Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
Chrome Cache Entry: 128
|
PNG image data, 513 x 513, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 129
|
PNG image data, 600 x 600, 8-bit colormap, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 130
|
MS Windows icon resource - 9 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel
|
downloaded
|
||
Chrome Cache Entry: 131
|
Algol 68 source, Unicode text, UTF-8 text, with CRLF line terminators
|
dropped
|
||
Chrome Cache Entry: 132
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 133
|
ASCII text, with very long lines (65451)
|
downloaded
|
||
Chrome Cache Entry: 134
|
PNG image data, 18 x 6243, 8-bit colormap, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 135
|
ASCII text, with very long lines (30837)
|
downloaded
|
||
Chrome Cache Entry: 136
|
HTML document, Unicode text, UTF-8 text, with very long lines (5978)
|
dropped
|
||
Chrome Cache Entry: 137
|
MS Windows icon resource - 9 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel
|
dropped
|
||
Chrome Cache Entry: 138
|
Algol 68 source, Unicode text, UTF-8 text, with CRLF line terminators
|
downloaded
|
||
Chrome Cache Entry: 139
|
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1024x683, components
3
|
downloaded
|
||
Chrome Cache Entry: 140
|
ASCII text, with very long lines (65451)
|
dropped
|
||
Chrome Cache Entry: 141
|
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1024x683, components
3
|
dropped
|
||
Chrome Cache Entry: 142
|
ASCII text, with very long lines (65451)
|
dropped
|
||
Chrome Cache Entry: 143
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
Chrome Cache Entry: 144
|
PNG image data, 18 x 6243, 8-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 145
|
ASCII text, with very long lines (65451)
|
downloaded
|
||
Chrome Cache Entry: 146
|
MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural
|
downloaded
|
||
Chrome Cache Entry: 147
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 148
|
Algol 68 source, ASCII text, with CRLF line terminators
|
downloaded
|
||
Chrome Cache Entry: 149
|
ASCII text, with very long lines (329), with CRLF line terminators
|
downloaded
|
||
Chrome Cache Entry: 150
|
PNG image data, 513 x 513, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 151
|
Algol 68 source, ASCII text, with CRLF line terminators
|
dropped
|
||
Chrome Cache Entry: 152
|
PNG image data, 600 x 600, 8-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 153
|
ASCII text
|
downloaded
|
There are 17 hidden files, click here to show them.
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2032 --field-trial-handle=1992,i,13184340910222023404,7207311649821444817,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://ramadawynd.com/wakdl"
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US
--service-sandbox-type=audio --mojo-platform-channel-handle=4044 --field-trial-handle=1992,i,13184340910222023404,7207311649821444817,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
https://ramadawynd.com/wakdl
|
|||
https://cf.bstatic.com/static/opensearch/en-us/e19e3ca297c466eb18e0b783736192a638f6a66e.xml
|
unknown
|
||
http://fontawesome.io
|
unknown
|
||
https://cf.bstatic.com
|
unknown
|
||
https://www.booking.com/index.th.html
|
unknown
|
||
https://secure.booking.com/mysettings.html?label=gen173nr-1FCAEoggI46AdIM1gEaKcCiAEBmAExuAEXyAEM2AEB
|
unknown
|
||
https://nellie.booking.com/report
|
52.222.236.42
|
||
https://secure.booking.com/reviewtimeline.html?label=gen173nr-1FCAEoggI46AdIM1gEaKcCiAEBmAExuAEXyAEM
|
unknown
|
||
https://shelves.booking.com/
|
unknown
|
||
https://www.booking.com/booking-home/index.en-us.html?aid=304142&label=gen173nr-1FCAEoggI46AdIM1
|
unknown
|
||
https://cf.bstatic.com/static/js/plugable-access-form_cloudfront_sd/3ae2aaac8c7322f2908109b6a9e74460
|
unknown
|
||
https://www.booking.com/index.ja.html
|
unknown
|
||
https://ramadawynd.com/chat/%7Bimage%7D
|
188.114.96.3
|
||
https://www.booking.com/articles/usa-thanksgiving-holiday-homes.xu.html?label=gen173nr-1FCAEoggI46Ad
|
unknown
|
||
https://www.booking.com/index.fi.html
|
unknown
|
||
https://www.booking.com/index.he.html
|
unknown
|
||
https://ramadawynd.com/css/booking1/submit-new8.js
|
188.114.96.3
|
||
https://cf.bstatic.com/static/img/favicon/40749a316c45e239a7149b6711ea4c48d10f8d89.ico
|
unknown
|
||
https://ramadawynd.com/ajax/payment_card_status.php
|
188.114.96.3
|
||
https://cf.bstatic.com/static/js/genius_vip_cloudfront_sd/aae975495cc56436f4f59463b9ea4e594bdb102a.j
|
unknown
|
||
https://q-xx.bstatic.com/psb/capla/static/media/bh_aw_cpg_main_image.b4347622.png
|
unknown
|
||
https://ramadawynd.com/js/jquery.min.js
|
188.114.96.3
|
||
https://www.booking.com/index.html?label=gen173nr-1FCAEoggI46AdIM1gEaKcCiAEBmAExuAEXyAEM2AEB6AEB-AEC
|
unknown
|
||
https://www.booking.com/business.html?label=gen173nr-1FCAEoggI46AdIM1gEaKcCiAEBmAExuAEXyAEM2AEB6AEB-
|
unknown
|
||
https://www.booking.com/index.es-ar.html
|
unknown
|
||
https://ramadawynd.com/ajax/msg_check.php
|
188.114.96.3
|
||
https://www.booking.com/index.uk.html
|
unknown
|
||
http://ogp.me/ns/fb#
|
unknown
|
||
https://carrier.booking.com/google/places/webautocompletesimple
|
unknown
|
||
https://cf.bstatic.com/static/css/ski_lp_overview_panel_cloudfront_sd.iq_ltr/2b3350935410fe4e36d74ef
|
unknown
|
||
https://cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js
|
unknown
|
||
https://www.booking.com/index.pt-pt.html
|
unknown
|
||
https://www.booking.com/index.lv.html
|
unknown
|
||
https://cf.bstatic.com/static/js/atlas_cloudfront_sd/ed3c4c1b930b70d5167fcfbf6e3aaa28a793fe5e.js
|
unknown
|
||
https://cf.bstatic.com/static/js/searchbox_cloudfront_sd/8c409b90db8d2ce96d4f48a8b2eca3f43a705428.js
|
unknown
|
||
https://www.booking.com/dealspage.en-us.html?aid=304142&label=gen173nr-1FCAEoggI46AdIM1gEaKcCiAE
|
unknown
|
||
https://www.instagram.com/bookingcom/
|
unknown
|
||
https://secure.booking.com/help.html?label=gen173nr-1FCAEoggI46AdIM1gEaKcCiAEBmAExuAEXyAEM2AEB6AEB-A
|
unknown
|
||
https://ramadawynd.com/css/booking1/blur_input.js
|
188.114.96.3
|
||
https://www.booking.com/index.is.html
|
unknown
|
||
https://t-cf.bstatic.com/design-assets/assets/v3.125.0/illustrations-traveller/GeniusGenericGiftBox
|
unknown
|
||
https://cf.bstatic.com/static/css/async_wpm_overlay_assets_cloudfront_sd.iq_ltr/abb304bf3600a5cf5f74
|
unknown
|
||
https://www.booking.com/articles/best-orlando-hotels-families.xu.html?label=gen173nr-1FCAEoggI46AdIM
|
unknown
|
||
https://www.booking.com/index.hr.html
|
unknown
|
||
https://cf.bstatic.com/static/js/assistant_entrypoint_cloudfront_sd/ef4280b820a27ed734dd50de76d082ea
|
unknown
|
||
https://ramadawynd.com/build/chat.css
|
188.114.96.3
|
||
https://www.booking.com/index.ru.html
|
unknown
|
||
https://cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/0acd2ada6c74d5dec978a04ea837952bdf0
|
unknown
|
||
https://www.booking.com/index.cs.html
|
unknown
|
||
https://cf.bstatic.com/static/css/searchresults_cloudfront_sd.iq_ltr/633191d164d93a0ad3dd5102b5dba15
|
unknown
|
||
https://www.booking.com/articles/best-hotels-los-angeles.xu.html?label=gen173nr-1FCAEoggI46AdIM1gEaK
|
unknown
|
||
https://www.booking.com/index.pl.html
|
unknown
|
||
https://cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/308436ca26aacf6a7553e4c0cf298d0f7
|
unknown
|
||
https://cf.bstatic.com/static/img/apple-touch-icon/5db9fd30d96b1796883ee94be7dddce50b73bb38.png
|
unknown
|
||
https://ramadawynd.com/css/chat.css
|
188.114.96.3
|
||
https://cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/8c4382cb776a747249815b8dfc6e41527a56143
|
unknown
|
||
https://www.booking.com/index.ko.html
|
unknown
|
||
https://cf.bstatic.com/static/js/searchresults_cloudfront_sd/cf2a65346f0e3531401565e3c3fb44799051d8a
|
unknown
|
||
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
|
104.17.25.14
|
||
https://www.booking.com/index.pt-br.html
|
unknown
|
||
https://booking.com/
|
18.245.60.68
|
||
https://www.booking.com/index.bg.html
|
unknown
|
||
https://www.booking.com/articles.html?aid=304142
|
unknown
|
||
https://schema.org
|
unknown
|
||
https://www.booking.com/index.et.html
|
unknown
|
||
https://cf.bstatic.com/static/img/nobg_all_blue_iq/b700d9e3067c1186a3364012df4fe1c48ae6da44.png
|
unknown
|
||
https://cf.bstatic.com/static/js/searchresults_slick_cloudfront_sd/528359eb9f21194adf8c26f81e07c6eb2
|
unknown
|
||
https://ramadawynd.com/ajax/user_send_status.php
|
188.114.96.3
|
||
https://www.booking.com/index.vi.html
|
unknown
|
||
https://www.tiktok.com/
|
unknown
|
||
https://www.booking.com/index.lt.html
|
unknown
|
||
https://www.booking.com/index.sk.html
|
unknown
|
||
https://account.booking.com/sso/logout/v3
|
unknown
|
||
https://community.booking.com/?profile.language=en
|
unknown
|
||
https://t-cf.bstatic.com/design-assets/assets/v3.125.0/illustrations-traveller/GeniusGenericGiftBox.
|
unknown
|
||
https://cf.bstatic.com/static/img/twitter-image-else/566c7081f1deeaca39957e96365c3908f83b95af.jpg
|
unknown
|
||
http://ogp.me/ns#
|
unknown
|
||
https://cf.bstatic.com/static/js/async_flash_deals_countdown_cloudfront_sd/ed6ec8a2950ae6f5f3420107a
|
unknown
|
||
http://ogp.me/ns/fb/booking_com#
|
unknown
|
||
https://cf.bstatic.com/static/js/async_index_postcards_c360_cloudfront_sd/11d2b12d25c970340e0e5c5707
|
unknown
|
||
https://secure.booking.com/company/reservations.html?label=gen173nr-1FCAEoggI46AdIM1gEaKcCiAEBmAExuA
|
unknown
|
||
https://www.booking.com/index.es-mx.html
|
unknown
|
||
https://cf.bstatic.com/static/js/ski_lp_overview_panel_cloudfront_sd/9d8e7cfd33a37ffb15285d98f697002
|
unknown
|
||
https://secure.booking.com/company/search.html?label=gen173nr-1FCAEoggI46AdIM1gEaKcCiAEBmAExuAEXyAEM
|
unknown
|
||
https://cf.bstatic.com/static/js/calendar2_cloudfront_sd/06071dd1c4e89fbe99e5ad6e21584a6bf9585e84.js
|
unknown
|
||
https://cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/2ee63c50562eff5b15bd5494ec6df807b8ad79c2
|
unknown
|
||
https://cf.bstatic.com/static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css
|
unknown
|
||
https://secure.booking.com
|
unknown
|
||
https://www.booking.com/genius.html?label=gen173nr-1FCAEoggI46AdIM1gEaKcCiAEBmAExuAEXyAEM2AEB6AEB-AE
|
unknown
|
||
https://cf.bstatic.com/static/img/favicon/4a3b40c4059be39cbf1ebaa5f97dbb7d150926b9.png
|
unknown
|
||
https://ramadawynd.com/css/chat.mp3
|
188.114.96.3
|
||
https://www.booking.com/searchresults.html?aid=800210&si=ai
|
unknown
|
||
https://www.booking.com/_frdtcr?aid=304142
|
unknown
|
||
https://ramadawynd.com/
|
188.114.97.3
|
||
https://securepubads.g.doubleclick.net/tag/js/gpt.js
|
unknown
|
||
https://www.booking.com/index.nl.html
|
unknown
|
||
https://ramadawynd.com/css/booking1/styles-new4.css
|
188.114.96.3
|
||
https://cf.bstatic.com/static/css/async_tt_quiz_cloudfront_sd.iq_ltr/ac73a1533c9b137d154e412af58b0b6
|
unknown
|
||
https://www.booking.com/articles/best-ski-towns.xu.html?label=gen173nr-1FCAEoggI46AdIM1gEaKcCiAEBmAE
|
unknown
|
||
https://www.booking.com
|
unknown
|
||
https://www.booking.com/index.sv.html
|
unknown
|
There are 90 hidden URLs, click here to show them.
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
ramadawynd.com
|
188.114.96.3
|
||
booking.com
|
18.245.60.68
|
||
de2trjlt8e8rj.cloudfront.net
|
52.222.236.42
|
||
d2i5gg36g14bzn.cloudfront.net
|
18.245.31.18
|
||
bg.microsoft.map.fastly.net
|
199.232.210.172
|
||
cdnjs.cloudflare.com
|
104.17.25.14
|
||
d1of1hbywxxm65.cloudfront.net
|
18.245.60.7
|
||
www.google.com
|
216.58.206.68
|
||
fp2e7a.wpc.phicdn.net
|
192.229.221.95
|
||
nellie.booking.com
|
unknown
|
||
q-xx.bstatic.com
|
unknown
|
||
www.booking.com
|
unknown
|
There are 2 hidden domains, click here to show them.
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
188.114.96.3
|
ramadawynd.com
|
European Union
|
||
18.245.60.68
|
booking.com
|
United States
|
||
192.168.2.4
|
unknown
|
unknown
|
||
216.58.206.68
|
www.google.com
|
United States
|
||
192.168.2.5
|
unknown
|
unknown
|
||
18.245.31.49
|
unknown
|
United States
|
||
52.222.236.42
|
de2trjlt8e8rj.cloudfront.net
|
United States
|
||
18.245.60.7
|
d1of1hbywxxm65.cloudfront.net
|
United States
|
||
239.255.255.250
|
unknown
|
Reserved
|
||
188.114.97.3
|
unknown
|
European Union
|
||
18.245.60.2
|
unknown
|
United States
|
||
18.245.31.18
|
d2i5gg36g14bzn.cloudfront.net
|
United States
|
||
104.17.25.14
|
cdnjs.cloudflare.com
|
United States
|
There are 3 hidden IPs, click here to show them.
DOM / HTML
URL
|
Malicious
|
|
---|---|---|
https://ramadawynd.com/wakdl
|
||
https://ramadawynd.com/wakdl
|
||
https://ramadawynd.com/wakdl
|