Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
ReviewDoc_Commission Dept Ec.pdf
|
PDF document, version 1.4, 1 pages
|
initial sample
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\3e11396d-ea59-4a5a-8890-f1fbe49c318c.tmp
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\7c98a7a8-6271-4dcd-af23-824a846fd803.tmp
|
JSON data
|
modified
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\Network Persistent State (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\Network Persistent State~RF7099ed.TMP (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ConnectorIcons\icon-241031000933Z-164.bmp
|
PC bitmap, Windows 3.x format, 117 x -152 x 32, cbSize 71190, bits offset 54
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages
|
SQLite 3.x database, last written using SQLite version 3040000, file counter 2, database pages 14, cookie 0x5, schema 4, UTF-8,
version-valid-for 2
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages-journal
|
SQLite Rollback Journal
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\2D85F72862B55C4EADD9E66E06947F3D
|
Certificate, Version=3
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506
|
Microsoft Cabinet archive data, Windows 2000/XP setup, 71954 bytes, 1 file, at 0x2c +A "authroot.stl", number 1, 6 datablocks,
0x1 compression
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\2D85F72862B55C4EADD9E66E06947F3D
|
data
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
|
data
|
modified
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\ACROBAT_READER_MASTER_SURFACEID
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_FirstMile_Home_View_Surface
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_FirstMile_Right_Sec_Surface
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_READER_LAUNCH_CARD
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Convert_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Disc_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Disc_LHP_Retention
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Edit_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Home_LHP_Trial_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_More_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Intent_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Retention
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Sign_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Upsell_Cards
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\Edit_InApp_Aug2020
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\TESTING
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\SOPHIA.json
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SharedDataEvents
|
SQLite 3.x database, last written using SQLite version 3040000, file counter 19, database pages 3, cookie 0x2, schema 4, UTF-8,
version-valid-for 19
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SharedDataEvents-journal
|
SQLite Rollback Journal
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\MSIf8e98.LOG
|
Unicode text, UTF-16, little-endian text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\NGLClient_AcrobatReader123.6.20320.6 2024-10-30 20-09-31-484.log
|
ASCII text, with very long lines (393)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\NGLClient_AcrobatReader123.6.20320.6.log
|
ASCII text, with very long lines (393), with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrobat_sbx\acroNGLLog.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrocef_low\53b80535-51d7-444e-b7b2-173411ad3bf0.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 5111142
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrocef_low\7cfb768e-9853-4c70-aad3-0d0506a60b49.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 1311022
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrocef_low\8973efcb-5174-4693-93fc-1a019c6582bf.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 33081
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrocef_low\fb81efc7-fcd0-4666-83f2-6138eacf6a1c.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 299538
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 30 23:09:33 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 30 23:09:33 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 30 23:09:33 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 30 23:09:33 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 30 23:09:33 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
Chrome Cache Entry: 238
|
ASCII text, with very long lines (3078)
|
downloaded
|
||
|
Chrome Cache Entry: 239
|
ASCII text, with very long lines (47992), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 240
|
ASCII text, with very long lines (587)
|
dropped
|
||
|
Chrome Cache Entry: 241
|
ASCII text, with very long lines (374)
|
downloaded
|
||
|
Chrome Cache Entry: 242
|
ASCII text, with very long lines (9217)
|
downloaded
|
||
|
Chrome Cache Entry: 243
|
ASCII text, with very long lines (1024)
|
dropped
|
||
|
Chrome Cache Entry: 244
|
ASCII text, with very long lines (65455)
|
downloaded
|
||
|
Chrome Cache Entry: 245
|
ASCII text, with very long lines (1478)
|
dropped
|
||
|
Chrome Cache Entry: 246
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
|
Chrome Cache Entry: 247
|
ASCII text, with very long lines (751)
|
downloaded
|
||
|
Chrome Cache Entry: 248
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 249
|
ASCII text, with very long lines (797)
|
downloaded
|
||
|
Chrome Cache Entry: 250
|
ASCII text, with very long lines (1135)
|
downloaded
|
||
|
Chrome Cache Entry: 251
|
ASCII text
|
dropped
|
||
|
Chrome Cache Entry: 252
|
ASCII text, with very long lines (1290)
|
downloaded
|
||
|
Chrome Cache Entry: 253
|
ASCII text, with very long lines (16239)
|
downloaded
|
||
|
Chrome Cache Entry: 254
|
ASCII text, with very long lines (8038), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 255
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
|
Chrome Cache Entry: 256
|
ASCII text, with very long lines (1023)
|
downloaded
|
||
|
Chrome Cache Entry: 257
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
||
|
Chrome Cache Entry: 258
|
Unicode text, UTF-8 text, with very long lines (51384), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 259
|
ASCII text, with very long lines (10140)
|
dropped
|
||
|
Chrome Cache Entry: 260
|
ASCII text, with very long lines (55127)
|
dropped
|
||
|
Chrome Cache Entry: 261
|
ASCII text, with very long lines (1477)
|
downloaded
|
||
|
Chrome Cache Entry: 262
|
ASCII text, with very long lines (8132), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 263
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
||
|
Chrome Cache Entry: 264
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 265
|
HTML document, Unicode text, UTF-8 text, with very long lines (1807)
|
downloaded
|
||
|
Chrome Cache Entry: 266
|
ASCII text, with very long lines (55289)
|
downloaded
|
||
|
Chrome Cache Entry: 267
|
ASCII text, with very long lines (1400)
|
dropped
|
||
|
Chrome Cache Entry: 268
|
ASCII text, with very long lines (2757)
|
downloaded
|
||
|
Chrome Cache Entry: 269
|
ASCII text, with very long lines (19948), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 270
|
ASCII text, with very long lines (22269)
|
downloaded
|
||
|
Chrome Cache Entry: 271
|
Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 272
|
HTML document, Unicode text, UTF-8 text, with very long lines (1807)
|
dropped
|
||
|
Chrome Cache Entry: 273
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
|
Chrome Cache Entry: 274
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 275
|
ASCII text, with very long lines (5552)
|
dropped
|
||
|
Chrome Cache Entry: 276
|
ASCII text, with very long lines (39974)
|
downloaded
|
||
|
Chrome Cache Entry: 277
|
ASCII text, with very long lines (65455)
|
dropped
|
||
|
Chrome Cache Entry: 278
|
gzip compressed data, from Unix, original size modulo 2^32 43473
|
dropped
|
||
|
Chrome Cache Entry: 279
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
|
Chrome Cache Entry: 280
|
ASCII text, with very long lines (374)
|
dropped
|
||
|
Chrome Cache Entry: 281
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
|
Chrome Cache Entry: 282
|
Unicode text, UTF-8 text, with very long lines (2232)
|
dropped
|
||
|
Chrome Cache Entry: 283
|
ASCII text, with very long lines (2757)
|
dropped
|
||
|
Chrome Cache Entry: 284
|
Unicode text, UTF-8 text, with very long lines (17588)
|
dropped
|
||
|
Chrome Cache Entry: 285
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
||
|
Chrome Cache Entry: 286
|
HTML document, Unicode text, UTF-8 text, with very long lines (41801)
|
downloaded
|
||
|
Chrome Cache Entry: 287
|
ASCII text, with very long lines (5945)
|
downloaded
|
||
|
Chrome Cache Entry: 288
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 289
|
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
|
downloaded
|
||
|
Chrome Cache Entry: 290
|
ASCII text, with very long lines (1222)
|
dropped
|
||
|
Chrome Cache Entry: 291
|
ASCII text, with very long lines (7574)
|
downloaded
|
||
|
Chrome Cache Entry: 292
|
Web Open Font Format (Version 2), TrueType, length 38848, version 1.655
|
downloaded
|
||
|
Chrome Cache Entry: 293
|
SVG Scalable Vector Graphics image
|
dropped
|
||
|
Chrome Cache Entry: 294
|
ASCII text, with CRLF, LF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 295
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 296
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
||
|
Chrome Cache Entry: 297
|
ASCII text, with very long lines (533), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 298
|
ASCII text, with very long lines (1399)
|
downloaded
|
||
|
Chrome Cache Entry: 299
|
ASCII text, with very long lines (47992), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 300
|
ASCII text, with very long lines (55127)
|
downloaded
|
||
|
Chrome Cache Entry: 301
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
|
Chrome Cache Entry: 302
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components
3
|
dropped
|
||
|
Chrome Cache Entry: 303
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
||
|
Chrome Cache Entry: 304
|
Unicode text, UTF-8 text, with very long lines (41169)
|
downloaded
|
||
|
Chrome Cache Entry: 305
|
gzip compressed data, from Unix, original size modulo 2^32 43473
|
downloaded
|
||
|
Chrome Cache Entry: 306
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 307
|
ASCII text, with very long lines (2001)
|
dropped
|
||
|
Chrome Cache Entry: 308
|
gzip compressed data, truncated
|
downloaded
|
||
|
Chrome Cache Entry: 309
|
ASCII text, with very long lines (34530)
|
downloaded
|
||
|
Chrome Cache Entry: 310
|
ASCII text, with very long lines (5552)
|
downloaded
|
||
|
Chrome Cache Entry: 311
|
ASCII text, with very long lines (5945)
|
dropped
|
||
|
Chrome Cache Entry: 312
|
HTML document, Unicode text, UTF-8 text, with very long lines (41801)
|
dropped
|
||
|
Chrome Cache Entry: 313
|
ASCII text, with very long lines (1477)
|
dropped
|
||
|
Chrome Cache Entry: 314
|
ASCII text, with very long lines (59736)
|
downloaded
|
||
|
Chrome Cache Entry: 315
|
ASCII text, with very long lines (2001)
|
downloaded
|
||
|
Chrome Cache Entry: 316
|
Unicode text, UTF-8 text, with very long lines (2232)
|
downloaded
|
||
|
Chrome Cache Entry: 317
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 318
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 319
|
ASCII text, with very long lines (10140)
|
downloaded
|
||
|
Chrome Cache Entry: 320
|
ASCII text, with very long lines (7574)
|
dropped
|
||
|
Chrome Cache Entry: 321
|
RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x1080, Suserng: [none]x[none], YUV color, decoders should clamp
|
downloaded
|
||
|
Chrome Cache Entry: 322
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
|
Chrome Cache Entry: 323
|
ASCII text, with very long lines (19948), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 324
|
Unicode text, UTF-8 text, with very long lines (51384), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 325
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components
3
|
downloaded
|
||
|
Chrome Cache Entry: 326
|
ASCII text, with very long lines (47891)
|
dropped
|
||
|
Chrome Cache Entry: 327
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
||
|
Chrome Cache Entry: 328
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 329
|
ASCII text, with very long lines (47891)
|
downloaded
|
||
|
Chrome Cache Entry: 330
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 331
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
||
|
Chrome Cache Entry: 332
|
Unicode text, UTF-8 text, with very long lines (41169)
|
dropped
|
||
|
Chrome Cache Entry: 333
|
gzip compressed data, truncated
|
dropped
|
||
|
Chrome Cache Entry: 334
|
ASCII text, with very long lines (1477)
|
downloaded
|
||
|
Chrome Cache Entry: 335
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
|
Chrome Cache Entry: 336
|
ASCII text, with very long lines (2312)
|
downloaded
|
||
|
Chrome Cache Entry: 337
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 338
|
ASCII text, with very long lines (65455)
|
downloaded
|
||
|
Chrome Cache Entry: 339
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 340
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
||
|
Chrome Cache Entry: 341
|
ASCII text, with very long lines (55289)
|
dropped
|
||
|
Chrome Cache Entry: 342
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
|
Chrome Cache Entry: 343
|
ASCII text, with CRLF, LF line terminators
|
dropped
|
||
|
Chrome Cache Entry: 344
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
||
|
Chrome Cache Entry: 345
|
ASCII text, with very long lines (39974)
|
dropped
|
||
|
Chrome Cache Entry: 346
|
Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 347
|
ASCII text, with very long lines (2312)
|
dropped
|
||
|
Chrome Cache Entry: 348
|
ASCII text, with very long lines (362)
|
dropped
|
||
|
Chrome Cache Entry: 349
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components
3
|
dropped
|
||
|
Chrome Cache Entry: 350
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 351
|
ASCII text, with very long lines (587)
|
downloaded
|
||
|
Chrome Cache Entry: 352
|
ASCII text, with very long lines (1222)
|
downloaded
|
||
|
Chrome Cache Entry: 353
|
ASCII text, with very long lines (9217)
|
dropped
|
||
|
Chrome Cache Entry: 354
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
|
Chrome Cache Entry: 355
|
ASCII text, with very long lines (362)
|
downloaded
|
||
|
Chrome Cache Entry: 356
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
|
Chrome Cache Entry: 357
|
ASCII text, with very long lines (1290)
|
dropped
|
||
|
Chrome Cache Entry: 358
|
ASCII text
|
dropped
|
||
|
Chrome Cache Entry: 359
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
||
|
Chrome Cache Entry: 360
|
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
|
dropped
|
||
|
Chrome Cache Entry: 361
|
Unicode text, UTF-8 text, with very long lines (17588)
|
downloaded
|
||
|
Chrome Cache Entry: 362
|
ASCII text, with very long lines (22269)
|
dropped
|
||
|
Chrome Cache Entry: 363
|
ASCII text
|
downloaded
|
There are 169 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe
|
"C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe" "C:\Users\user\Desktop\ReviewDoc_Commission Dept Ec.pdf"
|
||
|
C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe
|
"C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --backgroundcolor=16777215
|
||
|
C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe
|
"C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --type=utility --utility-sub-type=network.mojom.NetworkService
--lang=en-US --service-sandbox-type=none --log-severity=disable --user-agent-product="ReaderServices/23.6.20320 Chrome/105.0.0.0"
--lang=en-US --log-file="C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\debug.log" --mojo-platform-channel-handle=2344
--field-trial-handle=1612,i,14224133217588503997,5544407300561384709,131072 --disable-features=BackForwardCache,CalculateNativeWinOcclusion,WinUseBrowserSpellChecker
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://www.canva.com/design/DAGRHU7OhOs/MKT99QDr9EMLJb8DISkRcw/view?utm_content=DAGRHU7OhOs&utm_campaign=designshare&utm_medium=link&utm_source=editor
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2188 --field-trial-handle=1964,i,6797166912141607368,17721715161204195292,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
|
104.16.79.73
|
||
|
https://stats.g.doubleclick.net/g/collect
|
unknown
|
||
|
https://ad.doubleclick.net/activity;src=9812343;type=websi000;cat=flood0;ord=1956043246;gtm=45j91e4a
|
unknown
|
||
|
https://res.wx.qq.com/open/js/jweixin-1.4.0.js
|
unknown
|
||
|
https://static.canva.com/web/40f0ce866d9a0621.ltr.css
|
104.16.103.112
|
||
|
https://www.redditstatic.com/ads/pixel.js
|
151.101.193.140
|
||
|
https://ad.doubleclick.net/activity;src=9812343;type=websi000;cat=flood00;ord=1816735204;gtm=45j91e4
|
unknown
|
||
|
https://www.canva.com/
|
unknown
|
||
|
https://static.canva.com/web/f66980af75ea6dd8.ltr.css
|
104.16.103.112
|
||
|
https://o13855.ingest.sentry.io/api/1765394/envelope/?sentry_key=a8d71e6acf7a4a609f7c96cced259391&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.16.0
|
34.120.195.249
|
||
|
https://www.redditstatic.com/ads/49267bce/pixel.js
|
unknown
|
||
|
https://developers.google.com/identity/gsi/web/guides/fedcm-migration?s=dc#skipped_moment
|
unknown
|
||
|
https://www.google.com
|
unknown
|
||
|
https://www.youtube.com/iframe_api
|
unknown
|
||
|
https://static.canva.com/web/e5aa5e318fd5dfa0.strings.js
|
104.16.103.112
|
||
|
https://alb.reddit.com/rp.gif?ts=1730333379935&id=t2_9z5lu86h&event=ViewContent&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&m.conversionId=&uuid=da3f4213-0e50-40f2-81d4-818150f9265f&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_49267bce&dpm=&dpcc=&dprc=
|
151.101.193.140
|
||
|
https://static.canva.com/web/79679fd80f393deb.runtime.js
|
104.16.103.112
|
||
|
https://static.canva.com/static/images/favicon-1.ico
|
104.16.103.112
|
||
|
https://static.canva.com/web/b20dcbcd86b70481.vendor.js
|
104.16.103.112
|
||
|
https://connect.facebook.net/en_US/fbevents.js
|
157.240.0.6
|
||
|
https://static.canva.com/web/e39ac07f2eb3ad4a.js
|
104.16.103.112
|
||
|
https://ad.doubleclick.net/activity;src=9812343;type=websi000;cat=flood0;ord=239736606;gtm=45j91e4at
|
unknown
|
||
|
https://www.canva.com/ko_kr/policies/terms-of-use
|
unknown
|
||
|
https://www.canva.com/_ajax/csrf3/ae
|
104.16.102.112
|
||
|
https://collector-22324.us.tvsquared.com/tv2track.php?idsite=TV-7272814572-1&rec=1&rand=1730333379172>mcb=1201690018
|
3.137.102.166
|
||
|
https://www.facebook.com/privacy_sandbox/pixel/register/trigger/?id=844585682227065&ev=homepage_visit&dl=https%3A%2F%2Fwww.canva.com%2Flogin%2F%3Fredirect%3D%252Fdesign%252FDAGRHU7OhOs%252FMKT99QDr9EMLJb8DISkRcw%252Fview%253Futm_content%253DDAGRHU7OhOs%2526utm_campaign%253Ddesignshare%2526utm_medium%253Dlink%2526utm_source%253Deditor&rl=&if=false&ts=1730333382445&sw=1280&sh=1024&ud[product_variant]=612f7a0edd33d5c1a7f59b38db605f5f0f9bf63cb4ce753b9bad0ff3aa941412&ud[country]=79adb2a2fce5c6ba215fe5f27f532d4e7edbac4b6a5e09e1ef3a08084a904621&v=2.9.174&r=stable&ec=0&o=4125&fbp=fb.1.1730333382444.70339655874471045&ler=empty&cdl=API_unavailable&it=1730333380952&coo=false&eid=1730333718024_173033386765753&tm=2&rqm=FGET
|
157.240.0.35
|
||
|
https://www.canva.com/policies/
|
unknown
|
||
|
https://static.canva.com/web/4ce1876078c17bba.ltr.css
|
104.16.103.112
|
||
|
https://www.canva.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
|
104.16.102.112
|
||
|
https://static.canva.com/web/907eef8a4baa25c2.ltr.css
|
104.16.103.112
|
||
|
https://ad.doubleclick.net/activity;src=9812343;type=conve0;cat=canva008;ord=1174064874;gtm=45j91e4a
|
unknown
|
||
|
https://static.canva.com/web/748178ca07be7fb4.js
|
104.16.103.112
|
||
|
https://www.facebook.com/tr/?id=844585682227065&ev=ViewContent&dl=https%3A%2F%2Fwww.canva.com%2Flogin%2F%3Fredirect%3D%252Fdesign%252FDAGRHU7OhOs%252FMKT99QDr9EMLJb8DISkRcw%252Fview%253Futm_content%253DDAGRHU7OhOs%2526utm_campaign%253Ddesignshare%2526utm_medium%253Dlink%2526utm_source%253Deditor&rl=&if=false&ts=1730333382447&sw=1280&sh=1024&ud[product_variant]=612f7a0edd33d5c1a7f59b38db605f5f0f9bf63cb4ce753b9bad0ff3aa941412&ud[country]=79adb2a2fce5c6ba215fe5f27f532d4e7edbac4b6a5e09e1ef3a08084a904621&v=2.9.174&r=stable&ec=1&o=4125&fbp=fb.1.1730333382444.70339655874471045&ler=empty&cdl=API_unavailable&it=1730333380952&coo=false&eid=1730333718024_173033386765753&tm=1&rqm=GET
|
157.240.0.35
|
||
|
https://p.tvpixel.com/i?aid=canva-aad9e5ad-3a29-42d3-a4e3-b2a423a0bfe7&e=pv&p=web&tv=1x1&url=www.canva.com&refr=&uid=undefined>mcb=178102659
|
99.83.205.94
|
||
|
https://ad.doubleclick.net/activity;register_conversion=1;src=9812343;type=websi000;cat=flood00;ord=
|
unknown
|
||
|
https://www.canva.com/_online?1730333408061
|
104.16.102.112
|
||
|
https://ad.doubleclick.net/activity;src=9812343;type=conve0;cat=canva008;ord=2054135835;gtm=45j91e4a
|
unknown
|
||
|
https://www.google.com/recaptcha/enterprise.js?render=$
|
unknown
|
||
|
https://www.canva.com/policies/privacy-policy/
|
unknown
|
||
|
https://www.canva.com/cdn-cgi/challenge-platform/h/b/jsd/r/8daf6abd5a378c58
|
104.16.102.112
|
||
|
https://www.facebook.com/tr/?id=844585682227065&ev=PageView&dl=https%3A%2F%2Fwww.canva.com%2Flogin%2F%3Fredirect%3D%252Fdesign%252FDAGRHU7OhOs%252FMKT99QDr9EMLJb8DISkRcw%252Fview%253Futm_content%253DDAGRHU7OhOs%2526utm_campaign%253Ddesignshare%2526utm_medium%253Dlink%2526utm_source%253Deditor&rl=&if=false&ts=1730333386523&cd[product_variant]=web-2&cd[country]=US&sw=1280&sh=1024&ud[product_variant]=612f7a0edd33d5c1a7f59b38db605f5f0f9bf63cb4ce753b9bad0ff3aa941412&ud[country]=79adb2a2fce5c6ba215fe5f27f532d4e7edbac4b6a5e09e1ef3a08084a904621&v=2.9.174&r=stable&ec=2&o=4126&fbp=fb.1.1730333382444.70339655874471045&cs_est=true&ler=empty&cdl=API_unavailable&it=1730333380952&coo=false&eid=1730333718024_1730333867657135&tm=1&rqm=GET
|
157.240.0.35
|
||
|
https://static.canva.com/web/images/543d7829999d351b301ced5ed3c1f087.jpg
|
104.16.103.112
|
||
|
https://sb.scorecardresearch.com/p?c1=2&c2=34402982&ns_type=hidden&ns_event=page_view&c6=canva-aad9e5ad-3a29-42d3-a4e3-b2a423a0bfe7&c7=&c9=&c8=>mcb=726119946
|
18.244.18.32
|
||
|
https://api.ipify.org?format=json
|
unknown
|
||
|
https://www.canva.com/cdn-cgi/rum?
|
104.16.102.112
|
||
|
https://www.redditstatic.com/ads/conversions-config/v1/pixel/config/t2_9z5lu86h_telemetry
|
151.101.193.140
|
||
|
https://www.canva.com/_ajax/ae/createBatch
|
104.16.102.112
|
||
|
https://px.ads.linkedin.com/collect/?pid=
|
unknown
|
||
|
https://cct.google/taggy/agent.js
|
unknown
|
||
|
https://static.canva.com/web/images/cff149ee1e9d2be50ac77bcd86769d05.woff2
|
104.16.103.112
|
||
|
https://www.facebook.com/tr/?id=844585682227065&ev=homepage_visit&dl=https%3A%2F%2Fwww.canva.com%2Flogin%2F%3Fredirect%3D%252Fdesign%252FDAGRHU7OhOs%252FMKT99QDr9EMLJb8DISkRcw%252Fview%253Futm_content%253DDAGRHU7OhOs%2526utm_campaign%253Ddesignshare%2526utm_medium%253Dlink%2526utm_source%253Deditor&rl=&if=false&ts=1730333382445&sw=1280&sh=1024&ud[product_variant]=612f7a0edd33d5c1a7f59b38db605f5f0f9bf63cb4ce753b9bad0ff3aa941412&ud[country]=79adb2a2fce5c6ba215fe5f27f532d4e7edbac4b6a5e09e1ef3a08084a904621&v=2.9.174&r=stable&ec=0&o=4125&fbp=fb.1.1730333382444.70339655874471045&ler=empty&cdl=API_unavailable&it=1730333380952&coo=false&eid=1730333718024_173033386765753&tm=2&rqm=GET
|
157.240.0.35
|
||
|
https://ad.doubleclick.net/activity;register_conversion=1;src=9812343;type=conve0;cat=canva008;ord=1
|
unknown
|
||
|
https://connect.facebook.net/
|
unknown
|
||
|
https://connect.facebook.net/signals/plugins/microdata.js?v=2.9.174
|
157.240.0.6
|
||
|
https://ad.doubleclick.net/activity;src=9812343;type=websi000;cat=flood00;ord=900737779;gtm=45j91e4a
|
unknown
|
||
|
https://ad.doubleclick.net/activity;register_conversion=1;src=9812343;type=conve0;cat=canva008;ord=2
|
unknown
|
||
|
https://www.canva.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/22755d9a86c9/main.js?
|
104.16.102.112
|
||
|
https://api-gw.metadata.io
|
unknown
|
||
|
https://static.canva.com/web/images/856bac30504ecac8dbd38dbee61de1f1.svg
|
104.16.103.112
|
||
|
https://ad.doubleclick.net/activity;src=9812343;type=paidm0;cat=canva0;ord=25830677;gtm=45j91e4at1v8
|
unknown
|
||
|
https://static.canva.com/web/779f535dfc7e9155.ltr.css
|
104.16.103.112
|
||
|
https://a.nel.cloudflare.com/report/v4?s=rYOOGgAPAFaP70RYDb3QVE9ocAYv7DevcuapodMOVUwpTaa1cNBhw8SqnEiPXdqn5ayCRE%2B01vL20q%2F7l0w4MfMhYcHxOeWqLhg1hfFRsHVg%2F34cojKws6AlAejeL6%2FjVaY%3D
|
35.190.80.1
|
||
|
https://www.google.com/.well-known/web-identity
|
216.58.206.68
|
||
|
https://tag.tapad.com/accounts/39/tags/dNOhr8t/events?data.Pagename=homepage&response_type=pixel
|
35.186.225.155
|
||
|
https://www.facebook.com/privacy_sandbox/pixel/register/trigger/?id=844585682227065&ev=Microdata&dl=https%3A%2F%2Fwww.canva.com%2Flogin%2F%3Fredirect%3D%252Fdesign%252FDAGRHU7OhOs%252FMKT99QDr9EMLJb8DISkRcw%252Fview%253Futm_content%253DDAGRHU7OhOs%2526utm_campaign%253Ddesignshare%2526utm_medium%253Dlink%2526utm_source%253Deditor&rl=&if=false&ts=1730333386525&cd[DataLayer]=%5B%5D&cd[Meta]=%7B%22title%22%3A%22Login%20to%20your%20Canva%20account%22%2C%22meta%3Adescription%22%3A%22Login%20to%20access%20and%20create%20your%20next%20design.%22%7D&cd[OpenGraph]=%7B%22og%3Asite_name%22%3A%22Canva%22%2C%22og%3Atitle%22%3A%22Login%20to%20your%20Canva%20account%22%2C%22og%3Aimage%22%3A%22https%3A%2F%2Fstatic.canva.com%2Fstatic%2Fimages%2Ffb_cover-1.jpg%22%2C%22og%3Atype%22%3A%22website%22%2C%22og%3Adescription%22%3A%22Login%20to%20access%20and%20create%20your%20next%20design.%22%7D&cd[Schema.org]=%5B%5D&sw=1280&sh=1024&ud[product_variant]=612f7a0edd33d5c1a7f59b38db605f5f0f9bf63cb4ce753b9bad0ff3aa941412&ud[country]=79adb2a2fce5c6ba215fe5f27f532d4e7edbac4b6a5e09e1ef3a08084a904621&v=2.9.174&r=stable&ec=3&o=4126&fbp=fb.1.1730333382444.70339655874471045&ler=empty&cdl=API_unavailable&it=1730333380952&coo=false&es=automatic&tm=3&rqm=FGET
|
157.240.0.35
|
||
|
https://alb.reddit.com/rp.gif?ts=1730333386529&id=t2_9z5lu86h&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&m.conversionId=&uuid=da3f4213-0e50-40f2-81d4-818150f9265f&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_49267bce&dpm=&dpcc=&dprc=
|
151.101.193.140
|
||
|
https://static.canva.com/web/4bb9c51951d1d716.vendor.js
|
104.16.103.112
|
||
|
https://connect.facebook.net/signals/config/844585682227065?v=2.9.174&r=stable&domain=www.canva.com&hme=ead923021ccd3483ef3b9b04703d0a78b943fbdc01e8d7cec21c5059f1f4a5e9&ex_m=70%2C121%2C107%2C111%2C61%2C4%2C100%2C69%2C16%2C97%2C89%2C51%2C54%2C172%2C175%2C187%2C183%2C184%2C186%2C29%2C101%2C53%2C77%2C185%2C167%2C170%2C180%2C181%2C188%2C131%2C41%2C189%2C190%2C34%2C143%2C15%2C50%2C194%2C193%2C133%2C18%2C40%2C1%2C43%2C65%2C66%2C67%2C71%2C93%2C17%2C14%2C96%2C92%2C91%2C108%2C52%2C110%2C39%2C109%2C30%2C94%2C26%2C168%2C171%2C140%2C86%2C56%2C84%2C33%2C73%2C0%2C95%2C32%2C28%2C82%2C83%2C88%2C47%2C46%2C87%2C37%2C11%2C12%2C13%2C6%2C7%2C25%2C22%2C23%2C57%2C62%2C64%2C75%2C102%2C27%2C76%2C9%2C8%2C80%2C48%2C21%2C104%2C103%2C105%2C98%2C10%2C20%2C3%2C38%2C74%2C19%2C5%2C90%2C81%2C44%2C35%2C85%2C2%2C36%2C63%2C42%2C106%2C45%2C79%2C68%2C112%2C60%2C59%2C31%2C99%2C58%2C55%2C49%2C78%2C72%2C24%2C113
|
157.240.0.6
|
||
|
https://ad.doubleclick.net/activity;register_conversion=1;src=9812343;type=paidm0;cat=canva00;ord=78
|
unknown
|
||
|
https://ad.doubleclick.net/activity;register_conversion=1;src=9812343;type=paidm0;cat=canva00;ord=72
|
unknown
|
||
|
https://www.canva.com/login/?redirect=%2Fdesign%2FDAGRHU7OhOs%2FMKT99QDr9EMLJb8DISkRcw%2Fview%3Futm_content%3DDAGRHU7OhOs%26utm_campaign%3Ddesignshare%26utm_medium%3Dlink%26utm_source%3Deditor
|
|||
|
https://static.canva.com/web/0af438d079413358.vendor.js
|
104.16.103.112
|
||
|
https://cdn.metadata.io/pixel/config
|
unknown
|
||
|
https://www.canva.com/help/get-in-touch/contact-support
|
unknown
|
||
|
https://static.canva.com/web/0ede3f01a65ed2a0.js
|
104.16.103.112
|
||
|
https://www.facebook.com/privacy_sandbox/pixel/register/trigger/?id=844585682227065&ev=ViewContent&dl=https%3A%2F%2Fwww.canva.com%2Flogin%2F%3Fredirect%3D%252Fdesign%252FDAGRHU7OhOs%252FMKT99QDr9EMLJb8DISkRcw%252Fview%253Futm_content%253DDAGRHU7OhOs%2526utm_campaign%253Ddesignshare%2526utm_medium%253Dlink%2526utm_source%253Deditor&rl=&if=false&ts=1730333382447&sw=1280&sh=1024&ud[product_variant]=612f7a0edd33d5c1a7f59b38db605f5f0f9bf63cb4ce753b9bad0ff3aa941412&ud[country]=79adb2a2fce5c6ba215fe5f27f532d4e7edbac4b6a5e09e1ef3a08084a904621&v=2.9.174&r=stable&ec=1&o=4125&fbp=fb.1.1730333382444.70339655874471045&ler=empty&cdl=API_unavailable&it=1730333380952&coo=false&eid=1730333718024_173033386765753&tm=1&rqm=FGET
|
157.240.0.35
|
||
|
https://ad.doubleclick.net/activity;register_conversion=1;src=9812343;type=websi000;cat=flood0;ord=2
|
unknown
|
||
|
https://static.canva.com/web/2359b9fab9478cec.js
|
104.16.103.112
|
||
|
https://ad.doubleclick.net/activity;register_conversion=1;src=9812343;type=websi000;cat=flood0;ord=1
|
unknown
|
||
|
https://ad.doubleclick.net/activity;src=9812343;type=websi000;cat=flood0;ord=1297888969;gtm=45j91e4a
|
unknown
|
||
|
https://pixel-config.reddit.com/pixels/t2_9z5lu86h/config
|
151.101.1.140
|
||
|
https://static.canva.com/web/images/42153edee14c6bb2affb2bdb5c065004.jpg
|
104.16.103.112
|
||
|
https://www.canva.com/ko_kr/policies/mandatory-collection-notice
|
unknown
|
||
|
https://static.canva.com/web/306ff5855d28408f.js
|
104.16.103.112
|
||
|
https://static.canva.com/web/b77b429f87fd6ea1.runtime.js
|
104.16.103.112
|
||
|
https://developers.google.com/identity/gsi/web/guides/fedcm-migration
|
unknown
|
||
|
https://static.canva.com/web/59362c63d8046de9.ltr.css
|
104.16.103.112
|
||
|
https://meet.google.com
|
unknown
|
||
|
https://api.ipify.org/?format=json
|
172.67.74.152
|
||
|
https://sb.scorecardresearch.com/p2?c1=2&c2=34402982&ns_type=hidden&ns_event=page_view&c6=canva-aad9e5ad-3a29-42d3-a4e3-b2a423a0bfe7&c7=&c9=&c8=>mcb=726119946
|
18.244.18.32
|
||
|
https://static.canva.com/web/26a8c4e333fb3663.vendor.js
|
104.16.103.112
|
||
|
https://sp.analytics.yahoo.com/spp.pl?a=10000&.yp=10137834>mcb=616819332
|
54.246.144.89
|
||
|
https://static.canva.com/static/lib/sentry/7.16.0.min.js
|
104.16.103.112
|
||
|
https://static.canva.com/web/64de167a16d42d85.js
|
104.16.103.112
|
||
|
https://ad.doubleclick.net/activity;src=9812343;type=paidm0;cat=canva0;ord=1282255362;gtm=45j91e4at1
|
unknown
|
||
|
https://github.com/getsentry/sentry-javascript
|
unknown
|
||
|
https://ad.doubleclick.net/activity;src=9812343;type=paidm0;cat=canva00;ord=723705611;gtm=45j91e4at1
|
unknown
|
||
|
https://ad.doubleclick.net/activity;src=9812343;type=websi000;cat=flood0;ord=1666986526;gtm=45j91e4a
|
unknown
|
||
|
https://www.facebook.com/tr/?id=844585682227065&ev=Microdata&dl=https%3A%2F%2Fwww.canva.com%2Flogin%2F%3Fredirect%3D%252Fdesign%252FDAGRHU7OhOs%252FMKT99QDr9EMLJb8DISkRcw%252Fview%253Futm_content%253DDAGRHU7OhOs%2526utm_campaign%253Ddesignshare%2526utm_medium%253Dlink%2526utm_source%253Deditor&rl=&if=false&ts=1730333386525&cd[DataLayer]=%5B%5D&cd[Meta]=%7B%22title%22%3A%22Login%20to%20your%20Canva%20account%22%2C%22meta%3Adescription%22%3A%22Login%20to%20access%20and%20create%20your%20next%20design.%22%7D&cd[OpenGraph]=%7B%22og%3Asite_name%22%3A%22Canva%22%2C%22og%3Atitle%22%3A%22Login%20to%20your%20Canva%20account%22%2C%22og%3Aimage%22%3A%22https%3A%2F%2Fstatic.canva.com%2Fstatic%2Fimages%2Ffb_cover-1.jpg%22%2C%22og%3Atype%22%3A%22website%22%2C%22og%3Adescription%22%3A%22Login%20to%20access%20and%20create%20your%20next%20design.%22%7D&cd[Schema.org]=%5B%5D&sw=1280&sh=1024&ud[product_variant]=612f7a0edd33d5c1a7f59b38db605f5f0f9bf63cb4ce753b9bad0ff3aa941412&ud[country]=79adb2a2fce5c6ba215fe5f27f532d4e7edbac4b6a5e09e1ef3a08084a904621&v=2.9.174&r=stable&ec=3&o=4126&fbp=fb.1.1730333382444.70339655874471045&ler=empty&cdl=API_unavailable&it=1730333380952&coo=false&es=automatic&tm=3&rqm=GET
|
157.240.0.35
|
||
|
https://www.canva.com/design/DAGRHU7OhOs/MKT99QDr9EMLJb8DISkRcw/view?utm_content=DAGRHU7OhOs&utm_campaign=designshare&utm_medium=link&utm_source=editor
|
104.16.102.112
|
There are 90 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
static.cloudflareinsights.com
|
104.16.79.73
|
||
|
p.tvpixel.com
|
99.83.205.94
|
||
|
www.canva.com
|
104.16.102.112
|
||
|
adservice.google.com
|
142.250.186.130
|
||
|
collectoru.us.tvsquared.com
|
3.137.102.166
|
||
|
spdc-global.pbp.gysm.yahoodns.net
|
54.246.144.89
|
||
|
scontent.xx.fbcdn.net
|
157.240.0.6
|
||
|
d1w725hft9421a.cloudfront.net
|
18.66.102.102
|
||
|
ct.canva.com
|
216.239.32.21
|
||
|
static.canva.com
|
104.16.103.112
|
||
|
tag.tapad.com
|
35.186.225.155
|
||
|
cdnjs.cloudflare.com
|
104.17.24.14
|
||
|
www.google.com
|
172.217.16.196
|
||
|
star-mini.c10r.facebook.com
|
157.240.0.35
|
||
|
google.com
|
142.250.186.142
|
||
|
a.nel.cloudflare.com
|
35.190.80.1
|
||
|
o13855.ingest.sentry.io
|
34.120.195.249
|
||
|
ad.doubleclick.net
|
142.250.186.102
|
||
|
chunk-composing.canva.com
|
104.16.103.112
|
||
|
ax-0001.ax-msedge.net
|
150.171.27.10
|
||
|
dualstack.reddit.map.fastly.net
|
151.101.193.140
|
||
|
telemetry.canva.com
|
104.16.102.112
|
||
|
reddit.map.fastly.net
|
151.101.1.140
|
||
|
googleads.g.doubleclick.net
|
216.58.206.66
|
||
|
sb.scorecardresearch.com
|
18.244.18.32
|
||
|
api.ipify.org
|
172.67.74.152
|
||
|
alb.reddit.com
|
unknown
|
||
|
sp.analytics.yahoo.com
|
unknown
|
||
|
collector-22324.us.tvsquared.com
|
unknown
|
||
|
sdk.iad-01.braze.com
|
unknown
|
||
|
pixel-config.reddit.com
|
unknown
|
||
|
www.facebook.com
|
unknown
|
||
|
www.redditstatic.com
|
unknown
|
||
|
x1.i.lencr.org
|
unknown
|
||
|
www.linkedin.com
|
unknown
|
||
|
cdn.metadata.io
|
unknown
|
||
|
connect.facebook.net
|
unknown
|
||
|
px.ads.linkedin.com
|
unknown
|
||
|
snap.licdn.com
|
unknown
|
There are 29 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
3.137.102.166
|
collectoru.us.tvsquared.com
|
United States
|
||
|
104.16.80.73
|
unknown
|
United States
|
||
|
104.16.102.112
|
www.canva.com
|
United States
|
||
|
151.101.193.140
|
dualstack.reddit.map.fastly.net
|
United States
|
||
|
142.250.186.70
|
unknown
|
United States
|
||
|
35.190.80.1
|
a.nel.cloudflare.com
|
United States
|
||
|
18.244.18.32
|
sb.scorecardresearch.com
|
United States
|
||
|
157.240.0.35
|
star-mini.c10r.facebook.com
|
United States
|
||
|
172.217.18.4
|
unknown
|
United States
|
||
|
18.244.18.38
|
unknown
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
142.250.185.194
|
unknown
|
United States
|
||
|
142.250.186.142
|
google.com
|
United States
|
||
|
157.240.253.35
|
unknown
|
United States
|
||
|
54.246.144.89
|
spdc-global.pbp.gysm.yahoodns.net
|
United States
|
||
|
172.217.16.196
|
www.google.com
|
United States
|
||
|
142.250.186.102
|
ad.doubleclick.net
|
United States
|
||
|
172.67.74.152
|
api.ipify.org
|
United States
|
||
|
142.250.186.130
|
adservice.google.com
|
United States
|
||
|
192.168.2.16
|
unknown
|
unknown
|
||
|
18.66.102.102
|
d1w725hft9421a.cloudfront.net
|
United States
|
||
|
157.240.0.6
|
scontent.xx.fbcdn.net
|
United States
|
||
|
35.186.225.155
|
tag.tapad.com
|
United States
|
||
|
150.171.28.10
|
unknown
|
United States
|
||
|
3.136.10.62
|
unknown
|
United States
|
||
|
99.83.205.94
|
p.tvpixel.com
|
United States
|
||
|
104.16.79.73
|
static.cloudflareinsights.com
|
United States
|
||
|
18.66.102.64
|
unknown
|
United States
|
||
|
104.17.24.14
|
cdnjs.cloudflare.com
|
United States
|
||
|
216.239.32.21
|
ct.canva.com
|
United States
|
||
|
216.58.206.66
|
googleads.g.doubleclick.net
|
United States
|
||
|
104.16.103.112
|
static.canva.com
|
United States
|
||
|
151.101.1.140
|
reddit.map.fastly.net
|
United States
|
||
|
216.58.206.68
|
unknown
|
United States
|
||
|
150.171.27.10
|
ax-0001.ax-msedge.net
|
United States
|
||
|
157.240.253.1
|
unknown
|
United States
|
||
|
75.2.57.54
|
unknown
|
United States
|
||
|
34.120.195.249
|
o13855.ingest.sentry.io
|
United States
|
There are 28 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
aFS
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
tDIText
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
tFileName
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
tFileSource
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sFileAncestors
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sDI
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sDate
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
uFileSize
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
uPageCount
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sAssetId
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
bisSharedFile
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
aFS
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
tDIText
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
tFileName
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
sDI
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
sDate
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
uFileSize
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
uPageCount
|
There are 8 hidden registries, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://www.canva.com/login/?redirect=%2Fdesign%2FDAGRHU7OhOs%2FMKT99QDr9EMLJb8DISkRcw%2Fview%3Futm_content%3DDAGRHU7OhOs%26utm_campaign%3Ddesignshare%26utm_medium%3Dlink%26utm_source%3Deditor
|
||
|
https://www.canva.com/login/?redirect=%2Fdesign%2FDAGRHU7OhOs%2FMKT99QDr9EMLJb8DISkRcw%2Fview%3Futm_content%3DDAGRHU7OhOs%26utm_campaign%3Ddesignshare%26utm_medium%3Dlink%26utm_source%3Deditor
|
||
|
https://www.canva.com/login/?redirect=%2Fdesign%2FDAGRHU7OhOs%2FMKT99QDr9EMLJb8DISkRcw%2Fview%3Futm_content%3DDAGRHU7OhOs%26utm_campaign%3Ddesignshare%26utm_medium%3Dlink%26utm_source%3Deditor
|
||
|
https://www.canva.com/login/?redirect=%2Fdesign%2FDAGRHU7OhOs%2FMKT99QDr9EMLJb8DISkRcw%2Fview%3Futm_content%3DDAGRHU7OhOs%26utm_campaign%3Ddesignshare%26utm_medium%3Dlink%26utm_source%3Deditor
|
||
|
https://www.canva.com/login/?redirect=%2Fdesign%2FDAGRHU7OhOs%2FMKT99QDr9EMLJb8DISkRcw%2Fview%3Futm_content%3DDAGRHU7OhOs%26utm_campaign%3Ddesignshare%26utm_medium%3Dlink%26utm_source%3Deditor
|