IOC Report
http://tedxunc.com/

loading gif

Files

File Path
Type
Category
Malicious
Chrome Cache Entry: 100
HTML document, ASCII text, with very long lines (2402)
dropped
Chrome Cache Entry: 101
HTML document, ASCII text, with very long lines (2402)
dropped
Chrome Cache Entry: 102
RIFF (little-endian) data, Web/P image
downloaded
Chrome Cache Entry: 103
ASCII text, with very long lines (2343)
dropped
Chrome Cache Entry: 104
RIFF (little-endian) data, Web/P image
downloaded
Chrome Cache Entry: 105
ASCII text
downloaded
Chrome Cache Entry: 106
HTML document, ASCII text, with very long lines (2402)
downloaded
Chrome Cache Entry: 107
HTML document, ASCII text, with very long lines (2402)
downloaded
Chrome Cache Entry: 108
ASCII text, with very long lines (327), with CRLF line terminators
downloaded
Chrome Cache Entry: 109
ASCII text
dropped
Chrome Cache Entry: 110
ASCII text
downloaded
Chrome Cache Entry: 111
HTML document, ASCII text, with very long lines (2402)
dropped
Chrome Cache Entry: 112
ASCII text
downloaded
Chrome Cache Entry: 113
GIF image data, version 89a, 500 x 250
downloaded
Chrome Cache Entry: 114
ASCII text
downloaded
Chrome Cache Entry: 115
HTML document, ASCII text, with very long lines (2402)
dropped
Chrome Cache Entry: 116
HTML document, ASCII text, with very long lines (2402)
downloaded
Chrome Cache Entry: 117
ASCII text
dropped
Chrome Cache Entry: 118
ASCII text
dropped
Chrome Cache Entry: 119
HTML document, ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 120
ASCII text, with very long lines (5945)
downloaded
Chrome Cache Entry: 121
PNG image data, 300 x 68, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 122
HTML document, ASCII text, with very long lines (2402)
downloaded
Chrome Cache Entry: 123
ASCII text, with very long lines (5945)
downloaded
Chrome Cache Entry: 124
ASCII text
downloaded
Chrome Cache Entry: 125
RIFF (little-endian) data, Web/P image
downloaded
Chrome Cache Entry: 126
RIFF (little-endian) data, Web/P image
dropped
Chrome Cache Entry: 127
ASCII text
downloaded
Chrome Cache Entry: 128
PNG image data, 300 x 68, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 129
HTML document, ASCII text, with very long lines (2402)
downloaded
Chrome Cache Entry: 130
ASCII text
downloaded
Chrome Cache Entry: 131
ASCII text
downloaded
Chrome Cache Entry: 73
ASCII text, with very long lines (32341)
downloaded
Chrome Cache Entry: 74
RIFF (little-endian) data, Web/P image
downloaded
Chrome Cache Entry: 75
troff or preprocessor input, ASCII text
downloaded
Chrome Cache Entry: 76
ASCII text
downloaded
Chrome Cache Entry: 77
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 78
HTML document, ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 79
C++ source, ASCII text
downloaded
Chrome Cache Entry: 80
HTML document, ASCII text, with very long lines (2402)
dropped
Chrome Cache Entry: 81
ASCII text
downloaded
Chrome Cache Entry: 82
C++ source, ASCII text
dropped
Chrome Cache Entry: 83
ASCII text
dropped
Chrome Cache Entry: 84
ASCII text, with very long lines (5945)
dropped
Chrome Cache Entry: 85
ASCII text
downloaded
Chrome Cache Entry: 86
GIF image data, version 89a, 500 x 250
dropped
Chrome Cache Entry: 87
TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2017 The Archivo Black Project Authors (https://github.com/Omnibus-Type/ArchivoBlack)A
downloaded
Chrome Cache Entry: 88
RIFF (little-endian) data, Web/P image
dropped
Chrome Cache Entry: 89
HTML document, ASCII text, with very long lines (2402)
downloaded
Chrome Cache Entry: 90
ASCII text, with very long lines (32341)
dropped
Chrome Cache Entry: 91
HTML document, ASCII text, with very long lines (2402)
downloaded
Chrome Cache Entry: 92
RIFF (little-endian) data, Web/P image
dropped
Chrome Cache Entry: 93
ASCII text, with very long lines (5945)
dropped
Chrome Cache Entry: 94
RIFF (little-endian) data, Web/P image
dropped
Chrome Cache Entry: 95
ASCII text, with very long lines (2343)
downloaded
Chrome Cache Entry: 96
RIFF (little-endian) data, Web/P image
downloaded
Chrome Cache Entry: 97
HTML document, ASCII text, with very long lines (2402)
dropped
Chrome Cache Entry: 98
RIFF (little-endian) data, Web/P image
dropped
Chrome Cache Entry: 99
TrueType Font data, 16 tables, 1st "GDEF", 18 names, Microsoft, language 0x409, Copyright 2015 The Rubik Project Authors (https://github.com/googlefonts/rubik)RubikRegular2.102
downloaded
There are 50 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2064 --field-trial-handle=2004,i,14405384987193205201,7109786849746294793,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "http://tedxunc.com/"

URLs

Name
IP
Malicious
http://tedxunc.com/
https://www.marketingtopu.com/assets/daftarsekarangmcn.gif
104.21.58.170
https://themes.easystore.co/63057/assets/product-form.js?t=1716787059
108.138.233.15
https://www.marketingtopu.com/?v2.91
104.21.58.170
https://stats.g.doubleclick.net/g/collect
unknown
https://Macanslot138.easy.co
unknown
https://scripts.sil.org/OFLhttps://scripts.sil.org/OFLRubikRomanWeightItalicRoman
unknown
https://www.marketingtopu.com/assets/js/promotion/promotion.js?v1.11
104.21.58.170
https://tiktok.com/
unknown
https://www.marketingtopu.com/products/Macanslot138---website-game-online-resmi-dan-terpercaya-no-1-di-asia-tenggara/recommend?
104.21.58.170
https://cdn.store-assets.com/s/943101/f/8656465.png
unknown
https://tinytruffles.com/
104.21.8.171
https://themes.easystore.co/63057/assets/component-cart-notification.css?v1.1?t=1716787059
108.138.233.15
https://github.com/Omnibus-Type/ArchivoBlack)Archivo
unknown
https://www.marketingtopu.com/
https://themes.easystore.co/63057/assets/component-menu-drawer.css?t=1716787059
108.138.233.15
https://themes.easystore.co/63057/assets/details-modal.js?t=1716787059
108.138.233.15
https://ampcid.google.com/v1/publisher:getClientId
unknown
https://Macanslot138.easy.co/products/https://www.marketingtopu.com/&media=&description=MACA
unknown
https://macanslot138u.com/
unknown
https://wa.me/
unknown
https://www.marketingtopu.com/assets/storefront.js?id=3f4f74218829cbf9e2d5
104.21.58.170
https://www.google.com
unknown
https://www.youtube.com/embed/$
unknown
https://themes.easystore.co/63057/assets/section-header.css?t=1716787059
108.138.233.15
https://themes.easystore.co/63057/assets/share.js?t=1716787059
108.138.233.15
https://www.marketingtopu.com/assets/traffic.js?v=1
104.21.58.170
https://Macanslot138.easy.co/products/https://www.marketingtopu.com/
unknown
https://themes.easystore.co/63057/assets/section-main-product.css?t=1716787059
108.138.233.15
https://stats.g.doubleclick.net/j/collect
unknown
https://www.marketingtopu.com/?
104.21.58.170
https://www.marketingtopu.com/?v1.11
104.21.58.170
https://www.marketingtopu.com/?limit=5&page=1
104.21.58.170
http://scripts.sil.org/OFLhttp://scripts.sil.org/OFL
unknown
https://www.marketingtopu.com/assets/logomcn.png
104.21.58.170
http://tedxunc.com/
188.114.96.3
https://github.com/googlefonts/rubik)RubikRegular2.102;NONE;Rubik-RegularRubik
unknown
https://youtube.com/
unknown
https://tedxunc.com/
188.114.97.3
https://macanslot138-amp.pages.dev/
unknown
https://cdn.store-assets.com/s/943101/f/8656454.png
unknown
https://line.com/
unknown
https://themes.easystore.co/63057/assets/section-footer.css?t=1716787059
108.138.233.15
https://www.marketingtopu.com/assets/css/froala_style.min.css
104.21.58.170
https://themes.easystore.co/63057/assets/component-slider.css?t=1716787059
108.138.233.15
https://themes.easystore.co/63057/assets/base.css?t=1716787059
108.138.233.15
https://themes.easystore.co/63057/assets/global.js?t=1716787059
108.138.233.15
https://www.marketingtopu.com/assets/css/promotion.css?v2.91
104.21.58.170
https://wechat.com/
unknown
https://tagassistant.google.com/
unknown
https://themes.easystore.co/63057/assets/component-price.css?t=1716787059
108.138.233.15
https://twitter.com/
unknown
https://www.marketingtopu.com/assets/favicon.webp
104.21.58.170
https://cct.google/taggy/agent.js
unknown
https://miruspromotions.com/
188.114.96.3
https://www.marketingtopu.com/assets/gambarmcn4.webp
104.21.58.170
https://www.marketingtopu.com/products/Macanslot138---website-game-online-resmi-dan-terpercaya-no-1-di-asia-tenggara/promotions?limit=5&page=1
104.21.58.170
https://themes.easystore.co/63057/assets/component-rte.css?t=1716787059
unknown
http://www.google.com/fontshttp://www.hubertfischer.comThis
unknown
https://www.marketingtopu.com/?v=1
104.21.58.170
https://www.google.com/ads/ga-audiences
unknown
https://www.google.%/ads/ga-audiences
unknown
http://schema.org/
unknown
https://td.doubleclick.net
unknown
https://www.easystore.co/?utm_source=storefront&utm_medium=sf_ref_footer&utm_campaign=sf_ref
unknown
https://cdn.store-assets.com/s/943101/f/8656462.png
unknown
https://www.marketingtopu.com/assets/events.js
104.21.58.170
https://themes.easystore.co/63057/assets/cart-notification.js?t=1716787059
108.138.233.15
https://www.merchant-center-analytics.goog
unknown
http://omnibus-type.com/This
unknown
https://www.marketingtopu.com/?id=3f4f74218829cbf9e2d5
104.21.58.170
https://instagram.com/
unknown
http://www.w.org/1999/02/22-rdf-syntax-ns#
unknown
https://adservice.google.com/pagead/regclk?
unknown
https://themes.easystore.co/63057/assets/component-list-menu.css?t=1716787059
108.138.233.15
There are 64 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
tedxunc.com
188.114.96.3
miruspromotions.com
188.114.96.3
s-part-0017.t-0009.t-msedge.net
13.107.246.45
tinytruffles.com
104.21.8.171
d3omekwlgd0jru.cloudfront.net
108.138.233.15
fp2e7a.wpc.phicdn.net
192.229.221.95
stats.g.doubleclick.net
108.177.15.155
bg.microsoft.map.fastly.net
199.232.214.172
www.marketingtopu.com
104.21.58.170
www.google.com
142.250.184.228
analytics.google.com
142.250.74.206
td.doubleclick.net
216.58.206.66
s-part-0032.t-0009.t-msedge.net
13.107.246.60
cdn.store-assets.com
unknown
themes.easystore.co
unknown
There are 5 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
108.177.15.155
stats.g.doubleclick.net
United States
142.250.74.206
analytics.google.com
United States
192.168.2.4
unknown
unknown
142.250.184.228
www.google.com
United States
18.245.46.110
unknown
United States
216.58.206.66
td.doubleclick.net
United States
104.21.58.170
www.marketingtopu.com
United States
108.138.233.15
d3omekwlgd0jru.cloudfront.net
United States
104.21.8.171
tinytruffles.com
United States
239.255.255.250
unknown
Reserved
188.114.97.3
unknown
European Union
188.114.96.3
tedxunc.com
European Union
There are 2 hidden IPs, click here to show them.

DOM / HTML

URL
Malicious
https://www.marketingtopu.com/
https://www.marketingtopu.com/
https://www.marketingtopu.com/
https://www.marketingtopu.com/