General Info

URL

http://dicasemgeral.xpg.uol.com.br/noticias/22254/investimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise/?fdx_switcher=true

Full analysis
https://app.any.run/tasks/d26d5a85-98c8-4638-b16b-faf53a6ab431
Verdict
Malicious activity
Analysis date
11/8/2019, 14:39:08
OS:
Windows 7 Professional Service Pack 1 (build: 7601, 32 bit)
Indicators:

ANY.RUN is an interactive service which provides full access to the guest system. Information in this report could be distored by user actions and is provided for user acknowledgement as it is. ANY.RUN does not guarantee maliciousness or safety of the content.

Software environment set and analysis options

Launch configuration

Task duration
120 seconds
Additional time used
60 seconds
Fakenet option
off
Heavy Evaision option
off
MITM proxy
off
Route via Tor
off
Network geolocation
off
Privacy
Public submission
Autoconfirmation of UAC
on

Software preset

  • Internet Explorer 8.0.7601.17514
  • Adobe Acrobat Reader DC MUI (15.023.20070)
  • Adobe Flash Player 26 ActiveX (26.0.0.131)
  • Adobe Flash Player 26 NPAPI (26.0.0.131)
  • Adobe Flash Player 26 PPAPI (26.0.0.131)
  • Adobe Refresh Manager (1.8.0)
  • CCleaner (5.35)
  • FileZilla Client 3.36.0 (3.36.0)
  • Google Chrome (75.0.3770.100)
  • Google Update Helper (1.3.34.7)
  • Java 8 Update 92 (8.0.920.14)
  • Java Auto Updater (2.8.92.14)
  • Microsoft .NET Framework 4.7.2 (4.7.03062)
  • Microsoft Office Access MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Access MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office Access MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office Access MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office Access MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office Access MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office Access MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office Access MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office Access MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office Access MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office Access Setup Metadata MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Excel MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Excel MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office Excel MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office Excel MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office Excel MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office Excel MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office Excel MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office Excel MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office Excel MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office Excel MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office Groove MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office Groove MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office Groove MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office Groove MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office Groove MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office Groove MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office Groove MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office Groove MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office Groove MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office IME (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office IME (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office InfoPath MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office InfoPath MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office InfoPath MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office InfoPath MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office InfoPath MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office InfoPath MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office InfoPath MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office InfoPath MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office Language Pack 2010 - French/Français (14.0.4763.1000)
  • Microsoft Office Language Pack 2010 - German/Deutsch (14.0.4763.1000)
  • Microsoft Office Language Pack 2010 - Italian/Italiano (14.0.4763.1000)
  • Microsoft Office Language Pack 2010 - Japanese/日本語 (14.0.4763.1000)
  • Microsoft Office Language Pack 2010 - Korean/한국어 (14.0.4763.1000)
  • Microsoft Office Language Pack 2010 - Portuguese/Português (Brasil) (14.0.4763.1000)
  • Microsoft Office Language Pack 2010 - Russian/русский (14.0.4763.1000)
  • Microsoft Office Language Pack 2010 - Spanish/Español (14.0.4763.1000)
  • Microsoft Office Language Pack 2010 - Turkish/Türkçe (14.0.4763.1013)
  • Microsoft Office O MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office O MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office O MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office O MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office O MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office O MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office O MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office O MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office O MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office OneNote MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office OneNote MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office OneNote MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office OneNote MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office OneNote MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office OneNote MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office OneNote MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office OneNote MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office OneNote MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office OneNote MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office Outlook MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Outlook MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office Outlook MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office Outlook MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office Outlook MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office Outlook MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office Outlook MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office Outlook MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office Outlook MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office Outlook MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office PowerPoint MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office PowerPoint MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office PowerPoint MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office PowerPoint MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office PowerPoint MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office PowerPoint MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office PowerPoint MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office PowerPoint MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office PowerPoint MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office Professional 2010 (14.0.6029.1000)
  • Microsoft Office Proof (Arabic) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (Basque) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (Catalan) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (Dutch) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (English) 2010 (14.0.6029.1000)
  • Microsoft Office Proof (French) 2010 (14.0.6029.1000)
  • Microsoft Office Proof (Galician) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (German) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (Spanish) 2010 (14.0.6029.1000)
  • Microsoft Office Proof (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office Proof (Ukrainian) 2010 (14.0.4763.1000)
  • Microsoft Office Proofing (English) 2010 (14.0.6029.1000)
  • Microsoft Office Proofing (French) 2010 (14.0.4763.1000)
  • Microsoft Office Proofing (German) 2010 (14.0.4763.1000)
  • Microsoft Office Proofing (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office Proofing (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office Proofing (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office Proofing (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office Proofing (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office Proofing (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office Proofing (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office Publisher MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Publisher MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office Publisher MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office Publisher MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office Publisher MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office Publisher MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office Publisher MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office Publisher MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office Publisher MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office Publisher MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office SharePoint Designer MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office SharePoint Designer MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office SharePoint Designer MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office SharePoint Designer MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office SharePoint Designer MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office SharePoint Designer MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office SharePoint Designer MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office SharePoint Designer MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office SharePoint Designer MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office Shared MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Shared MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office Shared MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office Shared MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office Shared MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office Shared MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office Shared MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office Shared MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office Shared MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office Shared MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office Shared Setup Metadata MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Single Image 2010 (14.0.6029.1000)
  • Microsoft Office Word MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Word MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office Word MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office Word MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office Word MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office Word MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office Word MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office Word MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office Word MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office Word MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office X MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office X MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office X MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office X MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office X MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office X MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office X MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office X MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office X MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (9.0.30729.6161)
  • Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (10.0.40219)
  • Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (12.0.30501.0)
  • Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (12.0.21005)
  • Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (12.0.21005)
  • Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.21.27702 (14.21.27702.2)
  • Microsoft Visual C++ 2019 X86 Additional Runtime - 14.21.27702 (14.21.27702)
  • Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.21.27702 (14.21.27702)
  • Mozilla Firefox 68.0.1 (x86 en-US) (68.0.1)
  • Notepad++ (32-bit x86) (7.5.1)
  • Opera 12.15 (12.15.1748)
  • Skype version 8.29 (8.29)
  • Update for Microsoft .NET Framework 4.7.2 (KB4087364) (1)
  • VLC media player (2.2.6)
  • WinRAR 5.60 (32-bit) (5.60.0)

Hotfixes

  • Client LanguagePack Package
  • Client Refresh LanguagePack Package
  • CodecPack Basic Package
  • Foundation Package
  • IE Troubleshooters Package
  • InternetExplorer Optional Package
  • KB2534111
  • KB2999226
  • KB4019990
  • KB976902
  • LocalPack AU Package
  • LocalPack CA Package
  • LocalPack GB Package
  • LocalPack US Package
  • LocalPack ZA Package
  • ProfessionalEdition
  • UltimateEdition

Behavior activities

MALICIOUS SUSPICIOUS INFO

No malicious indicators.

Executed via COM
  • FlashUtil32_26_0_0_131_ActiveX.exe (PID: 3784)
Reads Internet Cache Settings
  • iexplore.exe (PID: 3424)
Application launched itself
  • iexplore.exe (PID: 2740)
Creates files in the user directory
  • iexplore.exe (PID: 2740)
  • iexplore.exe (PID: 3424)
  • FlashUtil32_26_0_0_131_ActiveX.exe (PID: 3784)
Reads internet explorer settings
  • iexplore.exe (PID: 3424)
Dropped object may contain TOR URL's
  • iexplore.exe (PID: 3424)
Changes internet zones settings
  • iexplore.exe (PID: 2740)
Reads settings of System Certificates
  • iexplore.exe (PID: 3424)

Find more information about signature artifacts and mapping to MITRE ATT&CK™ MATRIX at the full report

Screenshots

Processes

Total processes
36
Monitored processes
3
Malicious processes
0
Suspicious processes
0

Behavior graph

+
start iexplore.exe iexplore.exe flashutil32_26_0_0_131_activex.exe no specs
Specs description
Program did not start
Integrity level elevation
Task сontains an error or was rebooted
Process has crashed
Task contains several apps running
Executable file was dropped
Debug information is available
Process was injected
Network attacks were detected
Application downloaded the executable file
Actions similar to stealing personal data
Behavior similar to exploiting the vulnerability
Inspected object has sucpicious PE structure
File is detected by antivirus software
CPU overrun
RAM overrun
Process starts the services
Process was added to the startup
Behavior similar to spam
Low-level access to the HDD
Probably Tor was used
System was rebooted
Connects to the network
Known threat

Process information

Click at the process to see the details.

PID
2740
CMD
"C:\Program Files\Internet Explorer\iexplore.exe" -nohome
Path
C:\Program Files\Internet Explorer\iexplore.exe
Indicators
Parent process
––
User
admin
Integrity Level
MEDIUM
Version:
Company
Microsoft Corporation
Description
Internet Explorer
Version
8.00.7600.16385 (win7_rtm.090713-1255)
Modules
Image
c:\program files\internet explorer\iexplore.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\shell32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\psapi.dll
c:\windows\system32\oleacc.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\profapi.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\comdlg32.dll
c:\windows\system32\cryptbase.dll
c:\program files\internet explorer\sqmapi.dll
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\rasapi32.dll
c:\windows\system32\rasman.dll
c:\windows\system32\rtutils.dll
c:\windows\system32\sensapi.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\ieui.dll
c:\windows\system32\msimg32.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\clbcatq.dll
c:\program files\internet explorer\ieproxy.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\url.dll
c:\windows\system32\version.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\propsys.dll
c:\windows\system32\xmllite.dll
c:\windows\system32\explorerframe.dll
c:\windows\system32\duser.dll
c:\windows\system32\dui70.dll
c:\windows\system32\msfeeds.dll
c:\windows\system32\sxs.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\normaliz.dll
c:\windows\system32\wship6.dll
c:\windows\system32\fwpuclnt.dll
c:\windows\system32\mlang.dll
c:\program files\common files\microsoft shared\ink\tiptsf.dll
c:\windows\system32\wer.dll

PID
3424
CMD
"C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:2740 CREDAT:71937
Path
C:\Program Files\Internet Explorer\iexplore.exe
Indicators
Parent process
iexplore.exe
User
admin
Integrity Level
LOW
Version:
Company
Microsoft Corporation
Description
Internet Explorer
Version
8.00.7600.16385 (win7_rtm.090713-1255)
Modules
Image
c:\program files\internet explorer\iexplore.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\shell32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\psapi.dll
c:\windows\system32\oleacc.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\comdlg32.dll
c:\program files\internet explorer\ieshims.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\rpcrtremote.dll
c:\program files\internet explorer\sqmapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\propsys.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\profapi.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\rsaenh.dll
c:\program files\internet explorer\ieproxy.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\mlang.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\apphelp.dll
c:\program files\java\jre1.8.0_92\bin\ssv.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
c:\windows\system32\version.dll
c:\progra~1\micros~1\office14\urlredir.dll
c:\windows\system32\secur32.dll
c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
c:\progra~1\micros~1\office14\msohev.dll
c:\program files\java\jre1.8.0_92\bin\jp2ssv.dll
c:\program files\java\jre1.8.0_92\bin\msvcr100.dll
c:\program files\java\jre1.8.0_92\bin\deploy.dll
c:\windows\system32\imagehlp.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\sxs.dll
c:\windows\system32\rasapi32.dll
c:\windows\system32\rasman.dll
c:\windows\system32\rtutils.dll
c:\windows\system32\sensapi.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\normaliz.dll
c:\windows\system32\wship6.dll
c:\windows\system32\fwpuclnt.dll
c:\windows\system32\mshtml.dll
c:\windows\system32\msls31.dll
c:\windows\system32\userenv.dll
c:\windows\system32\msimtf.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\schannel.dll
c:\windows\system32\credssp.dll
c:\windows\system32\ncrypt.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\bcryptprimitives.dll
c:\windows\system32\gpapi.dll
c:\windows\system32\p2pcollab.dll
c:\windows\system32\qagentrt.dll
c:\windows\system32\feclient.dll
c:\windows\system32\fveui.dll
c:\windows\system32\iepeers.dll
c:\windows\system32\winspool.drv
c:\windows\system32\jscript.dll
c:\windows\system32\xmllite.dll
c:\windows\system32\macromed\flash\flash32_26_0_0_131.ocx
c:\windows\system32\winmm.dll
c:\windows\system32\dsound.dll
c:\windows\system32\powrprof.dll
c:\windows\system32\msimg32.dll
c:\windows\system32\mscms.dll
c:\windows\system32\dinput8.dll
c:\windows\system32\imgutil.dll
c:\windows\system32\pngfilt.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\wdmaud.drv
c:\windows\system32\ksuser.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ddrawex.dll
c:\windows\system32\ddraw.dll
c:\windows\system32\dciman32.dll
c:\windows\system32\audioses.dll
c:\windows\system32\msacm32.drv
c:\windows\system32\msacm32.dll
c:\windows\system32\midimap.dll
c:\windows\system32\cryptnet.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\dhcpcsvc6.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\cabinet.dll
c:\windows\system32\devrtl.dll
c:\windows\system32\t2embed.dll
c:\windows\system32\dxtrans.dll
c:\windows\system32\atl.dll
c:\windows\system32\dxtmsft.dll
c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll
c:\windows\system32\d3dim700.dll

PID
3784
CMD
C:\Windows\system32\Macromed\Flash\FlashUtil32_26_0_0_131_ActiveX.exe -Embedding
Path
C:\Windows\system32\Macromed\Flash\FlashUtil32_26_0_0_131_ActiveX.exe
Indicators
No indicators
Parent process
––
User
admin
Integrity Level
MEDIUM
Version:
Company
Adobe Systems Incorporated
Description
Adobe® Flash® Player Installer/Uninstaller 26.0 r0
Version
26,0,0,131
Modules
Image
c:\windows\system32\macromed\flash\flashutil32_26_0_0_131_activex.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\comres.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\secur32.dll
c:\windows\system32\netapi32.dll
c:\windows\system32\netutils.dll
c:\windows\system32\srvcli.dll
c:\windows\system32\wkscli.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\version.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\riched20.dll
c:\windows\system32\cryptui.dll
c:\windows\system32\shdocvw.dll
c:\windows\system32\ws2help.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\sfc_os.dll
c:\windows\system32\psapi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\macromed\flash\flashutil32_26_0_0_131_activex.dll
c:\windows\system32\comdlg32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\dinput8.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\sxs.dll
c:\windows\system32\mlang.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll

Registry activity

Total events
669
Read events
557
Write events
112
Delete events
0

Modification events

PID
Process
Operation
Key
Name
Value
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main
CompatibilityFlags
0
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
UNCAsIntranet
0
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
AutoDetect
1
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones
SecuritySafe
1
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
ProxyEnable
0
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
SavedLegacySettings
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
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Recovery\Active
{2C38B361-022D-11EA-AB41-5254004A04AF}
0
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2670000A-7350-4F3C-8081-5663EE0C6C49}\iexplore
Type
4
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2670000A-7350-4F3C-8081-5663EE0C6C49}\iexplore
Count
2
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2670000A-7350-4F3C-8081-5663EE0C6C49}\iexplore
Time
E3070B00050008000D0027001800EE00
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}\iexplore
Type
4
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}\iexplore
Count
2
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}\iexplore
Time
E3070B00050008000D0027001800EE00
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main
FullScreen
no
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main
Window_Placement
2C0000000200000003000000FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF20000000200000004003000078020000
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Favorites\Links
Order
08000000020000000C01000001000000020000007E0000000000000070003200EC000000464B245120005355474745537E312E55524C0000540008000400EFBE454B974D464B24512A000000F94300000000020000000000000000000000000000005300750067006700650073007400650064002000530069007400650073002E00750072006C0000001C00000000000000820000000100000074003200E2000000464B24512000574542534C497E312E55524C0000580008000400EFBE454B864A464B24512A000000743E0000000003000000000000000000000000000000570065006200200053006C006900630065002000470061006C006C006500720079002E00750072006C0000001C00000000000000
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore
Type
3
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore
Count
2
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore
Time
E3070B00050008000D00270018008B01
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore
LoadTime
9
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore
Type
3
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore
Count
2
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore
Time
E3070B00050008000D0027001800B901
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore
LoadTime
46
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore
Type
3
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore
Count
2
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore
Time
E3070B00050008000D00270018000802
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore
LoadTime
28
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Type
1
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Count
1
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Time
E3070B00050008000D0027002100FE00
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LinksBar\ItemCache\0
Path
C:\Users\admin\Favorites\Links\Suggested Sites.url
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LinksBar\ItemCache\0
Handler
{B0FA7D7C-7195-4F03-B03E-9DC1C9EBC394}
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LinksBar\ItemCache\0
FeedUrl
https://ieonline.microsoft.com/#ieslice
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LinksBar\ItemCache\0
DisplayName
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LinksBar\ItemCache\0
ErrorState
0
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LinksBar\ItemCache\0
DisplayMask
0
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LinksBar\ItemCache\1
Path
C:\Users\admin\Favorites\Links\Web Slice Gallery.url
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LinksBar\ItemCache\1
Handler
{B0FA7D7C-7195-4F03-B03E-9DC1C9EBC394}
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LinksBar\ItemCache\1
FeedUrl
http://go.microsoft.com/fwlink/?LinkId=121315
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LinksBar\ItemCache\1
DisplayName
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LinksBar\ItemCache\1
ErrorState
0
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LinksBar\ItemCache\1
DisplayMask
0
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Count
2
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Time
E3070B00050008000D00270035001D01
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Count
3
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Time
E3070B00050008000D00270035003003
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TypedURLs
url1
http://dicasemgeral.xpg.com.br/noticias/22254/investimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise/?fdx_switcher=true
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TypedURLs
url2
brazzers.com
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TypedURLs
url3
zendesk.com
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TypedURLs
url4
aparat.com
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TypedURLs
url5
innfrad.com
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TypedURLs
url6
ecollege.com
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TypedURLs
url7
pornhub.com
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TypedURLs
url8
my
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TypedURLs
url9
wetransfer.com
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TypedURLs
url10
hootsuite.com
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TypedURLs
url11
wowhead.com
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TypedURLs
url12
amazon.co.jp
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Count
4
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Time
E3070B00050008000D00270038000F03
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Count
5
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Time
E3070B00050008000D0027003900C701
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Count
6
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Time
E3070B00050008000D0027003900A202
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Count
7
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Time
E3070B00050008000D00270039007D03
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Count
8
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Time
E3070B00050008000D0027003A00FC00
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Count
9
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Time
E3070B00050008000D00280006007C00
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Count
10
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Time
E3070B00050008000D00280006009501
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Count
11
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Time
E3070B00050008000D0028000600DD02
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Count
12
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Time
E3070B00050008000D00280007002E00
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Count
13
2740
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Time
E3070B00050008000D00280007005701
3424
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\Total
17
3424
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\xpg.com.br
17
3424
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\ErrorReporting
LastShipAssertTime
F51D64063A96D501
3424
iexplore.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Direct3D\MostRecentApplication
Name
iexplore.exe

Files activity

Executable files
0
Suspicious files
6
Text files
163
Unknown types
40

Dropped files

PID
Process
Filename
Type
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
text
MD5: 6f59eee1dac0df4d3d75e0e2ca6b437d
SHA256: 7d50f5bbbcb902e59b284cdd5f7e3fc77314766cd91fea1c1cc2d386962b0f1c
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\devicepx-jetpack[1].js
text
MD5: f036196fad9316ef7ba521e962b6885a
SHA256: f32d41f2099a0be20e6b57c5e0d1b71c079d3e1345827b0f5c5b97c6e5e3f78d
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\zoomout[1].cur
image
MD5: e5f236bf2b60f8c8fc1867d70636a046
SHA256: 110a21ee3616bfa86b492bb237eeb946ee4a643d7bb77a7fd2b131311f5ccf72
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\rounded-white[1].png
image
MD5: 172cd05ac027f6a6c46553231506b3f8
SHA256: dd973ffb47385f17ebb5bb6ba99cf16b968e151f0004b565f8386ae7ce1753bb
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\loader.white[1].gif
image
MD5: 2a6692973429d7a74513bfa8bcb5be20
SHA256: 1eb9e7880f723999a4ed63eece6a6e4d4976833d3c16dc18b4ace3971728ab0d
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\pingjs[1]
text
MD5: b912e84ae1ab63bdf9f3eb308fccdc98
SHA256: 368beacbaa0742fc03b22b646f900e75509381cf60177a43bec3ea13f084c485
3424
iexplore.exe
C:\Users\admin\AppData\Local\Temp\Low\dat724F.tmp
html
MD5: d1cbdff3f5a08c3403ff294547f39152
SHA256: 09ae4dd80f2db073ad18f624040c8ff10da1c97033ca4d0532c3a3657396b021
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\intext_sprites[1].png
image
MD5: 2f7fa7009e7a36300d6401d2d3c91b37
SHA256: 56c3d229111a97b2f034db1ebcb21ae252888caaf2156fd50587e07689fbc8a0
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][2].txt
text
MD5: 5b3379f67227e56ac796686616509688
SHA256: 9c1abb29bae2e0b4f8977d8545f62dc34ca1179d6f2c0dc6c67838c16a943d9f
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\spider_ad_jquery[1].js
html
MD5: 9d92e3390fb5a3e24512ab8ed09a95e5
SHA256: c008380ed971e56b2b46a2a763d6d3cc42a2f872338e152656b99ad1d9bbfa46
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\spider.1.0.0[1].css
text
MD5: ce9bb7593070724da1437d108555d6e6
SHA256: 565f4770aa76b8b6ac8141ddf95f171b09334a84bca703d3e438e737f0586150
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\favcenter[1]
image
MD5: 25d76ee5fb5b890f2cc022d94a42fe19
SHA256: 07d07a467e4988d3c377acd6dc9e53abca6b64e8fbf70f6be19d795a1619289b
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\tools[1]
image
MD5: 6f20ba58551e13cfd87ec059327effd0
SHA256: 62a7038cc42c1482d70465192318f21fc1ce0f0c737cb8804137f38a1f9d680b
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\down[1]
image
MD5: 555e83ce7f5d280d7454af334571fb25
SHA256: 70f316a5492848bb8242d49539468830b353ddaa850964db4e60a6d2d7db4880
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\httpErrorPagesScripts[1]
text
MD5: e7ca76a3c9ee0564471671d500e3f0f3
SHA256: 58268ca71a28973b756a48bbd7c9dc2f6b87b62ae343e582ce067c725275b63c
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\noConnect[1]
image
MD5: 3cb8faccd5de434d415ab75c17e8fd86
SHA256: 6976c426e3ac66d66303c114b22b2b41109a7de648ba55ffc3e5a53bd0db09e7
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\background_gradient[1]
image
MD5: 20f0110ed5e4e0d5384a496e4880139b
SHA256: 1471693be91e53c2640fe7baeecbc624530b088444222d93f2815dfce1865d5b
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\dnserror[1]
html
MD5: 68e03ed57ec741a4afbbcd11fab1bdbe
SHA256: 1ff3334c3eb27033f8f37029fd72f648edd4551fce85fc1f5159feaea1439630
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\ErrorPageTemplate[1]
text
MD5: f4fe1cb77e758e1ba56b8a8ec20417c5
SHA256: 8d018639281b33da8eb3ce0b21d11e1d414e59024c3689f92be8904eb5779b5f
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\errorPageStrings[1]
text
MD5: 1a0563f7fb85a678771450b131ed66fd
SHA256: eb5678de9d8f29ca6893d4e6ca79bd5ab4f312813820fe4997b009a2b1a1654c
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\base[1].js
text
MD5: 46915c41ded5d5578a9ae30fe2ca9cca
SHA256: b1abd0e26492c7782e12a19e88c163492aef0df7aac2ebc9cdfbd56d8e28bacc
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\cb=gapi[1].loaded_0
text
MD5: 66fb41e0d1cec7809ee767ebce98793c
SHA256: d5ab145d8d89bf86bfe8347dfdcf63e3fc81649c1fb378821b8746e517e98701
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\3679174131-postmessagerelay[1].js
html
MD5: 0416e1703ef9bad54331010a57fb29a5
SHA256: 024c2bd5fe6b0aaf3b9628682a9a245b287e0c01687a11fe2bdb61b7e731f861
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\KFOlCnqEu92Fr1MmEU9fBBc8[1].eot
eot
MD5: 03bb29d6722bf52f7fe88a6ed47d9e6e
SHA256: daa5d6292a35a6dc7e075436d0567dbe02515d5e886731fa5ca230e3d8fe26dd
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\index.dat
dat
MD5: 29377d24907f9b45ef6da31e88adcca4
SHA256: f8dea3e930b094501c5b6ca227a4ea6a364ec935c72a302d0858c8c60e79c854
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\KFOjCnqEu92Fr1Mu51S7ACc6CsA[1].eot
eot
MD5: 3d24765047e383a80652f464d8d8dc34
SHA256: 54412faeb9ed658523d5bac0fdc02a6d59285621062fc5f4fdbecacca2c7dfc4
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\www-player-vflkfOd8g[1].css
text
MD5: 91f39df2003d3d2950fcbe0be66adc35
SHA256: fc09e0e4d3048843512bb579eef2419a5ab8b776666a050bfaae707f3c9ac55d
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\www-embed-player[1].js
text
MD5: e5a590633313bee1b486d2af9b56e9ce
SHA256: 9c4d9647b63684006699b509dc3eeda5c1814c5ba06be32f9ed28a6a86f5e186
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\KFOkCnqEu92Fr1Mu51xIIzY[1].eot
eot
MD5: f5c365f29f0193e60cf4927c7ce5b5b5
SHA256: 3e700198012f9480be89bd91e804640bcd3c3e9d9e7be7539393d6ba1b8363d6
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\postmessageRelay[1].htm
html
MD5: a173252cab5cbae4780c849e750d0c82
SHA256: 26a6c25eb3978262b9692871a746d4b28ea6a5753ab98a4d2ea8440420d737d7
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\hkI8jkn1St4[1].swf
swf
MD5: 354d5a5d57ccc092a2ca00e443e07930
SHA256: a10b894c74f051f4c24fa055526c28707cd591529579e1a1aeed582589e2041f
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\postmessageRelay[1].txt
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\likebox[1].php
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\likebox[1].htm
html
MD5: 061f2223c61f685d4a98feefdcd2ebc6
SHA256: 4552c9133f94cf72952dd4ec6e696e7d7632b2eb7af6dcd11c41e9dcd21c327d
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\videoseries[1].htm
html
MD5: 0b648588f74279388eecfccdac4698cc
SHA256: e4b5bf416e08ac81640830cb4fc0666fb4f96d625cd54bdcab1d4ba37c062d8d
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\videoseries[1].txt
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\collect[1].gif
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\words[1].js
text
MD5: 13f8cdf7eb4513c0fce03c30e6983529
SHA256: b076a8e97fac653b215de95722533de84021c84728fe62fc564930a0498f7c04
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
text
MD5: c854e09502807086120062212d46c19f
SHA256: 9ce67b14b42de5842e07eb690c580a2145b2f5297b98e1856563bdd269426507
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][2].txt
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\__utm[1].gif
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
text
MD5: a60038a7f628d23c3ac4905379f0ff9a
SHA256: f58868d1e4be81e213a0abcb0315d6303f3efc9f3ddcef46002f4e187c1c996a
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
text
MD5: c155007164ac3bd713c18abf1a93a8b2
SHA256: b686ae71d218c2849f5b44e6f06a624a5f9cddcd51699d1348165d6d47e674bb
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\investimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise[1].txt
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][2].txt
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\investimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise[2].htm
html
MD5: ee582885928bf289603347c7865a2a27
SHA256: bd47c98474d499f43e5ce74e6f7aa65995704a56635d131000ab5b71bf6a8042
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\tools[1]
image
MD5: 6f20ba58551e13cfd87ec059327effd0
SHA256: 62a7038cc42c1482d70465192318f21fc1ce0f0c737cb8804137f38a1f9d680b
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\favcenter[1]
image
MD5: 25d76ee5fb5b890f2cc022d94a42fe19
SHA256: 07d07a467e4988d3c377acd6dc9e53abca6b64e8fbf70f6be19d795a1619289b
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
text
MD5: f9389612125414df3fd55eda1e81010e
SHA256: cb5a5bdee0ca5290ebb2fc68f99ce3e467f53132605572de0bc97c4b6e902202
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\noConnect[1]
image
MD5: 3cb8faccd5de434d415ab75c17e8fd86
SHA256: 6976c426e3ac66d66303c114b22b2b41109a7de648ba55ffc3e5a53bd0db09e7
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\background_gradient[1]
image
MD5: 20f0110ed5e4e0d5384a496e4880139b
SHA256: 1471693be91e53c2640fe7baeecbc624530b088444222d93f2815dfce1865d5b
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\down[1]
image
MD5: 555e83ce7f5d280d7454af334571fb25
SHA256: 70f316a5492848bb8242d49539468830b353ddaa850964db4e60a6d2d7db4880
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\httpErrorPagesScripts[1]
text
MD5: e7ca76a3c9ee0564471671d500e3f0f3
SHA256: 58268ca71a28973b756a48bbd7c9dc2f6b87b62ae343e582ce067c725275b63c
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\errorPageStrings[1]
text
MD5: 1a0563f7fb85a678771450b131ed66fd
SHA256: eb5678de9d8f29ca6893d4e6ca79bd5ab4f312813820fe4997b009a2b1a1654c
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\ErrorPageTemplate[1]
text
MD5: f4fe1cb77e758e1ba56b8a8ec20417c5
SHA256: 8d018639281b33da8eb3ce0b21d11e1d414e59024c3689f92be8904eb5779b5f
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\dnserror[1]
html
MD5: 68e03ed57ec741a4afbbcd11fab1bdbe
SHA256: 1ff3334c3eb27033f8f37029fd72f648edd4551fce85fc1f5159feaea1439630
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\spiderInText.1.0.6[1].css
text
MD5: 1ba6591e88449f905f10dd2f22a09742
SHA256: f2b370690454de2e7476b48772560f6a782f094136a0570ef621804e8c4d4cac
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\10402663_745212182197656_4964561605316281738_n[1].jpg
image
MD5: 8b72a129de60f90743f9de35715e6cad
SHA256: ca7cdc5f8a3fad9e5c4a8ef29562150de08c7f4032a4bb8802b333dc25599ea1
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\10300244_745227148862826_5574260032835919167_n[1].jpg
image
MD5: aeb260b18210112d36c004bfdd3bcdff
SHA256: 3bced80e4e27cf4c8398234a281e0615a29fec5a5b69177b39ee2d34d1fd1db7
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\googlelogo_color_150x54dp[1].png
image
MD5: 9d73b3aa30bce9d8f166de5178ae4338
SHA256: dbef5e5530003b7233e944856c23d1437902a2d3568cdfd2beaf2166e9ca9139
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\robot[1].png
image
MD5: 4c9acf280b47cef7def3fc91a34c7ffe
SHA256: 5f9fc5b3fbddf0e72c5c56cdcfc81c6e10c617d70b1b93fbe1e4679a8797bff7
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\vcc5m4dw3rZ[1].png
image
MD5: 91797f53f69a2953deb48286b8229c4e
SHA256: 3241cce55b493fb2466e38484a33fea8991bddc0d94a7ce6071dd1e0631d087b
2740
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\WER\ReportArchive\NonCritical_iexplore.exe_12df8271b62395a348f102b12959f9768e2baf9_0a8e4329\Report.wer
binary
MD5: 70c3c89151c69289b65bc4a5bc95c1b6
SHA256: 551d3ef76ae2f9bc61b7d1112d573862ccc2b2b891dda149943497ce7837a235
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\base[1].js
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\KFOmCnqEu92Fr1Mu4mxO[1].eot
eot
MD5: 68889c246da2739681c1065d15a1ab0b
SHA256: 830d75bbf0e1f9289d787422f767b23f9d63fd79dbe75c091a119b6b7155d198
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\www-player-vflkfOd8g[1].css
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\rpc_shindig_random[1].js
html
MD5: 18e56085dcf0e71dcbe0792cc2f5d98b
SHA256: 7a24296d6e7cd95b14d4720e3f44c5cd7269fb20c252137142f20449ab81e957
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\G4L4arfhpYn[1].css
text
MD5: d65c157a5982e90204ea4f1b8be18c59
SHA256: b08db36e3342cb35c10ab470610795c9333b0db8c62a4f7e72ece5d899249ac6
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\www-embed-player[1].js
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\mercurio[1].html
html
MD5: 612d48caad792e23805b7fbc55d9080d
SHA256: 9120bd86f7501823599a79f60f432e7742f2fd00b17984230cd6641085548690
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\PrivacIE\Low\index.dat
dat
MD5: 6fbab95a283ef90710ca44fedd404f2d
SHA256: fa4a720cc09c305c656378fca57fc73b5739ff13a7d45ade048e25c02e309922
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\postmessageRelay[1].htm
html
MD5: 6533b9e651b198c63aa75948976ba301
SHA256: 7dc5bac8f9c32d5f55fc9257f0c51f6edd903a485a2890985d5af3e2459be450
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\hkI8jkn1St4[1].swf
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\likebox[1].htm
html
MD5: 870e74f530c0a1acc537e3b2eaa142d9
SHA256: 567a0954563bb74e7f24298669e84a425637429f1fe0e3075cb86e047c575fe7
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\videoseries[1].htm
html
MD5: 46b8597e9e4abfa170439214e1e2a9ca
SHA256: 57514d216b7e0d97d01a7373885460e6ef06bf6a4dbb1e2e7be70d12969e2ab1
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\videoseries[1].txt
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Temp\Low\dat2E0C.tmp
html
MD5: 336dc5f16d8ae1b03135e082972a87e0
SHA256: f7450941d80da95154c0eed10bef1c658a910d2f0f2ea93c44df0eaafa3cd200
3424
iexplore.exe
C:\Users\admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
binary
MD5: 4473b306e1cf72e492374cafe565f432
SHA256: 05a255496621503dc9a271f9bd2fb5eca8f581eefa5ca31295d78f4664c43751
3424
iexplore.exe
C:\Users\admin\AppData\Local\Temp\Low\Tar2FA8.tmp
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
compressed
MD5: 5ad071a3917588e8cd883b123b395b21
SHA256: de62965c15528da598b0079d2d20d953dd6f71b13a23807bff0666d03f69c0fa
3424
iexplore.exe
C:\Users\admin\AppData\Local\Temp\Low\Cab2FA7.tmp
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Temp\Low\Tar2F29.tmp
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Temp\Low\Cab2F28.tmp
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Temp\Low\Cab2F07.tmp
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Temp\Low\Tar2F17.tmp
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\070E0202839D9D67350CD2613E78E416
binary
MD5: d1ce3c87356f178ddb2b6e2ce2e44f7d
SHA256: 59a0bab47657b81536ce137a099a7f81ad8e8afd9c15add65f83b9bbe3cf67cd
3424
iexplore.exe
C:\Users\admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416
der
MD5: 55540a230bdab55187a841cfe1aa1545
SHA256: d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][2].txt
text
MD5: ec368af2a5b8fc2f3f3accac2a2e5ae1
SHA256: d4a764e378ecb519844fd0525ffe9b5fc8d431bfd757ec73fdb663330e180341
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\collect[1].gif
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
text
MD5: 6d8c5126ea3b8fb49e0851c4e78127db
SHA256: dd6fd19578ed253b8a859c4d44857b0e5ad81cd97484005cede5c2021eb4fce2
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\uoltm[1].js
text
MD5: 2ab8a198b04f8182205d59d3b5762e69
SHA256: 1bbb7dde3064f1b283b29cca005a79c59d87bfabfeddfb74c9982a0de8f0b6de
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
text
MD5: 2504afca5de10d3b0161d01ba944dd3a
SHA256: df897106002aa8646aab653d5f53339217ea851a387a01cfbcd7029a13f1550b
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
text
MD5: f6fce63d223d883a6f2e7e2422107172
SHA256: a17a640cccbe7ec050f97985335af263df0c373417f6a4503fd136a297b9d058
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\words[2].js
text
MD5: 13f8cdf7eb4513c0fce03c30e6983529
SHA256: b076a8e97fac653b215de95722533de84021c84728fe62fc564930a0498f7c04
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][2].txt
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\cb=gapi[1].loaded_1
text
MD5: ff6f24ccf7ab032c4a0b0f7975f4a59e
SHA256: 13f3e5cef28ad6cbed028e4e75efdea280d0599ebb78c8618bd47e4f2441fd62
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\cb=gapi[1].loaded_0
text
MD5: a30a83624c284bcd4272e0db50c389a6
SHA256: d68a53f371263d0cbf28ae86dd2b71df1aa0c7fec7746d3296af38ab629cf885
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\loader[1].js
text
MD5: 612048f2c2bad861d7d81870e6d76590
SHA256: 208beeb2a3180e096a536c5fa1f91ede1f7a0c70316bb5294b514e3a43e95946
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\gpt[1].js
text
MD5: f28bbc46f86661922f22ffe9596a3e30
SHA256: 279412aed51b5b1936f3fb774e74d3d815f5cac31d595b0a398d271b3df969d3
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\investir-em-tecnologia[1].jpg
image
MD5: 52acdcc17e4cd68a333dea129a6070a0
SHA256: 0928710a58bbfd8d5bfcc9b74a0032885fa0fe87c7bb75c293b436572baef723
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\analytics[1].js
text
MD5: b66b3b5d54e154c81a50880cdcd7e5f8
SHA256: dbb67c620eaabf6679a314db18d3ae43037aef71ab27422e6feec08ee987cc0a
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\tag[1].js
text
MD5: 6b5520c4ab8a823784ef58006a736d68
SHA256: 1810949863766180d2d3dbaf3824901845d44a96d3bf7b52d8288fc791bc815a
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
text
MD5: 60228a21cf6b82e926f2d10ffd260b6d
SHA256: 8f7e934d84e4e0e1d3295565cdc0572c472d1cf3b6a6bce8bfb733110c108aa2
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][2].txt
text
MD5: f7aa3df263b9cff2d4b89b47c90c614b
SHA256: 2078bcf0398d97bf6f3db7c78b38684258c839caa9a7daed6b6c8f2cbd7126ae
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\investimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise[1].htm
html
MD5: 175863f1f9ab88a018a5cee2c41cf7c0
SHA256: e51193000a970f8e43ffe26405a67ad35b0c76d72595efb0fd29dc8a9f2bfad1
3424
iexplore.exe
C:\Users\admin\AppData\Local\Temp\Low\dat2427.tmp
html
MD5: 171cd74750cef362f81250d61bb9918a
SHA256: 0441c99dc6b35ec80828aa0898fffdc2855e9fcb94eabd7892b012b8fae8c1e2
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][2].txt
text
MD5: e3d02082cdbc94624c94a873949bdc7e
SHA256: c607501cab705ddcfe0d644d0f0ee402f0fb55cbaac72e702038f669101abb3a
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\investir-em-tecnologia[1].jpg
image
MD5: f9217905d15cba1538da970a7ce398fc
SHA256: d3adacdda85db6a79fcedba1526ac5b5759b74d8b92663e7a6224d58edfb6b37
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\img_dicas_tv_sidebar[1].jpg
image
MD5: fc600daf518d4e00ba36459e96f6f887
SHA256: 9c97308d91650e8232122eb968b1348ee8c5890e0dda4499375369e17857f63d
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\index.dat
dat
MD5: 25504dfbbc49251d10eee48379ce047a
SHA256: 47f3f1d6a281183cff3d3b87c3a5d1d1e1d1a720bca2754e44f64f4f91bde2d5
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\22218_110[1].jpg
image
MD5: 1738c56aec0975b6a7b70b7c61b97859
SHA256: c8aec6bd4fcc31e1f92d106e16dfc88bf1cb4606d6fb23053adc703948b5860d
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\amilton-junior[1].jpg
image
MD5: 57cf1fe14d66632cff9620902872f1fa
SHA256: 1a0c0fd2262d2c3bbb1e9eb19f957239b32e9afc778a6576078891fb13ed219c
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\botao_newslatter[1].jpg
image
MD5: 4c971572130ad2f9ff7a42c6fed70af0
SHA256: c643d9c6fb6853cec0fec9005252f56fa6d9a188c6e898d37be57c0abe686ab9
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\viva-zoom-mini[1].js
text
MD5: b2db982c15ad5e03a2a44aa13df9b79f
SHA256: 327621810c562ac692700fc088311302de0ba3505a4f71a3e95b3e7c436a5233
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\fundo_autor_post[1].jpg
image
MD5: 81a52b2c3ac7122534f56e4f1f55335b
SHA256: d0590a910703cac447caaf3d6594c13058721f823fd1b07610843e6bd946c785
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\botao_pesquisar[1].png
image
MD5: a6bb6492d62fee78e1d345e1b2ad66ee
SHA256: 4465c6e1de84571e69e5b621f920eab693e554e7fb5e74ea890d9cfbdf1fa329
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\22208_110[1].jpg
image
MD5: 72fd9e96832e9b6d7117bab680d63c93
SHA256: ae24118e0658616c7a099902407818761dbd2b4e6edd9b0c6bb7dd901a09eb33
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\fundo_pesquisa[1].png
image
MD5: e7fa86e7046a1f6118d25c7ce99a941d
SHA256: cc1c549504559ce212f66fcd4bf51d1a4316898467b0fa591bf0d27f68f117ba
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\fundo_rodape[1].jpg
image
MD5: 6ad9e7faf64235c1d484d1344c2760be
SHA256: 76ddcff7aa504ec4603827be57e739154963038052cf05ece2d4c122479990ab
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\fundo_corpo_da_pagina[1].jpg
image
MD5: 394ac4aa092fd1b41d81234e70dd0dfe
SHA256: 29cfd2139d97bfce0493563a3635447bf17804d5b43720313f9f6fa9e6c2e712
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\icone_feed_rss[1].jpg
image
MD5: 4a25f6b2890d192fcc0b47e9034eb6ec
SHA256: 7f2f2490827c5ea33db7405c3f4c32c3bf24f82e37d72054dea343553a7c8148
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\icone_favoritos[1].jpg
image
MD5: f4e3f9d57a8bf7dfc98640fac669430d
SHA256: d41df6f77c286ceab7fa900b54e7c185859dbce706b1f89f2bd2557506cfa28d
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\logo_yhs[1].png
image
MD5: 715b0dd608256434caa6f79bf2a4b734
SHA256: cdacffd9e22eaca575f97141942b1e67eeaec5ae11f0267605de549c8df51e07
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\icone_news_latter[1].jpg
image
MD5: f43bc7a86fdadf9e10ddb4c2ff00bdf9
SHA256: 886ec869462186eb8b5694fceadc5c50b703d9a74b713031319340ad8b2641fe
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\22198_110[1].jpg
image
MD5: 40952ee04761277d36db6476822b8c85
SHA256: 44938902959a2024c45d05bfe3df4acef276526ef52de422f19e39c1f7a441c2
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\22220_110[1].jpg
image
MD5: 8127e08e1070363cf248c95be03955bb
SHA256: 36eb7d40d3126a412e0311852d4a30b1e15ff0c9dffc4d96da87f781444ec878
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\22215_110[1].jpg
image
MD5: f312da723f76cd4af1eb999fcbaf4df2
SHA256: c27a164381fded1d0d7146e4e0a33c4cee9d2422908a163e0d6b3c788f8c9d72
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\22225_110[1].jpg
image
MD5: 3fc3ee527af375b3b083c334df813130
SHA256: a1928968e1559bd857a9f3a524ae7e83601d6074ce73ff8390607e7e57d85b51
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\words[1].js
text
MD5: 13f8cdf7eb4513c0fce03c30e6983529
SHA256: b076a8e97fac653b215de95722533de84021c84728fe62fc564930a0498f7c04
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\22186_150[1].jpg
image
MD5: 6197e0ebda85506ce8c1b490b912e54b
SHA256: 26816ee8967edfaecccb312707d6c14e11c01a151b254d10f8f6dd9dea5c623f
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\22227_110[1].jpg
image
MD5: 09a67353e49143404637e9c9bec0857d
SHA256: 8bd2c91a6f04b572610a10c63c9c6d1481ea4bbb459b7feb3a03f310faf6daf1
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\22171_150[1].jpg
image
MD5: dfee037c5faa36199aeac8b8f3d38ec4
SHA256: d195bcd939137019ee0fc7276a2ef66b7c67e2dc88c171819a7479930fd3fb0c
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\22238_110[1].jpg
image
MD5: 2d59509251696b817a7c7e2ab5f3701a
SHA256: a90d3a1ad65109daa0d810caf3f29715cb68b7f4409f2e1e2a081371a513786a
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\22218_150[1].jpg
image
MD5: 9da9057278ca8b8edc096b2d6d534f46
SHA256: 1cd43a549ab4d8bbf7acaedb6388c3752c8fd55bd46daeba2b9297f52fab1876
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\22179_150[1].jpg
image
MD5: bcc686abe2211b222f16ea4ab72c758d
SHA256: 8425be153c05557f0244695f8f874e3dd4ecb33ae487b1f64415185940d747d8
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\carnage_spider_ad[1]
text
MD5: 20ec4d3ecbc3b3802a45092a9094ef45
SHA256: e3cc9ccedd2de51ee5af890f2d344f2217baebd7f29bbfb1d8e435089c32e5b3
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\indique-conteudo[1].jpg
image
MD5: debb7f3de8f73f4061b251619f78a40c
SHA256: 015d761f9bbe562b85d3d254513400a2c587604dbed94e4d2edd5741dda6a2a3
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\dicas_tv2[1].png
image
MD5: e8b1d85605a9c0e4e9cbc78cfca57d83
SHA256: 134536eac2a882ff08f5a9495e182affb395c88cbb22e5227a13f14af341c9b9
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\dicas_tv[1].png
image
MD5: 7846a6ab8b1d4aee5d6995dd173b9a54
SHA256: dfd437ea770f8c01beb763fca71e3df5b04405d53062bf414e66fd7a2bf288f7
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\dicasemgeral[1].jpg
image
MD5: 29abaa1b721089ebf70244eb0b48bc79
SHA256: bb998df38643cc7067522d6ec8f1557ca9ce0fae40eb34d63d40971d49d00bc1
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\mostra[1].htm
html
MD5: ec78e1931c1d2925b43a5c50032d235b
SHA256: 15043694b667937b09ceb15c04aa6550784a5f950e5f48c69010a5838849eade
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
text
MD5: bb8d152e0a9aa216fae5ae5685a540fa
SHA256: a8ff9886e26e1e1f345acc2799655564462ff8beb931c4eddf31d0b854de90d1
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\yhs_728x90[1].htm
html
MD5: cef3d122a8a1582988d3fd44b84be3b7
SHA256: 78b586029a083ebf0cc915d962e826c955c2518b804193f5873e5dc0637ee282
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\iNvDn9MydGf[1].js
text
MD5: f16c8e249cc2a2345162eee6737f00a9
SHA256: 83bf723b61f166c7aa2db554f43f0a54111fe1aa1cf70a26ec3f8f0ca822ba3b
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\Ii98aXZRCNs[1].js
text
MD5: 43fc9b4dd066abeafba6a5eb194d0206
SHA256: f083b3bf68f968f8e90e52c0418a0c7b55f1b8bac086493712bd65bb3b41efd3
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\zgpj_JA1F5s[1].js
text
MD5: df2f41913ed77dad33eceecd1dfa3a6d
SHA256: eaea4f6c4b00ae7db8d85f4af9f64bb08b8963d981b87afc59f12fac0ccac6f8
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\x1_VsanU6M-[1].js
text
MD5: 20e41f99c4f2a1010ae96dff6149da88
SHA256: 3a5310eb80d19a62e0d0707fd6a1d89ae9295e0893d4dc24ba5b3d1a32c61766
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\fundo_topo[1].jpg
image
MD5: 568a08f3f89c2c637211baf0f91be2d4
SHA256: cce784b28fe726cfa0e30292d5e40cc3db2fc2fd5418dbe50ec96563eeece8b7
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\index.dat
dat
MD5: becb104151fe3a7790e20f999b660416
SHA256: 0da514b88fd9691b865c0f77d0059a5787a9bac54d03a846224fc4690614cc26
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\br[1].png
image
MD5: c993031e29f36214d96b5440e3c814dd
SHA256: 2c4b67348e68c959460ef711b42aa7c662dc0ff20d789a47d5a35ed8d70132dd
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\en[1].png
image
MD5: 968591e0050981be9fa94bd2597afb48
SHA256: 36cce5cae3d2e0045b2b2b6cbffdad7a0aba3e99919cc219bbf0578efdc45585
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\es[1].png
image
MD5: d6693ce2a6346b2da89ceda335554e0a
SHA256: e9aa6fcf5e814e25b7462ed594643e25979cf9c04f3a68197b5755b476ac38a7
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\likebox[1].htm
html
MD5: e48787d9d0f31b56c02f9ad052c6aca3
SHA256: 07140d9ce27824e9e3777d220ab6151af51aecf7536fc29df0428d988a500cfa
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\de[1].png
image
MD5: ddabae687ecae5edaaeb808d440543e6
SHA256: 3323814006fe6739493d27057954941830b59eff37ebaac994310e17c522dd57
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\likebox[1].php
––
MD5:  ––
SHA256:  ––
3784
FlashUtil32_26_0_0_131_ActiveX.exe
C:\Users\admin\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol
sol
MD5: 9e7952946f452eb6ec50502a39550bc6
SHA256: cce2630670c32e29e5c05b6103225bcd94c64555473ff1964d4f4d2fbb877656
3784
FlashUtil32_26_0_0_131_ActiveX.exe
C:\Users\admin\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sxx:Zone.Identifier
––
MD5:  ––
SHA256:  ––
3784
FlashUtil32_26_0_0_131_ActiveX.exe
C:\Users\admin\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sxx
––
MD5:  ––
SHA256:  ––
3784
FlashUtil32_26_0_0_131_ActiveX.exe
C:\Users\admin\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol
sol
MD5: 0dd3631a4df7bed11e4b389ac2e95882
SHA256: f06e531c2feb84b511f7feed945c13936122aa2a6dce287776f724398d27394a
3784
FlashUtil32_26_0_0_131_ActiveX.exe
C:\Users\admin\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sxx
sol
MD5: 370e989ec0e7b87d624edcf7b6d6b49f
SHA256: 04cb3299f4ba6773ebaff91397eb29eba5aea0c6a7fc85cead46348c4267841a
3784
FlashUtil32_26_0_0_131_ActiveX.exe
C:\Users\admin\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sxx:Zone.Identifier
text
MD5: fbccf14d504b7b2dbcb5a5bda75bd93b
SHA256: eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\e-201945[1].js
text
MD5: ba6f15831404dc46da2dde617bda1653
SHA256: 0ebbc7fba9a50d36ef5422345f624431710db4528f25749d1d438c2c10bb69f2
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
text
MD5: a233dcfd62caee17d40b8bda0ee026f1
SHA256: 7357ed6c60b8bba379ce5503bea384ad5ed6ebd301f501a13b8e9f885f02a0ff
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
text
MD5: 5615a0c829ce835bded5dee8ef29b5f3
SHA256: 5158916e3549e6033f07d0be9942a26b87a4b62d63da66c2bd5412338450f8d1
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\platform[1].js
html
MD5: 7a477395d1835f399a974de1f7404945
SHA256: 3752aa6373c6cffb52d27da513bdd2f0b543bbe61b3ae7d56fd0c27c74367fd2
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\buttons[1].js
text
MD5: 0e7efe9162c9aaab27ba1bd981b1e4f4
SHA256: 011af481a6c21ebe9524e49d785ca76479a7f44c63e013848d2992cba4e12532
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT
smt
MD5: 60272cba5ad84466b761ccb17bc51037
SHA256: ed2a144c57ac894562da29c3ed8df7a741f5a07e4c053cd366417c3574ec4cae
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
text
MD5: be939c4697ce7f59b6776113e27f30da
SHA256: 5dc1a5f9ba09bde799f36305a0e8a76a4c4b896adee801837d949c96c0be1305
3784
FlashUtil32_26_0_0_131_ActiveX.exe
C:\Users\admin\AppData\Roaming\Adobe\Flash Player\NativeCache\NativeCache.directory:Zone.Identifier
text
MD5: fbccf14d504b7b2dbcb5a5bda75bd93b
SHA256: eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913
3424
iexplore.exe
C:\Users\admin\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\MPZKSQ5G\dicasemgeral.xpg.com[1].xml
text
MD5: d5ed491a74be694e0a19a7d492d67880
SHA256: 5a5f970f3e3e8916266fde898134bf63c0a640175195bc8a4605a5ca3982ef25
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\fechar[1].gif
image
MD5: 7519f0f2067b857cf205b6b5421e26ff
SHA256: 7c3671e9f6d959ef6ede8ce2e40a433640b2e3aba8406add496e93df9bae4168
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\darkblue[1].png
image
MD5: 8132b59c1dfa6df1300be2c1753321de
SHA256: a60178d1158ae56fe25888879498b4af2691f289bb91d274f314cd78b7ac7a8d
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
text
MD5: 5f9ea6ca88308dd7a1d37a7156f37afa
SHA256: 3fdd7f99241543e26f4e8f9e957a89cd937915122b0623af6d47735967fd0fc6
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\ga[1].js
text
MD5: e9372f0ebbcf71f851e3d321ef2a8e5a
SHA256: 1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f
3424
iexplore.exe
C:\Users\admin\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\index.dat
dat
MD5: ded99771c17b6b78243ab33df59de556
SHA256: d7bd2cb89ff20ffd9b909d8356e50060ac27e29b462c5a4b9a674eddcecce29b
3424
iexplore.exe
C:\Users\admin\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\MPZKSQ5G\dicasemgeral.xpg.com[1].xml
text
MD5: c1ddea3ef6bbef3e7060a1a9ad89e4c5
SHA256: b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\trd.js[1].php
text
MD5: bee387431d3cf2380c77bd5728649779
SHA256: ac16bbac6e99c9815f31500c48bfbf2c5bcbd085c1a3b41b084ef2ff614527fe
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\ie[1].css
text
MD5: c20d6c59528231a3939ba8865550e808
SHA256: e4a182298fb8022343b5a49c2839fc741a6daf954743c796b9fd93f2a806ab55
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\geral[1].css
text
MD5: 971c692cddcce42a62f95cf1cde4c3d8
SHA256: bf6a9fef063508672f0dc06ecceb8e4e313d767f1302619594dc6e593e2f9696
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\spd_display[1].txt
text
MD5: 62ab183cc5e60f609b14554e8e4b4512
SHA256: b93b2b4bd9af0749b3b35b854aa7d3d2c3a348e0fcac5d1fea4f1d5ab7e2d4ac
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\posts[1].css
text
MD5: 0d78d45df75328ed428195e96714c993
SHA256: fef6eba526d0f449bb7033e654c078e9224af1e51c0cc90942c7931222070b55
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\viva-zoom[1].css
text
MD5: a0bda174f66ec579088e78d212556654
SHA256: bf03b19be384edb6f33981c3090063f69d3e95d66c601701ed5f147db2d3ea3f
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\menu[1].css
text
MD5: 954e1d255e84341ae3eb66ca559a91ec
SHA256: 574fe349e0a27dffb9939678d4b72f0d549fe872584490442f58f718f0a460b9
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\investimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise[1].txt
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\f[1].txt
text
MD5: 812613c58644a7d26cff48918e32f99e
SHA256: 407df22068b5ffa3a4fd38869747292213254bb345f7d7209b5f537d9fbb4b61
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\small[1].js
text
MD5: 88714b5afd8181a2f9e2e0cbb01fd426
SHA256: 04c7297aae5bf898e148eda262a7d464f2ceaebfe1ccfcdbb9fde562ce210372
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\investimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise[1].htm
html
MD5: d24281d55d6ba87340195a319bc7d658
SHA256: 8df94ad668f82bbb27ac533fd52fcb6a02d3b04db79d88766ac612badcfe5a35
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][2].txt
text
MD5: 771bfe9ced9b7218968415d2bb26fbf3
SHA256: 9dd7940b5567b33a320039cf9b1eb6a0950e0d67ef326155d4b838cc2dd36114
3424
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\index.dat
dat
MD5: 9fb503b88576ceeae4a882b5fc27429b
SHA256: 115a57d024eee9b538c350beec496cae37fd31ea7822acb5877ce69e243339b0
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\History\Low\History.IE5\index.dat
dat
MD5: 115871ec8ba7fcea0152067c56b14cb8
SHA256: c078d73ad9d5be0601463672639506494b2138bc54190b0a5124a15b07648e4e
2740
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I0488CJO\favicon[1].png
image
MD5: 9fb559a691078558e77d6848202f6541
SHA256: 6d8a01dc7647bc218d003b58fe04049e24a9359900b7e0cebae76edf85b8b914
2740
iexplore.exe
C:\Users\admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
––
MD5:  ––
SHA256:  ––
2740
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LH043OAM\favicon[1].ico
––
MD5:  ––
SHA256:  ––
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RH6MYSU2\desktop.ini
ini
MD5: 4a3deb274bb5f0212c2419d3d8d08612
SHA256: 2842973d15a14323e08598be1dfb87e54bf88a76be8c7bc94c56b079446edf38
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Q10DDF14\desktop.ini
ini
MD5: 4a3deb274bb5f0212c2419d3d8d08612
SHA256: 2842973d15a14323e08598be1dfb87e54bf88a76be8c7bc94c56b079446edf38
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z7M8IRR2\desktop.ini
ini
MD5: 4a3deb274bb5f0212c2419d3d8d08612
SHA256: 2842973d15a14323e08598be1dfb87e54bf88a76be8c7bc94c56b079446edf38
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U1V18IP9\desktop.ini
ini
MD5: 4a3deb274bb5f0212c2419d3d8d08612
SHA256: 2842973d15a14323e08598be1dfb87e54bf88a76be8c7bc94c56b079446edf38
3424
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\index.dat
dat
MD5: cf589371925ee4be009bbb9407bd7c9b
SHA256: 4b82267b68f049fcde37ffef9a502a5f7620b6ba3984458da9cb4055700a9d94

Find more information of the staic content and download it at the full report

Network activity

HTTP(S) requests
114
TCP/UDP connections
105
DNS requests
42
Threats
1

HTTP requests

PID Process Method HTTP Code IP URL CN Type Size Reputation
2740 iexplore.exe GET 200 204.79.197.200:80 http://www.bing.com/favicon.ico US
image
whitelisted
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/noticias/22254/investimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise/?fdx_switcher=true BR
html
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/themes/dg9/css/menu.css BR
text
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/plugins/Viva-ThumbZoom/lib/v-zoom/viva-zoom.css BR
text
unknown
3424 iexplore.exe GET 200 185.225.208.133:80 http://widgets.amung.us/small.js unknown
text
whitelisted
3424 iexplore.exe GET 200 50.17.188.236:80 http://lizard1301.spider.ad/spd_display?p1=1821.divSpdSuperBanner US
text
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/themes/dg9/css/posts.css BR
text
unknown
3424 iexplore.exe GET 200 172.217.21.238:80 http://www.google-analytics.com/ga.js US
text
whitelisted
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/img/fechar.gif BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/imagens/darkblue.png BR
image
unknown
3424 iexplore.exe GET 200 172.217.21.238:80 http://www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1799110058&utmhn=dicasemgeral.xpg.com.br&utme=8(2!post_type*tags*year*categories)9(2!post*1%203%20brasil%20empregos%20gera%20mercado%20milhao%20ti*2015*noticias)&utmcs=utf-8&utmsr=1280x720&utmvp=1276x560&utmsc=32-bit&utmul=en-us&utmje=1&utmfl=26.0%20r0&utmdt=Investimento%20em%20tecnologia%20%C3%A9%20a%20solu%C3%A7%C3%A3o%20para%20os%20tempos%20de%20crise%20%7C%20Dicas%20em%20Geral&utmhid=870596742&utmr=-&utmp=%2Fnoticias%2F22254%2Finvestimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise%2F%3Ffdx_switcher%3Dtrue&utmht=1573220373723&utmac=UA-4132768-10&utmcc=__utma%3D182534195.357672242.1573220373.1573220373.1573220373.1%3B%2B__utmz%3D182534195.1573220373.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1447711372&utmredir=1&utmu=qzAAAAAAAAAAAAAAAAAAAAAE~ US
image
whitelisted
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/themes/dg9/img/dicasemgeral.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/img/bandeiras/es.png BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/img/bandeiras/de.png BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/img/bandeiras/en.png BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/img/bandeiras/br.png BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/themes/dg9/img/fundo_topo.jpg BR
image
unknown
3424 iexplore.exe GET 200 192.0.77.2:80 http://i0.wp.com/dicasemgeral.xpg.uol.com.br/wp-content/uploads/2015/08/investir-em-tecnologia.jpg?resize=250%2C104 US
image
whitelisted
3424 iexplore.exe GET 301 192.0.78.26:80 http://stats.wordpress.com/e-201945.js US
html
shared
3424 iexplore.exe GET 301 172.217.23.142:80 http://www.youtube.com/embed/videoseries?list=PLynm_Lel57z1ckrB1OBUHZeJWuaGMN6Hq&hl=pt_BR&autoplay=0&loop=1&showinfo=0&rel=0&hd=0&iv_load_policy=1&allowfullscreen=1&wmode=transparent US
––
––
whitelisted
3424 iexplore.exe GET 302 31.13.92.36:80 http://www.facebook.com/plugins/likebox.php?locale=pt_BR&id=172293742822839&width=405&connections=7&stream=false&header=false&height=180 IE
––
––
whitelisted
3424 iexplore.exe GET 200 54.225.131.246:80 http://carnage.spider.ad/?id=1821 US
text
unknown
3424 iexplore.exe GET 200 13.32.158.222:80 http://w.sharethis.com/button/buttons.js US
text
whitelisted
3424 iexplore.exe GET 200 187.17.123.137:80 http://cdn4.mediakit.com.br/campaign/spider/yhs/yhs_728x90.html BR
html
suspicious
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/anuncios/mostra.php?cod=04&ref=dicasemgeral BR
html
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/themes/dg9/img/dicas_tv.png BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/themes/dg9/img/dicas_tv2.png BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/view.php?i=MjIyNTQ=&t=SW52ZXN0aW1lbnRvIGVtIHRlY25vbG9naWEgw6kgYSBzb2x1w6fDo28gcGFyYSBvcyB0ZW1wb3MgZGUgY3Jpc2U=&u=aHR0cDovL2RpY2FzZW1nZXJhbC54cGcuY29tLmJyL25vdGljaWFzLzIyMjU0L2ludmVzdGltZW50by1lbS10ZWNub2xvZ2lhLWUtYS1zb2x1Y2FvLXBhcmEtb3MtdGVtcG9zLWRlLWNyaXNlLz9mZHhfc3dpdGNoZXI9dHJ1ZQ==&l=pt&c=MA==&tipo=imagem.jpg BR
image
unknown
3424 iexplore.exe GET 301 172.217.22.110:80 http://www.youtube-nocookie.com/v/hkI8jkn1St4?version=3&hl=pt_BR&rel=0 US
––
––
whitelisted
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/img/indique-conteudo.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/uploads/cache/22218_150.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.137:80 http://cdn4.mediakit.com.br/campaign/spider/yhs/words.js?t=1573220393785 BR
text
suspicious
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/uploads/cache/22186_150.jpg BR
image
unknown
3424 iexplore.exe GET 200 172.217.21.238:80 http://www.google-analytics.com/__utm.gif?utmwv=5.7.2&utms=1&utmn=670069605&utmhn=dicasemgeral.xpg.com.br&utmcs=utf-8&utmsr=1280x720&utmvp=300x250&utmsc=32-bit&utmul=en-us&utmje=1&utmfl=26.0%20r0&utmdt=Grupo%20Dicas%20em%20Geral&utmhid=1985852426&utmr=0&utmp=%2Fanuncios%2Fmostra.php%3Fcod%3D04%26ref%3Ddicasemgeral&utmht=1573220393863&utmac=UA-4132768-17&utmcc=__utma%3D179425201.1555753380.1573220394.1573220394.1573220394.1%3B%2B__utmz%3D179425201.1573220394.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=&utmu=qhAAAAAAAAAAAAAAAAAAAAgE~ US
image
whitelisted
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/uploads/cache/22179_150.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/uploads/cache/22171_150.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/uploads/cache/22238_110.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/uploads/cache/22227_110.jpg BR
image
unknown
3424 iexplore.exe GET 200 170.82.173.10:80 http://cdn4.spider.ad/img/logo_yhs.png BR
image
suspicious
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/uploads/cache/22225_110.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/uploads/cache/22215_110.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/uploads/cache/22208_110.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/uploads/cache/22220_110.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/uploads/cache/22198_110.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/themes/dg9/img/icone_news_latter.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/themes/dg9/img/icone_favoritos.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/themes/dg9/img/icone_feed_rss.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/plugins/Viva-ThumbZoom/lib/v-zoom/viva-zoom-mini.js BR
text
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/themes/dg9/img/fundo_corpo_da_pagina.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/themes/dg9/img/fundo_rodape.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/themes/dg9/img/fundo_pesquisa.png BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/themes/dg9/img/botao_pesquisar.png BR
image
unknown
3424 iexplore.exe GET 301 187.17.123.243:80 http://dicasemgeral.xpg.com.br/noticias/22254/investimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise/graphics/zoomin.cur BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/themes/dg9/img/fundo_autor_post.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/themes/dg9/img/img_dicas_tv_sidebar.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/themes/dg9/img/botao_newslatter.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/uploads/userphoto/amilton-junior.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/uploads/cache/22218_110.jpg BR
image
unknown
3424 iexplore.exe GET 302 187.17.123.245:80 http://www3.xpg.com.br/404.html?h=dicasemgeral.xpg.com.br BR
––
––
unknown
3424 iexplore.exe GET 200 187.17.123.245:80 http://www3.xpg.com.br/imovel.html BR
html
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/noticias/22254/investimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise/?fdx_switcher=true BR
html
unknown
3424 iexplore.exe GET 200 187.17.123.245:80 http://js.xpg.com.br/tag/p/dicasemgeral/tag.js BR
text
unknown
3424 iexplore.exe GET 200 172.217.21.238:80 http://www.google-analytics.com/__utm.gif?utmwv=5.7.2&utms=2&utmn=674489835&utmhn=dicasemgeral.xpg.com.br&utme=8(2!post_type*tags*year*categories)9(2!post*1%203%20brasil%20empregos%20gera%20mercado%20milhao%20ti*2015*noticias)&utmcs=utf-8&utmsr=1280x720&utmvp=1276x560&utmsc=32-bit&utmul=en-us&utmje=1&utmfl=26.0%20r0&utmdt=Investimento%20em%20tecnologia%20%C3%A9%20a%20solu%C3%A7%C3%A3o%20para%20os%20tempos%20de%20crise%20%7C%20Dicas%20em%20Geral&utmhid=231707671&utmr=-&utmp=%2Fnoticias%2F22254%2Finvestimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise%2F%3Ffdx_switcher%3Dtrue&utmht=1573220396877&utmac=UA-4132768-10&utmcc=__utma%3D182534195.357672242.1573220373.1573220373.1573220373.1%3B%2B__utmz%3D182534195.1573220373.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=&utmu=qzAAAAAAAAAAAAAAAAAAAAAE~ US
image
whitelisted
3424 iexplore.exe GET 200 172.217.21.238:80 http://www.google-analytics.com/analytics.js US
text
whitelisted
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/view.php?i=MjIyNTQ=&t=SW52ZXN0aW1lbnRvIGVtIHRlY25vbG9naWEgw6kgYSBzb2x1w6fDo28gcGFyYSBvcyB0ZW1wb3MgZGUgY3Jpc2U=&u=aHR0cDovL2RpY2FzZW1nZXJhbC54cGcuY29tLmJyL25vdGljaWFzLzIyMjU0L2ludmVzdGltZW50by1lbS10ZWNub2xvZ2lhLWUtYS1zb2x1Y2FvLXBhcmEtb3MtdGVtcG9zLWRlLWNyaXNlLz9mZHhfc3dpdGNoZXI9dHJ1ZQ==&l=pt&c=MA==&tipo=imagem.jpg BR
image
unknown
3424 iexplore.exe GET 301 192.0.78.26:80 http://stats.wordpress.com/e-201945.js US
html
shared
3424 iexplore.exe GET 301 172.217.23.142:80 http://www.youtube.com/embed/videoseries?list=PLynm_Lel57z1ckrB1OBUHZeJWuaGMN6Hq&hl=pt_BR&autoplay=0&loop=1&showinfo=0&rel=0&hd=0&iv_load_policy=1&allowfullscreen=1&wmode=transparent US
––
––
whitelisted
3424 iexplore.exe GET 302 31.13.92.36:80 http://www.facebook.com/plugins/likebox.php?locale=pt_BR&id=172293742822839&width=405&connections=7&stream=false&header=false&height=180 IE
––
––
whitelisted
3424 iexplore.exe GET 301 187.17.123.243:80 http://dicasemgeral.xpg.com.br/noticias/22254/investimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise/graphics/zoomin.cur BR
image
unknown
3424 iexplore.exe GET 204 178.250.2.157:80 http://rtax.criteo.com/delivery/rta/rta.js?netId=3955&cookieName=xpg_crtg_rta&rnd=74449908890&varName=xpg_crtg_content FR
––
––
whitelisted
3424 iexplore.exe GET –– 200.147.41.244:80 http://me.jsuol.com.br/omtr/xpg.js BR
––
––
unknown
3424 iexplore.exe GET 200 104.31.68.203:80 http://static.fulfilling.io/js/loader.js US
text
shared
3424 iexplore.exe GET 200 52.222.157.194:80 http://tm.jsuol.com.br/uoltm.js?id=w1gygg US
text
whitelisted
3424 iexplore.exe GET 200 187.17.123.137:80 http://cdn4.mediakit.com.br/campaign/spider/yhs/words.js?t=1573220397439 BR
text
suspicious
3424 iexplore.exe GET 200 172.217.23.130:80 http://www.googletagservices.com/tag/js/gpt.js US
text
whitelisted
3424 iexplore.exe GET 200 192.0.77.32:80 http://s0.wp.com/wp-content/js/devicepx-jetpack.js?ver=201945 US
text
whitelisted
3424 iexplore.exe GET 200 172.217.21.238:80 http://www.google-analytics.com/__utm.gif?utmwv=5.7.2&utms=1&utmn=663536669&utmhn=dicasemgeral.xpg.com.br&utmcs=utf-8&utmsr=1280x720&utmvp=300x250&utmsc=32-bit&utmul=en-us&utmje=1&utmfl=26.0%20r0&utmdt=Grupo%20Dicas%20em%20Geral&utmhid=973698109&utmr=0&utmp=%2Fanuncios%2Fmostra.php%3Fcod%3D04%26ref%3Ddicasemgeral&utmht=1573220397533&utmac=UA-4132768-17&utmcc=__utma%3D179425201.872726468.1573220397.1573220397.1573220397.1%3B%2B__utmz%3D179425201.1573220397.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=&utmu=qhAAAAAAAAAAAAAAAAAAAAgE~ US
image
whitelisted
3424 iexplore.exe GET 302 187.17.123.245:80 http://www3.xpg.com.br/404.html?h=dicasemgeral.xpg.com.br BR
html
unknown
3424 iexplore.exe GET 302 172.217.21.238:80 http://www.google-analytics.com/r/collect?v=1&_v=j79&a=231707671&t=pageview&_s=1&dl=http%3A%2F%2Fdicasemgeral.xpg.com.br%2Fnoticias%2F22254%2Finvestimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise%2F%3Ffdx_switcher%3Dtrue&ul=en-us&de=utf-8&dt=Investimento%20em%20tecnologia%20%C3%A9%20a%20solu%C3%A7%C3%A3o%20para%20os%20tempos%20de%20crise%20%7C%20Dicas%20em%20Geral&sd=32-bit&sr=1280x720&vp=1260x560&je=0&fl=26.0%20r0&_utma=182534195.357672242.1573220373.1573220373.1573220373.1&_utmz=182534195.1573220373.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)&_utmht=1573220397861&_u=YQBCAE~&jid=1627757766&gjid=1095791423&cid=357672242.1573220373&tid=UA-69710503-3&_gid=414483837.1573220398&_r=1&cd1=dicasemgeral&cd2=Parceiro&cd3=Tecnologia&z=571587124 US
html
whitelisted
3424 iexplore.exe GET 204 178.250.2.157:80 http://rtax.criteo.com/delivery/rta/rta.js?netId=3955&cookieName=xpg_crtg_rta&rnd=86514344195&varName=xpg_crtg_content FR
––
––
whitelisted
3424 iexplore.exe GET 200 187.17.123.245:80 http://www3.xpg.com.br/humor.html BR
html
unknown
3424 iexplore.exe GET 200 172.217.21.238:80 http://www.google-analytics.com/collect?v=1&_v=j79&a=973698109&t=pageview&_s=1&dl=http%3A%2F%2Fdicasemgeral.xpg.com.br%2Fanuncios%2Fmostra.php%3Fcod%3D04%26ref%3Ddicasemgeral&ul=en-us&de=utf-8&dt=Grupo%20Dicas%20em%20Geral&sd=32-bit&sr=1280x720&vp=300x250&je=0&fl=26.0%20r0&_utma=182534195.357672242.1573220373.1573220373.1573220373.1&_utmz=182534195.1573220373.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)&_utmht=1573220398049&_u=QACCAE~&jid=&gjid=&cid=357672242.1573220373&tid=UA-69710503-3&_gid=414483837.1573220398&cd1=dicasemgeral&cd2=Parceiro&cd3=Tecnologia&z=826111579 US
image
whitelisted
3424 iexplore.exe GET 301 172.217.22.110:80 http://www.youtube-nocookie.com/v/hkI8jkn1St4?version=3&hl=pt_BR&rel=0 US
––
––
whitelisted
3424 iexplore.exe GET 200 192.0.76.3:80 http://pixel.wp.com/g.gif?v=ext&j=1%3A3.0.2&blog=70414939&post=22254&tz=-2&host=dicasemgeral.xpg.com.br&ref=&fcp=0&rand=0.08172752603938799 US
image
whitelisted
3424 iexplore.exe GET 200 13.35.254.34:80 http://x.ss2.us/x.cer US
der
whitelisted
3424 iexplore.exe GET 200 2.20.190.12:80 http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab unknown
compressed
whitelisted
3424 iexplore.exe GET 301 187.17.123.243:80 http://dicasemgeral.xpg.com.br/noticias/22254/investimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise/graphics/zoomin.cur BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/noticias/22254/investimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise/?fdx_switcher=true BR
html
unknown
3424 iexplore.exe GET –– 187.17.123.245:80 http://www3.xpg.com.br/404.html?h=dicasemgeral.xpg.com.br BR
––
––
unknown
3424 iexplore.exe GET 200 172.217.21.238:80 http://www.google-analytics.com/__utm.gif?utmwv=5.7.2&utms=3&utmn=1659925833&utmhn=dicasemgeral.xpg.com.br&utme=8(2!post_type*tags*year*categories)9(2!post*1%203%20brasil%20empregos%20gera%20mercado%20milhao%20ti*2015*noticias)&utmcs=utf-8&utmsr=1280x720&utmvp=1276x560&utmsc=32-bit&utmul=en-us&utmje=1&utmfl=26.0%20r0&utmdt=Investimento%20em%20tecnologia%20%C3%A9%20a%20solu%C3%A7%C3%A3o%20para%20os%20tempos%20de%20crise%20%7C%20Dicas%20em%20Geral&utmhid=632765037&utmr=-&utmp=%2Fnoticias%2F22254%2Finvestimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise%2F%3Ffdx_switcher%3Dtrue&utmht=1573220406249&utmac=UA-4132768-10&utmcc=__utma%3D182534195.357672242.1573220373.1573220373.1573220373.1%3B%2B__utmz%3D182534195.1573220373.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=&utmu=qzAAAAAAAAAAAAAAAAAAAAAE~ US
image
whitelisted
3424 iexplore.exe GET 204 178.250.2.157:80 http://rtax.criteo.com/delivery/rta/rta.js?netId=3955&cookieName=xpg_crtg_rta&rnd=27590862066&varName=xpg_crtg_content FR
––
––
whitelisted
3424 iexplore.exe GET 200 172.217.21.238:80 http://www.google-analytics.com/collect?v=1&_v=j79&a=632765037&t=pageview&_s=1&dl=http%3A%2F%2Fdicasemgeral.xpg.com.br%2Fnoticias%2F22254%2Finvestimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise%2F%3Ffdx_switcher%3Dtrue&ul=en-us&de=utf-8&dt=Investimento%20em%20tecnologia%20%C3%A9%20a%20solu%C3%A7%C3%A3o%20para%20os%20tempos%20de%20crise%20%7C%20Dicas%20em%20Geral&sd=32-bit&sr=1280x720&vp=1276x560&je=0&fl=26.0%20r0&_utma=182534195.357672242.1573220373.1573220373.1573220373.1&_utmz=182534195.1573220373.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)&_utmht=1573220406546&_u=QACCAE~&jid=&gjid=&cid=357672242.1573220373&tid=UA-69710503-3&_gid=414483837.1573220398&cd1=dicasemgeral&cd2=Parceiro&cd3=Tecnologia&z=2087598173 US
image
whitelisted
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/view.php?i=MjIyNTQ=&t=SW52ZXN0aW1lbnRvIGVtIHRlY25vbG9naWEgw6kgYSBzb2x1w6fDo28gcGFyYSBvcyB0ZW1wb3MgZGUgY3Jpc2U=&u=aHR0cDovL2RpY2FzZW1nZXJhbC54cGcuY29tLmJyL25vdGljaWFzLzIyMjU0L2ludmVzdGltZW50by1lbS10ZWNub2xvZ2lhLWUtYS1zb2x1Y2FvLXBhcmEtb3MtdGVtcG9zLWRlLWNyaXNlLz9mZHhfc3dpdGNoZXI9dHJ1ZQ==&l=pt&c=MA==&tipo=imagem.jpg BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.137:80 http://cdn4.mediakit.com.br/campaign/spider/yhs/words.js?t=1573220406686 BR
text
suspicious
3424 iexplore.exe GET 301 192.0.78.26:80 http://stats.wordpress.com/e-201945.js US
html
shared
3424 iexplore.exe GET 302 31.13.92.36:80 http://www.facebook.com/plugins/likebox.php?locale=pt_BR&id=172293742822839&width=405&connections=7&stream=false&header=false&height=180 IE
––
––
whitelisted
3424 iexplore.exe GET 301 187.17.123.243:80 http://dicasemgeral.xpg.com.br/noticias/22254/investimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise/graphics/zoomin.cur BR
compressed
unknown
3424 iexplore.exe GET 301 172.217.23.142:80 http://www.youtube.com/embed/videoseries?list=PLynm_Lel57z1ckrB1OBUHZeJWuaGMN6Hq&hl=pt_BR&autoplay=0&loop=1&showinfo=0&rel=0&hd=0&iv_load_policy=1&allowfullscreen=1&wmode=transparent US
––
––
whitelisted
3424 iexplore.exe GET 200 172.217.21.238:80 http://www.google-analytics.com/__utm.gif?utmwv=5.7.2&utms=1&utmn=900776004&utmhn=dicasemgeral.xpg.com.br&utmcs=utf-8&utmsr=1280x720&utmvp=300x250&utmsc=32-bit&utmul=en-us&utmje=1&utmfl=26.0%20r0&utmdt=Grupo%20Dicas%20em%20Geral&utmhid=1075997587&utmr=0&utmp=%2Fanuncios%2Fmostra.php%3Fcod%3D04%26ref%3Ddicasemgeral&utmht=1573220406827&utmac=UA-4132768-17&utmcc=__utma%3D179425201.783569647.1573220407.1573220407.1573220407.1%3B%2B__utmz%3D179425201.1573220407.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=&utmu=qhAAAAAAAAAAAAAAAAABAAgE~ US
image
whitelisted
3424 iexplore.exe GET 204 178.250.2.157:80 http://rtax.criteo.com/delivery/rta/rta.js?netId=3955&cookieName=xpg_crtg_rta&rnd=41224177761&varName=xpg_crtg_content FR
––
––
whitelisted
3424 iexplore.exe GET 200 172.217.21.238:80 http://www.google-analytics.com/collect?v=1&_v=j79&a=1075997587&t=pageview&_s=1&dl=http%3A%2F%2Fdicasemgeral.xpg.com.br%2Fanuncios%2Fmostra.php%3Fcod%3D04%26ref%3Ddicasemgeral&ul=en-us&de=utf-8&dt=Grupo%20Dicas%20em%20Geral&sd=32-bit&sr=1280x720&vp=300x250&je=0&fl=26.0%20r0&_utma=182534195.357672242.1573220373.1573220373.1573220373.1&_utmz=182534195.1573220373.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)&_utmht=1573220407155&_u=QACCAE~&jid=&gjid=&cid=357672242.1573220373&tid=UA-69710503-3&_gid=414483837.1573220398&cd1=dicasemgeral&cd2=Parceiro&cd3=Tecnologia&z=647490449 US
image
whitelisted
3424 iexplore.exe GET 302 187.17.123.245:80 http://www3.xpg.com.br/404.html?h=dicasemgeral.xpg.com.br BR
––
––
unknown
3424 iexplore.exe GET 301 172.217.22.110:80 http://www.youtube-nocookie.com/v/hkI8jkn1St4?version=3&hl=pt_BR&rel=0 US
––
––
whitelisted
3424 iexplore.exe GET 200 192.0.76.3:80 http://pixel.wp.com/g.gif?v=ext&j=1%3A3.0.2&blog=70414939&post=22254&tz=-2&host=dicasemgeral.xpg.com.br&ref=&fcp=0&rand=0.20046922920144716 US
image
whitelisted
3424 iexplore.exe GET –– 187.17.123.245:80 http://www3.xpg.com.br/jornais-servicos-e-noticias-regionais.html BR
––
––
unknown
3424 iexplore.exe GET –– 187.17.123.243:80 http://dicasemgeral.xpg.com.br/noticias/22254/investimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise/graphics/zoomin.cur BR
––
––
unknown
3424 iexplore.exe GET 301 187.17.123.243:80 http://dicasemgeral.xpg.com.br/noticias/22254/investimento-em-tecnologia-e-a-solucao-para-os-tempos-de-crise/graphics/zoomin.cur BR
compressed
unknown
3424 iexplore.exe GET 302 187.17.123.245:80 http://www3.xpg.com.br/404.html?h=dicasemgeral.xpg.com.br BR
––
––
unknown
3424 iexplore.exe GET 200 187.17.123.245:80 http://www3.xpg.com.br/criancas.html BR
html
unknown
3424 iexplore.exe GET 200 67.202.94.86:80 http://whos.amung.us/pingjs/?k=nhn22jjgcnr2&t=Investimento%20em%20tecnologia%20%C3%A9%20a%20solu%C3%A7%C3%A3o%20para%20os%20tempos%20de%20crise%20%7C%20Dicas%20em%20Geral&c=s&y=&a=-1&d=0&v=22&r=6855 US
compressed
suspicious
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/plugins/Viva-ThumbZoom/lib/v-zoom/graphics/outlines/rounded-white.png BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/plugins/Viva-ThumbZoom/lib/v-zoom/graphics/zoomout.cur BR
image
unknown
3424 iexplore.exe GET 200 187.17.123.243:80 http://dicasemgeral.xpg.com.br/wp-content/plugins/Viva-ThumbZoom/lib/v-zoom/graphics/loader.white.gif BR
image
unknown
3424 iexplore.exe GET 200 192.0.77.2:80 http://i0.wp.com/dicasemgeral.xpg.uol.com.br/wp-content/uploads/2015/08/investir-em-tecnologia.jpg US
image
whitelisted

Download PCAP, analyze network streams, HTTP content and a lot more at the full report

Connections

PID Process IP ASN CN Reputation
2740 iexplore.exe 204.79.197.200:80 Microsoft Corporation US whitelisted
3424 iexplore.exe 200.147.35.224:80 Universo Online S.A. BR unknown
3424 iexplore.exe 187.17.123.243:80 Universo Online S.A. BR unknown
3424 iexplore.exe 172.217.18.2:443 Google Inc. US whitelisted
3424 iexplore.exe 185.225.208.133:80 –– suspicious
3424 iexplore.exe 187.17.123.245:80 Universo Online S.A. BR unknown
3424 iexplore.exe 50.17.188.236:80 Amazon.com, Inc. US unknown
3424 iexplore.exe 172.217.21.238:80 Google Inc. US whitelisted
3424 iexplore.exe 192.0.77.2:80 Automattic, Inc US unknown
3424 iexplore.exe 192.0.78.26:80 Automattic, Inc US unknown
3424 iexplore.exe 192.0.77.32:80 Automattic, Inc US suspicious
3424 iexplore.exe 172.217.23.142:80 Google Inc. US whitelisted
3424 iexplore.exe 172.217.16.206:443 Google Inc. US whitelisted
3424 iexplore.exe 31.13.92.36:80 Facebook, Inc. IE whitelisted
3424 iexplore.exe 13.32.158.222:80 Amazon.com, Inc. US whitelisted
3424 iexplore.exe 54.225.131.246:80 Amazon.com, Inc. US unknown
3424 iexplore.exe 192.0.78.26:443 Automattic, Inc US unknown
3424 iexplore.exe 31.13.92.36:443 Facebook, Inc. IE whitelisted
3424 iexplore.exe 187.17.123.137:80 Universo Online S.A. BR suspicious
3424 iexplore.exe 172.217.23.142:443 Google Inc. US whitelisted
3424 iexplore.exe 172.217.22.110:80 Google Inc. US whitelisted
3424 iexplore.exe 31.13.92.14:443 Facebook, Inc. IE whitelisted
3424 iexplore.exe 172.217.22.110:443 Google Inc. US whitelisted
3424 iexplore.exe 170.82.173.10:80 3L CLOUD INTERNET SERVICES LTDA - EPP BR unknown
3424 iexplore.exe 178.250.2.157:80 Criteo SA FR unknown
3424 iexplore.exe 104.31.68.203:80 Cloudflare Inc US shared
–– –– 200.147.41.244:80 Universo Online S.A. BR unknown
3424 iexplore.exe 52.222.157.194:80 Amazon.com, Inc. US malicious
3424 iexplore.exe 172.217.23.130:80 Google Inc. US whitelisted
3424 iexplore.exe 200.147.41.244:80 Universo Online S.A. BR unknown
3424 iexplore.exe 64.233.167.157:443 Google Inc. US whitelisted
3424 iexplore.exe 216.58.208.45:443 Google Inc. US whitelisted
3424 iexplore.exe 143.204.214.9:443 US malicious
3424 iexplore.exe 192.0.76.3:80 Automattic, Inc US suspicious
3424 iexplore.exe 13.35.254.34:80 US unknown
3424 iexplore.exe 2.20.190.12:80 Akamai International B.V. –– whitelisted
3424 iexplore.exe 172.217.21.206:443 Google Inc. US whitelisted
3424 iexplore.exe 172.217.22.67:443 Google Inc. US whitelisted
3424 iexplore.exe 172.217.22.99:443 Google Inc. US whitelisted
3424 iexplore.exe 52.222.157.194:443 Amazon.com, Inc. US malicious
3424 iexplore.exe 216.58.207.36:443 Google Inc. US whitelisted
3424 iexplore.exe 185.60.216.19:443 Facebook, Inc. IE whitelisted
3424 iexplore.exe 170.82.173.10:443 3L CLOUD INTERNET SERVICES LTDA - EPP BR unknown
3424 iexplore.exe 13.35.253.6:443 US unknown
3424 iexplore.exe 13.35.253.9:443 US suspicious
–– –– 13.35.253.9:443 US suspicious
–– –– 13.35.253.6:443 US unknown
–– –– 52.222.157.194:443 Amazon.com, Inc. US malicious
3424 iexplore.exe 67.202.94.86:80 Steadfast US unknown
3424 iexplore.exe 3.123.152.53:443 US unknown

DNS requests

Domain IP Reputation
www.bing.com 204.79.197.200
13.107.21.200
whitelisted
dicasemgeral.xpg.uol.com.br 200.147.35.224
unknown
dicasemgeral.xpg.com.br 187.17.123.243
unknown
pagead2.googlesyndication.com 172.217.18.2
whitelisted
widgets.amung.us 185.225.208.133
whitelisted
js.xpg.com.br 187.17.123.245
unknown
lizard1301.spider.ad 50.17.188.236
54.243.79.219
54.225.131.246
unknown
www.google-analytics.com 172.217.21.238
whitelisted
cdn4.mediakit.com.br 187.17.123.137
unknown
apis.google.com 172.217.16.206
whitelisted
i0.wp.com 192.0.77.2
whitelisted
ads22659.hotwords.com.br No response unknown
stats.wordpress.com 192.0.78.26
192.0.78.27
unknown
s0.wp.com 192.0.77.32
whitelisted
carnage.spider.ad 54.225.131.246
54.243.79.219
50.17.188.236
unknown
www.youtube.com 172.217.23.142
172.217.18.174
216.58.206.14
172.217.18.110
216.58.207.46
172.217.23.110
172.217.16.174
216.58.208.46
172.217.16.142
172.217.22.46
216.58.210.14
172.217.21.206
172.217.23.174
216.58.205.238
whitelisted
w.sharethis.com 13.32.158.222
13.32.158.32
13.32.158.157
13.32.158.133
whitelisted
www.facebook.com 31.13.92.36
whitelisted
www.youtube-nocookie.com 172.217.22.110
216.58.210.14
172.217.23.174
172.217.21.238
172.217.18.174
216.58.206.14
172.217.18.110
216.58.207.46
216.58.207.78
172.217.23.110
172.217.16.174
172.217.16.142
172.217.22.78
whitelisted
static.xx.fbcdn.net 31.13.92.14
whitelisted
cdn4.spider.ad 170.82.173.10
suspicious
www3.xpg.com.br 187.17.123.245
unknown
rtax.criteo.com 178.250.2.157
whitelisted
static.fulfilling.io 104.31.68.203
104.31.69.203
unknown
www.googletagservices.com 172.217.23.130
whitelisted
me.jsuol.com.br 200.147.41.244
unknown
tm.jsuol.com.br 52.222.157.194
52.222.157.248
52.222.157.49
52.222.157.77
whitelisted
stats.g.doubleclick.net 64.233.167.157
64.233.167.154
64.233.167.156
64.233.167.155
whitelisted
accounts.google.com 216.58.208.45
shared
pixel.wp.com 192.0.76.3
whitelisted
tm.uol.com.br 143.204.214.9
143.204.214.120
143.204.214.3
143.204.214.19
whitelisted
x.ss2.us 13.35.254.34
13.35.254.176
13.35.254.54
13.35.254.82
whitelisted
www.download.windowsupdate.com 2.20.190.12
2.20.189.250
whitelisted
s.ytimg.com 172.217.21.206
whitelisted
ssl.gstatic.com 172.217.22.67
whitelisted
fonts.gstatic.com 172.217.22.99
whitelisted
www.google.com 216.58.207.36
whitelisted
scontent-frx5-1.xx.fbcdn.net 185.60.216.19
whitelisted
ws.sharethis.com 13.35.253.9
13.35.253.39
13.35.253.43
13.35.253.67
whitelisted
c.sharethis.mgr.consensu.org 13.35.253.6
13.35.253.37
13.35.253.52
13.35.253.85
malicious
whos.amung.us 67.202.94.86
67.202.94.94
67.202.94.93
suspicious
l.sharethis.com 3.123.152.53
18.195.80.102
3.120.46.255
18.196.132.129
whitelisted

Threats

PID Process Class Message
3424 iexplore.exe Potential Corporate Privacy Violation ET POLICY Outdated Flash Version M1

Debug output strings

No debug info.