Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sun Oct 6 15:41:00 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sun Oct 6 15:41:00 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 4 12:54:07 2023, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sun Oct 6 15:41:00 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sun Oct 6 15:41:00 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sun Oct 6 15:41:00 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
Chrome Cache Entry: 100
|
Web Open Font Format (Version 2), TrueType, length 14824, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 101
|
Unicode text, UTF-8 (with BOM) text, with very long lines (4118), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 102
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 103
|
Unicode text, UTF-8 (with BOM) text, with CRLF, LF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 104
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
|
Chrome Cache Entry: 105
|
Unicode text, UTF-8 (with BOM) text, with very long lines (3233), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 106
|
ASCII text, with very long lines (2452), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 107
|
ASCII text, with very long lines (52420)
|
dropped
|
||
|
Chrome Cache Entry: 108
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 109
|
Web Open Font Format (Version 2), TrueType, length 18536, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 110
|
MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
|
downloaded
|
||
|
Chrome Cache Entry: 111
|
Unicode text, UTF-8 (with BOM) text, with very long lines (4789), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 112
|
HTML document, ASCII text, with very long lines (6154), with CRLF line terminators
|
dropped
|
||
|
Chrome Cache Entry: 113
|
Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261
|
downloaded
|
||
|
Chrome Cache Entry: 114
|
ASCII text, with very long lines (1977), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 115
|
Unicode text, UTF-8 (with BOM) text, with very long lines (3499), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 116
|
Unicode text, UTF-8 (with BOM) text, with very long lines (3955), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 117
|
Unicode text, UTF-8 (with BOM) text, with very long lines (3479), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 118
|
Unicode text, UTF-8 (with BOM) text, with very long lines (4773), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 119
|
Unicode text, UTF-8 (with BOM) text, with very long lines (3501), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 120
|
ASCII text, with very long lines (2281), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 121
|
PNG image data, 221 x 27, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 122
|
Unicode text, UTF-8 (with BOM) text, with very long lines (3849), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 123
|
Unicode text, UTF-8 (with BOM) text, with very long lines (3902), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 124
|
Unicode text, UTF-8 (with BOM) text, with CRLF, LF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 125
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 126
|
ASCII text, with very long lines (1946), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 127
|
Unicode text, UTF-8 (with BOM) text, with CRLF, LF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 128
|
Web Open Font Format (Version 2), TrueType, length 14892, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 129
|
ASCII text, with very long lines (52420)
|
downloaded
|
||
|
Chrome Cache Entry: 130
|
ASCII text, with very long lines (1608), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 131
|
Unicode text, UTF-8 (with BOM) text, with very long lines (3987), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 132
|
ASCII text, with very long lines (2717), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 133
|
Unicode text, UTF-8 (with BOM) text, with very long lines (3757), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 134
|
HTML document, ASCII text, with very long lines (5908), with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 135
|
Unicode text, UTF-8 (with BOM) text, with very long lines (3345), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 136
|
ASCII text, with very long lines (32034)
|
downloaded
|
||
|
Chrome Cache Entry: 137
|
Unicode text, UTF-8 (with BOM) text, with very long lines (3926), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 138
|
Unicode text, UTF-8 (with BOM) text, with CRLF, LF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 139
|
SVG Scalable Vector Graphics image
|
dropped
|
||
|
Chrome Cache Entry: 140
|
Unicode text, UTF-8 (with BOM) text, with very long lines (3424), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 141
|
ASCII text, with very long lines (59158)
|
downloaded
|
||
|
Chrome Cache Entry: 142
|
Unicode text, UTF-8 (with BOM) text, with very long lines (3478), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 143
|
ASCII text, with very long lines (1745), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 144
|
Unicode text, UTF-8 (with BOM) text, with very long lines (3445), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 145
|
ASCII text, with very long lines (32034)
|
dropped
|
||
|
Chrome Cache Entry: 93
|
ASCII text, with very long lines (2018), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 94
|
Unicode text, UTF-8 (with BOM) text, with CRLF, LF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 95
|
PNG image data, 221 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 96
|
Unicode text, UTF-8 (with BOM) text, with very long lines (3624), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 97
|
HTML document, ASCII text, with very long lines (705), with CRLF, LF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 98
|
Web Open Font Format (Version 2), TrueType, length 18596, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 99
|
MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
|
dropped
|
There are 50 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
 |
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2096 --field-trial-handle=2044,i,16110181494647011536,2393842139733499117,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "http://usthu.mczazni.xyz/"
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://usthu.mczazni.xyz/
|
|||
|
https://cdn.tailwindcss.com
|
unknown
|
||
|
https://usthu.mczazni.xyz/93f27f3/sAJH?N/AEAunn4MtIjHfAw5b_ALJBANEA8Agcc/TiGAH6OrqAh_XFg?4-/TWIjVAGEKoA_9AHzA1SAa
|
|||
|
https://usthu.mczazni.xyz/93f27f3/sAAo?_A/EASqHbouIhc2ATZ6_AVR1ANE/ABAMUa-0SAJ2ytKA9EXsg?4n6eIp/iAuXhSA_TAH3A5kAD.css
|
172.67.165.115
|
||
|
https://usthu.mczazni.xyz/93f27f3/Qr3TClnz46AA/sALA2ZeLVTA2U_Axogw0woLD6O7Ts6WRYCHA50A/EF-JAlAvW_CF8CgALvAHKLdA7_AmKk4nX0gAt2/3AkHHIPappemTg6fMgvhqFVy6-0
|
172.67.165.115
|
||
|
https://usthu.mczazni.xyz/93f27f3/mEXAsJ/lYk?ABbEA-7A43AFujA?s/3eTAAxKAHKn/AEAPIzAVBAAB8r
|
172.67.165.115
|
||
|
https://usthu.mczazni.xyz/93f27f3/StZTE5nz4YAA/sAaA1HeLVTA2UBAEoWm0rQIDzO7TsJWR2CHAvqAEC-x/A9AvS_3HG3gALZAHKLdAi_AaIk4933kAYV3A/kHHIPPTpeBTg6fIBvhqF9ZU-S
|
172.67.165.115
|
||
|
https://usthu.mczazni.xyz/93f27f3/O3tq4E/WRZCAKgploRvAVs?zLW-hzThAETr_Gf2fPAv/z6ATAHABwTknH-ALAUeg2sdFA4ID3s7B/AxHAMKD_LAqvavxFkWAAH0
|
172.67.165.115
|
||
|
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/webfonts/fa-solid-900.woff2
|
104.17.25.14
|
||
|
https://github.com/postcss/autoprefixer#readme
|
unknown
|
||
|
https://usthu.mczazni.xyz/93f27f3/sAAo?_A/EASqH3YuIK12Adv9_AVguANE/AnAlca-RSARuLt5A9pfsg?4yaeIR/iAuohYA_8AH9A5kAa.css
|
172.67.165.115
|
||
|
https://evilmartians.com/chronicles/postcss-8-plugin-migration
|
unknown
|
||
|
https://usthu.mczazni.xyz/93f27f3/AUGkrE/5I8hAh_tWP65AiD?jerpAI_qAEG4_PaqHjAd2VANAH/AfwzF5lPAdAEvaxs2GA4IN_IVXAPW/AMx-_tAR7m3vTa6AAMS.png
|
172.67.165.115
|
||
|
https://usthu.mczazni.xyz/93f27f3/sAAo?_A/EASqHkVuIa32AZ3k_AVVoANEA-A/7Ta-7SAxMftVA9Uisg?4rReI9/iAuph8A_OAH_A5kA_.js
|
172.67.165.115
|
||
|
https://usthu.mczazni.xyz/93f27f3/sAxg?T/AEAeT1R_vImCCA6Qq_AvQzANEA9/Al9dksUAil71HAvy99g?43alIq/lAzLp4A_0AHNAmPAy
|
172.67.165.115
|
||
|
https://usthu.mczazni.xyz/93f27f3/sAAo?_A/EASqHhxuIDx2AzPh_AVb2ANE/A9AiUa-bSAHy0t_A9M1sg?4T7eIU/iAuphbA_FAHXA5kAO.js
|
172.67.165.115
|
||
|
https://github.com/browserslist/browserslist#readme
|
unknown
|
||
|
https://usthu.mczazni.xyz/93f27f3/yD5NjRA_E/40JBs6RQAIAA/iZvAyOAAA_A/H01SKvVAAAoAMQE5
|
172.67.165.115
|
||
|
https://usthu.mczazni.xyz/93f27f3/WX9NA-W/XbiAAAAfGC34NIlA6HLu?3PA/a9s_AWVAaOG6uA0QZ7YUPKb/DVv3csEA_AOHApAY8d.js
|
172.67.165.115
|
||
|
https://usthu.mczazni.xyz/93f27f3/sAAo?_A/EASqHFNuIIQ2A6dL_AV12ANE/AFAQaa-kSAfZ2tqA9p3sg?4O1eI9/iAubh-A_WAH0A5kAi.js
|
172.67.165.115
|
||
|
https://fontawesome.com/license/free
|
unknown
|
||
|
https://usthu.mczazni.xyz/
|
172.67.165.115
|
||
|
https://usthu.mczazni.xyz/93f27f3/SX9pA-W/XbyAAAApFc04NITAOHLq?4PA/a9s_ASuAaOr6uAzjZdYDPF3/1yvGYsEAsAZHApAR8E.css
|
172.67.165.115
|
||
|
https://usthu.mczazni.xyz/93f27f3/vB9oX1/Ae_48NPshDQA/IAA6isA99AA/AWAHIH_ZRcAAA-AIcEe.ico
|
172.67.165.115
|
||
|
https://fontawesome.com
|
unknown
|
||
|
https://usthu.mczazni.xyz/93f27f3/1K9cA-W/XbiAAAAZLPU4NI1AOHLG?iPA/a9s_AY7AaOP6uA1DZOYBPLZ/rkvtUsEAXAZHApA-8M.js
|
172.67.165.115
|
||
|
https://usthu.mczazni.xyz/93f27f3/sAAo?_A/EASqHDzuIre2Ae_P_AV6NANE/AOAXUa-lSA3sCtCA94zsg?4DueIP/iAuYhCA_sAH-A5kAF.js
|
172.67.165.115
|
||
|
https://usthu.mczazni.xyz/93f27f3/O35g4E/WR0CAKgpnoavAVM?TTI-hzTHAETa_Jf2dPAT/G6ATAHArwTknH-ALAUeg9sdxA4IDfs7m/AMHAM2W_LAqvSvjjkZAAH0
|
172.67.165.115
|
||
|
https://tailwindcss.com/docs/installation
|
unknown
|
||
|
https://cdn.tailwindcss.com/
|
104.22.20.144
|
||
|
https://usthu.mczazni.xyz/93f27f3/O3x04E/WRdCAKgp0o8pAVb?TEY-hzTEAETU_uf2fPAL/o6ATAHAHwTknH-ALAUegpsdZA4IDAs7C/A8HAMIN_LAqvsvhkkvAAH0
|
172.67.165.115
|
||
|
https://usthu.mczazni.xyz/93f27f3/vjtSrE/5nDhAh_tkLGaAKw?DsI-CIjGAEG6_5aqH6APrjANAH/AuwFF5lPA7ALGYSsA0A4I1WIsGAPy/AMQx_tAD7A3weadAAMO.js
|
172.67.165.115
|
||
|
https://usthu.mczazni.xyz/93f27f3/tEcSrE/5zkhAh_tPLN5AZN?zK8S1IttAEGb_paqFaAjcvANAH/Ajw0F5lPAwAPvXBsCRA4I4tIGBAbd/AM8g_tAy7p3ASaaAAMo.svg
|
172.67.165.115
|
||
|
https://cdn.tailwindcss.com/3.4.5
|
104.22.20.144
|
||
|
https://usthu.mczazni.xyz/93f27f3/sAAo?_A/EASqHcquIiP2AMoH_AVvkANE/ArAtba-ASApf_tGA9Tisg?4jHeIt/iAuYhmA_rAHPA5kAf.js
|
172.67.165.115
|
||
|
https://usthu.mczazni.xyz/93f27f3/sAAo?_A/EASqHEhuIah2ADJy_AVWVANE/AMAnUa-uSAzkwt2A9-Wsg?4xKeIv/iAu-hoA_yAHLA5kAx.js
|
172.67.165.115
|
||
|
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/css/all.min.css
|
104.17.25.14
|
||
|
https://usthu.mczazni.xyz/93f27f3/XG9_A-W/XbiAAABH6qt4NI9AiHLa?CPA/a9s_AIzAaOu6uANjZEYvPCX/LrvWMsEAdAZHApA28E.css
|
172.67.165.115
|
||
|
https://usthu.mczazni.xyz/93f27f3/sAAo?_A/EASqHywuIQ_2AcxO_AVZlANE/ArANaa-bSATW4tKA9GLsg?46KeI0/iAuJhIA_RAHuA5kAM.css
|
172.67.165.115
|
||
|
https://mths.be/cssesc
|
unknown
|
||
|
https://code.jquery.com/jquery-3.0.0.min.js
|
151.101.66.137
|
||
|
https://usthu.mczazni.xyz/StaticHtml/Error404Html/index.html?aspxerrorpath=/BeforeGetHtml
|
172.67.165.115
|
||
|
https://twitter.com/browserslist
|
unknown
|
There are 32 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
usthu.mczazni.xyz
|
104.21.57.184
|
|
|
|
a.nel.cloudflare.com
|
35.190.80.1
|
||
|
code.jquery.com
|
151.101.66.137
|
||
|
cdnjs.cloudflare.com
|
104.17.25.14
|
||
|
cdn.tailwindcss.com
|
104.22.20.144
|
||
|
s-part-0017.t-0009.t-msedge.net
|
13.107.246.45
|
||
|
www.google.com
|
142.250.186.164
|
||
|
fp2e7a.wpc.phicdn.net
|
192.229.221.95
|
||
|
s-part-0032.t-0009.t-msedge.net
|
13.107.246.60
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
104.22.21.144
|
unknown
|
United States
|
||
|
192.168.2.6
|
unknown
|
unknown
|
||
|
172.67.165.115
|
unknown
|
United States
|
||
|
192.168.2.5
|
unknown
|
unknown
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
142.250.186.164
|
www.google.com
|
United States
|
||
|
151.101.66.137
|
code.jquery.com
|
United States
|
||
|
151.101.194.137
|
unknown
|
United States
|
||
|
35.190.80.1
|
a.nel.cloudflare.com
|
United States
|
||
|
104.22.20.144
|
cdn.tailwindcss.com
|
United States
|
||
|
104.17.25.14
|
cdnjs.cloudflare.com
|
United States
|
There are 1 hidden IPs, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://usthu.mczazni.xyz/93f27f3/sAJH?N/AEAunn4MtIjHfAw5b_ALJBANEA8Agcc/TiGAH6OrqAh_XFg?4-/TWIjVAGEKoA_9AHzA1SAa
|
||
|
https://usthu.mczazni.xyz/93f27f3/sAJH?N/AEAunn4MtIjHfAw5b_ALJBANEA8Agcc/TiGAH6OrqAh_XFg?4-/TWIjVAGEKoA_9AHzA1SAa
|
||
|
https://usthu.mczazni.xyz/93f27f3/sAJH?N/AEAunn4MtIjHfAw5b_ALJBANEA8Agcc/TiGAH6OrqAh_XFg?4-/TWIjVAGEKoA_9AHzA1SAa
|