IOC Report

loading gif

Files

File Path
Type
Category
Malicious
SZAYTvvY9Y
ELF 32-bit LSB executable, MIPS, MIPS-I version 1 (SYSV), statically linked, stripped
initial sample
 malicious
/home/saturnino/.config/autostart/jbxkick.desktop
data
dropped
 malicious
/home/saturnino/.config/pulse/ee49dfd4fa47433baee88884e2d7de7c-default-sink
ASCII text
dropped
 clean
/home/saturnino/.config/pulse/ee49dfd4fa47433baee88884e2d7de7c-default-source
ASCII text
dropped
 clean
/proc/5431/oom_score_adj
very short file (no magic)
dropped
 clean
/proc/5434/oom_score_adj
very short file (no magic)
dropped
 clean
/proc/5436/oom_score_adj
very short file (no magic)
dropped
 clean
/proc/5438/oom_score_adj
very short file (no magic)
dropped
 clean
/proc/5440/oom_score_adj
very short file (no magic)
dropped
 clean
/proc/5442/oom_score_adj
very short file (no magic)
dropped
 clean
/proc/5445/oom_score_adj
very short file (no magic)
dropped
 clean
/proc/5530/oom_score_adj
very short file (no magic)
dropped
 clean
/proc/5560/oom_score_adj
very short file (no magic)
dropped
 clean
/proc/5563/oom_score_adj
very short file (no magic)
dropped
 clean
/proc/5565/oom_score_adj
very short file (no magic)
dropped
 clean
/proc/5567/oom_score_adj
very short file (no magic)
dropped
 clean
/proc/5569/oom_score_adj
very short file (no magic)
dropped
 clean
/proc/5571/oom_score_adj
very short file (no magic)
dropped
 clean
/proc/5574/oom_score_adj
very short file (no magic)
dropped
 clean
/proc/5751/oom_score_adj
very short file (no magic)
dropped
 clean
/proc/5868/oom_score_adj
very short file (no magic)
dropped
 clean
/proc/5875/oom_score_adj
very short file (no magic)
dropped
 clean
/proc/5937/oom_score_adj
very short file (no magic)
dropped
 clean
/run/mount/utab.KpH2dA
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:74061FwvVq3
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:74062zCOWc6
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:74374Zmrke6
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:744602mcqA5
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:74665pyuJq3
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:74666fOFZU3
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:74732L9yIy5
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:74733Cdldh6
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:747347bGeo4
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:75370JwuCO4
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:75371M5uFC2
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:75434knm825
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:75435FiXYV5
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:75467GHZZk3
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:755537yx0J2
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:75555inBwv2
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76160XB3lL6
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:762248LBt84
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76230E1wIP4
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:763065XzBv6
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76308BpVHP3
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76330g4YJf4
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76332LoY1W4
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76334mkGDO2
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76335eosKT3
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76357xoZyO3
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76359NuVYs5
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76381auE5A5
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:763830pQvs6
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76385VOTxQ4
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76386EziQW3
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76408aTPvm4
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76410fdAvl4
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76432ajFyn3
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76434aeX244
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76456UCfvN6
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76458wvCqi3
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76460RqRkg2
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76461oocl62
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76483ZGiAv2
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76485eABpA6
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76507TAcBq3
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76510yF3hG6
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76531EWnHJ4
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76534i5VJV3
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76557ws54k2
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76560x28BZ5
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76748i9hEp5
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76853YjB3v5
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:769693YyTV2
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:76970d4BhP4
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:78098P3rsq2
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:78341pQFg34
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:78493qF5285
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:78547ifZ413
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:78549lp0QP3
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:785806rkdQ2
ASCII text
dropped
 clean
/run/systemd/journal/streams/.#9:78581rM4oc2
ASCII text
dropped
 clean
/run/user/1000/pulse/pid
ASCII text
dropped
 clean
/run/user/127/ICEauthority
data
dropped
 clean
/run/user/127/dconf/user
very short file (no magic)
dropped
 clean
/run/user/127/gdm/Xauthority
X11 Xauthority data
dropped
 clean
/run/user/127/pulse/pid
ASCII text
dropped
 clean
/tmp/server-0.xkm
Compiled XKB Keymap: lsb, version 15
dropped
 clean
/var/jbx/logs/jbxinit.linux.out.log
ASCII text
dropped
 clean
/var/jbxinit.linux.py
data
dropped
 clean
/var/jbxkick
data
dropped
 clean
/var/lib/gdm3/.config/ibus/bus/ee49dfd4fa47433baee88884e2d7de7c-unix-0
ASCII text
dropped
 clean
/var/lib/gdm3/.config/pulse/ee49dfd4fa47433baee88884e2d7de7c-default-sink
very short file (no magic)
dropped
 clean
/var/lib/gdm3/.config/pulse/ee49dfd4fa47433baee88884e2d7de7c-default-source
very short file (no magic)
dropped
 clean
/var/log/Xorg.0.log
ASCII text
dropped
 clean
/var/log/journal/ee49dfd4fa47433baee88884e2d7de7c/system.journal
data
dropped
 clean
/var/log/journal/ee49dfd4fa47433baee88884e2d7de7c/user-1000.journal
data
dropped
 clean
There are 87 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
/tmp/SZAYTvvY9Y
/tmp/SZAYTvvY9Y
 clean
/tmp/SZAYTvvY9Y
n/a
 clean
/tmp/SZAYTvvY9Y
n/a
 clean
/tmp/SZAYTvvY9Y
n/a
 clean
/usr/lib/systemd/systemd
n/a
 clean
/usr/bin/journalctl
/usr/bin/journalctl --smart-relinquish-var
 clean
/usr/lib/systemd/systemd
n/a
 clean
/lib/systemd/systemd-journald
/lib/systemd/systemd-journald
 clean
/usr/lib/systemd/systemd
n/a
 clean
/usr/bin/journalctl
/usr/bin/journalctl --flush
 clean
/usr/sbin/gdm3
n/a
 clean
/etc/gdm3/PrimeOff/Default
/etc/gdm3/PrimeOff/Default
 clean
/usr/sbin/gdm3
n/a
 clean
/etc/gdm3/PrimeOff/Default
/etc/gdm3/PrimeOff/Default
 clean
/usr/bin/dash
n/a
 clean
/usr/bin/xdotool
xdotool windowminimize
 clean
/usr/bin/python2.7
n/a
 clean
/usr/bin/srm
srm -fr /var/jbxkick /var/jbxinit.linux.py /home/saturnino/.config/autostart/jbxkick.desktop
 clean
/usr/bin/python2.7
n/a
 clean
/usr/bin/rm
rm -fr /var/jbxkick /var/jbxinit.linux.py /home/saturnino/.config/autostart/jbxkick.desktop
 clean
/usr/bin/python2.7
n/a
 clean
/usr/bin/umount
umount -v /var/jbxall
 clean
/usr/lib/udisks2/udisksd
n/a
 clean
/usr/sbin/dumpe2fs
dumpe2fs -h /dev/sda2
 clean
/usr/lib/udisks2/udisksd
n/a
 clean
/usr/sbin/dumpe2fs
dumpe2fs -h /dev/dm-0
 clean
/usr/lib/systemd/systemd
n/a
 clean
/usr/bin/pulseaudio
/usr/bin/pulseaudio --daemonize=no --log-target=journal
 clean
/usr/lib/systemd/systemd
n/a
 clean
/usr/lib/accountsservice/accounts-daemon
/usr/lib/accountsservice/accounts-daemon
 clean
/usr/lib/accountsservice/accounts-daemon
n/a
 clean
/usr/share/language-tools/language-validate
/usr/share/language-tools/language-validate en_US.UTF-8
 clean
/usr/share/language-tools/language-validate
n/a
 clean
/usr/share/language-tools/language-options
/usr/share/language-tools/language-options
 clean
/usr/share/language-tools/language-options
n/a
 clean
/bin/sh
sh -c "locale -a | grep -F .utf8 "
 clean
/bin/sh
n/a
 clean
/usr/bin/locale
locale -a
 clean
/bin/sh
n/a
 clean
/usr/bin/grep
grep -F .utf8
 clean
/usr/lib/gdm3/gdm-session-worker
n/a
 clean
/etc/gdm3/PostSession/Default
/etc/gdm3/PostSession/Default
 clean
/usr/sbin/gdm3
n/a
 clean
/usr/lib/gdm3/gdm-session-worker
"gdm-session-worker [pam/gdm-launch-environment]"
 clean
/usr/lib/gdm3/gdm-session-worker
n/a
 clean
/usr/lib/gdm3/gdm-wayland-session
/usr/lib/gdm3/gdm-wayland-session "dbus-run-session -- gnome-session --autostart /usr/share/gdm/greeter/autostart"
 clean
/usr/lib/gdm3/gdm-wayland-session
n/a
 clean
/usr/bin/dbus-run-session
dbus-run-session -- gnome-session --autostart /usr/share/gdm/greeter/autostart
 clean
/usr/bin/dbus-run-session
n/a
 clean
/usr/bin/dbus-daemon
dbus-daemon --nofork --print-address 4 --session
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/dbus-daemon
n/a
 clean
/bin/false
/bin/false
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/dbus-daemon
n/a
 clean
/bin/false
/bin/false
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/dbus-daemon
n/a
 clean
/bin/false
/bin/false
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/dbus-daemon
n/a
 clean
/bin/false
/bin/false
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/dbus-daemon
n/a
 clean
/bin/false
/bin/false
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/dbus-daemon
n/a
 clean
/bin/false
/bin/false
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/dbus-daemon
n/a
 clean
/bin/false
/bin/false
 clean
/usr/bin/dbus-run-session
n/a
 clean
/usr/bin/gnome-session
gnome-session --autostart /usr/share/gdm/greeter/autostart
 clean
/usr/libexec/gnome-session-binary
/usr/libexec/gnome-session-binary --systemd --autostart /usr/share/gdm/greeter/autostart
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/usr/bin/session-migration
session-migration
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/bin/sh
/bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/bin/gnome-shell
 clean
/usr/bin/gnome-shell
/usr/bin/gnome-shell
 clean
/usr/sbin/gdm3
n/a
 clean
/etc/gdm3/PrimeOff/Default
/etc/gdm3/PrimeOff/Default
 clean
/usr/sbin/gdm3
n/a
 clean
/usr/lib/gdm3/gdm-session-worker
"gdm-session-worker [pam/gdm-launch-environment]"
 clean
/usr/lib/gdm3/gdm-session-worker
n/a
 clean
/usr/lib/gdm3/gdm-x-session
/usr/lib/gdm3/gdm-x-session "dbus-run-session -- gnome-session --autostart /usr/share/gdm/greeter/autostart"
 clean
/usr/lib/gdm3/gdm-x-session
n/a
 clean
/usr/bin/Xorg
/usr/bin/Xorg vt1 -displayfd 3 -auth /run/user/127/gdm/Xauthority -background none -noreset -keeptty -verbose 3
 clean
/usr/lib/xorg/Xorg.wrap
/usr/lib/xorg/Xorg.wrap vt1 -displayfd 3 -auth /run/user/127/gdm/Xauthority -background none -noreset -keeptty -verbose 3
 clean
/usr/lib/xorg/Xorg
/usr/lib/xorg/Xorg vt1 -displayfd 3 -auth /run/user/127/gdm/Xauthority -background none -noreset -keeptty -verbose 3
 clean
/usr/lib/xorg/Xorg
n/a
 clean
/bin/sh
sh -c "\"/usr/bin/xkbcomp\" -w 1 \"-R/usr/share/X11/xkb\" -xkm \"-\" -em1 \"The XKEYBOARD keymap compiler (xkbcomp) reports:\" -emp \"> \" -eml \"Errors from xkbcomp are not fatal to the X server\" \"/tmp/server-0.xkm\""
clean
/bin/sh
n/a
 clean
/usr/bin/xkbcomp
/usr/bin/xkbcomp -w 1 -R/usr/share/X11/xkb -xkm - -em1 "The XKEYBOARD keymap compiler (xkbcomp) reports:" -emp "> " -eml "Errors from xkbcomp are not fatal to the X server" /tmp/server-0.xkm
clean
/usr/lib/xorg/Xorg
n/a
 clean
/bin/sh
sh -c "\"/usr/bin/xkbcomp\" -w 1 \"-R/usr/share/X11/xkb\" -xkm \"-\" -em1 \"The XKEYBOARD keymap compiler (xkbcomp) reports:\" -emp \"> \" -eml \"Errors from xkbcomp are not fatal to the X server\" \"/tmp/server-0.xkm\""
clean
/bin/sh
n/a
 clean
/usr/bin/xkbcomp
/usr/bin/xkbcomp -w 1 -R/usr/share/X11/xkb -xkm - -em1 "The XKEYBOARD keymap compiler (xkbcomp) reports:" -emp "> " -eml "Errors from xkbcomp are not fatal to the X server" /tmp/server-0.xkm
clean
/usr/lib/gdm3/gdm-x-session
n/a
 clean
/etc/gdm3/Prime/Default
/etc/gdm3/Prime/Default
 clean
/usr/lib/gdm3/gdm-x-session
n/a
 clean
/usr/bin/dbus-run-session
dbus-run-session -- gnome-session --autostart /usr/share/gdm/greeter/autostart
 clean
/usr/bin/dbus-run-session
n/a
 clean
/usr/bin/dbus-daemon
dbus-daemon --nofork --print-address 4 --session
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/libexec/at-spi-bus-launcher
/usr/libexec/at-spi-bus-launcher
 clean
/usr/libexec/at-spi-bus-launcher
n/a
 clean
/usr/bin/dbus-daemon
/usr/bin/dbus-daemon --config-file=/usr/share/defaults/at-spi2/accessibility.conf --nofork --print-address 3
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/libexec/at-spi2-registryd
/usr/libexec/at-spi2-registryd --use-gnome-session
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/dbus-daemon
n/a
 clean
/bin/false
/bin/false
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/dbus-daemon
n/a
 clean
/bin/false
/bin/false
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/dbus-daemon
n/a
 clean
/bin/false
/bin/false
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/dbus-daemon
n/a
 clean
/bin/false
/bin/false
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/dbus-daemon
n/a
 clean
/bin/false
/bin/false
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/dbus-daemon
n/a
 clean
/bin/false
/bin/false
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/dbus-daemon
n/a
 clean
/bin/false
/bin/false
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/libexec/ibus-portal
/usr/libexec/ibus-portal
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/gjs
/usr/bin/gjs /usr/share/gnome-shell/org.gnome.Shell.Notifications
 clean
/usr/bin/dbus-daemon
n/a
 clean
/usr/bin/dbus-daemon
n/a
 clean
/bin/false
/bin/false
 clean
/usr/bin/dbus-run-session
n/a
 clean
/usr/bin/gnome-session
gnome-session --autostart /usr/share/gdm/greeter/autostart
 clean
/usr/libexec/gnome-session-binary
/usr/libexec/gnome-session-binary --systemd --autostart /usr/share/gdm/greeter/autostart
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/usr/libexec/gnome-session-check-accelerated
/usr/libexec/gnome-session-check-accelerated
 clean
/usr/libexec/gnome-session-check-accelerated
n/a
 clean
/usr/libexec/gnome-session-check-accelerated-gl-helper
/usr/libexec/gnome-session-check-accelerated-gl-helper --print-renderer
 clean
/usr/libexec/gnome-session-check-accelerated
n/a
 clean
/usr/libexec/gnome-session-check-accelerated-gles-helper
/usr/libexec/gnome-session-check-accelerated-gles-helper --print-renderer
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/usr/bin/session-migration
session-migration
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/bin/sh
/bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/bin/gnome-shell
 clean
/usr/bin/gnome-shell
/usr/bin/gnome-shell
 clean
/usr/bin/gnome-shell
n/a
 clean
/usr/bin/ibus-daemon
ibus-daemon --panel disable --xim
 clean
/usr/bin/ibus-daemon
n/a
 clean
/usr/libexec/ibus-memconf
/usr/libexec/ibus-memconf
 clean
/usr/bin/ibus-daemon
n/a
 clean
/usr/bin/ibus-daemon
n/a
 clean
/usr/libexec/ibus-x11
/usr/libexec/ibus-x11 --kill-daemon
 clean
/usr/bin/ibus-daemon
n/a
 clean
/usr/libexec/ibus-engine-simple
/usr/libexec/ibus-engine-simple
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/bin/sh
/bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-sharing
 clean
/usr/libexec/gsd-sharing
/usr/libexec/gsd-sharing
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/bin/sh
/bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-wacom
 clean
/usr/libexec/gsd-wacom
/usr/libexec/gsd-wacom
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/bin/sh
/bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-color
 clean
/usr/libexec/gsd-color
/usr/libexec/gsd-color
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/bin/sh
/bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-keyboard
 clean
/usr/libexec/gsd-keyboard
/usr/libexec/gsd-keyboard
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/bin/sh
/bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-print-notifications
 clean
/usr/libexec/gsd-print-notifications
/usr/libexec/gsd-print-notifications
 clean
/usr/libexec/gsd-print-notifications
n/a
 clean
/usr/libexec/gsd-print-notifications
n/a
 clean
/usr/libexec/gsd-printer
/usr/libexec/gsd-printer
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/bin/sh
/bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-rfkill
 clean
/usr/libexec/gsd-rfkill
/usr/libexec/gsd-rfkill
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/bin/sh
/bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-smartcard
 clean
/usr/libexec/gsd-smartcard
/usr/libexec/gsd-smartcard
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/bin/sh
/bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-datetime
 clean
/usr/libexec/gsd-datetime
/usr/libexec/gsd-datetime
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/bin/sh
/bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-media-keys
 clean
/usr/libexec/gsd-media-keys
/usr/libexec/gsd-media-keys
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/bin/sh
/bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-screensaver-proxy
 clean
/usr/libexec/gsd-screensaver-proxy
/usr/libexec/gsd-screensaver-proxy
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/bin/sh
/bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-sound
 clean
/usr/libexec/gsd-sound
/usr/libexec/gsd-sound
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/bin/sh
/bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-a11y-settings
 clean
/usr/libexec/gsd-a11y-settings
/usr/libexec/gsd-a11y-settings
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/bin/sh
/bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-housekeeping
 clean
/usr/libexec/gsd-housekeeping
/usr/libexec/gsd-housekeeping
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/bin/sh
/bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-power
 clean
/usr/libexec/gsd-power
/usr/libexec/gsd-power
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/bin/sh
/bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/bin/spice-vdagent
 clean
/usr/bin/spice-vdagent
/usr/bin/spice-vdagent
 clean
/usr/libexec/gnome-session-binary
n/a
 clean
/bin/sh
/bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh xbrlapi -q
 clean
/usr/bin/xbrlapi
xbrlapi -q
 clean
/usr/sbin/gdm3
n/a
 clean
/etc/gdm3/PrimeOff/Default
/etc/gdm3/PrimeOff/Default
 clean
/usr/sbin/gdm3
n/a
 clean
/etc/gdm3/PrimeOff/Default
/etc/gdm3/PrimeOff/Default
 clean
/usr/libexec/gvfsd-fuse
n/a
 clean
/bin/fusermount
fusermount -u -q -z -- /run/user/1000/gvfs
 clean
/usr/lib/systemd/systemd
n/a
 clean
/lib/systemd/systemd-user-runtime-dir
/lib/systemd/systemd-user-runtime-dir stop 1000
 clean
/usr/lib/systemd/systemd
n/a
 clean
/lib/systemd/systemd-localed
/lib/systemd/systemd-localed
 clean
/usr/lib/systemd/systemd
n/a
 clean
/usr/bin/pulseaudio
/usr/bin/pulseaudio --daemonize=no --log-target=journal
 clean
/usr/lib/systemd/systemd
n/a
 clean
/usr/libexec/geoclue
/usr/libexec/geoclue
 clean
/usr/lib/systemd/systemd
n/a
 clean
/lib/systemd/systemd-hostnamed
/lib/systemd/systemd-hostnamed
 clean
/usr/lib/systemd/systemd
n/a
 clean
/lib/systemd/systemd-localed
/lib/systemd/systemd-localed
 clean
/usr/lib/systemd/systemd
n/a
 clean
/usr/libexec/fprintd
/usr/libexec/fprintd
 clean
There are 225 hidden processes, click here to show them.

URLs

Name
IP
Malicious
http://wiki.x.org
unknown
 clean
http://www.ubuntu.com/support)
unknown
 clean

IPs

IP
Domain
Country
Malicious
47.114.175.86
unknown
China
clean
9.207.27.19
unknown
United States
clean
69.142.48.73
unknown
United States
clean
146.26.119.14
unknown
United States
clean
104.15.73.51
unknown
United States
clean
195.10.52.220
unknown
United Kingdom
clean
186.56.181.240
unknown
Argentina
clean
218.215.222.106
unknown
Australia
clean
209.123.159.201
unknown
United States
clean
169.192.248.17
unknown
United States
clean
53.139.99.46
unknown
Germany
clean
25.140.116.154
unknown
United Kingdom
clean
197.3.63.189
unknown
Tunisia
clean
80.250.244.54
unknown
Slovakia (SLOVAK Republic)
clean
5.236.134.237
unknown
Iran (ISLAMIC Republic Of)
clean
170.155.48.13
unknown
Argentina
clean
34.173.106.181
unknown
United States
clean
150.240.17.42
unknown
United States
clean
88.52.104.178
unknown
Italy
clean
95.76.26.248
unknown
Romania
clean
75.177.252.219
unknown
United States
clean
220.246.216.123
unknown
Hong Kong
clean
14.171.11.141
unknown
Viet Nam
clean
135.93.130.159
unknown
United States
clean
34.11.101.203
unknown
United States
clean
118.48.111.61
unknown
Korea Republic of
clean
95.6.137.33
unknown
Turkey
clean
217.155.41.147
unknown
United Kingdom
clean
83.106.12.197
unknown
United Kingdom
clean
80.108.189.170
unknown
Austria
clean
108.13.86.230
unknown
United States
clean
161.247.27.64
unknown
United States
clean
217.162.249.202
unknown
Switzerland
clean
132.214.230.219
unknown
Canada
clean
34.81.11.77
unknown
United States
clean
206.33.185.11
unknown
United States
clean
72.67.239.16
unknown
United States
clean
120.150.226.5
unknown
Australia
clean
137.250.128.90
unknown
Germany
clean
139.8.196.153
unknown
Germany
clean
142.219.199.121
unknown
Canada
clean
48.88.173.154
unknown
United States
clean
128.18.204.181
unknown
United States
clean
77.60.19.67
unknown
Netherlands
clean
119.48.25.145
unknown
China
clean
32.71.25.105
unknown
United States
clean
188.160.154.140
unknown
Syrian Arab Republic
clean
88.73.217.63
unknown
Germany
clean
182.0.0.137
unknown
Indonesia
clean
2.222.184.187
unknown
United Kingdom
clean
220.161.193.24
unknown
China
clean
34.45.16.132
unknown
United States
clean
80.122.167.237
unknown
Austria
clean
108.194.245.80
unknown
United States
clean
117.11.224.254
unknown
China
clean
111.63.96.99
unknown
China
clean
173.124.66.194
unknown
United States
clean
220.161.2.122
unknown
China
clean
20.74.1.43
unknown
United States
clean
183.62.106.32
unknown
China
clean
9.55.228.101
unknown
United States
clean
157.213.201.203
unknown
United States
clean
173.188.30.6
unknown
United States
clean
88.41.34.69
unknown
Italy
clean
118.140.192.85
unknown
Hong Kong
clean
145.233.36.105
unknown
United Kingdom
clean
145.4.3.12
unknown
Netherlands
clean
218.124.61.47
unknown
Japan
clean
146.74.25.222
unknown
United States
clean
4.93.103.173
unknown
United States
clean
141.200.191.152
unknown
Germany
clean
121.226.187.124
unknown
China
clean
123.211.111.178
unknown
Australia
clean
182.8.245.166
unknown
Indonesia
clean
188.242.132.208
unknown
Russian Federation
clean
77.145.164.187
unknown
France
clean
52.187.247.165
unknown
United States
clean
41.216.51.182
unknown
Benin
clean
126.28.125.143
unknown
Japan
clean
121.170.84.79
unknown
Korea Republic of
clean
37.223.25.192
unknown
Spain
clean
154.134.179.153
unknown
Egypt
clean
53.20.182.103
unknown
Germany
clean
14.36.212.117
unknown
Korea Republic of
clean
152.131.33.86
unknown
United States
clean
5.214.242.236
unknown
Iran (ISLAMIC Republic Of)
clean
18.251.67.211
unknown
United States
clean
27.6.83.212
unknown
India
clean
25.138.160.44
unknown
United Kingdom
clean
53.92.73.63
unknown
Germany
clean
79.188.24.154
unknown
Poland
clean
123.36.202.109
unknown
Korea Republic of
clean
132.170.28.40
unknown
United States
clean
175.94.80.106
unknown
China
clean
171.6.101.90
unknown
Thailand
clean
38.16.79.218
unknown
United States
clean
54.254.156.131
unknown
United States
clean
133.74.96.232
unknown
Japan
clean
65.3.68.26
unknown
United States
clean
101.166.215.220
unknown
Australia
clean
There are 90 hidden IPs, click here to show them.