IOC Report
https://prezi.com/i/rx6p99-v72pt/

loading gif

Files

File Path
Type
Category
Malicious
C:\Users\user\AppData\Local\Temp\Outlook Logging\OUTLOOK_16_0_13929_20386-20230320T2313240919-260.etl
data
modified
C:\Users\user\Documents\Outlook Files\Outlook Data File - NoEmail.pst
data
dropped
Chrome Cache Entry: 184
ASCII text, with very long lines (1490)
downloaded
Chrome Cache Entry: 185
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 186
TrueType Font data, digitally signed, 19 tables, 1st "DSIG", 23 names, Macintosh, Font data copyright Google 2011RobotoBoldGoogle:Roboto:2011Roboto BoldVersion 1.00000; 2011Robot
downloaded
Chrome Cache Entry: 187
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 188
ASCII text, with very long lines (2572), with no line terminators
downloaded
Chrome Cache Entry: 189
PNG image data, 88 x 23, 8-bit/color RGB, non-interlaced
dropped
Chrome Cache Entry: 190
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 191
Web Open Font Format (Version 2), TrueType, length 40516, version 1.0
downloaded
Chrome Cache Entry: 192
ASCII text, with very long lines (45430), with no line terminators
downloaded
Chrome Cache Entry: 193
ASCII text
downloaded
Chrome Cache Entry: 194
ASCII text, with very long lines (65046)
downloaded
Chrome Cache Entry: 195
ASCII text, with very long lines (33359), with no line terminators
downloaded
Chrome Cache Entry: 196
Web Open Font Format (Version 2), TrueType, length 41744, version 1.0
downloaded
Chrome Cache Entry: 197
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 198
ASCII text, with very long lines (2625), with no line terminators
downloaded
Chrome Cache Entry: 199
Algol 68 source, ASCII text, with very long lines (31881)
downloaded
Chrome Cache Entry: 200
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 201
PNG image data, 399 x 126, 8-bit/color RGB, non-interlaced
downloaded
Chrome Cache Entry: 202
PNG image data, 399 x 126, 8-bit/color RGB, non-interlaced
dropped
Chrome Cache Entry: 203
ASCII text, with very long lines (2710), with no line terminators
downloaded
Chrome Cache Entry: 204
ASCII text, with very long lines (3545), with no line terminators
downloaded
Chrome Cache Entry: 205
Unicode text, UTF-8 text, with very long lines (40607), with no line terminators
downloaded
Chrome Cache Entry: 206
PNG image data, 88 x 23, 8-bit/color RGB, non-interlaced
downloaded
Chrome Cache Entry: 207
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 208
ASCII text, with very long lines (3034)
downloaded
Chrome Cache Entry: 209
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 210
ASCII text, with very long lines (64784)
downloaded
Chrome Cache Entry: 211
ASCII text, with very long lines (577), with no line terminators
downloaded
Chrome Cache Entry: 212
PNG image data, 13 x 76, 8-bit/color RGB, non-interlaced
dropped
Chrome Cache Entry: 213
PNG image data, 186 x 106, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 214
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 215
ASCII text, with very long lines (64471)
downloaded
Chrome Cache Entry: 216
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 217
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 218
ASCII text, with very long lines (533), with no line terminators
downloaded
Chrome Cache Entry: 219
Unicode text, UTF-8 text, with very long lines (26282)
downloaded
Chrome Cache Entry: 220
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 221
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 222
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 223
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 224
ASCII text, with very long lines (13351)
downloaded
Chrome Cache Entry: 225
ASCII text, with very long lines (544)
downloaded
Chrome Cache Entry: 226
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 227
ASCII text
downloaded
Chrome Cache Entry: 228
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 229
MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors
downloaded
Chrome Cache Entry: 230
ASCII text, with very long lines (64348)
downloaded
Chrome Cache Entry: 231
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 232
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 233
ASCII text, with very long lines (559)
downloaded
Chrome Cache Entry: 234
ASCII text, with very long lines (20116), with no line terminators
downloaded
Chrome Cache Entry: 235
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 236
ASCII text, with very long lines (50758)
downloaded
Chrome Cache Entry: 237
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 238
ASCII text, with very long lines (26940), with no line terminators
downloaded
Chrome Cache Entry: 239
ASCII text, with very long lines (59010)
downloaded
Chrome Cache Entry: 240
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
downloaded
Chrome Cache Entry: 241
TrueType Font data, digitally signed, 19 tables, 1st "DSIG", 23 names, Macintosh, Font data copyright Google 2011RobotoRegularGoogle:Roboto:2011Roboto RegularVersion 1.00000; 201
downloaded
Chrome Cache Entry: 242
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 243
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 244
ASCII text, with very long lines (505)
downloaded
Chrome Cache Entry: 245
ASCII text, with very long lines (65371)
downloaded
Chrome Cache Entry: 246
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 247
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 248
Web Open Font Format (Version 2), TrueType, length 39504, version 1.0
downloaded
Chrome Cache Entry: 249
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 250
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 251
HTML document, Unicode text, UTF-8 text, with very long lines (4445)
downloaded
Chrome Cache Entry: 252
ASCII text, with very long lines (6147)
downloaded
Chrome Cache Entry: 253
ASCII text, with very long lines (6190), with no line terminators
downloaded
Chrome Cache Entry: 254
Web Open Font Format (Version 2), TrueType, length 39356, version 1.0
downloaded
Chrome Cache Entry: 255
OpenType font data
downloaded
Chrome Cache Entry: 256
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 257
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 258
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 259
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 260
ASCII text, with very long lines (60008)
downloaded
Chrome Cache Entry: 261
PNG image data, 186 x 106, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 262
PNG image data, 13 x 76, 8-bit/color RGB, non-interlaced
downloaded
Chrome Cache Entry: 263
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 264
ASCII text, with very long lines (5219), with no line terminators
downloaded
Chrome Cache Entry: 265
ASCII text, with very long lines (65441)
downloaded
Chrome Cache Entry: 266
ASCII text, with very long lines (6863), with no line terminators
downloaded
Chrome Cache Entry: 267
JSON data
downloaded
Chrome Cache Entry: 268
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 269
ASCII text, with very long lines (14029)
downloaded
Chrome Cache Entry: 270
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 271
MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors
dropped
Chrome Cache Entry: 272
ASCII text, with very long lines (63552)
downloaded
Chrome Cache Entry: 273
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 274
HTML document, ASCII text, with very long lines (8524)
downloaded
Chrome Cache Entry: 275
ASCII text, with very long lines (32065)
downloaded
Chrome Cache Entry: 276
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 277
ASCII text, with very long lines (17346), with no line terminators
downloaded
Chrome Cache Entry: 278
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
dropped
Chrome Cache Entry: 279
ASCII text, with very long lines (42123)
downloaded
There are 89 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE
"C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE" /PIM NoEmail
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://prezi.com/i/rx6p99-v72pt/
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2024 --field-trial-handle=1808,i,11624139978826758221,4570325623230477738,131072 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationTargetPrediction /prefetch:8

URLs

Name
IP
Malicious
https://prezi.com/i/rx6p99-v72pt/
malicious
https://msdiufvm2163e59c4b67124.opticair.ru/cdn-cgi/images/trace/managed/js/transparent.gif?ray=7ab14ea51c463602
188.114.96.3
 malicious
https://msdiufvm2163e59c4b67124.opticair.ru/jq/t1juppxc5gznyzvh5y8hur1ns
188.114.96.3
 malicious
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/CACHE/css/97f813ff56b4.css
18.165.227.73
https://prezi-analytics.com/t.js
75.2.83.248
https://msdiufvm2163e59c4b67124.opticair.ru/cdn-cgi/challenge-platform/h/g/orchestrate/managed/v1?ray=7ab14ea51c463602
188.114.96.3
https://cdn.taboola.com/libtrc/unip/1013987/tfa.js
151.101.65.44
https://accounts.google.com/gsi/style
142.250.185.237
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7ab14eb85d4f0476
104.18.7.185
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/CACHE/css/fbce21a87df4
unknown
https://0701.static.prezi.com/preview/v2/s77ei7fl3yb7fhvhnp324aif536jc3sachvcdoaizecfr3dnitcq_3_0.pn
unknown
https://ampcid.google.com/v1/publisher:getClientId
unknown
https://msdiufvm2163e59c4b67124.opticair.ru/o/11xzpntzrhhyygu5s58vnjupc
188.114.96.3
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/CACHE/css/97f813ff56b4
unknown
https://cdn.jifo.co/js/dist/6e2d3ac939c8c7626f4c206c2794cd3e.svg
104.26.7.6
https://accounts.google.com/gsi/client
142.250.185.237
https://msdiufvm2163e59c4b67124.opticair.ru/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1679342400
188.114.96.3
https://assets1.prezicdn.net/frontend-packages/react
unknown
https://www.google.com
unknown
https://0701.static.prezi.com/preview/v2/s77ei7fl3yb7fhvhnp324aif536jc3sachvcdoaizecfr3dnitcq_1_0.pn
unknown
https://d2pj2twnjx3fya.cloudfront.net/frontend-packages/viewer-container/report_icon.svg
18.66.121.214
https://raw.githubusercontent.com/stefanpenner/es6-promise/master/LICENSE
unknown
https://blog.prezi.com/michelle-singhs-art-of-inclusion-with-prezi/
unknown
https://github.com/twbs/bootstrap/graphs/contributors)
unknown
https://accounts.google.com/gsi/status?client_id=733691752913-92koi2nsmq47a12bipaltcavufel8l9t.apps.googleusercontent.com&as=JKTOuq%2BJFIXOfAh10kiaXQ
142.250.185.237
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/common/img/footers/twitter-icon.svg
18.165.227.73
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/CACHE/css/fc59f63c3313
unknown
https://d2pj2twnjx3fya.cloudfront.net/frontend-packages/viewer-container/heart_icon.svg
18.66.121.214
https://msdiufvm2163e59c4b67124.opticair.ru/cdn-cgi/challenge-platform/h/g/img/7ab14ea51c463602/1679350458092/VajOonMq3Bc-o1V
188.114.96.3
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/CACHE/css/b54abd3af1be
unknown
https://connect.facebook.net/en_US/fbevents.js
157.240.20.19
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/common/img/icons/Close
unknown
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/yqku6/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
104.18.7.185
http://getbootstrap.com)
unknown
https://blog.prezi.com/
unknown
https://www.google.com/pagead/1p-user-list/AW-958692981/?random
unknown
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/common/img/icons/Close.svg
18.165.227.73
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/CACHE/css/fbce21a87df4.css
18.165.227.73
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/CACHE/js/582a1ed459f5.js
18.165.227.73
https://accounts.google.com/gsi/log
unknown
https://www.google.ch/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-2156578-3&cid=890186390.1679350441&jid=1863212953&_u=YEBAAAAAAAAAAC~&z=665342309
142.250.185.131
https://stats.g.doubleclick.net/j/collect
unknown
https://package-bundles.prezi.com/design-view-page/design-view-page.0.1.669/design-view-page.js
99.86.4.124
http://scripts.sil.org/OFLhttp://scripts.sil.org/OFL
unknown
https://www.google.ch/pagead/1p-user-list/1001687149/?random
unknown
https://accounts.google.com/gsi/select
unknown
https://trc-events.taboola.com/1013987/log/3/unip?en=pre_d_eng_tb&tos=5301&scd=0&ssd=1&est=1679350441490&ver=36&isls=true&src=i&invt=3000&msa=483&rv=1&tim=1679350446792&vi=1679350441477&ri=ffe929ddef2842423915f5fa6693e272&sd=v2_b378cf031d2c04fe027453a390d47b88_2d42e7ed-ce12-4d95-9a38-143573131ea5-tuctb12602b_1679350443_1679350443_CNawjgYQ4_E9GIXM2IjwMCABKAEwKziy0A1Az4gQSNrY2ANQ____________AVgAYABo3fHQ14Ww-JM3cAE&ui=2d42e7ed-ce12-4d95-9a38-143573131ea5-tuctb12602b&ref=null&cv=20230319-5-RELEASE&item-url=https%3A%2F%2Fprezi.com%2Fi%2Frx6p99-v72pt%2Fleibowicz-law-llc%2F
141.226.228.48
https://www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-2156578-3&cid=890186390.1679350441&jid=1863212953&_u=YEBAAAAAAAAAAC~&z=665342309
172.217.16.196
https://www.google.com/pagead/1p-user-list/1001687149/?random=1679350440038&cv=11&fst=1679349600000&bg=ffffff&guid=ON&async=1&gtm=45He33f0&u_w=1280&u_h=1024&label=b1TSCIv8tAUQ7ZDS3QM&frm=0&url=https%3A%2F%2Fprezi.com%2Fi%2Frx6p99-v72pt%2Fleibowicz-law-llc%2F&tiba=Leibowicz%20Law%20LLC%20by%20Secure%20Message%20on%20Prezi%20Design&fmt=3&is_vtc=1&random=2815662213&rmt_tld=0&ipr=y
172.217.16.196
https://www.cloudflare.com/website-terms/
unknown
https://prezi.com/api/v1/fonts/Roboto-Regular2/
75.2.83.248
https://assets1.prezicdn.net/common/fonts/raleway-semibold.woff2
18.66.122.80
https://cdn.taboola.com/libtrc/unip/
unknown
https://googleads.g.doubleclick.net/pagead/viewthroughconversion/
unknown
https://js.hs-scripts.com/20307117.js
104.17.213.204
https://a.nel.cloudflare.com/report/v3?s=1M7BlPieNEPUeflxgH8JDyiU4OA8nq8C3bP8CU4UTqXas%2BzNrC13vYsb%2FUb1gJzgaDOcDd%2FXvD21REZu%2BVOoftkSCpJyzsuYK2xI0kwfGf%2FuYd2C7OKLLmnCiGfhex8L94dO%2BkYMusjaMs4PLHtZmJ9i0FnMfQ%3D%3D
35.190.80.1
https://0701.static.prezi.com/preview/v2/s77ei7fl3yb7fhvhnp324aif536jc3sachvcdoaizecfr3dnitcq_0_0.pn
unknown
https://www.google.ch/pagead/1p-user-list/1001687149/?random=1679350440038&cv=11&fst=1679349600000&bg=ffffff&guid=ON&async=1&gtm=45He33f0&u_w=1280&u_h=1024&label=b1TSCIv8tAUQ7ZDS3QM&frm=0&url=https%3A%2F%2Fprezi.com%2Fi%2Frx6p99-v72pt%2Fleibowicz-law-llc%2F&tiba=Leibowicz%20Law%20LLC%20by%20Secure%20Message%20on%20Prezi%20Design&fmt=3&is_vtc=1&random=2815662213&rmt_tld=1&ipr=y
142.250.185.131
https://msdiufvm2163e59c4b67124.opticair.ru/cdn-cgi/challenge-platform/h/g/flow/ov1/33218458:1679348439:bmx7m3BQw1jF-7cVwTUY64IvWsKSCouxy3DTHhcNDDc/7ab14ea51c463602/6ffb983076fd321
188.114.96.3
https://cct.google/taggy/agent.js
unknown
https://cdn.jifo.co/prezigram/viewer.js
104.26.7.6
http://scripts.sil.org/OFLhttp://scripts.sil.org/OFLCopyright
unknown
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/common/img/favicon.ico
unknown
https://accounts.google.com/domainreliability/upload
142.250.185.141
https://d2pj2twnjx3fya.cloudfront.net/frontend-packages/viewer-container/share_icon.svg
18.66.121.214
https://prezi.com/api/v1/fonts/Raleway-Regular/
75.2.83.248
https://msdiufvm2163e59c4b67124.opticair.ru/ic/uzn8uvtphy1xrj1sz5pgnchy5
188.114.96.3
https://cdn.taboola.com/scripts/cds-pips.js
151.101.65.44
https://prezi.com/api/v2/fonts/stylesheet/?fontFamily=Raleway,Roboto,Roboto,Raleway
75.2.83.248
https://google.com/pagead/form-data/
unknown
https://www.google.%/ads/ga-audiences
unknown
https://accounts.google.com/gsi/
unknown
https://track.hubspot.com/__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=2572080198&v=1.1&a=20307117&pu=https%3A%2F%2Fprezi.com%2Fi%2Frx6p99-v72pt%2Fleibowicz-law-llc%2F&t=Leibowicz+Law+LLC+by+Secure+Message+on+Prezi+Design&cts=1679350443965&vi=ddb9ecde734e07981710ac1099ed33ca&nc=true&u=108475037.ddb9ecde734e07981710ac1099ed33ca.1679350443942.1679350443942.1679350443942.1&b=108475037.1.1679350443943&cc=15
104.19.155.83
https://prezi.com/api/v2/prezigram/getProjectContent?projectId=rx6p99-v72pt&appVersion=c1425b2827bd9b1b3f231dc8395ca9b1d5fa01f9
75.2.83.248
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/CACHE/css/b54abd3af1be.css
18.165.227.73
https://accounts.google.com/gsi/iframe/select
unknown
https://github.com/twbs/bootstrap/blob/master/LICENSE)
unknown
https://prezi-analytics.com/t2
75.2.83.248
https://msdiufvm2163e59c4b67124.opticair.ru/APP-3T2EUU/nxhyus5zzgru1nt8cyvjhpp51
188.114.96.3
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/684338266:1679348360:wPyuhZla-I6bp0g4OKcM2aMk4pVxy9huIXb_MfDO0-k/7ab14eb85d4f0476/c8b47eb5dcc8be5
104.18.7.185
https://www.google.com/pagead/1p-user-list/1001687149/?random
unknown
https://assets1.prezicdn.net/common/fonts/raleway-regular.woff2
18.66.122.80
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/common/img/favicon.ico?v=2
18.165.227.73
https://www.google.com/
unknown
https://msdiufvm2163e59c4b67124.opticair.ru/ASSETS/img/m_.svg
188.114.96.3
https://accounts.google.com/gsi/status
unknown
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/CACHE/js/326b169e2ec0.
unknown
https://assets1.prezicdn.net/frontend-packages/react-dom
unknown
https://prezi.com/m/rx6p99
unknown
http://www.hubspot.com
unknown
https://msdiufvm2163e59c4b67124.opticair.ru/favicon.ico
188.114.96.3
https://accounts.google.com/gsi/button
unknown
https://msdiufvm2163e59c4b67124.opticair.ru/cdn-cgi/challenge-platform/h/g/pat/7ab14ea51c463602/1679350458095/f2d0dc9f77670ce20b4490de8382f8888fc9b80d30f75ee5dcd32472f5713fb6/QcDHAlK0tRHAHgt
188.114.96.3
https://www.cloudflare.com/privacypolicy/
unknown
https://connect.facebook.net/signals/plugins/identity.js?v=2.9.99
157.240.20.19
https://prezi.com/i/rx6p99-v72pt/leibowicz-law-llc/
75.2.83.248
https://cdn.jifo.co/js/dist/viewer-f49489f3c1e5f6317f0b-prezigram.js
104.26.7.6
https://prezi.com/i/rx6p99
unknown
https://accounts.google.com/o/oauth2/iframe
unknown
https://www.google.com/pagead/1p-user-list/AW-958692981/?random=1679350440052&cv=11&fst=1679349600000&bg=ffffff&guid=ON&async=1&gtm=45He33f0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fprezi.com%2Fi%2Frx6p99-v72pt%2Fleibowicz-law-llc%2F&tiba=Leibowicz%20Law%20LLC%20by%20Secure%20Message%20on%20Prezi%20Design&fmt=3&is_vtc=1&random=2004768641&rmt_tld=0&ipr=y
172.217.16.196
https://prezi.com/i/rx6p99-v72pt/
75.2.83.248
There are 90 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
cdn.jifo.co
104.26.7.6
tls13.taboola.map.fastly.net
151.101.65.44
msdiufvm2163e59c4b67124.opticair.ru
188.114.96.3
d3rwxsx3brl7p6.cloudfront.net
99.86.4.124
js.hs-analytics.net
104.17.67.176
prezigram-assets.prezicdn.net
18.66.218.128
stats.g.doubleclick.net
108.177.15.157
prezi-analytics.com
75.2.83.248
scontent.xx.fbcdn.net
157.240.20.19
track.hubspot.com
104.19.155.83
dualstack.tls13.taboola.map.fastly.net
151.101.1.44
js.hs-scripts.com
104.17.213.204
www.google.com
142.250.186.68
bandar-logger.prezi.com
52.200.133.160
d2pj2twnjx3fya.cloudfront.net
18.66.121.214
am-vip001.taboola.com
141.226.228.48
js.hs-banner.com
104.18.33.171
star-mini.c10r.facebook.com
157.240.20.35
a.nel.cloudflare.com
35.190.80.1
accounts.google.com
142.250.185.237
d1zvw2klwdlloe.cloudfront.net
18.66.122.80
us-cds.taboola.com
141.226.224.32
googleads.g.doubleclick.net
142.250.185.98
d1ni990a184w7d.cloudfront.net
13.226.175.126
challenges.cloudflare.com
104.18.7.185
clients.l.google.com
142.250.186.142
prezi.com
75.2.83.248
d3aeorqw7ononu.cloudfront.net
18.165.227.73
www.google.ch
142.250.185.131
assets.prezicdn.net
unknown
assets1.prezicdn.net
unknown
clients2.google.com
unknown
trc-events.taboola.com
unknown
cdn.linkedin.oribi.io
unknown
cds.taboola.com
unknown
package-bundles.prezi.com
unknown
www.facebook.com
unknown
www.linkedin.com
unknown
trc.taboola.com
unknown
connect.facebook.net
unknown
px.ads.linkedin.com
unknown
snap.licdn.com
unknown
cdn.taboola.com
unknown
pips.taboola.com
unknown
There are 34 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
104.19.155.83
track.hubspot.com
United States
18.66.122.80
d1zvw2klwdlloe.cloudfront.net
United States
99.86.4.124
d3rwxsx3brl7p6.cloudfront.net
United States
108.177.15.157
stats.g.doubleclick.net
United States
104.18.33.171
js.hs-banner.com
United States
18.66.121.214
d2pj2twnjx3fya.cloudfront.net
United States
104.17.213.204
js.hs-scripts.com
United States
52.109.88.191
unknown
United States
192.168.2.3
unknown
unknown
104.26.7.6
cdn.jifo.co
United States
20.189.173.15
unknown
United States
142.250.185.141
unknown
United States
104.17.67.176
js.hs-analytics.net
United States
141.226.228.48
am-vip001.taboola.com
Israel
35.190.80.1
a.nel.cloudflare.com
United States
13.226.175.126
d1ni990a184w7d.cloudfront.net
United States
75.2.83.248
prezi-analytics.com
United States
151.101.193.44
unknown
United States
104.18.7.185
challenges.cloudflare.com
United States
52.200.133.160
bandar-logger.prezi.com
United States
18.165.227.73
d3aeorqw7ononu.cloudfront.net
United States
142.250.185.237
accounts.google.com
United States
151.101.1.44
dualstack.tls13.taboola.map.fastly.net
United States
18.66.218.128
prezigram-assets.prezicdn.net
United States
157.240.20.19
scontent.xx.fbcdn.net
United States
239.255.255.250
unknown
Reserved
52.109.8.45
unknown
United States
151.101.65.44
tls13.taboola.map.fastly.net
United States
142.250.185.131
www.google.ch
United States
188.114.96.3
msdiufvm2163e59c4b67124.opticair.ru
European Union
142.250.186.142
clients.l.google.com
United States
141.226.224.32
us-cds.taboola.com
Israel
192.229.221.95
unknown
United States
157.240.20.35
star-mini.c10r.facebook.com
United States
172.217.16.196
unknown
United States
127.0.0.1
unknown
unknown
142.250.185.98
googleads.g.doubleclick.net
United States
There are 27 hidden IPs, click here to show them.

Registry

Path
Value
Malicious
HKEY_CURRENT_USER\Software\Microsoft\Office\Outlook\Settings\Data
global_Accessibility_ReminderType
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Outlook\Profiles\NoEmail\9207f3e0a3b11019908b08002b2a56c2
11023d05
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{AA8FA310-0939-4CE3-B9BB-AE05B2695110}
5
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{AA8FA310-0939-4CE3-B9BB-AE05B2695110}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{691E1C12-2693-4D4A-852C-7478657BBE6E}
255
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{691E1C12-2693-4D4A-852C-7478657BBE6E}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{287BF315-5A11-4B2F-B069-B761ADE25A49}
4
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{287BF315-5A11-4B2F-B069-B761ADE25A49}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{6B6B571B-F4E3-4FBB-A83F-0790D11D19AB}
255
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{6B6B571B-F4E3-4FBB-A83F-0790D11D19AB}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{284B8D30-4AA6-4A0F-9143-CE2E8E1F10F0}
255
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{284B8D30-4AA6-4A0F-9143-CE2E8E1F10F0}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{F762CE39-AC6C-4E1C-B55F-0E11586E6D07}
5
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{F762CE39-AC6C-4E1C-B55F-0E11586E6D07}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{02CAC15F-D4BE-400E-9127-D54982AA4AE9}
5
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{02CAC15F-D4BE-400E-9127-D54982AA4AE9}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{11ADBD74-7DF2-4E8E-802B-B3BCBFD04A78}
5
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{11ADBD74-7DF2-4E8E-802B-B3BCBFD04A78}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{02FD33DF-F746-4A10-93A0-2BC6273BC8E4}
4
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{02FD33DF-F746-4A10-93A0-2BC6273BC8E4}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{13967EE5-6B23-4BCD-A496-1D788449A8CF}
4
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{13967EE5-6B23-4BCD-A496-1D788449A8CF}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ULSMonitor
ULSTagIds0
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ULSMonitor
ULSCategoriesSeverities
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{AA8FA310-0939-4CE3-B9BB-AE05B2695110}
5
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{AA8FA310-0939-4CE3-B9BB-AE05B2695110}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{691E1C12-2693-4D4A-852C-7478657BBE6E}
255
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{691E1C12-2693-4D4A-852C-7478657BBE6E}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{287BF315-5A11-4B2F-B069-B761ADE25A49}
4
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{287BF315-5A11-4B2F-B069-B761ADE25A49}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{6B6B571B-F4E3-4FBB-A83F-0790D11D19AB}
255
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{6B6B571B-F4E3-4FBB-A83F-0790D11D19AB}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{284B8D30-4AA6-4A0F-9143-CE2E8E1F10F0}
255
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{284B8D30-4AA6-4A0F-9143-CE2E8E1F10F0}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{F762CE39-AC6C-4E1C-B55F-0E11586E6D07}
5
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{F762CE39-AC6C-4E1C-B55F-0E11586E6D07}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{02CAC15F-D4BE-400E-9127-D54982AA4AE9}
5
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{02CAC15F-D4BE-400E-9127-D54982AA4AE9}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{11ADBD74-7DF2-4E8E-802B-B3BCBFD04A78}
5
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{11ADBD74-7DF2-4E8E-802B-B3BCBFD04A78}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{02FD33DF-F746-4A10-93A0-2BC6273BC8E4}
4
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{02FD33DF-F746-4A10-93A0-2BC6273BC8E4}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{13967EE5-6B23-4BCD-A496-1D788449A8CF}
4
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{13967EE5-6B23-4BCD-A496-1D788449A8CF}
Categories
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ULSMonitor
ULSTagIds0
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ULSMonitor
ULSCategoriesSeverities
HKEY_CURRENT_USER\Software\Microsoft\Office\Outlook\Settings
Accounts
HKEY_CURRENT_USER\Software\Microsoft\Office\Outlook\Settings\Data
global_AccountsNeedResyncing
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
S-1-5-21-2660496737-530772487-1027249058-1002
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
ahfgeienlihckogmohjhadlkjgocpleb
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
gdaefkejpgkiemlaofpalmlakkmbjdnl
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
kmendfapggjehodndflmmgagdbamhnfd
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
mhjfbmdgcfjbbpaeojofohoefgiehjai
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
neajdppkdcdipfabeoofebfddakdcjhd
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nkeimhogjdpnpccoofpliimaahmaaome
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
prefs.preference_reset_time
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
gdaefkejpgkiemlaofpalmlakkmbjdnl
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
kmendfapggjehodndflmmgagdbamhnfd
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
neajdppkdcdipfabeoofebfddakdcjhd
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nkeimhogjdpnpccoofpliimaahmaaome
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nmmhkkegccagdldgiimedpiccmgmieda
HKEY_CURRENT_USER\Software\Microsoft\Speech_OneCore\Voices
DefaultTokenId
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nmmhkkegccagdldgiimedpiccmgmieda
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nmmhkkegccagdldgiimedpiccmgmieda
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
dr
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
user_experience_metrics.stability.exited_cleanly
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
media.cdm.origin_data
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
software_reporter.reporting
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
media.storage_id_salt
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
google.services.last_account_id
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
google.services.account_id
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.last_triggered_for_startup_urls
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.last_triggered_for_homepage
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
module_blocklist_cache_md5_digest
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
software_reporter.prompt_seed
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
default_search_provider_data.template_url_data
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
safebrowsing.incidents_sent
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
pinned_tabs
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
browser.show_home_button
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
search_provider_overrides
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.last_triggered_for_default_search
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
prefs.preference_reset_time
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
software_reporter.prompt_version
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
google.services.last_username
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
session.startup_urls
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
session.restore_on_startup
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.prompt_wave
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
homepage
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
homepage_is_newtabpage
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
lastrun
HKEY_USERSS-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry
TraceTimeLast
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
S-1-5-21-2660496737-530772487-1027249058-1002
There are 86 hidden registries, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
10E0A5D4000
heap
page read and write
1FDADE02000
heap
page read and write
69B1CE000
stack
page read and write
10E0A5DC000
heap
page read and write
10E08A7B000
heap
page read and write
10E08ABD000
heap
page read and write
10E0EF1B000
heap
page read and write
1FDADF3B000
heap
page read and write
1FDAD647000
heap
page read and write
10E0F3A0000
trusted library allocation
page read and write
10E0EF2D000
heap
page read and write
10E0EF1D000
heap
page read and write
10E08A00000
heap
page read and write
10E0A5F0000
heap
page read and write
1FDAD5A0000
heap
page read and write
10E0EEBA000
heap
page read and write
10E0EF0B000
heap
page read and write
10E08ACC000
heap
page read and write
1FDADF02000
heap
page read and write
10E08AD0000
heap
page read and write
2D7B5466000
heap
page read and write
10E0EB30000
heap
page readonly
10E08B99000
heap
page read and write
10E08B27000
heap
page read and write
10E0A50D000
heap
page read and write
10E0A3B0000
heap
page read and write
10E0EB20000
trusted library allocation
page read and write
10E08AB9000
heap
page read and write
69B5FC000
stack
page read and write
1FDAD621000
heap
page read and write
10E0A529000
heap
page read and write
1FDADF00000
heap
page read and write
10E08AD9000
heap
page read and write
10E0A516000
heap
page read and write
10E08A4D000
heap
page read and write
10E0EEFA000
heap
page read and write
E39C6FB000
stack
page read and write
10E08AE6000
heap
page read and write
51B5FF000
stack
page read and write
10E08B50000
heap
page read and write
10E0EEDD000
heap
page read and write
1FDAD540000
heap
page read and write
2D7B5502000
heap
page read and write
10E0EED7000
heap
page read and write
10E08AC5000
heap
page read and write
2D7B52B0000
heap
page read and write
10E08A5D000
heap
page read and write
2D7B5C00000
heap
page read and write
51A76B000
stack
page read and write
10E0F002000
heap
page read and write
10E0EE44000
heap
page read and write
2D7B5441000
heap
page read and write
10E0EF46000
heap
page read and write
10E0EE76000
heap
page read and write
2D7B5513000
heap
page read and write
E39C5F8000
stack
page read and write
51B3F9000
stack
page read and write
10E0F210000
trusted library allocation
page read and write
51B4FF000
stack
page read and write
10E08A7E000
heap
page read and write
2D7B5C02000
heap
page read and write
2D7B5484000
heap
page read and write
10E08A28000
heap
page read and write
10E0A5DA000
heap
page read and write
10E0A3E0000
trusted library allocation
page read and write
E39CAFF000
stack
page read and write
10E0EE00000
heap
page read and write
10E0A519000
heap
page read and write
10E08B36000
heap
page read and write
1FDAD600000
heap
page read and write
1FDAD613000
heap
page read and write
10E0A402000
heap
page read and write
2D7B5500000
heap
page read and write
69B4FE000
stack
page read and write
51AEFE000
stack
page read and write
10E0A500000
heap
page read and write
2D7B5A70000
trusted library allocation
page read and write
1FDAD69B000
heap
page read and write
2D7B5400000
heap
page read and write
1FDADF18000
heap
page read and write
10E0A563000
heap
page read and write
51B2FE000
stack
page read and write
10E08B0B000
heap
page read and write
E39C8FE000
stack
page read and write
1FDADF15000
heap
page read and write
10E0EE5D000
heap
page read and write
1FDAD62B000
heap
page read and write
10E08AEC000
heap
page read and write
10E0F013000
heap
page read and write
1FDADF33000
heap
page read and write
51B0F8000
stack
page read and write
10E0A5E1000
heap
page read and write
10E0A990000
trusted library allocation
page read and write
10E08ACE000
heap
page read and write
10E0A5E6000
heap
page read and write
10E08A66000
heap
page read and write
10E0EF06000
heap
page read and write
1FDAD5D0000
trusted library allocation
page read and write
1FDADF1E000
heap
page read and write
10E0A524000
heap
page read and write
10E08BAB000
heap
page read and write
10E0EF02000
heap
page read and write
2D7B5438000
heap
page read and write
2D7B544D000
heap
page read and write
E39C4FE000
stack
page read and write
1FDAD702000
heap
page read and write
51B7FF000
stack
page read and write
10E088B0000
heap
page read and write
51AFF9000
stack
page read and write
10E0A513000
heap
page read and write
E39C47E000
stack
page read and write
10E08AC9000
heap
page read and write
10E0EE63000
heap
page read and write
10E08A48000
heap
page read and write
10E0A507000
heap
page read and write
10E0A535000
heap
page read and write
2D7B52A0000
heap
page read and write
10E08B58000
heap
page read and write
10E08AD4000
heap
page read and write
51ACFE000
stack
page read and write
51B8FE000
stack
page read and write
10E0A520000
heap
page read and write
1FDADF27000
heap
page read and write
1FDAD641000
heap
page read and write
10E0EEC2000
heap
page read and write
10E08850000
heap
page read and write
2D7B5459000
heap
page read and write
10E0EE96000
heap
page read and write
10E0F3E0000
heap
page read and write
10E08B73000
heap
page read and write
10E08AB0000
heap
page read and write
10E08A86000
heap
page read and write
10E0A5F3000
heap
page read and write
1FDADF2C000
heap
page read and write
10E08840000
heap
page read and write
1FDAD550000
heap
page read and write
10E08A13000
heap
page read and write
10E08AAC000
heap
page read and write
2D7B5C15000
heap
page read and write
2D7B542A000
heap
page read and write
69B14F000
stack
page read and write
10E08B13000
heap
page read and write
E39C7F6000
stack
page read and write
2D7B5413000
heap
page read and write
2D7B5310000
heap
page read and write
10E08B68000
heap
page read and write
10E08AD2000
heap
page read and write
10E0A5AB000
heap
page read and write
10E0F390000
heap
page read and write
E39C9FE000
stack
page read and write
E39C19C000
stack
page read and write
10E0EE38000
heap
page read and write
10E0EEF4000
heap
page read and write
51B6FC000
stack
page read and write
10E0EF50000
heap
page read and write
10E0ED00000
heap
page read and write
7DF44EA81000
trusted library allocation
page execute read
69B0CB000
stack
page read and write
10E0EEE9000
heap
page read and write
10E0A55E000
heap
page read and write
10E0EEFE000
heap
page read and write
There are 151 hidden memdumps, click here to show them.

DOM / HTML

URL
Malicious
https://msdiufvm2163e59c4b67124.opticair.ru/ID-6418dac4aed60
 malicious
https://prezi.com/i/rx6p99-v72pt/leibowicz-law-llc/
https://msdiufvm2163e59c4b67124.opticair.ru/
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/yqku6/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
https://msdiufvm2163e59c4b67124.opticair.ru/
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/yqku6/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
https://msdiufvm2163e59c4b67124.opticair.ru/?__cf_chl_tk=exJe2ObOXVnrQJ9NellqkqZCR558K475Xz1JjgOteL0-1679350457-0-gaNycGzNCuU