Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Chrome Cache Entry: 100
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 101
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 102
|
gzip compressed data, from Unix, original size modulo 2^32 518427
|
downloaded
|
||
|
Chrome Cache Entry: 103
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 104
|
ASCII text, with very long lines (1363), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 105
|
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
|
dropped
|
||
|
Chrome Cache Entry: 106
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 107
|
Web Open Font Format (Version 2), TrueType, length 69168, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 108
|
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
|
dropped
|
||
|
Chrome Cache Entry: 109
|
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
|
dropped
|
||
|
Chrome Cache Entry: 110
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 111
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 112
|
Unicode text, UTF-8 text, with very long lines (18213), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 113
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 114
|
JSON data
|
downloaded
|
||
|
Chrome Cache Entry: 115
|
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
|
dropped
|
||
|
Chrome Cache Entry: 116
|
ASCII text
|
dropped
|
||
|
Chrome Cache Entry: 117
|
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
|
dropped
|
||
|
Chrome Cache Entry: 118
|
ASCII text, with very long lines (829), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 119
|
gzip compressed data, from Unix, original size modulo 2^32 541929
|
downloaded
|
||
|
Chrome Cache Entry: 120
|
Unicode text, UTF-8 text, with very long lines (36993)
|
downloaded
|
||
|
Chrome Cache Entry: 121
|
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
|
dropped
|
||
|
Chrome Cache Entry: 122
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 123
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 124
|
gzip compressed data, from Unix, original size modulo 2^32 6742
|
downloaded
|
||
|
Chrome Cache Entry: 125
|
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
|
dropped
|
||
|
Chrome Cache Entry: 126
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 127
|
Web Open Font Format (Version 2), CFF, length 108952, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 128
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 129
|
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
|
dropped
|
||
|
Chrome Cache Entry: 77
|
Web Open Font Format (Version 2), TrueType, length 41073, version 1.327
|
downloaded
|
||
|
Chrome Cache Entry: 78
|
ASCII text, with very long lines (21317), with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 79
|
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
|
dropped
|
||
|
Chrome Cache Entry: 80
|
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
|
dropped
|
||
|
Chrome Cache Entry: 81
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 82
|
ASCII text, with very long lines (6299), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 83
|
Web Open Font Format (Version 2), CFF, length 61248, version 3.0
|
downloaded
|
||
|
Chrome Cache Entry: 84
|
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
|
dropped
|
||
|
Chrome Cache Entry: 85
|
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
|
dropped
|
||
|
Chrome Cache Entry: 86
|
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
|
dropped
|
||
|
Chrome Cache Entry: 87
|
Web Open Font Format (Version 2), CFF, length 48240, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 88
|
ASCII text, with very long lines (5359)
|
downloaded
|
||
|
Chrome Cache Entry: 89
|
ASCII text, with very long lines (8101), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 90
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 91
|
HTML document, ASCII text, with very long lines (5259), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 92
|
ASCII text, with very long lines (10280)
|
downloaded
|
||
|
Chrome Cache Entry: 93
|
ASCII text, with very long lines (1142), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 94
|
Web Open Font Format (Version 2), TrueType, length 324864, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 95
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 96
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 97
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 98
|
ASCII text, with very long lines (417)
|
downloaded
|
||
|
Chrome Cache Entry: 99
|
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
|
dropped
|
There are 44 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1956,i,12885240125386627005,11813151431592858060,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
--variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=2080 /prefetch:3
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "http://app.eraser.io/workspace/bk3hvlunuo62wlgcjole?origin=share?"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://app.eraser.io/workspace/bk3hvlunuo62wlgcjole?origin=share?
|
|||
|
http://www.apache.org/licenses/LICENSE-2.0
|
unknown
|
||
|
https://ad.doubleclick.net/activity;register_conversion=1;
|
unknown
|
||
|
https://stats.g.doubleclick.net/g/collect
|
unknown
|
||
|
https://www.google.com/ccm/conversion
|
unknown
|
||
|
https://google.com/ccm/form-data
|
unknown
|
||
|
https://www.google.com/ccm/form-data
|
unknown
|
||
|
http://c.pki.goog/r/r4.crl
|
142.250.72.99
|
||
|
https://google.com/pagead/form-data
|
unknown
|
||
|
http://jed.is/
|
unknown
|
||
|
https://googleads.g.doubleclick.net/pagead/viewthroughconversion
|
unknown
|
||
|
https://cct.google/taggy/agent.js
|
unknown
|
||
|
https://www.youtube.com
|
unknown
|
||
|
https://firebase.google.com/pricing/.
|
unknown
|
||
|
https://www.google.com
|
unknown
|
||
|
https://feross.org
|
unknown
|
||
|
https://ad.doubleclick.net/activity;
|
unknown
|
||
|
https://www.google.com/travel/flights/click/conversion
|
unknown
|
||
|
https://second-petal-295822-default-rtdb.firebaseio.com
|
unknown
|
||
|
https://widget.intercom.io/widget/
|
unknown
|
||
|
https://app.eraser.io/workspace/bk3hvlunuo62wlgcjole
|
|||
|
https://quilljs.com/
|
unknown
|
||
|
https://m.youtube.com
|
unknown
|
||
|
https://second-petal-295822-default-rtdb.firebaseio.com/.ws?v=5
|
35.190.39.113
|
||
|
https://github.com/jonschlinkert/is-plain-object
|
unknown
|
||
|
https://www.merchant-center-analytics.goog
|
unknown
|
||
|
https://nexus-websocket-a.intercom.io/pubsub/5-M2Q37P2RtcPov2JVKoX3ebDCs8MDJ9PQFEMLWhspSiTEqcD9jk8DE0_f11CjBLKfok0HVNQjGNl_Ldgv_hitn--7cyn5ZIlByPmi?X-Nexus-New-Client=true&X-Nexus-Version=0.14.0&user_role=visitor
|
35.174.127.31
|
||
|
https://stats.g.doubleclick.net/g/collect?v=2&
|
unknown
|
||
|
https://www.google.com/ccm/collect
|
unknown
|
||
|
https://github.com/faisalman/ua-parser-js
|
unknown
|
||
|
https://www.google.com/pagead/1p-conversion
|
unknown
|
||
|
https://securetoken.google.com/
|
unknown
|
||
|
https://adservice.google.com/pagead/regclk?
|
unknown
|
||
|
https://www.google.com/pagead/form-data
|
unknown
|
||
|
https://github.com/primer/github-syntax-light
|
unknown
|
||
|
https://eraser.io
|
unknown
|
There are 25 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
e2c83.gcp.gvt2.com
|
34.51.131.60
|
||
|
us-central1-second-petal-295822.cloudfunctions.net
|
216.239.36.54
|
||
|
widget.intercom.io
|
13.249.91.16
|
||
|
beacons-handoff.gcp.gvt2.com
|
142.250.75.163
|
||
|
second-petal-295822-default-rtdb.firebaseio.com
|
35.190.39.113
|
||
|
www.google.com
|
142.251.40.164
|
||
|
app.eraser.io
|
34.8.177.196
|
||
|
api-iam.intercom.io
|
54.198.3.158
|
||
|
nexus-websocket-a.intercom.io
|
35.174.127.31
|
||
|
beacons.gvt2.com
|
142.250.75.67
|
||
|
js.intercomcdn.com
|
108.139.47.21
|
||
|
beacons.gcp.gvt2.com
|
unknown
|
There are 2 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
54.198.3.158
|
api-iam.intercom.io
|
United States
|
||
|
192.168.2.7
|
unknown
|
unknown
|
||
|
18.208.47.123
|
unknown
|
United States
|
||
|
35.174.127.31
|
nexus-websocket-a.intercom.io
|
United States
|
||
|
192.168.2.5
|
unknown
|
unknown
|
||
|
35.190.39.113
|
second-petal-295822-default-rtdb.firebaseio.com
|
United States
|
||
|
13.249.91.16
|
widget.intercom.io
|
United States
|
||
|
34.8.177.196
|
app.eraser.io
|
United States
|
||
|
142.251.40.164
|
www.google.com
|
United States
|
||
|
108.139.47.21
|
js.intercomcdn.com
|
United States
|
||
|
216.239.36.54
|
us-central1-second-petal-295822.cloudfunctions.net
|
United States
|
There are 1 hidden IPs, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://app.eraser.io/workspace/bk3hvlunuo62wlgcjole
|
||
|
https://app.eraser.io/workspace/bk3hvlunuo62wlgcjole
|
||
|
https://app.eraser.io/workspace/bk3hvlunuo62wlgcjole
|
||
|
https://app.eraser.io/workspace/bk3hvlunuo62wlgcjole
|