Bestand.doc
| Full Report | Management Report | Engine | Info | Verdict | Score | Reports |
|---|---|---|---|---|---|---|
 |
System: Windows 7 x64 SP1 with Office 2010 SP2 (IE 11, FF52, Chrome 57, Adobe Reader DC 15, Flash 25.0.0.127, Java 8 Update 121, .NET 4.6.2) |
|
100/100
|
|||
 |
|
38/62
|
||||
 |
|
| IP | Country | Detection |
|---|---|---|
| 89.252.164.58 | Turkey |  |
| 173.255.195.246 | United States | |
| 5.2.136.90 | Romania | |
| Click to see the 2 hidden entries | ||
| 103.92.235.25 | India | |
| 66.153.205.191 | United States | |
| Name | IP | Detection |
|---|---|---|
| sarture.com | 173.255.195.246 | |
| hangarlastik.com | 89.252.164.58 | |
| seo.udaipurkart.com | 103.92.235.25 | |
| Click to see the 1 hidden entries | ||
| padreescapes.com | 66.153.205.191 | |
| Name | Detection |
|---|---|
| http://hangarlastik.com/cgi-sys/suspendedpage.cgi | |
| http://padreescapes.com | |
| http://5.2.136.90/1b05ye92bd1jr3/zyv623ztls/15s4sj3gl56q/ | |
| Click to see the 22 hidden entries | |
| http://hangarlastik.comp | |
| http://hangarlastik.com | |
| https://brettshawmagic.com/content/Y/ | |
| http://hangarlastik.com/cgi-bin/Ui4n/ | |
| https://cafecentral.vincoorbisdev.com/wp-admin/VZX9BU/ | |
| http://sarture.com/wp-includes/JD8/ | |
| http://sarture.com | |
| http://padreescapes.com/blog/0I/ | |
| http://seo.udaipurkart.com/rx-5700-6hnr7/Sgms/ | |
| http://seo.udaipurkart.com | |
| http://www.windows.com/pctv. |  |
| http://investor.msn.com | |
| http://www.msnbc.com/news/ticker.txt | |
| http://windowsmedia.com/redir/services.asp?WMPFriendly=true | |
| http://www.hotmail.com/oe | |
| http://www.piriform.com/cclea | |
| http://services.msn.com/svcs/oe/certpage.asp?name=%s&email=%s&&Check | |
| http://www.icra.org/vocabulary/. | |
| http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous. | |
| http://investor.msn.com/ | |
| http://www.piriform.com/ccleaner | |
| http://www.%s.comPA | |
| Name | File Type | Hashes | Detection |
|---|---|---|---|
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{9B0EF2ED-537D-406E-B057-1B1541B1D39D}.tmp |
data | # | |
C:\Users\user\AppData\Roaming\Microsoft\Crypto\RSA\S-1-5-21-966771315-3019405637-367336477-1006\f554348b930ff81505ce47f7c6b7d232_ea860e7a-a87f-4a88-92ef-38f744458171 |
data | # | |
C:\Users\user\AppData\Roaming\Microsoft\Office\Recent\Bestand.LNK |
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Archive, ctime=Wed Aug 26 14:08:15 2020, mtime=Wed Aug 26 14:08:15 2020, atime=Fri Jan 8 01:35:35 2021, length=171008, window=hide | # | |
| Click to see the 5 hidden entries | |||
C:\Users\user\AppData\Roaming\Microsoft\Office\Recent\index.dat |
ASCII text, with CRLF line terminators | # | |
C:\Users\user\AppData\Roaming\Microsoft\Templates\~$Normal.dotm |
data | # | |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\T34CJE67ZJGLFSV18T6Q.temp |
data | # | |
C:\Users\user\Desktop\~$estand.doc |
data | # | |
C:\Users\user\Lqpw_5i\F4w0osc\R95F.dll |
data | # | |
