Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Oct 1 07:55:32 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Oct 1 07:55:31 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Oct 1 07:55:31 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Oct 1 07:55:32 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Oct 1 07:55:31 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
Chrome Cache Entry: 143
|
ASCII text, with very long lines (64347)
|
downloaded
|
||
|
Chrome Cache Entry: 144
|
SVG Scalable Vector Graphics image
|
dropped
|
||
|
Chrome Cache Entry: 145
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 146
|
Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 147
|
ASCII text, with very long lines (32089)
|
dropped
|
||
|
Chrome Cache Entry: 148
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 149
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 150
|
ASCII text, with very long lines (634)
|
downloaded
|
||
|
Chrome Cache Entry: 151
|
ASCII text, with very long lines (16803)
|
dropped
|
||
|
Chrome Cache Entry: 152
|
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
|
downloaded
|
||
|
Chrome Cache Entry: 153
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 154
|
Web Open Font Format (Version 2), TrueType, length 48444, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 155
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 156
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
|
Chrome Cache Entry: 157
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
Chrome Cache Entry: 158
|
ASCII text, with very long lines (7711)
|
dropped
|
||
|
Chrome Cache Entry: 159
|
ASCII text, with very long lines (32023)
|
dropped
|
||
|
Chrome Cache Entry: 160
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 161
|
PNG image data, 200 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 162
|
ASCII text, with very long lines (65474)
|
dropped
|
||
|
Chrome Cache Entry: 163
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
|
Chrome Cache Entry: 164
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
Chrome Cache Entry: 165
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 166
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 167
|
ASCII text, with very long lines (64347)
|
dropped
|
||
|
Chrome Cache Entry: 168
|
Web Open Font Format (Version 2), TrueType, length 74348, version 329.31064
|
downloaded
|
||
|
Chrome Cache Entry: 169
|
ASCII text, with very long lines (12670), with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 170
|
ASCII text, with very long lines (16803)
|
downloaded
|
||
|
Chrome Cache Entry: 171
|
ASCII text, with very long lines (12670), with CRLF line terminators
|
dropped
|
||
|
Chrome Cache Entry: 172
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 173
|
HTML document, ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 174
|
ASCII text, with very long lines (54456), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 175
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 176
|
ASCII text, with very long lines (634)
|
downloaded
|
||
|
Chrome Cache Entry: 177
|
ASCII text, with very long lines (32023)
|
downloaded
|
||
|
Chrome Cache Entry: 178
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 179
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 180
|
HTML document, ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 181
|
Web Open Font Format (Version 2), TrueType, length 35448, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 182
|
ASCII text, with very long lines (533)
|
dropped
|
||
|
Chrome Cache Entry: 183
|
HTML document, ASCII text, with very long lines (4108)
|
downloaded
|
||
|
Chrome Cache Entry: 184
|
PNG image data, 200 x 128, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 185
|
SVG Scalable Vector Graphics image
|
dropped
|
||
|
Chrome Cache Entry: 186
|
SVG Scalable Vector Graphics image
|
dropped
|
||
|
Chrome Cache Entry: 187
|
HTML document, Unicode text, UTF-8 text
|
downloaded
|
||
|
Chrome Cache Entry: 188
|
HTML document, Unicode text, UTF-8 text
|
dropped
|
||
|
Chrome Cache Entry: 189
|
ASCII text, with very long lines (4269)
|
downloaded
|
||
|
Chrome Cache Entry: 190
|
ASCII text, with very long lines (4269)
|
dropped
|
||
|
Chrome Cache Entry: 191
|
ASCII text, with very long lines (6238)
|
dropped
|
||
|
Chrome Cache Entry: 192
|
ASCII text, with very long lines (65536), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 193
|
HTML document, Unicode text, UTF-8 text, with very long lines (1040)
|
downloaded
|
||
|
Chrome Cache Entry: 194
|
PNG image data, 400 x 150, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 195
|
ASCII text, with very long lines (7711)
|
downloaded
|
||
|
Chrome Cache Entry: 196
|
ASCII text, with very long lines (2565)
|
dropped
|
||
|
Chrome Cache Entry: 197
|
RIFF (little-endian) data, Web/P image
|
dropped
|
||
|
Chrome Cache Entry: 198
|
HTML document, ASCII text, with very long lines (20011), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 199
|
ASCII text, with very long lines (65474)
|
downloaded
|
||
|
Chrome Cache Entry: 200
|
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
|
dropped
|
||
|
Chrome Cache Entry: 201
|
ASCII text, with very long lines (4269)
|
dropped
|
||
|
Chrome Cache Entry: 203
|
ASCII text, with very long lines (2530), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 204
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 205
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
|
Chrome Cache Entry: 206
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 207
|
ASCII text, with very long lines (2565)
|
downloaded
|
||
|
Chrome Cache Entry: 208
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 210
|
ASCII text, with very long lines (376), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 211
|
ASCII text, with very long lines (58297), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 212
|
assembler source, ASCII text, with very long lines (687)
|
downloaded
|
||
|
Chrome Cache Entry: 213
|
ASCII text, with very long lines (6238)
|
downloaded
|
||
|
Chrome Cache Entry: 214
|
PNG image data, 221 x 163, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 215
|
ASCII text, with very long lines (2530), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 216
|
HTML document, Unicode text, UTF-8 text
|
dropped
|
||
|
Chrome Cache Entry: 217
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 218
|
PNG image data, 400 x 150, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 219
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
|
Chrome Cache Entry: 220
|
PNG image data, 792 x 504, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 221
|
ASCII text, with very long lines (32089)
|
downloaded
|
||
|
Chrome Cache Entry: 222
|
ASCII text, with very long lines (62342)
|
downloaded
|
||
|
Chrome Cache Entry: 223
|
PNG image data, 128 x 128, 8-bit colormap, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 224
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 225
|
HTML document, ASCII text, with very long lines (2319), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 226
|
PNG image data, 221 x 163, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 227
|
PNG image data, 400 x 200, 8-bit colormap, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 228
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 229
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 230
|
HTML document, Unicode text, UTF-8 text
|
dropped
|
||
|
Chrome Cache Entry: 231
|
RIFF (little-endian) data, Web/P image
|
dropped
|
||
|
Chrome Cache Entry: 232
|
ASCII text, with very long lines (533)
|
downloaded
|
||
|
Chrome Cache Entry: 233
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
|
Chrome Cache Entry: 234
|
ASCII text, with very long lines (4269)
|
downloaded
|
||
|
Chrome Cache Entry: 235
|
Unicode text, UTF-8 text, with very long lines (516)
|
downloaded
|
||
|
Chrome Cache Entry: 236
|
HTML document, ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 237
|
SVG Scalable Vector Graphics image
|
dropped
|
||
|
Chrome Cache Entry: 238
|
Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 239
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
|
Chrome Cache Entry: 240
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 241
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
Chrome Cache Entry: 242
|
HTML document, Unicode text, UTF-8 text, with very long lines (701)
|
downloaded
|
||
|
Chrome Cache Entry: 243
|
Unicode text, UTF-8 text, with very long lines (65307)
|
downloaded
|
||
|
Chrome Cache Entry: 244
|
Web Open Font Format (Version 2), TrueType, length 19304, version 1.0
|
downloaded
|
There are 97 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2148 --field-trial-handle=1932,i,17943472517484278916,5532373497368594352,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://trk.mail.ru/c/kruxy7?clickid=mtg66f14a9e6633b800088f731w&mt_campaign=ss_mark_se_ios&mt_creat%20ive=m-%20se23.mp4&mt_gaid=&mt_idfa=&mt_network=mtg1206891918&mt_oaid=&mt_sub1=ss_mark_se_ios&mt_sub2=mtg12068%2091918&mt_sub3=1809824272&mt_sub5=ss_mark_se_ios"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://trk.mail.ru/c/kruxy7?clickid=mtg66f14a9e6633b800088f731w&mt_campaign=ss_mark_se_ios&mt_creat%20ive=m-%20se23.mp4&mt_gaid=&mt_idfa=&mt_network=mtg1206891918&mt_oaid=&mt_sub1=ss_mark_se_ios&mt_sub2=mtg12068%2091918&mt_sub3=1809824272&mt_sub5=ss_mark_se_ios
|
 |
||
|
https://1.rewardzinga.com/750-walmart-rewards-v-4
|
|
||
|
https://stats.g.doubleclick.net/g/collect
|
unknown
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=36&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778735
|
34.205.0.238
|
||
|
https://1.rewardzinga.com/themes/myamericanprizes/assets/fonts/helvetica-webfont.woff2
|
188.114.96.3
|
||
|
https://slotomaniaplus.com/lander/walmart-us-ca-v2/magnific-popup.css
|
167.71.5.94
|
||
|
https://api.pushnami.com/api/push/image/id/66d89421f1b91a00132f5ab6
|
13.32.99.54
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=10&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778709
|
34.205.0.238
|
||
|
https://ppe-userenroll-assets.s3.amazonaws.com/1696275572708
|
unknown
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=6&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778705
|
34.205.0.238
|
||
|
https://ppe-userenroll-assets.s3.amazonaws.com/1718909534550
|
52.216.35.105
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=16&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778715
|
34.205.0.238
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=55&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778754
|
3.230.29.15
|
||
|
https://slotomaniaplus.com/lander/walmart-us-ca-v2/bg-decor.png
|
167.71.5.94
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=42&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778741
|
34.205.0.238
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=30&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778729
|
34.205.0.238
|
||
|
http://bit.ly/magnific-popup#build=inline
|
unknown
|
||
|
https://ppe-userenroll-assets.s3.amazonaws.com/1716242426831
|
3.5.3.216
|
||
|
https://1.rewardzinga.com/api/session/submit
|
188.114.96.3
|
||
|
https://psp.pushnami.com/api/psp
|
23.20.238.11
|
||
|
https://use.typekit.net/af/8df928/00000000000000007735b40b/30/d?primer=7cdcb44be4a7db8877ffa5c0007b8
|
unknown
|
||
|
https://1.rewardzinga.com/manifest.json
|
188.114.96.3
|
||
|
https://fpc.pushnami.com/psfp/
|
unknown
|
||
|
https://p.typekit.net/p.css?s=1&k=mbm4hqk&ht=tk&f=28128.28129&a=30457842&app=typekit&e=css
|
unknown
|
||
|
https://deviceid.trueleadid.com/iframe.html
|
unknown
|
||
|
https://create.leadid.com/2.15.0/SaveLeadUrl?msn=1&pid=6e642d19-06e1-4c9c-96bf-392ea276fbe3&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=23852118
|
3.230.29.15
|
||
|
https://use.typekit.net/af/8df928/00000000000000007735b40b/30/a?primer=7cdcb44be4a7db8877ffa5c0007b8
|
unknown
|
||
|
https://1.rewardzinga.com/service-worker.js
|
188.114.96.3
|
||
|
https://1.rewardzinga.com/assets/css/path-form.css
|
188.114.96.3
|
||
|
https://ppe-userenroll-assets.s3.amazonaws.com/1722285173327
|
52.216.35.105
|
||
|
https://ppe-userenroll-assets.s3.amazonaws.com/1719934773143
|
52.216.35.105
|
||
|
https://trc.pushnami.com/api/push/track
|
107.22.177.36
|
||
|
https://1.rewardzinga.com/assets/js/remodal.min.js
|
188.114.96.3
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=43&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778742
|
34.205.0.238
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=50&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778749
|
3.230.29.15
|
||
|
https://api.pushnami.com/scripts/v2/pushnami-sw/6682e3bdc751e60013d456c9
|
13.32.99.54
|
||
|
https://create.leadid.com/2.15.0/SaveFormField?msn=64&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778763
|
3.230.29.15
|
||
|
https://rum-collector-2.pingdom.net/img/beacon.gif?id=6571d423daab420012000423&sAW=1280&sAH=984&bIW=1280&bIH=907&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=472&cE=933&dLE=472&dLS=472&fS=3&hS=473&rE=-1&rS=-1&reS=933&resS=1380&resE=1652&uEE=-1&uES=-1&dL=1384&dI=3792&dCLES=3792&dCLEE=3815&dC=10753&lES=10753&lEE=10763&s=nt&title=RewardZinga&path=https%3A%2F%2F1.rewardzinga.com%2F750-walmart-rewards-v-4&ref=https%3A%2F%2Frewardzinga.com%2F&sId=9lhew5vk&sST=1727772960&sIS=1&rV=0&v=1.4.1
|
52.210.180.113
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=15&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778714
|
34.205.0.238
|
||
|
https://api.tnapplications.com/assets/52836128-0644-496c-8907-d7f01d34423f/flow-container.js
|
54.209.172.61
|
||
|
https://quilljs.com/
|
unknown
|
||
|
https://slotomaniaplus.com/lander/walmart-us-ca-v2/box-win1.png
|
167.71.5.94
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=23&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778722
|
34.205.0.238
|
||
|
https://create.leadid.com/2.15.0/Snap?msn=3&pid=6e642d19-06e1-4c9c-96bf-392ea276fbe3&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=23852120
|
3.230.29.15
|
||
|
https://create.leadid.com/2.15.0/SaveDeviceId.js?lac=9F3784C7-6949-6299-8003-1FE5AA121320&lck=69EDB21F-622D-AA73-7E7B-1CDC74465E7A&methods=48&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&uuid=93d3dc08e36c48b09896277c041e5dca
|
52.23.125.6
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=2&pid=6e642d19-06e1-4c9c-96bf-392ea276fbe3&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=23852119
|
3.230.29.15
|
||
|
https://ppe-userenroll-assets.s3.amazonaws.com/1722384921379)
|
unknown
|
||
|
https://create.leadid.com/2.15.0/SaveFormField?msn=39&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778738
|
34.205.0.238
|
||
|
https://cdn.logr-ingest.com/LogRocket.min.js
|
unknown
|
||
|
https://js.ipredictive.com/viant_universal_pixel.js
|
18.66.112.13
|
||
|
http://cdnjs.cloudflare.com/ajax/libs/respond.js/1.4.2/respond.js
|
unknown
|
||
|
https://ppe-userenroll-assets.s3.amazonaws.com/1720650132399
|
52.216.35.105
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=11&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778710
|
34.205.0.238
|
||
|
https://ppe-userenroll-assets.s3.amazonaws.com/1722384921379
|
3.5.3.216
|
||
|
https://slotomaniaplus.com/lander/walmart-us-ca-v2/fbevents.js
|
167.71.5.94
|
||
|
https://api.pushnami.com/api/push/icon/ext?url=https%3A%2F%2Fapi.pushnami.com%2Fapi%2Fpush%2Ficon%2Fid%2F66db0024f2a5ad0013babdb9%23.png&fallback=%2Fapi%2Fpush%2Ficon%2F66832a59e61f1b0013838c04
|
13.32.99.54
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=47&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778746
|
3.230.29.15
|
||
|
https://create.leadid.com/2.15.0/SaveFormField?msn=68&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778767
|
3.230.29.15
|
||
|
https://rewardzinga.com/favicon.ico
|
188.114.97.3
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=24&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778723
|
34.205.0.238
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=34&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778733
|
34.205.0.238
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=57&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778756
|
3.230.29.15
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=63&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778762
|
3.230.29.15
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=18&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778717
|
34.205.0.238
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=40&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778739
|
34.205.0.238
|
||
|
https://trk.mail.ru/c/kruxy7?clickid=mtg66f14a9e6633b800088f731w&mt_campaign=ss_mark_se_ios&mt_creat%20ive=m-%20se23.mp4&mt_gaid=&mt_idfa=&mt_network=mtg1206891918&mt_oaid=&mt_sub1=ss_mark_se_ios&mt_sub2=mtg12068%2091918&mt_sub3=1809824272&mt_sub5=ss_mark_se_ios
|
95.163.41.56
|
||
|
https://create.leadid.com/2.15.0/Snap?msn=4&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778703
|
34.205.0.238
|
||
|
http://vodkabears.github.io/remodal/
|
unknown
|
||
|
https://ad.ipredictive.com/d/track/event
|
unknown
|
||
|
https://getbootstrap.com/)
|
unknown
|
||
|
https://api.trustedform.com/certs/1ab5cf2f8f95310cf41c8cb3a8cbd5d1c4958e10/fingerprints
|
44.218.144.55
|
||
|
https://api.pushnami.com/scripts/v1/pushnami-two-step-styles/6682e3bdc751e60013d456c9
|
unknown
|
||
|
https://trc.pushnami.com
|
unknown
|
||
|
https://ppe-userenroll-assets.s3.amazonaws.com/1703275496024
|
unknown
|
||
|
https://www.mzbvbn8trk.com/43FBP5/R74QP/?uid=473&sub1=1222&sub3=4313adb24b794a4da28f34d1e4d336b7&first_name=&last_name=&email=&address1=&state=&zip=&gender=&phone=&dob=&city=
|
34.49.33.158
|
||
|
https://1.rewardzinga.com/themes/myamericanprizes/assets/css/bootstrap/bootstrap.min.css
|
188.114.96.3
|
||
|
https://afrdtech.com/v1/script.js?kmnrKey=700232105
|
31.220.27.154
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=56&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778755
|
3.230.29.15
|
||
|
https://create.leadid.com/2.15.0/SaveFormField?msn=62&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778761
|
3.230.29.15
|
||
|
https://ad.ipredictive.com/d/track/event?upid=111974&cache_buster=1727773051&url=https%3A%2F%2F1.rewardzinga.com%2Fflow%3Fuid%3D55103bfb-219e-492e-8242-75ce0ca29f5a&ps=0
|
54.144.198.71
|
||
|
https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Proxy
|
unknown
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=41&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778740
|
34.205.0.238
|
||
|
https://create.leadid.com/2.15.0/SaveFormField?msn=7&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778706
|
34.205.0.238
|
||
|
https://td.doubleclick.net
|
unknown
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=5&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778704
|
34.205.0.238
|
||
|
https://path.twyne.io/embed?siteId=246&userSessionID=55103bfb-219e-492e-8242-75ce0ca29f5a&rurl=%2Ffinish&duplicateUser=false&cf_reg_tcpa_confirm=true&embedUrlOverride=%2F%2Fpath.twyne.io¤tUrl=https%3A%2F%2F1.rewardzinga.com%2Fflow%3Fuid%3D55103bfb-219e-492e-8242-75ce0ca29f5a&cachebooster=1727773052609
|
18.245.31.118
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=48&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778747
|
3.230.29.15
|
||
|
https://cdn.quilljs.com/1.2.6/quill.snow.css
|
172.66.40.163
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=17&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778716
|
34.205.0.238
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=33&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778732
|
34.205.0.238
|
||
|
https://ad.ipredictive.com/d/track/event?upid=111974&url=
|
unknown
|
||
|
https://api.trustedform.com/certs/1ab5cf2f8f95310cf41c8cb3a8cbd5d1c4958e10/snapshot
|
44.218.144.55
|
||
|
https://adservice.google.com/pagead/regclk?
|
unknown
|
||
|
https://slotomaniaplus.com/favicon.ico
|
167.71.5.94
|
||
|
https://create.leadid.com/2.15.0/InitFormData?msn=25&pid=8cdcbbb0-b457-4e9d-9d81-a9c27458a665&token=CFA0559A-3DF2-3FA8-1322-15AB53D3A12C&_=966778724
|
34.205.0.238
|
||
|
https://unicons.iconscout.com/release/v4.0.0/css/line.css
|
104.18.40.18
|
||
|
https://ppe-userenroll-assets.s3.amazonaws.com/1716241801971
|
3.5.3.216
|
||
|
https://api.pushnami.com/api/push/waterfall/enrollment
|
unknown
|
||
|
https://slotomaniaplus.com/lander/walmart-us-ca-v2/style.css
|
167.71.5.94
|
||
|
https://slotomaniaplus.com/lander/walmart-us-ca-v2/box.jpg.png
|
167.71.5.94
|
||
|
https://slotomaniaplus.com/lander/walmart-us-ca-v2/logo.png
|
167.71.5.94
|
There are 90 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
1.rewardzinga.com
|
188.114.96.3
|
|
|
|
rewardzinga.com
|
188.114.97.3
|
|
|
|
stun4.l.google.com
|
74.125.250.129
|
||
|
unicons.iconscout.com
|
104.18.40.18
|
||
|
cdn.pushnami.com
|
18.244.18.36
|
||
|
stun3.l.google.com
|
74.125.250.129
|
||
|
mobile-gtalk.l.google.com
|
173.194.76.188
|
||
|
d2m2wsoho8qq12.cloudfront.net
|
13.32.23.225
|
||
|
rum-static.pingdom.net
|
172.67.5.216
|
||
|
rew.truclck.com
|
95.179.215.24
|
||
|
cdn.quilljs.com
|
172.66.40.163
|
||
|
www.google.com
|
142.250.184.196
|
||
|
api.trustedform.com
|
44.218.144.55
|
||
|
dw4luqp.ng.impervadns.net
|
45.223.19.68
|
||
|
android.l.google.com
|
142.250.186.142
|
||
|
telemetry.partners.prod.minionplatform.com
|
44.199.154.195
|
||
|
ad.ipredictive.com
|
54.165.78.17
|
||
|
a.nel.cloudflare.com
|
35.190.80.1
|
||
|
slotomaniaplus.com
|
167.71.5.94
|
||
|
www.mzbvbn8trk.com
|
34.49.33.158
|
||
|
trc.pushnami.com
|
107.22.177.36
|
||
|
psp.pushnami.com
|
23.20.238.11
|
||
|
r.mail.ru
|
95.163.41.56
|
||
|
aa34fc5871ed549c7b1e6d7c2ef3aabf-721668311.us-east-1.elb.amazonaws.com
|
54.209.172.61
|
||
|
create.lidstatic.com
|
104.22.38.182
|
||
|
js.ipredictive.com
|
18.66.112.13
|
||
|
s3-w.us-east-1.amazonaws.com
|
52.216.35.105
|
||
|
create.leadid.com
|
34.205.0.238
|
||
|
prod-dem-collector-elb-611025824.eu-west-1.elb.amazonaws.com
|
52.210.180.113
|
||
|
path.twyne.io
|
18.245.31.118
|
||
|
api.pushnami.com
|
13.32.99.54
|
||
|
afrdtech.com
|
31.220.27.154
|
||
|
cdn.trustedform.com
|
52.222.214.109
|
||
|
ppe-userenroll-assets.s3.amazonaws.com
|
unknown
|
||
|
use.fontawesome.com
|
unknown
|
||
|
use.typekit.net
|
unknown
|
||
|
rum-collector-2.pingdom.net
|
unknown
|
||
|
p.typekit.net
|
unknown
|
||
|
trk.mail.ru
|
unknown
|
||
|
api.tnapplications.com
|
unknown
|
||
|
deviceid.trueleadid.com
|
unknown
|
There are 31 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
188.114.97.3
|
rewardzinga.com
|
European Union
|
|
|
|
188.114.96.3
|
1.rewardzinga.com
|
European Union
|
|
|
|
13.32.99.22
|
unknown
|
United States
|
||
|
95.179.215.24
|
rew.truclck.com
|
Netherlands
|
||
|
18.66.112.13
|
js.ipredictive.com
|
United States
|
||
|
13.32.99.63
|
unknown
|
United States
|
||
|
18.66.112.57
|
unknown
|
United States
|
||
|
192.168.2.6
|
unknown
|
unknown
|
||
|
18.245.31.76
|
unknown
|
United States
|
||
|
3.230.29.15
|
unknown
|
United States
|
||
|
54.146.146.68
|
unknown
|
United States
|
||
|
52.216.35.105
|
s3-w.us-east-1.amazonaws.com
|
United States
|
||
|
34.205.0.238
|
create.leadid.com
|
United States
|
||
|
184.72.137.239
|
unknown
|
United States
|
||
|
104.22.39.182
|
unknown
|
United States
|
||
|
34.250.144.79
|
unknown
|
United States
|
||
|
34.49.33.158
|
www.mzbvbn8trk.com
|
United States
|
||
|
13.32.23.225
|
d2m2wsoho8qq12.cloudfront.net
|
United States
|
||
|
142.250.184.196
|
www.google.com
|
United States
|
||
|
95.163.41.56
|
r.mail.ru
|
Russian Federation
|
||
|
18.244.18.36
|
cdn.pushnami.com
|
United States
|
||
|
173.194.76.188
|
mobile-gtalk.l.google.com
|
United States
|
||
|
104.18.40.18
|
unicons.iconscout.com
|
United States
|
||
|
172.67.5.216
|
rum-static.pingdom.net
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
107.22.177.36
|
trc.pushnami.com
|
United States
|
||
|
3.224.202.97
|
unknown
|
United States
|
||
|
16.182.101.97
|
unknown
|
United States
|
||
|
142.250.186.142
|
android.l.google.com
|
United States
|
||
|
44.199.154.195
|
telemetry.partners.prod.minionplatform.com
|
United States
|
||
|
3.5.9.120
|
unknown
|
United States
|
||
|
23.20.238.11
|
psp.pushnami.com
|
United States
|
||
|
45.223.19.68
|
dw4luqp.ng.impervadns.net
|
United States
|
||
|
13.32.99.40
|
unknown
|
United States
|
||
|
192.168.2.16
|
unknown
|
unknown
|
||
|
3.5.3.216
|
unknown
|
United States
|
||
|
44.218.144.55
|
api.trustedform.com
|
United States
|
||
|
54.165.78.17
|
ad.ipredictive.com
|
United States
|
||
|
172.66.40.163
|
cdn.quilljs.com
|
United States
|
||
|
18.245.31.118
|
path.twyne.io
|
United States
|
||
|
31.220.27.154
|
afrdtech.com
|
Netherlands
|
||
|
74.125.250.129
|
stun4.l.google.com
|
United States
|
||
|
52.23.125.6
|
unknown
|
United States
|
||
|
52.222.214.109
|
cdn.trustedform.com
|
United States
|
||
|
18.238.243.113
|
unknown
|
United States
|
||
|
104.22.38.182
|
create.lidstatic.com
|
United States
|
||
|
18.239.50.40
|
unknown
|
United States
|
||
|
54.209.172.61
|
aa34fc5871ed549c7b1e6d7c2ef3aabf-721668311.us-east-1.elb.amazonaws.com
|
United States
|
||
|
13.32.99.54
|
api.pushnami.com
|
United States
|
||
|
52.210.180.113
|
prod-dem-collector-elb-611025824.eu-west-1.elb.amazonaws.com
|
United States
|
||
|
167.71.5.94
|
slotomaniaplus.com
|
United States
|
||
|
18.66.112.72
|
unknown
|
United States
|
||
|
52.0.2.209
|
unknown
|
United States
|
||
|
54.144.198.71
|
unknown
|
United States
|
||
|
104.22.54.104
|
unknown
|
United States
|
There are 45 hidden IPs, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://1.rewardzinga.com/750-walmart-rewards-v-4
|
|
|
|
https://1.rewardzinga.com/750-walmart-rewards-v-4
|
|
|
|
https://1.rewardzinga.com/750-walmart-rewards-v-4
|
|
|
|
https://slotomaniaplus.com/Rrn4w5Hf?sub1=mtg66f14a9e6633b800088f731w&sub2=&sub3=mtg1206891918&sub4=ss_mark_se_ios&sub5=&mt_sub3=1809824272&mt_click_id=mt-kruxy7-1727772932-3891893797&mt_network=mtg1206891918&mt_sub5=ss_mark_se_ios&mt_sub1=ss_mark_se_ios&mt_campaign=ss_mark_se_ios&mt_sub2=mtg12068%2091918
|
||
|
https://slotomaniaplus.com/Rrn4w5Hf?sub1=mtg66f14a9e6633b800088f731w&sub2=&sub3=mtg1206891918&sub4=ss_mark_se_ios&sub5=&mt_sub3=1809824272&mt_click_id=mt-kruxy7-1727772932-3891893797&mt_network=mtg1206891918&mt_sub5=ss_mark_se_ios&mt_sub1=ss_mark_se_ios&mt_campaign=ss_mark_se_ios&mt_sub2=mtg12068%2091918
|
||
|
https://slotomaniaplus.com/Rrn4w5Hf?sub1=mtg66f14a9e6633b800088f731w&sub2=&sub3=mtg1206891918&sub4=ss_mark_se_ios&sub5=&mt_sub3=1809824272&mt_click_id=mt-kruxy7-1727772932-3891893797&mt_network=mtg1206891918&mt_sub5=ss_mark_se_ios&mt_sub1=ss_mark_se_ios&mt_campaign=ss_mark_se_ios&mt_sub2=mtg12068%2091918
|
||
|
https://rewardzinga.com/lmain?aid=10898&pid=3531&sid1=1222&sid2=&externalid=e62a54f25a9247c5ad6623db5047efc0&campaignid=16&sid3=4313adb24b794a4da28f34d1e4d336b7&first_name=&last_name=&email=&address1=&address2=&city=&state=&zip=&phone=&gender=&dob=
|
||
|
https://1.rewardzinga.com/750-walmart-rewards-v-4
|
||
|
https://1.rewardzinga.com/750-walmart-rewards-v-4
|
||
|
https://1.rewardzinga.com/750-walmart-rewards-v-4
|
||
|
https://1.rewardzinga.com/750-walmart-rewards-v-4
|
||
|
https://1.rewardzinga.com/750-walmart-rewards-v-4
|
||
|
https://1.rewardzinga.com/750-walmart-rewards-v-4
|
There are 3 hidden doms, click here to show them.