Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 24 19:24:08 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 24 19:24:08 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 24 19:24:08 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 24 19:24:08 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 24 19:24:07 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
Chrome Cache Entry: 120
|
ASCII text, with very long lines (5844)
|
downloaded
|
||
|
Chrome Cache Entry: 121
|
ASCII text, with very long lines (6035)
|
downloaded
|
||
|
Chrome Cache Entry: 122
|
PNG image data, 378 x 124, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 123
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 124
|
ASCII text, with very long lines (5945)
|
downloaded
|
||
|
Chrome Cache Entry: 125
|
ASCII text, with very long lines (3835)
|
dropped
|
||
|
Chrome Cache Entry: 127
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 129
|
Web Open Font Format, TrueType, length 246368, version 1.4
|
downloaded
|
||
|
Chrome Cache Entry: 130
|
ASCII text, with very long lines (3835)
|
downloaded
|
||
|
Chrome Cache Entry: 131
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 133
|
Unicode text, UTF-8 text, with very long lines (64960)
|
dropped
|
||
|
Chrome Cache Entry: 135
|
ASCII text, with very long lines (22434)
|
downloaded
|
||
|
Chrome Cache Entry: 139
|
ASCII text, with very long lines (22434)
|
dropped
|
||
|
Chrome Cache Entry: 140
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 141
|
HTML document, ASCII text, with very long lines (10654)
|
downloaded
|
||
|
Chrome Cache Entry: 143
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 145
|
gzip compressed data, from Unix, original size modulo 2^32 57443
|
downloaded
|
||
|
Chrome Cache Entry: 146
|
ASCII text, with very long lines (1335)
|
downloaded
|
||
|
Chrome Cache Entry: 147
|
Unicode text, UTF-8 text, with very long lines (48945), with LF, NEL line terminators
|
dropped
|
||
|
Chrome Cache Entry: 148
|
gzip compressed data, from Unix, original size modulo 2^32 141849
|
downloaded
|
||
|
Chrome Cache Entry: 149
|
MS Windows icon resource - 6 icons, 16x16 with PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, 24x24
with PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced, 32 bits/pixel
|
dropped
|
||
|
Chrome Cache Entry: 151
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 154
|
gzip compressed data, from Unix, original size modulo 2^32 407134
|
downloaded
|
||
|
Chrome Cache Entry: 155
|
ASCII text, with very long lines (715)
|
dropped
|
||
|
Chrome Cache Entry: 156
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 157
|
ASCII text
|
dropped
|
||
|
Chrome Cache Entry: 158
|
ASCII text, with very long lines (20581)
|
dropped
|
||
|
Chrome Cache Entry: 159
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 160
|
ASCII text, with very long lines (1434), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 161
|
gzip compressed data, from Unix, original size modulo 2^32 3625
|
downloaded
|
||
|
Chrome Cache Entry: 163
|
gzip compressed data, from Unix, original size modulo 2^32 113378
|
downloaded
|
||
|
Chrome Cache Entry: 166
|
HTML document, Unicode text, UTF-8 text, with very long lines (4324)
|
dropped
|
||
|
Chrome Cache Entry: 168
|
ASCII text, with very long lines (999)
|
dropped
|
||
|
Chrome Cache Entry: 170
|
gzip compressed data, original size modulo 2^32 1864
|
dropped
|
||
|
Chrome Cache Entry: 172
|
Web Open Font Format, TrueType, length 245192, version 1.4
|
downloaded
|
||
|
Chrome Cache Entry: 174
|
gzip compressed data, original size modulo 2^32 1592
|
downloaded
|
||
|
Chrome Cache Entry: 177
|
gzip compressed data, original size modulo 2^32 3651
|
dropped
|
||
|
Chrome Cache Entry: 180
|
ASCII text, with very long lines (9222)
|
downloaded
|
||
|
Chrome Cache Entry: 181
|
gzip compressed data, from Unix, original size modulo 2^32 449726
|
dropped
|
||
|
Chrome Cache Entry: 182
|
Web Open Font Format, TrueType, length 94040, version 2.137
|
downloaded
|
||
|
Chrome Cache Entry: 183
|
ASCII text, with very long lines (2343)
|
downloaded
|
||
|
Chrome Cache Entry: 184
|
Unicode text, UTF-8 text, with very long lines (65449)
|
dropped
|
||
|
Chrome Cache Entry: 185
|
Unicode text, UTF-8 text, with very long lines (51633)
|
downloaded
|
||
|
Chrome Cache Entry: 187
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 189
|
ASCII text, with very long lines (433), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 190
|
PNG image data, 358 x 346, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 192
|
ASCII text, with very long lines (3835)
|
dropped
|
||
|
Chrome Cache Entry: 194
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 197
|
gzip compressed data, from Unix, original size modulo 2^32 113819
|
downloaded
|
||
|
Chrome Cache Entry: 198
|
ASCII text, with very long lines (5945)
|
dropped
|
||
|
Chrome Cache Entry: 201
|
ASCII text, with very long lines (3835)
|
downloaded
|
There are 48 hidden files, click here to show them.
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://nimb.ws/uRSOy9q
|
 |
||
|
https://bradfordmarine.bytheyardservices.com/?dsM3D=P1HSB&sso_reload=true
|
|
||
|
https://premiumgain.nimbusweb.me/share/11334622/yn85rfp6wmt2hykemiso
|
|
||
|
https://bradfordmarine.bytheyardservices.com/?dsM3D=P1HSB
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
bradfordmarine.bytheyardservices.com
|
198.58.104.63
|
|
|
|
stt.nimbusweb.me
|
216.239.38.21
|
||
|
5d9cbcef-e6d26ed4.bytheyardservices.com
|
198.58.104.63
|
||
|
f6ccf083-e6d26ed4.bytheyardservices.com
|
198.58.104.63
|
||
|
premiumgain.nimbusweb.me
|
13.224.189.125
|
||
|
metric.nimbusweb.me
|
13.224.189.46
|
||
|
stats.g.doubleclick.net
|
142.251.5.156
|
||
|
gscstatic2.b-cdn.net
|
169.150.249.167
|
||
|
analytics-alv.google.com
|
216.239.36.181
|
||
|
l1ve.bytheyardservices.com
|
198.58.104.63
|
||
|
events.getsitectrl.com
|
3.225.206.236
|
||
|
www.google.com
|
142.250.185.100
|
||
|
gscwidgets2.b-cdn.net
|
169.150.247.39
|
||
|
d3hogio4d1txum.cloudfront.net
|
18.173.206.24
|
||
|
635b2a2c-e6d26ed4.bytheyardservices.com
|
198.58.104.63
|
||
|
nimb.ws
|
18.164.52.61
|
||
|
nimbusweb.me
|
18.66.122.56
|
||
|
9b7d0080-e6d26ed4.bytheyardservices.com
|
198.58.104.63
|
||
|
s2.getsitecontrol.com
|
unknown
|
||
|
l.getsitecontrol.com
|
unknown
|
||
|
analytics.google.com
|
unknown
|
There are 11 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
198.58.104.63
|
5d9cbcef-e6d26ed4.bytheyardservices.com
|
United States
|
|
|
|
13.224.189.125
|
premiumgain.nimbusweb.me
|
United States
|
||
|
142.250.74.202
|
unknown
|
United States
|
||
|
142.250.185.228
|
unknown
|
United States
|
||
|
13.224.189.39
|
unknown
|
United States
|
||
|
192.168.2.17
|
unknown
|
unknown
|
||
|
192.168.2.16
|
unknown
|
unknown
|
||
|
18.173.206.104
|
unknown
|
United States
|
||
|
142.250.185.100
|
www.google.com
|
United States
|
||
|
169.150.247.39
|
gscwidgets2.b-cdn.net
|
United States
|
||
|
169.150.249.167
|
gscstatic2.b-cdn.net
|
United States
|
||
|
54.205.90.227
|
unknown
|
United States
|
||
|
142.250.185.163
|
unknown
|
United States
|
||
|
142.250.185.142
|
unknown
|
United States
|
||
|
216.239.36.21
|
unknown
|
United States
|
||
|
216.239.38.21
|
stt.nimbusweb.me
|
United States
|
||
|
18.66.122.56
|
nimbusweb.me
|
United States
|
||
|
142.250.184.206
|
unknown
|
United States
|
||
|
18.66.122.32
|
unknown
|
United States
|
||
|
142.250.110.84
|
unknown
|
United States
|
||
|
142.250.186.78
|
unknown
|
United States
|
||
|
1.1.1.1
|
unknown
|
Australia
|
||
|
216.239.36.181
|
analytics-alv.google.com
|
United States
|
||
|
216.58.206.67
|
unknown
|
United States
|
||
|
142.251.5.156
|
stats.g.doubleclick.net
|
United States
|
||
|
13.224.189.46
|
metric.nimbusweb.me
|
United States
|
||
|
142.250.185.232
|
unknown
|
United States
|
||
|
138.199.36.9
|
unknown
|
European Union
|
||
|
3.225.206.236
|
events.getsitectrl.com
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
18.173.206.24
|
d3hogio4d1txum.cloudfront.net
|
United States
|
||
|
142.250.186.142
|
unknown
|
United States
|
||
|
142.250.186.40
|
unknown
|
United States
|
||
|
216.58.212.163
|
unknown
|
United States
|
||
|
18.164.52.61
|
nimb.ws
|
United States
|
There are 25 hidden IPs, click here to show them.