Engine | Download Report | Detection | Info |
---|---|---|---|
|
malicious
Score: 100
|
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
|
IP | Country | Detection |
---|---|---|
104.16.154.36 | United States | |
104.16.155.36 | United States |
Name | IP | Detection |
---|---|---|
77.153.4.0.in-addr.arpa | 0.0.0.0 | |
cdn.onenote.net | 0.0.0.0 | |
bot.whatismyipaddress.com | 104.16.154.36 |
Name | Detection |
---|---|
https://bot.whatismyipaddress.com | |
http://pomf.cat/upload.phpCContent-Disposition: | |
http://bot.whatismyipaddress.com/ | |
Click to see the 18 hidden entries | |
http://bot.whatismyipaddress.comx&(q | |
https://bot.whatismyipaddress.com/ | |
http://www.nirsoft.net/ | |
http://bot.whatismyipaddress.com | |
https://bot.whatismyipaddress.comx&(qP | |
https://bot.whatismyipaddress.comx&(q(w) | |
http://crt.comodoca4.com/COMODORSADomainValidationSecureServerCA2.crt0% | |
http://ocsp.comodoca4.com0 | |
https://bot.whatismyipaddress.comx&(q(w | |
https://bot.whatismyipaddress.comx&(q(w? | |
http://crl.comodoca4.com/COMODORSADomainValidationSecureServerCA2.crl0 | |
http://pomf.cat/upload.php | |
http://ocsp.comodoca4.com0V | |
https://sectigo.com/CPS0 | |
http://pomf.cat/upload.php&https://a.pomf.cat/ | |
http://bot.whatismyipaddress.comx&(q4 | |
https://bot.whatismyipaddress.comx&(q | |
https://a.pomf.cat/ |
Name | File Type | Hashes | Detection |
---|---|---|---|
C:\Users\user\AppData\Local\Microsoft\CLR_v2.0_32\UsageLogs\RegSvcs.exe.log |
ASCII text, with CRLF line terminators | # | |
C:\Users\user\AppData\Local\Temp\d261e75d-583e-7b93-e04b-761947fad05b |
ASCII text, with no line terminators | # |