Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
C:\Users\user\AppData\Local\Temp\Outlook Logging\OUTLOOK_16_0_13929_20386-20230320T2313240919-260.etl
|
data
|
modified
|
||
C:\Users\user\Documents\Outlook Files\Outlook Data File - NoEmail.pst
|
data
|
dropped
|
||
Chrome Cache Entry: 184
|
ASCII text, with very long lines (1490)
|
downloaded
|
||
Chrome Cache Entry: 185
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 186
|
TrueType Font data, digitally signed, 19 tables, 1st "DSIG", 23 names, Macintosh, Font data copyright Google 2011RobotoBoldGoogle:Roboto:2011Roboto
BoldVersion 1.00000; 2011Robot
|
downloaded
|
||
Chrome Cache Entry: 187
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 188
|
ASCII text, with very long lines (2572), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 189
|
PNG image data, 88 x 23, 8-bit/color RGB, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 190
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 191
|
Web Open Font Format (Version 2), TrueType, length 40516, version 1.0
|
downloaded
|
||
Chrome Cache Entry: 192
|
ASCII text, with very long lines (45430), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 193
|
ASCII text
|
downloaded
|
||
Chrome Cache Entry: 194
|
ASCII text, with very long lines (65046)
|
downloaded
|
||
Chrome Cache Entry: 195
|
ASCII text, with very long lines (33359), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 196
|
Web Open Font Format (Version 2), TrueType, length 41744, version 1.0
|
downloaded
|
||
Chrome Cache Entry: 197
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 198
|
ASCII text, with very long lines (2625), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 199
|
Algol 68 source, ASCII text, with very long lines (31881)
|
downloaded
|
||
Chrome Cache Entry: 200
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 201
|
PNG image data, 399 x 126, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 202
|
PNG image data, 399 x 126, 8-bit/color RGB, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 203
|
ASCII text, with very long lines (2710), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 204
|
ASCII text, with very long lines (3545), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 205
|
Unicode text, UTF-8 text, with very long lines (40607), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 206
|
PNG image data, 88 x 23, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 207
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 208
|
ASCII text, with very long lines (3034)
|
downloaded
|
||
Chrome Cache Entry: 209
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 210
|
ASCII text, with very long lines (64784)
|
downloaded
|
||
Chrome Cache Entry: 211
|
ASCII text, with very long lines (577), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 212
|
PNG image data, 13 x 76, 8-bit/color RGB, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 213
|
PNG image data, 186 x 106, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 214
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 215
|
ASCII text, with very long lines (64471)
|
downloaded
|
||
Chrome Cache Entry: 216
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 217
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 218
|
ASCII text, with very long lines (533), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 219
|
Unicode text, UTF-8 text, with very long lines (26282)
|
downloaded
|
||
Chrome Cache Entry: 220
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 221
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 222
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 223
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 224
|
ASCII text, with very long lines (13351)
|
downloaded
|
||
Chrome Cache Entry: 225
|
ASCII text, with very long lines (544)
|
downloaded
|
||
Chrome Cache Entry: 226
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 227
|
ASCII text
|
downloaded
|
||
Chrome Cache Entry: 228
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 229
|
MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors
|
downloaded
|
||
Chrome Cache Entry: 230
|
ASCII text, with very long lines (64348)
|
downloaded
|
||
Chrome Cache Entry: 231
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 232
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 233
|
ASCII text, with very long lines (559)
|
downloaded
|
||
Chrome Cache Entry: 234
|
ASCII text, with very long lines (20116), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 235
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 236
|
ASCII text, with very long lines (50758)
|
downloaded
|
||
Chrome Cache Entry: 237
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 238
|
ASCII text, with very long lines (26940), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 239
|
ASCII text, with very long lines (59010)
|
downloaded
|
||
Chrome Cache Entry: 240
|
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
|
downloaded
|
||
Chrome Cache Entry: 241
|
TrueType Font data, digitally signed, 19 tables, 1st "DSIG", 23 names, Macintosh, Font data copyright Google 2011RobotoRegularGoogle:Roboto:2011Roboto
RegularVersion 1.00000; 201
|
downloaded
|
||
Chrome Cache Entry: 242
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 243
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 244
|
ASCII text, with very long lines (505)
|
downloaded
|
||
Chrome Cache Entry: 245
|
ASCII text, with very long lines (65371)
|
downloaded
|
||
Chrome Cache Entry: 246
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 247
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 248
|
Web Open Font Format (Version 2), TrueType, length 39504, version 1.0
|
downloaded
|
||
Chrome Cache Entry: 249
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 250
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
||
Chrome Cache Entry: 251
|
HTML document, Unicode text, UTF-8 text, with very long lines (4445)
|
downloaded
|
||
Chrome Cache Entry: 252
|
ASCII text, with very long lines (6147)
|
downloaded
|
||
Chrome Cache Entry: 253
|
ASCII text, with very long lines (6190), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 254
|
Web Open Font Format (Version 2), TrueType, length 39356, version 1.0
|
downloaded
|
||
Chrome Cache Entry: 255
|
OpenType font data
|
downloaded
|
||
Chrome Cache Entry: 256
|
ASCII text, with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 257
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 258
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 259
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 260
|
ASCII text, with very long lines (60008)
|
downloaded
|
||
Chrome Cache Entry: 261
|
PNG image data, 186 x 106, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 262
|
PNG image data, 13 x 76, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
Chrome Cache Entry: 263
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 264
|
ASCII text, with very long lines (5219), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 265
|
ASCII text, with very long lines (65441)
|
downloaded
|
||
Chrome Cache Entry: 266
|
ASCII text, with very long lines (6863), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 267
|
JSON data
|
downloaded
|
||
Chrome Cache Entry: 268
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
Chrome Cache Entry: 269
|
ASCII text, with very long lines (14029)
|
downloaded
|
||
Chrome Cache Entry: 270
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 271
|
MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors
|
dropped
|
||
Chrome Cache Entry: 272
|
ASCII text, with very long lines (63552)
|
downloaded
|
||
Chrome Cache Entry: 273
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 274
|
HTML document, ASCII text, with very long lines (8524)
|
downloaded
|
||
Chrome Cache Entry: 275
|
ASCII text, with very long lines (32065)
|
downloaded
|
||
Chrome Cache Entry: 276
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 277
|
ASCII text, with very long lines (17346), with no line terminators
|
downloaded
|
||
Chrome Cache Entry: 278
|
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
|
dropped
|
||
Chrome Cache Entry: 279
|
ASCII text, with very long lines (42123)
|
downloaded
|
There are 89 hidden files, click here to show them.
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE
|
"C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE" /PIM NoEmail
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://prezi.com/i/rx6p99-v72pt/
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2024 --field-trial-handle=1808,i,11624139978826758221,4570325623230477738,131072
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationTargetPrediction /prefetch:8
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
https://prezi.com/i/rx6p99-v72pt/
|
|||
https://msdiufvm2163e59c4b67124.opticair.ru/cdn-cgi/images/trace/managed/js/transparent.gif?ray=7ab14ea51c463602
|
188.114.96.3
|
||
https://msdiufvm2163e59c4b67124.opticair.ru/jq/t1juppxc5gznyzvh5y8hur1ns
|
188.114.96.3
|
||
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/CACHE/css/97f813ff56b4.css
|
18.165.227.73
|
||
https://prezi-analytics.com/t.js
|
75.2.83.248
|
||
https://msdiufvm2163e59c4b67124.opticair.ru/cdn-cgi/challenge-platform/h/g/orchestrate/managed/v1?ray=7ab14ea51c463602
|
188.114.96.3
|
||
https://cdn.taboola.com/libtrc/unip/1013987/tfa.js
|
151.101.65.44
|
||
https://accounts.google.com/gsi/style
|
142.250.185.237
|
||
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7ab14eb85d4f0476
|
104.18.7.185
|
||
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/CACHE/css/fbce21a87df4
|
unknown
|
||
https://0701.static.prezi.com/preview/v2/s77ei7fl3yb7fhvhnp324aif536jc3sachvcdoaizecfr3dnitcq_3_0.pn
|
unknown
|
||
https://ampcid.google.com/v1/publisher:getClientId
|
unknown
|
||
https://msdiufvm2163e59c4b67124.opticair.ru/o/11xzpntzrhhyygu5s58vnjupc
|
188.114.96.3
|
||
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/CACHE/css/97f813ff56b4
|
unknown
|
||
https://cdn.jifo.co/js/dist/6e2d3ac939c8c7626f4c206c2794cd3e.svg
|
104.26.7.6
|
||
https://accounts.google.com/gsi/client
|
142.250.185.237
|
||
https://msdiufvm2163e59c4b67124.opticair.ru/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1679342400
|
188.114.96.3
|
||
https://assets1.prezicdn.net/frontend-packages/react
|
unknown
|
||
https://www.google.com
|
unknown
|
||
https://0701.static.prezi.com/preview/v2/s77ei7fl3yb7fhvhnp324aif536jc3sachvcdoaizecfr3dnitcq_1_0.pn
|
unknown
|
||
https://d2pj2twnjx3fya.cloudfront.net/frontend-packages/viewer-container/report_icon.svg
|
18.66.121.214
|
||
https://raw.githubusercontent.com/stefanpenner/es6-promise/master/LICENSE
|
unknown
|
||
https://blog.prezi.com/michelle-singhs-art-of-inclusion-with-prezi/
|
unknown
|
||
https://github.com/twbs/bootstrap/graphs/contributors)
|
unknown
|
||
https://accounts.google.com/gsi/status?client_id=733691752913-92koi2nsmq47a12bipaltcavufel8l9t.apps.googleusercontent.com&as=JKTOuq%2BJFIXOfAh10kiaXQ
|
142.250.185.237
|
||
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/common/img/footers/twitter-icon.svg
|
18.165.227.73
|
||
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/CACHE/css/fc59f63c3313
|
unknown
|
||
https://d2pj2twnjx3fya.cloudfront.net/frontend-packages/viewer-container/heart_icon.svg
|
18.66.121.214
|
||
https://msdiufvm2163e59c4b67124.opticair.ru/cdn-cgi/challenge-platform/h/g/img/7ab14ea51c463602/1679350458092/VajOonMq3Bc-o1V
|
188.114.96.3
|
||
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/CACHE/css/b54abd3af1be
|
unknown
|
||
https://connect.facebook.net/en_US/fbevents.js
|
157.240.20.19
|
||
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/common/img/icons/Close
|
unknown
|
||
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/yqku6/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
|
104.18.7.185
|
||
http://getbootstrap.com)
|
unknown
|
||
https://blog.prezi.com/
|
unknown
|
||
https://www.google.com/pagead/1p-user-list/AW-958692981/?random
|
unknown
|
||
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/common/img/icons/Close.svg
|
18.165.227.73
|
||
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/CACHE/css/fbce21a87df4.css
|
18.165.227.73
|
||
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/CACHE/js/582a1ed459f5.js
|
18.165.227.73
|
||
https://accounts.google.com/gsi/log
|
unknown
|
||
https://www.google.ch/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-2156578-3&cid=890186390.1679350441&jid=1863212953&_u=YEBAAAAAAAAAAC~&z=665342309
|
142.250.185.131
|
||
https://stats.g.doubleclick.net/j/collect
|
unknown
|
||
https://package-bundles.prezi.com/design-view-page/design-view-page.0.1.669/design-view-page.js
|
99.86.4.124
|
||
http://scripts.sil.org/OFLhttp://scripts.sil.org/OFL
|
unknown
|
||
https://www.google.ch/pagead/1p-user-list/1001687149/?random
|
unknown
|
||
https://accounts.google.com/gsi/select
|
unknown
|
||
https://trc-events.taboola.com/1013987/log/3/unip?en=pre_d_eng_tb&tos=5301&scd=0&ssd=1&est=1679350441490&ver=36&isls=true&src=i&invt=3000&msa=483&rv=1&tim=1679350446792&vi=1679350441477&ri=ffe929ddef2842423915f5fa6693e272&sd=v2_b378cf031d2c04fe027453a390d47b88_2d42e7ed-ce12-4d95-9a38-143573131ea5-tuctb12602b_1679350443_1679350443_CNawjgYQ4_E9GIXM2IjwMCABKAEwKziy0A1Az4gQSNrY2ANQ____________AVgAYABo3fHQ14Ww-JM3cAE&ui=2d42e7ed-ce12-4d95-9a38-143573131ea5-tuctb12602b&ref=null&cv=20230319-5-RELEASE&item-url=https%3A%2F%2Fprezi.com%2Fi%2Frx6p99-v72pt%2Fleibowicz-law-llc%2F
|
141.226.228.48
|
||
https://www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-2156578-3&cid=890186390.1679350441&jid=1863212953&_u=YEBAAAAAAAAAAC~&z=665342309
|
172.217.16.196
|
||
https://www.google.com/pagead/1p-user-list/1001687149/?random=1679350440038&cv=11&fst=1679349600000&bg=ffffff&guid=ON&async=1>m=45He33f0&u_w=1280&u_h=1024&label=b1TSCIv8tAUQ7ZDS3QM&frm=0&url=https%3A%2F%2Fprezi.com%2Fi%2Frx6p99-v72pt%2Fleibowicz-law-llc%2F&tiba=Leibowicz%20Law%20LLC%20by%20Secure%20Message%20on%20Prezi%20Design&fmt=3&is_vtc=1&random=2815662213&rmt_tld=0&ipr=y
|
172.217.16.196
|
||
https://www.cloudflare.com/website-terms/
|
unknown
|
||
https://prezi.com/api/v1/fonts/Roboto-Regular2/
|
75.2.83.248
|
||
https://assets1.prezicdn.net/common/fonts/raleway-semibold.woff2
|
18.66.122.80
|
||
https://cdn.taboola.com/libtrc/unip/
|
unknown
|
||
https://googleads.g.doubleclick.net/pagead/viewthroughconversion/
|
unknown
|
||
https://js.hs-scripts.com/20307117.js
|
104.17.213.204
|
||
https://a.nel.cloudflare.com/report/v3?s=1M7BlPieNEPUeflxgH8JDyiU4OA8nq8C3bP8CU4UTqXas%2BzNrC13vYsb%2FUb1gJzgaDOcDd%2FXvD21REZu%2BVOoftkSCpJyzsuYK2xI0kwfGf%2FuYd2C7OKLLmnCiGfhex8L94dO%2BkYMusjaMs4PLHtZmJ9i0FnMfQ%3D%3D
|
35.190.80.1
|
||
https://0701.static.prezi.com/preview/v2/s77ei7fl3yb7fhvhnp324aif536jc3sachvcdoaizecfr3dnitcq_0_0.pn
|
unknown
|
||
https://www.google.ch/pagead/1p-user-list/1001687149/?random=1679350440038&cv=11&fst=1679349600000&bg=ffffff&guid=ON&async=1>m=45He33f0&u_w=1280&u_h=1024&label=b1TSCIv8tAUQ7ZDS3QM&frm=0&url=https%3A%2F%2Fprezi.com%2Fi%2Frx6p99-v72pt%2Fleibowicz-law-llc%2F&tiba=Leibowicz%20Law%20LLC%20by%20Secure%20Message%20on%20Prezi%20Design&fmt=3&is_vtc=1&random=2815662213&rmt_tld=1&ipr=y
|
142.250.185.131
|
||
https://msdiufvm2163e59c4b67124.opticair.ru/cdn-cgi/challenge-platform/h/g/flow/ov1/33218458:1679348439:bmx7m3BQw1jF-7cVwTUY64IvWsKSCouxy3DTHhcNDDc/7ab14ea51c463602/6ffb983076fd321
|
188.114.96.3
|
||
https://cct.google/taggy/agent.js
|
unknown
|
||
https://cdn.jifo.co/prezigram/viewer.js
|
104.26.7.6
|
||
http://scripts.sil.org/OFLhttp://scripts.sil.org/OFLCopyright
|
unknown
|
||
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/common/img/favicon.ico
|
unknown
|
||
https://accounts.google.com/domainreliability/upload
|
142.250.185.141
|
||
https://d2pj2twnjx3fya.cloudfront.net/frontend-packages/viewer-container/share_icon.svg
|
18.66.121.214
|
||
https://prezi.com/api/v1/fonts/Raleway-Regular/
|
75.2.83.248
|
||
https://msdiufvm2163e59c4b67124.opticair.ru/ic/uzn8uvtphy1xrj1sz5pgnchy5
|
188.114.96.3
|
||
https://cdn.taboola.com/scripts/cds-pips.js
|
151.101.65.44
|
||
https://prezi.com/api/v2/fonts/stylesheet/?fontFamily=Raleway,Roboto,Roboto,Raleway
|
75.2.83.248
|
||
https://google.com/pagead/form-data/
|
unknown
|
||
https://www.google.%/ads/ga-audiences
|
unknown
|
||
https://accounts.google.com/gsi/
|
unknown
|
||
https://track.hubspot.com/__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=2572080198&v=1.1&a=20307117&pu=https%3A%2F%2Fprezi.com%2Fi%2Frx6p99-v72pt%2Fleibowicz-law-llc%2F&t=Leibowicz+Law+LLC+by+Secure+Message+on+Prezi+Design&cts=1679350443965&vi=ddb9ecde734e07981710ac1099ed33ca&nc=true&u=108475037.ddb9ecde734e07981710ac1099ed33ca.1679350443942.1679350443942.1679350443942.1&b=108475037.1.1679350443943&cc=15
|
104.19.155.83
|
||
https://prezi.com/api/v2/prezigram/getProjectContent?projectId=rx6p99-v72pt&appVersion=c1425b2827bd9b1b3f231dc8395ca9b1d5fa01f9
|
75.2.83.248
|
||
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/CACHE/css/b54abd3af1be.css
|
18.165.227.73
|
||
https://accounts.google.com/gsi/iframe/select
|
unknown
|
||
https://github.com/twbs/bootstrap/blob/master/LICENSE)
|
unknown
|
||
https://prezi-analytics.com/t2
|
75.2.83.248
|
||
https://msdiufvm2163e59c4b67124.opticair.ru/APP-3T2EUU/nxhyus5zzgru1nt8cyvjhpp51
|
188.114.96.3
|
||
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/684338266:1679348360:wPyuhZla-I6bp0g4OKcM2aMk4pVxy9huIXb_MfDO0-k/7ab14eb85d4f0476/c8b47eb5dcc8be5
|
104.18.7.185
|
||
https://www.google.com/pagead/1p-user-list/1001687149/?random
|
unknown
|
||
https://assets1.prezicdn.net/common/fonts/raleway-regular.woff2
|
18.66.122.80
|
||
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/common/img/favicon.ico?v=2
|
18.165.227.73
|
||
https://www.google.com/
|
unknown
|
||
https://msdiufvm2163e59c4b67124.opticair.ru/ASSETS/img/m_.svg
|
188.114.96.3
|
||
https://accounts.google.com/gsi/status
|
unknown
|
||
https://assets.prezicdn.net/assets-versioned/prezipage-versioned/4367-508a952/CACHE/js/326b169e2ec0.
|
unknown
|
||
https://assets1.prezicdn.net/frontend-packages/react-dom
|
unknown
|
||
https://prezi.com/m/rx6p99
|
unknown
|
||
http://www.hubspot.com
|
unknown
|
||
https://msdiufvm2163e59c4b67124.opticair.ru/favicon.ico
|
188.114.96.3
|
||
https://accounts.google.com/gsi/button
|
unknown
|
||
https://msdiufvm2163e59c4b67124.opticair.ru/cdn-cgi/challenge-platform/h/g/pat/7ab14ea51c463602/1679350458095/f2d0dc9f77670ce20b4490de8382f8888fc9b80d30f75ee5dcd32472f5713fb6/QcDHAlK0tRHAHgt
|
188.114.96.3
|
||
https://www.cloudflare.com/privacypolicy/
|
unknown
|
||
https://connect.facebook.net/signals/plugins/identity.js?v=2.9.99
|
157.240.20.19
|
||
https://prezi.com/i/rx6p99-v72pt/leibowicz-law-llc/
|
75.2.83.248
|
||
https://cdn.jifo.co/js/dist/viewer-f49489f3c1e5f6317f0b-prezigram.js
|
104.26.7.6
|
||
https://prezi.com/i/rx6p99
|
unknown
|
||
https://accounts.google.com/o/oauth2/iframe
|
unknown
|
||
https://www.google.com/pagead/1p-user-list/AW-958692981/?random=1679350440052&cv=11&fst=1679349600000&bg=ffffff&guid=ON&async=1>m=45He33f0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fprezi.com%2Fi%2Frx6p99-v72pt%2Fleibowicz-law-llc%2F&tiba=Leibowicz%20Law%20LLC%20by%20Secure%20Message%20on%20Prezi%20Design&fmt=3&is_vtc=1&random=2004768641&rmt_tld=0&ipr=y
|
172.217.16.196
|
||
https://prezi.com/i/rx6p99-v72pt/
|
75.2.83.248
|
There are 90 hidden URLs, click here to show them.
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
cdn.jifo.co
|
104.26.7.6
|
||
tls13.taboola.map.fastly.net
|
151.101.65.44
|
||
msdiufvm2163e59c4b67124.opticair.ru
|
188.114.96.3
|
||
d3rwxsx3brl7p6.cloudfront.net
|
99.86.4.124
|
||
js.hs-analytics.net
|
104.17.67.176
|
||
prezigram-assets.prezicdn.net
|
18.66.218.128
|
||
stats.g.doubleclick.net
|
108.177.15.157
|
||
prezi-analytics.com
|
75.2.83.248
|
||
scontent.xx.fbcdn.net
|
157.240.20.19
|
||
track.hubspot.com
|
104.19.155.83
|
||
dualstack.tls13.taboola.map.fastly.net
|
151.101.1.44
|
||
js.hs-scripts.com
|
104.17.213.204
|
||
www.google.com
|
142.250.186.68
|
||
bandar-logger.prezi.com
|
52.200.133.160
|
||
d2pj2twnjx3fya.cloudfront.net
|
18.66.121.214
|
||
am-vip001.taboola.com
|
141.226.228.48
|
||
js.hs-banner.com
|
104.18.33.171
|
||
star-mini.c10r.facebook.com
|
157.240.20.35
|
||
a.nel.cloudflare.com
|
35.190.80.1
|
||
accounts.google.com
|
142.250.185.237
|
||
d1zvw2klwdlloe.cloudfront.net
|
18.66.122.80
|
||
us-cds.taboola.com
|
141.226.224.32
|
||
googleads.g.doubleclick.net
|
142.250.185.98
|
||
d1ni990a184w7d.cloudfront.net
|
13.226.175.126
|
||
challenges.cloudflare.com
|
104.18.7.185
|
||
clients.l.google.com
|
142.250.186.142
|
||
prezi.com
|
75.2.83.248
|
||
d3aeorqw7ononu.cloudfront.net
|
18.165.227.73
|
||
www.google.ch
|
142.250.185.131
|
||
assets.prezicdn.net
|
unknown
|
||
assets1.prezicdn.net
|
unknown
|
||
clients2.google.com
|
unknown
|
||
trc-events.taboola.com
|
unknown
|
||
cdn.linkedin.oribi.io
|
unknown
|
||
cds.taboola.com
|
unknown
|
||
package-bundles.prezi.com
|
unknown
|
||
www.facebook.com
|
unknown
|
||
www.linkedin.com
|
unknown
|
||
trc.taboola.com
|
unknown
|
||
connect.facebook.net
|
unknown
|
||
px.ads.linkedin.com
|
unknown
|
||
snap.licdn.com
|
unknown
|
||
cdn.taboola.com
|
unknown
|
||
pips.taboola.com
|
unknown
|
There are 34 hidden domains, click here to show them.
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
104.19.155.83
|
track.hubspot.com
|
United States
|
||
18.66.122.80
|
d1zvw2klwdlloe.cloudfront.net
|
United States
|
||
99.86.4.124
|
d3rwxsx3brl7p6.cloudfront.net
|
United States
|
||
108.177.15.157
|
stats.g.doubleclick.net
|
United States
|
||
104.18.33.171
|
js.hs-banner.com
|
United States
|
||
18.66.121.214
|
d2pj2twnjx3fya.cloudfront.net
|
United States
|
||
104.17.213.204
|
js.hs-scripts.com
|
United States
|
||
52.109.88.191
|
unknown
|
United States
|
||
192.168.2.3
|
unknown
|
unknown
|
||
104.26.7.6
|
cdn.jifo.co
|
United States
|
||
20.189.173.15
|
unknown
|
United States
|
||
142.250.185.141
|
unknown
|
United States
|
||
104.17.67.176
|
js.hs-analytics.net
|
United States
|
||
141.226.228.48
|
am-vip001.taboola.com
|
Israel
|
||
35.190.80.1
|
a.nel.cloudflare.com
|
United States
|
||
13.226.175.126
|
d1ni990a184w7d.cloudfront.net
|
United States
|
||
75.2.83.248
|
prezi-analytics.com
|
United States
|
||
151.101.193.44
|
unknown
|
United States
|
||
104.18.7.185
|
challenges.cloudflare.com
|
United States
|
||
52.200.133.160
|
bandar-logger.prezi.com
|
United States
|
||
18.165.227.73
|
d3aeorqw7ononu.cloudfront.net
|
United States
|
||
142.250.185.237
|
accounts.google.com
|
United States
|
||
151.101.1.44
|
dualstack.tls13.taboola.map.fastly.net
|
United States
|
||
18.66.218.128
|
prezigram-assets.prezicdn.net
|
United States
|
||
157.240.20.19
|
scontent.xx.fbcdn.net
|
United States
|
||
239.255.255.250
|
unknown
|
Reserved
|
||
52.109.8.45
|
unknown
|
United States
|
||
151.101.65.44
|
tls13.taboola.map.fastly.net
|
United States
|
||
142.250.185.131
|
www.google.ch
|
United States
|
||
188.114.96.3
|
msdiufvm2163e59c4b67124.opticair.ru
|
European Union
|
||
142.250.186.142
|
clients.l.google.com
|
United States
|
||
141.226.224.32
|
us-cds.taboola.com
|
Israel
|
||
192.229.221.95
|
unknown
|
United States
|
||
157.240.20.35
|
star-mini.c10r.facebook.com
|
United States
|
||
172.217.16.196
|
unknown
|
United States
|
||
127.0.0.1
|
unknown
|
unknown
|
||
142.250.185.98
|
googleads.g.doubleclick.net
|
United States
|
There are 27 hidden IPs, click here to show them.
Registry
Path
|
Value
|
Malicious
|
|
---|---|---|---|
HKEY_CURRENT_USER\Software\Microsoft\Office\Outlook\Settings\Data
|
global_Accessibility_ReminderType
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Outlook\Profiles\NoEmail\9207f3e0a3b11019908b08002b2a56c2
|
11023d05
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{AA8FA310-0939-4CE3-B9BB-AE05B2695110}
|
5
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{AA8FA310-0939-4CE3-B9BB-AE05B2695110}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{691E1C12-2693-4D4A-852C-7478657BBE6E}
|
255
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{691E1C12-2693-4D4A-852C-7478657BBE6E}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{287BF315-5A11-4B2F-B069-B761ADE25A49}
|
4
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{287BF315-5A11-4B2F-B069-B761ADE25A49}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{6B6B571B-F4E3-4FBB-A83F-0790D11D19AB}
|
255
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{6B6B571B-F4E3-4FBB-A83F-0790D11D19AB}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{284B8D30-4AA6-4A0F-9143-CE2E8E1F10F0}
|
255
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{284B8D30-4AA6-4A0F-9143-CE2E8E1F10F0}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{F762CE39-AC6C-4E1C-B55F-0E11586E6D07}
|
5
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{F762CE39-AC6C-4E1C-B55F-0E11586E6D07}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{02CAC15F-D4BE-400E-9127-D54982AA4AE9}
|
5
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{02CAC15F-D4BE-400E-9127-D54982AA4AE9}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{11ADBD74-7DF2-4E8E-802B-B3BCBFD04A78}
|
5
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{11ADBD74-7DF2-4E8E-802B-B3BCBFD04A78}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{02FD33DF-F746-4A10-93A0-2BC6273BC8E4}
|
4
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{02FD33DF-F746-4A10-93A0-2BC6273BC8E4}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{13967EE5-6B23-4BCD-A496-1D788449A8CF}
|
4
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{13967EE5-6B23-4BCD-A496-1D788449A8CF}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ULSMonitor
|
ULSTagIds0
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ULSMonitor
|
ULSCategoriesSeverities
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{AA8FA310-0939-4CE3-B9BB-AE05B2695110}
|
5
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{AA8FA310-0939-4CE3-B9BB-AE05B2695110}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{691E1C12-2693-4D4A-852C-7478657BBE6E}
|
255
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{691E1C12-2693-4D4A-852C-7478657BBE6E}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{287BF315-5A11-4B2F-B069-B761ADE25A49}
|
4
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{287BF315-5A11-4B2F-B069-B761ADE25A49}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{6B6B571B-F4E3-4FBB-A83F-0790D11D19AB}
|
255
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{6B6B571B-F4E3-4FBB-A83F-0790D11D19AB}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{284B8D30-4AA6-4A0F-9143-CE2E8E1F10F0}
|
255
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{284B8D30-4AA6-4A0F-9143-CE2E8E1F10F0}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{F762CE39-AC6C-4E1C-B55F-0E11586E6D07}
|
5
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{F762CE39-AC6C-4E1C-B55F-0E11586E6D07}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{02CAC15F-D4BE-400E-9127-D54982AA4AE9}
|
5
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{02CAC15F-D4BE-400E-9127-D54982AA4AE9}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{11ADBD74-7DF2-4E8E-802B-B3BCBFD04A78}
|
5
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{11ADBD74-7DF2-4E8E-802B-B3BCBFD04A78}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{02FD33DF-F746-4A10-93A0-2BC6273BC8E4}
|
4
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{02FD33DF-F746-4A10-93A0-2BC6273BC8E4}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{13967EE5-6B23-4BCD-A496-1D788449A8CF}
|
4
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ETWMonitor\{13967EE5-6B23-4BCD-A496-1D788449A8CF}
|
Categories
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ULSMonitor
|
ULSTagIds0
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\outlook.exe\ULSMonitor
|
ULSCategoriesSeverities
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\Outlook\Settings
|
Accounts
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\Outlook\Settings\Data
|
global_AccountsNeedResyncing
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-2660496737-530772487-1027249058-1002
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
HKEY_CURRENT_USER\Software\Microsoft\Speech_OneCore\Voices
|
DefaultTokenId
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.cdm.origin_data
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blocklist_cache_md5_digest
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
||
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
||
HKEY_USERSS-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry
|
TraceTimeLast
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-2660496737-530772487-1027249058-1002
|
There are 86 hidden registries, click here to show them.
Memdumps
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
---|---|---|---|---|
10E0A5D4000
|
heap
|
page read and write
|
||
1FDADE02000
|
heap
|
page read and write
|
||
69B1CE000
|
stack
|
page read and write
|
||
10E0A5DC000
|
heap
|
page read and write
|
||
10E08A7B000
|
heap
|
page read and write
|
||
10E08ABD000
|
heap
|
page read and write
|
||
10E0EF1B000
|
heap
|
page read and write
|
||
1FDADF3B000
|
heap
|
page read and write
|
||
1FDAD647000
|
heap
|
page read and write
|
||
10E0F3A0000
|
trusted library allocation
|
page read and write
|
||
10E0EF2D000
|
heap
|
page read and write
|
||
10E0EF1D000
|
heap
|
page read and write
|
||
10E08A00000
|
heap
|
page read and write
|
||
10E0A5F0000
|
heap
|
page read and write
|
||
1FDAD5A0000
|
heap
|
page read and write
|
||
10E0EEBA000
|
heap
|
page read and write
|
||
10E0EF0B000
|
heap
|
page read and write
|
||
10E08ACC000
|
heap
|
page read and write
|
||
1FDADF02000
|
heap
|
page read and write
|
||
10E08AD0000
|
heap
|
page read and write
|
||
2D7B5466000
|
heap
|
page read and write
|
||
10E0EB30000
|
heap
|
page readonly
|
||
10E08B99000
|
heap
|
page read and write
|
||
10E08B27000
|
heap
|
page read and write
|
||
10E0A50D000
|
heap
|
page read and write
|
||
10E0A3B0000
|
heap
|
page read and write
|
||
10E0EB20000
|
trusted library allocation
|
page read and write
|
||
10E08AB9000
|
heap
|
page read and write
|
||
69B5FC000
|
stack
|
page read and write
|
||
1FDAD621000
|
heap
|
page read and write
|
||
10E0A529000
|
heap
|
page read and write
|
||
1FDADF00000
|
heap
|
page read and write
|
||
10E08AD9000
|
heap
|
page read and write
|
||
10E0A516000
|
heap
|
page read and write
|
||
10E08A4D000
|
heap
|
page read and write
|
||
10E0EEFA000
|
heap
|
page read and write
|
||
E39C6FB000
|
stack
|
page read and write
|
||
10E08AE6000
|
heap
|
page read and write
|
||
51B5FF000
|
stack
|
page read and write
|
||
10E08B50000
|
heap
|
page read and write
|
||
10E0EEDD000
|
heap
|
page read and write
|
||
1FDAD540000
|
heap
|
page read and write
|
||
2D7B5502000
|
heap
|
page read and write
|
||
10E0EED7000
|
heap
|
page read and write
|
||
10E08AC5000
|
heap
|
page read and write
|
||
2D7B52B0000
|
heap
|
page read and write
|
||
10E08A5D000
|
heap
|
page read and write
|
||
2D7B5C00000
|
heap
|
page read and write
|
||
51A76B000
|
stack
|
page read and write
|
||
10E0F002000
|
heap
|
page read and write
|
||
10E0EE44000
|
heap
|
page read and write
|
||
2D7B5441000
|
heap
|
page read and write
|
||
10E0EF46000
|
heap
|
page read and write
|
||
10E0EE76000
|
heap
|
page read and write
|
||
2D7B5513000
|
heap
|
page read and write
|
||
E39C5F8000
|
stack
|
page read and write
|
||
51B3F9000
|
stack
|
page read and write
|
||
10E0F210000
|
trusted library allocation
|
page read and write
|
||
51B4FF000
|
stack
|
page read and write
|
||
10E08A7E000
|
heap
|
page read and write
|
||
2D7B5C02000
|
heap
|
page read and write
|
||
2D7B5484000
|
heap
|
page read and write
|
||
10E08A28000
|
heap
|
page read and write
|
||
10E0A5DA000
|
heap
|
page read and write
|
||
10E0A3E0000
|
trusted library allocation
|
page read and write
|
||
E39CAFF000
|
stack
|
page read and write
|
||
10E0EE00000
|
heap
|
page read and write
|
||
10E0A519000
|
heap
|
page read and write
|
||
10E08B36000
|
heap
|
page read and write
|
||
1FDAD600000
|
heap
|
page read and write
|
||
1FDAD613000
|
heap
|
page read and write
|
||
10E0A402000
|
heap
|
page read and write
|
||
2D7B5500000
|
heap
|
page read and write
|
||
69B4FE000
|
stack
|
page read and write
|
||
51AEFE000
|
stack
|
page read and write
|
||
10E0A500000
|
heap
|
page read and write
|
||
2D7B5A70000
|
trusted library allocation
|
page read and write
|
||
1FDAD69B000
|
heap
|
page read and write
|
||
2D7B5400000
|
heap
|
page read and write
|
||
1FDADF18000
|
heap
|
page read and write
|
||
10E0A563000
|
heap
|
page read and write
|
||
51B2FE000
|
stack
|
page read and write
|
||
10E08B0B000
|
heap
|
page read and write
|
||
E39C8FE000
|
stack
|
page read and write
|
||
1FDADF15000
|
heap
|
page read and write
|
||
10E0EE5D000
|
heap
|
page read and write
|
||
1FDAD62B000
|
heap
|
page read and write
|
||
10E08AEC000
|
heap
|
page read and write
|
||
10E0F013000
|
heap
|
page read and write
|
||
1FDADF33000
|
heap
|
page read and write
|
||
51B0F8000
|
stack
|
page read and write
|
||
10E0A5E1000
|
heap
|
page read and write
|
||
10E0A990000
|
trusted library allocation
|
page read and write
|
||
10E08ACE000
|
heap
|
page read and write
|
||
10E0A5E6000
|
heap
|
page read and write
|
||
10E08A66000
|
heap
|
page read and write
|
||
10E0EF06000
|
heap
|
page read and write
|
||
1FDAD5D0000
|
trusted library allocation
|
page read and write
|
||
1FDADF1E000
|
heap
|
page read and write
|
||
10E0A524000
|
heap
|
page read and write
|
||
10E08BAB000
|
heap
|
page read and write
|
||
10E0EF02000
|
heap
|
page read and write
|
||
2D7B5438000
|
heap
|
page read and write
|
||
2D7B544D000
|
heap
|
page read and write
|
||
E39C4FE000
|
stack
|
page read and write
|
||
1FDAD702000
|
heap
|
page read and write
|
||
51B7FF000
|
stack
|
page read and write
|
||
10E088B0000
|
heap
|
page read and write
|
||
51AFF9000
|
stack
|
page read and write
|
||
10E0A513000
|
heap
|
page read and write
|
||
E39C47E000
|
stack
|
page read and write
|
||
10E08AC9000
|
heap
|
page read and write
|
||
10E0EE63000
|
heap
|
page read and write
|
||
10E08A48000
|
heap
|
page read and write
|
||
10E0A507000
|
heap
|
page read and write
|
||
10E0A535000
|
heap
|
page read and write
|
||
2D7B52A0000
|
heap
|
page read and write
|
||
10E08B58000
|
heap
|
page read and write
|
||
10E08AD4000
|
heap
|
page read and write
|
||
51ACFE000
|
stack
|
page read and write
|
||
51B8FE000
|
stack
|
page read and write
|
||
10E0A520000
|
heap
|
page read and write
|
||
1FDADF27000
|
heap
|
page read and write
|
||
1FDAD641000
|
heap
|
page read and write
|
||
10E0EEC2000
|
heap
|
page read and write
|
||
10E08850000
|
heap
|
page read and write
|
||
2D7B5459000
|
heap
|
page read and write
|
||
10E0EE96000
|
heap
|
page read and write
|
||
10E0F3E0000
|
heap
|
page read and write
|
||
10E08B73000
|
heap
|
page read and write
|
||
10E08AB0000
|
heap
|
page read and write
|
||
10E08A86000
|
heap
|
page read and write
|
||
10E0A5F3000
|
heap
|
page read and write
|
||
1FDADF2C000
|
heap
|
page read and write
|
||
10E08840000
|
heap
|
page read and write
|
||
1FDAD550000
|
heap
|
page read and write
|
||
10E08A13000
|
heap
|
page read and write
|
||
10E08AAC000
|
heap
|
page read and write
|
||
2D7B5C15000
|
heap
|
page read and write
|
||
2D7B542A000
|
heap
|
page read and write
|
||
69B14F000
|
stack
|
page read and write
|
||
10E08B13000
|
heap
|
page read and write
|
||
E39C7F6000
|
stack
|
page read and write
|
||
2D7B5413000
|
heap
|
page read and write
|
||
2D7B5310000
|
heap
|
page read and write
|
||
10E08B68000
|
heap
|
page read and write
|
||
10E08AD2000
|
heap
|
page read and write
|
||
10E0A5AB000
|
heap
|
page read and write
|
||
10E0F390000
|
heap
|
page read and write
|
||
E39C9FE000
|
stack
|
page read and write
|
||
E39C19C000
|
stack
|
page read and write
|
||
10E0EE38000
|
heap
|
page read and write
|
||
10E0EEF4000
|
heap
|
page read and write
|
||
51B6FC000
|
stack
|
page read and write
|
||
10E0EF50000
|
heap
|
page read and write
|
||
10E0ED00000
|
heap
|
page read and write
|
||
7DF44EA81000
|
trusted library allocation
|
page execute read
|
||
69B0CB000
|
stack
|
page read and write
|
||
10E0EEE9000
|
heap
|
page read and write
|
||
10E0A55E000
|
heap
|
page read and write
|
||
10E0EEFE000
|
heap
|
page read and write
|
There are 151 hidden memdumps, click here to show them.
DOM / HTML
URL
|
Malicious
|
|
---|---|---|
https://msdiufvm2163e59c4b67124.opticair.ru/ID-6418dac4aed60
|
||
https://prezi.com/i/rx6p99-v72pt/leibowicz-law-llc/
|
||
https://msdiufvm2163e59c4b67124.opticair.ru/
|
||
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/yqku6/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
|
||
https://msdiufvm2163e59c4b67124.opticair.ru/
|
||
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/yqku6/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
|
||
https://msdiufvm2163e59c4b67124.opticair.ru/?__cf_chl_tk=exJe2ObOXVnrQJ9NellqkqZCR558K475Xz1JjgOteL0-1679350457-0-gaNycGzNCuU
|