Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Support-1923819912s-96065[5].pdf
|
PDF document, version 1.4, 1 pages
|
initial sample
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\Network Persistent State (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\f3df3b5d-1a48-4589-a3b9-1e1162bad505.tmp
|
JSON data
|
modified
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ConnectorIcons\icon-241024102356Z-164.bmp
|
PC bitmap, Windows 3.x format, 117 x -152 x 32, cbSize 71190, bits offset 54
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages
|
SQLite 3.x database, last written using SQLite version 3040000, file counter 15, database pages 21, cookie 0x5, schema 4,
UTF-8, version-valid-for 15
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages-journal
|
SQLite Rollback Journal
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\2D85F72862B55C4EADD9E66E06947F3D
|
Certificate, Version=3
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506
|
Microsoft Cabinet archive data, Windows 2000/XP setup, 71954 bytes, 1 file, at 0x2c +A "authroot.stl", number 1, 6 datablocks,
0x1 compression
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\2D85F72862B55C4EADD9E66E06947F3D
|
data
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
|
data
|
modified
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\IconCacheAcro65536.dat
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\ACROBAT_READER_MASTER_SURFACEID
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_FirstMile_Home_View_Surface
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_FirstMile_Right_Sec_Surface
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_READER_LAUNCH_CARD
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Convert_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Disc_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Disc_LHP_Retention
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Edit_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Home_LHP_Trial_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_More_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Intent_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Retention
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Sign_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Upsell_Cards
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\Edit_InApp_Aug2020
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\TESTING
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\SOPHIA.json
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SharedDataEvents
|
SQLite 3.x database, last written using SQLite version 3040000, file counter 25, database pages 3, cookie 0x2, schema 4, UTF-8,
version-valid-for 25
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SharedDataEvents-journal
|
SQLite Rollback Journal
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\MSIdc5c8.LOG
|
Unicode text, UTF-16, little-endian text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrobat_sbx\A9k4u2ni_o37r0m_5ok.tmp
|
PDF document, version 1.6, 0 pages
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\NGLClient_AcrobatReader123.6.20320.6 2024-10-24 06-23-54-533.log
|
ASCII text, with very long lines (393)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\NGLClient_AcrobatReader123.6.20320.6.log
|
ASCII text, with very long lines (393), with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrobat_sbx\acroNGLLog.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrocef_low\3c3ffc29-1b7f-4e84-a235-bf8f8cd10636.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 299538
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrocef_low\6acef738-c820-46f0-aeeb-43ca70f24bd8.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 5111142
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrocef_low\9f4dde17-047d-45f4-ade9-f37fea2a0079.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 33081
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrocef_low\eb001b87-a149-41ce-b698-08d4fda05c49.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 1311022
|
dropped
|
||
|
Chrome Cache Entry: 278
|
ASCII text, with very long lines (1490)
|
downloaded
|
||
|
Chrome Cache Entry: 279
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 280
|
ASCII text, with very long lines (544)
|
downloaded
|
||
|
Chrome Cache Entry: 281
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 282
|
Unicode text, UTF-8 text, with very long lines (51384), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 283
|
HTML document, ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 284
|
ASCII text, with very long lines (1762), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 285
|
ASCII text, with very long lines (6993)
|
dropped
|
||
|
Chrome Cache Entry: 286
|
ASCII text, with very long lines (4150)
|
dropped
|
||
|
Chrome Cache Entry: 287
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 288
|
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 289
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 290
|
ASCII text, with very long lines (6993)
|
downloaded
|
||
|
Chrome Cache Entry: 291
|
ASCII text, with very long lines (715)
|
downloaded
|
||
|
Chrome Cache Entry: 292
|
ASCII text, with very long lines (9799)
|
downloaded
|
||
|
Chrome Cache Entry: 293
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 294
|
ASCII text, with very long lines (65536), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 295
|
ASCII text, with very long lines (1070), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 296
|
PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 297
|
ASCII text, with very long lines (715)
|
downloaded
|
||
|
Chrome Cache Entry: 298
|
ASCII text, with very long lines (4823), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 299
|
gzip compressed data, truncated
|
dropped
|
||
|
Chrome Cache Entry: 300
|
ASCII text, with very long lines (31988)
|
dropped
|
||
|
Chrome Cache Entry: 301
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 302
|
ASCII text, with very long lines (521)
|
dropped
|
||
|
Chrome Cache Entry: 303
|
ASCII text, with very long lines (723)
|
downloaded
|
||
|
Chrome Cache Entry: 304
|
ASCII text, with very long lines (45036)
|
dropped
|
||
|
Chrome Cache Entry: 305
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 306
|
ASCII text, with very long lines (464), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 307
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 308
|
OpenType font data
|
downloaded
|
||
|
Chrome Cache Entry: 309
|
ASCII text, with very long lines (606)
|
downloaded
|
||
|
Chrome Cache Entry: 310
|
ASCII text, with very long lines (9198)
|
downloaded
|
||
|
Chrome Cache Entry: 311
|
ASCII text, with very long lines (3835)
|
downloaded
|
||
|
Chrome Cache Entry: 312
|
ASCII text, with very long lines (4814), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 313
|
ASCII text, with very long lines (45036)
|
downloaded
|
||
|
Chrome Cache Entry: 314
|
Web Open Font Format (Version 2), CFF, length 74980, version 0.0
|
downloaded
|
||
|
Chrome Cache Entry: 315
|
ASCII text, with very long lines (1468), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 316
|
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 317
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 318
|
ASCII text, with very long lines (5552)
|
downloaded
|
||
|
Chrome Cache Entry: 319
|
ASCII text, with very long lines (64348)
|
downloaded
|
||
|
Chrome Cache Entry: 320
|
ASCII text, with very long lines (9217)
|
downloaded
|
||
|
Chrome Cache Entry: 321
|
ASCII text, with very long lines (1070), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 322
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 323
|
ASCII text, with very long lines (4150)
|
downloaded
|
||
|
Chrome Cache Entry: 324
|
ASCII text, with very long lines (4900)
|
downloaded
|
||
|
Chrome Cache Entry: 325
|
Unicode text, UTF-8 text, with very long lines (41169)
|
downloaded
|
||
|
Chrome Cache Entry: 326
|
ASCII text, with very long lines (930)
|
dropped
|
||
|
Chrome Cache Entry: 327
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 328
|
gzip compressed data, from Unix, original size modulo 2^32 43473
|
dropped
|
||
|
Chrome Cache Entry: 329
|
data
|
dropped
|
||
|
Chrome Cache Entry: 330
|
HTML document, ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 331
|
ASCII text, with very long lines (1490)
|
dropped
|
||
|
Chrome Cache Entry: 332
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 333
|
HTML document, Unicode text, UTF-8 text, with very long lines (4153), with CRLF, LF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 334
|
ASCII text, with very long lines (4900)
|
dropped
|
||
|
Chrome Cache Entry: 335
|
gzip compressed data, from Unix, original size modulo 2^32 43473
|
downloaded
|
||
|
Chrome Cache Entry: 336
|
ASCII text
|
dropped
|
||
|
Chrome Cache Entry: 337
|
Unicode text, UTF-8 text, with very long lines (65441), with CRLF line terminators
|
dropped
|
||
|
Chrome Cache Entry: 338
|
ASCII text, with very long lines (64348)
|
dropped
|
||
|
Chrome Cache Entry: 339
|
ASCII text, with very long lines (4823), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 340
|
ASCII text, with very long lines (5545), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 341
|
ASCII text, with very long lines (565)
|
dropped
|
||
|
Chrome Cache Entry: 342
|
PNG image data, 160 x 33, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 343
|
ASCII text, with very long lines (760)
|
dropped
|
||
|
Chrome Cache Entry: 344
|
ASCII text, with very long lines (2345)
|
dropped
|
||
|
Chrome Cache Entry: 345
|
ASCII text, with very long lines (521)
|
downloaded
|
||
|
Chrome Cache Entry: 346
|
PNG image data, 160 x 33, 8-bit/color RGB, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 347
|
ASCII text, with very long lines (32768)
|
dropped
|
||
|
Chrome Cache Entry: 348
|
ASCII text, with very long lines (23843), with escape sequences
|
dropped
|
||
|
Chrome Cache Entry: 350
|
ASCII text, with very long lines (32768)
|
downloaded
|
||
|
Chrome Cache Entry: 351
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
||
|
Chrome Cache Entry: 352
|
ASCII text, with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 353
|
ASCII text, with very long lines (715)
|
dropped
|
||
|
Chrome Cache Entry: 354
|
ASCII text, with very long lines (2026)
|
downloaded
|
||
|
Chrome Cache Entry: 355
|
ASCII text, with very long lines (565)
|
downloaded
|
||
|
Chrome Cache Entry: 356
|
ASCII text, with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 357
|
Unicode text, UTF-8 text, with very long lines (65441), with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 358
|
ASCII text, with very long lines (18277)
|
dropped
|
||
|
Chrome Cache Entry: 359
|
PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 360
|
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 361
|
ASCII text, with very long lines (16315), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 362
|
ASCII text, with very long lines (23843), with escape sequences
|
downloaded
|
||
|
Chrome Cache Entry: 363
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 364
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
||
|
Chrome Cache Entry: 365
|
ASCII text, with very long lines (813), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 366
|
ASCII text, with very long lines (5545), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 367
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 368
|
HTML document, ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 369
|
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 370
|
ASCII text, with very long lines (65536), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 371
|
ASCII text, with very long lines (2026)
|
dropped
|
||
|
Chrome Cache Entry: 372
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 373
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
Chrome Cache Entry: 374
|
Unicode text, UTF-8 text, with very long lines (3193), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 375
|
ASCII text, with very long lines (606)
|
dropped
|
||
|
Chrome Cache Entry: 376
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 377
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
|
Chrome Cache Entry: 378
|
ASCII text, with very long lines (9198)
|
dropped
|
||
|
Chrome Cache Entry: 379
|
ASCII text, with very long lines (464), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 380
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
|
Chrome Cache Entry: 381
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
||
|
Chrome Cache Entry: 382
|
ASCII text, with very long lines (538)
|
downloaded
|
||
|
Chrome Cache Entry: 383
|
ASCII text, with very long lines (813), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 384
|
ASCII text, with very long lines (1762), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 385
|
Unicode text, UTF-8 text, with very long lines (51384), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 386
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 387
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 388
|
PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 389
|
Web Open Font Format (Version 2), CFF, length 73692, version 0.0
|
downloaded
|
||
|
Chrome Cache Entry: 390
|
Unicode text, UTF-8 text, with very long lines (41169)
|
dropped
|
||
|
Chrome Cache Entry: 391
|
Web Open Font Format (Version 2), CFF, length 75036, version 0.0
|
downloaded
|
||
|
Chrome Cache Entry: 392
|
gzip compressed data, from Unix, original size modulo 2^32 487101
|
downloaded
|
||
|
Chrome Cache Entry: 393
|
ASCII text, with very long lines (9799)
|
dropped
|
||
|
Chrome Cache Entry: 394
|
ASCII text, with very long lines (538)
|
dropped
|
||
|
Chrome Cache Entry: 395
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 396
|
ASCII text, with very long lines (760)
|
downloaded
|
||
|
Chrome Cache Entry: 397
|
ASCII text, with very long lines (5552)
|
dropped
|
||
|
Chrome Cache Entry: 398
|
ASCII text, with very long lines (65536), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 399
|
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 400
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 401
|
gzip compressed data, truncated
|
downloaded
|
||
|
Chrome Cache Entry: 402
|
gzip compressed data, from Unix, original size modulo 2^32 487101
|
dropped
|
||
|
Chrome Cache Entry: 403
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 404
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
|
Chrome Cache Entry: 405
|
ASCII text, with very long lines (1468), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 406
|
ASCII text, with very long lines (16315), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 407
|
ASCII text, with very long lines (18277)
|
downloaded
|
||
|
Chrome Cache Entry: 408
|
ASCII text, with very long lines (544)
|
dropped
|
||
|
Chrome Cache Entry: 409
|
HTML document, ASCII text, with very long lines (815)
|
downloaded
|
||
|
Chrome Cache Entry: 410
|
ASCII text, with very long lines (31988)
|
downloaded
|
||
|
Chrome Cache Entry: 411
|
ASCII text, with very long lines (9217)
|
dropped
|
||
|
Chrome Cache Entry: 412
|
ASCII text, with very long lines (2345)
|
downloaded
|
||
|
Chrome Cache Entry: 413
|
ASCII text, with very long lines (930)
|
downloaded
|
||
|
Chrome Cache Entry: 414
|
ASCII text, with very long lines (4814), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 415
|
PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 416
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 417
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 418
|
HTML document, ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 419
|
Web Open Font Format (Version 2), CFF, length 73792, version 0.0
|
downloaded
|
||
|
Chrome Cache Entry: 420
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 421
|
Unicode text, UTF-8 text, with very long lines (3193), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 422
|
ASCII text, with very long lines (65536), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 423
|
ASCII text, with very long lines (3835)
|
dropped
|
There are 182 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe
|
"C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe" "C:\Users\user\Desktop\Support-1923819912s-96065[5].pdf"
|
||
|
C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe
|
"C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --backgroundcolor=16777215
|
||
|
C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe
|
"C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --type=utility --utility-sub-type=network.mojom.NetworkService
--lang=en-US --service-sandbox-type=none --log-severity=disable --user-agent-product="ReaderServices/23.6.20320 Chrome/105.0.0.0"
--lang=en-US --user-data-dir="C:\Users\user\AppData\Local\CEF\User Data" --log-file="C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\debug.log"
--mojo-platform-channel-handle=2088 --field-trial-handle=1736,i,10659809878959849294,12083132867913259380,131072 --disable-features=BackForwardCache,CalculateNativeWinOcclusion,WinUseBrowserSpellChecker
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "https://u20993664.ct.sendgrid.net/ls/click?upn=ziWDNBWgCXu3tA1GxDf-2FVp3kDGhdOUq88QzvQGTQfwWtNZsZZT-2FAzSLMjZu-2BLdz16lJg_YA-2BfFI7pDo5C6JlNN4MFxLD5nmhHTaqA6C5srPEM38exMP9P-2FSpJwS8A4N6MnZkvdNTNxoxvnt2bMqafJUWl-2Bgu5rprYWx4NvbNjFlBUFJjHwP-2BKkt0PObLlZtYYuGYYoD-2FRbtPPYG8jK2Pppi80mjED-2FtgGtNk4qrMao63toUVirUUvByaEl0rlkizSPqOclqUDj-2BHDCAt3LQ0pjjk07PQ5uCB-2Bylwjem1FUJwKtjo-3D&data=05|01||c4469e72c9994b7ed72208dbae4f8bd9|84df9e7fe9f640afb435aaaaaaaaaaaa|1|0|638295428902507228|Unknown|TWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=|3000|||&sdata=TeMBS0iylDwG2FQCeerb1LgN2+u9YsHpkcycjmlbqUs=&reserved=0"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2080 --field-trial-handle=1972,i,9298561943219968220,14442045028134750378,262144
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US
--service-sandbox-type=audio --mojo-platform-channel-handle=3964 --field-trial-handle=1972,i,9298561943219968220,14442045028134750378,262144
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService
--lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5768 --field-trial-handle=1972,i,9298561943219968220,14442045028134750378,262144
/prefetch:8
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://stats.g.doubleclick.net/g/collect
|
unknown
|
||
|
https://developers.google.com/recaptcha/docs/faq#localhost_support
|
unknown
|
||
|
https://www.linkedin.com/company/sendgrid
|
unknown
|
||
|
https://consent.trustarc.com/log?domain=sendgrid.com&country=us&state=&behavior=implied&session=33bca8b6-aade-4871-8852-a1c1d657be08&userType=NEW&c=40a3&referer=https://sendgrid.com&language=en
|
13.225.78.35
|
||
|
https://www.youtube.com/embed/
|
unknown
|
||
|
https://www.redditstatic.com/ads/pixel.js
|
151.101.1.140
|
||
|
https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=lqsTZ5beIbCkK4uGEGv9JmUR
|
142.250.186.36
|
||
|
https://www.google.com/js/bg/9J_OlxnAizjMJN_fZ8JRYj0PV4Me2EAx1CVcnywh2Sk.js
|
142.250.186.36
|
||
|
https://github.com/sendgrid/sendgrid-java/
|
unknown
|
||
|
https://q.quora.com/_/ad/
|
unknown
|
||
|
https://sendgrid.com/
|
unknown
|
||
|
https://sendgrid.com/partners/amazon-web-services/
|
unknown
|
||
|
https://support.google.com/recaptcha/#6175971
|
unknown
|
||
|
https://sendgrid.com/etc.clientlibs/core/wcm/components/commons/datalayer/v1/clientlibs/core.wcm.components.commons.datalayer.v1.lc-70264651675213ed7f7cc5a02a00f621-lc.min.js
|
52.211.30.93
|
||
|
https://consent.trustarc.com/get?name=SurveyorSSm-LightItalic-Pro.otf)
|
unknown
|
||
|
https://github.com/microsoft/clarity
|
unknown
|
||
|
https://support.google.com/recaptcha
|
unknown
|
||
|
https://sendgrid.com/invalidlink
|
|||
|
https://customers.twilio.com/en-us/vacasa
|
unknown
|
||
|
https://sendgrid.com/etc.clientlibs/sendgrid/clientlibs/clientlib-site.lc-46e3a9535ca373360ea12ca6ed917de5-lc.min.css
|
52.211.30.93
|
||
|
https://sendgrid.com/content/dam/sendgrid/core-assets/social/sendgrid-default-ogimage.png
|
unknown
|
||
|
https://sendgrid.com/etc.clientlibs/clientlibs/granite/jquery.lc-f9e8e8c279baf6a1a278042afe4f395a-lc.min.js
|
52.211.30.93
|
||
|
https://alb.reddit.com/rp.gif?ts=1729765610953&id=t2_i1au5p4&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&m.conversionId=&uuid=027e29db-ae21-4bb9-ae4d-23c6096f50cd&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_49267bce&dpm=&dpcc=&dprc=
|
151.101.129.140
|
||
|
https://sendgrid.com/etc.clientlibs/twilio-foundation/clientlibs/clientlib-dynamic-modules/resources/509.70ccdf2430b6af0d2892.js
|
52.211.30.93
|
||
|
https://sendgrid.com/etc.clientlibs/sendgrid/clientlibs/clientlib-dynamic-modules/resources/996.51bcc74b7b295b05019f.js
|
52.211.30.93
|
||
|
https://sendgrid.com/etc.clientlibs/sendgrid/clientlibs/clientlib-dependencies.lc-d41d8cd98f00b204e9800998ecf8427e-lc.min.css
|
52.211.30.93
|
||
|
https://connect.facebook.net/signals/config/1040773425961662?v=2.9.173&r=stable&domain=sendgrid.com&hme=ead923021ccd3483ef3b9b04703d0a78b943fbdc01e8d7cec21c5059f1f4a5e9&ex_m=70%2C121%2C107%2C111%2C61%2C4%2C100%2C69%2C16%2C97%2C89%2C51%2C54%2C172%2C175%2C187%2C183%2C184%2C186%2C29%2C101%2C53%2C77%2C185%2C167%2C170%2C180%2C181%2C188%2C131%2C41%2C34%2C143%2C15%2C50%2C194%2C193%2C133%2C18%2C40%2C1%2C43%2C65%2C66%2C67%2C71%2C93%2C17%2C14%2C96%2C92%2C91%2C108%2C52%2C110%2C39%2C109%2C30%2C94%2C26%2C168%2C171%2C140%2C86%2C56%2C84%2C33%2C73%2C0%2C95%2C32%2C28%2C82%2C83%2C88%2C47%2C46%2C87%2C37%2C11%2C12%2C13%2C6%2C7%2C25%2C22%2C23%2C57%2C62%2C64%2C75%2C102%2C27%2C76%2C9%2C8%2C80%2C48%2C21%2C104%2C103%2C105%2C98%2C10%2C20%2C3%2C38%2C74%2C19%2C5%2C90%2C81%2C44%2C35%2C85%2C2%2C36%2C63%2C42%2C106%2C45%2C79%2C68%2C112%2C60%2C59%2C31%2C99%2C58%2C55%2C49%2C78%2C72%2C24%2C113%2C200%2C199%2C201%2C206%2C207%2C208%2C204%2C196%2C132%2C163%2C195%2C197%2C122%2C157%2C145%2C151%2C189%2C190%2C129%2C232%2C116%2C127%2C233%2C165%2C119%2C235%2C166%2C136%2C123%2C154%2C148%2C114%2C128
|
157.240.252.13
|
||
|
https://www.twilio.com/en-us/solutions/startups-resources
|
unknown
|
||
|
https://github.com/gnarf37/jquery-requestAnimationFrame
|
unknown
|
||
|
https://sendgrid.com/en-us/resource/faq
|
unknown
|
||
|
https://cdn.segment.com/analytics-next/bundles/schemaFilter.bundle.5c2661f67b4b71a6d9bd.js
|
99.86.8.175
|
||
|
https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
|
unknown
|
||
|
https://connect.facebook.net/
|
unknown
|
||
|
https://developers.marketo.com/MunchkinLicense.pdf
|
unknown
|
||
|
https://sendgrid.com/en-us/solutions
|
unknown
|
||
|
https://sendgrid.com/etc.clientlibs/sendgrid/clientlibs/clientlib-site.lc-47fa670601ba9b5db3afd22023c57f06-lc.min.js
|
52.211.30.93
|
||
|
https://294-tkb-300.mktoresp.com/webevents/visitWebPage?_mchNc=1729765613257&_mchCn=&_mchId=294-TKB-300&_mchTk=_mch-sendgrid.com-1729765613254-68559&_mchHo=sendgrid.com&_mchPo=&_mchRu=%2Finvalidlink&_mchPc=https%3A&_mchVr=163&_mchEcid=&_mchHa=&_mchRe=&_mchQp=
|
192.28.147.68
|
||
|
https://support.sendgrid.com/hc/en-us
|
unknown
|
||
|
https://www.facebook.com/tr/?id=731950963606637&ev=PageView&dl=https%3A%2F%2Fsendgrid.com%2Finvalidlink&rl=&if=false&ts=1729765615426&sw=1280&sh=1024&v=2.9.173&r=stable&ec=0&o=4126&fbp=fb.1.1729765615424.898629393605724001&ler=empty&cdl=API_unavailable&it=1729765611263&coo=false&rqm=GET
|
157.240.0.35
|
||
|
https://sendgrid.com/etc.clientlibs/twilio-foundation/clientlibs/clientlib-site.lc-068c8d26b083ced716a835bff1204e5d-lc.min.css
|
52.211.30.93
|
||
|
https://consent.trustarc.com/bannermsg?action=views&domain=sendgrid.com&behavior=implied&country=us&language=en&rand=0.4280710088553241&session=33bca8b6-aade-4871-8852-a1c1d657be08&userType=NEW&referer=https://sendgrid.com
|
13.225.78.35
|
||
|
https://consent.trustarc.com/log
|
unknown
|
||
|
https://sendgrid.com/why-sendgrid/
|
unknown
|
||
|
https://www.facebook.com/privacy_sandbox/pixel/register/trigger/?id=1040773425961662&ev=PageView&dl=https%3A%2F%2Fsendgrid.com%2Finvalidlink&rl=&if=false&ts=1729765619845&sw=1280&sh=1024&v=2.9.173&r=stable&ec=0&o=4126&fbp=fb.1.1729765615424.898629393605724001&ler=empty&cdl=API_unavailable&cs_est=true&it=1729765611263&coo=false&dpo=&rqm=FGET
|
157.240.0.35
|
||
|
https://threads.io/
|
unknown
|
||
|
https://docs.sendgrid.com/api-reference/how-to-use-the-sendgrid-v3-api/authentication
|
unknown
|
||
|
https://sendgrid.com/en-us/solutions/email-marketing
|
unknown
|
||
|
https://customers.twilio.com/en-us/strava
|
unknown
|
||
|
https://www.clarity.ms/tag/uet/
|
unknown
|
||
|
https://obseu.powerrobotflower.com/mon
|
54.75.69.192
|
||
|
https://consent.trustarc.com/get?name=Whitney-Light.otf)
|
unknown
|
||
|
https://docs.sendgrid.com/for-developers
|
unknown
|
||
|
https://cloud.google.com/contact
|
unknown
|
||
|
https://jscloud.net/x/45414/httpssendgridcominvalidlink.json
|
104.26.5.39
|
||
|
https://u20993664.ct.sendgrid.net/ls/click?upn=ziWDNBWgCXu3tA1GxDf-2FVp3kDGhdOUq88QzvQGTQfwWtNZsZZT-2FAzSLMjZu-2BLdz16lJg_YA-2BfFI7pDo5C6JlNN4MFxLD5nmhHTaqA6C5srPEM38exMP9P-2FSpJwS8A4N6MnZkvdNTNxoxvnt2bMqafJUWl-2Bgu5rprYWx4NvbNjFlBUFJjHwP-2BKkt0PObLlZtYYuGYYoD-2FRbtPPYG8jK2Pppi80mjED-2FtgGtNk4qrMao63toUVirUUvByaEl0rlkizSPqOclqUDj-2BHDCAt3LQ0pjjk07PQ5uCB-2Bylwjem1FUJwKtjo-3D&data=05|01||c4469e72c9994b7ed72208dbae4f8bd9|84df9e7fe9f640afb435aaaaaaaaaaaa|1|0|638295428902507228|Unknown|TWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=|3000|||&sdata=TeMBS0iylDwG2FQCeerb1LgN2+u9YsHpkcycjmlbqUs=&reserved=0
|
|||
|
https://sendgrid.com/?
|
unknown
|
||
|
https://segment.com
|
unknown
|
||
|
https://www.twilio.com/en-us/messaging/channels/sms
|
unknown
|
||
|
https://status.sendgrid.com
|
unknown
|
||
|
https://cdn.segment.com/v1/projects/1CjnBNPybWzyv10ssZRxdwmb8vrYF4yj/integrations
|
99.86.8.175
|
||
|
https://www.google.com/recaptcha/api2/
|
unknown
|
||
|
https://www.twilio.com/en-us/press
|
unknown
|
||
|
https://assets.adobedtm.com/a62564f453ce/3a3a2543ac65/launch-7021ca0c1852.js
|
unknown
|
||
|
https://sendgrid.com/content/dam/sendgrid/core-assets/social/site.webmanifest
|
52.211.30.93
|
||
|
http://x1.i.lencr.org/
|
unknown
|
||
|
https://www.redditstatic.com/ads/conversions-config/v1/pixel/config/t2_i1au5p4_telemetry
|
151.101.1.140
|
||
|
https://consent.trustarc.com/
|
unknown
|
||
|
http://consent.trustarc.com/noticemsg?
|
unknown
|
||
|
https://cdn.heapanalytics.com/js/heap-1541905715.js
|
13.32.27.116
|
||
|
https://cloud.google.com/recaptcha-enterprise/billing-information
|
unknown
|
||
|
https://docs.sendgrid.com/
|
unknown
|
||
|
https://googleads.g.doubleclick.net
|
unknown
|
||
|
https://status.sendgrid.com/
|
unknown
|
||
|
https://docs.sendgrid.com
|
unknown
|
||
|
https://www.google.com/pagead/1p-user-list/923239173/?random
|
unknown
|
||
|
https://consent.trustarc.com/bannermsg?
|
unknown
|
||
|
https://sendgrid.com/content/dam/sendgrid/core-assets/social/favicon-32x32.png
|
52.211.30.93
|
||
|
https://u20993664.ct.sendgrid.net/favicon.ico
|
167.89.118.28
|
||
|
https://www.twilio.com/en-us/legal/tos
|
unknown
|
||
|
https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca
|
unknown
|
||
|
https://sendgrid.com/etc.clientlibs/twilio-foundation/clientlibs/clientlib-site/resources/a20a647d19af27011c7c.woff2
|
52.211.30.93
|
||
|
https://sendgrid.com/solutions/email-marketing
|
unknown
|
||
|
https://td.doubleclick.net
|
unknown
|
||
|
https://www.quantcast.com/legal/license
|
unknown
|
||
|
https://sendgrid.com/etc.clientlibs/clientlibs/granite/utils.lc-899004cc02c33efc1f6694b1aee587fd-lc.min.js
|
52.211.30.93
|
||
|
https://c.contentsquare.net/v2/events?uu=c6e394c6-fdc5-a0ad-aa4b-6c30d38189ba&sn=1&hd=1729765615&v=15.26.2&pid=84712&pn=1&happid=1541905715&hsid=3234120297640060&huu=2291472818061669&sr=63&mdh=1372&ct=0
|
46.51.172.208
|
||
|
https://obseu.powerrobotflower.com/tracker/tc_imp.gif?e=37dfbd8ee84e001268e7c033ef418b999225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5913846b2017071a10acf9f29f674f83868a052c391daa70740d823d8961c0003904209a06525e640d5ec6ea634977be26bb25cb43e2923cf34c6da909337814da4deb47ec8bc59a7ee46a56a82b9eec47679c796e092818c5871d61eb72bffeb1ba131be20ecca7478c31db6bda508e1547f77303fd1f564c2acf503ed79ffca8328828bf7d8557ec4b7274a7d43169230121e118f58109ac5d6ead83c6771e217dcf965d78c9df014b3545700015a7902c7e7d17c7ab1f28cef2ea2b93e745711b3eb7b4e7c1d965b4cf8853be05985868609ee89fb3a53cc3dcb16e94625fd9adcf7a1f13a53368abc10678fc86ae668504f745b7980a870d97dd75d66071d2d964d27a8f91bdaddbb8a1407ee87ce9e6e5700f72ed8f3ac4e81bed1e541dc5090f97dad08681ec8233d927dcdeeddb2abc2d297ac4796bccd4a67f679ea873eb59b4dd0d8174ef25140514dc31bb0accd7a96ff8df788752a78ed69b3fce684361fb7b045878093087a060a04ed1cf912fa89225a5d0209acca9fb7eaebeec586a68a3ef1e1c9be4530a55a5beb563a13d84eb5bede929b479a6319241c80681fa4f9b4372baeaeb322d35721e38174e55f6f38607d302b7464e5f2ae4a948de990411f9b9dba6a16ac2ed89e094aceaa81f5d36e94698b75e6c8a44631ed1635a6f1e9c72f73c669fafc163cd3dd24dc3eb3ed1aa4edc225b332a107d0d9dc7e6d23b7d509c18428bb199bce2c8200decf9fb0fd3bd740fa6c00e2e2dbcc88d442ba5269b5e9818ea389d17ddc814e6b951e7f1e2a39c4427bbe85107ff33fa9facb954dc3a261c6ef9745112f5fa4d85ec08d8cdca8c05b1d8d4624a6e18e05ffe52f30aec9363942e517514786f75e05a8e823349ab2f9df6e73fd8d35fcc2926ed03762d9fe8d20a46fc31a8cc02d0072d1215ff687d90a5d674d9087dc9d051b3d5dcff8041da41477d56a13537589c8c1e05ec69f5f4c0319d82af1c5774a36a201416965429a6ebb24742cb3b2f84858d179888f99a14&cri=SNaO2qObYI&ts=6068&cb=1729765613340
|
54.75.69.192
|
||
|
https://consent.trustarc.com/get?name=Whitney-Book.otf)
|
unknown
|
||
|
https://sendgrid.com/etc.clientlibs/twilio-foundation/clientlibs/clientlib-site/resources/ee7a891efcbc6ef61942.woff2
|
52.211.30.93
|
||
|
https://google.com
|
unknown
|
||
|
http://jquery.com/
|
unknown
|
||
|
https://adservice.google.com/pagead/regclk?
|
unknown
|
||
|
https://signup.sendgrid.com/
|
unknown
|
||
|
https://customers.twilio.com/en-us/sendgrid?page=1&products=email%2Cmarketing-campaigns
|
unknown
|
||
|
https://github.com/sendgrid/sendgrid-python/
|
unknown
|
||
|
https://sendgrid.com/en-us/contact-us-form
|
unknown
|
||
|
https://customers.twilio.com/en-us/shopify-2
|
unknown
|
||
|
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lc3fVoiAAAAAPwG5oAIHRlqs43SHIxX8Zi1CpOs&co=aHR0cHM6Ly9zZW5kZ3JpZC5jb206NDQz&hl=en&v=lqsTZ5beIbCkK4uGEGv9JmUR&size=invisible&cb=vh1vpiimp1na
|
142.250.186.36
|
||
|
https://sendgrid.com/en-us/email-api-tour
|
unknown
|
||
|
https://assets.adobedtm.com/a62564f453ce/3a3a2543ac65/launch-7021ca0c1852.min.js
|
unknown
|
There are 90 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
s-part-0016.t-0009.t-msedge.net
|
13.107.246.44
|
||
|
jscloud.net
|
104.26.5.39
|
||
|
d2fashanjl7d9f.cloudfront.net
|
18.66.102.15
|
||
|
global.px.quantserve.com
|
91.228.74.166
|
||
|
obseu.powerrobotflower.com
|
54.75.69.192
|
||
|
adobetarget.data.adobedc.net
|
66.235.152.225
|
||
|
d296je7bbdd650.cloudfront.net
|
99.86.8.175
|
||
|
scontent.xx.fbcdn.net
|
157.240.252.13
|
||
|
c.ba.contentsquare.net
|
46.51.172.208
|
||
|
sendgrid.com
|
18.198.170.184
|
||
|
294-tkb-300.mktoresp.com
|
192.28.147.68
|
||
|
www.google.com
|
142.250.186.36
|
||
|
api.segment.io
|
44.234.198.184
|
||
|
t.contentsquare.net
|
18.244.18.115
|
||
|
star-mini.c10r.facebook.com
|
157.240.0.35
|
||
|
cdn.heapanalytics.com
|
13.32.27.116
|
||
|
euob.powerrobotflower.com
|
143.204.98.44
|
||
|
u20993664.ct.sendgrid.net
|
167.89.118.28
|
||
|
ax-0001.ax-msedge.net
|
150.171.28.10
|
||
|
consent.trustarc.com
|
13.225.78.35
|
||
|
heapanalytics.com
|
54.165.224.226
|
||
|
bg.microsoft.map.fastly.net
|
199.232.210.172
|
||
|
dualstack.reddit.map.fastly.net
|
151.101.1.140
|
||
|
reddit.map.fastly.net
|
151.101.65.140
|
||
|
googleads.g.doubleclick.net
|
142.250.74.194
|
||
|
td.doubleclick.net
|
172.217.23.98
|
||
|
ib.anycast.adnxs.com
|
185.89.210.46
|
||
|
s-part-0032.t-0009.t-msedge.net
|
13.107.246.60
|
||
|
alb.reddit.com
|
unknown
|
||
|
a.quora.com
|
unknown
|
||
|
secure.adnxs.com
|
unknown
|
||
|
rules.quantcount.com
|
unknown
|
||
|
twilio.tt.omtrdc.net
|
unknown
|
||
|
cdn.segment.com
|
unknown
|
||
|
pixel-config.reddit.com
|
unknown
|
||
|
b.6sc.co
|
unknown
|
||
|
j.6sc.co
|
unknown
|
||
|
o.clarity.ms
|
unknown
|
||
|
c.clarity.ms
|
unknown
|
||
|
www.facebook.net
|
unknown
|
||
|
q.quora.com
|
unknown
|
||
|
www.facebook.com
|
unknown
|
||
|
rum.hlx.page
|
unknown
|
||
|
www.redditstatic.com
|
unknown
|
||
|
x1.i.lencr.org
|
unknown
|
||
|
c.6sc.co
|
unknown
|
||
|
assets.adobedtm.com
|
unknown
|
||
|
www.clarity.ms
|
unknown
|
||
|
www.linkedin.com
|
unknown
|
||
|
secure.quantserve.com
|
unknown
|
||
|
pixel.quantserve.com
|
unknown
|
||
|
px.ads.linkedin.com
|
unknown
|
||
|
connect.facebook.net
|
unknown
|
||
|
munchkin.marketo.net
|
unknown
|
||
|
snap.licdn.com
|
unknown
|
||
|
c.contentsquare.net
|
unknown
|
||
|
ipv6.6sc.co
|
unknown
|
There are 47 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
91.228.74.166
|
global.px.quantserve.com
|
United Kingdom
|
||
|
91.228.74.244
|
unknown
|
United Kingdom
|
||
|
91.228.74.200
|
unknown
|
United Kingdom
|
||
|
18.66.102.15
|
d2fashanjl7d9f.cloudfront.net
|
United States
|
||
|
46.51.172.208
|
c.ba.contentsquare.net
|
Ireland
|
||
|
13.107.246.44
|
s-part-0016.t-0009.t-msedge.net
|
United States
|
||
|
13.225.78.26
|
unknown
|
United States
|
||
|
185.89.210.153
|
unknown
|
Germany
|
||
|
192.168.2.4
|
unknown
|
unknown
|
||
|
52.211.30.93
|
unknown
|
United States
|
||
|
66.235.152.225
|
adobetarget.data.adobedc.net
|
United States
|
||
|
18.66.102.121
|
unknown
|
United States
|
||
|
151.101.193.140
|
unknown
|
United States
|
||
|
151.101.65.140
|
reddit.map.fastly.net
|
United States
|
||
|
104.26.5.39
|
jscloud.net
|
United States
|
||
|
18.198.170.184
|
sendgrid.com
|
United States
|
||
|
18.244.18.115
|
t.contentsquare.net
|
United States
|
||
|
143.204.98.11
|
unknown
|
United States
|
||
|
157.240.252.13
|
scontent.xx.fbcdn.net
|
United States
|
||
|
172.67.72.174
|
unknown
|
United States
|
||
|
54.75.69.192
|
obseu.powerrobotflower.com
|
United States
|
||
|
54.205.98.132
|
unknown
|
United States
|
||
|
142.250.185.68
|
unknown
|
United States
|
||
|
142.250.186.36
|
www.google.com
|
United States
|
||
|
157.240.0.35
|
star-mini.c10r.facebook.com
|
United States
|
||
|
34.223.74.168
|
unknown
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
142.250.185.196
|
unknown
|
United States
|
||
|
99.86.8.175
|
d296je7bbdd650.cloudfront.net
|
United States
|
||
|
157.240.253.35
|
unknown
|
United States
|
||
|
13.32.27.116
|
cdn.heapanalytics.com
|
United States
|
||
|
13.107.246.60
|
s-part-0032.t-0009.t-msedge.net
|
United States
|
||
|
192.28.147.68
|
294-tkb-300.mktoresp.com
|
United States
|
||
|
172.217.23.98
|
td.doubleclick.net
|
United States
|
||
|
150.171.28.10
|
ax-0001.ax-msedge.net
|
United States
|
||
|
3.248.162.96
|
unknown
|
United States
|
||
|
142.250.74.194
|
googleads.g.doubleclick.net
|
United States
|
||
|
185.89.210.46
|
ib.anycast.adnxs.com
|
Germany
|
||
|
18.244.18.53
|
unknown
|
United States
|
||
|
167.89.118.28
|
u20993664.ct.sendgrid.net
|
United States
|
||
|
151.101.1.140
|
dualstack.reddit.map.fastly.net
|
United States
|
||
|
13.225.78.35
|
consent.trustarc.com
|
United States
|
||
|
157.240.251.9
|
unknown
|
United States
|
||
|
150.171.27.10
|
unknown
|
United States
|
||
|
44.234.198.184
|
api.segment.io
|
United States
|
||
|
54.165.224.226
|
heapanalytics.com
|
United States
|
||
|
143.204.98.44
|
euob.powerrobotflower.com
|
United States
|
||
|
151.101.129.140
|
unknown
|
United States
|
||
|
172.217.16.130
|
unknown
|
United States
|
There are 39 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
aFS
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
tDIText
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
tFileName
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
tFileSource
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sFileAncestors
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sDI
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sDate
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
uFileSize
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
uPageCount
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sAssetId
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
bisSharedFile
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
aFS
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
tDIText
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
tFileName
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
sDI
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
sDate
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
uFileSize
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
uPageCount
|
There are 8 hidden registries, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://u20993664.ct.sendgrid.net/ls/click?upn=ziWDNBWgCXu3tA1GxDf-2FVp3kDGhdOUq88QzvQGTQfwWtNZsZZT-2FAzSLMjZu-2BLdz16lJg_YA-2BfFI7pDo5C6JlNN4MFxLD5nmhHTaqA6C5srPEM38exMP9P-2FSpJwS8A4N6MnZkvdNTNxoxvnt2bMqafJUWl-2Bgu5rprYWx4NvbNjFlBUFJjHwP-2BKkt0PObLlZtYYuGYYoD-2FRbtPPYG8jK2Pppi80mjED-2FtgGtNk4qrMao63toUVirUUvByaEl0rlkizSPqOclqUDj-2BHDCAt3LQ0pjjk07PQ5uCB-2Bylwjem1FUJwKtjo-3D&data=05|01||c4469e72c9994b7ed72208dbae4f8bd9|84df9e7fe9f640afb435aaaaaaaaaaaa|1|0|638295428902507228|Unknown|TWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=|3000|||&sdata=TeMBS0iylDwG2FQCeerb1LgN2+u9YsHpkcycjmlbqUs=&reserved=0
|
||
|
https://sendgrid.com/invalidlink
|
||
|
https://sendgrid.com/invalidlink
|
||
|
https://sendgrid.com/invalidlink
|
||
|
https://sendgrid.com/invalidlink
|
||
|
https://sendgrid.com/invalidlink
|
||
|
https://sendgrid.com/invalidlink
|