Scam Campaign

Dropped-By-Amadey Infrastructure Cluster

Identified on 4/22/2026

Primary Entity

domain

150.251.145.178

High Risk

Flagged by Google Safe Browsing
No SSL certificate

Campaign Narrative

This cluster centers on 649 connected domains tagged as GuLoader, NorthKorea, trojan. The domains include lunme.onters.sbs, lungx.hollower.sbs, lun.marvek.live, lunt.revio.live, lunq.revio.live, lunts.hollower.sbs, lunqv.hollower.sbs, lunhx.onters.sbs, lunhx.hollower.sbs, mytaxclientcopy.com, file-herunterladen.site, 62.133.62.176, 194.156.102.210, 45.225.187.6, 2.192.102.162, transfer.weepee.io, 109.205.213.2, pastee.dev, easyhostweb.com, heavens-gate.top and 629 more. 649 of these domains have been flagged by threat intelligence feeds including Google Safe Browsing and URLhaus.

Flagged domains in this cluster, lunme.onters.sbs, lungx.hollower.sbs, lun.marvek.live, lunt.revio.live, lunq.revio.live, lunts.hollower.sbs, lunqv.hollower.sbs, lunhx.onters.sbs, lunhx.hollower.sbs, mytaxclientcopy.com, file-herunterladen.site, 62.133.62.176, 194.156.102.210, 45.225.187.6, 2.192.102.162, transfer.weepee.io, 109.205.213.2, pastee.dev, easyhostweb.com, heavens-gate.top and 629 more.

Do not click links to any of the flagged domains. If you have visited one, check your accounts for unauthorized activity and consider changing your passwords. You can report suspicious contacts to the FTC at reportfraud.ftc.gov or to the FCC at consumercomplaints.fcc.gov.

This campaign was identified through automated analysis of threat intelligence feeds and entity relationship mapping.

Entity Roster

Domains (649)

lunme.onters.sbsHigh Risk
lungx.hollower.sbsHigh Risk
lun.marvek.liveHigh Risk
lunt.revio.liveHigh Risk
lunq.revio.liveHigh Risk
lunts.hollower.sbsHigh Risk
lunqv.hollower.sbsHigh Risk
lunhx.onters.sbsHigh Risk
lunhx.hollower.sbsHigh Risk
mytaxclientcopy.comHigh Risk
file-herunterladen.siteHigh Risk
62.133.62.176High Risk
194.156.102.210High Risk
45.225.187.6High Risk
2.192.102.162High Risk
transfer.weepee.ioHigh Risk
109.205.213.2High Risk
pastee.devHigh Risk
easyhostweb.comHigh Risk
heavens-gate.topHigh Risk
zrd6omm630kx5p7.topHigh Risk
road-to-hell.topHigh Risk
zeftasarim.comHigh Risk
salelegalsteroids.comHigh Risk
62.60.226.97High Risk
7070-ppxcx-a1-3gg5ufwp666ee644-1300076834.tcb.qcloud.laHigh Risk
quickstep.fluxobase.infoHigh Risk
repost.punto-viva.infoHigh Risk
34.58.195.70High Risk
xiazaijd.clickHigh Risk
hp1d.com.brHigh Risk
157.245.121.29High Risk
62.60.226.159High Risk
visualls.trueblog.sbsHigh Risk
qpgroup.topHigh Risk
valfanto.comHigh Risk
fil.ydns.euHigh Risk
wintecs.storeHigh Risk
b9a9ec0ece343a68.brambleufer.ruHigh Risk
assets.fxd-hz-tk-loop.in.netHigh Risk
82.38.4.189High Risk
80.253.251.8High Risk
un1rw11q4u.comHigh Risk
pub-6f7fb0d0ae0f40fbad68520fce393d92.r2.devHigh Risk
194.150.220.218High Risk
greenfields-world.ccHigh Risk
sbstorage.cfdHigh Risk
adraaltinoluk.comHigh Risk
explorer.vgHigh Risk
rewardhunt.xyzHigh Risk
79.124.59.142High Risk
shahamanatme.comHigh Risk
zonawood.orgHigh Risk
ugurhuseyn.azHigh Risk
gharnt.comHigh Risk
185.252.24.15High Risk
id3702579photo-image-docs.comHigh Risk
www.almacensantangel.comHigh Risk
forest-entity.ccHigh Risk
madcows.co.nzHigh Risk
three.s3.cubbit.euHigh Risk
files.catbox.moeHigh Risk
kariyersokagi.com.trHigh Risk
activegroup-bd.comHigh Risk
ameyiando.comHigh Risk
webdriver-select.vgHigh Risk
09c1d5c3-1a6e-4c05-8e4e-eff75c6b5dd6.usrfiles.comHigh Risk
niril.sbsHigh Risk
blankeyeo.comHigh Risk
teamrising.aeHigh Risk
91.92.242.3High Risk
bvaco.comHigh Risk
192.3.101.19High Risk
talentaclub.comHigh Risk
bildify.coHigh Risk
okullu.comHigh Risk
eyasinarafat.comHigh Risk
80.71.224.185High Risk
bafybeidv6v7pezugmfpzwl2k2ni56nhvlyv5vaibriswtsthae5loxskpi.ipfs.dweb.linkHigh Risk
bursaelektriktamir.comHigh Risk
myjezworld.kesug.comHigh Risk
www.pastebin.czHigh Risk
refaccionesalma.com.mxHigh Risk
sae20.s3.cubbit.euHigh Risk
umxtxhub.za.comHigh Risk
sunchernical.comHigh Risk
mobshah.comHigh Risk
38.240.55.52High Risk
192.210.186.208High Risk
enotbanknoti.coHigh Risk
community.gtst.grHigh Risk
alzapdigoo.netHigh Risk
107.173.47.137High Risk
one-graup.comHigh Risk
gitlab.comHigh Risk
ccleaner.glHigh Risk
blue-oceans.netHigh Risk
sixmexicos.comHigh Risk
andrefelipedonascime1772127941945.0062186.meusitehostgator.com.brHigh Risk
casadoserralheirosaocarlos.com.brHigh Risk
85.11.167.183High Risk
64.95.12.162High Risk
mountaingoats4sale.xyzHigh Risk
185.70.186.193High Risk
geo-foundation.vgHigh Risk
shiftspace.creativemindsuaeu.comHigh Risk
158.94.211.63High Risk
web.opendrive.comHigh Risk
textbin.netHigh Risk
katz.adv.brHigh Risk
147.124.212.141High Risk
shardaherbals.comHigh Risk
www.kotojuki.comHigh Risk
bafybeidp7zdy2lu6yxvbgoev4b6xokuaa6jljr34vkflxzel2ya2gc3plm.ipfs.dweb.linkHigh Risk
bafybeigkyehyj2ynjwmj3v5sc4j27rmy2dumljfurr7kshzu7fyxkfbx7u.ipfs.dweb.linkHigh Risk
62.60.226.40High Risk
9103843.duckdns.orgHigh Risk
www.9103843.duckdns.orgHigh Risk
www.84920433.duckdns.orgHigh Risk
echorp.shopHigh Risk
92031819.duckdns.orgHigh Risk
vmi3034867.contaboserver.netHigh Risk
www.neronpidaras.it.comHigh Risk
affectionate-easley.121-127-34-164.plesk.pageHigh Risk
arilprivate.storexyz.web.idHigh Risk
down.1756520.xyzHigh Risk
justwatch.lifeHigh Risk
10cricofficial.comHigh Risk
84920433.duckdns.orgHigh Risk
bobnet.exiled.fitHigh Risk
www.0837234.duckdns.orgHigh Risk
www.92031819.duckdns.orgHigh Risk
0837234.duckdns.orgHigh Risk
www.r34fa352.duckdns.orgHigh Risk
chanchanmiraixd.duckdns.orgHigh Risk
r34fa352.duckdns.orgHigh Risk
s8.vizja.ccHigh Risk
nmgm-nmm.vipHigh Risk
fenbushijujuefuwu.comHigh Risk
musing-visvesvaraya.45-90-98-218.plesk.pageHigh Risk
www.45-90-98-218.plesk.pageHigh Risk
raw.flameblox.comHigh Risk
hanzzmypanel.paneldo.my.idHigh Risk
asteriaproject.dstat.clickHigh Risk
docsfakegen.comHigh Risk
objective-roentgen.121-127-34-164.plesk.pageHigh Risk
mailserver.ccsnetwork.cnHigh Risk
pls.ddosme.web.idHigh Risk
dndn3829.duckdns.orgHigh Risk
img.ipxxxx.comHigh Risk
proxyzabc.zabc.netHigh Risk
www.coolcams.duckdns.orgHigh Risk
coolcams.duckdns.orgHigh Risk
neronpidaras.it.comHigh Risk
185.222.160.157High Risk
188.137.230.88High Risk
s3.g.s4.mega.ioHigh Risk
194.41.113.246High Risk
touchskins.ioHigh Risk
188.137.183.163High Risk
d8.tfdl.netHigh Risk
45.155.69.85High Risk
5.252.21.239High Risk
download.rajpurohitdairyy.inHigh Risk
74.0.32.141High Risk
158.94.211.222High Risk
150.251.145.201High Risk
85.239.147.6High Risk
130.12.180.43High Risk
id8654.cfdHigh Risk
192.177.26.196High Risk
80.89.224.210High Risk
api.touchskins.ioHigh Risk
188.137.232.95High Risk
baritonclick.onlineHigh Risk
kinetiqa.spaceHigh Risk
158.94.208.168High Risk
188.137.252.155High Risk
185.182.82.13High Risk
158.94.208.7High Risk
store-na-phx-5.gofile.ioHigh Risk
74.0.32.149High Risk
196.251.107.104High Risk
api.wewpwsw.suHigh Risk
temp.shHigh Risk
188.137.249.159High Risk
185.196.9.241High Risk
link.storjshare.ioHigh Risk
app-dn.b-cdn.netHigh Risk
185.241.208.90High Risk
208.64.33.107High Risk
visual.trueblog.sbsHigh Risk
vinievent.comHigh Risk
ventira.digitalHigh Risk
80.89.237.130High Risk
45.131.182.252High Risk
80.89.237.112High Risk
188.137.229.136High Risk
166.1.89.46High Risk
150.251.145.178High Risk
193.17.95.79High Risk
188.137.230.45High Risk
visuals.trueblog.sbsHigh Risk
45.131.182.177High Risk
188.137.250.229High Risk
visuall.trueblog.sbsHigh Risk
188.137.254.207High Risk
104.194.152.180High Risk
80.89.238.200High Risk
45.131.182.242High Risk
80.89.237.190High Risk
188.137.224.103High Risk
qsve.cyrd.liveHigh Risk
shop.pestodo.deHigh Risk
getryos.comHigh Risk
103.27.157.144High Risk
188.137.224.92High Risk
qploits.onlineHigh Risk
app.enekora.comHigh Risk
keitarocheats.comHigh Risk
59.88.45.188High Risk
117.216.5.20High Risk
182.60.11.164High Risk
41.146.14.165High Risk
120.157.46.38High Risk
123.209.193.86High Risk
113.165.6.38High Risk
120.157.72.234High Risk
171.235.194.253High Risk
120.157.159.171High Risk
37.142.77.163High Risk
120.157.56.105High Risk
14.236.84.25High Risk
171.117.30.233High Risk
91.80.136.9High Risk
123.210.131.167High Risk
41.146.17.19High Risk
77.189.241.96High Risk
59.182.90.199High Risk
113.168.249.76High Risk
171.241.208.124High Risk
120.157.229.220High Risk
88.8.16.9High Risk
101.168.56.102High Risk
116.105.48.197High Risk
105.225.136.158High Risk
91.80.144.121High Risk
14.236.182.73High Risk
41.146.1.154High Risk
83.224.162.132High Risk
123.31.81.229High Risk
113.176.132.141High Risk
178.50.218.234High Risk
92.40.112.34High Risk
86.150.68.134High Risk
59.182.119.128High Risk
14.236.247.68High Risk
120.157.72.59High Risk
95.127.248.192High Risk
116.110.179.199High Risk
34.171.22.107High Risk
116.101.73.68High Risk
95.127.250.241High Risk
46.124.33.133High Risk
46.124.40.3High Risk
83.224.151.243High Risk
152.173.199.182High Risk
91.80.129.100High Risk
88.86.246.233High Risk
178.50.166.61High Risk
123.28.175.23High Risk
120.61.247.2High Risk
41.146.14.19High Risk
185.166.91.145High Risk
91.80.161.240High Risk
88.13.214.114High Risk
83.224.148.34High Risk
113.174.245.185High Risk
117.206.96.104High Risk
47.152.112.236High Risk
78.132.114.25High Risk
www.nmysq.topHigh Risk
www.asdfgsdfgxcvbvcxasd-oss.topHigh Risk
googdownload.googcdngoogchromeleownload.topHigh Risk
klsmw.oss-cn-hongkong.aliyuncs.comHigh Risk
pub-826b2258a9f74a40abe9ee543f2409a4.r2.devHigh Risk
tenyunat-99viplawt.comHigh Risk
www.sogou-shurufa.helpHigh Risk
bf-chromefdghd.oss-cn-hongkong.aliyuncs.comHigh Risk
sgnfyn.oss-cn-shenzhen.aliyuncs.comHigh Risk
www.irbis2000.comHigh Risk
www.aliyunnorth-oss.topHigh Risk
download.google-chrome.cyouHigh Risk
tranyasy.com.cnHigh Risk
hjendcs.x98665.comHigh Risk
daw.tos-cn-hongkong.volces.comHigh Risk
orayz.comHigh Risk
187.204.201.242High Risk
94.156.152.67High Risk
61.160.213.179High Risk
113.116.149.250High Risk
114.252.224.245High Risk
45.141.26.73High Risk
183.30.204.216High Risk
185.196.10.230High Risk
141.11.107.134High Risk
176.65.139.42High Risk
130.12.182.211High Risk
expltsq.zzux.comHigh Risk
79.110.49.146High Risk
45.87.43.154High Risk
58.74.6.14High Risk
staying-heavily-meaning-blowing.trycloudflare.comHigh Risk
creations-venture-traditional-stainless.trycloudflare.comHigh Risk
5.61.40.97High Risk
156.233.71.230High Risk
195.16.44.75High Risk
87.120.219.222High Risk
84.32.98.188High Risk
84.32.98.123High Risk
91.235.116.139High Risk
185.23.238.149High Risk
94.154.32.153High Risk
118.107.41.238High Risk
63.176.144.33High Risk
142.248.228.197High Risk
159.89.97.23High Risk
5.59.248.236High Risk
161.97.148.194High Risk
192.210.186.220High Risk
206.123.145.26High Risk
103.125.219.204High Risk
192.3.177.145High Risk
oficialrem.duckdns.orgHigh Risk
aviator-chek.onlineHigh Risk
18.194.67.137High Risk
171.25.158.78High Risk
advise-visual-playstation-closer.trycloudflare.comHigh Risk
file.gardenHigh Risk
implementing-theft-metal-justin.trycloudflare.comHigh Risk
antimalwarehub.comHigh Risk
132.145.235.110High Risk
64.89.163.109High Risk
45.128.118.140High Risk
www.antimalwarehub.comHigh Risk
186.169.43.64High Risk
documentos.microsoft-waresystems.comHigh Risk
185.196.41.180High Risk
156.226.174.195High Risk
bafybeiccl6irsru52xsyiuy4pqlitflw4f57xovkfpk5w2wnhtmeaqpjuy.ipfs.dweb.linkHigh Risk
pub-ee57b144a43f41809d8fab6adf01d8b6.r2.devHigh Risk
tradingmastery.infoHigh Risk
sgv.app.brHigh Risk
chinasite.com.brHigh Risk
bafybeibwz6lzwo6u5gkhp3ydl4te3hl3plfkypox6mnejssqwfrpdsmqoy.ipfs.dweb.linkHigh Risk
makotoko.comHigh Risk
www.teslasuit.toHigh Risk
ziaintegracion.comHigh Risk
deejay-florin.roHigh Risk
openlineseguros.com.brHigh Risk
shariels.42web.ioHigh Risk
pub-3bc1de741f8149f49bdbafa703067f24.r2.devHigh Risk
87.121.84.80High Risk
87.121.84.57High Risk
45.13.239.70High Risk
87.121.84.56High Risk
206.189.107.18High Risk
31.56.229.221High Risk
64.23.205.168High Risk
68.183.46.3High Risk
31.57.216.121High Risk
178.16.52.44High Risk
158.94.211.102High Risk
mgtms.ccHigh Risk
178.16.53.82High Risk
91.92.241.109High Risk
178.16.55.63High Risk
158.94.211.104High Risk
158.94.211.103High Risk
91.92.241.152High Risk
158.94.211.100High Risk
91.92.240.222High Risk
158.94.208.174High Risk
158.94.210.93High Risk
158.94.208.52High Risk
178.16.52.18High Risk
158.94.211.101High Risk
mainly-trim-lizard.cloudpub.ruHigh Risk
cc-a89.pages.devHigh Risk
130.12.181.60High Risk
178.16.54.109High Risk
yagla.tvHigh Risk
fullsofts.orgHigh Risk
kizarmenu.topHigh Risk
zontiz.comHigh Risk
wpgbf1zg-5500.euw.devtunnels.msHigh Risk
anondrop.netHigh Risk
openclaw.official-version.comHigh Risk
45.59.113.84High Risk
rizvexeno.wsHigh Risk
raw.githubusercontent.comHigh Risk
www.sunamien.jpHigh Risk
dl.armour-inc-down.netHigh Risk
vaultx.lolHigh Risk
deusxeno.wsHigh Risk
github.guruHigh Risk
chilloutvrhub.comHigh Risk
uc3132c9008b1e5420b76bdaf758.dl.dropboxusercontent.comHigh Risk
uc450c98c4c09a1c00cf0340baec.dl.dropboxusercontent.comHigh Risk
azuro.proHigh Risk
1poz.myHigh Risk
sfrc.ckmo.liveHigh Risk
defragglerupdate.comHigh Risk
servecdn.myHigh Risk
cloflart.comHigh Risk
5.39.218.69High Risk
nelark.icuHigh Risk
185.138.89.117High Risk
floneimf.ydns.euHigh Risk
us04web.zoom.us.hmail.usHigh Risk
amaranthinerose.comHigh Risk
144.172.96.63High Risk
83.217.208.93High Risk
zoomaccess.usHigh Risk
file-viewer.alcapps.comHigh Risk
188.137.245.221High Risk
216.126.225.120High Risk
144.172.112.190High Risk
us06web.zoom.us.ez2.usHigh Risk
bambooairways.vnHigh Risk
adobe-viewer.mutluay.comHigh Risk
us06web.zoom.us.tobuy.usHigh Risk
adobe-viewer.iziliang.comHigh Risk
us05web.zoom.us.1ax.usHigh Risk
us06web.zoom.patho.usHigh Risk
ssa.portal.tobuy.usHigh Risk
ssa.portal.eigenlicht.usHigh Risk
portal.ssa.s-w-a-t.usHigh Risk
ssa.portal.cogitar.usHigh Risk
us04web.zoom.us.3cm.usHigh Risk
newapps.siteHigh Risk
91.92.243.119High Risk
109.107.168.138High Risk
176.65.148.55High Risk
94.156.102.255High Risk
89.45.6.18High Risk
147.50.253.3High Risk
file-viewer.detprod.comHigh Risk
ssa.portal.ct1.usHigh Risk
ssa.portal.muratov.usHigh Risk
allcheat.netlify.appHigh Risk
195.177.94.139High Risk
195.177.94.234High Risk
195.177.94.85High Risk
195.177.94.155High Risk
www.js-hurling.comHigh Risk
us05web.zoom.us.vdns.usHigh Risk
adobe-viewer.parallelsw.comHigh Risk
local-host.lifeHigh Risk
uploads.otzo.comHigh Risk
196.251.107.24High Risk
91.232.103.250High Risk
coffetime.xyzHigh Risk
195.177.94.100High Risk
94.154.32.89High Risk
94.154.32.148High Risk
storage-secure.lostproject.itHigh Risk
thekingofarms.comHigh Risk
bmh-global.myfirewall.orgHigh Risk
96.44.159.250High Risk
globalipgeneratings.comHigh Risk
96.44.154.195High Risk
msidownloads.duckdns.orgHigh Risk
94.154.32.49High Risk
pablo.yzz.meHigh Risk
zynova.yzz.meHigh Risk
45.225.135.61High Risk
bafybeiedkdwsp77zcvi6477lovtfde7rwsjdz7654kdnrgmciqg5mfhwh4.ipfs.dweb.linkHigh Risk
bafybeihamvbzrm2tsifa4s7xruhfnsgnkzgtk2jqwj6cwgmdxj4wqe5lm4.ipfs.dweb.linkHigh Risk
dmaii.coHigh Risk
fertas.com.trHigh Risk
96.44.159.218High Risk
compimento.baHigh Risk
107.172.135.4High Risk
89.185.84.13High Risk
bafybeibqcivjhwg2msil5g62did64uhtptlf7epidbrat4gexerzfv5mmq.ipfs.dweb.linkHigh Risk
pub-4c182737706e41d29aee6cc5517f834d.r2.devHigh Risk
45.202.243.118High Risk
206.189.148.189High Risk
156.229.164.94High Risk
59.88.50.106High Risk
144.31.221.96High Risk
javascriptupdate.comHigh Risk
45.234.176.202High Risk
ip-2422.proline.net.uaHigh Risk
91.218.66.241High Risk
176.65.139.45High Risk
45.135.194.23High Risk
109.72.124.157High Risk
154.9.241.34High Risk
45.135.194.23.ptr.pfcloud.networkHigh Risk
85.122.114.19High Risk
91.92.242.13High Risk
130.12.180.124High Risk
193.32.162.53High Risk
144.172.92.217High Risk
mvirdi.comHigh Risk
gettpose2far.comHigh Risk
bnet.playm8ru.winHigh Risk
bnet-api.playm8ru.winHigh Risk
worcesteronline.comHigh Risk
stau4.comHigh Risk
larrycornies.comHigh Risk
144.172.92.176High Risk
144.172.108.207High Risk
144.172.92.213High Risk
144.172.101.164High Risk
144.172.105.45High Risk
144.172.114.22High Risk
144.172.115.244High Risk
144.172.92.169High Risk
216.126.239.98High Risk
212.224.107.246High Risk
94.154.32.198High Risk
217.156.65.56High Risk
docinstall.topHigh Risk
172.86.116.238High Risk
144.172.102.83High Risk
195.177.94.228High Risk
192.158.232.90High Risk
195.177.94.239High Risk
heavyvaultpanel.topHigh Risk
144.172.94.254High Risk
144.172.91.24High Risk
172.86.116.191High Risk
144.172.92.199High Risk
144.172.92.187High Risk
babakbaru.icuHigh Risk
bunq.appswifthub.comHigh Risk
conscomms.comHigh Risk
fkwy66.comHigh Risk
pub-6d532b12105b49bd96b29361979b87a1.r2.devHigh Risk
31.57.147.191High Risk
pub-72dca37cb1ce4100a2f8db504cb4502f.r2.devHigh Risk
server.ayeeman.topHigh Risk
195.177.94.72High Risk
195.177.94.163High Risk
195.177.94.99High Risk
45.13.237.121High Risk
ssdocinfo.infoHigh Risk
paper0post.comHigh Risk
id8965.comHigh Risk
night-client-hub.lovable.appHigh Risk
whreceiverrrrrrrrr.ruHigh Risk
chromium-client.github.ioHigh Risk
whrc.ruHigh Risk
imagefiles-backup.oss-ap-southeast-7.aliyuncs.comHigh Risk
google-2gy.pages.devHigh Risk
186.169.75.221High Risk
sahammbank.helpHigh Risk
107.173.143.35High Risk
96.44.159.145High Risk
winston.rf.gdHigh Risk
crypterrrrr.42web.ioHigh Risk
excellence02.rf.gdHigh Risk
cocinanikkei.com.peHigh Risk
controliumbt.comHigh Risk
allsydevs.comHigh Risk
91.92.243.117High Risk
209.54.102.132High Risk
84.38.129.77High Risk
192.3.136.196High Risk
198.23.177.216High Risk
igw.myfirewall.orgHigh Risk
ssagntroplexa.comHigh Risk
136.0.213.249High Risk
pub-1ec2bbf13b3f4e7a9f948cb72ded816d.r2.devHigh Risk
us06web.zoom.us.vdns.usHigh Risk
pub-c62500800d9244beabd2934a10b4770b.r2.devHigh Risk
167.148.41.234High Risk
brsrys.comHigh Risk
pub-43852e2f13f44540903efdf59f8a7582.r2.devHigh Risk
server.admirableskreen.topHigh Risk
wesneet.it.comHigh Risk
ov.uqoo.nlHigh Risk
192.227.211.41High Risk
admin.sevfrtdxs.comHigh Risk
descamisad.sbsHigh Risk
cloud.pearlpeel.comHigh Risk
no.windowupdateservice.comHigh Risk
pub-aa4b4a4b76964ef7b9e03a074612353a.r2.devHigh Risk
start-review-myacc.comHigh Risk
file-na-phx-1.gofile.ioHigh Risk
post-host.screenconnect.comHigh Risk
admin.hggg.storeHigh Risk
ovv.uqoo.nlHigh Risk
dmv.uqoo.nlHigh Risk
preciosasjoyitas.com.mxHigh Risk
pub-cb25e0ca1e5b4d3b8b4dc881580f5473.r2.devHigh Risk
teak.gen.trHigh Risk
union.macoms.laHigh Risk
sbstorage.clubHigh Risk
file-eu-par-2.gofile.ioHigh Risk
pub-4d92724396914938abfc9555857af443.r2.devHigh Risk
pub-20c44d94ab5743fbb2453666aab8608b.r2.devHigh Risk
pub-7a7113e589a343048ed0ffdfeb7cd4a6.r2.devHigh Risk
pub-ddc283035a91433f85755edb9a06e562.r2.devHigh Risk
googmeetinginvitation.comHigh Risk
stradisamplix.comHigh Risk
api.aloparatoriuz.comHigh Risk
172.94.9.224High Risk
woupp.comHigh Risk
94.154.32.127High Risk
indiasproperty.comHigh Risk
sellmeyourbiz.comHigh Risk
virtual-cdncloud.sbsHigh Risk
94.154.32.129High Risk
zxjasjkask1992.sbsHigh Risk
www.unique.hatumena.comHigh Risk
46.62.197.232High Risk
107.173.143.118High Risk
dpaste.comHigh Risk
pub-bc2333d37e9548c4acf40d5cc159c375.r2.devHigh Risk
loader-400.pages.devHigh Risk
tb2mod.comHigh Risk
silverhost.vgHigh Risk
node2-py-store.comHigh Risk
magnusworkspace.comHigh Risk
s1-rarlab.comHigh Risk
updateservice1-telegramweb.comHigh Risk
py-installer.ccHigh Risk
s3-python.ccHigh Risk
communicationfirewall-security.ccHigh Risk
bigbrainsholdings.comHigh Risk
web3-walletnotify.ccHigh Risk
debank-api.ccHigh Risk
107.175.246.3High Risk
65.20.101.17High Risk
195.177.94.184High Risk
domain-monitoring.ccHigh Risk
45.156.87.230High Risk
45.207.157.11High Risk
tenbravoid.icuHigh Risk
photo-id5631894.comHigh Risk
144.172.105.88High Risk
wcdr.cyrb.liveHigh Risk
dropmefiles.comHigh Risk
limewire.comHigh Risk
ext-checkdin.vercel.appHigh Risk

Data Sources

Google Safe Browsing
URLhaus

Related Campaigns

Other campaigns that share phone numbers, domains, or companies with this one.

Asyncrat Infrastructure Cluster649 shared entities
Connectwise Infrastructure Cluster649 shared entities
Dropped-By-Amadey Infrastructure Cluster647 shared entities
Rev-Base64-Loader Infrastructure Cluster647 shared entities
Censys Infrastructure Cluster646 shared entities
Gafgyt Infrastructure Cluster646 shared entities
Ascii Infrastructure Cluster646 shared entities
Ascii Infrastructure Cluster644 shared entities
Archive Scam — lun.marvek.live632 shared entities
Debt Reduction Robocall Campaign623 shared entities
Dropped call or no message Robocall Campaign586 shared entities
Lotteries, prizes & sweepstakes Robocall Campaign580 shared entities
Lotteries, prizes & sweepstakes Robocall Campaign558 shared entities
Dropped call or no message Robocall Campaign547 shared entities
Medical & prescriptions Robocall Campaign104 shared entities

Scam Prevention Resources

Parking Revenue Recovery Services Doesn't Exist

A fake company sends official-looking parking violation notices through the mail. The letters demand payment for violations that never happened at places you never parked.

Dating Site Wants Crypto to Unlock Your Match

The voting process never ends. The fixes cost more crypto each time. The girl you picked doesn't exist.

Scratch-Off Cards Promise Free Cruises and Luxury Showcases

Those winning scratch-off cards in your mailbox aren't what they seem. The cruise invitation is fake, and the real pitch comes later.

QR Code Traffic Tickets Arrive by Text and Mail

Fake court notices with QR codes are hitting phones and mailboxes. The codes lead to credential-harvesting sites designed to steal your personal information.

(888) 269-4978 Won't Stop Calling About Loans You Never Applied For

This number has generated over 1,300 complaints in 30 days. The victims all have one thing in common: phantom loan applications they never submitted.

View all articles

NordProtect — Identity theft monitoring and recovery

NordProtect watches for your personal info on the dark web, monitors your credit, and covers up to $1M in identity theft insurance.

Get NordProtectAffiliate link. We may earn a commission.

View all campaigns