Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jan 15 22:57:53 2025, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jan 15 22:57:52 2025, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 4 12:54:07 2023, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jan 15 22:57:52 2025, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jan 15 22:57:53 2025, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jan 15 22:57:52 2025, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
Chrome Cache Entry: 131
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 132
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 133
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 134
|
ASCII text, with very long lines (24745), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 135
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
||
|
Chrome Cache Entry: 136
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 137
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 138
|
ASCII text, with very long lines (65448)
|
downloaded
|
||
|
Chrome Cache Entry: 139
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 140
|
ASCII text, with very long lines (19948), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 141
|
ASCII text, with very long lines (521)
|
downloaded
|
||
|
Chrome Cache Entry: 142
|
ASCII text, with very long lines (65432)
|
dropped
|
||
|
Chrome Cache Entry: 143
|
PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 144
|
Unicode text, UTF-8 text, with very long lines (41178)
|
dropped
|
||
|
Chrome Cache Entry: 145
|
ASCII text, with very long lines (1297), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 146
|
ASCII text, with very long lines (65536), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 148
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 149
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 150
|
ASCII text, with very long lines (12331)
|
dropped
|
||
|
Chrome Cache Entry: 151
|
ASCII text, with very long lines (21229)
|
downloaded
|
||
|
Chrome Cache Entry: 152
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 153
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 154
|
PNG image data, 56 x 15, 8-bit/color RGB, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 155
|
PNG image data, 666 x 87, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 156
|
Unicode text, UTF-8 text, with very long lines (59934)
|
downloaded
|
||
|
Chrome Cache Entry: 157
|
PNG image data, 2163 x 1128, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 158
|
ASCII text, with very long lines (3138)
|
dropped
|
||
|
Chrome Cache Entry: 159
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
|
Chrome Cache Entry: 160
|
PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 161
|
ASCII text, with very long lines (1297), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 162
|
ASCII text, with very long lines (65536), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 163
|
ASCII text, with very long lines (16863), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 164
|
ASCII text, with very long lines (19948), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 165
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 166
|
Unicode text, UTF-8 text, with very long lines (59934)
|
dropped
|
||
|
Chrome Cache Entry: 167
|
ASCII text, with very long lines (58876), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 168
|
HTML document, ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 169
|
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 170
|
ASCII text, with very long lines (32740)
|
downloaded
|
||
|
Chrome Cache Entry: 171
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 172
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 173
|
C source, Unicode text, UTF-8 (with BOM) text, with very long lines (573)
|
downloaded
|
||
|
Chrome Cache Entry: 174
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 175
|
PNG image data, 311 x 174, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 176
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
|
Chrome Cache Entry: 177
|
ASCII text, with very long lines (1051)
|
downloaded
|
||
|
Chrome Cache Entry: 178
|
ASCII text, with very long lines (25246)
|
downloaded
|
||
|
Chrome Cache Entry: 179
|
Unicode text, UTF-8 text, with very long lines (7652)
|
downloaded
|
||
|
Chrome Cache Entry: 180
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 181
|
ASCII text, with very long lines (65536), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 182
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
|
Chrome Cache Entry: 183
|
ASCII text, with very long lines (36067)
|
dropped
|
||
|
Chrome Cache Entry: 184
|
Unicode text, UTF-8 text, with very long lines (12183), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 185
|
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 186
|
ASCII text, with very long lines (32739)
|
dropped
|
||
|
Chrome Cache Entry: 187
|
PNG image data, 54 x 54, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 188
|
SVG Scalable Vector Graphics image
|
dropped
|
||
|
Chrome Cache Entry: 189
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 190
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 191
|
ASCII text, with very long lines (521)
|
dropped
|
||
|
Chrome Cache Entry: 192
|
ASCII text, with very long lines (606)
|
downloaded
|
||
|
Chrome Cache Entry: 193
|
ASCII text, with very long lines (65536), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 194
|
PNG image data, 56 x 15, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 195
|
ASCII text, with very long lines (65448)
|
dropped
|
||
|
Chrome Cache Entry: 196
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
|
Chrome Cache Entry: 197
|
ASCII text, with very long lines (47520)
|
dropped
|
||
|
Chrome Cache Entry: 198
|
ASCII text, with very long lines (65432)
|
downloaded
|
||
|
Chrome Cache Entry: 199
|
ASCII text, with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 200
|
HTML document, Unicode text, UTF-8 text, with very long lines (49854)
|
downloaded
|
||
|
Chrome Cache Entry: 201
|
ASCII text, with very long lines (1993), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 202
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 203
|
ASCII text, with very long lines (10998)
|
downloaded
|
||
|
Chrome Cache Entry: 204
|
ASCII text, with very long lines (65451)
|
dropped
|
||
|
Chrome Cache Entry: 205
|
ASCII text, with very long lines (3138)
|
downloaded
|
||
|
Chrome Cache Entry: 206
|
ASCII text, with very long lines (47520)
|
downloaded
|
||
|
Chrome Cache Entry: 207
|
Unicode text, UTF-8 text, with very long lines (9208)
|
dropped
|
||
|
Chrome Cache Entry: 208
|
ASCII text, with very long lines (6105), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 209
|
ASCII text, with very long lines (24050)
|
downloaded
|
||
|
Chrome Cache Entry: 210
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 211
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 212
|
ASCII text, with very long lines (32740)
|
dropped
|
||
|
Chrome Cache Entry: 213
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 214
|
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 215
|
ASCII text, with very long lines (1051)
|
dropped
|
||
|
Chrome Cache Entry: 216
|
ASCII text, with very long lines (65451)
|
downloaded
|
||
|
Chrome Cache Entry: 217
|
ASCII text, with very long lines (58876), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 218
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 219
|
ASCII text, with very long lines (6371), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 220
|
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 221
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 222
|
Unicode text, UTF-8 text, with very long lines (12183), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 223
|
HTML document, ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 224
|
C source, Unicode text, UTF-8 (with BOM) text, with very long lines (573)
|
dropped
|
||
|
Chrome Cache Entry: 225
|
ASCII text, with very long lines (606)
|
dropped
|
||
|
Chrome Cache Entry: 226
|
ASCII text, with very long lines (10998)
|
dropped
|
||
|
Chrome Cache Entry: 227
|
ASCII text, with very long lines (25246)
|
dropped
|
||
|
Chrome Cache Entry: 228
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
Chrome Cache Entry: 229
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 230
|
ASCII text, with very long lines (16863), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 231
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
|
Chrome Cache Entry: 232
|
ASCII text, with very long lines (24745), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 233
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 234
|
ASCII text, with very long lines (1888), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 235
|
ASCII text, with very long lines (32739)
|
downloaded
|
||
|
Chrome Cache Entry: 236
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
|
Chrome Cache Entry: 237
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 238
|
HTML document, ASCII text, with very long lines (394)
|
downloaded
|
||
|
Chrome Cache Entry: 239
|
ASCII text, with very long lines (6105), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 240
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
|
Chrome Cache Entry: 241
|
ASCII text, with very long lines (6371), with no line terminators
|
dropped
|
||
|
Chrome Cache Entry: 242
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 243
|
ASCII text, with very long lines (21229)
|
dropped
|
||
|
Chrome Cache Entry: 244
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 245
|
ASCII text, with very long lines (36067)
|
downloaded
|
||
|
Chrome Cache Entry: 246
|
ASCII text, with very long lines (19759), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 247
|
Unicode text, UTF-8 text, with very long lines (41178)
|
downloaded
|
||
|
Chrome Cache Entry: 248
|
ASCII text, with very long lines (12331)
|
downloaded
|
||
|
Chrome Cache Entry: 249
|
PNG image data, 54 x 54, 8-bit colormap, non-interlaced
|
downloaded
|
There are 115 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2316 --field-trial-handle=2228,i,17018622064547941893,329337564277331505,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://allegrolokalnie.pl-32401.icu/?id=BMBnJ77991FK0gMM667DnBo6jCK822"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://allegrolokalnie.pl-32401.icu/?id=BMBnJ77991FK0gMM667DnBo6jCK822
|
 |
||
|
https://allegrolokalnie.pl-32401.icu/?id=BMBnJ77991FK0gMM667DnBo6jCK822
|
|
||
|
https://www.cloudflare.com/learning/access-management/phishing-attack/
|
|||
|
https://allegrolokalnie.pl-32401.icu/cdn-cgi/images/icon-exclamation.png?1376755637
|
104.21.112.1
|
||
|
https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
|
104.16.80.73
|
||
|
https://alb.reddit.com/rp.gif?event=PageVisit&id=t2_1upmecjq&ts=1736985500858&uuid=5a400541-1f5a-457b-842d-8103d6445f14&integration=reddit&opt_out=0&v=rdt_65e23bc4&sh=1024&sw=1280
|
151.101.129.140
|
||
|
https://ws6.qualified.com/cable?wv=9&token=37pXYrro6wCZbsU7&vu=932c3f53-2f47-4077-a27b-93041c5eddac&wu=947193f8-0fa3-45d7-b5b4-19be53b67618&ca=2025-01-15T23%3A58%3A21.554Z&tz=America%2FNew_York&bis=5&referrer=https%3A%2F%2Fallegrolokalnie.pl-32401.icu%2F&pv=1&fv=2025-01-15-960c1486b9&iml=false&bl=en-US&ic=true
|
104.18.17.5
|
||
|
https://www.cloudflare.com/page-data/learning/access-management/what-is-identity-and-access-management/page-data.json
|
104.16.123.96
|
||
|
https://id.rlcdn.com/464526.gif
|
35.244.174.68
|
||
|
https://www.cloudflare.com/component---src-components-page-page-template-tsx-c7ec2b92ba43b220ad2d.js
|
104.16.123.96
|
||
|
https://edge.adobedc.net/ee/irl1/v1/interact?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=38f9bc9a-2f0e-42ef-8b13-d286265becab
|
63.140.62.17
|
||
|
https://cf-assets.www.cloudflare.com/slt3lc6tev37/7kPjwE4j84Rj5KSJRPRptE/177ac67e5aa1838880c3beffb1d
|
unknown
|
||
|
https://eventhub.goldcast.io/?eventHubId=da18a2b0-617d-4767-b139-eb386a0db8ff
|
unknown
|
||
|
https://px.ads.linkedin.com/collect/?pid=28851&fmt=gif
|
unknown
|
||
|
https://cloudflareinc.demdex.net/dest5.html?d_nsid=0
|
34.240.156.246
|
||
|
https://app.qualified.com/w/1/37pXYrro6wCZbsU7/events/trace
|
104.18.17.5
|
||
|
https://allegrolokalnie.pl-32401.icu/cdn-cgi/styles/cf.errors.css
|
104.21.112.1
|
||
|
https://cf-assets.www.cloudflare.com/slt3lc6tev37/33pNtP0fhgTrjCgk4Ahdyo/c3b0e163c89573659e2898c2aa8
|
unknown
|
||
|
https://www.cloudflare.com/application-services/products/argo-smart-routing/)
|
unknown
|
||
|
https://ot.www.cloudflare.com/public/vendor/onetrust/scripttemplates/202407.2.0/otBannerSdk.js
|
104.16.123.96
|
||
|
https://cf-assets.www.cloudflare.com/slt3lc6tev37/6i8d186tH2iueYvgwVRaJf/ab27fd31033bdd31aea69065480
|
unknown
|
||
|
https://www.cloudflare.com/saas/)
|
unknown
|
||
|
https://www.cloudflare.com/page-data/index/page-data.json
|
104.16.123.96
|
||
|
https://w3-reporting-nel.reddit.com/reports
|
151.101.1.140
|
||
|
https://www.cloudflare.com/static/z/i.js
|
104.16.123.96
|
||
|
https://assets.adobedtm.com/extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement_Module_Acti
|
unknown
|
||
|
https://www.cloudflare.com/application-services/products/waf/)
|
unknown
|
||
|
https://www.cloudflare.com/data-localization/)
|
unknown
|
||
|
https://www.porsche-holding.com/en)
|
unknown
|
||
|
https://cf-assets.www.cloudflare.com/slt3lc6tev37/4sfL2iS6H10uq2waT6ehym/ad18b77fa469ce07f23d22e19ab
|
unknown
|
||
|
https://www.cloudflare.com/application-services/solutions/certificate-lifecycle-management/)
|
unknown
|
||
|
https://r.logr-ingest.com/i?a=ykolez%2Fcloudflarecom&r=6-01946c67-52e4-7194-bc15-5c4580865856&t=b25fe821-6d67-42ce-a8a3-8136b56b57f1&s=0&rs=0%2Ct&ct=95.36073476248434
|
104.198.23.205
|
||
|
https://www.cloudflare.com/ddos/)
|
unknown
|
||
|
https://www.cloudflare.com/learning/access-management/security-service-edge-sse/)
|
unknown
|
||
|
https://www.cloudflare.com/static/z/s.js?z=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
|
104.16.123.96
|
||
|
https://www.cloudflare.com/application-services/solutions/)
|
unknown
|
||
|
https://www.cloudflare.com/page-data/sq/d/3934964512.json
|
104.16.123.96
|
||
|
https://t.co/1/i/adsct?bci=4&dv=America%2FNew_York%26en-US%2Cen%26Google%20Inc.%26Win32%26255%261280%261024%264%2624%261280%26984%260%26na&eci=3&event=%7B%7D&event_id=d5599e4c-102b-4674-9d73-864132adcaa2&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=68acda80-b2e8-4a0a-b473-92d5271432ae&restricted_data_use=restrict_optimization&tw_document_href=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&tw_iframe_status=0&txn_id=nvldc&type=javascript&version=2.3.31
|
172.66.0.227
|
||
|
https://cf-assets.www.cloudflare.com/slt3lc6tev37/2pqDYkVg8K6GqUXO2x7Izl/2d2a67e1288dbd9fc5eadcd48b5
|
unknown
|
||
|
https://schema.org/FAQPage
|
unknown
|
||
|
https://cdn.logr-ingest.com/logger-1.min.js
|
104.21.112.1
|
||
|
https://www.cloudflare.com/page-data/plans/page-data.json
|
104.16.123.96
|
||
|
https://www.cloudflare.com/developer-platform/workers/)
|
unknown
|
||
|
https://scout.salesloft.com/i
|
34.192.226.125
|
||
|
https://glovoapp.com/)
|
unknown
|
||
|
https://challenges.cloudflare.com/turnstile/v0/b/e0c90b6a3ed1/api.js
|
104.18.95.41
|
||
|
https://cf-assets.www.cloudflare.com/slt3lc6tev37/42XkFj9Uywkm8Jahf62RtP/0563d91cc1fa54da2bf2c50bad8
|
unknown
|
||
|
https://www.cloudflare.com/application-services/products/ssl-for-saas-providers/)
|
unknown
|
||
|
https://www.pedidosya.com/)
|
unknown
|
||
|
https://tag.demandbase.com/1be41a80498a5b73.min.js
|
18.245.46.22
|
||
|
https://www.cloudflare.com/the-net/platform-consolidation-costs
|
unknown
|
||
|
https://www.cloudflare.com/the-net/illuminate/fighting-phishing/
|
unknown
|
||
|
https://www.e-food.gr/)
|
unknown
|
||
|
https://www.deliveryhero.com/)
|
unknown
|
||
|
https://a.nel.cloudflare.com/report/v4?s=w7wnh2028MAfoku7WGBXgcoOCoMWO3D%2BeqNZY0uHbClBcfcQlqOdjLhVKrm2AHjmULAlZYaWZsL4A2wV9%2BerONb7ylsJScqcPbu6NCFPa4WT34j2sbk2OexZ53%2F5Swh6gSI0BIkjOmWbxC%2FX28Ff
|
35.190.80.1
|
||
|
https://scout.us4.salesloft.com
|
unknown
|
||
|
https://ws6.qualified.com/cable?wv=9&token=37pXYrro6wCZbsU7&vu=932c3f53-2f47-4077-a27b-93041c5eddac&wu=947193f8-0fa3-45d7-b5b4-19be53b67618&ca=2025-01-15T23%3A58%3A21.554Z&tz=America%2FNew_York&bis=5&referrer=https%3A%2F%2Fallegrolokalnie.pl-32401.icu%2F&pv=1&fv=2025-01-15-960c1486b9&iml=false&bl=en-US&ic=false
|
104.18.17.5
|
||
|
https://tag-logger.demandbase.com/bg9s?x-amz-cf-id=H0UKdmckKelLlKrDTj_OR7y0pTChTO1bzHHVHjSbBTT9l6GvbjEAWQ==&api-version=v3
|
18.173.205.104
|
||
|
https://www.cloudflare.com/application-services/).
|
unknown
|
||
|
https://stats.g.doubleclick.net/g/collect?t=dc&aip=1&_r=3&v=1&_v=j86&tid=G-PGV1K2BN4M&cid=9e2ac42c-1abf-487f-89b5-a7a74ac398e2&_u=KGDAAEADQAAAAC%7E&z=952351606
|
74.125.71.154
|
||
|
https://cf-assets.www.cloudflare.com/slt3lc6tev37/6bNeiYhSx0RGvbzxS5Fi8c/3ff83bcc36e86e85170201f8264b2c1c/banner-new.png
|
104.16.124.96
|
||
|
https://www.cloudflare.com/page-data/plans/enterprise/contact/page-data.json
|
104.16.123.96
|
||
|
https://api.www.cloudflare.com/api/v1/marketo/form/2459
|
104.16.123.96
|
||
|
https://www.cloudflare.com/img/learning/security/threats/phishing-attack/diagram-phishing-attack.png
|
104.16.123.96
|
||
|
https://cf-assets.www.cloudflare.com/slt3lc6tev37/7dreyVsx0FLF3WjCQvWrVT/a9bb912272cd7f8bc9a294f768b
|
unknown
|
||
|
https://schema.org/Answer
|
unknown
|
||
|
https://allegrolokalnie.pl-32401.icu/favicon.ico
|
104.21.112.1
|
||
|
https://cf-assets.www.cloudflare.com/slt3lc6tev37/6PDJxm9gpmdAMR1JSTQRSl/1ad54dc5651ec6d7edd26c37857
|
unknown
|
||
|
https://www.cloudflare.com/a06cff934e9579536ce1c10bad21c1d6d7f63ae0-90484db4602d401d94ca.js
|
104.16.123.96
|
||
|
https://cf-assets.www.cloudflare.com/slt3lc6tev37/6bNeiYhSx0RGvbzxS5Fi8c/3ff83bcc36e86e85170201f8264
|
unknown
|
||
|
https://www.cloudflare.com/static/z/s.js?z=
|
unknown
|
||
|
https://www.cloudflare.com
|
unknown
|
||
|
https://www.yemeksepeti.com/)
|
unknown
|
||
|
https://scout-cdn.salesloft.com/sl.js
|
unknown
|
||
|
https://static.ads-twitter.com/uwt.js
|
146.75.120.157
|
||
|
https://cf-assets.www.cloudflare.com/slt3lc6tev37/7a6m6bwj1zKlcQ7JHe2981/fefe33b4f70020feb9afd168ea9
|
unknown
|
||
|
https://www.cloudflare.com/5xx-error-landing
|
unknown
|
||
|
https://www.cloudflare.com/174-242772ef10d8d161ae24.js
|
104.16.123.96
|
||
|
https://www.cloudflare.com/learning/bots/what-is-bot-management/)
|
unknown
|
||
|
https://eventhub.goldcast.io/?eventHubId=0dc82d0e-bb7c-4aa6-b853-a096322ed37c
|
unknown
|
||
|
https://www.cloudflare.com/app-9b4cbf0f5c3a56b8766d.js
|
104.16.123.96
|
||
|
https://www.cloudflare.com/connectivity-cloud/)
|
unknown
|
||
|
https://www.cloudflare.com/lp/securitybuildersworkshops/
|
unknown
|
||
|
https://developers.marketo.com/MunchkinLicense.pdf
|
unknown
|
||
|
https://www.cloudflare.com/learning/ddos/glossary/web-application-firewall-waf/)
|
unknown
|
||
|
https://inc42.com/buzz/phonepe-maintains-lead-in-upi-with-49-market-share-in-jan-2022-whatsapp-at-0-
|
unknown
|
||
|
https://www.cloudflare.com/page-data/app-data.json
|
104.16.123.96
|
||
|
https://github.com/js-cookie/js-cookie
|
unknown
|
||
|
https://cf-assets.www.cloudflare.com/slt3lc6tev37/2yRCuqitoxUATzrEEpNPeA/49494485e77713ddfaf56b7b338
|
unknown
|
||
|
https://staging.mrk.cfdata.org/mrk/redwood-blade-repository/
|
unknown
|
||
|
https://www.cloudflare.com/learning/access-management/what-is-remote-access-security/).
|
unknown
|
||
|
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=9029d0301ac5c327&lang=auto
|
104.18.95.41
|
||
|
https://cf-assets.www.cloudflare.com/slt3lc6tev37/3Vjcj5r39nYQK9FAZ6tx1i/15048294cd989a6e460a61e56ad
|
unknown
|
||
|
https://www.cloudflare.com/cdn-cgi/rum?
|
104.16.123.96
|
||
|
https://www.cloudflare.com/webpack-runtime-4c72ecef988f809df573.js
|
104.16.123.96
|
||
|
https://www.cloudflare.com/page-data/sq/d/3199558980.json
|
104.16.123.96
|
||
|
https://a.nel.cloudflare.com/report/v4?s=WhG3izte%2Fi3j4PfQFVcfeqT7AMUItkK8CFC9Ycai%2BPvPvImJ9iXhl0PUk2zhFipUaSfZ3A3WfqbDEUPFTzvspZSnEAiqqiigW4gstdm3v5wRwRPBxee%2FqYm72WvzJ0rgQtQZX%2FaVZvA%3D
|
35.190.80.1
|
||
|
https://performance.radar.cloudflare.com/beacon.js
|
104.18.30.78
|
||
|
https://hungerstation.com/)
|
unknown
|
||
|
https://js.qualified.com
|
unknown
|
||
|
https://www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&v=1&_v=j86&tid=G-PGV1K2BN4M&cid=9e2ac42c-1abf-487f-89b5-a7a74ac398e2&_u=KGDAAEADQAAAAC%7E&z=952351606&slf_rd=1
|
172.217.23.100
|
There are 90 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
allegrolokalnie.pl-32401.icu
|
104.21.112.1
|
|
|
|
prod-default.lb.logrocket.network
|
104.198.23.205
|
||
|
static.cloudflareinsights.com
|
104.16.80.73
|
||
|
s.dsp-prod.demandbase.com
|
34.96.71.22
|
||
|
scout.us1.salesloft.com
|
34.192.226.125
|
||
|
platform.twitter.map.fastly.net
|
146.75.120.157
|
||
|
stats.g.doubleclick.net
|
74.125.71.154
|
||
|
ot.www.cloudflare.com
|
104.16.123.96
|
||
|
tag.demandbase.com
|
18.245.46.22
|
||
|
t.co
|
172.66.0.227
|
||
|
performance.radar.cloudflare.com
|
104.18.30.78
|
||
|
www.google.com
|
142.250.185.132
|
||
|
demdex.net.ssl.sc.omtrdc.net
|
63.140.62.222
|
||
|
api.www.cloudflare.com
|
104.16.123.96
|
||
|
dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com
|
52.214.247.153
|
||
|
partners-1864332697.us-east-1.elb.amazonaws.com
|
34.192.10.58
|
||
|
cf-assets.www.cloudflare.com
|
104.16.124.96
|
||
|
id.rlcdn.com
|
35.244.174.68
|
||
|
tag-logger.demandbase.com
|
18.173.205.104
|
||
|
a.nel.cloudflare.com
|
35.190.80.1
|
||
|
s.twitter.com
|
104.244.42.67
|
||
|
js.qualified.com
|
104.18.16.5
|
||
|
ws6.qualified.com
|
104.18.17.5
|
||
|
www.cloudflare.com
|
104.16.123.96
|
||
|
cdn.logr-ingest.com
|
104.21.112.1
|
||
|
reddit.map.fastly.net
|
151.101.129.140
|
||
|
dsum-sec.casalemedia.com
|
104.18.26.193
|
||
|
challenges.cloudflare.com
|
104.18.95.41
|
||
|
adobedc.net.ssl.sc.omtrdc.net
|
63.140.62.17
|
||
|
api.company-target.com
|
13.32.110.23
|
||
|
713-xsc-918.mktoresp.com
|
192.28.144.124
|
||
|
app.qualified.com
|
104.18.17.5
|
||
|
alb.reddit.com
|
unknown
|
||
|
static.ads-twitter.com
|
unknown
|
||
|
scout.salesloft.com
|
unknown
|
||
|
scout-cdn.salesloft.com
|
unknown
|
||
|
w3-reporting-nel.reddit.com
|
unknown
|
||
|
cm.everesttech.net
|
unknown
|
||
|
cdn.bizibly.com
|
unknown
|
||
|
cloudflareinc.demdex.net
|
unknown
|
||
|
adobedc.demdex.net
|
unknown
|
||
|
cdn.bizible.com
|
unknown
|
||
|
dpm.demdex.net
|
unknown
|
||
|
s.company-target.com
|
unknown
|
||
|
assets.adobedtm.com
|
unknown
|
||
|
www.linkedin.com
|
unknown
|
||
|
pixel.rubiconproject.com
|
unknown
|
||
|
px.ads.linkedin.com
|
unknown
|
||
|
munchkin.marketo.net
|
unknown
|
||
|
analytics.twitter.com
|
unknown
|
||
|
r.logr-ingest.com
|
unknown
|
||
|
snap.licdn.com
|
unknown
|
||
|
partners.tremorhub.com
|
unknown
|
||
|
edge.adobedc.net
|
unknown
|
There are 44 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
104.21.112.1
|
allegrolokalnie.pl-32401.icu
|
United States
|
|
|
|
104.21.48.1
|
unknown
|
United States
|
||
|
192.28.144.124
|
713-xsc-918.mktoresp.com
|
United States
|
||
|
18.66.102.127
|
unknown
|
United States
|
||
|
192.168.2.5
|
unknown
|
unknown
|
||
|
104.16.80.73
|
static.cloudflareinsights.com
|
United States
|
||
|
104.198.23.205
|
prod-default.lb.logrocket.network
|
United States
|
||
|
151.101.65.140
|
unknown
|
United States
|
||
|
63.140.62.222
|
demdex.net.ssl.sc.omtrdc.net
|
United States
|
||
|
104.18.30.78
|
performance.radar.cloudflare.com
|
United States
|
||
|
18.173.205.127
|
unknown
|
United States
|
||
|
35.190.80.1
|
a.nel.cloudflare.com
|
United States
|
||
|
104.16.124.96
|
cf-assets.www.cloudflare.com
|
United States
|
||
|
162.159.140.229
|
unknown
|
United States
|
||
|
34.240.156.246
|
unknown
|
United States
|
||
|
13.32.110.23
|
api.company-target.com
|
United States
|
||
|
34.96.71.22
|
s.dsp-prod.demandbase.com
|
United States
|
||
|
34.192.10.58
|
partners-1864332697.us-east-1.elb.amazonaws.com
|
United States
|
||
|
104.18.95.41
|
challenges.cloudflare.com
|
United States
|
||
|
63.140.62.17
|
adobedc.net.ssl.sc.omtrdc.net
|
United States
|
||
|
104.18.16.5
|
js.qualified.com
|
United States
|
||
|
54.77.158.239
|
unknown
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
172.217.23.100
|
unknown
|
United States
|
||
|
52.214.247.153
|
dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com
|
United States
|
||
|
146.75.120.157
|
platform.twitter.map.fastly.net
|
Sweden
|
||
|
35.244.174.68
|
id.rlcdn.com
|
United States
|
||
|
23.23.209.126
|
unknown
|
United States
|
||
|
74.125.71.154
|
stats.g.doubleclick.net
|
United States
|
||
|
216.58.206.36
|
unknown
|
United States
|
||
|
34.192.226.125
|
scout.us1.salesloft.com
|
United States
|
||
|
18.173.205.104
|
tag-logger.demandbase.com
|
United States
|
||
|
104.16.79.73
|
unknown
|
United States
|
||
|
18.245.46.22
|
tag.demandbase.com
|
United States
|
||
|
104.18.27.193
|
unknown
|
United States
|
||
|
104.244.42.67
|
s.twitter.com
|
United States
|
||
|
142.250.185.132
|
www.google.com
|
United States
|
||
|
104.18.26.193
|
dsum-sec.casalemedia.com
|
United States
|
||
|
151.101.1.140
|
unknown
|
United States
|
||
|
104.18.17.5
|
ws6.qualified.com
|
United States
|
||
|
151.101.129.140
|
reddit.map.fastly.net
|
United States
|
||
|
172.66.0.227
|
t.co
|
United States
|
||
|
104.16.123.96
|
ot.www.cloudflare.com
|
United States
|
There are 33 hidden IPs, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://allegrolokalnie.pl-32401.icu/?id=BMBnJ77991FK0gMM667DnBo6jCK822
|
|
|
|
https://www.cloudflare.com/learning/access-management/phishing-attack/
|
||
|
https://www.cloudflare.com/learning/access-management/phishing-attack/
|
||
|
https://www.cloudflare.com/learning/access-management/phishing-attack/
|
||
|
https://www.cloudflare.com/learning/access-management/phishing-attack/
|
||
|
https://www.cloudflare.com/learning/access-management/phishing-attack/
|
||
|
https://www.cloudflare.com/learning/access-management/phishing-attack/
|
||
|
https://www.cloudflare.com/learning/access-management/phishing-attack/
|
||
|
https://www.cloudflare.com/learning/access-management/phishing-attack/
|
||
|
https://www.cloudflare.com/learning/access-management/phishing-attack/
|
||
|
https://www.cloudflare.com/learning/access-management/phishing-attack/
|
There are 1 hidden doms, click here to show them.