################################################################ # ThreatFox IOCs: recent ip-port - CSV format # # Last updated: 2025-09-03 05:20:19 UTC # # # # Terms Of Use: https://threatfox.abuse.ch/faq/#tos # # For questions please contact threatfox [at] abuse.ch # ################################################################ # # "first_seen_utc","ioc_id","ioc_value","ioc_type","threat_type","fk_malware","malware_alias","malware_printable","last_seen_utc","confidence_level","reference","tags","anonymous","reporter" "2025-09-03 05:20:19", "1581050", "38.146.219.241:6010", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "100", "None", "XWorm", "0", "abuse_ch" "2025-09-03 04:10:22", "1581045", "185.157.162.68:9779", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "100", "None", "XWorm", "0", "abuse_ch" "2025-09-03 04:01:30", "1581044", "185.246.191.34:80", "ip:port", "botnet_cc", "win.stealc", "None", "Stealc", "", "100", "https://search.censys.io/hosts/185.246.191.34", "AS200651,C2,censys,FLOKINET,Stealc,Stealer", "0", "DonPasci" "2025-09-03 04:01:20", "1581043", "103.216.175.63:23766", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/103.216.175.63", "AS42960,censys,GoPhish,Phishing", "0", "dyingbreeds_" "2025-09-03 04:01:19", "1581041", "47.243.70.61:3333", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/47.243.70.61", "AS45102,censys,GoPhish,Phishing", "0", "dyingbreeds_" "2025-09-03 04:01:19", "1581042", "3.216.190.48:443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/3.216.190.48", "AMAZON-AES,AS14618,censys,GoPhish,Phishing", "0", "dyingbreeds_" "2025-09-03 04:01:18", "1581039", "66.42.87.187:8081", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/66.42.87.187", "AS-VULTR,AS20473,censys,GoPhish,Phishing", "0", "dyingbreeds_" "2025-09-03 04:01:18", "1581040", "92.113.148.249:3333", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/92.113.148.249", "AS44803,censys,GoPhish,Phishing,WEBDOCK-AS", "0", "dyingbreeds_" "2025-09-03 04:01:17", "1581037", "52.157.241.27:443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/52.157.241.27", "AS8075,censys,GoPhish,MICROSOFT-CORP-MSN-AS-BLOCK,Phishing", "0", "dyingbreeds_" "2025-09-03 04:01:17", "1581038", "124.223.187.73:443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/124.223.187.73", "AS45090,censys,GoPhish,Phishing", "0", "dyingbreeds_" "2025-09-03 04:01:15", "1581033", "4.210.165.156:443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/4.210.165.156", "AS8075,censys,GoPhish,MICROSOFT-CORP-MSN-AS-BLOCK,Phishing", "0", "dyingbreeds_" "2025-09-03 04:01:15", "1581034", "168.119.185.87:3333", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/168.119.185.87", "AS24940,censys,GoPhish,HETZNER-AS,Phishing", "0", "dyingbreeds_" "2025-09-03 04:01:15", "1581035", "13.51.158.143:443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/13.51.158.143", "AMAZON-02,AS16509,censys,GoPhish,Phishing", "0", "dyingbreeds_" "2025-09-03 04:01:15", "1581036", "95.216.127.232:3333", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/95.216.127.232", "AS24940,censys,GoPhish,HETZNER-AS,Phishing", "0", "dyingbreeds_" "2025-09-03 04:01:14", "1581030", "203.30.9.74:15443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/203.30.9.74", "AS136994,censys,GoPhish,Phishing", "0", "dyingbreeds_" "2025-09-03 04:01:14", "1581032", "172.105.149.184:8443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/172.105.149.184", "AS63949,censys,GoPhish,Phishing", "0", "dyingbreeds_" "2025-09-03 04:01:13", "1581029", "195.87.234.74:3333", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/195.87.234.74", "AS15924,BORUSANTELEKOM-AS,censys,GoPhish,Phishing", "0", "dyingbreeds_" "2025-09-03 04:01:06", "1581028", "129.28.29.138:60000", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/129.28.29.138", "AS45090,censys,Viper", "0", "dyingbreeds_" "2025-09-03 04:01:05", "1581027", "45.207.192.246:60000", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/45.207.192.246", "AS401696,censys,COGNETCLOUD,Viper", "0", "dyingbreeds_" "2025-09-03 04:01:00", "1581026", "185.243.114.196:80", "ip:port", "botnet_cc", "unknown_rat", "None", "Unknown RAT", "", "100", "https://search.censys.io/hosts/185.243.114.196", "AS48314,C2,censys,IP-PROJECTS,RAT,SpiceRAT", "0", "DonPasci" "2025-09-03 04:00:59", "1581024", "216.173.65.45:2404", "ip:port", "botnet_cc", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "", "100", "https://search.censys.io/hosts/216.173.65.45", "AS149440,C2,censys,EVOXTENTERPRISE-AS-AP,RAT,Remcos", "0", "DonPasci" "2025-09-03 04:00:59", "1581025", "103.67.163.29:2404", "ip:port", "botnet_cc", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "", "100", "https://search.censys.io/hosts/103.67.163.29", "AS150895,C2,censys,EZTECH-VN,RAT,Remcos", "0", "DonPasci" "2025-09-03 04:00:53", "1581022", "8.138.131.110:52188", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.138.131.110", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-03 04:00:53", "1581023", "8.138.131.110:56789", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.138.131.110", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-03 04:00:52", "1581019", "8.138.131.110:8089", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.138.131.110", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-03 04:00:52", "1581020", "8.138.131.110:22625", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.138.131.110", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-03 04:00:52", "1581021", "8.138.131.110:49597", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.138.131.110", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-03 04:00:51", "1581016", "8.130.34.237:4823", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.34.237", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-03 04:00:51", "1581017", "8.130.54.67:1352", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.54.67", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-03 04:00:51", "1581018", "8.138.131.110:80", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.138.131.110", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-03 04:00:50", "1581013", "8.130.34.237:6002", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.34.237", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-03 04:00:50", "1581014", "8.130.34.237:12000", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.34.237", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-03 04:00:50", "1581015", "8.130.34.237:23333", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.34.237", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-03 04:00:49", "1581010", "8.130.74.114:443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.74.114", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-03 04:00:49", "1581011", "8.130.74.114:6697", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.74.114", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-03 04:00:49", "1581012", "8.148.4.166:81", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.148.4.166", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-03 04:00:48", "1581007", "8.137.13.191:80", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.137.13.191", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-03 04:00:48", "1581008", "8.138.133.207:2004", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.138.133.207", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-03 04:00:48", "1581009", "8.130.74.114:13933", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.74.114", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-03 04:00:42", "1581006", "213.171.5.199:8888", "ip:port", "botnet_cc", "win.dcrat", "DarkCrystal RAT", "DCRat", "2025-09-03 04:01:23", "100", "https://search.censys.io/hosts/213.171.5.199", "AS9123,C2,censys,RAT,TIMEWEB-AS", "0", "dyingbreeds_" "2025-09-03 04:00:33", "1581005", "196.251.85.187:80", "ip:port", "botnet_cc", "apk.hook", "None", "Hook", "2025-09-03 04:01:18", "100", "https://search.censys.io/hosts/196.251.85.187", "AS401120,C2,censys,CHEAPY-HOST,Hookbot", "0", "dyingbreeds_" "2025-09-03 04:00:32", "1581004", "178.128.203.163:443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "2025-09-03 04:01:17", "100", "https://search.censys.io/hosts/178.128.203.163", "AS14061,C2,censys,DIGITALOCEAN-ASN,Mythic", "0", "dyingbreeds_" "2025-09-03 04:00:29", "1581003", "157.254.165.140:22532", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "2025-09-03 04:01:13", "100", "https://search.censys.io/hosts/157.254.165.140", "AS399486,C2,censys,RAT,VIRTUO", "0", "dyingbreeds_" "2025-09-03 04:00:16", "1581002", "116.204.169.71:80", "ip:port", "botnet_cc", "win.ghost_rat", "Farfli,Gh0st RAT,PCRat", "Ghost RAT", "2025-09-03 04:00:56", "75", "https://search.censys.io/hosts/116.204.169.71", "AS138195,C2,censys,RAT", "0", "dyingbreeds_" "2025-09-03 04:00:14", "1581001", "120.77.206.185:8081", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:00:39", "100", "https://search.censys.io/hosts/120.77.206.185", "AS37963,C2,censys", "0", "dyingbreeds_" "2025-09-03 04:00:11", "1581000", "211.154.22.212:10003", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:00:41", "100", "https://search.censys.io/hosts/211.154.22.212", "AS146817,C2,censys", "0", "dyingbreeds_" "2025-09-03 04:00:09", "1580999", "47.92.125.106:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:00:40", "100", "https://search.censys.io/hosts/47.92.125.106", "AS37963,C2,censys", "0", "dyingbreeds_" "2025-09-03 03:31:13", "1580997", "178.16.53.7:8808", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "", "75", "https://bazaar.abuse.ch/sample/7c8c576731dd13174bd9289726bc59c98fa0db27515da65d5f3434c5c2921d02/", "asyncrat", "0", "abuse_ch" "2025-09-03 03:31:12", "1580995", "178.16.53.7:6606", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "", "75", "https://bazaar.abuse.ch/sample/7c8c576731dd13174bd9289726bc59c98fa0db27515da65d5f3434c5c2921d02/", "asyncrat", "0", "abuse_ch" "2025-09-03 03:31:12", "1580996", "178.16.53.7:7707", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "", "75", "https://bazaar.abuse.ch/sample/7c8c576731dd13174bd9289726bc59c98fa0db27515da65d5f3434c5c2921d02/", "asyncrat", "0", "abuse_ch" "2025-09-03 02:51:29", "1580994", "69.67.172.235:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:51:50", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-03 02:49:58", "1580993", "121.89.84.19:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:50:27", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-03 00:01:27", "1580775", "198.55.98.77:1911", "ip:port", "botnet_cc", "win.redline_stealer", "RECORDSTEALER", "RedLine Stealer", "", "100", "https://search.censys.io/hosts/198.55.98.77", "AS214940,C2,censys,KPRONET,redline,stealer", "0", "DonPasci" "2025-09-03 00:01:22", "1580773", "44.244.111.160:80", "ip:port", "botnet_cc", "win.havoc", "Havokiz", "Havoc", "2025-09-03 04:00:38", "100", "https://search.censys.io/hosts/44.244.111.160", "AMAZON-02,AS16509,C2,censys,Havoc", "0", "DonPasci" "2025-09-03 00:01:14", "1580771", "109.199.98.37:8888", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "2025-09-03 04:00:27", "100", "https://search.censys.io/hosts/109.199.98.37", "AS51167,AsyncRAT,C2,censys,CONTABO,RAT", "0", "DonPasci" "2025-09-03 00:01:14", "1580772", "45.141.215.69:4444", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "2025-09-03 04:00:28", "100", "https://search.censys.io/hosts/45.141.215.69", "AS210558,AsyncRAT,C2,censys,RAT,SERVICES-1337-GMBH", "0", "DonPasci" "2025-09-03 00:01:03", "1580770", "49.234.26.82:443", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "2025-09-03 04:00:22", "100", "https://search.censys.io/hosts/49.234.26.82", "AS45090,C2,censys,Sliver,TENCENT-NET-AP", "0", "DonPasci" "2025-09-03 00:00:40", "1580769", "107.148.52.35:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:00:10", "100", "https://search.censys.io/hosts/107.148.52.35", "AS398478,C2,censys,CobaltStrike,cs-watermark-666666666,PEG-HK", "0", "DonPasci" "2025-09-02 23:25:40", "1580768", "147.124.195.98:7000", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "100", "None", "XWorm", "0", "abuse_ch" "2025-09-02 23:25:36", "1580767", "216.9.224.169:2090", "ip:port", "botnet_cc", "win.purelogs", "None", "PureLogs Stealer", "", "100", "None", "PureLogsStealer", "0", "abuse_ch" "2025-09-02 23:25:34", "1580766", "191.96.224.156:100", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "100", "None", "XWorm", "0", "abuse_ch" "2025-09-02 23:25:30", "1580765", "147.185.221.31:29739", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "100", "None", "XWorm", "0", "abuse_ch" "2025-09-02 23:25:25", "1580764", "185.163.204.202:45000", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "100", "None", "XWorm", "0", "abuse_ch" "2025-09-02 23:25:23", "1580763", "107.172.172.225:6542", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "100", "None", "XWorm", "0", "abuse_ch" "2025-09-02 23:25:18", "1580762", "156.254.21.146:8088", "ip:port", "botnet_cc", "win.valley_rat", "Winos", "ValleyRAT", "", "100", "None", "RAT,ValleyRAT", "0", "abuse_ch" "2025-09-02 22:51:22", "1580758", "43.139.65.13:5557", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:51:22", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 20:49:27", "1580753", "92.161.137.94:4443", "ip:port", "botnet_cc", "win.havoc", "Havokiz", "Havoc", "2025-09-03 04:49:08", "75", "None", "drb-ra,Havoc", "0", "abuse_ch" "2025-09-02 20:47:27", "1580752", "39.40.153.104:995", "ip:port", "botnet_cc", "win.qakbot", "Oakboat,Pinkslipbot,Qbot,Quakbot", "QakBot", "2025-09-03 04:47:20", "75", "None", "drb-ra,Qakbot,Qbot,Quakbot", "0", "abuse_ch" "2025-09-02 20:46:12", "1580751", "197.0.85.219:443", "ip:port", "botnet_cc", "win.qakbot", "Oakboat,Pinkslipbot,Qbot,Quakbot", "QakBot", "2025-09-03 04:46:07", "75", "None", "drb-ra,Qakbot,Qbot,Quakbot", "0", "abuse_ch" "2025-09-02 20:43:37", "1580750", "116.26.10.18:36122", "ip:port", "botnet_cc", "win.deimos_c2", "None", "DeimosC2", "2025-09-03 04:43:33", "75", "None", "Deimos,drb-ra", "0", "abuse_ch" "2025-09-02 20:43:33", "1580749", "112.93.133.97:23293", "ip:port", "botnet_cc", "win.deimos_c2", "None", "DeimosC2", "2025-09-03 04:43:30", "75", "None", "Deimos,drb-ra", "0", "abuse_ch" "2025-09-02 20:43:20", "1580748", "106.55.104.79:60000", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "2025-09-03 04:43:18", "75", "None", "drb-ra,RAT", "0", "abuse_ch" "2025-09-02 20:05:09", "1580743", "162.243.204.23:7707", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "", "100", "None", "AsyncRAT,RAT", "0", "abuse_ch" "2025-09-02 20:01:40", "1580742", "118.184.187.173:47486", "ip:port", "botnet_cc", "win.chaos", "FakeRyuk,RyukJoke,Yashma", "Chaos", "2025-09-03 04:43:36", "100", "https://search.censys.io/hosts/118.184.187.173", "AS138950,censys,Chaos,CHINATELECOM-JIANGSU-WUXI-INTERNATIONAL-IDC,panel", "0", "DonPasci" "2025-09-02 20:01:27", "1580741", "46.246.82.12:1963", "ip:port", "botnet_cc", "win.dcrat", "DarkCrystal RAT", "DCRat", "2025-09-03 04:00:41", "100", "https://search.censys.io/hosts/46.246.82.12", "AS42708,C2,censys,DcRAT,GLESYS,RAT", "0", "DonPasci" "2025-09-02 20:01:25", "1580740", "107.191.60.202:443", "ip:port", "botnet_cc", "win.havoc", "Havokiz", "Havoc", "2025-09-03 04:43:23", "100", "https://search.censys.io/hosts/107.191.60.202", "AS-VULTR,AS20473,C2,censys,Havoc", "0", "DonPasci" "2025-09-02 20:01:24", "1580739", "107.191.60.202:80", "ip:port", "botnet_cc", "win.havoc", "Havokiz", "Havoc", "2025-09-03 04:43:23", "100", "https://search.censys.io/hosts/107.191.60.202", "AS-VULTR,AS20473,C2,censys,Havoc", "0", "DonPasci" "2025-09-02 20:01:22", "1580738", "196.251.85.187:8089", "ip:port", "botnet_cc", "apk.hook", "None", "Hook", "2025-09-03 04:00:34", "100", "https://search.censys.io/hosts/196.251.85.187", "AS401120,C2,censys,CHEAPY-HOST,Hookbot", "0", "DonPasci" "2025-09-02 20:01:21", "1580737", "185.196.10.243:7443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "2025-09-03 04:45:26", "100", "https://search.censys.io/hosts/185.196.10.243", "AS42624,C2,censys,Mythic,SWISSNETWORK02", "0", "DonPasci" "2025-09-02 20:01:15", "1580736", "84.200.73.108:6606", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "2025-09-03 04:00:28", "100", "https://search.censys.io/hosts/84.200.73.108", "AS44066,AsyncRAT,C2,censys,DE-FIRSTCOLO,RAT", "0", "DonPasci" "2025-09-02 20:01:14", "1580733", "45.141.215.69:888", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "2025-09-03 04:47:34", "100", "https://search.censys.io/hosts/45.141.215.69", "AS210558,AsyncRAT,C2,censys,RAT,SERVICES-1337-GMBH", "0", "DonPasci" "2025-09-02 20:01:14", "1580734", "217.160.241.22:1231", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "2025-09-03 04:00:27", "100", "https://search.censys.io/hosts/217.160.241.22", "AS8560,AsyncRAT,C2,censys,IONOS-AS,RAT", "0", "DonPasci" "2025-09-02 20:01:14", "1580735", "186.190.211.108:7707", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "2025-09-03 04:00:28", "100", "https://search.censys.io/hosts/186.190.211.108", "AS-GLOBALTELEHOST,AS63023,AsyncRAT,C2,censys,RAT", "0", "DonPasci" "2025-09-02 20:01:12", "1580732", "103.241.74.160:8888", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "2025-09-03 04:00:26", "100", "https://search.censys.io/hosts/103.241.74.160", "AS152194,C2,censys,CTGSERVERLIMITED-AS-AP,Supershell", "0", "DonPasci" "2025-09-02 20:01:02", "1580731", "212.192.221.76:443", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "2025-09-03 04:00:22", "100", "https://search.censys.io/hosts/212.192.221.76", "AS26383,ASNET,C2,censys,Sliver", "0", "DonPasci" "2025-09-02 20:00:58", "1580730", "216.9.224.34:2404", "ip:port", "botnet_cc", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "", "100", "https://search.censys.io/hosts/216.9.224.34", "AS44382,C2,censys,RAT,Remcos,WHITELABEL", "0", "DonPasci" "2025-09-02 20:00:55", "1580729", "134.122.189.163:443", "ip:port", "botnet_cc", "win.ghost_rat", "Farfli,Gh0st RAT,PCRat", "Ghost RAT", "2025-09-03 04:00:17", "100", "https://search.censys.io/hosts/134.122.189.163", "AS152194,C2,censys,CTGSERVERLIMITED-AS-AP,Gh0st,RAT", "0", "DonPasci" "2025-09-02 20:00:54", "1580728", "103.176.197.131:14994", "ip:port", "botnet_cc", "win.ghost_rat", "Farfli,Gh0st RAT,PCRat", "Ghost RAT", "2025-09-03 04:00:16", "100", "https://search.censys.io/hosts/103.176.197.131", "AS152156,C2,censys,Gh0st,NARUTO-AS-HK,RAT", "0", "DonPasci" "2025-09-02 20:00:44", "1580727", "178.16.52.81:443", "ip:port", "botnet_cc", "win.latrodectus", "BLACKWIDOW,IceNova,Latrodectus,Lotus", "Latrodectus", "2025-09-02 20:02:00", "100", "https://search.censys.io/hosts/178.16.52.81", "AS209800,C2,censys,Latrodectus,METASPINNER-ASN", "0", "DonPasci" "2025-09-02 20:00:37", "1580726", "45.86.153.106:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:00:10", "100", "https://search.censys.io/hosts/45.86.153.106", "AS200950,C2,CALIBOURNETWORK,censys,CobaltStrike,cs-watermark-987654321", "0", "DonPasci" "2025-09-02 18:52:55", "1580723", "47.236.159.248:53", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:51:39", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 18:02:26", "1580715", "47.98.240.25:1234", "ip:port", "botnet_cc", "win.valley_rat", "Winos", "ValleyRAT", "", "100", "https://tria.ge/250902-shd8badm51", "AS37963,C2,rat,triage,valleyrat", "0", "DonPasci" "2025-09-02 18:01:54", "1580713", "46.4.27.174:16639", "ip:port", "botnet_cc", "win.redline_stealer", "RECORDSTEALER", "RedLine Stealer", "", "100", "https://tria.ge/250902-smaexsxxf1", "AS24940,C2,RedLine,RedlineStealer,stealer,triage", "0", "DonPasci" "2025-09-02 18:01:13", "1580711", "134.19.178.162:5700", "ip:port", "botnet_cc", "win.quasar_rat", "CinaRAT,QuasarRAT,Yggdrasil", "Quasar RAT", "", "100", "https://tria.ge/250902-sf9lfasqv8", "AS49453,C2,GLOBALLAYER,quasar,rat,triage", "0", "DonPasci" "2025-09-02 18:00:45", "1580706", "193.233.171.27:5555", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "100", "https://tria.ge/250902-twamqafl9w", "AS215590,C2,triage,xworm", "0", "DonPasci" "2025-09-02 18:00:44", "1580705", "193.233.171.27:4444", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "100", "https://tria.ge/250902-vbf5fayyhw", "AS215590,C2,triage,xworm", "0", "DonPasci" "2025-09-02 17:37:48", "1580700", "91.212.166.160:443", "ip:port", "botnet_cc", "win.lumma", "LummaC2 Stealer", "Lumma Stealer", "", "100", "", "None", "0", "pitachu" "2025-09-02 17:37:48", "1580702", "5.75.210.165:443", "ip:port", "botnet_cc", "win.vidar", "None", "Vidar", "", "50", "", "None", "0", "pitachu" "2025-09-02 16:02:19", "1580695", "118.184.187.174:47486", "ip:port", "botnet_cc", "win.chaos", "FakeRyuk,RyukJoke,Yashma", "Chaos", "2025-09-03 04:43:36", "100", "https://search.censys.io/hosts/118.184.187.174", "AS138950,censys,Chaos,CHINATELECOM-JIANGSU-WUXI-INTERNATIONAL-IDC,panel", "0", "DonPasci" "2025-09-02 16:02:16", "1580694", "118.184.187.163:47486", "ip:port", "botnet_cc", "win.chaos", "FakeRyuk,RyukJoke,Yashma", "Chaos", "2025-09-03 04:43:35", "100", "https://search.censys.io/hosts/118.184.187.163", "AS138950,censys,Chaos,CHINATELECOM-JIANGSU-WUXI-INTERNATIONAL-IDC,panel", "0", "DonPasci" "2025-09-02 16:01:56", "1580692", "18.181.96.254:1135", "ip:port", "botnet_cc", "win.netsupportmanager_rat", "NetSupport", "NetSupportManager RAT", "2025-09-03 04:45:08", "100", "https://search.censys.io/hosts/18.181.96.254", "AMAZON-02,AS16509,C2,censys,Netsupport,RAT", "0", "DonPasci" "2025-09-02 16:01:50", "1580691", "206.189.80.194:80", "ip:port", "botnet_cc", "win.havoc", "Havokiz", "Havoc", "2025-09-03 04:46:31", "100", "https://search.censys.io/hosts/206.189.80.194", "AS14061,C2,censys,DIGITALOCEAN-ASN,Havoc", "0", "DonPasci" "2025-09-02 16:01:46", "1580690", "63.178.148.142:443", "ip:port", "botnet_cc", "win.havoc", "Havokiz", "Havoc", "2025-09-03 04:48:24", "100", "https://search.censys.io/hosts/63.178.148.142", "AMAZON-02,AS16509,C2,censys,Havoc", "0", "DonPasci" "2025-09-02 16:01:36", "1580688", "91.198.77.151:80", "ip:port", "botnet_cc", "apk.hook", "None", "Hook", "2025-09-03 04:49:05", "100", "https://search.censys.io/hosts/91.198.77.151", "AS211895,C2,censys,Hookbot,SERVERIUS-USERS-AS", "0", "DonPasci" "2025-09-02 16:01:26", "1580687", "45.74.8.89:1001", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "2025-09-03 04:47:41", "100", "https://search.censys.io/hosts/45.74.8.89", "AS3223,AsyncRAT,C2,censys,RAT,VOXILITY", "0", "DonPasci" "2025-09-02 16:01:06", "1580686", "134.122.189.174:443", "ip:port", "botnet_cc", "win.ghost_rat", "Farfli,Gh0st RAT,PCRat", "Ghost RAT", "2025-09-03 04:00:17", "100", "https://search.censys.io/hosts/134.122.189.174", "AS152194,C2,censys,CTGSERVERLIMITED-AS-AP,Gh0st,RAT", "0", "DonPasci" "2025-09-02 16:00:45", "1580685", "23.95.227.215:56874", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:51:08", "100", "https://search.censys.io/hosts/23.95.227.215", "AS-COLOCROSSING,AS36352,C2,censys,CobaltStrike,cs-watermark-666666666", "0", "DonPasci" "2025-09-02 15:48:34", "1580683", "196.251.85.246:3778", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "100", "None", "Mirai", "0", "elfdigest" "2025-09-02 15:15:10", "1580681", "161.97.68.73:3329", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "", "100", "None", "AsyncRAT,RAT", "0", "abuse_ch" "2025-09-02 15:04:03", "1580673", "45.159.248.167:443", "ip:port", "botnet_cc", "win.acr_stealer", "None", "ACR Stealer", "", "100", "https://bazaar.abuse.ch/browse/tag/ACRStealer/", "ACRStealer", "0", "aachum" "2025-09-02 15:03:59", "1580674", "95.164.69.234:443", "ip:port", "botnet_cc", "win.acr_stealer", "None", "ACR Stealer", "", "100", "https://bazaar.abuse.ch/browse/tag/ACRStealer/", "ACRStealer", "0", "aachum" "2025-09-02 15:03:59", "1580675", "77.91.123.244:443", "ip:port", "botnet_cc", "win.acr_stealer", "None", "ACR Stealer", "", "100", "https://bazaar.abuse.ch/browse/tag/ACRStealer/", "ACRStealer", "0", "aachum" "2025-09-02 15:03:58", "1580676", "45.144.29.250:443", "ip:port", "botnet_cc", "win.acr_stealer", "None", "ACR Stealer", "", "100", "https://bazaar.abuse.ch/browse/tag/ACRStealer/", "ACRStealer", "0", "aachum" "2025-09-02 15:03:57", "1580677", "95.164.69.191:443", "ip:port", "botnet_cc", "win.acr_stealer", "None", "ACR Stealer", "", "100", "https://bazaar.abuse.ch/browse/tag/ACRStealer/", "ACRStealer", "0", "aachum" "2025-09-02 15:03:57", "1580678", "185.214.74.93:443", "ip:port", "botnet_cc", "win.acr_stealer", "None", "ACR Stealer", "", "100", "https://bazaar.abuse.ch/browse/tag/ACRStealer/", "ACRStealer", "0", "aachum" "2025-09-02 15:03:57", "1580679", "87.120.219.212:443", "ip:port", "botnet_cc", "win.acr_stealer", "None", "ACR Stealer", "", "100", "https://bazaar.abuse.ch/browse/tag/ACRStealer/", "ACRStealer", "0", "aachum" "2025-09-02 14:16:56", "1580671", "185.222.58.49:465", "ip:port", "botnet_cc", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "2025-09-03 04:45:31", "75", "https://bazaar.abuse.ch/sample/809ecfe0d5639158fd1626f4bf2c4c3629a64e012f95f7a08d1b6b0c8a65508e/", "remcos", "0", "abuse_ch" "2025-09-02 14:00:21", "1580670", "196.251.83.209:9003", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "", "100", "None", "AsyncRAT,RAT", "0", "abuse_ch" "2025-09-02 13:57:16", "1580602", "45.156.87.14:8213", "ip:port", "botnet_cc", "win.rhadamanthys", "None", "Rhadamanthys", "", "100", "https://www.vmray.com/analyses/_vt/b4fd170f2d56/report/overview.html", "c2,Rhadamanthys,stealer", "0", "eternal" "2025-09-02 13:57:12", "1580668", "157.254.167.136:443", "ip:port", "botnet_cc", "js.fakeupdates", "FakeUpdate,GhoLoader,SocGholish", "FAKEUPDATES", "", "100", "None", "fakeupdates,SocGholish", "0", "pancak3lullz" "2025-09-02 13:35:25", "1580664", "45.55.67.254:6377", "ip:port", "botnet_cc", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "", "50", "", "c2,remcos", "0", "juroots" "2025-09-02 13:32:46", "1580662", "34.22.85.55:6443", "ip:port", "botnet_cc", "win.adaptix_c2", "None", "AdaptixC2", "", "50", "https://www.shodan.io/host/34.22.85.55#6443", "adaptixc2,c2,shodan", "0", "juroots" "2025-09-02 13:32:27", "1580661", "51.75.85.20:443", "ip:port", "botnet_cc", "win.ghost_rat", "Farfli,Gh0st RAT,PCRat", "Ghost RAT", "", "50", "https://www.shodan.io/host/51.75.85.20#443", "c2,gh0st,shodan", "0", "juroots" "2025-09-02 13:32:12", "1580660", "94.131.130.193:1337", "ip:port", "botnet_cc", "win.quasar_rat", "CinaRAT,QuasarRAT,Yggdrasil", "Quasar RAT", "", "50", "https://www.shodan.io/host/94.131.130.193#1337", "c2,quasar,shodan", "0", "juroots" "2025-09-02 13:31:57", "1580659", "54.90.255.198:17000", "ip:port", "botnet_cc", "win.netsupportmanager_rat", "NetSupport", "NetSupportManager RAT", "", "50", "https://www.shodan.io/host/54.90.255.198#17000", "c2,netsupport,shodan", "0", "juroots" "2025-09-02 13:31:33", "1580658", "109.117.245.166:4444", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "50", "https://www.shodan.io/host/109.117.245.166#4444", "c2,shodan,villain", "0", "juroots" "2025-09-02 13:30:57", "1580656", "34.118.203.82:31337", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "", "50", "https://www.shodan.io/host/34.118.203.82#31337", "c2,shodan,sliver", "0", "juroots" "2025-09-02 13:30:57", "1580657", "185.216.27.22:31337", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "", "50", "https://www.shodan.io/host/185.216.27.22#31337", "c2,shodan,sliver", "0", "juroots" "2025-09-02 13:30:56", "1580655", "64.227.191.31:31337", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "", "50", "https://www.shodan.io/host/64.227.191.31#31337", "c2,shodan,sliver", "0", "juroots" "2025-09-02 13:30:46", "1580654", "94.98.224.81:1433", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#1433", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:45", "1580651", "94.98.224.81:14895", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#14895", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:45", "1580652", "94.98.224.81:10047", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#10047", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:45", "1580653", "94.98.224.81:2064", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2064", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:44", "1580648", "94.98.224.81:97", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#97", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:44", "1580649", "94.98.224.81:2762", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2762", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:44", "1580650", "94.98.224.81:44306", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#44306", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:43", "1580645", "94.98.224.81:12425", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12425", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:43", "1580646", "94.98.224.81:3500", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3500", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:43", "1580647", "94.98.224.81:43009", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#43009", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:42", "1580642", "94.98.224.81:12393", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12393", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:42", "1580643", "94.98.224.81:9939", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9939", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:42", "1580644", "94.98.224.81:9164", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9164", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:41", "1580640", "94.98.224.81:1200", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#1200", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:41", "1580641", "94.98.224.81:8024", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8024", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:40", "1580638", "94.98.224.81:12559", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12559", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:40", "1580639", "94.98.224.81:9054", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9054", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:39", "1580635", "94.98.224.81:1207", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#1207", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:39", "1580636", "94.98.224.81:6443", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#6443", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:39", "1580637", "94.98.224.81:8789", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8789", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:38", "1580632", "94.98.224.81:35002", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#35002", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:38", "1580633", "94.98.224.81:10001", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#10001", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:38", "1580634", "94.98.224.81:12580", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12580", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:37", "1580631", "94.98.224.81:21307", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21307", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:36", "1580629", "94.98.224.81:12329", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12329", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:36", "1580630", "94.98.224.81:12455", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12455", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:35", "1580628", "94.98.224.81:1935", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#1935", "c2,extreme,shodan", "0", "juroots" "2025-09-02 13:30:13", "1580627", "175.27.137.94:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "50", "https://www.shodan.io/host/175.27.137.94#443", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-02 13:30:04", "1580626", "182.92.131.115:8081", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "50", "https://www.shodan.io/host/182.92.131.115#8081", "c2,cobaltstrike,cs-watermark-100000,shodan", "0", "juroots" "2025-09-02 13:30:00", "1580625", "111.229.35.131:8000", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "50", "https://www.shodan.io/host/111.229.35.131#8000", "c2,cobaltstrike,cs-watermark-987654321,shodan", "0", "juroots" "2025-09-02 12:52:30", "1580622", "104.233.252.5:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:57", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 12:52:30", "1580623", "104.233.252.7:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:58", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 12:52:29", "1580617", "104.233.252.25:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:57", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 12:52:29", "1580618", "104.233.252.27:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:57", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 12:52:29", "1580619", "104.233.252.28:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:57", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 12:52:29", "1580620", "104.233.252.29:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:57", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 12:52:29", "1580621", "104.233.252.3:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:57", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 12:52:28", "1580614", "104.233.252.21:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:56", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 12:52:28", "1580615", "104.233.252.23:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:56", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 12:52:28", "1580616", "104.233.252.24:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:56", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 12:52:27", "1580612", "104.233.252.18:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:55", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 12:52:27", "1580613", "104.233.252.20:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:56", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 12:52:26", "1580609", "104.233.252.14:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:55", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 12:52:26", "1580610", "104.233.252.15:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:55", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 12:52:26", "1580611", "104.233.252.16:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:55", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 12:52:25", "1580607", "104.233.252.10:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:54", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 12:52:25", "1580608", "104.233.252.11:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:54", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 12:52:24", "1580606", "104.233.252.1:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:54", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 12:52:22", "1580605", "103.172.26.89:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:52", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 12:15:16", "1580601", "38.242.236.116:1137", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "", "100", "None", "AsyncRAT,RAT", "0", "abuse_ch" "2025-09-02 12:03:18", "1580591", "45.204.197.202:1677", "ip:port", "botnet_cc", "win.valley_rat", "Winos", "ValleyRAT", "", "100", "https://tria.ge/250902-h6yxhsstcx", "AS62468,C2,rat,triage,valleyrat", "0", "DonPasci" "2025-09-02 12:01:54", "1580590", "185.22.154.73:443", "ip:port", "botnet_cc", "win.bianlian", "None", "BianLian", "2025-09-03 04:45:31", "100", "https://search.censys.io/hosts/185.22.154.73", "AS51659,ASBAXET,BianLian,C2,censys", "0", "DonPasci" "2025-09-02 12:01:47", "1580589", "47.110.244.42:7001", "ip:port", "botnet_cc", "win.adaptix_c2", "None", "AdaptixC2", "", "100", "https://search.censys.io/hosts/47.110.244.42", "AdaptixC2,ALIBABA-CN-NET,AS37963,C2,censys", "0", "DonPasci" "2025-09-02 12:01:09", "1580587", "154.205.133.142:443", "ip:port", "botnet_cc", "win.shadowpad", "POISONPLUG.SHADOW,XShellGhost", "ShadowPad", "", "90", "https://search.censys.io/hosts/154.205.133.142", "AS138915,C2,censys,KAOPU-HK,RAT,ShadowPad", "0", "DonPasci" "2025-09-02 12:01:00", "1580586", "134.195.90.78:31337", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "2025-09-03 04:43:52", "100", "https://search.censys.io/hosts/134.195.90.78", "AS63473,C2,censys,HOSTHATCH,Sliver", "0", "DonPasci" "2025-09-02 12:00:56", "1580585", "163.5.169.217:2404", "ip:port", "botnet_cc", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "2025-09-03 04:44:33", "100", "https://search.censys.io/hosts/163.5.169.217", "AS399486,C2,censys,RAT,Remcos,VIRTUO", "0", "DonPasci" "2025-09-02 12:00:41", "1580583", "47.116.34.55:9000", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:00:08", "100", "https://search.censys.io/hosts/47.116.34.55", "ALIBABA-CN-NET,AS37963,C2,censys,CobaltStrike", "0", "DonPasci" "2025-09-02 12:00:36", "1580581", "59.110.83.22:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:00:12", "100", "https://search.censys.io/hosts/59.110.83.22", "ALIBABA-CN-NET,AS37963,C2,censys,CobaltStrike,cs-watermark-391144938", "0", "DonPasci" "2025-09-02 08:51:37", "1580573", "104.233.252.2:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:56", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 08:51:36", "1580572", "104.233.252.17:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:55", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 08:50:41", "1580570", "94.49.219.115:443", "ip:port", "botnet_cc", "win.qakbot", "Oakboat,Pinkslipbot,Qbot,Quakbot", "QakBot", "2025-09-03 04:49:14", "75", "None", "drb-ra,Qakbot,Qbot,Quakbot", "0", "abuse_ch" "2025-09-02 08:46:59", "1580569", "201.202.66.177:443", "ip:port", "botnet_cc", "win.qakbot", "Oakboat,Pinkslipbot,Qbot,Quakbot", "QakBot", "2025-09-03 04:46:27", "75", "None", "drb-ra,Qakbot,Qbot,Quakbot", "0", "abuse_ch" "2025-09-02 08:36:23", "1580568", "172.94.96.90:2404", "ip:port", "botnet_cc", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "", "75", "https://bazaar.abuse.ch/sample/8d61a111c690ba0dead25b1a2e06fcf7c374e3a610b1ae82e4b385ca52d44014/", "remcos", "0", "abuse_ch" "2025-09-02 08:30:20", "1580567", "206.123.152.99:3421", "ip:port", "botnet_cc", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "", "100", "None", "RAT,RemcosRAT", "0", "abuse_ch" "2025-09-02 08:01:38", "1580565", "93.143.174.237:8080", "ip:port", "botnet_cc", "win.chaos", "FakeRyuk,RyukJoke,Yashma", "Chaos", "2025-09-03 04:49:10", "100", "https://search.censys.io/hosts/93.143.174.237", "AS5391,censys,Chaos,panel,T-HT", "0", "DonPasci" "2025-09-02 08:01:27", "1580564", "31.192.107.185:443", "ip:port", "botnet_cc", "win.poshc2", "None", "PoshC2", "2025-09-03 04:00:42", "100", "https://search.censys.io/hosts/31.192.107.185", "AS50867,C2,censys,ORG-LVA15-AS,Posh", "0", "DonPasci" "2025-09-02 08:01:25", "1580563", "102.96.188.215:443", "ip:port", "botnet_cc", "win.netsupportmanager_rat", "NetSupport", "NetSupportManager RAT", "2025-09-03 04:43:07", "100", "https://search.censys.io/hosts/102.96.188.215", "AS36925,ASMedi,C2,censys,Netsupport,RAT", "0", "DonPasci" "2025-09-02 08:01:22", "1580562", "185.168.129.114:443", "ip:port", "botnet_cc", "win.havoc", "Havokiz", "Havoc", "2025-09-03 04:45:22", "100", "https://search.censys.io/hosts/185.168.129.114", "AS49720,C2,censys,GIGACLOUD-AS,Havoc", "0", "DonPasci" "2025-09-02 08:01:13", "1580561", "178.19.236.179:33333", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "2025-09-03 04:45:00", "100", "https://search.censys.io/hosts/178.19.236.179", "AS199284,AsyncRAT,C2,censys,ENCOLINE,RAT", "0", "DonPasci" "2025-09-02 08:01:11", "1580560", "110.42.32.88:8888", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "2025-09-03 04:00:25", "100", "https://search.censys.io/hosts/110.42.32.88", "AS136188,C2,censys,CHINATELECOM-ZHEJIANG-NINGBO-IDC,Supershell", "0", "DonPasci" "2025-09-02 08:00:41", "1580559", "47.113.218.85:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:00:08", "100", "https://search.censys.io/hosts/47.113.218.85", "ALIBABA-CN-NET,AS37963,C2,censys,CobaltStrike,cs-watermark-0", "0", "DonPasci" "2025-09-02 08:00:39", "1580558", "60.205.5.254:81", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:00:12", "100", "https://search.censys.io/hosts/60.205.5.254", "ALIBABA-CN-NET,AS37963,C2,censys,CobaltStrike,cs-watermark-666666666", "0", "DonPasci" "2025-09-02 08:00:35", "1580557", "54.255.211.150:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:00:13", "100", "https://search.censys.io/hosts/54.255.211.150", "AMAZON-02,AS16509,C2,censys,CobaltStrike,cs-watermark-987654321", "0", "DonPasci" "2025-09-02 07:25:15", "1580555", "58.181.59.43:9735", "ip:port", "botnet_cc", "win.ghost_rat", "Farfli,Gh0st RAT,PCRat", "Ghost RAT", "", "100", "None", "Gh0stRAT,RAT", "0", "abuse_ch" "2025-09-02 07:05:33", "1580551", "5.75.211.226:443", "ip:port", "botnet_cc", "win.vidar", "None", "Vidar", "", "100", "", "Vidar", "0", "crep1x" "2025-09-02 07:05:33", "1580552", "5.75.222.189:443", "ip:port", "botnet_cc", "win.vidar", "None", "Vidar", "", "100", "", "Vidar", "0", "crep1x" "2025-09-02 06:46:48", "1580549", "5.83.218.136:443", "ip:port", "botnet_cc", "win.metastealer", "None", "MetaStealer", "", "75", "", "MetaStealer", "0", "abuse_ch" "2025-09-02 06:03:45", "1580542", "123.253.110.42:9090", "ip:port", "botnet_cc", "win.valley_rat", "Winos", "ValleyRAT", "", "100", "https://tria.ge/250902-dawp3abr7t", "AS134823,C2,rat,SDCL-AS-AP,triage,valleyrat", "0", "DonPasci" "2025-09-02 06:03:45", "1580543", "123.253.110.42:9091", "ip:port", "botnet_cc", "win.valley_rat", "Winos", "ValleyRAT", "", "100", "https://tria.ge/250902-dawp3abr7t", "AS134823,C2,rat,SDCL-AS-AP,triage,valleyrat", "0", "DonPasci" "2025-09-02 06:03:45", "1580544", "123.253.110.42:9092", "ip:port", "botnet_cc", "win.valley_rat", "Winos", "ValleyRAT", "", "100", "https://tria.ge/250902-dawp3abr7t", "AS134823,C2,rat,SDCL-AS-AP,triage,valleyrat", "0", "DonPasci" "2025-09-02 06:03:44", "1580541", "154.94.233.72:0443", "ip:port", "botnet_cc", "win.valley_rat", "Winos", "ValleyRAT", "", "100", "https://tria.ge/250902-gepdbsdr5v", "AS137899,C2,ILAYERLIMITED-AS-AP,rat,triage,valleyrat", "0", "DonPasci" "2025-09-02 06:03:24", "1580539", "178.16.55.70:5552", "ip:port", "botnet_cc", "win.njrat", "Bladabindi,Lime-Worm", "NjRAT", "2025-09-02 09:00:07", "100", "https://tria.ge/250902-d3e8savqy2", "AS40999,C2,njrat,triage", "0", "DonPasci" "2025-09-02 06:01:18", "1580538", "94.154.35.207:4782", "ip:port", "botnet_cc", "win.quasar_rat", "CinaRAT,QuasarRAT,Yggdrasil", "Quasar RAT", "", "100", "https://tria.ge/250902-d5vq9acm8t", "AS214943,C2,quasar,rat,triage", "0", "DonPasci" "2025-09-02 06:01:17", "1580537", "178.16.55.70:4782", "ip:port", "botnet_cc", "win.quasar_rat", "CinaRAT,QuasarRAT,Yggdrasil", "Quasar RAT", "", "100", "https://tria.ge/250902-ezmdcscr8v", "AS40999,C2,quasar,rat,triage", "0", "DonPasci" "2025-09-02 06:01:05", "1580536", "178.16.55.70:4449", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "", "100", "https://tria.ge/250902-ezmdcscr8v", "AS40999,asyncrat,C2,rat,triage", "0", "DonPasci" "2025-09-02 06:00:44", "1580533", "178.16.55.70:6000", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "100", "https://tria.ge/250902-ezmdcscr8v", "AS40999,C2,triage,xworm", "0", "DonPasci" "2025-09-02 05:59:36", "1580530", "147.185.221.31:40501", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "50", "", "c2,xworm", "0", "juroots" "2025-09-02 05:57:58", "1580524", "185.241.208.92:3344", "ip:port", "botnet_cc", "apk.spynote", "CypherRat", "SpyNote", "", "50", "", "c2,spynote", "0", "juroots" "2025-09-02 05:56:55", "1580521", "212.7.208.129:4951", "ip:port", "botnet_cc", "win.netwire", "NetWeird,NetWire,Recam", "NetWire RC", "", "50", "", "c2,netwire", "0", "juroots" "2025-09-02 05:56:17", "1580455", "45.55.67.254:4580", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "75", "https://bazaar.abuse.ch/sample/dd526d6b1e6b225b484425cfce62bc318dae7ad5356e81587a511394a3e34aa0/", "xworm", "0", "abuse_ch" "2025-09-02 05:55:40", "1580389", "45.204.218.149:65503", "ip:port", "botnet_cc", "win.dcrat", "DarkCrystal RAT", "DCRat", "", "50", "", "c2,dcrat", "0", "juroots" "2025-09-02 05:47:27", "1580381", "178.63.215.79:8089", "ip:port", "botnet_cc", "apk.ermac", "None", "ERMAC", "", "50", "https://www.shodan.io/host/178.63.215.79#8089", "c2,ermac,shodan", "0", "juroots" "2025-09-02 05:47:03", "1580380", "205.185.114.104:8098", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "50", "https://www.shodan.io/host/205.185.114.104#8098", "c2,netbus,shodan", "0", "juroots" "2025-09-02 05:46:52", "1580379", "156.208.77.43:81", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "50", "https://www.shodan.io/host/156.208.77.43#81", "c2,shodan,unam", "0", "juroots" "2025-09-02 05:46:40", "1580378", "115.190.35.210:80", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "50", "https://www.shodan.io/host/115.190.35.210#80", "c2,redguard,shodan", "0", "juroots" "2025-09-02 05:46:12", "1580377", "149.210.3.10:443", "ip:port", "botnet_cc", "win.ghost_rat", "Farfli,Gh0st RAT,PCRat", "Ghost RAT", "", "50", "https://www.shodan.io/host/149.210.3.10#443", "c2,gh0st,shodan", "0", "juroots" "2025-09-02 05:45:43", "1580376", "117.248.26.27:48002", "ip:port", "botnet_cc", "elf.mozi", "None", "Mozi", "", "50", "https://www.shodan.io/host/117.248.26.27#48002", "c2,mozi,shodan", "0", "juroots" "2025-09-02 05:45:42", "1580375", "59.88.230.62:57781", "ip:port", "botnet_cc", "elf.mozi", "None", "Mozi", "", "50", "https://www.shodan.io/host/59.88.230.62#57781", "c2,mozi,shodan", "0", "juroots" "2025-09-02 05:45:19", "1580372", "185.241.208.218:31337", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "", "50", "https://www.shodan.io/host/185.241.208.218#31337", "c2,shodan,sliver", "0", "juroots" "2025-09-02 05:45:19", "1580373", "176.108.241.162:31337", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "", "50", "https://www.shodan.io/host/176.108.241.162#31337", "c2,shodan,sliver", "0", "juroots" "2025-09-02 05:45:19", "1580374", "49.232.95.245:31337", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "", "50", "https://www.shodan.io/host/49.232.95.245#31337", "c2,shodan,sliver", "0", "juroots" "2025-09-02 05:45:18", "1580371", "167.99.148.49:31337", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "", "50", "https://www.shodan.io/host/167.99.148.49#31337", "c2,shodan,sliver", "0", "juroots" "2025-09-02 05:45:15", "1580368", "94.98.224.81:5224", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5224", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:15", "1580369", "94.98.224.81:9019", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9019", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:15", "1580370", "94.98.224.81:9048", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9048", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:14", "1580365", "94.98.224.81:6686", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#6686", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:14", "1580366", "94.98.224.81:6352", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#6352", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:14", "1580367", "94.98.224.81:10022", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#10022", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:13", "1580363", "94.98.224.81:11002", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#11002", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:13", "1580364", "94.98.224.81:8556", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8556", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:12", "1580361", "94.98.224.81:3189", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3189", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:12", "1580362", "94.98.224.81:263", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#263", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:11", "1580360", "94.98.224.81:8866", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8866", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:10", "1580359", "94.98.224.81:63256", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#63256", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:09", "1580358", "94.98.224.81:9245", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9245", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:08", "1580356", "94.98.224.81:3403", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3403", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:08", "1580357", "94.98.224.81:92", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#92", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:07", "1580354", "94.98.224.81:3342", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3342", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:07", "1580355", "94.98.224.81:9106", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9106", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:06", "1580352", "94.98.224.81:55475", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#55475", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:06", "1580353", "94.98.224.81:8622", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8622", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:05", "1580351", "94.98.224.81:5558", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5558", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:04", "1580350", "94.98.224.81:8117", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8117", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:03", "1580349", "94.98.224.81:3510", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3510", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:02", "1580348", "94.98.224.81:9710", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9710", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:01", "1580346", "94.98.224.81:9135", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9135", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:01", "1580347", "94.98.224.81:12479", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12479", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:00", "1580342", "94.98.224.81:45786", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#45786", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:00", "1580343", "94.98.224.81:9376", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9376", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:00", "1580344", "94.98.224.81:16104", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#16104", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:45:00", "1580345", "94.98.224.81:3305", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3305", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:59", "1580337", "94.98.224.81:8853", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8853", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:59", "1580338", "94.98.224.81:21236", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21236", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:59", "1580339", "94.98.224.81:4085", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#4085", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:59", "1580340", "94.98.224.81:12242", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12242", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:59", "1580341", "94.98.224.81:11401", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#11401", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:58", "1580334", "94.98.224.81:8026", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8026", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:58", "1580335", "94.98.224.81:9797", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9797", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:58", "1580336", "94.98.224.81:8005", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8005", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:57", "1580331", "94.98.224.81:8025", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8025", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:57", "1580332", "94.98.224.81:9532", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9532", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:57", "1580333", "94.98.224.81:1723", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#1723", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:56", "1580327", "94.98.224.81:7687", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#7687", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:56", "1580328", "94.98.224.81:9307", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9307", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:56", "1580329", "94.98.224.81:52311", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#52311", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:56", "1580330", "94.98.224.81:12295", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12295", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:55", "1580323", "94.98.224.81:59012", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#59012", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:55", "1580324", "94.98.224.81:3176", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3176", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:55", "1580325", "94.98.224.81:8023", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8023", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:55", "1580326", "94.98.224.81:3173", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3173", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:54", "1580317", "94.98.224.81:2086", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2086", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:54", "1580318", "94.98.224.81:8017", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8017", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:54", "1580319", "94.98.224.81:12397", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12397", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:54", "1580320", "94.98.224.81:9447", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9447", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:54", "1580321", "94.98.224.81:427", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#427", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:54", "1580322", "94.98.224.81:55443", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#55443", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:53", "1580314", "94.98.224.81:8562", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8562", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:53", "1580315", "94.98.224.81:2550", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2550", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:53", "1580316", "94.98.224.81:9163", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9163", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:52", "1580310", "94.98.224.81:777", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#777", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:52", "1580311", "94.98.224.81:50160", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#50160", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:52", "1580312", "94.98.224.81:5400", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5400", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:52", "1580313", "94.98.224.81:8859", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8859", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:51", "1580306", "94.98.224.81:5998", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5998", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:51", "1580307", "94.98.224.81:21263", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21263", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:51", "1580308", "94.98.224.81:8144", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8144", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:51", "1580309", "94.98.224.81:21242", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21242", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:50", "1580302", "94.98.224.81:3590", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3590", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:50", "1580303", "94.98.224.81:5903", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5903", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:50", "1580304", "94.98.224.81:8161", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8161", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:50", "1580305", "94.98.224.81:10009", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#10009", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:49", "1580297", "94.98.224.81:1292", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#1292", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:49", "1580298", "94.98.224.81:42901", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#42901", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:49", "1580299", "94.98.224.81:18068", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#18068", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:49", "1580300", "94.98.224.81:3183", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3183", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:49", "1580301", "94.98.224.81:9090", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9090", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:48", "1580291", "94.98.224.81:8156", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8156", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:48", "1580292", "94.98.224.81:16052", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#16052", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:48", "1580293", "94.98.224.81:264", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#264", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:48", "1580294", "94.98.224.81:2567", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2567", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:48", "1580295", "94.98.224.81:21311", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21311", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:48", "1580296", "94.98.224.81:8150", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8150", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:47", "1580285", "94.98.224.81:9189", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9189", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:47", "1580286", "94.98.224.81:10087", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#10087", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:47", "1580287", "94.98.224.81:3137", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3137", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:47", "1580288", "94.98.224.81:2221", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2221", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:47", "1580289", "94.98.224.81:15151", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#15151", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:47", "1580290", "94.98.224.81:3076", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3076", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:46", "1580282", "94.98.224.81:175", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#175", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:46", "1580283", "94.98.224.81:9022", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9022", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:46", "1580284", "94.98.224.81:32303", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#32303", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:45", "1580278", "94.98.224.81:49152", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#49152", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:45", "1580279", "94.98.224.81:5917", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5917", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:45", "1580280", "94.98.224.81:2224", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2224", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:45", "1580281", "94.98.224.81:440", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#440", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:44", "1580274", "94.98.224.81:7801", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#7801", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:44", "1580275", "94.98.224.81:9203", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9203", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:44", "1580276", "94.98.224.81:10911", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#10911", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:44", "1580277", "94.98.224.81:3030", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3030", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:43", "1580272", "94.98.224.81:8916", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8916", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:43", "1580273", "94.98.224.81:20121", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#20121", "c2,extreme,shodan", "0", "juroots" "2025-09-02 05:44:24", "1580270", "121.43.57.122:4434", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "50", "https://www.shodan.io/host/121.43.57.122#4434", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-02 05:44:24", "1580271", "121.43.57.122:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "50", "https://www.shodan.io/host/121.43.57.122#443", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-02 05:44:23", "1580268", "202.95.9.144:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "50", "https://www.shodan.io/host/202.95.9.144#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-02 05:44:23", "1580269", "202.95.9.147:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-02 05:44:24", "50", "https://www.shodan.io/host/202.95.9.147#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-02 05:44:22", "1580264", "202.95.9.132:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-02 05:44:23", "50", "https://www.shodan.io/host/202.95.9.132#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-02 05:44:22", "1580265", "202.95.9.149:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-02 05:44:23", "50", "https://www.shodan.io/host/202.95.9.149#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-02 05:44:22", "1580266", "202.95.9.142:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-02 05:44:23", "50", "https://www.shodan.io/host/202.95.9.142#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-02 05:44:22", "1580267", "202.95.9.156:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-02 05:44:23", "50", "https://www.shodan.io/host/202.95.9.156#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-02 05:44:21", "1580261", "99.80.82.80:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "50", "https://www.shodan.io/host/99.80.82.80#443", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-02 05:44:21", "1580262", "124.220.205.147:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "50", "https://www.shodan.io/host/124.220.205.147#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-02 05:44:21", "1580263", "202.95.9.141:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-02 05:44:23", "50", "https://www.shodan.io/host/202.95.9.141#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-02 05:44:19", "1580260", "13.67.132.99:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "50", "https://www.shodan.io/host/13.67.132.99#80", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-02 05:44:02", "1580259", "47.103.109.70:10001", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-02 05:44:20", "50", "https://www.shodan.io/host/47.103.109.70#10001", "c2,cobaltstrike,cs-watermark-391144938,shodan", "0", "juroots" "2025-09-02 05:43:42", "1580257", "47.121.137.8:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:51:38", "50", "https://www.shodan.io/host/47.121.137.8#80", "c2,cobaltstrike,cs-watermark-666666666,shodan", "0", "juroots" "2025-09-02 05:43:42", "1580258", "149.30.255.119:4443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-02 05:44:20", "50", "https://www.shodan.io/host/149.30.255.119#4443", "c2,cobaltstrike,cs-watermark-666666666,shodan", "0", "juroots" "2025-09-02 05:43:39", "1580255", "43.139.169.60:8009", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:51:21", "50", "https://www.shodan.io/host/43.139.169.60#8009", "c2,cobaltstrike,cs-watermark-987654321,shodan", "0", "juroots" "2025-09-02 05:43:39", "1580256", "45.142.152.235:8889", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:51:28", "50", "https://www.shodan.io/host/45.142.152.235#8889", "c2,cobaltstrike,cs-watermark-987654321,shodan", "0", "juroots" "2025-09-02 05:43:38", "1580253", "110.40.176.194:8099", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-02 05:44:19", "50", "https://www.shodan.io/host/110.40.176.194#8099", "c2,cobaltstrike,cs-watermark-987654321,shodan", "0", "juroots" "2025-09-02 05:43:38", "1580254", "47.120.45.216:8032", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-02 05:44:19", "50", "https://www.shodan.io/host/47.120.45.216#8032", "c2,cobaltstrike,cs-watermark-987654321,shodan", "0", "juroots" "2025-09-02 05:25:54", "1579957", "67.220.85.157:6001", "ip:port", "botnet_cc", "win.spark_rat", "None", "SparkRAT", "", "100", "", "None", "0", "pitachu" "2025-09-02 05:04:41", "1580244", "45.207.192.246:4444", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 05:21:59", "100", "None", "CobaltStrike,cs-watermark-666666666", "0", "abuse_ch" "2025-09-02 05:04:40", "1580242", "163.44.196.179:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 05:21:58", "100", "None", "CobaltStrike,cs-watermark-987654321", "0", "abuse_ch" "2025-09-02 05:04:40", "1580243", "43.133.32.96:9999", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 05:21:58", "100", "None", "CobaltStrike,cs-watermark-391144938", "0", "abuse_ch" "2025-09-02 05:04:07", "1580241", "81.70.230.219:4444", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 05:21:22", "100", "None", "CobaltStrike,cs-watermark-305419896", "0", "abuse_ch" "2025-09-02 04:01:38", "1580237", "47.99.196.178:7001", "ip:port", "botnet_cc", "win.adaptix_c2", "None", "AdaptixC2", "", "100", "https://search.censys.io/hosts/47.99.196.178", "AdaptixC2,ALIBABA-CN-NET,AS37963,C2,censys", "0", "DonPasci" "2025-09-02 04:01:31", "1580236", "79.107.156.181:995", "ip:port", "botnet_cc", "win.qakbot", "Oakboat,Pinkslipbot,Qbot,Quakbot", "QakBot", "2025-09-03 04:48:40", "100", "https://search.censys.io/hosts/79.107.156.181", "AS25472,C2,censys,WIND-AS", "0", "dyingbreeds_" "2025-09-02 04:01:22", "1580234", "147.139.206.21:443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/147.139.206.21", "AS45102,censys,GoPhish,Phishing", "0", "dyingbreeds_" "2025-09-02 04:01:22", "1580235", "79.112.58.117:3333", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/79.112.58.117", "AS57269,censys,DIGISPAINTELECOM,GoPhish,Phishing", "0", "dyingbreeds_" "2025-09-02 04:01:21", "1580233", "52.3.43.146:443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/52.3.43.146", "AMAZON-AES,AS14618,censys,GoPhish,Phishing", "0", "dyingbreeds_" "2025-09-02 04:01:20", "1580232", "178.128.115.139:8080", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/178.128.115.139", "AS14061,censys,DIGITALOCEAN-ASN,GoPhish,Phishing", "0", "dyingbreeds_" "2025-09-02 04:01:19", "1580230", "54.175.22.89:443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/54.175.22.89", "AMAZON-AES,AS14618,censys,GoPhish,Phishing", "0", "dyingbreeds_" "2025-09-02 04:01:19", "1580231", "185.132.53.41:8443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/185.132.53.41", "AS211507,censys,GoPhish,Phishing", "0", "dyingbreeds_" "2025-09-02 04:01:18", "1580227", "37.27.217.136:443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/37.27.217.136", "AS24940,censys,GoPhish,HETZNER-AS,Phishing", "0", "dyingbreeds_" "2025-09-02 04:01:18", "1580228", "35.220.228.241:8080", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/35.220.228.241", "AS396982,censys,GOOGLE-CLOUD-PLATFORM,GoPhish,Phishing", "0", "dyingbreeds_" "2025-09-02 04:01:18", "1580229", "3.106.221.246:8080", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/3.106.221.246", "AMAZON-02,AS16509,censys,GoPhish,Phishing", "0", "dyingbreeds_" "2025-09-02 04:01:17", "1580226", "43.160.197.87:8080", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/43.160.197.87", "AS132203,censys,GoPhish,Phishing", "0", "dyingbreeds_" "2025-09-02 04:01:09", "1580225", "8.140.53.30:60000", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.140.53.30", "AS37963,censys,Viper", "0", "dyingbreeds_" "2025-09-02 04:00:56", "1580224", "8.130.34.44:43620", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.34.44", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:55", "1580221", "8.130.34.44:22291", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.34.44", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:55", "1580222", "8.130.34.44:27861", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.34.44", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:55", "1580223", "8.130.34.44:32772", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.34.44", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:54", "1580217", "8.130.34.44:8088", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.34.44", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:54", "1580218", "8.130.34.44:16993", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.34.44", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:54", "1580219", "8.130.34.44:33113", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.34.44", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:54", "1580220", "8.130.34.44:8880", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.34.44", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:53", "1580213", "8.148.23.202:58157", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.148.23.202", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:53", "1580214", "8.130.34.44:42306", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.34.44", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:53", "1580215", "8.130.34.44:6006", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.34.44", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:53", "1580216", "8.130.34.44:6699", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.34.44", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:52", "1580210", "8.148.23.202:49152", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.148.23.202", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:52", "1580211", "8.148.23.202:51005", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.148.23.202", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:52", "1580212", "8.148.23.202:52200", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.148.23.202", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:51", "1580205", "8.130.36.245:443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.36.245", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:51", "1580206", "8.130.36.245:749", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.36.245", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:51", "1580207", "8.130.36.245:1099", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.36.245", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:51", "1580208", "196.251.73.138:5000", "ip:port", "botnet_cc", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "2025-09-03 04:46:04", "100", "https://search.censys.io/hosts/196.251.73.138", "AS401120,C2,censys,CHEAPY-HOST,RAT,Remcos", "0", "DonPasci" "2025-09-02 04:00:51", "1580209", "8.148.23.202:2632", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.148.23.202", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:50", "1580202", "8.134.139.219:8090", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.134.139.219", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:50", "1580203", "8.134.139.219:1913", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.134.139.219", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:50", "1580204", "8.130.36.245:8088", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.36.245", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:49", "1580200", "8.134.138.108:179", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.134.138.108", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:49", "1580201", "8.130.39.117:80", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/8.130.39.117", "AS37963,Botnet,byob,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:48", "1580199", "50.108.119.33:8443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "https://search.censys.io/hosts/50.108.119.33", "AS5650,Botnet,byob,C2,censys,FRONTIER-FRTR", "0", "dyingbreeds_" "2025-09-02 04:00:27", "1580197", "134.195.90.78:443", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "2025-09-03 04:43:52", "90", "https://search.censys.io/hosts/134.195.90.78", "AS63473,C2,censys,HOSTHATCH", "0", "dyingbreeds_" "2025-09-02 04:00:19", "1580196", "180.76.244.55:4444", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 05:21:56", "100", "https://search.censys.io/hosts/180.76.244.55", "AS38365,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:17", "1580194", "91.210.108.135:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:52:05", "100", "https://search.censys.io/hosts/91.210.108.135", "AS62005,BV-EU-AS,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:17", "1580195", "154.205.151.171:4443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-02 04:00:37", "100", "https://search.censys.io/hosts/154.205.151.171", "AS138915,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:15", "1580193", "107.174.232.95:8089", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-02 04:00:33", "100", "https://search.censys.io/hosts/107.174.232.95", "AS-COLOCROSSING,AS36352,C2,censys", "0", "dyingbreeds_" "2025-09-02 04:00:14", "1580192", "140.143.131.180:18443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:50:37", "100", "https://search.censys.io/hosts/140.143.131.180", "AS45090,C2,censys", "0", "dyingbreeds_" "2025-09-02 02:52:24", "1580185", "68.64.176.42:5566", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:51:50", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 02:50:48", "1580184", "117.72.159.96:8081", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:50:15", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-02 01:05:06", "1580181", "104.21.54.114:443", "ip:port", "botnet_cc", "win.njrat", "Bladabindi,Lime-Worm", "NjRAT", "", "100", "None", "NjRAT", "0", "abuse_ch" "2025-09-02 00:01:37", "1580176", "194.48.140.13:909", "ip:port", "botnet_cc", "elf.moobot", "None", "MooBot", "2025-09-02 04:01:02", "100", "https://search.censys.io/hosts/194.48.140.13", "ANTON-LEVIN-AS,AS50053,C2,censys,moobot", "0", "DonPasci" "2025-09-02 00:01:21", "1580174", "18.158.94.111:7443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "2025-09-03 04:45:06", "100", "https://search.censys.io/hosts/18.158.94.111", "AMAZON-02,AS16509,C2,censys,Mythic", "0", "DonPasci" "2025-09-02 00:01:21", "1580175", "185.170.58.214:7443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "2025-09-03 04:45:23", "100", "https://search.censys.io/hosts/185.170.58.214", "AS-HOSTINGER,AS47583,C2,censys,Mythic", "0", "DonPasci" "2025-09-02 00:01:20", "1580173", "197.224.235.75:7443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "2025-09-03 04:46:08", "100", "https://search.censys.io/hosts/197.224.235.75", "AS23889,C2,censys,MauritiusTelecom,Mythic", "0", "DonPasci" "2025-09-02 00:01:15", "1580172", "194.165.16.8:9000", "ip:port", "botnet_cc", "win.sectop_rat", "1xxbot,ArechClient", "SectopRAT", "", "100", "https://search.censys.io/hosts/194.165.16.8", "AS48721,C2,censys,FLYSERVERS-ENDCLIENTS,RAT,Sectop", "0", "DonPasci" "2025-09-02 00:01:13", "1580171", "172.94.59.38:222", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "2025-09-03 04:44:50", "100", "https://search.censys.io/hosts/172.94.59.38", "AS3223,AsyncRAT,C2,censys,RAT,VOXILITY", "0", "DonPasci" "2025-09-02 00:01:03", "1580170", "167.172.190.13:31337", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "2025-09-03 04:44:40", "100", "https://search.censys.io/hosts/167.172.190.13", "AS14061,C2,censys,DIGITALOCEAN-ASN,Sliver", "0", "DonPasci" "2025-09-02 00:00:59", "1580168", "172.245.95.32:2404", "ip:port", "botnet_cc", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "2025-09-03 04:44:49", "100", "https://search.censys.io/hosts/172.245.95.32", "AS-COLOCROSSING,AS36352,C2,censys,RAT,Remcos", "0", "DonPasci" "2025-09-02 00:00:59", "1580169", "195.177.94.33:2323", "ip:port", "botnet_cc", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "2025-09-03 04:45:55", "100", "https://search.censys.io/hosts/195.177.94.33", "AS214961,C2,censys,RAT,Remcos,STELLARGROUPSAS", "0", "DonPasci" "2025-09-02 00:00:56", "1580167", "134.122.189.164:443", "ip:port", "botnet_cc", "win.ghost_rat", "Farfli,Gh0st RAT,PCRat", "Ghost RAT", "2025-09-02 04:00:22", "100", "https://search.censys.io/hosts/134.122.189.164", "AS152194,C2,censys,CTGSERVERLIMITED-AS-AP,Gh0st,RAT", "0", "DonPasci" "2025-09-02 00:00:32", "1580166", "8.135.13.184:8888", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:51:53", "100", "https://search.censys.io/hosts/8.135.13.184", "ALIBABA-CN-NET,AS37963,C2,censys,CobaltStrike,cs-watermark-987654321", "0", "DonPasci" "2025-09-01 22:49:54", "1580159", "104.233.252.23:8081", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:56", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-01 22:49:54", "1580160", "104.233.252.26:8081", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:57", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-01 22:49:53", "1580158", "104.233.252.20:8081", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:56", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-01 20:48:29", "1579962", "75.2.86.65:443", "ip:port", "botnet_cc", "win.deimos_c2", "None", "DeimosC2", "2025-09-03 04:48:36", "75", "None", "Deimos,drb-ra", "0", "abuse_ch" "2025-09-01 20:47:50", "1579961", "5.163.252.69:443", "ip:port", "botnet_cc", "win.qakbot", "Oakboat,Pinkslipbot,Qbot,Quakbot", "QakBot", "2025-09-03 04:48:03", "75", "None", "drb-ra,Qakbot,Qbot,Quakbot", "0", "abuse_ch" "2025-09-01 20:01:50", "1579956", "87.106.126.157:80", "ip:port", "botnet_cc", "win.empire_downloader", "None", "Empire Downloader", "", "100", "https://search.censys.io/hosts/87.106.126.157", "AS8560,C2,censys,IONOS-AS,PowershellEmpire", "0", "DonPasci" "2025-09-01 20:01:19", "1579955", "13.62.19.37:5671", "ip:port", "botnet_cc", "win.netsupportmanager_rat", "NetSupport", "NetSupportManager RAT", "2025-09-03 04:43:51", "100", "https://search.censys.io/hosts/13.62.19.37", "AMAZON-02,AS16509,C2,censys,Netsupport,RAT", "0", "DonPasci" "2025-09-01 20:01:14", "1579954", "45.144.55.160:442", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "2025-09-02 04:00:36", "100", "https://search.censys.io/hosts/45.144.55.160", "AEZA-AS,AS210644,C2,censys,Mythic", "0", "DonPasci" "2025-09-01 20:01:07", "1579953", "190.255.85.13:4000", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "2025-09-03 04:45:39", "100", "https://search.censys.io/hosts/190.255.85.13", "AS3816,AsyncRAT,C2,censys,COLOMBIA,RAT", "0", "DonPasci" "2025-09-01 20:00:52", "1579952", "196.251.73.226:5000", "ip:port", "botnet_cc", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "2025-09-03 04:46:04", "100", "https://search.censys.io/hosts/196.251.73.226", "AS401120,C2,censys,CHEAPY-HOST,RAT,Remcos", "0", "DonPasci" "2025-09-01 20:00:33", "1579951", "20.2.220.82:42666", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:51:03", "100", "https://search.censys.io/hosts/20.2.220.82", "AS8075,C2,censys,CobaltStrike,cs-watermark-666666666,MICROSOFT-CORP-MSN-AS-BLOCK", "0", "DonPasci" "2025-09-01 19:35:22", "1579949", "196.251.113.4:8989", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "100", "None", "XWorm", "0", "abuse_ch" "2025-09-01 18:01:45", "1579944", "154.44.30.252:449", "ip:port", "botnet_cc", "win.valley_rat", "Winos", "ValleyRAT", "", "100", "https://tria.ge/250901-rzrpasxks8", "AS979,C2,NETLAB-SDN,rat,triage,valleyrat", "0", "DonPasci" "2025-09-01 18:00:55", "1579942", "172.111.138.100:4001", "ip:port", "botnet_cc", "win.quasar_rat", "CinaRAT,QuasarRAT,Yggdrasil", "Quasar RAT", "", "100", "https://tria.ge/250901-qxg7eahj7w", "AS9009,C2,M247,quasar,rat,triage", "0", "DonPasci" "2025-09-01 16:25:34", "1579929", "147.185.221.31:26866", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "100", "None", "XWorm", "0", "abuse_ch" "2025-09-01 16:01:15", "1579919", "46.17.57.37:2096", "ip:port", "botnet_cc", "win.havoc", "Havokiz", "Havoc", "2025-09-03 04:47:49", "100", "https://search.censys.io/hosts/46.17.57.37", "AS39326,C2,censys,Havoc,HSO-GROUP", "0", "DonPasci" "2025-09-01 16:01:06", "1579918", "45.74.8.89:407", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "2025-09-03 04:47:42", "100", "https://search.censys.io/hosts/45.74.8.89", "AS3223,AsyncRAT,C2,censys,RAT,VOXILITY", "0", "DonPasci" "2025-09-01 16:01:05", "1579917", "128.90.113.7:8808", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "2025-09-03 04:43:45", "100", "https://search.censys.io/hosts/128.90.113.7", "AS40861,AsyncRAT,C2,censys,PARAD-40-ASN,RAT", "0", "DonPasci" "2025-09-01 16:01:03", "1579916", "154.205.145.180:443", "ip:port", "botnet_cc", "win.shadowpad", "POISONPLUG.SHADOW,XShellGhost", "ShadowPad", "", "90", "https://search.censys.io/hosts/154.205.145.180", "AS138915,C2,censys,KAOPU-HK,RAT,ShadowPad", "0", "DonPasci" "2025-09-01 16:00:50", "1579915", "196.251.80.238:2404", "ip:port", "botnet_cc", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "2025-09-03 04:46:04", "100", "https://search.censys.io/hosts/196.251.80.238", "AS401120,C2,censys,CHEAPY-HOST,RAT,Remcos", "0", "DonPasci" "2025-09-01 16:00:38", "1579914", "178.16.52.80:443", "ip:port", "botnet_cc", "win.latrodectus", "BLACKWIDOW,IceNova,Latrodectus,Lotus", "Latrodectus", "2025-09-01 16:02:17", "100", "https://search.censys.io/hosts/178.16.52.80", "AS209800,C2,censys,Latrodectus,METASPINNER-ASN", "0", "DonPasci" "2025-09-01 16:00:34", "1579913", "101.201.63.13:4444", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-02 04:00:18", "100", "https://search.censys.io/hosts/101.201.63.13", "ALIBABA-CN-NET,AS37963,C2,censys,CobaltStrike,cs-watermark-666666666", "0", "DonPasci" "2025-09-01 16:00:33", "1579912", "81.68.95.163:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:51:59", "100", "https://search.censys.io/hosts/81.68.95.163", "AS45090,C2,censys,CobaltStrike,cs-watermark-666666666,TENCENT-NET-AP", "0", "DonPasci" "2025-09-01 16:00:30", "1579911", "104.238.57.191:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-02 04:00:19", "100", "https://search.censys.io/hosts/104.238.57.191", "AS199959,C2,censys,CobaltStrike,CROWNCLOUD,cs-watermark-987654321", "0", "DonPasci" "2025-09-01 15:15:33", "1579907", "178.16.53.80:7000", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "100", "None", "XWorm", "0", "abuse_ch" "2025-09-01 14:31:10", "1579668", "8.222.255.168:3333", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321", "0", "abuse_ch" "2025-09-01 14:30:36", "1579667", "124.223.50.203:14443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321", "0", "abuse_ch" "2025-09-01 13:30:07", "1579635", "109.71.252.214:9897", "ip:port", "botnet_cc", "win.quasar_rat", "CinaRAT,QuasarRAT,Yggdrasil", "Quasar RAT", "", "100", "None", "QuasarRAT,RAT", "0", "abuse_ch" "2025-09-01 12:53:07", "1579630", "52.176.154.82:443", "ip:port", "botnet_cc", "win.meterpreter", "None", "Meterpreter", "2025-09-03 04:51:47", "75", "None", "drb-ra,Metasploit,Meterpreter", "0", "abuse_ch" "2025-09-01 12:53:05", "1579629", "49.12.221.197:8443", "ip:port", "botnet_cc", "win.meterpreter", "None", "Meterpreter", "2025-09-03 04:51:46", "75", "None", "drb-ra,Metasploit,Meterpreter", "0", "abuse_ch" "2025-09-01 12:51:53", "1579628", "149.0.16.127:445", "ip:port", "botnet_cc", "win.meterpreter", "None", "Meterpreter", "2025-09-03 04:50:38", "75", "None", "drb-ra,Metasploit,Meterpreter", "0", "abuse_ch" "2025-09-01 12:51:11", "1579624", "104.233.252.2:8081", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:56", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-01 12:51:11", "1579625", "104.233.252.3:8081", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:57", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-01 12:51:11", "1579626", "104.233.252.5:8081", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:58", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-01 12:51:11", "1579627", "104.233.252.6:8081", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:58", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-01 12:51:10", "1579622", "104.233.252.17:8081", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:55", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-01 12:51:10", "1579623", "104.233.252.18:8081", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:49:55", "75", "None", "CobaltStrike,drb-ra", "0", "abuse_ch" "2025-09-01 12:28:17", "1579618", "147.185.221.30:29676", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "50", "", "c2,xworm", "0", "juroots" "2025-09-01 12:27:05", "1579613", "172.245.4.224:7475", "ip:port", "botnet_cc", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "", "50", "", "c2,remcos", "0", "juroots" "2025-09-01 12:27:05", "1579614", "173.212.199.134:2266", "ip:port", "botnet_cc", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "", "50", "", "c2,remcos", "0", "juroots" "2025-09-01 12:27:04", "1579612", "172.245.4.224:6868", "ip:port", "botnet_cc", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "", "50", "", "c2,remcos", "0", "juroots" "2025-09-01 12:14:36", "1579555", "165.227.143.219:443", "ip:port", "botnet_cc", "win.lumma", "LummaC2 Stealer", "Lumma Stealer", "", "75", "https://bazaar.abuse.ch/sample/df0442cb22d02ff079e06ffaf287eebe2fbefe5744ebe428e4436589facca3fe/", "LummaStealer", "0", "abuse_ch" "2025-09-01 12:11:35", "1579553", "151.59.109.21:8080", "ip:port", "botnet_cc", "win.sectop_rat", "1xxbot,ArechClient", "SectopRAT", "", "50", "https://www.shodan.io/host/151.59.109.21#8080", "c2,sectop,shodan", "0", "juroots" "2025-09-01 12:11:20", "1579552", "23.27.52.175:9898", "ip:port", "botnet_cc", "win.dcrat", "DarkCrystal RAT", "DCRat", "", "50", "https://www.shodan.io/host/23.27.52.175#9898", "c2,dcrat,shodan", "0", "juroots" "2025-09-01 12:11:05", "1579551", "156.223.49.162:1177", "ip:port", "botnet_cc", "win.njrat", "Bladabindi,Lime-Worm", "NjRAT", "", "50", "https://www.shodan.io/host/156.223.49.162#1177", "c2,njrat,shodan", "0", "juroots" "2025-09-01 12:10:49", "1579550", "185.196.10.204:5006", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "", "50", "https://www.shodan.io/host/185.196.10.204#5006", "asyncrat,c2,shodan", "0", "juroots" "2025-09-01 12:10:34", "1579549", "84.46.239.89:8081", "ip:port", "botnet_cc", "win.brute_ratel_c4", "BOLDBADGER,BruteRatel", "Brute Ratel C4", "", "50", "https://www.shodan.io/host/84.46.239.89#8081", "bruteratel,c2,shodan", "0", "juroots" "2025-09-01 12:10:16", "1579547", "15.157.59.35:11112", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "50", "https://www.shodan.io/host/15.157.59.35#11112", "c2,netbus,shodan", "0", "juroots" "2025-09-01 12:10:16", "1579548", "51.96.19.196:1604", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "50", "https://www.shodan.io/host/51.96.19.196#1604", "c2,netbus,shodan", "0", "juroots" "2025-09-01 12:10:04", "1579546", "185.219.84.239:82", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "50", "https://www.shodan.io/host/185.219.84.239#82", "c2,shodan,unam", "0", "juroots" "2025-09-01 12:10:03", "1579545", "62.60.246.234:80", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "2025-09-02 04:01:04", "50", "https://www.shodan.io/host/62.60.246.234#80", "c2,shodan,unam", "0", "juroots" "2025-09-01 12:09:32", "1579544", "159.198.32.244:3333", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "50", "https://www.shodan.io/host/159.198.32.244#3333", "c2,gophish,phishing,shodan", "0", "juroots" "2025-09-01 12:09:31", "1579543", "185.232.205.237:9001", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "50", "https://www.shodan.io/host/185.232.205.237#9001", "c2,gophish,phishing,shodan", "0", "juroots" "2025-09-01 12:09:10", "1579542", "78.188.33.251:4040", "ip:port", "botnet_cc", "win.darkcomet", "Breut,Fynloski,klovbot", "DarkComet", "", "50", "https://www.shodan.io/host/78.188.33.251#4040", "c2,darkcomet,shodan", "0", "juroots" "2025-09-01 12:09:09", "1579539", "187.126.137.202:20547", "ip:port", "botnet_cc", "win.darkcomet", "Breut,Fynloski,klovbot", "DarkComet", "", "50", "https://www.shodan.io/host/187.126.137.202#20547", "c2,darkcomet,shodan", "0", "juroots" "2025-09-01 12:09:09", "1579540", "187.126.137.202:102", "ip:port", "botnet_cc", "win.darkcomet", "Breut,Fynloski,klovbot", "DarkComet", "", "50", "https://www.shodan.io/host/187.126.137.202#102", "c2,darkcomet,shodan", "0", "juroots" "2025-09-01 12:09:09", "1579541", "187.126.137.202:15151", "ip:port", "botnet_cc", "win.darkcomet", "Breut,Fynloski,klovbot", "DarkComet", "", "50", "https://www.shodan.io/host/187.126.137.202#15151", "c2,darkcomet,shodan", "0", "juroots" "2025-09-01 12:08:55", "1579538", "159.255.36.142:31337", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "", "50", "https://www.shodan.io/host/159.255.36.142#31337", "c2,shodan,sliver", "0", "juroots" "2025-09-01 12:08:54", "1579535", "38.22.90.215:31337", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "", "50", "https://www.shodan.io/host/38.22.90.215#31337", "c2,shodan,sliver", "0", "juroots" "2025-09-01 12:08:54", "1579536", "138.197.64.36:31337", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "", "50", "https://www.shodan.io/host/138.197.64.36#31337", "c2,shodan,sliver", "0", "juroots" "2025-09-01 12:08:54", "1579537", "91.199.147.16:31337", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "2025-09-03 04:01:03", "50", "https://www.shodan.io/host/91.199.147.16#31337", "c2,shodan,sliver", "0", "juroots" "2025-09-01 12:08:51", "1579532", "18.153.69.220:5007", "ip:port", "botnet_cc", "win.netsupportmanager_rat", "NetSupport", "NetSupportManager RAT", "", "50", "https://www.shodan.io/host/18.153.69.220#5007", "c2,netsupport,shodan", "0", "juroots" "2025-09-01 12:08:51", "1579533", "18.175.137.195:3951", "ip:port", "botnet_cc", "win.netsupportmanager_rat", "NetSupport", "NetSupportManager RAT", "", "50", "https://www.shodan.io/host/18.175.137.195#3951", "c2,netsupport,shodan", "0", "juroots" "2025-09-01 12:08:51", "1579534", "202.61.227.208:2002", "ip:port", "botnet_cc", "win.netsupportmanager_rat", "NetSupport", "NetSupportManager RAT", "", "50", "https://www.shodan.io/host/202.61.227.208#2002", "c2,netsupport,shodan", "0", "juroots" "2025-09-01 12:08:50", "1579529", "15.161.131.103:33060", "ip:port", "botnet_cc", "win.netsupportmanager_rat", "NetSupport", "NetSupportManager RAT", "", "50", "https://www.shodan.io/host/15.161.131.103#33060", "c2,netsupport,shodan", "0", "juroots" "2025-09-01 12:08:50", "1579530", "176.82.232.134:6000", "ip:port", "botnet_cc", "win.netsupportmanager_rat", "NetSupport", "NetSupportManager RAT", "", "50", "https://www.shodan.io/host/176.82.232.134#6000", "c2,netsupport,shodan", "0", "juroots" "2025-09-01 12:08:50", "1579531", "92.205.129.7:1153", "ip:port", "botnet_cc", "win.netsupportmanager_rat", "NetSupport", "NetSupportManager RAT", "", "50", "https://www.shodan.io/host/92.205.129.7#1153", "c2,netsupport,shodan", "0", "juroots" "2025-09-01 12:08:46", "1579526", "94.98.224.81:9595", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9595", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:46", "1579527", "94.98.224.81:10909", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#10909", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:46", "1579528", "94.98.224.81:21249", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21249", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:45", "1579522", "94.98.224.81:9084", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9084", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:45", "1579523", "94.98.224.81:30027", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#30027", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:45", "1579524", "94.98.224.81:887", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#887", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:45", "1579525", "94.98.224.81:9098", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9098", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:44", "1579518", "94.98.224.81:8021", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8021", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:44", "1579519", "94.98.224.81:12589", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12589", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:44", "1579520", "94.98.224.81:5227", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5227", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:44", "1579521", "94.98.224.81:9295", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9295", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:43", "1579513", "94.98.224.81:7011", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#7011", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:43", "1579514", "94.98.224.81:6653", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#6653", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:43", "1579515", "94.98.224.81:2060", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2060", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:43", "1579516", "94.98.224.81:32101", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#32101", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:43", "1579517", "94.98.224.81:8436", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8436", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:42", "1579508", "94.98.224.81:30123", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#30123", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:42", "1579509", "94.98.224.81:10017", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#10017", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:42", "1579510", "94.98.224.81:9013", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9013", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:42", "1579511", "94.98.224.81:12325", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12325", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:42", "1579512", "94.98.224.81:8493", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8493", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:41", "1579504", "94.98.224.81:9208", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9208", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:41", "1579505", "94.98.224.81:16067", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#16067", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:41", "1579506", "94.98.224.81:1451", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#1451", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:41", "1579507", "94.98.224.81:10443", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#10443", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:40", "1579499", "94.98.224.81:12292", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12292", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:40", "1579500", "94.98.224.81:3114", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3114", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:40", "1579501", "94.98.224.81:12511", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12511", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:40", "1579502", "94.98.224.81:6081", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#6081", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:40", "1579503", "94.98.224.81:5858", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5858", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:39", "1579493", "94.98.224.81:3541", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3541", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:39", "1579494", "94.98.224.81:3622", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3622", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:39", "1579495", "94.98.224.81:8578", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8578", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:39", "1579496", "94.98.224.81:12305", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12305", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:39", "1579497", "94.98.224.81:8506", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8506", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:39", "1579498", "94.98.224.81:12391", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12391", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:38", "1579488", "94.98.224.81:20050", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#20050", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:38", "1579489", "94.98.224.81:3020", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3020", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:38", "1579490", "94.98.224.81:8405", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8405", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:38", "1579491", "94.98.224.81:503", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#503", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:38", "1579492", "94.98.224.81:771", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#771", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:37", "1579483", "94.98.224.81:3078", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3078", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:37", "1579484", "94.98.224.81:12571", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12571", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:37", "1579485", "94.98.224.81:1024", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#1024", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:37", "1579486", "94.98.224.81:7100", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#7100", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:37", "1579487", "94.98.224.81:5255", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5255", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:36", "1579479", "94.98.224.81:2111", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2111", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:36", "1579480", "94.98.224.81:8143", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8143", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:36", "1579481", "94.98.224.81:2006", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2006", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:36", "1579482", "94.98.224.81:5608", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5608", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:35", "1579474", "94.98.224.81:21234", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21234", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:35", "1579475", "94.98.224.81:9117", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9117", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:35", "1579476", "94.98.224.81:2209", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2209", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:35", "1579477", "94.98.224.81:16032", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#16032", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:35", "1579478", "94.98.224.81:40894", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#40894", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:34", "1579468", "94.98.224.81:12487", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12487", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:34", "1579469", "94.98.224.81:4506", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#4506", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:34", "1579470", "94.98.224.81:12508", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12508", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:34", "1579471", "94.98.224.81:222", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#222", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:34", "1579472", "94.98.224.81:12187", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12187", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:34", "1579473", "94.98.224.81:9923", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9923", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:33", "1579463", "94.98.224.81:3160", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3160", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:33", "1579464", "94.98.224.81:88", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#88", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:33", "1579465", "94.98.224.81:8822", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8822", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:33", "1579466", "94.98.224.81:2003", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2003", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:33", "1579467", "94.98.224.81:9146", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9146", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:32", "1579459", "94.98.224.81:6602", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#6602", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:32", "1579460", "94.98.224.81:9122", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9122", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:32", "1579461", "94.98.224.81:3211", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3211", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:32", "1579462", "94.98.224.81:18060", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#18060", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:31", "1579455", "94.98.224.81:12319", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12319", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:31", "1579456", "94.98.224.81:7087", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#7087", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:31", "1579457", "94.98.224.81:8085", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8085", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:31", "1579458", "94.98.224.81:2181", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2181", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:30", "1579450", "94.98.224.81:12543", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12543", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:30", "1579451", "94.98.224.81:7510", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#7510", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:30", "1579452", "94.98.224.81:5223", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5223", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:30", "1579453", "94.98.224.81:9180", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9180", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:30", "1579454", "94.98.224.81:8151", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8151", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:29", "1579444", "94.98.224.81:12482", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12482", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:29", "1579445", "94.98.224.81:2225", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2225", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:29", "1579446", "94.98.224.81:7015", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#7015", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:29", "1579447", "94.98.224.81:5435", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5435", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:29", "1579448", "94.98.224.81:49692", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#49692", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:29", "1579449", "94.98.224.81:9902", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9902", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:28", "1579439", "94.98.224.81:3190", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3190", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:28", "1579440", "94.98.224.81:9057", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9057", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:28", "1579441", "94.98.224.81:8189", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8189", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:28", "1579442", "94.98.224.81:11601", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#11601", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:28", "1579443", "94.98.224.81:3006", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3006", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:27", "1579434", "94.98.224.81:8500", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8500", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:27", "1579435", "94.98.224.81:5277", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5277", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:27", "1579436", "94.98.224.81:3521", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3521", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:27", "1579437", "94.98.224.81:9050", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9050", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:27", "1579438", "94.98.224.81:20", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#20", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:26", "1579430", "94.98.224.81:21025", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21025", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:26", "1579431", "94.98.224.81:60001", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#60001", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:26", "1579432", "94.98.224.81:119", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#119", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:26", "1579433", "94.98.224.81:4063", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#4063", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:25", "1579425", "94.98.224.81:12322", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12322", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:25", "1579426", "94.98.224.81:9095", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9095", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:25", "1579427", "94.98.224.81:12144", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12144", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:25", "1579428", "94.98.224.81:12251", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12251", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:25", "1579429", "94.98.224.81:35241", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#35241", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:24", "1579420", "94.98.224.81:30025", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#30025", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:24", "1579421", "94.98.224.81:55442", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#55442", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:24", "1579422", "94.98.224.81:5991", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5991", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:24", "1579423", "94.98.224.81:9029", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9029", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:24", "1579424", "94.98.224.81:9086", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9086", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:23", "1579414", "94.98.224.81:9011", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9011", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:23", "1579415", "94.98.224.81:2549", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2549", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:23", "1579416", "94.98.224.81:17000", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#17000", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:23", "1579417", "94.98.224.81:21262", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21262", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:23", "1579418", "94.98.224.81:111", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#111", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:23", "1579419", "94.98.224.81:502", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#502", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:22", "1579410", "94.98.224.81:14147", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#14147", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:22", "1579411", "94.98.224.81:4430", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#4430", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:22", "1579412", "94.98.224.81:9898", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9898", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:22", "1579413", "94.98.224.81:8816", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8816", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:21", "1579406", "94.98.224.81:4572", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#4572", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:21", "1579407", "94.98.224.81:9309", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9309", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:21", "1579408", "94.98.224.81:18093", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#18093", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:21", "1579409", "94.98.224.81:37215", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#37215", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:20", "1579401", "94.98.224.81:9916", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9916", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:20", "1579402", "94.98.224.81:12541", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12541", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:20", "1579403", "94.98.224.81:5915", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5915", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:20", "1579404", "94.98.224.81:21253", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21253", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:20", "1579405", "94.98.224.81:8428", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8428", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:19", "1579396", "94.98.224.81:50050", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#50050", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:19", "1579397", "94.98.224.81:12400", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12400", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:19", "1579398", "94.98.224.81:44350", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#44350", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:19", "1579399", "94.98.224.81:2107", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2107", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:19", "1579400", "94.98.224.81:2352", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2352", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:18", "1579390", "94.98.224.81:5804", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5804", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:18", "1579391", "94.98.224.81:12111", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12111", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:18", "1579392", "94.98.224.81:21251", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21251", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:18", "1579393", "94.98.224.81:12398", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12398", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:18", "1579394", "94.98.224.81:7782", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#7782", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:18", "1579395", "94.98.224.81:5249", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5249", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:17", "1579386", "94.98.224.81:5609", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5609", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:17", "1579387", "94.98.224.81:12469", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12469", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:17", "1579388", "94.98.224.81:8028", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8028", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:17", "1579389", "94.98.224.81:12165", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12165", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:16", "1579384", "94.98.224.81:5432", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5432", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:16", "1579385", "94.98.224.81:2806", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2806", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:15", "1579382", "94.98.224.81:9308", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9308", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:15", "1579383", "94.98.224.81:6664", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#6664", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:14", "1579380", "94.98.224.81:9446", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9446", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:14", "1579381", "94.98.224.81:8167", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8167", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:13", "1579376", "94.98.224.81:25007", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#25007", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:13", "1579377", "94.98.224.81:20202", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#20202", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:13", "1579378", "94.98.224.81:4080", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#4080", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:13", "1579379", "94.98.224.81:3162", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3162", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:12", "1579372", "94.98.224.81:20082", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#20082", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:12", "1579373", "94.98.224.81:16101", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#16101", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:12", "1579374", "94.98.224.81:10048", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#10048", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:12", "1579375", "94.98.224.81:12341", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12341", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:11", "1579370", "94.98.224.81:2259", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2259", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:11", "1579371", "94.98.224.81:12183", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12183", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:10", "1579365", "94.98.224.81:8251", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8251", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:10", "1579366", "94.98.224.81:9003", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9003", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:10", "1579367", "94.98.224.81:8132", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8132", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:10", "1579368", "94.98.224.81:3124", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3124", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:10", "1579369", "94.98.224.81:8605", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8605", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:09", "1579360", "94.98.224.81:18044", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#18044", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:09", "1579361", "94.98.224.81:15502", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#15502", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:09", "1579362", "94.98.224.81:2220", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2220", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:09", "1579363", "94.98.224.81:5237", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5237", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:09", "1579364", "94.98.224.81:12169", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12169", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:08", "1579357", "94.98.224.81:30007", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#30007", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:08", "1579358", "94.98.224.81:8146", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8146", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:08", "1579359", "94.98.224.81:3098", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3098", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:07", "1579355", "94.98.224.81:806", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#806", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:07", "1579356", "94.98.224.81:9176", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9176", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:06", "1579350", "94.98.224.81:541", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#541", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:06", "1579351", "94.98.224.81:16064", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#16064", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:06", "1579352", "94.98.224.81:21250", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21250", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:06", "1579353", "94.98.224.81:12392", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12392", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:06", "1579354", "94.98.224.81:12435", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12435", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:05", "1579345", "94.98.224.81:3000", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3000", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:05", "1579346", "94.98.224.81:18066", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#18066", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:05", "1579347", "94.98.224.81:2130", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2130", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:05", "1579348", "94.98.224.81:23184", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#23184", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:05", "1579349", "94.98.224.81:34500", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#34500", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:04", "1579340", "94.98.224.81:12481", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12481", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:04", "1579341", "94.98.224.81:18101", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#18101", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:04", "1579342", "94.98.224.81:12280", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12280", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:04", "1579343", "94.98.224.81:45667", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#45667", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:04", "1579344", "94.98.224.81:8889", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8889", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:03", "1579334", "94.98.224.81:12281", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12281", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:03", "1579335", "94.98.224.81:51201", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#51201", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:03", "1579336", "94.98.224.81:2568", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2568", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:03", "1579337", "94.98.224.81:3333", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3333", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:03", "1579338", "94.98.224.81:29842", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#29842", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:03", "1579339", "94.98.224.81:10049", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#10049", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:02", "1579332", "94.98.224.81:3111", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3111", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:02", "1579333", "94.98.224.81:47990", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#47990", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:01", "1579329", "94.98.224.81:10040", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#10040", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:01", "1579330", "94.98.224.81:5229", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5229", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:01", "1579331", "94.98.224.81:14407", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#14407", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:00", "1579325", "94.98.224.81:16038", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#16038", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:00", "1579326", "94.98.224.81:32800", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#32800", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:00", "1579327", "94.98.224.81:12525", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12525", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:08:00", "1579328", "94.98.224.81:30000", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#30000", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:59", "1579319", "94.98.224.81:14104", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#14104", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:59", "1579320", "94.98.224.81:441", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#441", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:59", "1579321", "94.98.224.81:12146", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12146", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:59", "1579322", "94.98.224.81:8157", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8157", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:59", "1579323", "94.98.224.81:45333", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#45333", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:59", "1579324", "94.98.224.81:21290", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21290", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:58", "1579314", "94.98.224.81:49682", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#49682", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:58", "1579315", "94.98.224.81:9042", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9042", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:58", "1579316", "94.98.224.81:9148", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9148", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:58", "1579317", "94.98.224.81:12558", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12558", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:58", "1579318", "94.98.224.81:26", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#26", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:57", "1579308", "94.98.224.81:12019", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12019", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:57", "1579309", "94.98.224.81:447", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#447", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:57", "1579310", "94.98.224.81:12276", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12276", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:57", "1579311", "94.98.224.81:21273", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21273", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:57", "1579312", "94.98.224.81:8334", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8334", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:57", "1579313", "94.98.224.81:9034", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9034", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:56", "1579303", "94.98.224.81:52951", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#52951", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:56", "1579304", "94.98.224.81:4646", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#4646", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:56", "1579305", "94.98.224.81:5603", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5603", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:56", "1579306", "94.98.224.81:8112", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8112", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:56", "1579307", "94.98.224.81:8105", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8105", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:55", "1579299", "94.98.224.81:15503", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#15503", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:55", "1579300", "94.98.224.81:9198", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9198", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:55", "1579301", "94.98.224.81:9124", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9124", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:55", "1579302", "94.98.224.81:12499", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12499", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:54", "1579294", "94.98.224.81:8852", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8852", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:54", "1579295", "94.98.224.81:3522", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3522", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:54", "1579296", "94.98.224.81:44818", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#44818", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:54", "1579297", "94.98.224.81:12156", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12156", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:54", "1579298", "94.98.224.81:8731", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8731", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:53", "1579289", "94.98.224.81:3299", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3299", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:53", "1579290", "94.98.224.81:8343", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8343", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:53", "1579291", "94.98.224.81:7349", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#7349", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:53", "1579292", "94.98.224.81:12230", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12230", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:53", "1579293", "94.98.224.81:10083", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#10083", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:52", "1579284", "94.98.224.81:285", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#285", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:52", "1579285", "94.98.224.81:5567", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5567", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:52", "1579286", "94.98.224.81:25084", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#25084", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:52", "1579287", "94.98.224.81:12108", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12108", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:52", "1579288", "94.98.224.81:8000", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8000", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:51", "1579279", "94.98.224.81:5150", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5150", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:51", "1579280", "94.98.224.81:3790", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3790", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:51", "1579281", "94.98.224.81:2444", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2444", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:51", "1579282", "94.98.224.81:8453", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8453", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:51", "1579283", "94.98.224.81:9073", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9073", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:50", "1579273", "94.98.224.81:6512", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#6512", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:50", "1579274", "94.98.224.81:17772", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#17772", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:50", "1579275", "94.98.224.81:8580", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8580", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:50", "1579276", "94.98.224.81:12127", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12127", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:50", "1579277", "94.98.224.81:12224", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12224", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:50", "1579278", "94.98.224.81:9091", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9091", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:49", "1579267", "94.98.224.81:3269", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3269", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:49", "1579268", "94.98.224.81:8129", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8129", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:49", "1579269", "94.98.224.81:5264", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5264", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:49", "1579270", "94.98.224.81:8902", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8902", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:49", "1579271", "94.98.224.81:53400", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#53400", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:49", "1579272", "94.98.224.81:16063", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#16063", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:48", "1579262", "94.98.224.81:9444", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9444", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:48", "1579263", "94.98.224.81:5172", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5172", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:48", "1579264", "94.98.224.81:27571", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#27571", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:48", "1579265", "94.98.224.81:33060", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#33060", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:48", "1579266", "94.98.224.81:5242", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5242", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:47", "1579256", "94.98.224.81:32764", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#32764", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:47", "1579257", "94.98.224.81:891", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#891", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:47", "1579258", "94.98.224.81:8640", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8640", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:47", "1579259", "94.98.224.81:902", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#902", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:47", "1579260", "94.98.224.81:2067", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2067", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:47", "1579261", "94.98.224.81:18003", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#18003", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:46", "1579251", "94.98.224.81:7998", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#7998", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:46", "1579252", "94.98.224.81:7081", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#7081", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:46", "1579253", "94.98.224.81:3523", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3523", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:46", "1579254", "94.98.224.81:9096", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9096", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:46", "1579255", "94.98.224.81:3084", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3084", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:45", "1579246", "94.98.224.81:3524", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3524", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:45", "1579247", "94.98.224.81:5801", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5801", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:45", "1579248", "94.98.224.81:21295", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21295", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:45", "1579249", "94.98.224.81:3794", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3794", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:45", "1579250", "94.98.224.81:9734", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9734", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:44", "1579240", "94.98.224.81:3689", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3689", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:44", "1579241", "94.98.224.81:17776", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#17776", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:44", "1579242", "94.98.224.81:5083", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5083", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:44", "1579243", "94.98.224.81:7788", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#7788", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:44", "1579244", "94.98.224.81:2226", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2226", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:44", "1579245", "94.98.224.81:9209", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9209", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:43", "1579235", "94.98.224.81:21323", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21323", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:43", "1579236", "94.98.224.81:12236", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12236", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:43", "1579237", "94.98.224.81:21317", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21317", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:43", "1579238", "94.98.224.81:21200", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21200", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:43", "1579239", "94.98.224.81:16098", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#16098", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:42", "1579229", "94.98.224.81:3562", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3562", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:42", "1579230", "94.98.224.81:2154", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2154", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:42", "1579231", "94.98.224.81:8104", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8104", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:42", "1579232", "94.98.224.81:12462", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12462", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:42", "1579233", "94.98.224.81:80", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#80", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:42", "1579234", "94.98.224.81:9025", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9025", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:41", "1579224", "94.98.224.81:1022", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#1022", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:41", "1579225", "94.98.224.81:16667", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#16667", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:41", "1579226", "94.98.224.81:5914", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5914", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:41", "1579227", "94.98.224.81:8576", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8576", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:41", "1579228", "94.98.224.81:3793", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3793", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:40", "1579220", "94.98.224.81:189", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#189", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:40", "1579221", "94.98.224.81:9606", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9606", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:40", "1579222", "94.98.224.81:44300", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#44300", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:40", "1579223", "94.98.224.81:12428", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12428", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:39", "1579214", "94.98.224.81:18113", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#18113", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:39", "1579215", "94.98.224.81:8912", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8912", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:39", "1579216", "94.98.224.81:9398", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9398", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:39", "1579217", "94.98.224.81:55554", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#55554", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:39", "1579218", "94.98.224.81:11", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#11", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:39", "1579219", "94.98.224.81:12379", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12379", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:38", "1579209", "94.98.224.81:21261", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21261", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:38", "1579210", "94.98.224.81:18062", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#18062", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:38", "1579211", "94.98.224.81:2210", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2210", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:38", "1579212", "94.98.224.81:8130", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8130", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:38", "1579213", "94.98.224.81:833", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#833", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:37", "1579203", "94.98.224.81:8802", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8802", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:37", "1579204", "94.98.224.81:190", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#190", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:37", "1579205", "94.98.224.81:2455", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2455", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:37", "1579206", "94.98.224.81:50101", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#50101", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:37", "1579207", "94.98.224.81:990", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#990", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:37", "1579208", "94.98.224.81:180", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#180", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:36", "1579198", "94.98.224.81:9869", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9869", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:36", "1579199", "94.98.224.81:55081", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#55081", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:36", "1579200", "94.98.224.81:3155", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3155", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:36", "1579201", "94.98.224.81:3060", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3060", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:36", "1579202", "94.98.224.81:8514", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8514", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:35", "1579192", "94.98.224.81:8121", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8121", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:35", "1579193", "94.98.224.81:9001", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9001", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:35", "1579194", "94.98.224.81:1181", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#1181", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:35", "1579195", "94.98.224.81:9151", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9151", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:35", "1579196", "94.98.224.81:10393", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#10393", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:35", "1579197", "94.98.224.81:30112", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#30112", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:34", "1579187", "94.98.224.81:20018", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#20018", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:34", "1579188", "94.98.224.81:12370", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12370", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:34", "1579189", "94.98.224.81:16027", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#16027", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:34", "1579190", "94.98.224.81:50008", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#50008", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:34", "1579191", "94.98.224.81:632", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#632", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:33", "1579181", "94.98.224.81:10250", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#10250", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:33", "1579182", "94.98.224.81:8176", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8176", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:33", "1579183", "94.98.224.81:8087", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8087", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:33", "1579184", "94.98.224.81:8061", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8061", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:33", "1579185", "94.98.224.81:63676", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#63676", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:33", "1579186", "94.98.224.81:14894", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#14894", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:32", "1579177", "94.98.224.81:593", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#593", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:32", "1579178", "94.98.224.81:12272", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12272", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:32", "1579179", "94.98.224.81:947", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#947", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:32", "1579180", "94.98.224.81:1110", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#1110", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:31", "1579172", "94.98.224.81:6561", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#6561", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:31", "1579173", "94.98.224.81:16404", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#16404", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:31", "1579174", "94.98.224.81:12427", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12427", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:31", "1579175", "94.98.224.81:13", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#13", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:31", "1579176", "94.98.224.81:16066", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#16066", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:30", "1579168", "94.98.224.81:3570", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3570", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:30", "1579169", "94.98.224.81:1962", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#1962", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:30", "1579170", "94.98.224.81:18098", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#18098", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:30", "1579171", "94.98.224.81:8029", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8029", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:29", "1579163", "94.98.224.81:2376", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2376", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:29", "1579164", "94.98.224.81:3301", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3301", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:29", "1579165", "94.98.224.81:1965", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#1965", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:29", "1579166", "94.98.224.81:9443", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9443", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:29", "1579167", "94.98.224.81:591", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#591", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:28", "1579157", "94.98.224.81:7980", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#7980", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:28", "1579158", "94.98.224.81:20547", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#20547", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:28", "1579159", "94.98.224.81:873", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#873", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:28", "1579160", "94.98.224.81:2248", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2248", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:28", "1579161", "94.98.224.81:5433", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5433", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:28", "1579162", "94.98.224.81:4300", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#4300", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:27", "1579152", "94.98.224.81:9530", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9530", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:27", "1579153", "94.98.224.81:12294", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12294", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:27", "1579154", "94.98.224.81:18035", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#18035", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:27", "1579155", "94.98.224.81:12288", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12288", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:27", "1579156", "94.98.224.81:5245", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5245", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:26", "1579149", "94.98.224.81:9023", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9023", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:26", "1579150", "94.98.224.81:5269", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5269", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:26", "1579151", "94.98.224.81:5080", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5080", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:25", "1579144", "94.98.224.81:17010", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#17010", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:25", "1579145", "94.98.224.81:789", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#789", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:25", "1579146", "94.98.224.81:7548", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#7548", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:25", "1579147", "94.98.224.81:8171", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8171", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:25", "1579148", "94.98.224.81:1801", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#1801", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:24", "1579138", "94.98.224.81:22000", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#22000", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:24", "1579139", "94.98.224.81:5439", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5439", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:24", "1579140", "94.98.224.81:2087", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2087", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:24", "1579141", "94.98.224.81:16100", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#16100", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:24", "1579142", "94.98.224.81:5256", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5256", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:24", "1579143", "94.98.224.81:8830", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8830", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:23", "1579133", "94.98.224.81:2195", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2195", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:23", "1579134", "94.98.224.81:9205", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9205", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:23", "1579135", "94.98.224.81:8549", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8549", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:23", "1579136", "94.98.224.81:1925", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#1925", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:23", "1579137", "94.98.224.81:18063", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#18063", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:22", "1579128", "94.98.224.81:6666", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#6666", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:22", "1579129", "94.98.224.81:44303", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#44303", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:22", "1579130", "94.98.224.81:7989", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#7989", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:22", "1579131", "94.98.224.81:11434", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#11434", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:22", "1579132", "94.98.224.81:9082", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9082", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:21", "1579122", "94.98.224.81:9166", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9166", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:21", "1579123", "94.98.224.81:9168", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9168", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:21", "1579124", "94.98.224.81:10380", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#10380", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:21", "1579125", "94.98.224.81:18034", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#18034", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:21", "1579126", "94.98.224.81:5252", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5252", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:21", "1579127", "94.98.224.81:55490", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#55490", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:20", "1579117", "94.98.224.81:18010", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#18010", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:20", "1579118", "94.98.224.81:513", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#513", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:20", "1579119", "94.98.224.81:5093", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5093", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:20", "1579120", "94.98.224.81:9226", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9226", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:20", "1579121", "94.98.224.81:9501", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9501", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:19", "1579112", "94.98.224.81:18065", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#18065", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:19", "1579113", "94.98.224.81:5240", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5240", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:19", "1579114", "94.98.224.81:9244", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9244", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:19", "1579115", "94.98.224.81:16048", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#16048", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:19", "1579116", "94.98.224.81:12570", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12570", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:18", "1579107", "94.98.224.81:8080", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8080", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:18", "1579108", "94.98.224.81:480", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#480", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:18", "1579109", "94.98.224.81:23082", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#23082", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:18", "1579110", "94.98.224.81:12308", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12308", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:18", "1579111", "94.98.224.81:5556", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#5556", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:17", "1579101", "94.98.224.81:95", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#95", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:17", "1579102", "94.98.224.81:9043", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9043", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:17", "1579103", "94.98.224.81:50102", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#50102", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:17", "1579104", "94.98.224.81:11180", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#11180", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:17", "1579105", "94.98.224.81:18025", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#18025", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:17", "1579106", "94.98.224.81:12145", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12145", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:16", "1579097", "94.98.224.81:21314", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#21314", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:16", "1579098", "94.98.224.81:31210", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#31210", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:16", "1579099", "94.98.224.81:12552", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12552", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:16", "1579100", "94.98.224.81:9312", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#9312", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:15", "1579092", "94.98.224.81:2271", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#2271", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:15", "1579093", "94.98.224.81:3341", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3341", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:15", "1579094", "94.98.224.81:8488", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8488", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:15", "1579095", "94.98.224.81:8910", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8910", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:15", "1579096", "94.98.224.81:3018", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#3018", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:14", "1579087", "94.98.224.81:16400", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#16400", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:14", "1579088", "94.98.224.81:8888", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8888", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:14", "1579089", "94.98.224.81:8907", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8907", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:14", "1579090", "94.98.224.81:12461", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12461", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:14", "1579091", "94.98.224.81:12371", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#12371", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:13", "1579084", "114.67.248.66:10001", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/114.67.248.66#10001", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:13", "1579085", "94.98.224.81:7657", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#7657", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:07:13", "1579086", "94.98.224.81:8475", "ip:port", "botnet_cc", "win.extreme_rat", "ExtRat", "Xtreme RAT", "", "50", "https://www.shodan.io/host/94.98.224.81#8475", "c2,extreme,shodan", "0", "juroots" "2025-09-01 12:06:37", "1579083", "202.95.9.145:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "50", "https://www.shodan.io/host/202.95.9.145#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-01 12:06:36", "1579082", "202.95.9.158:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "50", "https://www.shodan.io/host/202.95.9.158#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-01 12:06:35", "1579078", "202.95.9.131:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "50", "https://www.shodan.io/host/202.95.9.131#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-01 12:06:35", "1579079", "202.95.9.133:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "50", "https://www.shodan.io/host/202.95.9.133#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-01 12:06:35", "1579080", "202.95.9.150:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-01 12:06:37", "50", "https://www.shodan.io/host/202.95.9.150#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-01 12:06:35", "1579081", "202.95.9.139:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "50", "https://www.shodan.io/host/202.95.9.139#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-01 12:06:34", "1579073", "202.95.9.143:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "50", "https://www.shodan.io/host/202.95.9.143#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-01 12:06:34", "1579074", "202.95.9.160:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-01 12:06:37", "50", "https://www.shodan.io/host/202.95.9.160#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-01 12:06:34", "1579075", "8.153.205.30:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "50", "https://www.shodan.io/host/8.153.205.30#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-01 12:06:34", "1579076", "121.43.179.233:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-01 12:06:37", "50", "https://www.shodan.io/host/121.43.179.233#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-01 12:06:34", "1579077", "202.95.9.152:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-01 12:06:37", "50", "https://www.shodan.io/host/202.95.9.152#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-01 12:06:33", "1579068", "202.95.9.162:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "50", "https://www.shodan.io/host/202.95.9.162#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-01 12:06:33", "1579069", "202.95.9.140:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-01 12:06:36", "50", "https://www.shodan.io/host/202.95.9.140#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-01 12:06:33", "1579070", "202.95.9.137:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-01 12:06:36", "50", "https://www.shodan.io/host/202.95.9.137#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-01 12:06:33", "1579071", "202.95.9.130:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-01 12:06:36", "50", "https://www.shodan.io/host/202.95.9.130#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-01 12:06:33", "1579072", "202.95.9.154:50050", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-01 12:06:36", "50", "https://www.shodan.io/host/202.95.9.154#50050", "c2,cobaltstrike,shodan", "0", "juroots" "2025-09-01 12:06:12", "1579067", "119.29.254.242:5557", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:50:22", "50", "https://www.shodan.io/host/119.29.254.242#5557", "c2,cobaltstrike,cs-watermark-600000,shodan", "0", "juroots" "2025-09-01 12:05:59", "1579066", "121.43.37.134:4434", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-01 14:31:09", "50", "https://www.shodan.io/host/121.43.37.134#4434", "c2,cobaltstrike,cs-watermark-666666666,shodan", "0", "juroots" "2025-09-01 12:05:58", "1579064", "47.92.156.201:9443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-01 12:06:31", "50", "https://www.shodan.io/host/47.92.156.201#9443", "c2,cobaltstrike,cs-watermark-666666666,shodan", "0", "juroots" "2025-09-01 12:05:58", "1579065", "43.100.27.142:8443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-01 12:06:31", "50", "https://www.shodan.io/host/43.100.27.142#8443", "c2,cobaltstrike,cs-watermark-666666666,shodan", "0", "juroots" "2025-09-01 12:05:55", "1579063", "38.14.16.149:9200", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-01 12:06:32", "50", "https://www.shodan.io/host/38.14.16.149#9200", "c2,cobaltstrike,cs-watermark-987654321,shodan", "0", "juroots" "2025-09-01 12:05:54", "1579059", "107.175.31.178:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-01 12:06:31", "50", "https://www.shodan.io/host/107.175.31.178#443", "c2,cobaltstrike,cs-watermark-987654321,shodan", "0", "juroots" "2025-09-01 12:05:54", "1579060", "47.122.62.217:3333", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-01 12:06:32", "50", "https://www.shodan.io/host/47.122.62.217#3333", "c2,cobaltstrike,cs-watermark-987654321,shodan", "0", "juroots" "2025-09-01 12:05:54", "1579061", "47.117.1.226:8882", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-01 12:06:32", "50", "https://www.shodan.io/host/47.117.1.226#8882", "c2,cobaltstrike,cs-watermark-987654321,shodan", "0", "juroots" "2025-09-01 12:05:54", "1579062", "120.77.206.185:8089", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 04:00:14", "50", "https://www.shodan.io/host/120.77.206.185#8089", "c2,cobaltstrike,cs-watermark-987654321,shodan", "0", "juroots" "2025-09-01 12:05:53", "1579058", "104.233.252.15:8081", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-01 12:06:30", "50", "https://www.shodan.io/host/104.233.252.15#8081", "c2,cobaltstrike,cs-watermark-987654321,shodan", "0", "juroots" "2025-09-01 12:01:48", "1579057", "185.28.119.6:4444", "ip:port", "botnet_cc", "win.adaptix_c2", "None", "AdaptixC2", "", "100", "https://search.censys.io/hosts/185.28.119.6", "AdaptixC2,AS62005,BV-EU-AS,C2,censys", "0", "DonPasci" "2025-09-01 12:01:37", "1579056", "118.184.187.167:47486", "ip:port", "botnet_cc", "win.chaos", "FakeRyuk,RyukJoke,Yashma", "Chaos", "2025-09-03 04:43:35", "100", "https://search.censys.io/hosts/118.184.187.167", "AS138950,censys,Chaos,CHINATELECOM-JIANGSU-WUXI-INTERNATIONAL-IDC,panel", "0", "DonPasci" "2025-09-01 12:01:36", "1579055", "93.140.24.225:8080", "ip:port", "botnet_cc", "win.chaos", "FakeRyuk,RyukJoke,Yashma", "Chaos", "2025-09-03 04:49:10", "100", "https://search.censys.io/hosts/93.140.24.225", "AS5391,censys,Chaos,panel,T-HT", "0", "DonPasci" "2025-09-01 12:01:23", "1579052", "35.159.113.84:41371", "ip:port", "botnet_cc", "win.netsupportmanager_rat", "NetSupport", "NetSupportManager RAT", "2025-09-03 04:47:09", "100", "https://search.censys.io/hosts/35.159.113.84", "AMAZON-02,AS16509,C2,censys,Netsupport,RAT", "0", "DonPasci" "2025-09-01 12:01:22", "1579051", "178.16.53.2:4444", "ip:port", "botnet_cc", "win.dcrat", "DarkCrystal RAT", "DCRat", "2025-09-03 04:44:58", "100", "https://search.censys.io/hosts/178.16.53.2", "AS209800,C2,censys,DcRAT,METASPINNER-ASN,RAT", "0", "DonPasci" "2025-09-01 12:01:11", "1579050", "172.94.59.38:888", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "2025-09-03 04:44:50", "100", "https://search.censys.io/hosts/172.94.59.38", "AS3223,AsyncRAT,C2,censys,RAT,VOXILITY", "0", "DonPasci" "2025-09-01 12:00:57", "1579049", "89.150.40.230:80", "ip:port", "botnet_cc", "unknown_rat", "None", "Unknown RAT", "", "100", "https://search.censys.io/hosts/89.150.40.230", "AS59711,C2,censys,HZ-EU-AS,RAT,SpiceRAT", "0", "DonPasci" "2025-09-01 12:00:56", "1579048", "206.123.152.37:33672", "ip:port", "botnet_cc", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "2025-09-03 04:46:30", "100", "https://search.censys.io/hosts/206.123.152.37", "AS9009,C2,censys,M247,RAT,Remcos", "0", "DonPasci" "2025-09-01 12:00:53", "1579047", "134.122.200.57:14994", "ip:port", "botnet_cc", "win.ghost_rat", "Farfli,Gh0st RAT,PCRat", "Ghost RAT", "2025-09-02 04:00:22", "100", "https://search.censys.io/hosts/134.122.200.57", "AS152194,C2,censys,CTGSERVERLIMITED-AS-AP,Gh0st,RAT", "0", "DonPasci" "2025-09-01 12:00:35", "1579041", "82.26.104.52:7000", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "100", "https://tria.ge/250901-nmst2svk15", "AS63989,C2,triage,xworm", "0", "DonPasci" "2025-09-01 12:00:35", "1579042", "39.108.218.92:8080", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-02 04:00:18", "100", "https://search.censys.io/hosts/39.108.218.92", "ALIBABA-CN-NET,AS37963,C2,censys,CobaltStrike,cs-watermark-1234567890", "0", "DonPasci" "2025-09-01 12:00:34", "1579039", "193.187.132.175:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 05:21:59", "100", "https://search.censys.io/hosts/193.187.132.175", "AS212238,C2,CDNEXT,censys,CobaltStrike,cs-watermark-666666666", "0", "DonPasci" "2025-09-01 12:00:34", "1579040", "101.43.94.35:8081", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 05:21:30", "100", "https://search.censys.io/hosts/101.43.94.35", "AS45090,C2,censys,CobaltStrike,cs-watermark-666666666,TENCENT-NET-AP", "0", "DonPasci" "2025-09-01 12:00:33", "1579038", "180.76.244.55:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 05:21:30", "100", "https://search.censys.io/hosts/180.76.244.55", "AS38365,BAIDU,C2,censys,CobaltStrike,cs-watermark-666666666", "0", "DonPasci" "2025-09-01 12:00:31", "1579037", "129.28.180.115:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 05:21:58", "100", "https://search.censys.io/hosts/129.28.180.115", "AS45090,C2,censys,CobaltStrike,cs-watermark-100000,TENCENT-NET-AP", "0", "DonPasci" "2025-09-01 12:00:29", "1579036", "203.9.150.250:8081", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 05:21:58", "100", "https://search.censys.io/hosts/203.9.150.250", "AS133752,C2,censys,CobaltStrike,cs-watermark-987654321,LEASEWEB-APAC-HKG-10", "0", "DonPasci" "2025-09-01 12:00:14", "1579035", "45.74.8.89:3601", "ip:port", "botnet_cc", "win.asyncrat", "None", "AsyncRAT", "", "100", "None", "AsyncRAT,RAT", "0", "abuse_ch" "2025-09-01 11:51:02", "1579031", "103.20.103.50:3778", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "100", "None", "Mirai", "0", "elfdigest" "2025-09-01 10:00:47", "1579020", "196.251.71.239:6000", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "100", "None", "XWorm", "0", "abuse_ch" "2025-09-01 09:55:29", "1579019", "196.251.73.126:65200", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "100", "None", "XWorm", "0", "abuse_ch" "2025-09-01 08:50:49", "1578998", "84.242.44.234:443", "ip:port", "botnet_cc", "win.deimos_c2", "None", "DeimosC2", "2025-09-03 04:48:53", "75", "None", "Deimos,drb-ra", "0", "abuse_ch" "2025-09-01 08:01:42", "1578992", "172.232.234.56:1337", "ip:port", "botnet_cc", "win.empire_downloader", "None", "Empire Downloader", "", "100", "https://search.censys.io/hosts/172.232.234.56", "AKAMAI-LINODE-AP,AS63949,C2,censys,Starkillerc2", "0", "DonPasci" "2025-09-01 08:01:28", "1578991", "65.108.80.194:3333", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "2025-09-03 04:48:27", "100", "https://search.censys.io/hosts/65.108.80.194", "AS24940,censys,EvilGoPhish,HETZNER-AS,panel,Phishing", "0", "DonPasci" "2025-09-01 08:01:12", "1578990", "172.94.111.217:8898", "ip:port", "botnet_cc", "win.dcrat", "DarkCrystal RAT", "DCRat", "2025-09-03 04:44:49", "100", "https://search.censys.io/hosts/172.94.111.217", "AS9009,C2,censys,DcRAT,M247,RAT", "0", "DonPasci" "2025-09-01 08:01:06", "1578989", "112.124.61.206:80", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "2025-09-03 04:43:29", "100", "https://search.censys.io/hosts/112.124.61.206", "ALIBABA-CN-NET,AS37963,C2,censys,Mythic", "0", "DonPasci" "2025-09-01 08:00:43", "1578988", "103.86.44.18:80", "ip:port", "botnet_cc", "win.ghost_rat", "Farfli,Gh0st RAT,PCRat", "Ghost RAT", "2025-09-02 04:00:23", "100", "https://search.censys.io/hosts/103.86.44.18", "AS138195,C2,censys,Gh0st,MOACKCOLTD-AS-AP,RAT", "0", "DonPasci" "2025-09-01 08:00:31", "1578987", "49.232.21.222:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-02 04:00:16", "100", "https://search.censys.io/hosts/49.232.21.222", "AS45090,C2,censys,CobaltStrike,cs-watermark-666666666,TENCENT-NET-AP", "0", "DonPasci" "2025-09-01 08:00:30", "1578986", "129.28.180.115:8081", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2025-09-03 05:21:21", "100", "https://search.censys.io/hosts/129.28.180.115", "AS45090,C2,censys,CobaltStrike,cs-watermark-100000,TENCENT-NET-AP", "0", "DonPasci" "2025-09-01 07:50:08", "1578985", "18.197.239.109:14147", "ip:port", "botnet_cc", "win.njrat", "Bladabindi,Lime-Worm", "NjRAT", "", "100", "None", "NjRAT", "0", "abuse_ch" "2025-09-01 07:35:50", "1578983", "192.121.82.37:9779", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "", "100", "None", "XWorm", "0", "abuse_ch" "2025-09-01 07:05:22", "1578982", "104.245.106.135:80", "ip:port", "botnet_cc", "win.nworm", "nw0rm,NWorm", "N-W0rm", "", "100", "None", "N-W0rm", "0", "abuse_ch" "2025-09-01 06:54:16", "1578979", "49.12.240.21:443", "ip:port", "botnet_cc", "win.vidar", "None", "Vidar", "", "100", "", "Vidar", "0", "crep1x" "2025-09-01 06:54:16", "1578980", "88.99.122.151:443", "ip:port", "botnet_cc", "win.vidar", "None", "Vidar", "", "100", "", "Vidar", "0", "crep1x" "2025-09-01 06:03:59", "1578970", "87.120.191.44:45", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "100", "None", "Mirai", "0", "elfdigest" "2025-09-01 06:00:58", "1578973", "45.88.91.9:6969", "ip:port", "botnet_cc", "win.quasar_rat", "CinaRAT,QuasarRAT,Yggdrasil", "Quasar RAT", "", "100", "https://tria.ge/250901-gmcz9sbm8z", "AS399486,C2,quasar,rat,triage", "0", "DonPasci" "2025-09-01 05:55:54", "1578903", "5.182.206.88:6000", "ip:port", "botnet_cc", "win.xworm", "None", "XWorm", "2025-09-01 05:55:34", "50", "", "None", "0", "pitachu" "2025-09-01 05:55:46", "1578936", "141.11.167.247:6387", "ip:port", "botnet_cc", "win.venom", "None", "Venom RAT", "", "75", "https://app.any.run/tasks/35071a06-24b9-4ef4-b6c8-0d3955eb0575", "None", "0", "tanner" "2025-09-01 05:55:26", "1578511", "45.143.203.229:443", "ip:port", "payload_delivery", "js.fakeupdates", "FakeUpdate,GhoLoader,SocGholish", "FAKEUPDATES", "", "100", "None", "SocGholish", "0", "threatcat_ch" # Number of entries: 989