SecuriteInfo.com.Heur.26690.xls
| Engine | Download Report | Detection | Info |
|---|---|---|---|
|
malicious
Score: 100
|
System: Windows 7 x64 SP1 with Office 2010 SP1 (IE 11, FF52, Chrome 57, Adobe Reader DC 15, Flash 25.0.0.127, Java 8 Update 121, .NET 4.6.2)
|
| IP | Country | Detection |
|---|---|---|
| 172.67.150.95 | United States |  |
| Name | IP | Detection |
|---|---|---|
| longisland.casa | 172.67.150.95 | |
| Name | Detection |
|---|---|
| https://longisland.casa/wp-data.php_ |  |
| https://longisland.casa/ | |
| https://longisland.casa/wp-data.phpP | |
| Click to see the 41 hidden entries | |
| http://services.msn.com/svcs/oe/certpage.asp?name=%s&email=%s&&Check | |
| http://crl.pkioverheid.nl/DomOvLatestCRL.crl0 | |
| http://www.icra.org/vocabulary/. | |
| http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous. | |
| https://lh3.googleusercontent.com/ogw/default-user=s24 | |
| http://ocsp.pki.goog/gts1o1core0 | |
| http://investor.msn.com/ | |
| http://crl.pki.goog/GTS1O1core.crl0 | |
| http://schema.org/WebPage | |
| http://www.%s.comPA | |
| http://crl.pki.goog/gsr2/gsr2.crl0? | |
| http://ocsp.entrust.net0D | |
| https://payment.fashiont/wp-data.php006 | |
| https://secure.comodo.com/CPS0 | |
| http://servername/isapibackend.dll | |
| http://www.google.co.uk/preferences?hl=en | |
| http://crl.entrust.net/2048ca.crl0 | |
| http://video.google.co.uk/?hl=en&tab=wv | |
| http://crl3.d | |
| http://pki.goog/gsr2/GTS1O1.crt0 | |
| https://www.google.co.uk/intl/en/about/products?tab=wh | |
| https://longisland.casa/wp-data.php | |
| http://investor.msn.com | |
| http://www.msnbc.com/news/ticker.txt | |
| https://lh3.googleusercontent.com/ogw/default-user=s96 | |
| https://payment.fashiont/wp-data.php | |
| http://crl.entrust.net/server1.crl0 | |
| http://ocsp.entrust.net03 | |
| https://longisland.casa/wp-data.phpA | |
| http://crl.pkioverheid.nl/DomOrganisatieLatestCRL-G2.crl0 | |
| http://www.windows.com/pctv. | |
| http://www.diginotar.nl/cps/pkioverheid0 | |
| http://www.google.co.uk/history/optout?hl=en | |
| https://payment.fashiont/wp-data.php3 | |
| https://www.google.co.uk/finance?tab=we | |
| http://ocsp.pki.goog/gsr202 | |
| http://windowsmedia.com/redir/services.asp?WMPFriendly=true | |
| http://www.hotmail.com/oe | |
| https://pki.goog/repository/0 | |
| https://longisland.casa/wp-data.phpK | |
| https://longisland.casa/wp-data.phpM | |
| Name | File Type | Hashes | Detection |
|---|---|---|---|
C:\Users\Public\STwwPD.html |
HTML document, ISO-8859 text, with very long lines | # | |
C:\Users\Public\T402TBRZ.vbs |
ASCII text, with CRLF, CR line terminators | # | |
C:\Users\Public\hlw1lp.vbs |
ASCII text, with CRLF line terminators | # | |
| Click to see the 6 hidden entries | |||
C:\Users\user\AppData\Local\Temp\71DE0000 |
data | # | |
C:\Users\user\AppData\Roaming\Microsoft\Office\Recent\Desktop.LNK |
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Read-Only, Directory, ctime=Tue Oct 17 10:04:00 2017, mtime=Sat Oct 31 06:50:39 2020, atime=Sat Oct 31 06:50:39 2020, length=12288, window=hide | # | |
C:\Users\user\AppData\Roaming\Microsoft\Office\Recent\SecuriteInfo.com.Heur.26690.LNK |
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Archive, ctime=Sat Oct 31 06:50:30 2020, mtime=Sat Oct 31 06:50:39 2020, atime=Sat Oct 31 06:50:39 2020, length=46080, window=hide | # | |
C:\Users\user\AppData\Roaming\Microsoft\Office\Recent\index.dat |
ASCII text, with CRLF line terminators | # | |
C:\Users\user\Desktop\F1DE0000 |
Applesoft BASIC program data, first line number 16 | # | |
C:\Users\Public\qB2ZZi.dat |
ASCII text, with very long lines, with no line terminators | # | |
