Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Chrome Cache Entry: 48
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 49
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
|
Chrome Cache Entry: 50
|
gzip compressed data, max speed, from Unix, truncated
|
downloaded
|
||
|
Chrome Cache Entry: 51
|
HTML document, ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 52
|
HTML document, ASCII text, with very long lines (14115)
|
downloaded
|
||
|
Chrome Cache Entry: 53
|
gzip compressed data, max speed, from Unix, truncated
|
dropped
|
||
|
Chrome Cache Entry: 54
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 55
|
PNG image data, 1500 x 600, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 56
|
gzip compressed data, max speed, from Unix, original size modulo 2^32 15900
|
downloaded
|
||
|
Chrome Cache Entry: 57
|
ASCII text, with very long lines (1932)
|
dropped
|
||
|
Chrome Cache Entry: 58
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
|
Chrome Cache Entry: 59
|
ASCII text, with very long lines (386), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 60
|
ASCII text
|
dropped
|
||
|
Chrome Cache Entry: 61
|
SVG Scalable Vector Graphics image
|
dropped
|
||
|
Chrome Cache Entry: 62
|
gzip compressed data, max speed, from Unix, truncated
|
downloaded
|
||
|
Chrome Cache Entry: 63
|
SVG Scalable Vector Graphics image
|
dropped
|
||
|
Chrome Cache Entry: 64
|
PNG image data, 1500 x 600, 8-bit colormap, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 65
|
ASCII text, with very long lines (1932)
|
downloaded
|
||
|
Chrome Cache Entry: 66
|
ASCII text, with very long lines (386), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 67
|
ASCII text, with very long lines (1932)
|
downloaded
|
||
|
Chrome Cache Entry: 68
|
gzip compressed data, max speed, from Unix, truncated
|
dropped
|
||
|
Chrome Cache Entry: 69
|
ASCII text, with very long lines (1932)
|
dropped
|
There are 13 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
 |
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=1228 --field-trial-handle=2112,i,2561123782949160464,18114491784215700104,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "http://begantotireo.xyz"
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://begantotireo.xyz
|
|
||
|
https://www.google.com/adsense/domains/caf.js?abp=1&adsdeli=true
|
142.250.181.68
|
||
|
https://begantotireo.xyz/
|
103.224.212.217
|
||
|
http://begantotireo.xyz/
|
103.224.212.217
|
||
|
http://ww38.begantotireo.xyz/track.php?domain=begantotireo.xyz&caf=1&toggle=answercheck&answer=yes&uid=MTczMjU0NTI0Ny4yODU3OjJiZDdhOTMzNGE5NGVkZmY4M2FlNzRjZTEyNjgzY2ZkYmNkYzhmM2EyYmZiZWU1MjNmYjgyMjJjZWFlNDg3YWE6Njc0NDhhZGY0NWJlMg%3D%3D
|
76.223.26.96
|
||
|
https://syndicatedsearch.goog
|
unknown
|
||
|
http://ww38.begantotireo.xyz/track.php?domain=begantotireo.xyz&toggle=browserjs&uid=MTczMjU0NTI0Ny4yODU3OjJiZDdhOTMzNGE5NGVkZmY4M2FlNzRjZTEyNjgzY2ZkYmNkYzhmM2EyYmZiZWU1MjNmYjgyMjJjZWFlNDg3YWE6Njc0NDhhZGY0NWJlMg%3D%3D
|
76.223.26.96
|
||
|
https://syndicatedsearch.goog/adsense/domains/caf.js?pac=0
|
172.217.19.174
|
||
|
http://c.parkingcrew.net/scripts/sale_form.js
|
185.53.178.30
|
||
|
https://syndicatedsearch.goog/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=gxxd63jwuadx&aqid=54pEZ4CDJ-rqovsP3r_hkQ8&psid=7840396037&pbt=bv&adbx=375&adby=93&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=697661440&csala=6%7C0%7C2815%7C3245%7C466&lle=0&ifv=1&hpt=1
|
216.58.208.238
|
||
|
https://afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff
|
142.250.181.65
|
||
|
http://ww38.begantotireo.xyz/favicon.ico
|
76.223.26.96
|
||
|
https://www.godaddy.com/domainsearch/find?checkAvail=1&domainToCheck=begantotireo.xyz
|
|||
|
https://afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
|
142.250.181.65
|
||
|
http://d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/arrows.png
|
108.158.71.61
|
||
|
http://ww38.begantotireo.xyz/
|
|||
|
http://ww38.begantotireo.xyz/ls.php?t=67448adf&token=a38eb7313701166d1c6b2ddab30b4c6268702bbb
|
76.223.26.96
|
||
|
http://www.mydomainbuy.com/sale_form.php?salelink=1&domain_name=begantotireo.xyz
|
52.211.100.182
|
||
|
https://www.mydomainbuy.com/sale_form.php?salelink=1&domain_name=begantotireo.xyz
|
52.211.100.182
|
||
|
https://www.google.com/pagead/1p-conversion/16521530460/?gad_source=1&adview_type=5
|
unknown
|
||
|
https://syndicatedsearch.goog/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=uo4wl5jbid5v&aqid=54pEZ4CDJ-rqovsP3r_hkQ8&psid=7840396037&pbt=bs&adbx=375&adby=93&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=697661440&csala=6%7C0%7C2815%7C3245%7C466&lle=0&ifv=1&hpt=1
|
216.58.208.238
|
There are 10 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
ww38.begantotireo.xyz
|
unknown
|
|
|
|
701602.parkingcrew.net
|
76.223.26.96
|
||
|
syndicatedsearch.goog
|
216.58.208.238
|
||
|
www.mydomainbuy.com
|
52.211.100.182
|
||
|
www.google.com
|
142.250.181.68
|
||
|
googlehosted.l.googleusercontent.com
|
142.250.181.65
|
||
|
fp2e7a.wpc.phicdn.net
|
192.229.221.95
|
||
|
begantotireo.xyz
|
103.224.212.217
|
||
|
c.parkingcrew.net
|
185.53.178.30
|
||
|
d38psrni17bvxu.cloudfront.net
|
108.158.71.61
|
||
|
afs.googleusercontent.com
|
unknown
|
||
|
www.godaddy.com
|
unknown
|
There are 2 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
13.248.148.254
|
unknown
|
United States
|
||
|
192.168.2.8
|
unknown
|
unknown
|
||
|
63.33.29.236
|
unknown
|
United States
|
||
|
192.168.2.16
|
unknown
|
unknown
|
||
|
216.58.208.238
|
syndicatedsearch.goog
|
United States
|
||
|
172.217.19.174
|
unknown
|
United States
|
||
|
52.211.100.182
|
www.mydomainbuy.com
|
United States
|
||
|
192.168.2.9
|
unknown
|
unknown
|
||
|
192.168.2.6
|
unknown
|
unknown
|
||
|
108.158.71.61
|
d38psrni17bvxu.cloudfront.net
|
United States
|
||
|
103.224.212.217
|
begantotireo.xyz
|
Australia
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
76.223.26.96
|
701602.parkingcrew.net
|
United States
|
||
|
192.168.2.23
|
unknown
|
unknown
|
||
|
185.53.178.30
|
c.parkingcrew.net
|
Germany
|
||
|
142.250.181.68
|
www.google.com
|
United States
|
||
|
142.250.181.65
|
googlehosted.l.googleusercontent.com
|
United States
|
There are 7 hidden IPs, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
http://ww38.begantotireo.xyz/
|
||
|
http://ww38.begantotireo.xyz/
|
||
|
http://ww38.begantotireo.xyz/
|
||
|
http://ww38.begantotireo.xyz/
|
||
|
http://ww38.begantotireo.xyz/
|
||
|
http://ww38.begantotireo.xyz/
|
||
|
https://www.godaddy.com/domainsearch/find?checkAvail=1&domainToCheck=begantotireo.xyz
|