Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Chrome Cache Entry: 100
|
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82,
resolutionunit=2], baseline, precision 8, 1535x688, components 3
|
dropped
|
||
|
Chrome Cache Entry: 101
|
ASCII text
|
dropped
|
||
|
Chrome Cache Entry: 102
|
ASCII text, with very long lines (516)
|
downloaded
|
||
|
Chrome Cache Entry: 103
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
|
Chrome Cache Entry: 104
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 105
|
ASCII text, with very long lines (367)
|
dropped
|
||
|
Chrome Cache Entry: 106
|
ASCII text, with very long lines (51547)
|
dropped
|
||
|
Chrome Cache Entry: 107
|
ASCII text, with very long lines (651)
|
dropped
|
||
|
Chrome Cache Entry: 108
|
ASCII text, with very long lines (8076)
|
dropped
|
||
|
Chrome Cache Entry: 109
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 110
|
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94,
resolutionunit=2], baseline, precision 8, 32x32, components 3
|
dropped
|
||
|
Chrome Cache Entry: 111
|
ASCII text, with very long lines (330)
|
downloaded
|
||
|
Chrome Cache Entry: 112
|
ASCII text
|
dropped
|
||
|
Chrome Cache Entry: 113
|
ASCII text, with very long lines (3043)
|
dropped
|
||
|
Chrome Cache Entry: 114
|
ASCII text, with very long lines (367)
|
downloaded
|
||
|
Chrome Cache Entry: 115
|
ASCII text, with very long lines (330)
|
dropped
|
||
|
Chrome Cache Entry: 116
|
ASCII text, with very long lines (516)
|
dropped
|
||
|
Chrome Cache Entry: 117
|
HTML document, Unicode text, UTF-8 text, with very long lines (7673)
|
downloaded
|
||
|
Chrome Cache Entry: 118
|
ASCII text, with very long lines (3043)
|
downloaded
|
||
|
Chrome Cache Entry: 119
|
ASCII text
|
dropped
|
||
|
Chrome Cache Entry: 120
|
ASCII text, with very long lines (51547)
|
downloaded
|
||
|
Chrome Cache Entry: 121
|
ASCII text, with very long lines (1211)
|
downloaded
|
||
|
Chrome Cache Entry: 122
|
ASCII text, with very long lines (829)
|
dropped
|
||
|
Chrome Cache Entry: 123
|
ASCII text, with very long lines (23126)
|
dropped
|
||
|
Chrome Cache Entry: 124
|
ASCII text, with very long lines (442)
|
dropped
|
||
|
Chrome Cache Entry: 125
|
Unicode text, UTF-8 text, with very long lines (20947)
|
dropped
|
||
|
Chrome Cache Entry: 126
|
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 127
|
ASCII text, with very long lines (522)
|
downloaded
|
||
|
Chrome Cache Entry: 128
|
ASCII text, with very long lines (13834)
|
downloaded
|
||
|
Chrome Cache Entry: 129
|
ASCII text, with very long lines (1824)
|
dropped
|
||
|
Chrome Cache Entry: 130
|
ASCII text, with very long lines (829)
|
downloaded
|
||
|
Chrome Cache Entry: 131
|
ASCII text, with very long lines (522)
|
dropped
|
||
|
Chrome Cache Entry: 132
|
ASCII text, with very long lines (32986), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 133
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 134
|
ASCII text, with very long lines (8076)
|
downloaded
|
||
|
Chrome Cache Entry: 135
|
ASCII text, with very long lines (1824)
|
downloaded
|
||
|
Chrome Cache Entry: 73
|
ASCII text, with very long lines (442)
|
downloaded
|
||
|
Chrome Cache Entry: 74
|
Unicode text, UTF-8 text, with very long lines (63425)
|
downloaded
|
||
|
Chrome Cache Entry: 75
|
ASCII text, with very long lines (1352)
|
downloaded
|
||
|
Chrome Cache Entry: 76
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
|
Chrome Cache Entry: 77
|
ASCII text, with very long lines (905)
|
dropped
|
||
|
Chrome Cache Entry: 78
|
ASCII text, with very long lines (651)
|
downloaded
|
||
|
Chrome Cache Entry: 79
|
ASCII text, with very long lines (1352)
|
dropped
|
||
|
Chrome Cache Entry: 80
|
Web Open Font Format (Version 2), TrueType, length 11644, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 81
|
ASCII text, with very long lines (65536), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 82
|
HTML document, ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 83
|
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94,
resolutionunit=2], baseline, precision 8, 192x192, components 3
|
dropped
|
||
|
Chrome Cache Entry: 84
|
Web Open Font Format (Version 2), TrueType, length 23040, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 85
|
ASCII text, with very long lines (23126)
|
downloaded
|
||
|
Chrome Cache Entry: 86
|
ASCII text
|
dropped
|
||
|
Chrome Cache Entry: 87
|
ASCII text, with very long lines (1211)
|
dropped
|
||
|
Chrome Cache Entry: 88
|
ASCII text, with very long lines (13449)
|
dropped
|
||
|
Chrome Cache Entry: 89
|
Web Open Font Format (Version 2), TrueType, length 11728, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 90
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 91
|
Unicode text, UTF-8 text, with very long lines (20947)
|
downloaded
|
||
|
Chrome Cache Entry: 92
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 93
|
ASCII text, with very long lines (905)
|
downloaded
|
||
|
Chrome Cache Entry: 94
|
ASCII text, with very long lines (383)
|
dropped
|
||
|
Chrome Cache Entry: 95
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
|
Chrome Cache Entry: 96
|
ASCII text, with very long lines (13834)
|
dropped
|
||
|
Chrome Cache Entry: 97
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 98
|
ASCII text, with very long lines (13449)
|
downloaded
|
||
|
Chrome Cache Entry: 99
|
ASCII text, with very long lines (383)
|
downloaded
|
There are 54 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2316 --field-trial-handle=2020,i,2817898506823689858,1927138711235262990,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://gemini-t-synin-uisoff0.godaddysites.com/"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://gemini-t-synin-uisoff0.godaddysites.com/
|
 |
||
|
https://gemini-t-synin-uisoff0.godaddysites.com/
|
|
||
|
https://gemini-t-synin-uisoff0.godaddysites.com/sw.js
|
13.248.243.5
|
|
|
|
https://gemini-t-synin-uisoff0.godaddysites.com/manifest.webmanifest
|
13.248.243.5
|
|
|
|
https://www.godaddy.com/websites/website-builder?isc=pwugc&utm_source=wsb&utm_medium=applications&utm_campaign=en-au_corp_applications_base
|
|||
|
https://img1.wsimg.com/gfonts/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2)
|
unknown
|
||
|
https://img1.wsimg.com/gfonts/s/lusitana/v13/CSR74z9ShvucWzsMKyDmafctaNY.woff2)
|
unknown
|
||
|
https://img1.wsimg.com/gfonts/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2)
|
unknown
|
||
|
https://img1.wsimg.com/poly/v3/polyfill.min.js?rum=0&unknown=polyfill&flags=gated&features=Intl.~loc
|
unknown
|
||
|
https://img1.wsimg.com/gfonts/s/lato/v24/S6u9w4BMUTPHh6UVSwaPGR_p.woff2)
|
unknown
|
||
|
https://img1.wsimg.com/isteam/ip/58c730f4-6fd9-4720-a429-db256877ff76/gemini-login-signin.jpg
|
unknown
|
||
|
https://img1.wsimg.com/gfonts/s/lusitana/v13/CSR84z9ShvucWzsMKyhdTOI.woff2)
|
unknown
|
||
|
https://www.godaddy.com/websites/website-builder?isc=pwugc&utm_source=wsb&utm_medium=applica
|
unknown
|
||
|
http://scripts.sil.org/OFL
|
unknown
|
||
|
https://img1.wsimg.com/gfonts/s/lato/v24/S6uyw4BMUTPHjxAwXjeu.woff2)
|
unknown
|
||
|
http://jedwatson.github.io/classnames
|
unknown
|
There are 5 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
gemini-t-synin-uisoff0.godaddysites.com
|
13.248.243.5
|
|
|
|
bg.microsoft.map.fastly.net
|
199.232.210.172
|
||
|
www.google.com
|
216.58.206.36
|
||
|
isteam.wsimg.com
|
3.64.248.63
|
||
|
fp2e7a.wpc.phicdn.net
|
192.229.221.95
|
||
|
img1.wsimg.com
|
unknown
|
||
|
www.godaddy.com
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
13.248.243.5
|
gemini-t-synin-uisoff0.godaddysites.com
|
United States
|
|
|
|
192.168.2.4
|
unknown
|
unknown
|
||
|
192.168.2.6
|
unknown
|
unknown
|
||
|
216.58.206.36
|
www.google.com
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
3.64.248.63
|
isteam.wsimg.com
|
United States
|
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://gemini-t-synin-uisoff0.godaddysites.com/
|
|
|
|
https://gemini-t-synin-uisoff0.godaddysites.com/
|
|
|
|
https://www.godaddy.com/websites/website-builder?isc=pwugc&utm_source=wsb&utm_medium=applications&utm_campaign=en-au_corp_applications_base
|