Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Chrome Cache Entry: 74
|
ASCII text, with no line terminators
|
downloaded
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2052 --field-trial-handle=1996,i,6054866636008663152,8076645864588389011,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://adss1.deltekenterprise.com/"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://adss1.deltekenterprise.com/
|
|||
|
https://adss1.deltekenterprise.com/webclient/vendor/js/bootstrap.js?build=6410
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/selfservice/assets/selfservice.css?buildNo=6510
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/webclient/assets/login.css
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/accounts/authVerify?operation=reset&isGina=false
|
|||
|
https://adss1.deltekenterprise.com/selfservice/assets/app_overwrite.css?buildNo=6510
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/popLayer.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/jquery.mousewheel.js?build=6410
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/adsf/js/common/components/FormFields.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/ServletAPI/i18n/getI18NKeys
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/authorization.do
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/hmac.min.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/webclient/vendor/js/jquery.js?build=6410
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/sha256.min.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/showLogin.cc
|
|||
|
https://adss1.deltekenterprise.com/styles/adsf/flat/Style.css
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/selfservice/assets/selfservice.js?buildNo=6510
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/validation.js?build=6410
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/ServletAPI/header/getHeaderElements
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/Esearch.js?build=6410
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/adsf/js/common/sso/CustomSSO.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/styles/adsf/common/jquery.mCustomScrollbar.css
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/adsf/js/common/appspane/AppsPane.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/styles/customer-styles.css?buildNo=6510
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/adsf/js/common/security-url-validator.min.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/cipher-core.min.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/images/customLogo.png
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/webclient/images/loader-sm.gif
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/adsf/js/common/JumpTo.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/CommonUtil.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/form-util.js?build=6410
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/popLayer.js?build=6410
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/selfservice/assets/vendor.js?buildNo=6510
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/webclient/vendor/js/jquery.mCustomScrollbar.concat.min.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/webclient/images/circle-dotted-loader.gif
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/styles/customer-styles.css
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/styles/styles.css
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/images/logos/ADSSPDesktop.ico
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/CommonUtil.js?build=6410
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/enc-base64.min.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/report.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/CustomLogonScript.js?build=6410
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/aes.min.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/webclient/assets/app_overwrite.css
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/adsf/js/common/WindowHandler.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/accounts/Reset
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/selfservice/assets/custom-color-theme.less
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/ValidateLogon.js?build=6410
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/pbkdf2.min.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/webclient/vendor/js/bootstrap-select.min.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/AjaxAPI.js?build=6410
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/images/ssp-sprite@2x.png?buildNo=6215
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/webclient/vendor/js/jquery.js?build=6220
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/images/Rolling.gif
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/common/LanguageList.js?build=6410
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/selfservice/assets/vendor.css?buildNo=6510
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/jsencrypt.min.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/adsf/js/common/security-core.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/adsf/js/common/ssout/SingleSignOut.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/images/png-total-img.png
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/images/logos/customLogo.png?random=1736965566405
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/core.min.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/report.js?build=6410
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/selfservice/assets/fonts/lato/Lato-Semibold.woff2
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/layout/Utils.js?build=6410
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/ServletAPI/accounts/initApplication
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/js/jquery-ui.min.js
|
34.237.98.217
|
||
|
https://adss1.deltekenterprise.com/adsf/js/common/Cookies.js
|
34.237.98.217
|
There are 58 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
www.google.com
|
142.250.186.100
|
||
|
cpuseast-pdcp1adss-pa-333753315.us-east-1.elb.amazonaws.com
|
34.237.98.217
|
||
|
adss1.deltekenterprise.com
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
35.173.156.18
|
unknown
|
United States
|
||
|
142.250.186.100
|
www.google.com
|
United States
|
||
|
192.168.2.4
|
unknown
|
unknown
|
||
|
34.237.98.217
|
cpuseast-pdcp1adss-pa-333753315.us-east-1.elb.amazonaws.com
|
United States
|
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://adss1.deltekenterprise.com/showLogin.cc
|
||
|
https://adss1.deltekenterprise.com/accounts/authVerify?operation=reset&isGina=false
|
||
|
https://adss1.deltekenterprise.com/accounts/authVerify?operation=reset&isGina=false
|
||
|
https://adss1.deltekenterprise.com/accounts/authVerify?operation=reset&isGina=false
|
||
|
https://adss1.deltekenterprise.com/accounts/authVerify?operation=reset&isGina=false
|
||
|
https://adss1.deltekenterprise.com/accounts/authVerify?operation=reset&isGina=false
|