IOC Report
https://windoesmylifebetter.pages.dev/

loading gif

Files

File Path
Type
Category
Malicious
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 14 11:19:47 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 14 11:19:46 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 5 10:41:16 2023, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 14 11:19:46 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 14 11:19:46 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 14 11:19:46 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
Chrome Cache Entry: 111
ASCII text, with very long lines (4910), with no line terminators
dropped
Chrome Cache Entry: 112
PNG image data, 166 x 92, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 113
PNG image data, 300 x 300, 8-bit colormap, non-interlaced
dropped
Chrome Cache Entry: 114
PNG image data, 13 x 13, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 115
ASCII text, with CRLF line terminators
dropped
Chrome Cache Entry: 116
HTML document, ASCII text, with very long lines (305), with CRLF, LF line terminators
downloaded
Chrome Cache Entry: 117
PNG image data, 13 x 13, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 118
PNG image data, 166 x 92, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 119
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 120
Web Open Font Format (Version 2), TrueType, length 66624, version 4.262
downloaded
Chrome Cache Entry: 121
Unicode text, UTF-8 text, with very long lines (65464)
downloaded
Chrome Cache Entry: 122
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 123
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 124
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
downloaded
Chrome Cache Entry: 125
ASCII text, with very long lines (65299)
dropped
Chrome Cache Entry: 126
ASCII text, with no line terminators
dropped
Chrome Cache Entry: 127
ASCII text, with very long lines (906), with no line terminators
dropped
Chrome Cache Entry: 128
ASCII text, with very long lines (11134), with no line terminators
dropped
Chrome Cache Entry: 129
ASCII text, with very long lines (13521), with no line terminators
downloaded
Chrome Cache Entry: 130
PNG image data, 200 x 191, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 131
ASCII text, with CRLF line terminators
dropped
Chrome Cache Entry: 132
ASCII text, with very long lines (629), with CRLF line terminators
downloaded
Chrome Cache Entry: 133
ASCII text, with very long lines (2306), with no line terminators
dropped
Chrome Cache Entry: 134
MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural
downloaded
Chrome Cache Entry: 135
ASCII text, with very long lines (906), with no line terminators
downloaded
Chrome Cache Entry: 136
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 137
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 138
ASCII text, with very long lines (4910), with no line terminators
downloaded
Chrome Cache Entry: 139
ASCII text, with very long lines (20191), with no line terminators
downloaded
Chrome Cache Entry: 140
ASCII text, with no line terminators
dropped
Chrome Cache Entry: 141
PNG image data, 13 x 13, 8-bit/color RGB, non-interlaced
dropped
Chrome Cache Entry: 142
JSON data
dropped
Chrome Cache Entry: 143
ASCII text, with very long lines (11134), with no line terminators
downloaded
Chrome Cache Entry: 144
PNG image data, 13 x 13, 8-bit/color RGB, non-interlaced
downloaded
Chrome Cache Entry: 145
PNG image data, 200 x 191, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 146
ASCII text, with very long lines (10466), with no line terminators
dropped
Chrome Cache Entry: 147
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 148
HTML document, ASCII text, with very long lines (305), with CRLF, LF line terminators
dropped
Chrome Cache Entry: 149
PNG image data, 148 x 21, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 150
ASCII text, with very long lines (42329), with no line terminators
downloaded
Chrome Cache Entry: 151
Audio file with ID3 version 2.4.0, contains:\012- MPEG ADTS, layer III, v2, 32 kbps, 22.05 kHz, Monaural
downloaded
Chrome Cache Entry: 152
ASCII text, with very long lines (1572)
downloaded
Chrome Cache Entry: 153
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 154
ASCII text, with CRLF line terminators
dropped
Chrome Cache Entry: 155
ASCII text, with very long lines (2306), with no line terminators
downloaded
Chrome Cache Entry: 156
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 3240x2160, components 3
downloaded
Chrome Cache Entry: 157
ASCII text, with very long lines (10466), with no line terminators
downloaded
Chrome Cache Entry: 158
ASCII text, with very long lines (32065)
dropped
Chrome Cache Entry: 159
ASCII text
downloaded
Chrome Cache Entry: 160
PNG image data, 47 x 46, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 161
assembler source, ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 162
PNG image data, 47 x 46, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 163
ASCII text, with very long lines (65464)
dropped
Chrome Cache Entry: 164
PNG image data, 300 x 300, 8-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 165
ASCII text, with very long lines (535), with no line terminators
dropped
Chrome Cache Entry: 166
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 167
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced
dropped
Chrome Cache Entry: 168
Unicode text, UTF-8 text, with very long lines (65458)
dropped
Chrome Cache Entry: 169
Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 64 kbps, 44.1 kHz, Stereo
downloaded
Chrome Cache Entry: 170
ASCII text, with very long lines (65299)
downloaded
Chrome Cache Entry: 171
HTML document, ASCII text, with very long lines (11084), with no line terminators
dropped
Chrome Cache Entry: 172
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced
downloaded
Chrome Cache Entry: 173
Unicode text, UTF-8 text, with very long lines (65464)
dropped
Chrome Cache Entry: 174
ASCII text, with CRLF, LF line terminators
dropped
Chrome Cache Entry: 175
ASCII text, with very long lines (65464)
downloaded
Chrome Cache Entry: 176
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 177
ASCII text, with very long lines (27591)
downloaded
Chrome Cache Entry: 178
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 179
ASCII text, with very long lines (18219), with no line terminators
dropped
Chrome Cache Entry: 180
ASCII text, with CRLF line terminators
dropped
Chrome Cache Entry: 181
ASCII text, with very long lines (24729), with no line terminators
downloaded
Chrome Cache Entry: 182
JSON data
downloaded
Chrome Cache Entry: 183
PNG image data, 148 x 21, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 184
MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural
dropped
Chrome Cache Entry: 185
ASCII text, with very long lines (32065)
downloaded
Chrome Cache Entry: 186
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 187
HTML document, ASCII text, with very long lines (305), with CRLF, LF line terminators
downloaded
Chrome Cache Entry: 188
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 3240x2160, components 3
dropped
Chrome Cache Entry: 189
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 190
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 191
ASCII text
dropped
Chrome Cache Entry: 192
ASCII text, with very long lines (20191), with no line terminators
dropped
Chrome Cache Entry: 193
HTML document, ASCII text, with very long lines (11084), with no line terminators
downloaded
Chrome Cache Entry: 194
ASCII text, with very long lines (535), with no line terminators
downloaded
Chrome Cache Entry: 195
Unicode text, UTF-8 text, with very long lines (65458)
downloaded
Chrome Cache Entry: 196
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 197
ASCII text, with very long lines (65472)
downloaded
Chrome Cache Entry: 198
ASCII text, with CRLF, LF line terminators
downloaded
Chrome Cache Entry: 199
ASCII text, with very long lines (65472)
dropped
Chrome Cache Entry: 200
ASCII text, with very long lines (18219), with no line terminators
downloaded
Chrome Cache Entry: 201
ASCII text, with very long lines (32014)
downloaded
Chrome Cache Entry: 202
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 203
JSON data
dropped
There are 90 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2080 --field-trial-handle=2008,i,1171027989716658682,15134420914852804320,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://windoesmylifebetter.pages.dev/"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5628 --field-trial-handle=2008,i,1171027989716658682,15134420914852804320,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8

URLs

Name
IP
Malicious
https://windoesmylifebetter.pages.dev/
malicious
https://windoesmylifebetter.pages.dev/
malicious
https://windoesmylifebetter.pages.dev/Hx12ltjV.js
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/xrtyQHXq.css
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/nQmUMRFX.css
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/DZTbLR6E.png
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/tR7rVUoo.png
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/C2kHshoQ.mp3
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/8lCuzo7o.js
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/f3oof6R7.png
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/virus-images.png
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/BMmu5lH1.js
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/iOxCQ6mZ.css
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/EBiJbF8b.png
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/c3xwoEtl.png
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/4ardC69D.js
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/KxZw5CCu.png
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/d7eiLLE4.png
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/FLmKLHAK.png
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/favicon.ico
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/3Jwzo9Ls.jpg
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/4s97PQyN.png
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/2L5BwoLL.js
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/8kRMAoSZ.js
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/#
malicious
https://windoesmylifebetter.pages.dev/oHXuIB1u.js
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/oejDcsjx.mp3
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/sLVo10NS.css
172.66.47.18
 malicious
https://windoesmylifebetter.pages.dev/yQKzOtTz.png
172.66.47.18
 malicious
http://fontawesome.io
unknown
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-promise-polyfill.js
unknown
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-chunk-bf24a88e.js
104.22.44.142
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-iterator-polyfill.js
unknown
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-chunk-7c2f6ba4.js
104.22.44.142
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-chunk-f1565420.js
104.22.44.142
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-app.js
104.22.44.142
https://vsa81.tawk.to/s/?k=670d0c73a3c8d40bf957caa9&cver=0&pop=false&asver=0&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NjExNDE2MDFlYzEwODJmMDRkZjdkYzUiLCJ2aWQiOiI2NjExNDE2MDFlYzEwODJmMDRkZjdkYzUtbFNtdlVUbTBURldBTHBjd2JBd0prIiwic2lkIjoiNjcwZDBjNzNhM2M4ZDQwYmY5NTdjYWE5IiwiaWF0IjoxNzI4OTA4NDAzLCJleHAiOjE3Mjg5MTAyMDMsImp0aSI6InpfOHgxeFRndk5PYmdxWll0T1FzcCJ9.mhd6Wf9Ah2aLRhtw6Q8KaqBpIzEkLOVVaUrhDxS9YenfFMHpQsUvF5Pq_yQLgApobd64Iah8vQnVM3fA9LlDqw&EIO=3&transport=websocket&__t=PAA-B87
104.22.44.142
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-chunk-vendors.js
104.22.44.142
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-chunk-common.js
104.22.44.142
https://github.com/twbs/bootstrap/graphs/contributors)
unknown
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-chunk-48f3b594.js
104.22.44.142
https://va.tawk.to/v1/session/start
104.22.45.142
https://embed.tawk.to/_s/v4/app/67075b0d15f/
unknown
https://maxcdn.bootstrapcdn.com/font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0
104.18.10.207
https://vsa97.tawk.to/s/?k=670d0c73a3c8d40bf957caa9&cver=0&pop=false&asver=0&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NjExNDE2MDFlYzEwODJmMDRkZjdkYzUiLCJ2aWQiOiI2NjExNDE2MDFlYzEwODJmMDRkZjdkYzUtbFNtdlVUbTBURldBTHBjd2JBd0prIiwic2lkIjoiNjcwZDBjNzNhM2M4ZDQwYmY5NTdjYWE5IiwiaWF0IjoxNzI4OTA4NDAzLCJleHAiOjE3Mjg5MTAyMDMsImp0aSI6InpfOHgxeFRndk5PYmdxWll0T1FzcCJ9.mhd6Wf9Ah2aLRhtw6Q8KaqBpIzEkLOVVaUrhDxS9YenfFMHpQsUvF5Pq_yQLgApobd64Iah8vQnVM3fA9LlDqw&EIO=3&transport=websocket&__t=PAA-ACK
104.22.44.142
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-chunk-2d0b9454.js
104.22.44.142
https://www.tawk.to/?utm_source=tawk-messenger&utm_medium=link&utm_campaign=referral&utm_term=661141
unknown
https://embed.tawk.to/_s/v4/app/67075b0d15f/languages/en.js
104.22.44.142
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-object-values-polyfill.js
unknown
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-runtime.js
104.22.44.142
https://vsa112.tawk.to/s/?k=670d0c73a3c8d40bf957caa9&cver=0&pop=false&asver=0&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NjExNDE2MDFlYzEwODJmMDRkZjdkYzUiLCJ2aWQiOiI2NjExNDE2MDFlYzEwODJmMDRkZjdkYzUtbFNtdlVUbTBURldBTHBjd2JBd0prIiwic2lkIjoiNjcwZDBjNzNhM2M4ZDQwYmY5NTdjYWE5IiwiaWF0IjoxNzI4OTA4NDAzLCJleHAiOjE3Mjg5MTAyMDMsImp0aSI6InpfOHgxeFRndk5PYmdxWll0T1FzcCJ9.mhd6Wf9Ah2aLRhtw6Q8KaqBpIzEkLOVVaUrhDxS9YenfFMHpQsUvF5Pq_yQLgApobd64Iah8vQnVM3fA9LlDqw&EIO=3&transport=websocket&__t=PAA-9qg
104.22.45.142
https://github.com/twbs/bootstrap/blob/main/LICENSE)
unknown
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-chunk-71978bb6.js
104.22.44.142
https://embed.tawk.to/_s/v4/app/67075b0d15f/css/bubble-widget.css
104.22.44.142
https://vsa82.tawk.to/s/?k=670d0c73a3c8d40bf957caa9&cver=0&pop=false&asver=0&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NjExNDE2MDFlYzEwODJmMDRkZjdkYzUiLCJ2aWQiOiI2NjExNDE2MDFlYzEwODJmMDRkZjdkYzUtbFNtdlVUbTBURldBTHBjd2JBd0prIiwic2lkIjoiNjcwZDBjNzNhM2M4ZDQwYmY5NTdjYWE5IiwiaWF0IjoxNzI4OTA4NDAzLCJleHAiOjE3Mjg5MTAyMDMsImp0aSI6InpfOHgxeFRndk5PYmdxWll0T1FzcCJ9.mhd6Wf9Ah2aLRhtw6Q8KaqBpIzEkLOVVaUrhDxS9YenfFMHpQsUvF5Pq_yQLgApobd64Iah8vQnVM3fA9LlDqw&EIO=3&transport=websocket&__t=PAA-AdF
104.22.45.142
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-event-polyfill.js
unknown
https://getbootstrap.com/)
unknown
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-arr-find-polyfill.js
unknown
http://fontawesome.io/license
unknown
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-vendor.js
104.22.44.142
https://embed.tawk.to/_s/v4/app/67075b0d15f/css/message-preview.css
104.22.44.142
https://embed.tawk.to/_s/v4/assets/audio/chat_sound.mp3
104.22.44.142
https://cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
151.101.193.229
https://va.tawk.to/v1/widget-settings?propertyId=661141601ec1082f04df7dc5&widgetId=1hqpmeohl&sv=null
104.22.45.142
https://embed.tawk.to/_s/v4/app/67075b0d15f/css/min-widget.css
104.22.44.142
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-chunk-4fe9d5dd.js
104.22.44.142
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-entries-polyfill.js
unknown
https://vsa88.tawk.to/s/?k=670d0c73a3c8d40bf957caa9&cver=0&pop=false&asver=0&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NjExNDE2MDFlYzEwODJmMDRkZjdkYzUiLCJ2aWQiOiI2NjExNDE2MDFlYzEwODJmMDRkZjdkYzUtbFNtdlVUbTBURldBTHBjd2JBd0prIiwic2lkIjoiNjcwZDBjNzNhM2M4ZDQwYmY5NTdjYWE5IiwiaWF0IjoxNzI4OTA4NDAzLCJleHAiOjE3Mjg5MTAyMDMsImp0aSI6InpfOHgxeFRndk5PYmdxWll0T1FzcCJ9.mhd6Wf9Ah2aLRhtw6Q8KaqBpIzEkLOVVaUrhDxS9YenfFMHpQsUvF5Pq_yQLgApobd64Iah8vQnVM3fA9LlDqw&EIO=3&transport=websocket&__t=PAA-BXs
172.67.15.14
https://a.nel.cloudflare.com/report/v4?s=UcOH2XQFWKsFs1S9sZrGHcZp7N0H7WjxtGk0lh1ZwaFHpAC0AyaKP956cPxe1Ibg7u7ilgb9fxDBuMe%2FdMj7iNK41dBLMmmluKViKmscEwZDOUUWX0G%2BoigeehLjdQ1JeSi43VOSH3QYYNH2svOBmQ%3D%3D
35.190.80.1
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-main.js
104.22.44.142
https://embed.tawk.to/661141601ec1082f04df7dc5/1hqpmeohl
104.22.44.142
https://embed.tawk.to/_s/v4/app/67075b0d15f/css/max-widget.css
104.22.44.142
https://embed.tawk.to/_s/v4/app/67075b0d15f/js/twk-chunk-24d8db78.js
104.22.44.142
There are 62 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
jsdelivr.map.fastly.net
151.101.193.229
windoesmylifebetter.pages.dev
172.66.47.18
a.nel.cloudflare.com
35.190.80.1
vsa81.tawk.to
104.22.44.142
maxcdn.bootstrapcdn.com
104.18.10.207
vsa97.tawk.to
104.22.44.142
vsa82.tawk.to
104.22.45.142
fp2e7a.wpc.phicdn.net
192.229.221.95
vsa112.tawk.to
104.22.45.142
vsa88.tawk.to
172.67.15.14
embed.tawk.to
104.22.44.142
va.tawk.to
104.22.45.142
bg.microsoft.map.fastly.net
199.232.214.172
www.google.com
142.250.186.68
cdn.jsdelivr.net
unknown
There are 5 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
142.250.186.68
www.google.com
United States
104.18.10.207
maxcdn.bootstrapcdn.com
United States
172.67.15.14
vsa88.tawk.to
United States
151.101.193.229
jsdelivr.map.fastly.net
United States
172.66.47.18
windoesmylifebetter.pages.dev
United States
104.22.45.142
vsa82.tawk.to
United States
192.168.2.3
unknown
unknown
192.168.2.11
unknown
unknown
239.255.255.250
unknown
Reserved
192.168.2.12
unknown
unknown
104.22.44.142
vsa81.tawk.to
United States
35.190.80.1
a.nel.cloudflare.com
United States
There are 2 hidden IPs, click here to show them.

DOM / HTML

URL
Malicious
https://windoesmylifebetter.pages.dev/
https://windoesmylifebetter.pages.dev/
https://windoesmylifebetter.pages.dev/
https://windoesmylifebetter.pages.dev/
https://windoesmylifebetter.pages.dev/
https://windoesmylifebetter.pages.dev/
https://windoesmylifebetter.pages.dev/
https://windoesmylifebetter.pages.dev/
https://windoesmylifebetter.pages.dev/
https://windoesmylifebetter.pages.dev/#
https://windoesmylifebetter.pages.dev/#
https://windoesmylifebetter.pages.dev/#
https://windoesmylifebetter.pages.dev/#
https://windoesmylifebetter.pages.dev/#
https://windoesmylifebetter.pages.dev/#
There are 5 hidden doms, click here to show them.