Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Chrome Cache Entry: 61
|
ASCII text, with very long lines (2294)
|
downloaded
|
||
|
Chrome Cache Entry: 62
|
ASCII text, with very long lines (6841)
|
downloaded
|
||
|
Chrome Cache Entry: 63
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 64
|
ASCII text, with very long lines (3572), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 65
|
ASCII text, with very long lines (65531)
|
downloaded
|
||
|
Chrome Cache Entry: 66
|
HTML document, ASCII text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 67
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
|
Chrome Cache Entry: 68
|
ASCII text, with very long lines (2124)
|
downloaded
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument http:///
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2052 --field-trial-handle=2000,i,17449975914517360887,1340231660079692741,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=1468 --field-trial-handle=964,i,7821398057109531615,15787434121257409365,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "http://apidevst.com"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://apidevst.com
|
 |
||
|
https://apidevst.com/favicon.ico
|
193.124.22.107
|
|
|
|
http://apidevst.com/
|
193.124.22.107
|
|
|
|
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
||
|
https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=&oit=0&oft=1&pgcl=20&gs_rn=42&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw
|
172.217.165.196
|
||
|
https://apidevst.com/
|
|||
|
http://www.broofa.com
|
unknown
|
||
|
https://csp.withgoogle.com/csp/lcreport/
|
unknown
|
||
|
https://apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_0
|
142.250.64.206
|
||
|
https://www.google.com/async/newtab_promos
|
172.217.165.196
|
||
|
https://www.google.com/async/newtab_ogb?hl=en-US&async=fixed:0
|
172.217.165.196
|
||
|
https://apis.google.com
|
unknown
|
||
|
https://workspace.google.com/:session_prefix:marketplace/appfinder?usegapi=1
|
unknown
|
||
|
https://domains.google.com/suggest/flow
|
unknown
|
||
|
https://clients6.google.com
|
unknown
|
||
|
https://plus.google.com
|
unknown
|
There are 5 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
apidevst.com
|
193.124.22.107
|
|
|
|
plus.l.google.com
|
142.250.64.206
|
||
|
www.google.com
|
172.217.165.196
|
||
|
apis.google.com
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
193.124.22.107
|
apidevst.com
|
Russian Federation
|
|
|
|
192.168.2.4
|
unknown
|
unknown
|
|
|
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
142.250.64.206
|
plus.l.google.com
|
United States
|
||
|
172.217.165.196
|
www.google.com
|
United States
|
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://apidevst.com/
|