Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Chrome Cache Entry: 100
|
PNG image data, 2080 x 2080, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 101
|
PNG image data, 2842 x 1620, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 102
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 103
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 104
|
Audio file with ID3 version 2.3.0, contains:\012- MPEG ADTS, layer III, v2, 64 kbps, 22.05 kHz, Monaural
|
downloaded
|
||
|
Chrome Cache Entry: 105
|
ASCII text, with very long lines (13521), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 106
|
PNG image data, 2842 x 1620, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 107
|
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 108
|
ASCII text, with very long lines (2306), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 109
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 110
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 111
|
ASCII text, with CRLF, LF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 112
|
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 113
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 114
|
PNG image data, 13 x 13, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 115
|
ASCII text, with very long lines (65299)
|
downloaded
|
||
|
Chrome Cache Entry: 116
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 117
|
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 47x46, components 3
|
downloaded
|
||
|
Chrome Cache Entry: 118
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 119
|
HTML document, ASCII text, with very long lines (321), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 120
|
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106,
resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2023:09:18 22:26:56], progressive, precision 8, 1063x753,
components 3
|
downloaded
|
||
|
Chrome Cache Entry: 121
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 122
|
ASCII text, with very long lines (5955)
|
downloaded
|
||
|
Chrome Cache Entry: 123
|
PNG image data, 13 x 13, 8-bit/color RGB, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 124
|
ASCII text, with very long lines (339), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 125
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 126
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 127
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 128
|
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 180x39, components
3
|
dropped
|
||
|
Chrome Cache Entry: 129
|
ASCII text, with very long lines (18229), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 130
|
ASCII text, with very long lines (11139), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 131
|
HTML document, ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 132
|
ASCII text, with very long lines (24751), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 133
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 134
|
PNG image data, 200 x 191, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 135
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
|
Chrome Cache Entry: 136
|
Web Open Font Format (Version 2), TrueType, length 10520, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 137
|
PNG image data, 166 x 92, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 138
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 139
|
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 140
|
Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 56 kbps, 44.1 kHz, Monaural
|
downloaded
|
||
|
Chrome Cache Entry: 141
|
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106,
resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2023:09:18 22:26:56], progressive, precision 8, 1063x753,
components 3
|
dropped
|
||
|
Chrome Cache Entry: 142
|
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 47x46, components 3
|
dropped
|
||
|
Chrome Cache Entry: 143
|
HTML document, ASCII text, with very long lines (321), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 144
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 145
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 76
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 77
|
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 78
|
Web Open Font Format (Version 2), TrueType, length 66624, version 4.262
|
downloaded
|
||
|
Chrome Cache Entry: 79
|
assembler source, ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 80
|
ASCII text, with very long lines (65472)
|
downloaded
|
||
|
Chrome Cache Entry: 81
|
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 180x39, components
3
|
downloaded
|
||
|
Chrome Cache Entry: 82
|
Unicode text, UTF-8 text, with very long lines (65458)
|
downloaded
|
||
|
Chrome Cache Entry: 83
|
PNG image data, 2080 x 2080, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 84
|
ASCII text, with very long lines (904)
|
downloaded
|
||
|
Chrome Cache Entry: 85
|
ASCII text, with very long lines (32180)
|
downloaded
|
||
|
Chrome Cache Entry: 86
|
SVG Scalable Vector Graphics image
|
dropped
|
||
|
Chrome Cache Entry: 87
|
ASCII text, with very long lines (27303)
|
downloaded
|
||
|
Chrome Cache Entry: 88
|
PNG image data, 200 x 191, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 89
|
ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 90
|
ASCII text, with very long lines (65326)
|
downloaded
|
||
|
Chrome Cache Entry: 91
|
PNG image data, 166 x 92, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 92
|
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 93
|
Unicode text, UTF-8 text, with very long lines (65464)
|
downloaded
|
||
|
Chrome Cache Entry: 94
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 95
|
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 96
|
ASCII text, with very long lines (18324), with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 97
|
PNG image data, 13 x 13, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 98
|
PNG image data, 13 x 13, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 99
|
ASCII text, with very long lines (9929), with no line terminators
|
downloaded
|
There are 61 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2008 --field-trial-handle=1972,i,15931051166966863976,17640404060978799904,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://28marmic11.z13.web.core.windows.net/"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://28marmic11.z13.web.core.windows.net/
|
 |
||
|
http://fontawesome.io
|
unknown
|
||
|
https://maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
|
104.18.10.207
|
||
|
https://embed.tawk.to/_s/v4/app/660147be42c/js/twk-vendor.js
|
104.22.24.131
|
||
|
https://stats.g.doubleclick.net/g/collect
|
unknown
|
||
|
https://cdn.jsdelivr.net/npm/bootstrap
|
unknown
|
||
|
https://vsa75.tawk.to/s/?k=6605f90cef55153d257104b8&cver=0&pop=false&asver=918&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NTkwZDZkOTBmZjYzNzQwMzJiYWE0NjUiLCJ2aWQiOiI2NTkwZDZkOTBmZjYzNzQwMzJiYWE0NjUtdU5ObUlBcnU1aWRnMnlzN1NXVVV5Iiwic2lkIjoiNjYwNWY5MGNlZjU1MTUzZDI1NzEwNGI4IiwiaWF0IjoxNzExNjY3NDY4LCJleHAiOjE3MTE2NjkyNjgsImp0aSI6IjIwa0dtaVFtenRtTk92bVU4U1p6VCJ9.Roc-B7XiJMCaHt8UKoes34PEONz4HYFQK9QD4s6nr02rSgeA_51T4gQbpzTj064FSfVEfQmleVwzO51IWXGTuQ&EIO=3&transport=websocket&__t=Ow7LF8A
|
172.67.38.66
|
||
|
https://embed.tawk.to/_s/v4/app/660147be42c/js/twk-main.js
|
104.22.24.131
|
||
|
https://embed.tawk.to/_s/v4/app/660147be42c/js/twk-chunk-vendors.js
|
104.22.24.131
|
||
|
https://embed.tawk.to/_s/v4/app/660147be42c/js/twk-object-values-polyfill.js
|
unknown
|
||
|
about:blank
|
|||
|
https://www.google.com
|
unknown
|
||
|
https://cdn.jsdelivr.net/npm/bootstrap@4.5.3/dist/js/bootstrap.bundle.min.js
|
151.101.129.229
|
||
|
https://github.com/twbs/bootstrap/graphs/contributors)
|
unknown
|
||
|
https://vsa11.tawk.to/s/?k=6605f90cef55153d257104b8&cver=0&pop=false&asver=918&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NTkwZDZkOTBmZjYzNzQwMzJiYWE0NjUiLCJ2aWQiOiI2NTkwZDZkOTBmZjYzNzQwMzJiYWE0NjUtdU5ObUlBcnU1aWRnMnlzN1NXVVV5Iiwic2lkIjoiNjYwNWY5MGNlZjU1MTUzZDI1NzEwNGI4IiwiaWF0IjoxNzExNjY3NDY4LCJleHAiOjE3MTE2NjkyNjgsImp0aSI6IjIwa0dtaVFtenRtTk92bVU4U1p6VCJ9.Roc-B7XiJMCaHt8UKoes34PEONz4HYFQK9QD4s6nr02rSgeA_51T4gQbpzTj064FSfVEfQmleVwzO51IWXGTuQ&EIO=3&transport=websocket&__t=Ow7LDgM
|
172.67.38.66
|
||
|
https://embed.tawk.to/_s/v4/app/660147be42c/js/twk-app.js
|
104.22.24.131
|
||
|
https://embed.tawk.to/_s/v4/app/660147be42c/js/twk-iterator-polyfill.js
|
unknown
|
||
|
https://va.tawk.to/v1/session/start
|
104.22.24.131
|
||
|
https://maxcdn.bootstrapcdn.com/font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0
|
104.18.10.207
|
||
|
https://www.tawk.to/?utm_source=tawk-messenger&utm_medium=link&utm_campaign=referral&utm_term=6590d6
|
unknown
|
||
|
https://cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js
|
104.17.24.14
|
||
|
https://vsa84.tawk.to/s/?k=6605f90cef55153d257104b8&cver=0&pop=false&asver=918&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NTkwZDZkOTBmZjYzNzQwMzJiYWE0NjUiLCJ2aWQiOiI2NTkwZDZkOTBmZjYzNzQwMzJiYWE0NjUtdU5ObUlBcnU1aWRnMnlzN1NXVVV5Iiwic2lkIjoiNjYwNWY5MGNlZjU1MTUzZDI1NzEwNGI4IiwiaWF0IjoxNzExNjY3NDY4LCJleHAiOjE3MTE2NjkyNjgsImp0aSI6IjIwa0dtaVFtenRtTk92bVU4U1p6VCJ9.Roc-B7XiJMCaHt8UKoes34PEONz4HYFQK9QD4s6nr02rSgeA_51T4gQbpzTj064FSfVEfQmleVwzO51IWXGTuQ&EIO=3&transport=websocket&__t=Ow7LFYE
|
104.22.24.131
|
||
|
https://embed.tawk.to/_s/v4/app/660147be42c/
|
unknown
|
||
|
https://github.com/twbs/bootstrap/blob/main/LICENSE)
|
unknown
|
||
|
https://vsa113.tawk.to/s/?k=6605f90cef55153d257104b8&cver=0&pop=false&asver=918&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NTkwZDZkOTBmZjYzNzQwMzJiYWE0NjUiLCJ2aWQiOiI2NTkwZDZkOTBmZjYzNzQwMzJiYWE0NjUtdU5ObUlBcnU1aWRnMnlzN1NXVVV5Iiwic2lkIjoiNjYwNWY5MGNlZjU1MTUzZDI1NzEwNGI4IiwiaWF0IjoxNzExNjY3NDY4LCJleHAiOjE3MTE2NjkyNjgsImp0aSI6IjIwa0dtaVFtenRtTk92bVU4U1p6VCJ9.Roc-B7XiJMCaHt8UKoes34PEONz4HYFQK9QD4s6nr02rSgeA_51T4gQbpzTj064FSfVEfQmleVwzO51IWXGTuQ&EIO=3&transport=websocket&__t=Ow7LDNU
|
104.22.25.131
|
||
|
https://embed.tawk.to/_s/v4/app/660147be42c/js/twk-entries-polyfill.js
|
unknown
|
||
|
https://embed.tawk.to/_s/v4/app/660147be42c/js/twk-arr-find-polyfill.js
|
unknown
|
||
|
https://embed.tawk.to/_s/v4/assets/fonts/tawk-font-icon-2.woff2?55755728=
|
104.22.24.131
|
||
|
https://adservice.google.com/pagead/regclk
|
unknown
|
||
|
https://va.tawk.to/v1/widget-settings?propertyId=6590d6d90ff6374032baa465&widgetId=1hiusegq1&sv=null
|
104.22.24.131
|
||
|
https://getbootstrap.com/)
|
unknown
|
||
|
https://embed.tawk.to/_s/v4/app/660147be42c/js/twk-chunk-common.js
|
104.22.24.131
|
||
|
https://cct.google/taggy/agent.js
|
unknown
|
||
|
http://fontawesome.io/license
|
unknown
|
||
|
https://embed.tawk.to/_s/v4/app/660147be42c/languages/en.js
|
104.22.24.131
|
||
|
https://embed.tawk.to/_s/v4/app/660147be42c/css/min-widget.css
|
104.22.24.131
|
||
|
https://embed.tawk.to/_s/v4/app/660147be42c/js/twk-chunk-9294da6c.js
|
104.22.24.131
|
||
|
https://embed.tawk.to/_s/v4/app/660147be42c/js/twk-runtime.js
|
104.22.24.131
|
||
|
https://embed.tawk.to/_s/v4/app/660147be42c/js/twk-chunk-2c776523.js
|
104.22.24.131
|
||
|
https://td.doubleclick.net
|
unknown
|
||
|
https://embed.tawk.to/_s/v4/app/660147be42c/js/twk-chunk-f1565420.js
|
104.22.24.131
|
||
|
https://www.merchant-center-analytics.goog
|
unknown
|
||
|
https://embed.tawk.to/_s/v4/app/660147be42c/js/twk-event-polyfill.js
|
unknown
|
||
|
https://stats.g.doubleclick.net/g/collect?v=2&
|
unknown
|
||
|
https://vsa81.tawk.to/s/?k=6605f90cef55153d257104b8&cver=0&pop=false&asver=918&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NTkwZDZkOTBmZjYzNzQwMzJiYWE0NjUiLCJ2aWQiOiI2NTkwZDZkOTBmZjYzNzQwMzJiYWE0NjUtdU5ObUlBcnU1aWRnMnlzN1NXVVV5Iiwic2lkIjoiNjYwNWY5MGNlZjU1MTUzZDI1NzEwNGI4IiwiaWF0IjoxNzExNjY3NDY4LCJleHAiOjE3MTE2NjkyNjgsImp0aSI6IjIwa0dtaVFtenRtTk92bVU4U1p6VCJ9.Roc-B7XiJMCaHt8UKoes34PEONz4HYFQK9QD4s6nr02rSgeA_51T4gQbpzTj064FSfVEfQmleVwzO51IWXGTuQ&EIO=3&transport=websocket&__t=Ow7LEjZ
|
104.22.25.131
|
||
|
https://embed.tawk.to/_s/v4/app/660147be42c/css/bubble-widget.css
|
104.22.24.131
|
||
|
https://embed.tawk.to/_s/v4/assets/images/attention-grabbers/168-r-br.svg
|
104.22.24.131
|
||
|
https://cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/css/bootstrap.min.css
|
151.101.129.229
|
||
|
https://embed.tawk.to/6590d6d90ff6374032baa465/1hiusegq1
|
104.22.24.131
|
||
|
https://embed.tawk.to/_s/v4/app/660147be42c/js/twk-promise-polyfill.js
|
unknown
|
There are 39 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
jsdelivr.map.fastly.net
|
151.101.129.229
|
||
|
embed.tawk.to
|
104.22.24.131
|
||
|
va.tawk.to
|
104.22.24.131
|
||
|
vsa11.tawk.to
|
172.67.38.66
|
||
|
vsa113.tawk.to
|
104.22.25.131
|
||
|
vsa84.tawk.to
|
104.22.24.131
|
||
|
vsa75.tawk.to
|
172.67.38.66
|
||
|
cdnjs.cloudflare.com
|
104.17.24.14
|
||
|
vsa81.tawk.to
|
104.22.25.131
|
||
|
maxcdn.bootstrapcdn.com
|
104.18.10.207
|
||
|
www.google.com
|
142.251.111.99
|
||
|
fp2e7a.wpc.phicdn.net
|
192.229.211.108
|
||
|
cdn.jsdelivr.net
|
unknown
|
There are 3 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
104.17.24.14
|
cdnjs.cloudflare.com
|
United States
|
||
|
142.251.111.99
|
www.google.com
|
United States
|
||
|
104.18.10.207
|
maxcdn.bootstrapcdn.com
|
United States
|
||
|
151.101.129.229
|
jsdelivr.map.fastly.net
|
United States
|
||
|
104.22.25.131
|
vsa113.tawk.to
|
United States
|
||
|
192.168.2.4
|
unknown
|
unknown
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
172.67.38.66
|
vsa11.tawk.to
|
United States
|
||
|
104.22.24.131
|
embed.tawk.to
|
United States
|
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://28marmic11.z13.web.core.windows.net/
|
|
|
|
https://28marmic11.z13.web.core.windows.net/
|
|
|
|
https://28marmic11.z13.web.core.windows.net/
|
|
|
|
about:blank
|
||
|
about:blank
|