https://olovier.lol/t | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:42 | https://olovier.lol/file.js | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:42 | olovier.lol | KongTuke | ClickFix Kongtuke | HuntYethHounds |
| 2026-05-11 20:33 | https://dixel-pixxxl232.digital/ext.0db0461f0031.js | Unknown malware | ClickFix EXT | HuntYethHounds |
| 2026-05-11 20:33 | https://dixel-pixxxl232.digital/ext-b.998e3b1c1a4e.js | Unknown malware | ClickFix EXT | HuntYethHounds |
| 2026-05-11 20:32 | https://dixel-pixxxl232.digital/t.188cfd3975db.js | Unknown malware | ClickFix EXT | HuntYethHounds |
| 2026-05-11 20:32 | https://dixel-pixxxl232.digital/t.js | Unknown malware | ClickFix EXT | HuntYethHounds |
| 2026-05-11 20:30 | dixel-pixxxl232.digital | Unknown malware | ClickFix EXT | HuntYethHounds |
| 2026-05-11 20:27 | viscdnclaud.beer | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-05-11 20:26 | nfsclaudecdn.beer | Unknown malware | ClickFix ErrTraffic | HuntYethHounds |
| 2026-05-11 20:08 | global-data-mgr-proc-unit.wiki | ClearFake | ClearFake | threatcat_ch |
| 2026-05-11 19:45 | 64.199.252.59:3333 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-11 19:45 | 51.77.54.76:6769 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-11 19:44 | 46.253.143.52:4321 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-11 19:44 | 45.77.89.29:4321 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-11 19:43 | 213.139.77.243:55555 | Eye Pyramid | drb-ra EyePyramid | abuse_ch |
| 2026-05-11 19:43 | 185.212.128.72:9000 | Evilginx | drb-ra EvilGinx EvilGoPhish | abuse_ch |
| 2026-05-11 19:43 | 185.190.142.66:4321 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-11 19:43 | 155.103.71.115:14548 | Remcos | drb-ra RAT RemcosRAT | abuse_ch |
| 2026-05-11 19:43 | 139.180.153.57:4321 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-11 19:43 | 139.99.131.177:8000 | AsyncRAT | asyncrat drb-ra RAT | abuse_ch |
| 2026-05-11 19:43 | 13.60.193.80:4321 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-11 19:43 | 109.73.193.242:10140 | AdaptixC2 | AdaptixC2 drb-ra | abuse_ch |
| 2026-05-11 19:43 | 103.247.11.53:7443 | Unknown malware | drb-ra Mythic | abuse_ch |
| 2026-05-11 19:33 | viablestonewall.digital | ClearFake | 11May2026 ClearFake Commandline macOS | Gi7w0rm |
| 2026-05-11 19:28 | cmgr.web-stack-node.wiki | ClearFake | 11May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-11 19:22 | run.web-stack-node.wiki | ClearFake | 11May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-11 19:16 | web-stack-node.wiki | ClearFake | 11May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-11 19:06 | 94.154.172.236:8080 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 94.154.172.236:8888 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 94.154.172.236:53 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 94.154.172.236:80 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 91.195.240.123:8888 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 94.154.172.236:43 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 94.154.172.236:443 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 91.195.240.123:53 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 91.195.240.123:80 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 91.195.240.123:8080 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 91.195.240.123:43 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 91.195.240.123:443 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 199.59.243.226:80 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 199.59.243.226:8080 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 199.59.243.226:43 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 199.59.243.226:443 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 199.59.243.226:53 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 198.54.117.215:80 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 198.54.117.215:8080 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 198.54.117.215:8888 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 198.54.117.215:43 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 198.54.117.215:443 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:06 | 198.54.117.215:53 | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:05 | vbits.open-system-infra-logic-base.wiki | ClearFake | 11May2026 ClearFake Commandline Windows | Gi7w0rm |
| 2026-05-11 19:05 | img.viet69.vg | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:05 | cdn.viet69.vg | AsyncRAT | asyncrat | abuse_ch |
| 2026-05-11 19:05 | dev.sextop1.cafe | AsyncRAT | asyncrat | abuse_ch |