IOC Report
https://decktop.us/MUYKd1

loading gif

Files

File Path
Type
Category
Malicious
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Aug 29 14:16:40 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Aug 29 14:16:40 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:54:41 2023, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Aug 29 14:16:40 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Aug 29 14:16:40 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Aug 29 14:16:40 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
Chrome Cache Entry: 194
HTML document, ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 195
ASCII text, with very long lines (34229)
dropped
Chrome Cache Entry: 196
JSON data
dropped
Chrome Cache Entry: 197
JSON data
dropped
Chrome Cache Entry: 198
ASCII text, with very long lines (1572)
downloaded
Chrome Cache Entry: 199
ASCII text, with very long lines (3567), with no line terminators
downloaded
Chrome Cache Entry: 200
JSON data
dropped
Chrome Cache Entry: 201
ASCII text, with very long lines (18563)
dropped
Chrome Cache Entry: 202
JSON data
dropped
Chrome Cache Entry: 203
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 204
HTML document, ASCII text
dropped
Chrome Cache Entry: 205
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 206
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 207
JSON data
dropped
Chrome Cache Entry: 208
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 209
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 210
HTML document, ASCII text, with very long lines (2216), with no line terminators
dropped
Chrome Cache Entry: 211
ASCII text, with very long lines (18563)
downloaded
Chrome Cache Entry: 212
ASCII text, with very long lines (4179)
downloaded
Chrome Cache Entry: 213
ASCII text, with very long lines (65460)
dropped
Chrome Cache Entry: 214
JSON data
downloaded
Chrome Cache Entry: 215
ASCII text, with very long lines (5552)
dropped
Chrome Cache Entry: 216
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 217
JSON data
downloaded
Chrome Cache Entry: 218
ASCII text, with very long lines (65460)
downloaded
Chrome Cache Entry: 219
ASCII text, with very long lines (1524)
dropped
Chrome Cache Entry: 220
JSON data
dropped
Chrome Cache Entry: 221
ASCII text, with very long lines (5552)
downloaded
Chrome Cache Entry: 222
ASCII text, with very long lines (34229)
dropped
Chrome Cache Entry: 223
JSON data
downloaded
Chrome Cache Entry: 224
Web Open Font Format (Version 2), TrueType, length 21296, version 1.0
downloaded
Chrome Cache Entry: 225
ASCII text, with very long lines (3567), with no line terminators
dropped
Chrome Cache Entry: 226
HTML document, ASCII text
downloaded
Chrome Cache Entry: 227
HTML document, ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 228
ASCII text, with very long lines (65536), with no line terminators
dropped
Chrome Cache Entry: 229
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 230
ASCII text, with very long lines (65509)
downloaded
Chrome Cache Entry: 231
Unicode text, UTF-8 text, with very long lines (41169)
downloaded
Chrome Cache Entry: 232
Web Open Font Format (Version 2), TrueType, length 45300, version 1.0
downloaded
Chrome Cache Entry: 233
ASCII text
downloaded
Chrome Cache Entry: 234
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 235
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 236
PNG image data, 312 x 82, 8-bit/color RGB, non-interlaced
dropped
Chrome Cache Entry: 237
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 238
JSON data
dropped
Chrome Cache Entry: 239
HTML document, ASCII text, with very long lines (2216), with no line terminators
downloaded
Chrome Cache Entry: 240
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 241
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 242
JSON data
dropped
Chrome Cache Entry: 243
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
dropped
Chrome Cache Entry: 244
JSON data
dropped
Chrome Cache Entry: 245
ASCII text, with very long lines (9189)
downloaded
Chrome Cache Entry: 246
HTML document, ASCII text, with very long lines (1316), with no line terminators
downloaded
Chrome Cache Entry: 247
JSON data
dropped
Chrome Cache Entry: 248
JSON data
dropped
Chrome Cache Entry: 249
ASCII text, with very long lines (65465)
dropped
Chrome Cache Entry: 250
JSON data
dropped
Chrome Cache Entry: 251
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 252
JSON data
dropped
Chrome Cache Entry: 253
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 254
ASCII text, with very long lines (1524)
downloaded
Chrome Cache Entry: 255
JSON data
dropped
Chrome Cache Entry: 256
PNG image data, 312 x 82, 8-bit/color RGB, non-interlaced
downloaded
Chrome Cache Entry: 257
JSON data
dropped
Chrome Cache Entry: 258
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 259
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 260
JSON data
dropped
Chrome Cache Entry: 261
ASCII text
downloaded
Chrome Cache Entry: 262
Unicode text, UTF-8 text, with very long lines (2637), with no line terminators
dropped
Chrome Cache Entry: 263
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 264
JSON data
downloaded
Chrome Cache Entry: 265
ASCII text, with very long lines (4755), with no line terminators
downloaded
Chrome Cache Entry: 266
JSON data
downloaded
Chrome Cache Entry: 267
ASCII text, with very long lines (34229)
downloaded
Chrome Cache Entry: 268
JSON data
downloaded
Chrome Cache Entry: 269
ASCII text, with very long lines (17320), with no line terminators
dropped
Chrome Cache Entry: 270
ASCII text, with very long lines (17320), with no line terminators
downloaded
Chrome Cache Entry: 271
Web Open Font Format (Version 2), TrueType, length 20904, version 1.0
downloaded
Chrome Cache Entry: 272
ASCII text, with very long lines (65465)
downloaded
Chrome Cache Entry: 273
Unicode text, UTF-8 text, with very long lines (41169)
dropped
Chrome Cache Entry: 274
JSON data
dropped
Chrome Cache Entry: 275
ASCII text, with very long lines (55466)
dropped
Chrome Cache Entry: 276
JSON data
downloaded
Chrome Cache Entry: 277
JSON data
dropped
Chrome Cache Entry: 278
ASCII text, with very long lines (34229)
downloaded
Chrome Cache Entry: 279
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
downloaded
Chrome Cache Entry: 280
ASCII text, with very long lines (4179)
dropped
Chrome Cache Entry: 281
ASCII text
dropped
Chrome Cache Entry: 282
JSON data
dropped
Chrome Cache Entry: 283
Unicode text, UTF-8 text, with very long lines (2522), with no line terminators
downloaded
Chrome Cache Entry: 284
ASCII text, with very long lines (29927)
downloaded
Chrome Cache Entry: 285
JSON data
dropped
Chrome Cache Entry: 286
ASCII text, with very long lines (27137)
downloaded
Chrome Cache Entry: 287
ASCII text, with very long lines (27137)
dropped
Chrome Cache Entry: 288
ASCII text, with very long lines (65509)
dropped
Chrome Cache Entry: 289
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 290
ASCII text, with very long lines (55466)
downloaded
Chrome Cache Entry: 291
JSON data
dropped
Chrome Cache Entry: 292
ASCII text, with very long lines (9189)
dropped
Chrome Cache Entry: 293
ASCII text, with very long lines (4774), with no line terminators
dropped
Chrome Cache Entry: 294
SVG Scalable Vector Graphics image
dropped
There are 98 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://decktop.us/MUYKd1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2108 --field-trial-handle=2036,i,8367177826627279912,13474259610492686603,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8

URLs

Name
IP
Malicious
https://decktop.us/MUYKd1
malicious
https://stats.g.doubleclick.net/g/collect
unknown
https://bam.nr-data.net/events/1/NRJS-43e56c8b880ca8453b7?a=1134428518&sa=1&v=1.250.0&t=Unnamed%20Transaction&rst=32445&ck=0&s=7337744c28dd3810&ref=https://app.decktopus.com/share/MUYKd1/1&hr=0
162.247.243.29
https://in-automate.brevo.com/p
unknown
https://connect.facebook.net/signals/config/934841733790287?v=2.9.166&r=stable&domain=app.decktopus.com&hme=da9a399065fb1c492026018b9e54864148adfb49d800f41752428fb7b59190f8&ex_m=69%2C118%2C104%2C108%2C60%2C4%2C97%2C68%2C16%2C94%2C86%2C50%2C53%2C168%2C171%2C183%2C179%2C180%2C182%2C29%2C98%2C52%2C75%2C181%2C163%2C166%2C176%2C177%2C184%2C127%2C40%2C34%2C139%2C15%2C49%2C190%2C189%2C129%2C18%2C39%2C1%2C42%2C64%2C65%2C66%2C70%2C90%2C17%2C14%2C93%2C89%2C88%2C105%2C51%2C107%2C38%2C106%2C30%2C91%2C26%2C164%2C167%2C136%2C28%2C11%2C12%2C13%2C6%2C7%2C25%2C22%2C23%2C56%2C61%2C63%2C73%2C99%2C27%2C74%2C9%2C8%2C78%2C47%2C21%2C101%2C100%2C102%2C95%2C10%2C20%2C3%2C19%2C83%2C55%2C81%2C33%2C72%2C0%2C92%2C32%2C80%2C85%2C46%2C45%2C84%2C37%2C5%2C87%2C79%2C43%2C35%2C82%2C2%2C36%2C62%2C41%2C103%2C44%2C77%2C67%2C109%2C59%2C58%2C31%2C96%2C57%2C54%2C48%2C76%2C71%2C24%2C110
157.240.251.9
https://www.redditstatic.com/ads/pixel.js
unknown
https://decktop.us/MUYKd1
44.216.113.21
https://us.i.posthog.com/s/?ip=1&_=1724944666339&ver=1.151.0&compression=gzip-js
3.210.157.52
https://us.i.posthog.com/s/?ip=1&_=1724944696410&ver=1.151.0&compression=gzip-js
34.239.4.98
https://us.i.posthog.com/s/?ip=1&_=1724944676309&ver=1.151.0&compression=gzip-js
34.239.4.98
https://affiliate.decktopus.com/rw.js
161.35.235.194
https://js-agent.newrelic.com/nr-spa-1.250.0.min.js
162.247.243.39
https://www.google.com
unknown
https://www.youtube.com/iframe_api
unknown
https://bam.nr-data.net/events/1/NRJS-43e56c8b880ca8453b7?a=1134428518&sa=1&v=1.250.0&t=Unnamed%20Transaction&rst=72468&ck=0&s=7337744c28dd3810&ref=https://app.decktopus.com/share/MUYKd1/1&hr=0
162.247.243.29
https://staticfiles.gleap.io/gfeedback_widgets/Fv2CqD6OJES9uRcFsHGQ9aoGB816gu5RneGBUyJXZYD3tmKC2DElV
unknown
https://bam.nr-data.net/jserrors/1/NRJS-43e56c8b880ca8453b7?a=1134428518&sa=1&v=1.250.0&t=Unnamed%20Transaction&rst=32444&ck=0&s=7337744c28dd3810&ref=https://app.decktopus.com/share/MUYKd1/1&hr=0
162.247.243.29
https://app.decktopus.com/env.js
13.227.219.73
https://connect.facebook.net/en_US/fbevents.js
157.240.251.9
https://gleapcdn.com/res/iconcontact.svg
unknown
https://app.decktopus.com/static/js/main.cca6725e.js
13.227.219.73
https://trc-events.taboola.com/1624391/log/3/unip?en=pre_d_eng_tb&tos=1562&scd=0&ssd=1&est=1724944614808&ver=36&isls=true&src=i&invt=1500&msa=0&rv=1&tim=1724944616371&vi=1724944614802&ri=e9fb83ffe8056d1bc628840ca304ef4b&sd=v2_1bbd812e3607cddfd2181c1d88e40022_92820db9-a51e-44f1-944f-b308b0e6130c-tuctdca1668_1724944616_1724944616_CNawjgYQx5JjGJKL2PWZMiABKAEw4QE4kaQOQPzYD0iry9kDUOoEWABgAGiQgI6I5eeGxhBwAQ&ui=92820db9-a51e-44f1-944f-b308b0e6130c-tuctdca1668&ref=null&cv=20240822-5-RELEASE&item-url=https%3A%2F%2Fapp.decktopus.com%2Fshare%2FMUYKd1%2F1&it=JS_PIXEL
141.226.228.48
https://bam.nr-data.net/events/1/NRJS-43e56c8b880ca8453b7?a=1134428518&sa=1&v=1.250.0&t=Unnamed%20Transaction&rst=42453&ck=0&s=7337744c28dd3810&ref=https://app.decktopus.com/share/MUYKd1/1&hr=0
162.247.243.29
https://trc-events.taboola.com/1624391/log/3/unip?en=pre_d_eng_tb&tos=22588&scd=0&ssd=1&est=1724944614808&ver=36&isls=true&src=i&invt=12000&msa=0&rv=1&tim=1724944637397&vi=1724944614802&ri=e9fb83ffe8056d1bc628840ca304ef4b&sd=v2_1bbd812e3607cddfd2181c1d88e40022_92820db9-a51e-44f1-944f-b308b0e6130c-tuctdca1668_1724944616_1724944616_CNawjgYQx5JjGJKL2PWZMiABKAEw4QE4kaQOQPzYD0iry9kDUOoEWABgAGiQgI6I5eeGxhBwAQ&ui=92820db9-a51e-44f1-944f-b308b0e6130c-tuctdca1668&ref=null&cv=20240822-5-RELEASE&item-url=https%3A%2F%2Fapp.decktopus.com%2Fshare%2FMUYKd1%2F1&it=JS_PIXEL
141.226.228.48
https://api.gleap.io/sessions
67.207.79.245
https://bam.nr-data.net/events/1/NRJS-43e56c8b880ca8453b7?a=1134428518&sa=1&v=1.250.0&t=Unnamed%20Transaction&rst=22447&ck=0&s=7337744c28dd3810&ref=https://app.decktopus.com/share/MUYKd1/1&hr=0
162.247.243.29
https://bam.nr-data.net/jserrors/1/NRJS-43e56c8b880ca8453b7?a=1134428518&sa=1&v=1.250.0&t=Unnamed%20Transaction&rst=62456&ck=0&s=7337744c28dd3810&ref=https://app.decktopus.com/share/MUYKd1/1&hr=0
162.247.243.29
https://staticfiles.gleap.io/ghelpcenter_logos/Mvv8YzmygaBLCSUQsq1sp8JcgKzXyizoNsEhodmWuW630yymgm4we
unknown
https://sibautomation.com/cm.html?key=
unknown
https://us.i.posthog.com/s/?ip=1&_=1724944706386&ver=1.151.0&compression=gzip-js
34.239.4.98
https://quantumluminaa.sa.com/N2AB1/
unknown
https://in-automate.brevo.com/p?key=iavczyxvxovxsvex575j73fd&cuid=6e32625a-90cb-4beb-a0d2-d4e4829a00de&ma_url=https%3A%2F%2Fapp.decktopus.com%2Fshare%2FMUYKd1%2F1&sib_type=page&ma_title=Decktopus%20%7C%20Create%20Better%20Presentations%20%7C%20AI%20Presentation%20Assistant&sib_name=Decktopus%20%7C%20Create%20Better%20Presentations%20%7C%20AI%20Presentation%20Assistant&ma_referrer=&ma_path=%2Fshare%2FMUYKd1%2F1
172.64.150.216
https://www.facebook.com/tr/?id=934841733790287&ev=PageView&dl=https%3A%2F%2Fapp.decktopus.com%2Fshare%2FMUYKd1%2F1&rl=&if=false&ts=1724944616809&sw=1280&sh=1024&v=2.9.166&r=stable&ec=0&o=4126&fbp=fb.1.1724944616806.295182205204214750&cs_est=true&ler=empty&cdl=API_unavailable&it=1724944615421&coo=false&rqm=GET
157.240.253.35
https://bam.nr-data.net/jserrors/1/NRJS-43e56c8b880ca8453b7?a=1134428518&sa=1&v=1.250.0&t=Unnamed%20Transaction&rst=122500&ck=0&s=7337744c28dd3810&ref=https://app.decktopus.com/share/MUYKd1/1&hr=0
162.247.243.29
https://cdn.taboola.com/libtrc/unip/1624391/tfa.js
151.101.1.44
https://us.i.posthog.com/s/?ip=1&_=1724944656323&ver=1.151.0&compression=gzip-js
3.210.157.52
https://apiv21.decktopus.com/api/
unknown
https://trc-events.taboola.com/1624391/log/3/unip?en=pre_d_eng_tb&tos=4567&scd=0&ssd=1&est=1724944614808&ver=36&isls=true&src=i&invt=3000&msa=0&rv=1&tim=1724944619376&vi=1724944614802&ri=e9fb83ffe8056d1bc628840ca304ef4b&sd=v2_1bbd812e3607cddfd2181c1d88e40022_92820db9-a51e-44f1-944f-b308b0e6130c-tuctdca1668_1724944616_1724944616_CNawjgYQx5JjGJKL2PWZMiABKAEw4QE4kaQOQPzYD0iry9kDUOoEWABgAGiQgI6I5eeGxhBwAQ&ui=92820db9-a51e-44f1-944f-b308b0e6130c-tuctdca1668&ref=null&cv=20240822-5-RELEASE&item-url=https%3A%2F%2Fapp.decktopus.com%2Fshare%2FMUYKd1%2F1&it=JS_PIXEL
141.226.228.48
https://us.i.posthog.com/s/?ip=1&_=1724944632445&ver=1.151.0&compression=gzip-js
3.210.157.52
https://app.decktopus.com/share/MUYKd1
13.227.219.73
https://us.i.posthog.com/s/?ip=1&_=1724944619571&ver=1.151.0&compression=gzip-js
3.210.157.52
https://cdn.taboola.com/libtrc/unip/
unknown
https://cct.google/taggy/agent.js
unknown
https://apiv21.decktopus.com/api/public/decks/MUYKd1
34.231.150.201
https://connect.facebook.net/
unknown
https://gleapcdn.com/res/iconbug.svg
unknown
https://bam.nr-data.net/1/NRJS-43e56c8b880ca8453b7?a=1134428518&sa=1&v=1.250.0&t=Unnamed%20Transaction&rst=21797&ck=0&s=7337744c28dd3810&ref=https://app.decktopus.com/share/MUYKd1/1&hr=0&af=err,xhr,stn,ins,spa&be=2304&fe=18682&dc=11904&fsh=1&perf=%7B%22timing%22:%7B%22of%22:1724944598246,%22n%22:0,%22f%22:938,%22dn%22:939,%22dne%22:954,%22c%22:954,%22s%22:954,%22ce%22:1672,%22rq%22:1673,%22rp%22:2304,%22rpe%22:2314,%22di%22:3307,%22ds%22:14207,%22de%22:14208,%22dc%22:20981,%22l%22:20981,%22le%22:20986%7D,%22navigation%22:%7B%7D%7D&fp=15050&fcp=15050
162.247.243.29
https://cdn.taboola.com/scripts/cds-pips.js
151.101.1.44
https://app.decktopus.com/static/media/Sailec-Medium.d5050408323b1d11f631.woff2
13.227.219.73
https://quilljs.com/
unknown
https://us-assets.i.posthog.com/static/recorder.js?v=1.151.0
104.22.58.181
https://us.i.posthog.com/s/?ip=1&_=1724944716623&ver=1.151.0&compression=gzip-js
34.239.4.98
https://staticfiles.gleap.io/ghelpcenter_logos/9hp585twjNRs5C7sJ2uCPekoohZsJ2h6wnxHNU87YXX8BC2oMapCX
unknown
https://bam.nr-data.net/jserrors/1/NRJS-43e56c8b880ca8453b7?a=1134428518&sa=1&v=1.250.0&t=Unnamed%20Transaction&rst=72467&ck=0&s=7337744c28dd3810&ref=https://app.decktopus.com/share/MUYKd1/1&hr=0
162.247.243.29
https://ws.gleap.io/?gleapId=d26394f5-138d-46b0-b744-a54230d258c0&gleapHash=609dfd72363e55d074c4b5e1ff7a1e533d29a3f16a890c5fbc61106b85929662&apiKey=r5nfNhmzNkbIZ8AJbKfvpFxj7jQoAIHi&sdkVersion=13.6.5
157.230.79.42
https://app.decktopus.com/static/media/Sailec-Regular.307c4fb7f8da8e0a7fa0.woff2
13.227.219.73
https://trc-events.taboola.com/1624391/log/3/unip?en=pre_d_eng_tb&tos=46593&scd=0&ssd=1&est=1724944614808&ver=36&isls=true&src=i&invt=24000&msa=0&rv=1&tim=1724944661402&vi=1724944614802&ri=e9fb83ffe8056d1bc628840ca304ef4b&sd=v2_1bbd812e3607cddfd2181c1d88e40022_92820db9-a51e-44f1-944f-b308b0e6130c-tuctdca1668_1724944616_1724944616_CNawjgYQx5JjGJKL2PWZMiABKAEw4QE4kaQOQPzYD0iry9kDUOoEWABgAGiQgI6I5eeGxhBwAQ&ui=92820db9-a51e-44f1-944f-b308b0e6130c-tuctdca1668&ref=null&cv=20240822-5-RELEASE&item-url=https%3A%2F%2Fapp.decktopus.com%2Fshare%2FMUYKd1%2F1&it=JS_PIXEL
141.226.228.48
https://app.decktopus.com/nr.js
13.227.219.73
https://bam.nr-data.net/events/1/NRJS-43e56c8b880ca8453b7?a=1134428518&sa=1&v=1.250.0&t=Unnamed%20Transaction&rst=122501&ck=0&s=7337744c28dd3810&ref=https://app.decktopus.com/share/MUYKd1/1&hr=0
162.247.243.29
https://app.decktopus.com/manifest.json
13.227.219.73
https://us.i.posthog.com/s/?ip=1&_=1724944636292&ver=1.151.0&compression=gzip-js
3.210.157.52
https://events.launchdarkly.com/events/bulk/65dc8b71b13dd50fd060d125
34.194.44.50
https://us.i.posthog.com/s/?ip=1&_=1724944624233&ver=1.151.0&compression=gzip-js
3.210.157.52
https://trc-events.taboola.com/1624391/log/3/unip?en=pre_d_eng_tb&tos=10577&scd=0&ssd=1&est=1724944614808&ver=36&isls=true&src=i&invt=6000&msa=0&rv=1&tim=1724944625386&vi=1724944614802&ri=e9fb83ffe8056d1bc628840ca304ef4b&sd=v2_1bbd812e3607cddfd2181c1d88e40022_92820db9-a51e-44f1-944f-b308b0e6130c-tuctdca1668_1724944616_1724944616_CNawjgYQx5JjGJKL2PWZMiABKAEw4QE4kaQOQPzYD0iry9kDUOoEWABgAGiQgI6I5eeGxhBwAQ&ui=92820db9-a51e-44f1-944f-b308b0e6130c-tuctdca1668&ref=null&cv=20240822-5-RELEASE&item-url=https%3A%2F%2Fapp.decktopus.com%2Fshare%2FMUYKd1%2F1&it=JS_PIXEL
141.226.228.48
https://api.gleap.io/config/r5nfNhmzNkbIZ8AJbKfvpFxj7jQoAIHi?lang=en
67.207.79.245
https://bam.nr-data.net/jserrors/1/NRJS-43e56c8b880ca8453b7?a=1134428518&sa=1&v=1.250.0&t=Unnamed%20Transaction&rst=42452&ck=0&s=7337744c28dd3810&ref=https://app.decktopus.com/share/MUYKd1/1&hr=0
162.247.243.29
https://app.decktopus.com/static/css/main.575a8867.css
13.227.219.73
https://bam.nr-data.net/jserrors/1/NRJS-43e56c8b880ca8453b7?a=1134428518&sa=1&v=1.250.0&t=Unnamed%20Transaction&rst=92481&ck=0&s=7337744c28dd3810&ref=https://app.decktopus.com/share/MUYKd1/1&hr=0
162.247.243.29
https://us.i.posthog.com/e/?ip=1&_=1724944612525&ver=1.151.0&compression=base64
3.210.157.52
https://cdn.taboola.com/scripts/eid.es5.js
151.101.1.44
https://apiv21.decktopus.com/api/public/decks/4156935/slides/17419961/data/5588782
34.231.150.201
https://sibautomation.com/sa.js?key=iavczyxvxovxsvex575j73fd
104.18.39.141
https://cds.taboola.com/?uid=92820db9-a51e-44f1-944f-b308b0e6130c-tuctdca1668&ptf=V2luZG93cw==&ptfv=MTAuMC4w&ufv=MTE3LjAuNTkzOC4xNDk=&bnd=R29vZ2xlIENocm9tZQ==&bndv=MTE3&bnd=Tm90O0E9QnJhbmQ=&bndv=OA==&bnd=Q2hyb21pdW0=&bndv=MTE3&mbl=ZmFsc2U=
141.226.224.32
https://www.facebook.com/privacy_sandbox/pixel/register/trigger/?id=934841733790287&ev=PageView&dl=https%3A%2F%2Fapp.decktopus.com%2Fshare%2FMUYKd1%2F1&rl=&if=false&ts=1724944616809&sw=1280&sh=1024&v=2.9.166&r=stable&ec=0&o=4126&fbp=fb.1.1724944616806.295182205204214750&cs_est=true&ler=empty&cdl=API_unavailable&it=1724944615421&coo=false&rqm=FGET
157.240.253.35
https://staticfiles.gleap.io/ghelpcenter_logos/vJmsQ0nAkY0umyDsNLAaPigh73h0gtZ55VMcoYlI8CkLiN3WPAkau
unknown
https://us.i.posthog.com/s/?ip=1&_=1724944644709&ver=1.151.0&compression=gzip-js
3.210.157.52
https://in-automate.brevo.com
unknown
https://bam.nr-data.net/jserrors/1/NRJS-43e56c8b880ca8453b7?a=1134428518&sa=1&v=1.250.0&t=Unnamed%20Transaction&rst=82471&ck=0&s=7337744c28dd3810&ref=https://app.decktopus.com/share/MUYKd1/1&hr=0
162.247.243.29
https://googleads.g.doubleclick.net
unknown
https://clientstream.launchdarkly.com/eval/65dc8b71b13dd50fd060d125/eyJraW5kIjoidXNlciIsImtleSI6IlVTRVJfQU5OTVlTIiwibmFtZSI6IlVzZXIgQW5vbnltb3VzIiwiZW1haWwiOiJ1c2VyX2Fubm15c0BkZWNrdG9wdXMuY29tIn0
15.197.213.252
https://pips.taboola.com/
151.101.65.44
https://bam.nr-data.net/events/1/NRJS-43e56c8b880ca8453b7?a=1134428518&sa=1&v=1.250.0&t=Unnamed%20Transaction&rst=32443&ck=0&s=7337744c28dd3810&ref=https://app.decktopus.com/share/MUYKd1/1&hr=0
162.247.243.29
https://www.google.com/pagead/1p-user-list/10970373263/?random
unknown
https://apiv21.decktopus.com/api/public/decks/4156935/visit
34.231.150.201
https://staticfiles.gleap.io/gfeedback_widgets/PgHvs2cWga85lnPdmDdquQN2gl0fJtFUdkeFcKMXRUs6F3PGpaFzC
unknown
https://snap.licdn.com/li.lms-analytics/insight.min.js
unknown
https://i.liadm.com/s/66627?bidder_id=88068&bidder_uuid=92820db9-a51e-44f1-944f-b308b0e6130c-tuctdca
unknown
https://trc.taboola.com/1624391/trc/3/json?tim=1724944614811&data=%7B%22id%22%3A944%2C%22ii%22%3A%22%2Fshare%2Fmuykd1%2F1%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1724944614802%2C%22cv%22%3A%2220240822-5-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fapp.decktopus.com%2Fshare%2FMUYKd1%2F1%3F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Ddecktopusyazlmanonimirketi-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1724944614810%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fapp.decktopus.com%2Fshare%2FMUYKd1%2F1%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22it%22%3A%22JS_PIXEL%22%2C%22supv%22%3Atrue%7D%2C%22pa%22%3A%7B%22su%22%3Atrue%7D%2C%22psb%22%3Atrue%7D&pubit=i
151.101.129.44
https://trc-events.taboola.com/1624391/log/3/unip?en=pre_d_eng_tb&tos=94598&scd=0&ssd=1&est=1724944614808&ver=36&isls=true&src=i&invt=48000&msa=0&rv=1&tim=1724944709407&vi=1724944614802&ri=e9fb83ffe8056d1bc628840ca304ef4b&sd=v2_1bbd812e3607cddfd2181c1d88e40022_92820db9-a51e-44f1-944f-b308b0e6130c-tuctdca1668_1724944616_1724944616_CNawjgYQx5JjGJKL2PWZMiABKAEw4QE4kaQOQPzYD0iry9kDUOoEWABgAGiQgI6I5eeGxhBwAQ&ui=92820db9-a51e-44f1-944f-b308b0e6130c-tuctdca1668&ref=null&cv=20240822-5-RELEASE&item-url=https%3A%2F%2Fapp.decktopus.com%2Fshare%2FMUYKd1%2F1&it=JS_PIXEL
141.226.228.48
https://us.i.posthog.com/s/?ip=1&_=1724944686644&ver=1.151.0&compression=gzip-js
34.239.4.98
https://td.doubleclick.net
unknown
https://connect.facebook.net/log/fbevents_telemetry/
unknown
https://api.gleap.io/config/r5nfNhmzNkbIZ8AJbKfvpFxj7jQoAIHi/tooltips
67.207.79.245
https://bam.nr-data.net/jserrors/1/NRJS-43e56c8b880ca8453b7?a=1134428518&sa=1&v=1.250.0&t=Unnamed%20Transaction&rst=52454&ck=0&s=7337744c28dd3810&ref=https://app.decktopus.com/share/MUYKd1/1&hr=0
162.247.243.29
https://bam.nr-data.net/jserrors/1/NRJS-43e56c8b880ca8453b7?a=1134428518&sa=1&v=1.250.0&t=Unnamed%20Transaction&rst=102484&ck=0&s=7337744c28dd3810&ref=https://app.decktopus.com/share/MUYKd1/1&hr=0
162.247.243.29
https://www.merchant-center-analytics.goog
unknown
https://psb.taboola.com/topics_api
151.101.1.44
https://us.i.posthog.com/decide/?v=3&ip=1&_=1724944612470&ver=1.151.0&compression=base64
3.210.157.52
https://google.com
unknown
https://app.decktopus.com/favicon.ico
13.227.219.73
https://events.launchdarkly.com/events/diagnostic/65dc8b71b13dd50fd060d125
34.194.44.50
There are 90 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
decktop.us
44.216.113.21
ws.gleap.io
157.230.79.42
fastly-tls12-bam.nr-data.net
162.247.243.29
tls13.taboola.map.fastly.net
151.101.1.44
apiv21.decktopus.com
34.231.150.201
us-assets.i.posthog.com
104.22.58.181
events.launchdarkly.com
34.194.44.50
stats.g.doubleclick.net
142.250.110.154
scontent.xx.fbcdn.net
157.240.251.9
dualstack.tls13.taboola.map.fastly.net
151.101.129.44
www.google.com
142.250.186.36
sibautomation.com
104.18.39.141
api.gleap.io
67.207.79.245
am-vip001.taboola.com
141.226.228.48
star-mini.c10r.facebook.com
157.240.253.35
clientstream-ga.launchdarkly.com
15.197.213.252
js-agent.newrelic.com
162.247.243.39
us-cds.taboola.com
141.226.224.32
domains.rewardful.com
161.35.235.194
app.decktopus.com
13.227.219.73
in-automate.brevo.com
172.64.150.216
googleads.g.doubleclick.net
142.250.186.130
posthog-ingress-prod-us-256455477.us-east-1.elb.amazonaws.com
3.210.157.52
td.doubleclick.net
142.250.185.66
analytics.google.com
142.250.185.78
cfv21.decktopus.com
18.239.36.120
us.i.posthog.com
unknown
psb.taboola.com
unknown
affiliate.decktopus.com
unknown
trc-events.taboola.com
unknown
cds.taboola.com
unknown
clientstream.launchdarkly.com
unknown
www.facebook.com
unknown
app.launchdarkly.com
unknown
www.linkedin.com
unknown
trc.taboola.com
unknown
connect.facebook.net
unknown
px.ads.linkedin.com
unknown
bam.nr-data.net
unknown
snap.licdn.com
unknown
cdn.taboola.com
unknown
pips.taboola.com
unknown
There are 32 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
104.22.58.181
us-assets.i.posthog.com
United States
192.168.2.4
unknown
unknown
192.168.2.5
unknown
unknown
3.210.157.52
posthog-ingress-prod-us-256455477.us-east-1.elb.amazonaws.com
United States
44.216.113.21
decktop.us
United States
34.239.4.98
unknown
United States
142.250.185.66
td.doubleclick.net
United States
142.250.186.36
www.google.com
United States
67.207.79.245
api.gleap.io
United States
151.101.1.44
tls13.taboola.map.fastly.net
United States
142.250.110.154
stats.g.doubleclick.net
United States
34.195.161.109
unknown
United States
239.255.255.250
unknown
Reserved
151.101.65.44
unknown
United States
34.231.150.201
apiv21.decktopus.com
United States
13.227.219.73
app.decktopus.com
United States
172.217.16.194
unknown
United States
157.240.253.35
star-mini.c10r.facebook.com
United States
142.250.186.130
googleads.g.doubleclick.net
United States
192.168.2.17
unknown
unknown
15.197.213.252
clientstream-ga.launchdarkly.com
United States
157.240.0.6
unknown
United States
142.250.185.164
unknown
United States
104.18.39.141
sibautomation.com
United States
141.226.228.48
am-vip001.taboola.com
Israel
161.35.235.194
domains.rewardful.com
United States
162.247.243.39
js-agent.newrelic.com
United States
172.64.150.216
in-automate.brevo.com
United States
157.240.252.35
unknown
United States
34.194.44.50
events.launchdarkly.com
United States
157.230.79.42
ws.gleap.io
United States
18.239.36.38
unknown
United States
13.227.219.96
unknown
United States
157.240.251.9
scontent.xx.fbcdn.net
United States
151.101.129.44
dualstack.tls13.taboola.map.fastly.net
United States
162.247.243.29
fastly-tls12-bam.nr-data.net
United States
141.226.224.32
us-cds.taboola.com
Israel
18.239.36.120
cfv21.decktopus.com
United States
172.217.16.132
unknown
United States
There are 29 hidden IPs, click here to show them.

DOM / HTML

URL
Malicious
https://app.decktopus.com/share/MUYKd1/1
https://app.decktopus.com/share/MUYKd1/1
https://app.decktopus.com/share/MUYKd1/1
https://app.decktopus.com/share/MUYKd1/1
https://app.decktopus.com/share/MUYKd1/1