Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
Lauren}5600_rtFfBwacNAHr6ZdSq.pdf
|
PDF document, version 1.3, 1 pages
|
initial sample
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\24fa2daf-9050-447f-9bc6-6b80b4f5fb62.tmp
|
JSON data
|
modified
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\Network Persistent State (copy)
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\Network Persistent State~RF504f15.TMP (copy)
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\f4545576-d3a6-420c-91af-72fc2c048176.tmp
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ConnectorIcons\icon-241014122002Z-226.bmp
|
PC bitmap, Windows 3.x format, 86 x -152 x 32, cbSize 52342, bits offset 54
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\2D85F72862B55C4EADD9E66E06947F3D
|
Certificate, Version=3
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506
|
Microsoft Cabinet archive data, Windows 2000/XP setup, 71954 bytes, 1 file, at 0x2c +A "authroot.stl", number 1, 6 datablocks,
0x1 compression
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\2D85F72862B55C4EADD9E66E06947F3D
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
|
data
|
modified
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\AdobeFnt23.lst.7564
|
PostScript document text
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\AdobeSysFnt23.lst (copy)
|
PostScript document text
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\IconCacheAcro65536.dat
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\ACROBAT_READER_MASTER_SURFACEID
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_FirstMile_Home_View_Surface
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_FirstMile_Right_Sec_Surface
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_READER_LAUNCH_CARD
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Convert_LHP_Banner
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Disc_LHP_Banner
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Disc_LHP_Retention
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Edit_LHP_Banner
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Home_LHP_Trial_Banner
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_More_LHP_Banner
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Banner
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Intent_Banner
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Retention
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Sign_LHP_Banner
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Upsell_Cards
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\Edit_InApp_Aug2020
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\TESTING
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\SOPHIA.json
|
JSON data
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SharedDataEvents
|
SQLite 3.x database, last written using SQLite version 3040000, file counter 19, database pages 3, cookie 0x2, schema 4, UTF-8,
version-valid-for 19
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SharedDataEvents-journal
|
SQLite Rollback Journal
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\MSIfa7c8.LOG
|
Unicode text, UTF-16, little-endian text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\NGLClient_AcrobatReader123.6.20320.6 2024-10-14 08-19-58-462.log
|
ASCII text, with very long lines (393)
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\NGLClient_AcrobatReader123.6.20320.6.log
|
ASCII text, with very long lines (393), with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\acrobat_sbx\acroNGLLog.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\acrocef_low\07306642-0f0a-4879-90f3-5087c20413bb.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 1311022
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\acrocef_low\6591a0f2-2b97-41b2-bb72-f6c9be49eaef.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 5111142
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\acrocef_low\71c21588-4285-4b3f-b627-711ea2c7b34f.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 299538
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\acrocef_low\8e56947e-ac0e-46c8-a321-65b8124ff86f.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 42290
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\acrocef_low\aa4567bc-0f5f-477b-97bc-222400079263.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 299538
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\acrocef_low\b0a3f7fe-ae13-451b-835b-6827695d6ecd.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 1311022
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\acrocef_low\cc18308f-e215-4e71-8042-4f01192b9da8.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 1311022
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\acrocef_low\de019d23-51aa-4df1-9d4f-ca3482391d07.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 299538
|
dropped
|
||
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 14 11:20:54 2024, atime=Wed Sep 27 08:36:55
2023, length=1210144, window=hide
|
dropped
|
||
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 14 11:20:54 2024, atime=Wed Sep 27 08:36:55
2023, length=1210144, window=hide
|
dropped
|
||
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 5 13:13:28 2023, atime=Wed Sep 27 08:36:55
2023, length=1210144, window=hide
|
dropped
|
||
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 14 11:20:54 2024, atime=Wed Sep 27 08:36:55
2023, length=1210144, window=hide
|
dropped
|
||
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 14 11:20:54 2024, atime=Wed Sep 27 08:36:55
2023, length=1210144, window=hide
|
dropped
|
||
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 14 11:20:53 2024, atime=Wed Sep 27 08:36:55
2023, length=1210144, window=hide
|
dropped
|
||
Chrome Cache Entry: 232
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 233
|
PNG image data, 400 x 336, 8-bit colormap, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 234
|
ASCII text, with very long lines (1572)
|
downloaded
|
||
Chrome Cache Entry: 235
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 236
|
PNG image data, 400 x 336, 8-bit colormap, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 237
|
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 238
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 239
|
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
|
downloaded
|
||
Chrome Cache Entry: 240
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 241
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 242
|
PNG image data, 400 x 336, 8-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 243
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 244
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 245
|
PNG image data, 400 x 336, 8-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 246
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 247
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 248
|
PNG image data, 400 x 336, 8-bit colormap, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 249
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 250
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 251
|
PNG image data, 250 x 250, 8-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 252
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 253
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 254
|
Unicode text, UTF-8 text, with very long lines (31966)
|
downloaded
|
||
Chrome Cache Entry: 255
|
PNG image data, 400 x 336, 8-bit colormap, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 256
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 257
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 258
|
PNG image data, 400 x 336, 8-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 259
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 260
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 261
|
PNG image data, 400 x 336, 8-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 262
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 263
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 264
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 265
|
ASCII text, with very long lines (335), with CRLF line terminators
|
downloaded
|
||
Chrome Cache Entry: 266
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 267
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 268
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 269
|
Unicode text, UTF-8 text, with very long lines (31966)
|
dropped
|
||
Chrome Cache Entry: 270
|
PNG image data, 400 x 336, 8-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 271
|
PNG image data, 92 x 92, 2-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 272
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 273
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 274
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 275
|
Web Open Font Format (Version 2), TrueType, length 125064, version 768.67
|
downloaded
|
||
Chrome Cache Entry: 276
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 277
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 278
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 279
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 280
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 281
|
PNG image data, 92 x 92, 2-bit colormap, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 282
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 283
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 284
|
PNG image data, 400 x 336, 8-bit colormap, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 285
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 286
|
PNG image data, 400 x 336, 8-bit colormap, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 287
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 288
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 289
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 290
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 291
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 292
|
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 293
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 294
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 295
|
PNG image data, 400 x 336, 8-bit colormap, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 296
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 297
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 298
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 299
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 300
|
PNG image data, 400 x 336, 8-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 301
|
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 302
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 303
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 304
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 305
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 306
|
PNG image data, 400 x 336, 8-bit colormap, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 307
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 308
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 309
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 310
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 311
|
PNG image data, 250 x 250, 8-bit colormap, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 312
|
PNG image data, 400 x 336, 8-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 313
|
ASCII text, with very long lines (65311)
|
downloaded
|
||
Chrome Cache Entry: 314
|
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 315
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 316
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 317
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 318
|
ASCII text
|
downloaded
|
||
Chrome Cache Entry: 319
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 320
|
PNG image data, 400 x 336, 8-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 321
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 322
|
ASCII text, with no line terminators
|
downloaded
|
There are 139 hidden files, click here to show them.
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe
|
"C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe" "C:\Users\user\Desktop\Lauren}5600_rtFfBwacNAHr6ZdSq.pdf"
|
||
C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe
|
"C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --backgroundcolor=16777215
|
||
C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe
|
"C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --type=utility --utility-sub-type=network.mojom.NetworkService
--lang=en-US --service-sandbox-type=none --log-severity=disable --user-agent-product="ReaderServices/23.6.20320 Chrome/105.0.0.0"
--lang=en-US --log-file="C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\debug.log" --mojo-platform-channel-handle=2112
--field-trial-handle=1516,i,16955066436289551488,18444705325558483682,131072 --disable-features=BackForwardCache,CalculateNativeWinOcclusion,WinUseBrowserSpellChecker
/prefetch:8
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "https://tinyurl.com/2rtry5hu"
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=1888 --field-trial-handle=2004,i,6468376264802393542,4922338636770204973,262144
/prefetch:8
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
https://tinyurl.com/2rtry5hu
|
104.17.112.233
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/GeoService.c058384846c8d75b479a.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/UserActivity.52efd815fb4b32c05ba3.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/vendors~F1ngerprint~initCropper.74656fef7f00d639e05f.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/track.php
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/bundle/787/assets/images/3.png
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/Banners.ec8ff61bbef5d415bda4.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/vendors~PerfectScrollbar.b58c5a8f009f8d9b3033.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/bundle/787/assets/images/favicon.png
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/EasyDropDown.0681082be371a464f2cb.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/vendors~EasyDropDown~SelectDropDown.b5fa5dd51b29ad6edb60.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/vendors~F1ngerprint.c58d801a553834701f86.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/bundle/787/assets/images/1.png
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/bundle/787/assets/images/4.png
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/initForm.c9eb9d75a937857f8a82.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/HelpForm.d1195f87828975771c32.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/bundle/787/assets/css/style.css
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/vendors~FlipCountdown~StatelessFlipCountdown.41d3aab644bb2fd31edb.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/vendors~ProgressBar.a474b54b9910fceb0502.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/Recaptcha.8793a82a746a7949cba4.js
|
142.132.150.101
|
||
https://fontawesome.com/license/free
|
unknown
|
||
https://fontawesome.com
|
unknown
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/LandingMessages.d88ba601a4cb717c6a07.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/initSmiley.537e6492f7e4b57f248e.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/Chat2Date.64f2ea12b6d1d23534fd.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/LikeGallery.1bb496d8078ece1ec322.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/bundle/787/assets/images/top.svg
|
142.132.150.101
|
||
http://www.pdf-tools.com))
|
unknown
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/UserActivityHandler.fbc39dbe5938e49bf50b.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/bundle/787/assets/images/star.svg
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/F1ngerprint.7e17152cf2742308fdc5.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/Validation.315c71f7bac5c5ee22d6.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/DetectDeviceOrientation.0999de92b49428f50ecd.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/bundle/787/assets/images/2.png
|
142.132.150.101
|
||
https://tinyurl.com/2rtry5hu)
|
unknown
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/SelectDropDown.6f58df5c07402a2497d7.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/StatelessFlipCountdown.e7f16295fad7b4bbe8eb.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/bundle/787/assets/images/times.svg
|
142.132.150.101
|
||
http://x1.i.lencr.org/
|
unknown
|
||
https://cegcaib.meetonline24.link/bundle/787/assets/images/7.png
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/bundle/787/assets/images/8.png
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/UserPicture.813f57235ee2780586d5.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/ClearFormFields.9e82ba204846876dc736.js
|
142.132.150.101
|
||
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta3/webfonts/fa-solid-900.woff2
|
104.17.25.14
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/DynamicPlaceholder.602fd7f8d1c6b9129c69.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/FlipCountdown.de1f268887e7c6d9dea7.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/bundle/787/assets/images/logo.png
|
142.132.150.101
|
||
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta3/css/all.min.css
|
104.17.25.14
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/initGallery.aa692c9c2d81289abba9.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/bundle/787/assets/images/intro.png
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/bundle/787/assets/js/functions.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/ProgressBar.c6f786021ba0fa763e3f.js
|
142.132.150.101
|
||
https://lunik.help/?id=4DV46V
|
172.67.146.235
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/FocusElement.2810c0527651341cff73.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/bundle/787/assets/images/map.png
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/PreloadModule.d7f5553b1b1f44c3c311.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/initCropper.a1f76c0b1b4b06e65d46.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/bundle/787/assets/images/heart.svg
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/bundle/787/assets/images/5.png
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/s/48767346ea3e9?id=4DV46V
|
|||
https://cegcaib.meetonline24.link/build/js_es/prefetch/vendors~Form~FormSteps~Recaptcha.2a1411838bf68090359e.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/vendors~Form~FormSteps~Validation.b29982043c60c3ef7bfa.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/payment.f4e914dae3ea86b15070.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/vendors~initCropper.adc5c3718b663fcd2766.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/ShutDownScroll.ce260f5aab2013c23168.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/ValidationRenderer.9929cdfac8c823ed91cc.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/initSlider.0a0bfda997b723adfde9.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/bundle/787/assets/images/6.png
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/RandomGenerationPicsType1.76cf84817aaeaf122053.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/request.b18f1da53c8e7eb3625d.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/RandomGenerationPicsType2.884256b00039d36b670c.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/initMask.9ab1f5d1bc7429aeeeb2.js
|
142.132.150.101
|
||
https://cegcaib.meetonline24.link/build/js_es/prefetch/autocompleteEmail.70a4c9a5cf82e3d5ce0f.js
|
142.132.150.101
|
There are 63 hidden URLs, click here to show them.
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
tinyurl.com
|
104.17.112.233
|
||
bg.microsoft.map.fastly.net
|
199.232.214.172
|
||
cdnjs.cloudflare.com
|
104.17.25.14
|
||
lunik.help
|
172.67.146.235
|
||
www.google.com
|
142.250.185.164
|
||
idfdcgifh.trfeecdn01.com
|
142.132.150.101
|
||
cegcaib.meetonline24.link
|
unknown
|
||
x1.i.lencr.org
|
unknown
|
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
104.17.112.233
|
tinyurl.com
|
United States
|
||
52.202.204.11
|
unknown
|
United States
|
||
172.67.146.235
|
lunik.help
|
United States
|
||
192.168.2.16
|
unknown
|
unknown
|
||
192.168.2.3
|
unknown
|
unknown
|
||
239.255.255.250
|
unknown
|
Reserved
|
||
142.132.150.101
|
idfdcgifh.trfeecdn01.com
|
Canada
|
||
23.217.172.185
|
unknown
|
United States
|
||
142.250.185.164
|
www.google.com
|
United States
|
||
104.17.25.14
|
cdnjs.cloudflare.com
|
United States
|
Registry
Path
|
Value
|
Malicious
|
|
---|---|---|---|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
aFS
|
||
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
tDIText
|
||
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
tFileName
|
||
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
tFileSource
|
||
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sFileAncestors
|
||
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sDI
|
||
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sDate
|
||
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
uFileSize
|
||
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
uPageCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sAssetId
|
||
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
bisSharedFile
|
||
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
aFS
|
||
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
tDIText
|
||
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
tFileName
|
||
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
sDI
|
||
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
sDate
|
||
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
uFileSize
|
||
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
uPageCount
|
There are 8 hidden registries, click here to show them.
DOM / HTML
URL
|
Malicious
|
|
---|---|---|
https://cegcaib.meetonline24.link/s/48767346ea3e9?id=4DV46V
|