B'ad Samurai 
TrendMicro has a decent article on Claude sharing links to deliver ClickFix. I forgot I subjected myself to a bunch of awful LLMs to build a URL share list—because no one has documentation on web pages anymore.
ChatGPT https://chatgpt.com/share/{id}
Claude https://claude.ai/share/{id}
Copilot https://copilot.microsoft.com/shares/{id}
DeepSeek https://chat.deepseek.com/share/{id}
Gemini https://g.co/gemini/share/{id}
Grok https://grok.com/share/{id}
Manus https://manus.im/share/{id}
Meta AI https://www.meta.ai/s/{id}
Poe https://poe.com/s/{id}
Qwen https://chat.qwen.ai/s/{id}
AI Lures in Malvertising Utilizing LOTS and Share URLs to Deliver ClickFix Attacks
Last Updated: 2026-06-18 What’s Happening Malvertising of AI tooling to direct users to geoshitties (my nickname of free subdomain web hosting) Gitlab[.]io (typically used to host a projects documentation) making it a high-regret block for IT users. In this article shared Claude chats were being utilized, making it abuse of a Living off a Trusted Site (LOTS). Actions Link to the article’s IOCs to hunt or block in your organization. https://documents.trendmicro.com/assets/txt/Indicators%2...