02-19-2024, 04:54 PM
Code:
{
"country": "RS",
"date": "2023.10.31",
"files": "archive.zip",
"id": "12960862",
"isp": "TELEKOM-SRBIJA",
"links": [
"homageforum.com",
"2020.limundo.com",
"katana.facebook.com",
"eon.tv",
"myaccount.google.com",
"10.32.34.253",
"10.32.224.119",
"mozzartbet.com",
"10.0.0.211",
"instructables.com",
"192.168.2.11",
"moj.esdnevnik.rs",
"github.com",
"id.cisco.com",
"10.0.11.7",
"mega.nz",
"instructables.com",
"192.168.33.1",
"ekka.rs",
"10.34.1.230",
"10.0.11.5",
"watchuseek.com",
"192.168.10.254",
"cousinsuk.com",
"limundo.com",
"edukacije.acas.rs",
"10.32.224.102",
"192.168.10.11",
"elitemadzone.org",
"login.yahoo.com",
"limundo.com",
"arceurotrade.co.uk",
"amazon.com",
"10.0.11.6",
"10.32.225.202",
"10.32.224.114",
"kupujemprodajem.com",
"customerconnect.vmware.com",
"myki.watch",
"10.32.33.101",
"cnczone.com",
"mojsbb.rs",
"mgelectronic.rs",
"10.32.224.101",
"homage-forum.com",
"192.168.10.11",
"knowde.zendesk.com",
"m.kupujemprodajem.com",
"twitter.com",
"homage-forum.com",
"kupindo.com",
"192.168.88.1",
"masterbc.co.rs",
"10.32.224.103",
"forums.watchuseek.com",
"91.150.101.155",
"10.32.33.102",
"login.refog.com",
"10.32.224.113",
"bmwclubserbia.com",
"webmail.uzzpro.gov.rs",
"reg.ebay.com",
"only-soft.org",
"192.168.2.14",
"login.payoneer.com",
"10.32.33.110",
"login.oracle.com",
"elitemadzone.org",
"limundo.com",
"cloudsso.cisco.com",
"fulltech.rs",
"accounts.autodesk.com",
"fashionandfriends.com",
"novi.kupujemprodajem.com",
"10.32.224.111",
"10.32.33.251",
"account.live.com",
"chipmaker.ru",
"mojekrpice.rs",
"10.32.240.171",
"10.32.240.172",
"10.32.240.210",
"10.32.240.1",
"10.32.240.11",
"10.32.240.12",
"10.32.240.141",
"10.32.240.142",
"10.32.240.131",
"10.32.240.191",
"10.32.240.133",
"10.32.240.132",
"10.32.240.143",
"10.32.240.43",
"10.32.240.34",
"10.32.240.35",
"10.32.240.36",
"10.32.240.37",
"10.32.240.39",
"10.32.240.41",
"10.32.240.42",
"10.32.240.44",
"10.32.240.45",
"moj.mts.rs",
"accounts.binance.com",
"sdlfu.com",
"10.32.224.112",
"10.32.224.151",
"10.32.240.91",
"10.32.240.182",
"10.32.240.151",
"192.168.100.1",
"10.0.11.15"
],
"outlook": "-",
"price": "10.00",
"province": "Belgrade",
"size": "0.15Mb",
"stealer": "Redline ",
"vendor": "sm####ez [platinum]"
}Infected Device - Accounts for "uzzpro.gov.rs" were observed for sale on the Russian Market, On Jul 06, 2023
Code:
{
"country": "RS",
"date": "2023.07.06",
"files": "archive.zip",
"id": "11487647",
"isp": "Jotel",
"links": [
"mega-tips.com",
"svidoktori.rs",
"mtel.shop",
"albooks.rs",
"studistest.akademijanis.edu.rs",
"skolarogan.rs",
"twitter.com",
"clients.websplosion.com",
"loopia.rs",
"customerzone.loopia.rs",
"kafanakabak.rs",
"paypal.com",
"odcdoo.com",
"vega.mysafeservers.com",
"customerzone.loopia.rs",
"budo140.adriahost.com",
"auth.wetransfer.com",
"isgtravel.ch",
"pizzeriavogelgryff.ch",
"nissal.mycpanel.rs",
"loopia.rs",
"newsite.dodajukorpu.com",
"magiclight.rs",
"winnio.mystableservers.com",
"malfox-store.com",
"loopia.rs",
"svidoktori.rs",
"adriatelekom.de",
"uzivo24.com",
"loopia.rs",
"mega-tips.com",
"rudanstudio.com",
"admin.nadji-posao.com",
"zoranristic.com",
"helpdesk.tpondemand.eu",
"safegenebalkan.com",
"webmail.loopia.se",
"proces.in.rs",
"gradskiportal018.rs",
"aerodrom-parking.com",
"aluris.rs",
"home.openweathermap.org",
"lelloo.com",
"bankerhosting.rs",
"sasaristic.com",
"mediapress.rs",
"rapunzels-secret.ch",
"tvistok.com",
"radioin.co.rs",
"188.93.124.224",
"de4.fcomet.com",
"login.wordpress.org",
"shop.ekopro.online",
"bbglobalrent.com",
"frescopizza-f163a.firebaseapp.com",
"admin.kudaici.rs",
"paypal.com",
"designlifestyle.uk",
"login.qr-code-generator.com",
"winnio.co",
"portal.zakeke.com",
"va-reinigung.com",
"aso-facility.ch",
"proces.in.rs",
"sone-service.com",
"poks.org.rs",
"radioin.co.rs",
"doctolib.fr",
"kepler.superhosting.rs",
"bankerhosting.rs",
"loopia.rs",
"agroportal.rs",
"admin.nadji-posao.rs",
"blog.nadji-posao.rs",
"ekopro.online",
"login.mailchimp.com",
"mobilnitelefon.rs",
"bankerhosting.rs",
"shoppster.com",
"webbmail.loopia.se",
"sso.godaddy.com",
"login.mailchimp.com",
"admin.kudaici.rs",
"maskswizards.com",
"online.dznis.com",
"rudprom-rsm.rs",
"phspro.mycpanel.rs",
"aso-facility.ch",
"admin.nadji-posao.com",
"sasaristic.com",
"nadji-posao.rs",
"nadjiposao.mystableservers.com",
"sso.godaddy.com",
"customerzone.loopia.rs",
"customerzone.loopia.rs",
"whm.aso-it.com",
"luckyshop.rs",
"dassport.rs",
"customerzone.loopia.rs",
"bbglobalrent.com",
"jobs.ohrag.ch",
"phpmyadmin687.loopia.rs",
"poks.org.rs",
"admin.hostpoint.ch",
"instagram.com",
"de01.7webs.ch",
"sso.godaddy.com",
"designlifestyle.uk",
"odcdoo.com",
"arhitekturabudjevac.com",
"signup.sendgrid.com",
"vetmedica.rs",
"luckyshop.rs",
"duschicleaning.ch",
"winnio.co",
"atime.ch",
"agenturjoker.com",
"shop.ekopro.online",
"winnio.co",
"aso-it.slack.com",
"creativeitem.com",
"virtikom.com",
"vukasinstankovic.rs",
"ohrag.ch",
"kudaici.rs",
"elite-academy.me",
"batradtehnoguma.com",
"loopia.rs",
"phsnis.edu.rs",
"newgreenlife.ch",
"secure1.inmotionhosting.com",
"coffeecreamthemes.com",
"bubanjskiheroji.edu.rs",
"elbe.bitpalast.net",
"loopia.rs",
"app.malcare.com",
"vega.mysafeservers.com",
"elite-academy.mk",
"bexio.com",
"my.eunethosting.com",
"dexy.co.rs",
"perikenis.com",
"vega.mysafeservers.com",
"bubanjskiheroji.edu.rs",
"alfaataxi.ch",
"phpmyadmin686.loopia.rs",
"duschicleaning.ch",
"knjigovodstvocetkovic.me",
"accounts.shutterstock.com",
"magazabelgrade.com",
"w3layouts.com",
"eon.tv",
"my.webkeeper.ch",
"energyhealinglife.nl",
"azoz.rs",
"account.envato.com",
"stopsma.rs",
"leadingsales.ch",
"sa492.saturn.fastwebserver.de",
"loopia.rs",
"kepler.superhosting.rs",
"superhosting.rs",
"loopia.rs",
"de4.fcomet.com",
"studioartnikolai.com",
"vega.mysafeservers.com",
"customerzone.loopia.rs",
"aleksinac.biz",
"metaoglasi.com",
"elements.envato.com",
"my.hoststar.ch",
"viptours.rs",
"zoranristic.com",
"aso-business.ch",
"login.mailchimp.com",
"host.bankerhosting.rs",
"teslaeye.com",
"zoranristic.com",
"apps.ionic.io",
"customerzone.loopia.rs",
"transfer.co.rs",
"loopia.rs",
"batradtehnoguma.com",
"alfa3093.alfahosting-server.de",
"admin.poks.rs",
"seko-group.ch",
"host.bankerhosting.rs",
"italsport.me",
"arhitekturabudjevac.com",
"t1x2.net",
"loopia.rs",
"srv.internetskerco.com",
"klompe.rs",
"admin.http-08.stepping-stone.ch",
"itnetwork.rs",
"loopia.rs",
"shop.rapunzels-secret.ch",
"elite-academy.online",
"admin.nadji-posao.rs",
"mein.1und1.de",
"sakyswimwear.com",
"arhitekturabudjevac.com",
"loopia.rs",
"elements.envato.com",
"home-payment.com",
"srv1.hostconstruct.com",
"svidoktori.rs",
"dashboard.mediagetinvest.co",
"vetmedica.rs",
"loopia.rs",
"plovak.com",
"crowd1.com",
"tita.superhosting.rs",
"themeforest.net",
"budo70.adriahost.com",
"mypayments.six-payment-services.com",
"loopia.rs",
"loopia.rs",
"thenewsletterplugin.com",
"dodajukorpu.com",
"odcdoo.com",
"customerzone.loopia.rs",
"jkpnaissus.co.rs",
"vega.mysafeservers.com",
"asoswiss.slack.com",
"svetusluge.com",
"vega.mysafeservers.com",
"isgtravel.ch",
"phpmyadmin686.loopia.rs",
"login.ionos.de",
"winnio.co",
"viptours.rs",
"maxmind.com",
"plesk.orggan.com",
"lelloo.com",
"de01.7webs.ch",
"malfix-cars.com",
"nootheme.com",
"wish.contextlogic.com",
"blog.nadji-posao.rs",
"dashboard.stripe.com",
"prijava.eid.gov.rs",
"fountain.mycity-hosting.com",
"cloudflare.com",
"whm.aso-it.com",
"designer.loginserver.ch",
"host36.dwhost.net",
"gorenje.rs",
"eon.tv",
"cru.org.rs",
"vodogradnja.rs",
"shutterstock.com",
"jobbino.com",
"moj.adriahost.rs",
"novak-apartment.com",
"kepler.superhosting.rs",
"webmail.malstone-consulting.com",
"help-serbia.org.rs",
"teslaeye.com",
"moj.mts.rs",
"tita.superhosting.rs",
"host36.dwhost.net",
"svidoktori.rs",
"vega.mysafeservers.com",
"zurkic.com",
"fresco-pizza.ch",
"account.1und1.de",
"skolarogan.rs",
"malstone-consulting.com",
"ohrag.ch",
"lx39.hoststar.hosting",
"oprema.rs",
"eliteacademybalkans.slack.com",
"myhosttech.eu",
"nissal.co.rs",
"myhosttech.eu",
"dassport.rs",
"mediapress.rs",
"admin.nadji-posao.rs",
"heidhandel.ch",
"kepler.superhosting.rs",
"amenic.ch",
"nekretninejoker.de",
"blog.nadji-posao.rs",
"tita.superhosting.rs",
"transfer.co.rs",
"merchant.hipaymobile.com",
"arhitekturabudjevac.com",
"testsecurepay.eway2pay.com",
"vega.mysafeservers.com",
"viptours.rs",
"7jobs.ch",
"login.ionos.de",
"heidhandel.ch",
"ssl.com",
"api.paymentwall.com",
"wordpress.com",
"rtsplaneta.rs",
"eyesoftech.com",
"customerzone.loopia.rs",
"tvistok.com",
"kudaici.rs",
"my.hoststar.ch",
"odcdoo.com",
"my.bexio.com",
"pronadjiposao.rs",
"paidmembershipspro.com",
"customerzone.loopia.rs",
"panel.unlimited.rs",
"modalogija.rs",
"loopia.rs",
"infotech.rs",
"webmail.webkeeper.ch",
"idp.bexio.com",
"accounts.philips.com",
"customerzone.loopia.rs",
"joombooz.com",
"manage.sslforfree.com",
"hydrostop.ch",
"gs.rudanstudio.com",
"infotech.rs",
"ofrim.ch",
"node2713.myfcloud.com",
"ivankokeza.com",
"elite-academy.ba",
"154-27-84-70.cprapid.com",
"gfxwptheme.com",
"vega.mysafeservers.com",
"rostra.rs",
"skolabiznisa.edu.rs",
"metaoglasi.com",
"mkoclothing.rs",
"fresco-pizza.ch",
"mermerni-radijatori.rs",
"home-payment.com",
"92.60.224.50",
"srv.internetskerco.com",
"lelloo.com",
"macron.rs",
"de4.fcomet.com",
"seko-group.ch",
"solidtradebank.com",
"admin.nadji-posao.rs",
"phpmyadmin684.loopia.rs",
"login.mailchimp.com",
"tita.superhosting.rs",
"idp.bexio.com",
"orggan.com",
"my.webkeeper.ch",
"aso-business.ch",
"188.93.124.224",
"themeforest.net",
"arhitekturabudjevac.com",
"exchangerate-api.com",
"cloudflare.com",
"zkm.webtropia.com",
"kaoguca.com",
"mtel.shop",
"kepler.superhosting.rs",
"elite-academy.bg",
"customerzone.loopia.rs",
"superhosting.rs",
"bookme.name",
"customerzone.loopia.rs",
"tas-creditsuisse.taleo.net",
"shinehelp.travelerwp.com",
"odcdoo.com",
"niturs.rs",
"zurkic.com",
"energyhealinglife.nl",
"chimpgroup.com",
"agenturjoker.de",
"lelloo.com",
"instagram.com",
"nisomnia.com",
"budo45.adriahost.com",
"orggan.com",
"loopia.rs",
"azoznis.slack.com",
"my.bexio.com",
"teslaeye.com",
"secure.paygol.com",
"radiobanker.rs",
"webmail.malstone-consulting.com",
"sccair.rs",
"sccair.rs",
"office.bexio.com",
"136.243.82.140",
"joombooz.com",
"admin.kudaici.rs",
"customerzone.loopia.rs",
"agronet.rs",
"transfer.co.rs",
"nadji-posao.rs",
"leadingsales.ch",
"admin.nadji-posao.rs",
"loopia.rs",
"wordpress.com",
"yesss.cc",
"admin.nadji-posao.rs",
"eu1.proxysite.com",
"7jobs.ch",
"zurkic.com",
"sekoreinigung.ch",
"webspiders.ch",
"atime.ch",
"zurkic.com",
"cpanel0.orion.rs",
"proces.in.rs",
"vega.mysafeservers.com",
"silvershop.rs",
"my.justhost.com",
"sekoreinigung.ch",
"gitlab.com",
"va-reinigung.com",
"teslaeye.com",
"studistest.akademijanis.edu.rs",
"elite-academy.online",
"zurkic.com",
"zurkic.com",
"bcgroup-online.com",
"ekopro-eu.de",
"my.bluehost.com",
"hosttech.ch",
"va-reinigung.com",
"rudanstudio.com",
"tita.superhosting.rs",
"idmsa.apple.com",
"login.ionos.de",
"sa492.saturn.fastwebserver.de",
"batradtehnoguma.com",
"planetasport.rs",
"loopia.rs",
"server5.extreme-prohosting.com",
"customerzone.loopia.rs",
"tvistok.com",
"tita.superhosting.rs",
"customerzone.loopia.rs",
"quandoo.ch",
"node2713.myfcloud.com",
"formcraft-wp.com",
"7jobs.ch",
"admin.atime.ch",
"ekopro.online",
"admin.hostpoint.ch",
"blog.nadji-posao.rs",
"kafanakabak.rs",
"account.envato.com",
"elite-academy.rs",
"my.bexio.com",
"loopia.rs",
"myadmin-alfa3093.alfahosting-server.de",
"server.7webs.ch",
"atime.ch",
"elite-academy.rs",
"orggan.com",
"pizzeriavogelgryff.ch",
"loopia.rs",
"mega-tips.com",
"opfigetraenke.ch",
"hosttech.ch",
"hilandar.de",
"jimsformalwear.filecamp.com",
"zurkic.com",
"svidoktori.rs",
"aluris.rs",
"itnetwork.rs",
"optoptravel.rs",
"odcdoo.com",
"id.atlassian.com",
"tita.superhosting.rs",
"elite-academy.me",
"pilot.superhosting.bg",
"openasapp.net",
"kepler.superhosting.rs",
"paidmembershipspro.com",
"skolabiznisa.edu.rs",
"mobilnitelefon.rs",
"webmail.loopia.rs",
"metaoglasi.com",
"amoz.webkeeper.ch",
"my.hoststar.ch",
"adriatelekom.de",
"proces.in.rs",
"tita.superhosting.rs",
"macron.rs",
"7jobs.ch",
"pinnbet.com",
"ramart.info",
"idp.bexio.com",
"admin.nadji-posao.rs",
"37.58.57.214",
"hotellux.rs",
"rudanstudio.com",
"phpmyadmin686.loopia.rs",
"svidoktori.rs",
"prowebber.ru",
"heidhandel.ch",
"baya.sytes.net",
"colosseumbet.com",
"nadji-posao.com",
"bankerhosting.rs",
"my.bluehost.com",
"zurkic.com",
"loopia.rs",
"maxmind.com",
"bp-naturfit.de",
"phpmyadmin410.loopia.rs",
"forum.stopsma.rs",
"sa492.saturn.fastwebserver.de",
"kudaici.rs",
"poliklinikapanajotovic.rs",
"customerzone.loopia.rs",
"1x2online.net",
"wise.com",
"vega.mysafeservers.com",
"winnio.mystableservers.com",
"icepay.com",
"mtel.shop",
"skolabiznisa.edu.rs",
"magiclight.rs",
"bankerhosting.rs",
"mediapress.rs",
"elite-academy.rs",
"themeforest.net",
"pinnbet.com",
"viptours.rs",
"my.hoststar.ch",
"itnetwork.rs",
"me.sumup.com",
"customerzone.loopia.rs",
"pinnbet.com",
"login.ionos.de",
"tempo.superhosting.rs",
"kudaici.rs",
"app.zerossl.com",
"dodajukorpu.com",
"odcdoo.com",
"agenturjoker.com",
"coffeecreamthemes.com",
"aboutlovebridal.org",
"sccair.rs",
"svidoktori.rs",
"tita.superhosting.rs",
"twitter.com",
"itnetwork.rs",
"agrosnn.rs",
"localhost",
"posetihilandar.de",
"loopia.rs",
"7webs.ch",
"my.hoststar.ch",
"elite-academy.si",
"plovak.com",
"7jobs.ch",
"customerzone.loopia.rs",
"itnetwork.rs",
"fluoelektro.com",
"agronmag.rs",
"themeforest.net",
"odcdoo.com",
"login.mailchimp.com",
"italsport.me",
"chimpgroup.com",
"pinnbet.com",
"uzivo24.com",
"fildizajn.rs",
"tempo.superhosting.rs",
"perikenis.com",
"alfaataxi.ch",
"biznisedukacija.rs",
"home-payment.com",
"sokobanja.rs",
"help-serbia.org.rs",
"my.fastcomet.com",
"loopia.rs",
"metalik-plast.rs",
"giraffe.arvixe.com",
"admin.home-payment.com",
"customerzone.loopia.rs",
"tvistok.com",
"loopia.rs",
"ve183.venus.fastwebserver.de",
"agtim.com",
"itea.rs",
"loopia.rs",
"customerzone.loopia.rs",
"sbb.rs",
"kepler.superhosting.rs",
"sbbet.me",
"localhost",
"node2713.myfcloud.com",
"elite-academy.bg",
"banjatopilo.rs",
"kepler.superhosting.rs",
"kundenmagnet.com",
"us11.proxysite.com",
"pinnbet.com",
"metaoglasi.com",
"phpmyadmin684.loopia.rs",
"sccair.rs",
"loopia.rs",
"buddyfix.com",
"heidhandel.ch",
"vorti777.com",
"mylagencija.com",
"phpmyadmin531.loopia.rs",
"login.microsoftonline.com",
"alu-tehnik.com",
"my.bexio.com",
"a-time.slack.com",
"mediapress.rs",
"elite-academy.hr",
"mein.ionos.de",
"serbianforum.org",
"178.63.40.195",
"macron.rs",
"pecooou.slack.com",
"vukasinstankovic.rs",
"xtreamcodes.hopto.org",
"winwin.rs",
"ipsoslive.rs",
"dervishi-gmbh.ch",
"pizzeriavogelgryff.ch",
"webmail.loopia.rs",
"kudaici.rs",
"mountexgroup.ch",
"android.linkedin.com",
"itea.rs",
"maskswizards.com",
"stampanamajica.rs",
"linkedin.com",
"kepler.superhosting.rs",
"backup-guard.com",
"elite-academy.rs",
"svidoktori.rs",
"my.webkeeper.ch",
"loopia.rs",
"zoranristic.com",
"my.hoststar.ch",
"members.bet365.com",
"alfaataxi.ch",
"myhosttech.eu",
"localhost",
"amoz.webkeeper.ch",
"winnio.mystableservers.com",
"bp-naturfit.de",
"sso.godaddy.com",
"jobbino.com",
"vohdesign.com",
"agroportal.rs",
"dashboard.nexmo.com",
"vega.mysafeservers.com",
"registracija.eid.gov.rs",
"mylagencija.com",
"sasaristic.com",
"lookie.metanet.ch",
"admin.nadji-posao.rs",
"photocard.rs",
"dodajukorpu.com",
"poks.org.rs",
"vintage-weine.ch",
"alfaataxi.ch",
"mtelshop",
"high-saas.waptechy.com",
"customerzone.loopia.rs",
"clients.websplosion.com",
"gw.uzzpro.gov.rs",
"banjatopilo.rs",
"loopia.rs",
"banjatopilo.rs",
"shop2.joombooz.com",
"shop.joombooz.com",
"lelloo.com",
[color=#989898][font=monospace, monospace] [/font][/color][color=#000000][font=monospace, monospace]"bizniscentar.rs",[/font][/color]
[color=#000000][font=monospace, monospace] "loopia.rs",
"urogroup.rs",
"vodogradnja.rs",
"lucklandia.com",
"lucklandia.com",
"id.sonyentertainmentnetwork.com",
"tmsphoenix.joombooz.com",
"proelectronic.kroznis.rs",
"proelectronic.kroznis.rs",
"iforgot.apple.com",
"accounts.google.com",
"proelectronic.kroznis.rs",
"proelectronic.kroznis.rs"
],
"outlook": "-",
"price": "10.00",
"province": "Zajecar",
"size": "1.69Mb",
"stealer": "lumma ",
"vendor": "Mo####yf [Diamond]"
}[/font][/color]
[color=#000000][/color]webmail.uzzpro.gov.rs - 195.222.99.250
There is no patch for stupidity - Kevin Mitnick