Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\Network Persistent State (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\Network Persistent State~RF4f7dda.TMP (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\a068c088-1099-4f93-9ab0-6c09fd1bffd0.tmp
|
JSON data
|
modified
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\cced5d18-eb16-41b7-bf0a-4ad5e048b2d2.tmp
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ConnectorIcons\icon-241209102512Z-229.bmp
|
PC bitmap, Windows 3.x format, 164 x -92 x 32, cbSize 60406, bits offset 54
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages
|
SQLite 3.x database, last written using SQLite version 3040000, file counter 11, database pages 21, cookie 0x5, schema 4,
UTF-8, version-valid-for 11
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages-journal
|
SQLite Rollback Journal
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\2D85F72862B55C4EADD9E66E06947F3D
|
Certificate, Version=3
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\2D85F72862B55C4EADD9E66E06947F3D
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\AdobeCMapFnt23.lst (copy)
|
PostScript document text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\AdobeFnt23.lst.6832
|
PostScript document text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\AdobeSysFnt23.lst (copy)
|
PostScript document text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\Cache\AcroFnt23.lst (copy)
|
PostScript document text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\Cache\AdobeFnt23.lst.6832
|
PostScript document text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\IconCacheAcro65536.dat
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\ACROBAT_READER_MASTER_SURFACEID
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_FirstMile_Home_View_Surface
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_FirstMile_Right_Sec_Surface
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_READER_LAUNCH_CARD
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Convert_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Disc_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Disc_LHP_Retention
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Edit_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Home_LHP_Trial_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_More_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Intent_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Retention
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Sign_LHP_Banner
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Upsell_Cards
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\Edit_InApp_Aug2020
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\TESTING
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\SOPHIA.json
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SharedDataEvents
|
SQLite 3.x database, last written using SQLite version 3040000, file counter 24, database pages 3, cookie 0x2, schema 4, UTF-8,
version-valid-for 24
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SharedDataEvents-journal
|
SQLite Rollback Journal
|
dropped
|
||
|
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\UserCache64.bin
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\MSIf3e8f.LOG
|
Unicode text, UTF-16, little-endian text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrobat_sbx\A9hh69lo_ynxfw8_59s.tmp
|
PDF document, version 1.6, 0 pages
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\NGLClient_AcrobatReader123.6.20320.6 2024-12-09 05-25-08-428.log
|
ASCII text, with very long lines (393)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\NGLClient_AcrobatReader123.6.20320.6.log
|
ASCII text, with very long lines (393), with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrobat_sbx\acroNGLLog.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrocef_low\5b7648be-1b24-4411-85cd-57bbbbcf0c35.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 299538
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrocef_low\9a3e1f76-c4f3-4e55-972d-c18e46aacf4f.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 33081
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrocef_low\cb032b94-01c7-463c-8c22-2f5e59306205.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 1311022
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\acrocef_low\eda4a5a5-c9e6-4e28-84ff-5b7c3380ad38.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 57837
|
dropped
|
||
|
C:\Users\user\Downloads\bca14403-9721-426c-a659-92d6917f6a65.tmp
|
PDF document, version 1.7, 27 pages
|
dropped
|
||
|
C:\Users\user\Downloads\d5580f49-8d13-45b6-bf77-0e470b15feb8.tmp
|
PDF document, version 1.7, 27 pages
|
dropped
|
||
|
C:\Users\user\Downloads\downloaded.pdf (copy)
|
PDF document, version 1.7, 27 pages
|
dropped
|
||
|
C:\Users\user\Downloads\downloaded.pdf.crdownload
|
PDF document, version 1.7, 27 pages
|
dropped
|
||
|
Chrome Cache Entry: 231
|
HTML document, ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 232
|
HTML document, ASCII text, with very long lines (4727)
|
downloaded
|
||
|
Chrome Cache Entry: 233
|
HTML document, ASCII text, with very long lines (4727)
|
dropped
|
||
|
Chrome Cache Entry: 234
|
ASCII text, with very long lines (33891), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 235
|
ASCII text, with very long lines (2896), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 236
|
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
|
downloaded
|
||
|
Chrome Cache Entry: 237
|
HTML document, ASCII text, with very long lines (4727)
|
downloaded
|
||
|
Chrome Cache Entry: 238
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 239
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 240
|
Unicode text, UTF-8 text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 241
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 242
|
HTML document, ASCII text, with very long lines (4727)
|
downloaded
|
||
|
Chrome Cache Entry: 243
|
ASCII text, with very long lines (349), with CRLF line terminators
|
dropped
|
||
|
Chrome Cache Entry: 244
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 245
|
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=10, manufacturer=Leica Camera AG, model=LEICA
M10, xresolution=160, yresolution=168, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 9.3 (Macintosh), datetime=2020:09:02
21:48:17], baseline, precision 8, 2000x1333, components 3
|
downloaded
|
||
|
Chrome Cache Entry: 246
|
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=10, manufacturer=Leica Camera AG, model=LEICA
M10, xresolution=160, yresolution=168, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 9.3 (Macintosh), datetime=2020:09:02
21:48:17], baseline, precision 8, 2000x1333, components 3
|
dropped
|
||
|
Chrome Cache Entry: 247
|
ASCII text, with very long lines (349), with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 248
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 249
|
Unicode text, UTF-8 text, with CRLF line terminators
|
dropped
|
||
|
Chrome Cache Entry: 250
|
GIF image data, version 89a, 200 x 204
|
dropped
|
||
|
Chrome Cache Entry: 251
|
Web Open Font Format (Version 2), TrueType, length 30180, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 252
|
PNG image data, 400 x 111, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 253
|
ASCII text, with very long lines (33891), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 254
|
ASCII text, with very long lines (2896), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 255
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 256
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 257
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 258
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 259
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 260
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 261
|
GIF image data, version 89a, 200 x 204
|
downloaded
|
||
|
Chrome Cache Entry: 262
|
Web Open Font Format (Version 2), TrueType, length 27712, version 2.1310
|
downloaded
|
||
|
Chrome Cache Entry: 263
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 264
|
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
|
dropped
|
||
|
Chrome Cache Entry: 265
|
ASCII text, with very long lines (65369)
|
downloaded
|
||
|
Chrome Cache Entry: 266
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 267
|
PNG image data, 400 x 111, 8-bit/color RGBA, non-interlaced
|
downloaded
|
There are 84 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2572 --field-trial-handle=2544,i,1861361317966016622,14659865774552888645,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://nuportal.dobler.de/Applications/LM_HTML/#/main"
|
||
|
C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe
|
"C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe" "C:\Users\user\Downloads\downloaded.pdf"
|
||
|
C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe
|
"C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --backgroundcolor=16777215
|
||
|
C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe
|
"C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --type=utility --utility-sub-type=network.mojom.NetworkService
--lang=en-US --service-sandbox-type=none --log-severity=disable --user-agent-product="ReaderServices/23.6.20320 Chrome/105.0.0.0"
--lang=en-US --user-data-dir="C:\Users\user\AppData\Local\CEF\User Data" --log-file="C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\debug.log"
--mojo-platform-channel-handle=2084 --field-trial-handle=1728,i,6168526142776714020,467080475429719140,131072 --disable-features=BackForwardCache,CalculateNativeWinOcclusion,WinUseBrowserSpellChecker
/prefetch:8
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://nuportal.dobler.de/Applications/LM_HTML/#/main
|
|||
|
https://login.microsoftonline.com/
|
unknown
|
||
|
https://pasff.usgovcloudapi.net
|
unknown
|
||
|
https://nuportal.dobler.de/Applications/LM/runtime.a934ef1982bab51f.js
|
195.4.205.65
|
||
|
https://login.microsoftonline.us/organizations/oauth2/v2.0/logout
|
unknown
|
||
|
https://github.com/microsoftgraph/msgraph-sdk-javascript/blob/dev/docs/CustomAuthenticationProvider.
|
unknown
|
||
|
https://www.ag-grid.com/javascript-grid/modules/
|
unknown
|
||
|
http://openoffice.org/2004/calc
|
unknown
|
||
|
https://login.chinacloudapi.cn/common/discovery/v2.0/keys
|
unknown
|
||
|
https://www.entrust.com/)
|
unknown
|
||
|
http://momentjs.com/guides/#/warnings/add-inverted-param/
|
unknown
|
||
|
https://login.microsoftonline.us/organizations/discovery/v2.0/keys
|
unknown
|
||
|
https://nuportal.dobler.de/
|
unknown
|
||
|
https://login.microsoftonline.com/organizations/oauth2/v2.0/logout
|
unknown
|
||
|
https://login.microsoftonline.com/common/oauth2/v2.0/devicecode
|
unknown
|
||
|
https://login.chinacloudapi.cn/organizations/oauth2/v2.0/authorize
|
unknown
|
||
|
https://nuportal.dobler.de/DataServices/ApiGateway/SupplyMonitor/Version/GetVersion
|
195.4.205.65
|
||
|
https://login.microsoftonline.us
|
unknown
|
||
|
https://nuportal.dobler.de/Applications/LM/sourcesanspro-regular-webfont.53fffed2b303aa20.woff2
|
195.4.205.65
|
||
|
https://login.microsoftonline.com/common/oauth2/v2.0/logout
|
unknown
|
||
|
https://login.microsoftonline.com/organizations/
|
unknown
|
||
|
https://login.microsoftonline.us/common/
|
unknown
|
||
|
https://nuportal.dobler.de/Applications/LM/assets/unifiedAppConfig-Prod.json
|
195.4.205.65
|
||
|
https://nuportal.dobler.de/Applications/LM_HTML/
|
195.4.205.65
|
||
|
https://nuportal.dobler.de/DataServices/ApiGateway/SupplyMonitor/Configuration/PasswordPolicy
|
195.4.205.65
|
||
|
https://login.microsoftonline.com/organizations/discovery/v2.0/keys
|
unknown
|
||
|
https://login.microsoftonline.com/organizations/oauth2/v2.0/token
|
unknown
|
||
|
https://github.com/AzureAD/microsoft-authentication-library-for-js/wiki/MSAL-basics.
|
unknown
|
||
|
https://login.microsoftonline.com/common/discovery/v2.0/keys
|
unknown
|
||
|
https://login.microsoftonline.de
|
unknown
|
||
|
https://login.microsoftonline.us/consumers/v2.0/.well-known/openid-configuration
|
unknown
|
||
|
http://momentjs.com/guides/#/warnings/zone/
|
unknown
|
||
|
https://login.microsoftonline.us/common/kerberos
|
unknown
|
||
|
https://login.microsoftonline.com/organizations/oauth2/v2.0/authorize
|
unknown
|
||
|
https://www.ag-grid.com/javascript-grid-column-properties/
|
unknown
|
||
|
file:///C:/Users/user/Downloads/downloaded.pdf
|
|||
|
https://login.microsoftonline.com/consumers/oauth2/v2.0/token
|
unknown
|
||
|
https://github.com/date-fns/date-fns/blob/master/docs/upgradeGuide.md#string-arguments
|
unknown
|
||
|
https://login.chinacloudapi.cn/organizations/discovery/v2.0/keys
|
unknown
|
||
|
https://login.microsoftonline.us/organizations/oauth2/v2.0/token
|
unknown
|
||
|
https://login.chinacloudapi.cn/consumers/
|
unknown
|
||
|
https://login.chinacloudapi.cn/consumers/oauth2/v2.0/authorize
|
unknown
|
||
|
https://login.microsoftonline.us/consumers/oauth2/v2.0/token
|
unknown
|
||
|
https://nuportal.dobler.de/Applications/LM/assets/img/customer/DoblerLogo_Transparent_W400.png
|
195.4.205.65
|
||
|
https://www.ag-grid.com/javascript-data-grid/grid-options/
|
unknown
|
||
|
https://login.microsoftonline.us/common/oauth2/v2.0/token
|
unknown
|
||
|
https://login.chinacloudapi.cn/consumers/kerberos
|
unknown
|
||
|
https://login.chinacloudapi.cn/consumers/oauth2/v2.0/devicecode
|
unknown
|
||
|
https://login.chinacloudapi.cn/organizations/oauth2/v2.0/token
|
unknown
|
||
|
https://login.microsoftonline.us/consumers/oauth2/v2.0/authorize
|
unknown
|
||
|
https://login.microsoftonline.us/organizations/v2.0/.well-known/openid-configuration
|
unknown
|
||
|
https://nuportal.dobler.de/DataServices/ApiGateway/SupplyMonitor/Configuration/Clients
|
195.4.205.65
|
||
|
https://login.chinacloudapi.cn/common/v2.0/.well-known/openid-configuration
|
unknown
|
||
|
https://login.partner.microsoftonline.cn/
|
unknown
|
||
|
https://login.microsoftonline.com/consumers/oauth2/v2.0/devicecode
|
unknown
|
||
|
https://login.chinacloudapi.cn/common/
|
unknown
|
||
|
https://login.chinacloudapi.cn/common/oauth2/v2.0/logout
|
unknown
|
||
|
http://momentjs.com/timezone/docs/#/data-loading/.
|
unknown
|
||
|
http://simmeth.net/index.php/de/kontaktformular.html
|
unknown
|
||
|
https://login.microsoftonline.us/common/oauth2/v2.0/authorize
|
unknown
|
||
|
https://nuportal.dobler.de/Applications/LM/favicon.ico
|
195.4.205.65
|
||
|
http://momentjs.com/guides/#/warnings/min-max/
|
unknown
|
||
|
https://login.microsoftonline.us/common/oauth2/v2.0/devicecode
|
unknown
|
||
|
https://nuportal.dobler.de/Applications/LM/main.05dab4c8db8deb29.js
|
195.4.205.65
|
||
|
https://www.ag-grid.com/javascript-grid/packages-modules/
|
unknown
|
||
|
https://login.chinacloudapi.cn/consumers/oauth2/v2.0/logout
|
unknown
|
||
|
https://login.microsoftonline.com/common/kerberos
|
unknown
|
||
|
https://login.microsoftonline.com/consumers/oauth2/v2.0/authorize
|
unknown
|
||
|
https://login.microsoftonline.com/common/oauth2/v2.0/authorize
|
unknown
|
||
|
http://openoffice.org/2009/table
|
unknown
|
||
|
https://login.microsoftonline.us/common/discovery/v2.0/keys
|
unknown
|
||
|
https://login.chinacloudapi.cn
|
unknown
|
||
|
http://openoffice.org/2010/draw
|
unknown
|
||
|
https://login.chinacloudapi.cn/organizations/
|
unknown
|
||
|
https://login.windows-ppe.net
|
unknown
|
||
|
https://nuportal.dobler.de/DataServices/ApiGateway/SupplyMonitor/Configuration/Languages
|
195.4.205.65
|
||
|
https://aka.ms/msaljs/optional-claims
|
unknown
|
||
|
https://login.microsoftonline.com/organizations/oauth2/v2.0/devicecode
|
unknown
|
||
|
https://login.microsoftonline.com
|
unknown
|
||
|
http://momentjs.com/guides/#/warnings/js-date/
|
unknown
|
||
|
https://g.co/ng/security#xss)
|
unknown
|
||
|
https://login.microsoftonline.com/consumers/oauth2/v2.0/logout
|
unknown
|
||
|
https://login.microsoftonline.com/organizations/v2.0/.well-known/openid-configuration
|
unknown
|
||
|
https://nuportal.dobler.de/Applications/LM/styles.30c19ebfcf9be9b8.css
|
195.4.205.65
|
||
|
https://login.microsoftonline.us/consumers/oauth2/v2.0/devicecode
|
unknown
|
||
|
https://microsoftgraph.chinacloudapi.cn/oidc/userinfo
|
unknown
|
||
|
https://login.chinacloudapi.cn/common/oauth2/v2.0/authorize
|
unknown
|
||
|
https://pas.chinacloudapi.cn
|
unknown
|
||
|
https://nuportal.dobler.de/Applications/LM/assets/i18n/customer/de.json
|
195.4.205.65
|
||
|
http://momentjs.com/guides/#/warnings/define-locale/
|
unknown
|
||
|
https://login.partner.microsoftonline.cn/9188040d-6c67-4c5b-b112-36a304b66dad/v2.0
|
unknown
|
||
|
https://login.microsoftonline.us/organizations/kerberos
|
unknown
|
||
|
https://demo.simmeth.net/ApplicationsV6/SupplyMonitor/assets/Handbuch/Anwenderschulung_und_Handbuch_Lieferantenmanager_V6.pdf
|
|||
|
http://openoffice.org/2005/report
|
unknown
|
||
|
https://login.chinacloudapi.cn/organizations/v2.0/.well-known/openid-configuration
|
unknown
|
||
|
https://www.ag-grid.com/javascript-grid-icons/
|
unknown
|
||
|
https://login.microsoftonline.com/common/oauth2/v2.0/token
|
unknown
|
||
|
https://login.chinacloudapi.cn/common/oauth2/v2.0/devicecode
|
unknown
|
||
|
https://login.chinacloudapi.cn/consumers/v2.0/.well-known/openid-configuration
|
unknown
|
||
|
https://login.microsoftonline.us/common/v2.0/.well-known/openid-configuration
|
unknown
|
||
|
https://login.microsoftonline.us/consumers/kerberos
|
unknown
|
There are 90 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
nuportal.dobler.de
|
195.4.205.65
|
||
|
www.google.com
|
172.217.21.36
|
||
|
demo.simmeth.net
|
195.4.203.181
|
||
|
x1.i.lencr.org
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
195.4.205.65
|
nuportal.dobler.de
|
Germany
|
||
|
192.168.2.6
|
unknown
|
unknown
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
195.4.203.181
|
demo.simmeth.net
|
Germany
|
||
|
34.237.241.83
|
unknown
|
United States
|
||
|
172.217.21.36
|
www.google.com
|
United States
|
||
|
104.77.220.172
|
unknown
|
United States
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
aFS
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
tDIText
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
tFileName
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
tFileSource
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sFileAncestors
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sDI
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sDate
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
uFileSize
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
uPageCount
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
sAssetId
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c1
|
bisSharedFile
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
aFS
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
tDIText
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
tFileName
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
sFileAncestors
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
sDI
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
sDate
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
uFileSize
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
uPageCount
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Adobe\Adobe Acrobat\DC\AVGeneral\cRecentFiles\c2
|
bisSharedFile
|
There are 10 hidden registries, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://nuportal.dobler.de/Applications/LM/#/main
|
||
|
https://nuportal.dobler.de/Applications/LM/#/main
|
||
|
https://nuportal.dobler.de/Applications/LM/#/main
|
||
|
https://demo.simmeth.net/ApplicationsV6/SupplyMonitor/assets/Handbuch/Anwenderschulung_und_Handbuch_Lieferantenmanager_V6.pdf
|
||
|
file:///C:/Users/user/Downloads/downloaded.pdf
|
||
|
file:///C:/Users/user/Downloads/downloaded.pdf
|