Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\689f397a-4c6f-41bb-a999-4c5f2244cd5a.tmp
|
JSON data
|
modified
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\86e67cd5-4d5e-4fb5-a1cd-2a1dbe700991.tmp
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\Network Persistent State (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\Network Persistent State~RF49b92b.TMP (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ConnectorIcons\icon-241011113554Z-180.bmp
|
PC bitmap, Windows 3.x format, 117 x -152 x 32, cbSize 71190, bits offset 54
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages
|
SQLite 3.x database, last written using SQLite version 3040000, file counter 15, database pages 21, cookie 0x5, schema 4,
UTF-8, version-valid-for 15
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages-journal
|
SQLite Rollback Journal
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\2D85F72862B55C4EADD9E66E06947F3D
|
Certificate, Version=3
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\2D85F72862B55C4EADD9E66E06947F3D
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\AdobeFnt23.lst.6840
|
PostScript document text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\AdobeSysFnt23.lst (copy)
|
PostScript document text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\ACROBAT_READER_MASTER_SURFACEID
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_FirstMile_Home_View_Surface
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_FirstMile_Right_Sec_Surface
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_READER_LAUNCH_CARD
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Convert_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Disc_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Disc_LHP_Retention
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Edit_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Home_LHP_Trial_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_More_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Intent_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Retention
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Sign_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Upsell_Cards
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\Edit_InApp_Aug2020
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\TESTING
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\SOPHIA.json
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SharedDataEvents
|
SQLite 3.x database, last written using SQLite version 3040000, file counter 25, database pages 3, cookie 0x2, schema 4, UTF-8,
version-valid-for 25
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SharedDataEvents-journal
|
SQLite Rollback Journal
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\MSI9757b.LOG
|
Unicode text, UTF-16, little-endian text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrobat_sbx\A918tlkdv_twb27i_5a0.tmp
|
PDF document, version 1.6, 0 pages
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\NGLClient_AcrobatReader123.6.20320.6 2024-10-11 07-35-51-807.log
|
ASCII text, with very long lines (393)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\NGLClient_AcrobatReader123.6.20320.6.log
|
ASCII text, with very long lines (393), with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrobat_sbx\acroNGLLog.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrocef_low\2861fc83-c0bc-4f99-a329-b67aaae706f3.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 33081
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrocef_low\484b6397-1859-4b41-85be-ec391735998c.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 299538
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrocef_low\8a3447b2-81cd-41b4-90e5-84a12d0c850f.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 1311022
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrocef_low\a4b216b0-c314-4ea4-a1bd-f3e91c5f1f88.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 5111142
|
dropped
|
||
|
C:\Users\user\Downloads\0fce3906-77a5-41f4-9cb2-0d865ce1a3d1.tmp
|
PDF document, version 1.7, 1 pages
|
dropped
|
||
|
C:\Users\user\Downloads\1 Page of Unread Secured File Delivered +1-801-761___.pdf (copy)
|
PDF document, version 1.7, 1 pages
|
dropped
|
||
|
C:\Users\user\Downloads\1 Page of Unread Secured File Delivered +1-801-761___.pdf.crdownload
|
PDF document, version 1.7, 1 pages
|
dropped
|
||
|
C:\Users\user\Downloads\99c34dfe-69fc-4ded-a82a-335d7efd83c5.tmp
|
PDF document, version 1.7, 1 pages
|
dropped
|
||
|
Chrome Cache Entry: 351
|
gzip compressed data, from Unix, original size modulo 2^32 83717
|
dropped
|
||
|
Chrome Cache Entry: 352
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1583x2048, components
3
|
downloaded
|
||
|
Chrome Cache Entry: 353
|
ASCII text, with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 354
|
PNG image data, 207 x 40, 8-bit colormap, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 355
|
Web Open Font Format (Version 2), TrueType, length 46188, version 1.66
|
downloaded
|
||
|
Chrome Cache Entry: 356
|
ASCII text, with very long lines (37932)
|
downloaded
|
||
|
Chrome Cache Entry: 357
|
gzip compressed data, from Unix, original size modulo 2^32 297979
|
dropped
|
||
|
Chrome Cache Entry: 358
|
gzip compressed data, from Unix, original size modulo 2^32 859947
|
dropped
|
||
|
Chrome Cache Entry: 359
|
ASCII text, with very long lines (11015)
|
dropped
|
||
|
Chrome Cache Entry: 360
|
gzip compressed data, from Unix, original size modulo 2^32 745458
|
dropped
|
||
|
Chrome Cache Entry: 361
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 362
|
ASCII text, with very long lines (65536), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 363
|
gzip compressed data, from Unix, original size modulo 2^32 734416
|
downloaded
|
||
|
Chrome Cache Entry: 364
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 365
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 366
|
gzip compressed data, from Unix, original size modulo 2^32 6697
|
downloaded
|
||
|
Chrome Cache Entry: 367
|
gzip compressed data, from Unix, original size modulo 2^32 745458
|
downloaded
|
||
|
Chrome Cache Entry: 368
|
ASCII text, with very long lines (11015)
|
downloaded
|
||
|
Chrome Cache Entry: 369
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 370
|
gzip compressed data, from Unix, original size modulo 2^32 6697
|
dropped
|
||
|
Chrome Cache Entry: 371
|
gzip compressed data, from Unix, original size modulo 2^32 297979
|
downloaded
|
||
|
Chrome Cache Entry: 372
|
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
|
downloaded
|
||
|
Chrome Cache Entry: 373
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1583x2048, components
3
|
dropped
|
||
|
Chrome Cache Entry: 374
|
gzip compressed data, from Unix, original size modulo 2^32 622130
|
downloaded
|
||
|
Chrome Cache Entry: 375
|
ASCII text, with very long lines (15704)
|
dropped
|
||
|
Chrome Cache Entry: 376
|
ASCII text, with very long lines (15704)
|
downloaded
|
||
|
Chrome Cache Entry: 377
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 378
|
gzip compressed data, from Unix, original size modulo 2^32 859947
|
downloaded
|
||
|
Chrome Cache Entry: 379
|
HTML document, ASCII text, with very long lines (4999)
|
downloaded
|
||
|
Chrome Cache Entry: 380
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 381
|
Web Open Font Format (Version 2), TrueType, length 43308, version 1.66
|
downloaded
|
||
|
Chrome Cache Entry: 382
|
ASCII text, with very long lines (37932)
|
dropped
|
||
|
Chrome Cache Entry: 383
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 384
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 385
|
gzip compressed data, from Unix, original size modulo 2^32 83717
|
downloaded
|
||
|
Chrome Cache Entry: 386
|
gzip compressed data, from Unix, original size modulo 2^32 622130
|
dropped
|
||
|
Chrome Cache Entry: 387
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 388
|
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
|
dropped
|
||
|
Chrome Cache Entry: 389
|
PDF document, version 1.7, 1 pages
|
downloaded
|
||
|
Chrome Cache Entry: 390
|
ASCII text, with very long lines (12670)
|
downloaded
|
||
|
Chrome Cache Entry: 391
|
ASCII text, with very long lines (12670)
|
dropped
|
||
|
Chrome Cache Entry: 392
|
PNG image data, 207 x 40, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 393
|
ASCII text, with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 394
|
gzip compressed data, from Unix, original size modulo 2^32 734416
|
dropped
|
||
|
Chrome Cache Entry: 395
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
|
Chrome Cache Entry: 396
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 397
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 398
|
GIF image data, version 89a, 144 x 144
|
dropped
|
||
|
Chrome Cache Entry: 399
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
||
|
Chrome Cache Entry: 400
|
GIF image data, version 89a, 144 x 144
|
downloaded
|
||
|
Chrome Cache Entry: 401
|
HTML document, ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 402
|
ASCII text, with very long lines (1572)
|
downloaded
|
There are 94 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2392 --field-trial-handle=2308,i,8912664356502863276,8009754900491417157,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://docsend.com/view/yw8rtf7gp9v6uesg"
|
||
|
C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe
|
"C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe" "C:\Users\user\Downloads\1 Page of Unread Secured File Delivered +1-801-761___.pdf"
|
||
|
C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe
|
"C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --backgroundcolor=16777215
|
||
|
C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe
|
"C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --type=utility --utility-sub-type=network.mojom.NetworkService
--lang=en-US --service-sandbox-type=none --log-severity=disable --user-agent-product="ReaderServices/23.6.20320 Chrome/105.0.0.0"
--lang=en-US --user-data-dir="C:\Users\user\AppData\Local\CEF\User Data" --log-file="C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\debug.log"
--mojo-platform-channel-handle=2076 --field-trial-handle=1744,i,18087253727297593918,15909850350284689282,131072 --disable-features=BackForwardCache,CalculateNativeWinOcclusion,WinUseBrowserSpellChecker
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "http://axwdcef.ubpages.com/vnmcnlcn/trump/"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2368 --field-trial-handle=2240,i,9270458639858523547,13765055248560890572,262144
/prefetch:8
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://docsend.com/view/yw8rtf7gp9v6uesg
|
 |
||
|
https://docsend.com/view/yw8rtf7gp9v6uesg/thumb/1
|
unknown
|
|
|
|
https://docsend.com/view/yw8rtf7gp9v6uesg/page_data/1
|
unknown
|
|
|
|
https://docsend.com/view/yw8rtf7gp9v6uesg/download?viewLoadTime=1728646477
|
18.173.205.86
|
|
|
|
https://docsend.com/view/yw8rtf7gp9v6uesg/page_data/1?viewLoadTime=1728646477&timezoneOffset=-14400
|
18.173.205.86
|
|
|
|
https://docsend.com/view/yw8rtf7gp9v6uesg
|
|
||
|
http://fontawesome.io
|
unknown
|
||
|
https://js.intercomcdn.com/app.867d1dda.js
|
18.245.46.10
|
||
|
https://github.com/videojs/video.js/issues/2617
|
unknown
|
||
|
file:///C:/Users/user/Downloads/1%20Page%20of%20Unread%20Secured%20File%20Delivered%20+1-801-761___.pdf
|
|||
|
http://jquery.org/license
|
unknown
|
||
|
https://assets.docsend.com/static/AtlasGrotesk-Regular-Web-DS4XBEAW.woff2
|
108.138.26.123
|
||
|
https://docsend.com/client_log
|
18.173.205.86
|
||
|
https://assets.docsend.com/public/blank.gif
|
108.138.26.123
|
||
|
https://www.dropbox.com/pithos/ux_analytics
|
162.125.66.18
|
||
|
http://jqueryui.com
|
unknown
|
||
|
https://www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent
|
162.125.66.18
|
||
|
https://clipboardjs.com/
|
unknown
|
||
|
https://assets.docsend.com/static/whitey-D4AB5XBH.png
|
108.138.26.123
|
||
|
https://d.dropbox.com/crashdash/proxy/sessions
|
162.125.1.20
|
||
|
https://docsend.com/view/
|
unknown
|
||
|
https://assets.docsend.com/static/en-NLWCRLUZ.js
|
108.138.26.123
|
||
|
https://axwdcef.ubpages.com/vnmcnlcn/trump/
|
|||
|
https://www.dropbox.com/log/ux_analytics
|
162.125.66.18
|
||
|
https://assets.docsend.com/static/presentation-WAHXKBF4.css
|
108.138.26.123
|
||
|
https://events.statsigapi.net/v1/rgstr
|
34.128.128.0
|
||
|
https://js.intercomcdn.com/vendors~app~tooltips.27a0f1b7.js
|
18.245.46.10
|
||
|
https://www.dropbox.com/report_abuse?ssu=https%3A%2F%2Fdocsend.com%2Fview%2Fyw8rtf7gp9v6uesg
|
unknown
|
||
|
https://widget.intercom.io/widget/lv6lji7h
|
13.224.189.18
|
||
|
https://api-iam.intercom.io/messenger/web/metrics
|
54.84.113.225
|
||
|
https://www.dropbox.com/pithos/host%3Adocsend.com/marketing_tracker_client
|
162.125.66.18
|
||
|
https://github.com/mholt/PapaParse
|
unknown
|
||
|
https://docsend.com
|
unknown
|
||
|
https://github.com/focus-trap/tabbable/blob/master/LICENSE
|
unknown
|
||
|
https://github.com/kesla/parse-headers/blob/master/LICENCE
|
unknown
|
||
|
https://docsend.com/favicon.ico?v=6
|
18.173.205.86
|
||
|
https://github.com/airbnb/polyglot.js/blob/master/lib/polyglot.js#L299
|
unknown
|
||
|
https://www.dropbox.com/pithos/host%3Adocsend.com/ux_analytics
|
162.125.66.18
|
||
|
https://widget.intercom.io/widget/
|
unknown
|
||
|
https://github.com/airbnb/polyglot.js/blob/master/LICENSE
|
unknown
|
||
|
https://marketing.docsend.com/view/yw8rtf7gp9v6uesg
|
13.33.187.96
|
||
|
https://docsend.com/presentation_analytics/record_page_view
|
18.173.205.86
|
||
|
http://axwdcef.ubpages.com/vnmcnlcn/trump/)
|
unknown
|
||
|
https://www.dropbox.com/pithos/privacy_consent
|
162.125.66.18
|
||
|
https://openjsf.org/
|
unknown
|
||
|
https://js.intercomcdn.com/app~tooltips.2b5146f2.js
|
18.245.46.10
|
||
|
https://fengyuanchen.github.io/cropperjs
|
unknown
|
||
|
http://jedwatson.github.io/classnames
|
unknown
|
||
|
https://uppy.io/docs/aws-s3/#getUploadParameters-file
|
unknown
|
||
|
http://x1.i.lencr.org/
|
unknown
|
||
|
https://assets.docsend.com/public/loading_images/large-loader.gif
|
108.138.26.123
|
||
|
https://www.dropbox.com/pithos/marketing_tracker_service
|
162.125.66.18
|
||
|
https://lodash.com/
|
unknown
|
||
|
https://www.dropbox.com/pithos/marketing_tracker_client
|
162.125.66.18
|
||
|
https://github.com/kesla/parse-headers/
|
unknown
|
||
|
http://api.jqueryui.com/category/ui-core/
|
unknown
|
||
|
https://github.com/mozilla/vtt.js/blob/main/LICENSE
|
unknown
|
||
|
https://featuregates.org/v1/initialize
|
34.128.128.0
|
||
|
https://docsend.com/metrics/properties
|
18.173.205.86
|
||
|
https://www.dropbox.com/pithos/host%3Amarketing.docsend.com/marketing_tracker_service
|
162.125.66.18
|
||
|
https://assets.docsend.com/static/presentation-BUJBORYX.css
|
108.138.26.123
|
||
|
http://fontawesome.io/license
|
unknown
|
||
|
http://underscorejs.org/LICENSE
|
unknown
|
||
|
https://chrome.google.com/webstore/detail/nmkphfcebcpicnakipcmgapcckkbhppd
|
unknown
|
||
|
https://jquery.org/license
|
unknown
|
||
|
https://chrome.cloudflare-dns.com/dns-query
|
162.159.61.3
|
||
|
https://jquery.com/
|
unknown
|
||
|
https://nexus-websocket-a.intercom.io/pubsub/5-ZVQvpshTcheZvvP88lKRE-pxdX8dCEKYaPiovc547KAKSQeCopcp56M-T3IaHv8AVExw7lX8hWohlZPqVY-GRcwn0En33Zu3rWfq?X-Nexus-New-Client=true&X-Nexus-Version=0.14.0&user_role=visitor
|
34.237.73.95
|
||
|
http://videojs.com/
|
unknown
|
||
|
https://github.com/videojs/video.js/blob/main/LICENSE
|
unknown
|
||
|
https://www.docsend.com/what-is-docsend/
|
unknown
|
||
|
https://lodash.com/license
|
unknown
|
||
|
https://assets.docsend.com/static/presentation-64SKQTGE.js
|
108.138.26.123
|
||
|
https://js.intercomcdn.com/frame.4925d28c.js
|
18.245.46.10
|
||
|
https://js.intercomcdn.com/vendor.c8c34991.js
|
18.245.46.10
|
||
|
https://api-iam.intercom.io/messenger/web/ping
|
54.84.113.225
|
||
|
https://github.com/mozilla/vtt.js
|
unknown
|
||
|
https://js.intercomcdn.com/vendors~app.f89042d6.js
|
18.245.46.10
|
||
|
https://docsend.com/favicon-1024x1024.png
|
unknown
|
||
|
https://assets.docsend.com/static/AtlasGrotesk-Medium-Web-LFHKUOTE.woff2
|
108.138.26.123
|
||
|
https://docsend.com/metrics/events
|
18.173.205.86
|
||
|
https://www.brightcove.com/
|
unknown
|
||
|
https://github.com/emn178/js-sha256
|
unknown
|
||
|
https://www.docsend.com/legal
|
unknown
|
There are 73 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
chrome.cloudflare-dns.com
|
162.159.61.3
|
||
|
featuregates.org
|
34.128.128.0
|
||
|
widget.intercom.io
|
13.224.189.18
|
||
|
api-iam.intercom.io
|
54.84.113.225
|
||
|
d3gwed3etk0v2d.cloudfront.net
|
13.33.187.96
|
||
|
axwdcef.ubpages.com
|
172.64.146.119
|
||
|
d2qvtfnm75xrxf.cloudfront.net
|
108.138.26.123
|
||
|
www-env.dropbox-dns.com
|
162.125.66.18
|
||
|
d-edge.v.dropbox.com
|
162.125.1.20
|
||
|
www.google.com
|
142.250.185.164
|
||
|
d1ng9lshxk6v9w.cloudfront.net
|
99.86.1.132
|
||
|
events.statsigapi.net
|
34.128.128.0
|
||
|
nexus-websocket-a.intercom.io
|
34.237.73.95
|
||
|
docsend.com
|
18.173.205.86
|
||
|
windowsupdatebg.s.llnwi.net
|
87.248.204.0
|
||
|
js.intercomcdn.com
|
18.245.46.10
|
||
|
x1.i.lencr.org
|
unknown
|
||
|
assets.docsend.com
|
unknown
|
||
|
cfl.dropboxstatic.com
|
unknown
|
||
|
marketing.docsend.com
|
unknown
|
||
|
d.dropbox.com
|
unknown
|
||
|
www.dropbox.com
|
unknown
|
There are 12 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
142.250.186.68
|
unknown
|
United States
|
||
|
13.224.189.18
|
widget.intercom.io
|
United States
|
||
|
108.138.26.14
|
unknown
|
United States
|
||
|
172.64.146.119
|
axwdcef.ubpages.com
|
United States
|
||
|
13.224.189.35
|
unknown
|
United States
|
||
|
192.168.2.4
|
unknown
|
unknown
|
||
|
34.237.73.95
|
nexus-websocket-a.intercom.io
|
United States
|
||
|
162.159.61.3
|
chrome.cloudflare-dns.com
|
United States
|
||
|
142.250.185.164
|
www.google.com
|
United States
|
||
|
104.18.41.137
|
unknown
|
United States
|
||
|
54.84.113.225
|
api-iam.intercom.io
|
United States
|
||
|
99.86.1.132
|
d1ng9lshxk6v9w.cloudfront.net
|
United States
|
||
|
108.138.26.123
|
d2qvtfnm75xrxf.cloudfront.net
|
United States
|
||
|
162.125.66.18
|
www-env.dropbox-dns.com
|
United States
|
||
|
18.245.46.19
|
unknown
|
United States
|
||
|
18.173.205.86
|
docsend.com
|
United States
|
||
|
34.224.177.146
|
unknown
|
United States
|
||
|
34.128.128.0
|
featuregates.org
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
18.173.205.79
|
unknown
|
United States
|
||
|
162.125.1.20
|
d-edge.v.dropbox.com
|
United States
|
||
|
13.33.187.96
|
d3gwed3etk0v2d.cloudfront.net
|
United States
|
||
|
23.200.196.138
|
unknown
|
United States
|
||
|
18.245.46.10
|
js.intercomcdn.com
|
United States
|
There are 14 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
aFS
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
tDIText
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
tFileName
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
tFileSource
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sFileAncestors
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sDI
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sDate
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
uFileSize
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
uPageCount
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sAssetId
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
bisSharedFile
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
aFS
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
tDIText
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
tFileName
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
sFileAncestors
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
sDI
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
sDate
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
uFileSize
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
uPageCount
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
bisSharedFile
|
There are 10 hidden registries, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://docsend.com/view/yw8rtf7gp9v6uesg
|
|
|
|
https://docsend.com/view/yw8rtf7gp9v6uesg
|
||
|
https://docsend.com/view/yw8rtf7gp9v6uesg
|
||
|
https://docsend.com/view/yw8rtf7gp9v6uesg
|
||
|
https://docsend.com/view/yw8rtf7gp9v6uesg
|
||
|
https://docsend.com/view/yw8rtf7gp9v6uesg
|
||
|
https://docsend.com/view/yw8rtf7gp9v6uesg
|
||
|
https://docsend.com/view/yw8rtf7gp9v6uesg
|
||
|
file:///C:/Users/user/Downloads/1%20Page%20of%20Unread%20Secured%20File%20Delivered%20+1-801-761___.pdf
|
||
|
file:///C:/Users/user/Downloads/1%20Page%20of%20Unread%20Secured%20File%20Delivered%20+1-801-761___.pdf
|
||
|
https://axwdcef.ubpages.com/vnmcnlcn/trump/
|
There are 1 hidden doms, click here to show them.