Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Mar 28 14:32:30 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Mar 28 14:32:30 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Mar 28 14:32:30 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Mar 28 14:32:30 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Mar 28 14:32:30 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
Chrome Cache Entry: 131
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 132
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
|
Chrome Cache Entry: 133
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 134
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
|
Chrome Cache Entry: 135
|
ASCII text, with very long lines (27581)
|
downloaded
|
||
|
Chrome Cache Entry: 136
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 137
|
RIFF (little-endian) data, Web/P image
|
dropped
|
||
|
Chrome Cache Entry: 138
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 139
|
ASCII text, with very long lines (744), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 140
|
ASCII text, with very long lines (3351), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 141
|
Web Open Font Format (Version 2), TrueType, length 15072, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 142
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 143
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 144
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 145
|
PNG image data, 285 x 285, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 146
|
HTML document, ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 147
|
RIFF (little-endian) data, Web/P image, VP8 encoding, 302x79, Suserng: [none]x[none], YUV color, decoders should clamp
|
downloaded
|
||
|
Chrome Cache Entry: 148
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 149
|
PNG image data, 734 x 732, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 150
|
PNG image data, 285 x 285, 8-bit colormap, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 151
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
|
Chrome Cache Entry: 152
|
PNG image data, 285 x 285, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 153
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 154
|
Unicode text, UTF-8 text, with very long lines (11130), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 155
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 156
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 157
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 158
|
PNG image data, 40 x 30, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 159
|
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, orientation=upper-left], progressive, precision
8, 1000x600, components 3
|
dropped
|
||
|
Chrome Cache Entry: 160
|
PNG image data, 309 x 309, 8-bit/color RGB, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 161
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 162
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 163
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
|
Chrome Cache Entry: 164
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
|
Chrome Cache Entry: 165
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
|
Chrome Cache Entry: 166
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 167
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 168
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 169
|
PNG image data, 285 x 285, 8-bit colormap, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 170
|
PNG image data, 285 x 285, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 171
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 172
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
|
Chrome Cache Entry: 173
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 174
|
ASCII text, with very long lines (697)
|
downloaded
|
||
|
Chrome Cache Entry: 175
|
PNG image data, 285 x 285, 8-bit colormap, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 176
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 177
|
M3U playlist, ASCII text
|
dropped
|
||
|
Chrome Cache Entry: 178
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 179
|
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, orientation=upper-left], progressive, precision
8, 1000x600, components 3
|
downloaded
|
||
|
Chrome Cache Entry: 180
|
M3U playlist, ASCII text
|
dropped
|
||
|
Chrome Cache Entry: 181
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 182
|
ASCII text, with very long lines (757), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 183
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 184
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 185
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 186
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 187
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 188
|
M3U playlist, ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 189
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 190
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 191
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 192
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 193
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 194
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 195
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 196
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 197
|
ASCII text, with very long lines (27581)
|
downloaded
|
||
|
Chrome Cache Entry: 198
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 199
|
RIFF (little-endian) data, Web/P image
|
dropped
|
||
|
Chrome Cache Entry: 200
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 201
|
ASCII text, with very long lines (59820)
|
downloaded
|
||
|
Chrome Cache Entry: 202
|
PNG image data, 285 x 285, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 203
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 204
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 302x79, components
3
|
dropped
|
||
|
Chrome Cache Entry: 205
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 206
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 207
|
OpenType font data
|
downloaded
|
||
|
Chrome Cache Entry: 208
|
PNG image data, 285 x 285, 8-bit colormap, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 209
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 210
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 211
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 212
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 213
|
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
|
dropped
|
||
|
Chrome Cache Entry: 214
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 215
|
ASCII text, with very long lines (632), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 216
|
PNG image data, 24 x 24, 8-bit/color RGB, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 217
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 218
|
HTML document, ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 219
|
RIFF (little-endian) data, Web/P image
|
dropped
|
||
|
Chrome Cache Entry: 220
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 221
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 222
|
ASCII text, with very long lines (15113), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 223
|
M3U playlist, ASCII text, with very long lines (390)
|
downloaded
|
||
|
Chrome Cache Entry: 224
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 225
|
ASCII text, with very long lines (56400)
|
downloaded
|
||
|
Chrome Cache Entry: 226
|
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
|
downloaded
|
||
|
Chrome Cache Entry: 227
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 228
|
PNG image data, 285 x 285, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 229
|
PNG image data, 152 x 110, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 230
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 231
|
PNG image data, 285 x 285, 8-bit colormap, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 232
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
|
Chrome Cache Entry: 233
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 234
|
ASCII text, with very long lines (1525)
|
downloaded
|
||
|
Chrome Cache Entry: 235
|
HTML document, ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 236
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc60.3.100", baseline, precision
8, 640x360, components 3
|
downloaded
|
||
|
Chrome Cache Entry: 237
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 238
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 239
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 240
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 241
|
M3U playlist, ASCII text, with very long lines (390)
|
dropped
|
||
|
Chrome Cache Entry: 242
|
PNG image data, 285 x 285, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 243
|
ASCII text, with very long lines (457)
|
downloaded
|
||
|
Chrome Cache Entry: 244
|
RIFF (little-endian) data, Web/P image
|
downloaded
|
||
|
Chrome Cache Entry: 245
|
HTML document, Unicode text, UTF-8 text, with very long lines (383)
|
downloaded
|
||
|
Chrome Cache Entry: 246
|
ASCII text, with very long lines (32014)
|
downloaded
|
||
|
Chrome Cache Entry: 247
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 248
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 249
|
OpenType font data
|
downloaded
|
||
|
Chrome Cache Entry: 250
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 251
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 252
|
M3U playlist, ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 253
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 254
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc60.3.100", baseline, precision
8, 640x360, components 3
|
dropped
|
||
|
Chrome Cache Entry: 255
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 256
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 257
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 258
|
PNG image data, 285 x 285, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 259
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 260
|
MPEG transport stream data
|
dropped
|
||
|
Chrome Cache Entry: 261
|
ASCII text, with very long lines (20915)
|
downloaded
|
||
|
Chrome Cache Entry: 262
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 263
|
MPEG transport stream data
|
downloaded
|
||
|
Chrome Cache Entry: 264
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 265
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 266
|
PNG image data, 285 x 285, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 267
|
PNG image data, 152 x 110, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 268
|
PNG image data, 285 x 285, 8-bit colormap, non-interlaced
|
downloaded
|
There are 135 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://content.amac.us/?m=ff1Z8iQrULAL24m6HV3KXgLVd6tjSdDrf&r=https://www.lcrhtrk.com/LSK646/3M7TGPW/?sub1=4956
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2164 --field-trial-handle=1944,i,11673831875815532020,17885596405937093231,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US
--service-sandbox-type=audio --mojo-platform-channel-handle=3376 --field-trial-handle=1944,i,11673831875815532020,17885596405937093231,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://content.amac.us/?m=ff1Z8iQrULAL24m6HV3KXgLVd6tjSdDrf&r=https://www.lcrhtrk.com/LSK646/3M7TGPW/?sub1=4956
|
 |
||
|
https://stat.youniverssl.com/js/cscript.js?v=1
|
104.18.43.34
|
||
|
https://thehealthyfat.com/theme/css/brightcove.css
|
104.18.36.41
|
||
|
https://github.com/carhartl/jquery-cookie
|
unknown
|
||
|
https://cdn.gundrymd.com/fonts/Figtree-BoldItalic.ttf)
|
unknown
|
||
|
https://www.redditstatic.com/ads/pixel.js
|
unknown
|
||
|
https://cdn.gundrymd.com/fonts/Figtree-SemiBold.ttf)
|
unknown
|
||
|
https://cf-images.us-east-1.prod.boltdns.net/v1/jit/6058004206001/889ce7c3-0bea-4321-912e-2602207d49e4/main/640x360/22m6s173ms/match/image.jpg
|
108.138.64.66
|
||
|
https://gundrymd.com/terms
|
unknown
|
||
|
https://www2.thehealthyfat.com/cid/7013w000002gIMCAA2?subid1=16d4e78f422d4c1a86b9a01e5a6ed86e&subid2=393&subid3=4956&subid5=everflow
|
172.64.151.215
|
||
|
https://www2.thehealthyfat.com/assets/img/gundry-logo.jpg
|
172.64.151.215
|
||
|
https://cdn.gundrymd.com/images/PRlogos-mobile.png
|
172.64.144.175
|
||
|
https://q.quora.com/_/ad/
|
unknown
|
||
|
https://edge.api.brightcove.com/playback/v1/accounts/6058004206001/videos/6346077553112
|
151.101.130.27
|
||
|
https://www.google.com
|
unknown
|
||
|
https://thehealthyfat.com/theme/js/brightcove.js
|
104.18.36.41
|
||
|
https://cdn.gundrymd.com/images/reviews_profile_cropped/jason.png
|
172.64.144.175
|
||
|
https://tr.snapchat.com/cm/s?bt=1d53c387&pnid=140&cb=1711639957940&u_scsid=f756ec57-7279-4e11-820b-7adcc810144d&u_sclid=39ffd9f5-7fc3-431d-b5fe-c483b5ebc4e9
|
35.190.43.134
|
||
|
https://cdn.gundrymd.com/fonts/Figtree-Italic.ttf)
|
unknown
|
||
|
https://cdn.gundrymd.com/fonts/Figtree-SemiBoldItalic.ttf)
|
unknown
|
||
|
https://github.com/krux/postscribe/blob/master/LICENSE.
|
unknown
|
||
|
https://cdn.gundrymd.com/images/reviews_profile_cropped/savannah.png
|
172.64.144.175
|
||
|
https://cdn.gundrymd.com/fonts/TiemposHeadline-Medium.otf);font-weight:500;font-style:normal
|
unknown
|
||
|
https://cdn.gundrymd.com/images/favicon.ico
|
172.64.144.175
|
||
|
https://bcboltgoldenh-a.akamaihd.net/media/v1/hls/v4/clear/6058004206001/889ce7c3-0bea-4321-912e-260
|
unknown
|
||
|
https://cdn.gundrymd.com/images/PRlogos-desktop.png
|
172.64.144.175
|
||
|
https://cdn.gundrymd.com/fonts/Figtree-Black.ttf)
|
unknown
|
||
|
https://players.brightcove.net/6058004206001/default_default/index.min.js
|
unknown
|
||
|
https://tr6.snapchat.com/p
|
35.190.43.134
|
||
|
https://cdn.taboola.com/libtrc/unip/
|
unknown
|
||
|
https://pixel.tapad.com/idsync/ex/push/check?partner_id=2884&partner_url=https%3A%2F%2Ftr.snapchat.com%2Fcm%2Fp%3Frand%3D1711487309234%26pnid%3D140%26pcid%3D%24%7BTA_DEVICE_ID%7D
|
34.111.113.62
|
||
|
https://adservice.google.com/pagead/regclk
|
unknown
|
||
|
https://cdn.gundrymd.com/fonts/RedHatText-VariableFont_wght.ttf);font-weight:500;font-style:normal
|
unknown
|
||
|
http://www.klim.co.nzhttp://www.klim.co.nz/licensing.phpTiempos
|
unknown
|
||
|
https://cct.google/taggy/agent.js
|
unknown
|
||
|
https://thehealthyfat.com/theme/css/variables.css
|
104.18.36.41
|
||
|
https://static.ads-twitter.com/uwt.js
|
unknown
|
||
|
https://cdn.gundrymd.com/images/reviews_profile_cropped/janine.png
|
172.64.144.175
|
||
|
https://www.lcrhtrk.com:443/LSK646/3M7TGPW/?sub1=4956&dderh=74bef7874defed9101066f49ae82d484
|
unknown
|
||
|
https://cdn.gundrymd.com/images/MCT-Thumbnail.jpg
|
172.64.144.175
|
||
|
https://manifest.prod.boltdns.net/manifest/v1/hls/v4/clear/6058004206001/889ce7c3-0bea-4321-912e-2602207d49e4/d5d867f6-74a4-47a8-8a89-700e3881acf3/10s/rendition.m3u8?fastly_token=NjYwNWNlYzJfNzI5YmQxNDBkNGIzN2U0YjljMzAxYzk0Mzc0NDc2Y2NkNTUzNzM3ZDUzMGM5ZWQ0MDdjMDA5NzlmZjg0ZGRjYg%3D%3D
|
151.101.194.27
|
||
|
https://thehealthyfat.com/240325a/video/js/video.js
|
104.18.36.41
|
||
|
https://manifest.prod.boltdns.net/manifest/v1/hls/v4/clear/6058004206001/889ce7c3-0bea-4321-912e-2602207d49e4/10s/master.m3u8?fastly_token=NjYwNWVhNWNfMDZhYmMzMTVmMTM3NmYxN2VhYzMwYmEzNGRlOTQzZDEwYWQ1ODM0ZTcyODU5YTM2MGM4NjEwZjczNjgwOTA2Nw%3D%3D
|
151.101.194.27
|
||
|
http://gundrymd.com/privacy/
|
unknown
|
||
|
https://cdn.gundrymd.com/fonts/Figtree-Bold.ttf)
|
unknown
|
||
|
https://tr.snapchat.com/p
|
35.190.43.134
|
||
|
https://pixel.tapad.com/idsync/ex/push?partner_id=2884&partner_url=https%3A%2F%2Ftr.snapchat.com%2Fcm%2Fp%3Frand%3D1711487309234%26pnid%3D140%26pcid%3D%24%7BTA_DEVICE_ID%7D
|
34.111.113.62
|
||
|
https://a.quora.com/qevents.js
|
unknown
|
||
|
https://cdn.gundrymd.com/fonts/TiemposHeadline-Light.otf);font-weight:500;font-style:normal
|
unknown
|
||
|
https://vjs.zencdn.net/vttjs/0.15.3/vtt.global.min.js
|
151.101.2.217
|
||
|
https://beacon.krxd.net/event.gif?event_id=NqKvCG4b&event_type=default&company_id=4772303201
|
54.148.66.155
|
||
|
https://manifest.prod.boltdns.net/manifest/v1/hls/v4/clear/6058004206001/889ce7c3-0bea-4321-912e-2602207d49e4/aaf673d1-b447-4aa0-9b85-f3db84b5288c/10s/rendition.m3u8?fastly_token=NjYwNWNlYzJfZjZhMzU0YWQ3OGZkZDYzMjczNzUzMmJiYjUwNTU4ZTAxZGRhNTg1YzljZTk2Nzc5YjA5ODc2ZjA2NzdiMGI1ZA%3D%3D
|
151.101.194.27
|
||
|
https://thehealthyfat.com/theme/js/network.js
|
104.18.36.41
|
||
|
https://www.lcrhtrk.com/LSK646/3M7TGPW/?sub1=4956&dderh=74bef7874defed9101066f49ae82d484
|
34.107.202.36
|
||
|
https://sc-static.net/scevent.min.js
|
3.162.129.245
|
||
|
https://in.getclicky.com/in.php?site_id=101386809&type=ping&res=1280x1024&lang=en-US&tz=Europe%2FZurich&tc=&ck=0&hm=no&x=6e5z5t
|
104.16.224.240
|
||
|
https://cdn.gundrymd.com/fonts/Figtree-ExtraBoldItalic.ttf)
|
unknown
|
||
|
https://cdn.gundrymd.com/fonts/TiemposHeadline-Medium.otf
|
172.64.144.175
|
||
|
https://cdn.gundrymd.com/images/MCT-Thumbnail.jpg)
|
unknown
|
||
|
https://github.com/videojs/vtt.js)
|
unknown
|
||
|
http://www.klim.co.nzhttp://www.klim.co.nz/licensing.phpCopyright
|
unknown
|
||
|
https://cdn.gundrymd.com/fonts/TiemposHeadline-Light.otf
|
172.64.144.175
|
||
|
https://www2.thehealthyfat.com/proxy/funnel/stats/alternsave/?event=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
|
172.64.151.215
|
||
|
https://thehealthyfat.com/js/jquery.cookie.js
|
104.18.36.41
|
||
|
https://cdn.gundrymd.com/images/reviews_profile_cropped/kristi.png
|
172.64.144.175
|
||
|
https://stat.youniverssl.com/js/fp.min.js
|
104.18.43.34
|
||
|
https://thehealthyfat.com/theme/js/videoHelpers.js
|
104.18.36.41
|
||
|
https://cdn.gundrymd.com/images/reviews_profile_cropped/dania.png
|
172.64.144.175
|
||
|
https://tr.snapchat.com/cm/p?rand=1711487309234&pnid=140&pcid=0dbdd01a-1005-4816-9b0f-1549476d8ccf
|
35.190.43.134
|
||
|
https://s.pinimg.com/ct/core.js
|
unknown
|
||
|
https://manifest.prod.boltdns.net/manifest/v1/hls/v4/clear/6058004206001/889ce7c3-0bea-4321-912e-260
|
unknown
|
||
|
https://thehealthyfat.com/theme/css/fonts.css
|
104.18.36.41
|
||
|
https://cdn.gundrymd.com/fonts/Figtree-Medium.ttf)
|
unknown
|
||
|
https://cdn.gundrymd.com/images/reviews_profile_cropped/laurie.png
|
172.64.144.175
|
||
|
http://www.klim.co.nzhttp://www.klim.co.nz/licensing.php
|
unknown
|
||
|
https://cdn.gundrymd.com/fonts/Figtree-BlackItalic.ttf)
|
unknown
|
||
|
https://tr.snapchat.com/config/com/3bec163e-0fe5-43e1-a44c-76bee364a17f.js?v=3.12.0-2402271815
|
35.190.43.134
|
||
|
https://thehealthyfat.com/theme/css/colors.css
|
104.18.36.41
|
||
|
https://tr.snapchat.com/cm/i?pid=3bec163e-0fe5-43e1-a44c-76bee364a17f&u_scsid=454b95f9-38f0-4a51-98e3-7da26352c6c6&u_sclid=d5d94624-52fe-454d-bda7-e044e9ed8adf
|
|||
|
https://in.getclicky.com/in.php?site_id=101386809&type=ping&res=1280x1024&lang=en-US&tz=Europe%2FZurich&tc=&ck=0&hm=no&x=6wtmci
|
104.16.224.240
|
||
|
https://cdn.gundrymd.com/images/speaker2.png
|
172.64.144.175
|
||
|
https://cdn.gundrymd.com/fonts/RedHatText-Bold.ttf);font-weight:500;font-style:normal
|
unknown
|
||
|
https://cdn.gundrymd.com/images/Playbutton.png
|
172.64.144.175
|
||
|
https://static.getclicky.com/101386809.js
|
104.16.225.240
|
||
|
https://cdn.gundrymd.com/images/reviews_profile_cropped/danny.png
|
172.64.144.175
|
||
|
https://www2.thehealthyfat.com/assets/js/site.js
|
172.64.151.215
|
||
|
https://thehealthyfat.com/240325a/video/css/video.css
|
104.18.36.41
|
||
|
https://googleads.g.doubleclick.net
|
unknown
|
||
|
https://thehealthyfat.com/theme/css/general.css
|
104.18.36.41
|
||
|
https://cdn.gundrymd.com/fonts/Figtree-LightItalic.ttf)
|
unknown
|
||
|
https://cdn.gundrymd.com/fonts/Lora-Mediums.ttf);font-weight:500;font-style:normal
|
unknown
|
||
|
https://cdn.gundrymd.com/fonts/Figtree-Light.ttf)
|
unknown
|
||
|
https://cdn.gundrymd.com/fonts/Figtree-MediumItalic.ttf)
|
unknown
|
||
|
https://cdn.gundrymd.com/images/reviews_profile_cropped/mia.png
|
172.64.144.175
|
||
|
https://ad.doubleclick.net
|
unknown
|
||
|
https://cdn.gundrymd.com/images/speaker.png
|
172.64.144.175
|
||
|
https://cdn.gundrymd.com/fonts/Figtree-ExtraBold.ttf)
|
unknown
|
||
|
https://www2.thehealthyfat.com/assets/img/phone.png
|
172.64.151.215
|
||
|
https://td.doubleclick.net
|
unknown
|
||
|
https://cdn.gundrymd.com/fonts/RedHatText-Regular.ttf);font-weight:500;font-style:normal
|
unknown
|
||
|
https://content.amac.us/favicon.ico
|
54.219.161.110
|
There are 90 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
pixel.tapad.com
|
34.111.113.62
|
||
|
static.getclicky.com
|
104.16.225.240
|
||
|
sc-static.net
|
3.162.129.245
|
||
|
metrics.brightcove.com
|
35.244.232.184
|
||
|
www.lcrhtrk.com
|
34.107.202.36
|
||
|
dh29jf0q5erm3.cloudfront.net
|
108.138.64.66
|
||
|
stat.youniverssl.com
|
104.18.43.34
|
||
|
brightcove.map.fastly.net
|
151.101.130.27
|
||
|
in.getclicky.com
|
104.16.224.240
|
||
|
www2.thehealthyfat.com
|
172.64.151.215
|
||
|
dualstack.brightcove.map.fastly.net
|
151.101.194.27
|
||
|
amac-content.e.alterian.net
|
54.219.161.110
|
||
|
cdn.gundrymd.com
|
172.64.144.175
|
||
|
www.google.com
|
142.251.16.105
|
||
|
gcp.api.sc-gw.com
|
35.190.43.134
|
||
|
dualstack.osff.map.fastly.net
|
151.101.2.217
|
||
|
usc1-gcp-v61.api.sc-gw.com
|
35.190.43.134
|
||
|
thehealthyfat.com
|
104.18.36.41
|
||
|
prod-pdx-beacon-1406086907.us-west-2.elb.amazonaws.com
|
54.148.66.155
|
||
|
cf-images.us-east-1.prod.boltdns.net
|
unknown
|
||
|
bcboltgoldenh-a.akamaihd.net
|
unknown
|
||
|
edge.api.brightcove.com
|
unknown
|
||
|
manifest.prod.boltdns.net
|
unknown
|
||
|
tr.snapchat.com
|
unknown
|
||
|
players.brightcove.net
|
unknown
|
||
|
beacon.krxd.net
|
unknown
|
||
|
tr6.snapchat.com
|
unknown
|
||
|
content.amac.us
|
unknown
|
||
|
vjs.zencdn.net
|
unknown
|
There are 19 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
104.18.43.34
|
stat.youniverssl.com
|
United States
|
||
|
151.101.194.27
|
dualstack.brightcove.map.fastly.net
|
United States
|
||
|
151.101.2.27
|
unknown
|
United States
|
||
|
192.168.2.16
|
unknown
|
unknown
|
||
|
35.244.232.184
|
metrics.brightcove.com
|
United States
|
||
|
104.18.36.41
|
thehealthyfat.com
|
United States
|
||
|
108.138.64.66
|
dh29jf0q5erm3.cloudfront.net
|
United States
|
||
|
151.101.66.27
|
unknown
|
United States
|
||
|
104.16.224.240
|
in.getclicky.com
|
United States
|
||
|
151.101.130.27
|
brightcove.map.fastly.net
|
United States
|
||
|
35.190.43.134
|
gcp.api.sc-gw.com
|
United States
|
||
|
172.64.151.215
|
www2.thehealthyfat.com
|
United States
|
||
|
142.251.16.105
|
www.google.com
|
United States
|
||
|
34.111.113.62
|
pixel.tapad.com
|
United States
|
||
|
151.101.2.217
|
dualstack.osff.map.fastly.net
|
United States
|
||
|
54.148.66.155
|
prod-pdx-beacon-1406086907.us-west-2.elb.amazonaws.com
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
54.219.161.110
|
amac-content.e.alterian.net
|
United States
|
||
|
104.16.225.240
|
static.getclicky.com
|
United States
|
||
|
34.107.202.36
|
www.lcrhtrk.com
|
United States
|
||
|
172.64.144.175
|
cdn.gundrymd.com
|
United States
|
||
|
3.162.129.245
|
sc-static.net
|
United States
|
||
|
108.138.64.76
|
unknown
|
United States
|
There are 13 hidden IPs, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://content.amac.us/?m=ff1Z8iQrULAL24m6HV3KXgLVd6tjSdDrf&r=https://www.lcrhtrk.com/LSK646/3M7TGPW/?sub1=4956
|
||
|
https://thehealthyfat.com/240325a/video/video.php?origexperimentalOrig=true&step=1&funnelSTPId=a0q3w00000DbgqFAAR&origsplitTestingFunnelIdOrig=a0w3w00001prbHLAAY&origuidOrig=mctwellness_vsl_240326&origspidOrig=a0w3w00001prbHLAAY&step=1&origdsidOrig=a0v3w00000JftnQAAR&origmainFunnelIdOrig=a0q3w00000DbgqEAAR&origExternalOrig=true&origExternalIDOrig=a0q3w00000DbgqEAAR&genericUrl=os220817a_ap-mctwellness_vsl_240326&orignameOrig=os220817a_ap-mctwellness_vsl_240326&origbrandOrig=Gundry%20MD&business_unit=a00f400000dk8tnaab&n=dbtcr&utm_campaign=gmd-db-mctwellness-dbeml-all-qqq&utm_campaign_id=7013w000002gIMCAA2&utm_source=dbtcr&subid1=16d4e78f422d4c1a86b9a01e5a6ed86e&subid2=393&subid3=4956&subid5=everflow&sessionid=125470360025
|
||
|
https://thehealthyfat.com/240325a/video/video.php?origexperimentalOrig=true&step=1&funnelSTPId=a0q3w00000DbgqFAAR&origsplitTestingFunnelIdOrig=a0w3w00001prbHLAAY&origuidOrig=mctwellness_vsl_240326&origspidOrig=a0w3w00001prbHLAAY&step=1&origdsidOrig=a0v3w00000JftnQAAR&origmainFunnelIdOrig=a0q3w00000DbgqEAAR&origExternalOrig=true&origExternalIDOrig=a0q3w00000DbgqEAAR&genericUrl=os220817a_ap-mctwellness_vsl_240326&orignameOrig=os220817a_ap-mctwellness_vsl_240326&origbrandOrig=Gundry%20MD&business_unit=a00f400000dk8tnaab&n=dbtcr&utm_campaign=gmd-db-mctwellness-dbeml-all-qqq&utm_campaign_id=7013w000002gIMCAA2&utm_source=dbtcr&subid1=16d4e78f422d4c1a86b9a01e5a6ed86e&subid2=393&subid3=4956&subid5=everflow&sessionid=125470360025
|
||
|
https://thehealthyfat.com/240325a/video/video.php?origexperimentalOrig=true&step=1&funnelSTPId=a0q3w00000DbgqFAAR&origsplitTestingFunnelIdOrig=a0w3w00001prbHLAAY&origuidOrig=mctwellness_vsl_240326&origspidOrig=a0w3w00001prbHLAAY&step=1&origdsidOrig=a0v3w00000JftnQAAR&origmainFunnelIdOrig=a0q3w00000DbgqEAAR&origExternalOrig=true&origExternalIDOrig=a0q3w00000DbgqEAAR&genericUrl=os220817a_ap-mctwellness_vsl_240326&orignameOrig=os220817a_ap-mctwellness_vsl_240326&origbrandOrig=Gundry%20MD&business_unit=a00f400000dk8tnaab&n=dbtcr&utm_campaign=gmd-db-mctwellness-dbeml-all-qqq&utm_campaign_id=7013w000002gIMCAA2&utm_source=dbtcr&subid1=16d4e78f422d4c1a86b9a01e5a6ed86e&subid2=393&subid3=4956&subid5=everflow&sessionid=125470360025
|
||
|
https://thehealthyfat.com/240325a/video/video.php?origexperimentalOrig=true&step=1&funnelSTPId=a0q3w00000DbgqFAAR&origsplitTestingFunnelIdOrig=a0w3w00001prbHLAAY&origuidOrig=mctwellness_vsl_240326&origspidOrig=a0w3w00001prbHLAAY&step=1&origdsidOrig=a0v3w00000JftnQAAR&origmainFunnelIdOrig=a0q3w00000DbgqEAAR&origExternalOrig=true&origExternalIDOrig=a0q3w00000DbgqEAAR&genericUrl=os220817a_ap-mctwellness_vsl_240326&orignameOrig=os220817a_ap-mctwellness_vsl_240326&origbrandOrig=Gundry%20MD&business_unit=a00f400000dk8tnaab&n=dbtcr&utm_campaign=gmd-db-mctwellness-dbeml-all-qqq&utm_campaign_id=7013w000002gIMCAA2&utm_source=dbtcr&subid1=16d4e78f422d4c1a86b9a01e5a6ed86e&subid2=393&subid3=4956&subid5=everflow&sessionid=125470360025
|
||
|
https://thehealthyfat.com/240325a/video/video.php?origexperimentalOrig=true&step=1&funnelSTPId=a0q3w00000DbgqFAAR&origsplitTestingFunnelIdOrig=a0w3w00001prbHLAAY&origuidOrig=mctwellness_vsl_240326&origspidOrig=a0w3w00001prbHLAAY&step=1&origdsidOrig=a0v3w00000JftnQAAR&origmainFunnelIdOrig=a0q3w00000DbgqEAAR&origExternalOrig=true&origExternalIDOrig=a0q3w00000DbgqEAAR&genericUrl=os220817a_ap-mctwellness_vsl_240326&orignameOrig=os220817a_ap-mctwellness_vsl_240326&origbrandOrig=Gundry%20MD&business_unit=a00f400000dk8tnaab&n=dbtcr&utm_campaign=gmd-db-mctwellness-dbeml-all-qqq&utm_campaign_id=7013w000002gIMCAA2&utm_source=dbtcr&subid1=16d4e78f422d4c1a86b9a01e5a6ed86e&subid2=393&subid3=4956&subid5=everflow&sessionid=125470360025
|
||
|
https://thehealthyfat.com/240325a/video/video.php?origexperimentalOrig=true&step=1&funnelSTPId=a0q3w00000DbgqFAAR&origsplitTestingFunnelIdOrig=a0w3w00001prbHLAAY&origuidOrig=mctwellness_vsl_240326&origspidOrig=a0w3w00001prbHLAAY&step=1&origdsidOrig=a0v3w00000JftnQAAR&origmainFunnelIdOrig=a0q3w00000DbgqEAAR&origExternalOrig=true&origExternalIDOrig=a0q3w00000DbgqEAAR&genericUrl=os220817a_ap-mctwellness_vsl_240326&orignameOrig=os220817a_ap-mctwellness_vsl_240326&origbrandOrig=Gundry%20MD&business_unit=a00f400000dk8tnaab&n=dbtcr&utm_campaign=gmd-db-mctwellness-dbeml-all-qqq&utm_campaign_id=7013w000002gIMCAA2&utm_source=dbtcr&subid1=16d4e78f422d4c1a86b9a01e5a6ed86e&subid2=393&subid3=4956&subid5=everflow&sessionid=125470360025
|
||
|
https://tr.snapchat.com/cm/i?pid=3bec163e-0fe5-43e1-a44c-76bee364a17f&u_scsid=454b95f9-38f0-4a51-98e3-7da26352c6c6&u_sclid=d5d94624-52fe-454d-bda7-e044e9ed8adf
|