Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 7 15:50:46 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 7 15:50:46 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 7 15:50:46 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 7 15:50:46 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 7 15:50:46 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
Chrome Cache Entry: 147
|
PNG image data, 15 x 90, 8-bit/color RGB, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 148
|
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 149
|
HTML document, ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 150
|
PNG image data, 15 x 90, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 151
|
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 152
|
ASCII text, with very long lines (47261)
|
dropped
|
||
|
Chrome Cache Entry: 153
|
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 154
|
ASCII text, with very long lines (47261)
|
downloaded
|
||
|
Chrome Cache Entry: 155
|
PNG image data, 41 x 68, 8-bit/color RGB, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 156
|
ASCII text, with very long lines (47261)
|
downloaded
|
||
|
Chrome Cache Entry: 157
|
HTML document, ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 158
|
PNG image data, 41 x 68, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 159
|
ASCII text, with very long lines (7982), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 160
|
ASCII text, with very long lines (47261)
|
downloaded
|
||
|
Chrome Cache Entry: 161
|
ASCII text, with very long lines (8090), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 162
|
PNG image data, 8 x 19, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 163
|
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
|
downloaded
|
There are 14 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2176 --field-trial-handle=1988,i,4542649696046930843,15733132977423327855,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://dsdhie.org/dsjhem"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://dsdhie.org/dsjhem
|
|||
|
https://dsdhie.org/dsjhem
|
|||
|
https://sjw.doccloudshareddrive.com/dsiejd
|
|||
|
https://sjw.doccloudshareddrive.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8cef665708b38cc0
|
188.114.97.3
|
||
|
https://dzswv.org/djend
|
|||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/2037083159:1728318641:yuKWuvqg3qzZTpFRLEH4i2CdSfORlgaljzxwMu5G4pg/8cef66bf58b30f70/9e4cda52ab03062
|
104.18.94.41
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8cef66bf58b30f70/1728319945665/UU-rQfeC17ubY4S
|
104.18.94.41
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8cef653c9b4c8c83&lang=auto
|
104.18.95.41
|
||
|
https://dzswv.org/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8cef658f5b9419bf
|
188.114.97.3
|
||
|
https://a.nel.cloudflare.com/report/v4?s=EB6CBfmPmyJfw9OPxd3frTqHkUHfOGTG7wGVoPYo4IaB62meP0CIeppe7v43ATlTa5YV4VIeCeLX5H4i3fwPYoLzEVdeqEE7rvwajp5Wee4749cZX2vNSLu0ATd6
|
35.190.80.1
|
||
|
https://sjw.doccloudshareddrive.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/ec4b873d446c/main.js?
|
188.114.97.3
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8kr8c/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/
|
104.18.94.41
|
||
|
https://sjw.doccloudshareddrive.com/cdn-cgi/challenge-platform/h/g/flow/ov1/441416927:1728318677:uV3iu4x_IK1O0BLerLU3cJZuGaGkAFbUta8h91i9khI/8cef66aea98b1795/b9b7f92f0d441d7
|
188.114.97.3
|
||
|
https://sjw.doccloudshareddrive.com/s8wgc6rv84kq5ica7vd36qnc60nukyllnp
|
|||
|
https://sjw.doccloudshareddrive.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
|
188.114.97.3
|
||
|
https://dsdhie.org/cdn-cgi/challenge-platform/h/g/flow/ov1/1014838196:1728318578:M4UHSvrAaVsUZ8gFgljBHzCvKkin5s13Un2Zj0ibcWw/8cef64cf0fbf7287/eb35c872bcc7682
|
188.114.96.3
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8cef65ac7cb9de97/1728319902451/9359d8664952a10f339b2551b4d7e6e6be3a51a6b0e6c8274349f72bc6f4bb30/M6M_65-5zviSP2t
|
104.18.94.41
|
||
|
https://a.nel.cloudflare.com/report/v4?s=CU5rZqf%2FGFWXfZcB3dlx0azQtAuw%2FsYaTlT2%2FFzxzmkTsChRLviTOY2%2Flc5BhJrx0uVcThD8L%2F8D8ArJU2lbREd1dgtk2mrEBdFyVbwqc%2BzyYaT1dTGTb4E9pkk%3D
|
35.190.80.1
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/hkrjs/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/
|
104.18.94.41
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1523770285:1728318774:9aYXZgD3f1aWeIMIW1jlJucBqqTOmUuIas7B7EMb1p4/8cef6612ec6b430a/951114c609dedb0
|
104.18.94.41
|
||
|
https://sjw.doccloudshareddrive.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1470772081:1728318640:2wFI_11DlzV-bplSPz0KXc031EvLjD678M9vuFUa_Dg/8cef65fd0c7e0f91/088cafd27a66f93
|
188.114.97.3
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/wh0E0SXYnx6pTBdJW%2Fl926I%2BPRUplRdtQz3K9lHXs%2Fs%3D
|
104.18.94.41
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8cef66bf58b30f70&lang=auto
|
104.18.94.41
|
||
|
https://sjw.doccloudshareddrive.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8cef65fd0c7e0f91
|
188.114.97.3
|
||
|
https://sjw.doccloudshareddrive.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1504865859:1728318644:XnG1zCQ3miPCCr2lgJpcjni7QymTTCafIESxh8qsB34/8cef665708b38cc0/36ac06e3efedc3f
|
188.114.97.3
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1814953329:1728318749:vN7NbeygS1N3W0YWaTrWsZb1CPUugrDj6H2QF4xAD30/8cef65ac7cb9de97/483a4a60170b950
|
104.18.94.41
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/nrv5f/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/
|
104.18.94.41
|
||
|
https://dsdhie.org/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8cef64cf0fbf7287
|
188.114.96.3
|
||
|
https://sjw.doccloudshareddrive.com/favicon.ico
|
188.114.97.3
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8cef6612ec6b430a/1728319917862/34f40349c2c37f35b38ad893be3787dc4f2ce8b2cf7fae9066c463dd51fcf394/CnxBixK-31RsOVE
|
104.18.94.41
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8cef6612ec6b430a&lang=auto
|
104.18.94.41
|
||
|
https://a.nel.cloudflare.com/report/v4?s=YnRlnb%2F1e44D7awoQ3fiejzF67hJIZqfoI02ydzZxkYlgZggrqNTS1GRaJygkrErRQDB6ibOICca8rzdY921JNzk9WYg0Vr7PKmhisX3RGh0pT97G4m5uB2ip9Gy
|
35.190.80.1
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8cef66bf58b30f70/1728319945667/6d2db0c988e6d2e35f6ec57b2a3f5baa0c1831d761d23912d4ed9fa088f5f8e6/2Mghylt0Yz6mgOK
|
104.18.94.41
|
||
|
https://sjw.doccloudshareddrive.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8cef66aea98b1795
|
188.114.97.3
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8cef653c9b4c8c83/1728319882261/U1vLgAqvOytVwG6
|
104.18.95.41
|
||
|
https://dsdhie.org/cdn-cgi/challenge-platform/h/g/flow/ov1/1910550417:1728318610:qEhykGJe00uYKMI_yFlaisGZabaZrLa4X3-TP4MD5iI/8cef646608947c90/cb06d6d616ffbd5
|
188.114.96.3
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8cef65ac7cb9de97&lang=auto
|
104.18.94.41
|
||
|
https://dzswv.org/cdn-cgi/challenge-platform/h/g/flow/ov1/1702997305:1728318674:wd1OwYN1Fv6eIAm8GMIGumcybSK_SWesx4AEPp75hjk/8cef658f5b9419bf/d42c2a4490eae19
|
188.114.97.3
|
||
|
https://dsdhie.org/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8cef646608947c90
|
188.114.96.3
|
||
|
https://dzswv.org/djend?__cf_chl_rt_tk=J1dYmMnNHppA2ncLKw0yIR3R1Wb34cBNIBZGfL117Ko-1728319894-0.0.1.1-5161
|
|||
|
https://dsdhie.org/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=8cef652baf151a13
|
188.114.96.3
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8cef65ac7cb9de97/1728319902457/vHho67dEzkP2gm2
|
104.18.94.41
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/rstb2/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/
|
104.18.94.41
|
||
|
https://dsdhie.org/cdn-cgi/challenge-platform/h/g/flow/ov1/1014838196:1728318578:M4UHSvrAaVsUZ8gFgljBHzCvKkin5s13Un2Zj0ibcWw/8cef652baf151a13/dafdb1de7cb67cd
|
188.114.96.3
|
||
|
https://dzswv.org/favicon.ico
|
188.114.97.3
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1113207682:1728318581:F0lbprL2lKDDphwKj1XOMSngJ7g2JhRoKGp6RHaYQuk/8cef653c9b4c8c83/4c78181722a61a6
|
104.18.95.41
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/p9o9g/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/
|
104.18.94.41
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8cef64de78d443f9&lang=auto
|
104.18.94.41
|
||
|
https://dsdhie.org/favicon.ico
|
188.114.96.3
|
||
|
https://sjw.doccloudshareddrive.com/cdn-cgi/challenge-platform/h/g/jsd/r/8cef671548a142c8
|
188.114.97.3
|
There are 39 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
a.nel.cloudflare.com
|
35.190.80.1
|
||
|
challenges.cloudflare.com
|
104.18.94.41
|
||
|
www.google.com
|
216.58.212.132
|
||
|
dsdhie.org
|
188.114.96.3
|
||
|
dzswv.org
|
188.114.97.3
|
||
|
sjw.doccloudshareddrive.com
|
188.114.97.3
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
216.58.212.132
|
www.google.com
|
United States
|
||
|
104.18.94.41
|
challenges.cloudflare.com
|
United States
|
||
|
192.168.2.16
|
unknown
|
unknown
|
||
|
104.18.95.41
|
unknown
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
188.114.97.3
|
dzswv.org
|
European Union
|
||
|
192.168.2.15
|
unknown
|
unknown
|
||
|
188.114.96.3
|
dsdhie.org
|
European Union
|
||
|
35.190.80.1
|
a.nel.cloudflare.com
|
United States
|
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://dsdhie.org/dsjhem
|
||
|
https://dsdhie.org/dsjhem
|
||
|
https://dsdhie.org/dsjhem
|
||
|
https://dsdhie.org/dsjhem
|
||
|
https://dsdhie.org/dsjhem
|
||
|
https://dsdhie.org/dsjhem
|
||
|
https://dsdhie.org/dsjhem
|
||
|
https://dsdhie.org/dsjhem
|
||
|
https://dsdhie.org/dsjhem
|
||
|
https://dsdhie.org/dsjhem
|
||
|
https://dzswv.org/djend?__cf_chl_rt_tk=J1dYmMnNHppA2ncLKw0yIR3R1Wb34cBNIBZGfL117Ko-1728319894-0.0.1.1-5161
|
||
|
https://dzswv.org/djend
|
||
|
https://dzswv.org/djend
|
||
|
https://dzswv.org/djend
|
||
|
https://sjw.doccloudshareddrive.com/dsiejd
|
||
|
https://sjw.doccloudshareddrive.com/dsiejd
|
||
|
https://sjw.doccloudshareddrive.com/dsiejd
|
||
|
https://sjw.doccloudshareddrive.com/dsiejd
|
||
|
https://sjw.doccloudshareddrive.com/dsiejd
|
||
|
https://sjw.doccloudshareddrive.com/dsiejd
|
||
|
https://sjw.doccloudshareddrive.com/dsiejd
|
||
|
https://sjw.doccloudshareddrive.com/dsiejd
|
||
|
https://sjw.doccloudshareddrive.com/dsiejd
|
||
|
https://sjw.doccloudshareddrive.com/s8wgc6rv84kq5ica7vd36qnc60nukyllnp
|
||
|
https://sjw.doccloudshareddrive.com/s8wgc6rv84kq5ica7vd36qnc60nukyllnp
|
||
|
https://sjw.doccloudshareddrive.com/s8wgc6rv84kq5ica7vd36qnc60nukyllnp
|
There are 16 hidden doms, click here to show them.