Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Chrome Cache Entry: 109
|
PNG image data, 65 x 56, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 110
|
HTML document, Unicode text, UTF-8 text, with very long lines (40611), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 111
|
PNG image data, 65 x 56, 8-bit/color RGB, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 112
|
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 113
|
HTML document, ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 114
|
HTML document, Unicode text, UTF-8 text, with very long lines (1561)
|
downloaded
|
||
|
Chrome Cache Entry: 115
|
ASCII text, with very long lines (42690)
|
downloaded
|
||
|
Chrome Cache Entry: 116
|
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 117
|
HTML document, ASCII text
|
downloaded
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2128 --field-trial-handle=1884,i,16893877309678579397,15265903318503389045,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://rb.gy/zsqpja"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://rb.gy/zsqpja
|
 |
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/89e2c9eedc1343f7/1720134630033/2Wmk4aCUnkOuFYA
|
104.17.3.184
|
||
|
https://html.duckduckgo.com/html"
|
unknown
|
||
|
http://italysecret.top/favicon.ico
|
84.38.180.109
|
||
|
https://kuyqt.bartiletti.top/lfzcq
|
|||
|
https://kuyqt.bartiletti.top/favicon.ico
|
188.114.96.3
|
||
|
https://a.nel.cloudflare.com/report/v4?s=SXj%2FhghnVbR4ct3b1Ht6ze3QF6SuLgxxI5NoErAqWYUYcJwTEKYMJenxfJjsvb%2FLzPxdA9RBSeyywL2o%2FVxNFLyHzFq2OsqI5NwUzohx6XX5KiVYAL9qz2ByanGRVgWovLhXsyJc2Q%3D%3D
|
35.190.80.1
|
||
|
https://a.nel.cloudflare.com/report/v4?s=z96S4gfhZB6e%2FDAncvUJLvB%2F4wUXyhVJFoClzX3JCv%2F7YhbReLueVEmF87Uf6sYzlXqVXXbNs64Sgmxm2zquvCoctUGqr9m0BP0rXSDgfD7naUihOG7fUiDDbFMwDvFWSD2B%2FZPGAw%3D%3D
|
35.190.80.1
|
||
|
https://kuyqt.bartiletti.top/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=89e2c9d20c8c42b3
|
188.114.96.3
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=89e2c9eedc1343f7
|
104.17.3.184
|
||
|
https://rb.gy/zsqpja
|
18.211.218.206
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/337380323:1720131764:3U-bWoxIs3jWTCggjO22T6HlsPiNyCLI70JGmCur7Ao/89e2c9eedc1343f7/67489d60c27b9f0
|
104.17.3.184
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/h67uw/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
|
|||
|
http://italysecret.top/contactos
|
|||
|
https://duckduckgo.com/assets/logo_social-media.png
|
unknown
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/wh0E0SXYnx6pTBdJW%2Fl926I%2BPRUplRdtQz3K9lHXs%2Fs%3D
|
104.17.3.184
|
||
|
https://duckduckgo.com/
|
40.114.177.156
|
||
|
https://duckduckgo.com/?smartbanner=1
|
unknown
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/89e2c9eedc1343f7/1720134630033/05855dfb9a155360ad354c02224ed04974d56d328f6298a1833806f5e5fc0f6e/4mmKYehRztd3Q7R
|
104.17.3.184
|
||
|
https://kuyqt.bartiletti.top/cdn-cgi/challenge-platform/h/g/flow/ov1/1698877250:1720131768:IQLj5zWhM2e9FZTEdQHhsc6E9uLFO5ioD3vxzR41b6I/89e2c9d20c8c42b3/ca3053328c203be
|
188.114.96.3
|
||
|
https://duckduckgo.com
|
unknown
|
There are 10 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
bg.microsoft.map.fastly.net
|
199.232.210.172
|
||
|
kuyqt.bartiletti.top
|
188.114.96.3
|
||
|
a.nel.cloudflare.com
|
35.190.80.1
|
||
|
italysecret.top
|
84.38.180.109
|
||
|
rb.gy
|
18.211.218.206
|
||
|
challenges.cloudflare.com
|
104.17.2.184
|
||
|
duckduckgo.com
|
40.114.177.156
|
||
|
www.google.com
|
142.250.185.132
|
||
|
fp2e7a.wpc.phicdn.net
|
192.229.221.95
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
142.250.185.132
|
www.google.com
|
United States
|
||
|
40.114.177.156
|
duckduckgo.com
|
United States
|
||
|
192.168.2.4
|
unknown
|
unknown
|
||
|
104.17.3.184
|
unknown
|
United States
|
||
|
18.211.218.206
|
rb.gy
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
188.114.96.3
|
kuyqt.bartiletti.top
|
European Union
|
||
|
35.190.80.1
|
a.nel.cloudflare.com
|
United States
|
||
|
104.17.2.184
|
challenges.cloudflare.com
|
United States
|
||
|
84.38.180.109
|
italysecret.top
|
Russian Federation
|
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://kuyqt.bartiletti.top/lfzcq
|
|
|
|
https://kuyqt.bartiletti.top/lfzcq
|
||
|
https://kuyqt.bartiletti.top/lfzcq
|
||
|
https://kuyqt.bartiletti.top/lfzcq
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/h67uw/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/h67uw/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
|
||
|
http://italysecret.top/contactos
|