IOCReport

loading gif

Files

File Path
Type
Category
Malicious
https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1
URL
initial url
malicious
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
data
dropped
clean
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506
Microsoft Cabinet archive data, 61020 bytes, 1 file
dropped
clean
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\EDC238BFF48A31D55A97E1E93892934B_33E8F98A524575FDD27708D6D61F97ED
data
dropped
clean
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
data
dropped
clean
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\EDC238BFF48A31D55A97E1E93892934B_33E8F98A524575FDD27708D6D61F97ED
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\0079b35c-f8fa-45a7-a8b7-bdf8eba80ff1.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\0ef446f5-5daa-4ac3-b591-1c4784fc95ce.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\50907df1-3712-418e-9e91-0ec9028aa3d5.tmp
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\72446f73-412e-4b09-a7fe-857f99e52227.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\09e8ef0e-a23e-42cb-a038-ed5f9c541cbc.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\466b524a-38ad-4c10-8896-c1e117ba52a5.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\59cd6bc6-4b72-4141-b0b2-a8c22489f2da.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6ee6eeaa-d560-48b5-a23e-bac9f35a5672.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7335de3b-b54e-4977-89ad-d14efc34c441.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp
ASCII text, with very long lines, with no line terminators
modified
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7a0401b1-ba1d-4486-bd77-cf1fa87cf2d8.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\907f1a37-8d8c-4587-acfa-f9d67eb86453.tmp
very short file (no magic)
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0ae6b52f6e424e4e_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\105618d59203ef9a_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\16d9c28137016842_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\236c9a70f6d402a3_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\335e69ddec2b9ac6_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3aa07428c0e4d4b1_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3ee3277df70d5d32_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3f84843334707219_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\402f710388ce73f0_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4a93ae2abbf51303_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4b4ae9e2956257f4_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\505f12502b0e1e8f_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\57849aa2afcf52a8_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5ae823d24fa20467_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5c8938a5f2f8b277_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5e756fb02c040fa1_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\641fb3ab98d94d28_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\75180a52d49873b5_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\75c880fe196c95da_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\78971c5f3b10669d_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\78ec281d449072c9_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7a24f279f3c8e97a_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\80d379f7f5b93e31_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8140b5c475fbdf1c_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\823f8fc18e89de25_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8421b1b3082ac36c_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\859d57729f30e053_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\878756e158c08974_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8936c0436506fed9_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8959e7f160a77ede_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8d4436abab9cbffc_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8e8595a5d4720c28_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\91b9b5ff6833c0d7_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\95fee99bab72dc0f_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\98f7ac3352864cdd_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9aeca2548873487f_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9bec16c4529e250a_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a07811dab2c1a983_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a2a9870c369aa42b_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a2df7e764a389255_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a3b9cf33e4506e9e_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a6de80f86bf10fb4_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ab2e7647897bb5a2_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ab9b9b92e56d5efe_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b4191926631e1e0f_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b868e2287919f738_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bbfcd0a0712d3aa4_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bf709059c5fc7310_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c693e56ec7dc32cf_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c7dbfff3f5d11b28_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c968078420fe3f97_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ca3cacf61e20435d_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\cb14d97ede8b4cfb_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d1d96ac840cd7ef0_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d2b8a8d9a2d95859_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d5ef84d81abcea8d_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d80a1cc1e7bfcfc1_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ddf29fd5d7ab777f_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ddf7e8582ef3dff7_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e41c3bf86352e7cd_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e65797cd70a56c3a_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e78a65cbed4dea02_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e7eeab8bd5560049_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e8a9b928233b277a_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ed55c9f01fcca8ed_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f4692d38da8f7d92_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f5e415729b027894_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f7733717fc9a9560_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f99d6da11388c29b_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fd410d0fcd87a62a_0
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
SQLite 3.x database, last written using SQLite version 3032001
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
SQLite 3.x database, last written using SQLite version 3032001
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
SQLite 3.x database, last written using SQLite version 3032001
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor
SQLite 3.x database, last written using SQLite version 3032001
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal
data
modified
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
SQLite 3.x database, last written using SQLite version 3032001
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\b25feb06-4ffa-4707-a885-6016f837f55d.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\6a3aeedd-434b-43b2-b003-feca369dd65f.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a3c50621-1f17-4c22-b525-b99227154586.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b600a3ab-e0bc-458f-b487-c41f4aa8d8af.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c6181ad3-c565-42cb-a876-1eeebefd2664.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\cb77d826-e91f-42e2-b356-6cd627f9be6b.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d14e7f39-8ae0-473c-ba01-8be53d481be2.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
MPEG-4 LOAS
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\e96381a6-b3a0-45e6-960f-96710d782116.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
ASCII text, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\b3688e6d-d579-470b-9441-4a333b487b55.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\b4d80e73-bd5b-4519-9582-53984924b09a.tmp
SysEx File -
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\d10f22f7-00bf-44e1-b120-25d151be923d.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\d5e958e0-e349-4b83-8207-1fcb8af14b20.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\e1ba98e8-9aa2-4445-9421-9fecb20ab9f3.tmp
data
dropped
clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\ee911bc3-12a7-4398-a431-6db9a5e91b4b.tmp
ASCII text, with very long lines, with no line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\8c1e99c0-df59-4ed3-b323-36c067026dd9.tmp
Google Chrome extension, version 3
dropped
clean
C:\Users\user\AppData\Local\Temp\a835b5ea-4896-43e3-9ea7-5e07941833a2.tmp
very short file (no magic)
dropped
clean
C:\Users\user\AppData\Local\Temp\ada9c210-eb36-44e7-8f52-3e054b9e54d5.tmp
Google Chrome extension, version 3
dropped
clean
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
ASCII text
dropped
clean
C:\Users\user\AppData\Local\Temp\c004b8fc-8943-44e4-8b67-c82e0e0b8a9b.tmp
very short file (no magic)
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\8c1e99c0-df59-4ed3-b323-36c067026dd9.tmp
Google Chrome extension, version 3
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\en\messages.json
ASCII text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\en_GB\messages.json
ASCII text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\es_419\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\fil\messages.json
ASCII text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\id\messages.json
ASCII text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\nl\messages.json
ASCII text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\pt_BR\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\pt_PT\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\zh_CN\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\images\icon_128.png
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\images\icon_16.png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_769689143\CRX_INSTALL\manifest.json
ASCII text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\am\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\ar\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\bn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\en\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\fa\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\gu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\id\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\kn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\ml\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\mr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\ms\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\nl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\pt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\sw\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\ta\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\te\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\zh\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\CRX_INSTALL\manifest.json
ASCII text, with very long lines, with CRLF line terminators
dropped
clean
C:\Users\user\AppData\Local\Temp\scoped_dir3500_906741184\ada9c210-eb36-44e7-8f52-3e054b9e54d5.tmp
Google Chrome extension, version 3
dropped
clean
There are 244 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1'
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1572,7917042391378505505,9881702941299426833,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1708 /prefetch:8
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1572,7917042391378505505,9881702941299426833,131072 --lang=en-US --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=4612 /prefetch:8
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1572,7917042391378505505,9881702941299426833,131072 --lang=en-US --service-sandbox-type=video_capture --enable-audio-service-sandbox --mojo-platform-channel-handle=3848 /prefetch:8
clean

URLs

Name
IP
Malicious
https://www.paperturn.com/prices
malicious
https://www.paperturn.com/flipbook
malicious
https://www.paperturn.com/cache/v2.3.12/mini-b6b0e1e2a9cc4a10cafe9a7b0396818b.jsaD
unknown
clean
https://paperturn.com/id
unknown
clean
https://stats.g.doubleclick.net
unknown
clean
https://www.paperturn.com/prices#
unknown
clean
https://assets.paperturn-view.com/index.js?20210723020133
unknown
clean
https://consent.cookiebot.com/15dac99d-cb99-4df3-83c0-6e8c10ac66d8/cc.js?renew=false&referer=www.pap
unknown
clean
https://paperturn.com/s
unknown
clean
https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.12#Sharepoint
unknown
clean
https://paperturn-view.com/PEt
unknown
clean
https://paperturn.com/l
unknown
clean
https://assets.paperturn-view.com/vendors~components-Alert~components-BuyBasket~components-Dialog~co
unknown
clean
https://www.paperturn.com/cache/v2.3.12/mini-d0f4fc79d4063f6d5171f399465f6cb6.js
unknown
clean
https://assets.paperturn-view.com/vendors~components-Tooltip~components-TopBar.09a36c1b.js
unknown
clean
https://www.paperturn.com/flipbook8Flipbook:
unknown
clean
https://paperturn.com/e
unknown
clean
https://www.paperturn-view.com&
unknown
clean
https://www.paperturn.com/loginLogin
unknown
clean
https://www.paperturn.com/uk/Convert
unknown
clean
https://assets.paperturn-view.com/vendors~components-BottomBar.e724eb41.js
unknown
clean
https://paperturn-view.com/uVn
unknown
clean
https://paperturn.com/HL
unknown
clean
https://www.youtube.com
unknown
clean
https://www.paperturn.com/pricesCheap
unknown
clean
https://www.paperturn.com/uk/
unknown
clean
https://assets.paperturn-view.com/13.9cb813a3.js
unknown
clean
https://www.google.com
unknown
clean
https://www.paperturn.com/prices
unknown
clean
https://www.youtube.com/s/player/3804dce2/player_ias.vflset/en_US/embed.js
unknown
clean
https://paperturn-view.com/DWn
unknown
clean
https://www.paperturn.com/prices/&W
unknown
clean
https://assets.paperturn-view.com/components-BottomBar.9060c6c1.js
unknown
clean
https://www.paperturn-view.com/paperturn-marketing/embed-features-page-country-heritage?pid=MzE31606
unknown
clean
https://www.paperturn.com/cache/v2.3.12/mini-b6b0e1e2a9cc4a10cafe9a7b0396818b.jsa
unknown
clean
https://spoprod-a.akamaihd.net/
unknown
clean
https://www.paperturn.com/cache/v2.3.12/mini-af8546ccbc09deec7e6b7a04c8502a92.js
unknown
clean
https://www.paperturn.com/cache/v2.3.12/mini-8e659b93bd027876d82817aa95060866.js
unknown
clean
https://www.paperturn.com/online-pdf-flip-book-features515
unknown
clean
https://www.youtube.com/s/player/3804dce2/player_ias.vflset/en_US/remote.js
unknown
clean
https://connect.facebook.net/en_US/fbevents.js
unknown
clean
https://assets.paperturn-view.com/components-Alert.22553599.js
unknown
clean
https://paperturn.com/i2
unknown
clean
https://assets.paperturn-view.com/components-Preload.8e1d07ba.js
unknown
clean
https://assets.paperturn-view.com/components-Toolbar.0413dfe3.js
unknown
clean
https://assets.paperturn-view.com/components-ErrorBoundary.3ef6552e.js
unknown
clean
https://www.paperturn.com/cache/v2.3.12/mini-2c7001179082c8031f506f1a6a77ca2f.js
unknown
clean
https://youtube.com/
unknown
clean
https://csp.withgoogle.com/csp/report-to/downloads-lorry
unknown
clean
https://www.paperturn.com/online-pdf-flip-book-features15
unknown
clean
https://assets.paperturn-view.com/vendors~components-AddToBasket~components-Alert~components-Basket~
unknown
clean
https://assets.paperturn-view.com/components-SnackbarProvider.b1a734fc.js
unknown
clean
https://dns.google
unknown
clean
https://images.paperturn.com/g/favicon-new/favicon.ico
unknown
clean
https://www.paperturn.com/Convert
unknown
clean
https://support.google.com/chromecast/troubleshooter/2995236
unknown
clean
https://paperturn.com/9v
unknown
clean
https://www.paperturn.com/cache/v2.3.12/mini-b6b0e1e2a9cc4a10cafe9a7b0396818b.js
unknown
clean
https://paperturn.com/d3
unknown
clean
https://spoprod-a.akamaihd.net/files/odsp-next-prod_2018-11-02-sts_20181108.001/spoguestaccess-f1ac8
unknown
clean
https://assets.paperturn-view.com/index.js?20210723020032
unknown
clean
https://spoprod-a.akamaihd.net/files/odsp-next-prod_2018-11-02-sts_20181108.001/require-a19851d1.js
unknown
clean
https://payments.google.com/payments/v4/js/integrator.js
unknown
clean
https://www.paperturn.com/pricesICheap
unknown
clean
https://www.google.com;
unknown
clean
https://www.paperturn.com/login
unknown
clean
https://www.paperturn.com/o3/resource/js/lib/angularjs/angularjs-lates.min.jsaD
unknown
clean
https://youtube.com/L
unknown
clean
https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1#Sharepoint
unknown
clean
https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.15-N
unknown
clean
https://www.paperturn.com/
unknown
clean
https://www.youtube.com/
unknown
clean
https://www.paperturn-view.comh
unknown
clean
https://paperturn-view.com/8Xn
unknown
clean
https://www.paperturn.com/cache/v2.3.12/mini-5a97efeeff018a0419f17b6689972674.js
unknown
clean
https://www.paperturn.com/flipbookFlipbook:
unknown
clean
https://www.paperturn.com/o3/resource/js/lib/angularjs/angularjs-lates.min.js
unknown
clean
https://v2.zopim.com/bin/v/widget_v2.329.js
unknown
clean
https://www.paperturn-view.com
unknown
clean
https://www.paperturn.com/pricesI
unknown
clean
https://paperturn-view.com/
unknown
clean
https://www.paperturn.com/uk/8Convert
unknown
clean
https://assets.paperturn-view.com/components-PoweredBy.81832c27.js
unknown
clean
https://www.youtube.com/s/player/3804dce2/player_ias.vflset/en_US/base.js
unknown
clean
https://a.nel.cloudflare.com/report/v3?s=o1Y%2BBXwLiarvZW4%2FqS8c07Jm73mY8vPzze7jVSiGCG93tDB3p4BX3mR
unknown
clean
https://assets.paperturn-view.com/components-ViewerContainer.a8be06bc.js
unknown
clean
https://assets.paperturn-view.com/vendors~components-Newsflash.b7b94969.js
unknown
clean
https://assets.paperturn-view.com/7.0f628dc6.js
unknown
clean
https://use.fontawesome.com/
unknown
clean
https://www.paperturn.com
unknown
clean
https://www.google.com/
unknown
clean
https://www.google.com/js/th/rri_UWQ0J4KTeoiEc0uqeM0aau5ykYMkDZQXo2HoPhc.js
unknown
clean
https://feedback.googleusercontent.com
unknown
clean
https://paperturn-view.com/OA
unknown
clean
https://paperturn-view.com/coY
unknown
clean
https://assets.calendly.com
unknown
clean
https://paperturn-view.com/.?
unknown
clean
https://assets.paperturn-view.com/12.dc063ac5.jsaD
unknown
clean
https://assets.paperturn-view.com/components-Tooltip.d369b3de.js
unknown
clean
https://assets.paperturn-view.com/12.dc063ac5.js
unknown
clean
There are 90 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
gstaticadssl.l.google.com
172.217.168.3
clean
i.ytimg.com
216.58.215.246
clean
d2mvl3dkxvehny.cloudfront.net
143.204.225.47
clean
d3euuwqpqlzvic.cloudfront.net
13.225.29.76
clean
scontent.xx.fbcdn.net
157.240.17.15
clean
static.zdassets.com
104.18.70.113
clean
www.paperturn-view.com
143.204.225.123
clean
photos-ugc.l.googleusercontent.com
172.217.168.1
clean
ekr.zdassets.com
104.18.70.113
clean
www.google.com
172.217.168.68
clean
v2.zopim.com
104.16.106.139
clean
www.google.de
172.217.168.3
clean
star-mini.c10r.facebook.com
157.240.16.35
clean
v2assets.zopim.io
104.18.204.90
clean
accounts.google.com
172.217.168.45
clean
www-google-analytics.l.google.com
216.58.215.238
clean
stats.l.doubleclick.net
64.233.167.157
clean
www-googletagmanager.l.google.com
172.217.168.8
clean
www.paperturn.com
148.251.96.155
clean
static-doubleclick-net.l.google.com
172.217.168.70
clean
youtube-ui.l.google.com
172.217.168.14
clean
assets.paperturn-view.com
143.204.225.93
clean
googleads.g.doubleclick.net
172.217.168.2
clean
xpans.in
144.91.89.225
clean
widget-mediator.zopim.com
52.29.88.9
clean
acsbapp.com
206.189.187.108
clean
clients.l.google.com
142.250.203.110
clean
translations.paperturn.com
143.204.225.69
clean
d3jodor2jgify2.cloudfront.net
143.204.225.4
clean
googlehosted.l.googleusercontent.com
142.250.203.97
clean
yt3.ggpht.com
unknown
clean
stats.g.doubleclick.net
unknown
clean
static.sharepointonline.com
unknown
clean
use.fontawesome.com
unknown
clean
clients2.googleusercontent.com
unknown
clean
clients2.google.com
unknown
clean
www.youtube.com
unknown
clean
consentcdn.cookiebot.com
unknown
clean
www.facebook.com
unknown
clean
assets.calendly.com
unknown
clean
consent.cookiebot.com
unknown
clean
connect.facebook.net
unknown
clean
static.doubleclick.net
unknown
clean
cdn.acsbapp.com
unknown
clean
images.paperturn.com
unknown
clean
d8n9fts9ic943.cloudfront.net
unknown
clean
spoprod-a.akamaihd.net
unknown
clean
There are 37 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
192.168.2.1
unknown
unknown
clean
216.58.215.238
www-google-analytics.l.google.com
United States
clean
206.189.187.108
acsbapp.com
United States
clean
172.217.168.45
accounts.google.com
United States
clean
143.204.225.47
d2mvl3dkxvehny.cloudfront.net
United States
clean
142.250.203.97
googlehosted.l.googleusercontent.com
United States
clean
66.102.1.156
unknown
United States
clean
104.16.106.139
v2.zopim.com
United States
clean
52.29.88.9
widget-mediator.zopim.com
United States
clean
143.204.225.93
assets.paperturn-view.com
United States
clean
143.204.225.123
www.paperturn-view.com
United States
clean
148.251.96.155
www.paperturn.com
Germany
clean
172.217.168.1
photos-ugc.l.googleusercontent.com
United States
clean
172.217.168.2
googleads.g.doubleclick.net
United States
clean
144.91.89.225
xpans.in
Germany
clean
157.240.16.35
star-mini.c10r.facebook.com
United States
clean
239.255.255.250
unknown
Reserved
clean
104.18.70.113
static.zdassets.com
United States
clean
13.225.29.13
unknown
United States
clean
127.0.0.1
unknown
unknown
clean
64.233.167.157
stats.l.doubleclick.net
United States
clean
142.250.203.110
clients.l.google.com
United States
clean
172.217.168.68
www.google.com
United States
clean
157.240.17.15
scontent.xx.fbcdn.net
United States
clean
172.217.168.8
www-googletagmanager.l.google.com
United States
clean
143.204.225.69
translations.paperturn.com
United States
clean
172.217.168.3
gstaticadssl.l.google.com
United States
clean
143.204.225.4
d3jodor2jgify2.cloudfront.net
United States
clean
216.58.215.246
i.ytimg.com
United States
clean
172.217.168.70
static-doubleclick-net.l.google.com
United States
clean
104.18.204.90
v2assets.zopim.io
United States
clean
206.189.191.180
unknown
United States
clean
192.168.2.255
unknown
unknown
clean
13.225.29.76
d3euuwqpqlzvic.cloudfront.net
United States
clean
There are 24 hidden IPs, click here to show them.

Registry

Path
Value
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
ahfgeienlihckogmohjhadlkjgocpleb
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gdaefkejpgkiemlaofpalmlakkmbjdnl
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gfdkimpbcpahaombhbimeihdjnejgicl
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
kmendfapggjehodndflmmgagdbamhnfd
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
mfehgcgbbipciphmccgaenjidiccnmng
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
mhjfbmdgcfjbbpaeojofohoefgiehjai
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
neajdppkdcdipfabeoofebfddakdcjhd
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nkeimhogjdpnpccoofpliimaahmaaome
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
prefs.preference_reset_time
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
S-1-5-21-3853321935-2125563209-4053062332-1002
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gfdkimpbcpahaombhbimeihdjnejgicl
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nmmhkkegccagdldgiimedpiccmgmieda
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
pkedcjkdefgpdelpbcmbmeomcjbeemfm
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nmmhkkegccagdldgiimedpiccmgmieda
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
state
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
StatusCodes
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
StatusCodes
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
state
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.reporting
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
module_blacklist_cache_md5_digest
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
media.storage_id_salt
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.last_account_id
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.account_id
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.prompt_seed
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_homepage
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
default_search_provider_data.template_url_data
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
safebrowsing.incidents_sent
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
pinned_tabs
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
search_provider_overrides
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_default_search
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
prefs.preference_reset_time
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.last_username
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
session.startup_urls
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
session.restore_on_startup
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.prompt_version
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_startup_urls
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.prompt_wave
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
homepage
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
homepage_is_newtabpage
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
browser.show_home_button
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
user_experience_metrics.stability.exited_cleanly
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
lastrun
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Version
clean
There are 35 hidden registries, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
28292940000
unkown
page read and write
clean
2828DD58000
unkown
page read and write
clean
7FF5CEA3C000
unkown
page readonly
clean
28292AE5000
unkown
page read and write
clean
2A32003D000
unkown
page read and write
clean
7FF5E365E000
unkown
page readonly
clean
A5CEAF5000
unkown
page read and write
clean
7FF5E900B000
unkown
page readonly
clean
7FF5E8F45000
unkown
page readonly
clean
240C7763000
unkown
page read and write
clean
7FF5E4064000
unkown
page readonly
clean
240C7738000
unkown
page read and write
clean
7FF5CEB00000
unkown
page readonly
clean
A5CEBFB000
unkown
page read and write
clean
17460708000
unkown
page read and write
clean
28292AE7000
unkown
page read and write
clean
7FF5E3B49000
unkown
page readonly
clean
2A320070000
unkown
page read and write
clean
6D95E7C000
unkown
page read and write
clean
1746062A000
unkown
page read and write
clean
17460613000
unkown
page read and write
clean
A5CE7FF000
unkown
page read and write
clean
7FF5CEA5D000
unkown
page readonly
clean
7FF5E3783000
unkown
page readonly
clean
7FF5CEB14000
unkown
page readonly
clean
21349260000
heap default
page read and write
clean
21349470000
unkown
page read and write
clean
A5CEDFF000
unkown
page read and write
clean
17460702000
unkown
page read and write
clean
21349508000
unkown
page read and write
clean
7FF5E8CC3000
unkown
page readonly
clean
21349A60000
unkown
page readonly
clean
240C773D000
unkown
page read and write
clean
7FF5CE8F3000
unkown
page readonly
clean
1D8F8226000
unkown
page read and write
clean
28292F00000
unkown
page read and write
clean
28292920000
unkown
page read and write
clean
1D8F8308000
unkown
page read and write
clean
7FF5E3E43000
unkown
page readonly
clean
1D8F8290000
unkown
page read and write
clean
28292AB4000
unkown
page read and write
clean
2828DD59000
unkown
page read and write
clean
240C773B000
unkown
page read and write
clean
7FF5CEB1E000
unkown
page readonly
clean
17460E02000
unkown
page read and write
clean
240C7773000
unkown
page read and write
clean
7FF5E4046000
unkown
page readonly
clean
A27717D000
unkown
page read and write
clean
28292AB5000
unkown
page read and write
clean
2A32006C000
unkown
page read and write
clean
2A320085000
unkown
page read and write
clean
28292D0E000
unkown
page read and write
clean
7FF5E405D000
unkown
page readonly
clean
A2775FF000
unkown
page read and write
clean
1D8F8F40000
unkown
page readonly
clean
7FF5E3B43000
unkown
page readonly
clean
1746065E000
unkown
page read and write
clean
21349448000
unkown
page read and write
clean
7FF5E3368000
unkown
page readonly
clean
7FF5E8F07000
unkown
page readonly
clean
1D8F84D0000
unkown
page readonly
clean
2A32005A000
unkown
page read and write
clean
2134944E000
unkown
page read and write
clean
2828DD18000
unkown
page read and write
clean
2A320044000
unkown
page read and write
clean
2A32007B000
unkown
page read and write
clean
1D8F8200000
unkown
page read and write
clean
6D96075000
unkown
page read and write
clean
7FF5E3860000
unkown
page readonly
clean
240C775D000
unkown
page read and write
clean
7FF5CE5F9000
unkown
page readonly
clean
28293010000
unkown
page read and write
clean
7FF5CE943000
unkown
page readonly
clean
7FF5E4038000
unkown
page readonly
clean
2A32007F000
unkown
page read and write
clean
A277275000
unkown
page read and write
clean
28292AE6000
unkown
page read and write
clean
1D8F8251000
unkown
page read and write
clean
2A32004E000
unkown
page read and write
clean
A2776FE000
unkown
page read and write
clean
7FF5E387E000
unkown
page readonly
clean
240C7763000
unkown
page read and write
clean
A5CEFFF000
unkown
page read and write
clean
7FF50684E000
unkown
page readonly
clean
1D8F824E000
unkown
page read and write
clean
2A320046000
unkown
page read and write
clean
17460570000
unkown
page readonly
clean
7FF5E362D000
unkown
page readonly
clean
21349482000
unkown
page read and write
clean
7FF5E3704000
unkown
page readonly
clean
7FF5E37BD000
unkown
page readonly
clean
2A320063000
unkown
page read and write
clean
17461000000
unkown
page readonly
clean
A27707C000
unkown
page read and write
clean
7FF5CE985000
unkown
page readonly
clean
28292AB6000
unkown
page read and write
clean
21349476000
unkown
page read and write
clean
2A31FF40000
unkown
page readonly
clean
17460600000
unkown
page read and write
clean
6D963FF000
unkown
page read and write
clean
6D962F7000
unkown
page read and write
clean
2134943C000
unkown
page read and write
clean
2A320042000
unkown
page read and write
clean
28292950000
unkown
page read and write
clean
7FF5E3FB9000
unkown
page readonly
clean
7FF5CEAF6000
unkown
page readonly
clean
7FF5E3543000
unkown
page readonly
clean
A2773FE000
unkown
page read and write
clean
240C7757000
unkown
page read and write
clean
7FF5E37DA000
unkown
page readonly
clean
7FF5CEB2F000
unkown
page readonly
clean
28292924000
unkown
page read and write
clean
E97D47E000
unkown
page read and write
clean
7FF5E3353000
unkown
page readonly
clean
7FF5CE5F3000
unkown
page readonly
clean
21349453000
unkown
page read and write
clean
21349513000
unkown
page read and write
clean
7FF5E4050000
unkown
page readonly
clean
1D8F824B000
unkown
page read and write
clean
A5CE6FB000
unkown
page read and write
clean
7FF5E3787000
unkown
page readonly
clean
A5CECF7000
unkown
page read and write
clean
6D960FE000
unkown
page read and write
clean
7FF5CE7E3000
unkown
page readonly
clean
7FF5E3E6E000
unkown
page readonly
clean
17460713000
unkown
page read and write
clean
7FF5E3874000
unkown
page readonly
clean
7FF5CEA23000
unkown
page readonly
clean
240C76B0000
unkown
page read and write
clean
1415CFC0000
unkown
page read and write
clean
7FF5E8443000
unkown
page readonly
clean
7FF5CEAE8000
unkown
page readonly
clean
2A32005F000
unkown
page read and write
clean
A5CE77E000
unkown
page read and write
clean
7FF5E2CBC000
unkown
page readonly
clean
240C773B000
unkown
page read and write
clean
7FF5E900F000
unkown
page readonly
clean
E97CFDC000
unkown
page read and write
clean
7FF5E8F28000
unkown
page readonly
clean
21349270000
unkown
page readonly
clean
7FF5CE8FE000
unkown
page readonly
clean
7FF5E3E4E000
unkown
page readonly
clean
240C7773000
unkown
page read and write
clean
28292D00000
unkown
page read and write
clean
2A32006A000
unkown
page read and write
clean
282929E0000
unkown
page read and write
clean
7FF5E3EE7000
unkown
page readonly
clean
1D8F823C000
unkown
page read and write
clean
2A31FDF0000
heap private
page read and write
clean
E97D2FE000
unkown
page read and write
clean
21349502000
unkown
page read and write
clean
17460654000
unkown
page read and write
clean
7FF5CE608000
unkown
page readonly
clean
17460800000
unkown
page readonly
clean
7FF5E36A3000
unkown
page readonly
clean
1D8F8313000
unkown
page read and write
clean
1746065E000
unkown
page read and write
clean
7FF5E384F000
unkown
page readonly
clean
28292D70000
unkown
page read and write
clean
7FF5E37C9000
unkown
page readonly
clean
28292ADF000
unkown
page read and write
clean
2A31FE60000
unkown
page readonly
clean
28292ADA000
unkown
page read and write
clean
21349200000
heap private
page read and write
clean
7FF5CEA27000
unkown
page readonly
clean
21349360000
unkown
page read and write
clean
1D8F8256000
unkown
page read and write
clean
1D8F8249000
unkown
page read and write
clean
17460420000
heap private
page read and write
clean
28292ADE000
unkown
page read and write
clean
1D8F8400000
unkown
page readonly
clean
E97D77F000
unkown
page read and write
clean
2A320057000
unkown
page read and write
clean
2A32007E000
unkown
page read and write
clean
7FF5E3EF4000
unkown
page readonly
clean
2A320076000
unkown
page read and write
clean
28292AB3000
unkown
page read and write
clean
7FF5CEA69000
unkown
page readonly
clean
240C7773000
unkown
page read and write
clean
240C7774000
unkown
page read and write
clean
7FF5E3F73000
unkown
page readonly
clean
A2774F7000
unkown
page read and write
clean
240C775C000
unkown
page read and write
clean
28292921000
unkown
page read and write
clean
1D8F81D0000
unkown
page read and write
clean
21349413000
unkown
page read and write
clean
240C775C000
unkown
page read and write
clean
17460649000
unkown
page read and write
clean
2A320058000
unkown
page read and write
clean
7FF5CEB1B000
unkown
page readonly
clean
28292ADD000
unkown
page read and write
clean
7FF5E3FE5000
unkown
page readonly
clean
7FF5E386D000
unkown
page readonly
clean
E97D27E000
unkown
page read and write
clean
2A31FF50000
unkown
page read and write
clean
2A320000000
unkown
page read and write
clean
2A320200000
unkown
page readonly
clean
28292AE0000
unkown
page read and write
clean
7FF5E3FAD000
unkown
page readonly
clean
7FF5E3F98000
unkown
page readonly
clean
7FF5E8FFE000
unkown
page readonly
clean
1D8F8254000
unkown
page read and write
clean
2134942A000
unkown
page read and write
clean
240C76B0000
unkown
page read and write
clean
7FF5E388F000
unkown
page readonly
clean
7FF5E8F3D000
unkown
page readonly
clean
A5CEEFF000
unkown
page read and write
clean
28292AE6000
unkown
page read and write
clean
240C7763000
unkown
page read and write
clean
240C7763000
unkown
page read and write
clean
7FF5E388F000
unkown
page readonly
clean
7FF5E8DAD000
unkown
page readonly
clean
6D95EFE000
unkown
page read and write
clean
7FF5E8FCF000
unkown
page readonly
clean
A2770FE000
unkown
page read and write
clean
1746068B000
unkown
page read and write
clean
2A320034000
unkown
page read and write
clean
1D8F8302000
unkown
page read and write
clean
7FF5E406B000
unkown
page readonly
clean
28292910000
unkown
page read and write
clean
2A320032000
unkown
page read and write
clean
7FF5CEAEF000
unkown
page readonly
clean
7FF5E2CB6000
unkown
page readonly
clean
21349500000
unkown
page read and write
clean
2828DD18000
unkown
page read and write
clean
7FF5CE91E000
unkown
page readonly
clean
7FF5E8FC8000
unkown
page readonly
clean
7FF5CEA48000
unkown
page readonly
clean
240C776C000
unkown
page read and write
clean
7FF5E3FCA000
unkown
page readonly
clean
6D964FE000
unkown
page read and write
clean
240C8490000
unkown
page read and write
clean
28292D21000
unkown
page read and write
clean
7FF512B9F000
unkown
page readonly
clean
7FF5E3856000
unkown
page readonly
clean
17460671000
unkown
page read and write
clean
17460560000
unkown
page readonly
clean
2A32007A000
unkown
page read and write
clean
1D8F8300000
unkown
page read and write
clean
7FF5E404B000
unkown
page readonly
clean
7FF5925EF000
unkown
page readonly
clean
2828DD18000
unkown
page read and write
clean
7FF5CE327000
unkown
page readonly
clean
2A320075000
unkown
page read and write
clean
21349340000
unkown
page readonly
clean
28292D24000
unkown
page read and write
clean
2A320062000
unkown
page read and write
clean
7FF5E37F5000
unkown
page readonly
clean
2A320041000
unkown
page read and write
clean
7FF5E3848000
unkown
page readonly
clean
7FF5E3B58000
unkown
page readonly
clean
7FF5B405F000
unkown
page readonly
clean
21349400000
unkown
page read and write
clean
1D8F8260000
unkown
page read and write
clean
7FF5E3D33000
unkown
page readonly
clean
7FF5E37D3000
unkown
page readonly
clean
17460602000
unkown
page read and write
clean
2A320102000
unkown
page read and write
clean
21349E00000
unkown
page readonly
clean
2A320059000
unkown
page read and write
clean
7FF5CEAFB000
unkown
page readonly
clean
1D8F8229000
unkown
page read and write
clean
6D961FB000
unkown
page read and write
clean
2A31FE50000
heap default
page read and write
clean
7FF5E3653000
unkown
page readonly
clean
240C7774000
unkown
page read and write
clean
1D8F81A0000
heap default
page read and write
clean
240C7764000
unkown
page read and write
clean
7FF5E8FFB000
unkown
page readonly
clean
17460C60000
unkown
page readonly
clean
7FF53145F000
unkown
page readonly
clean
28292AB3000
unkown
page read and write
clean
7FF5CEB2B000
unkown
page readonly
clean
1D8F828A000
unkown
page read and write
clean
7FF5E3877000
unkown
page readonly
clean
1D8F8213000
unkown
page read and write
clean
2A32005C000
unkown
page read and write
clean
1D8F8270000
unkown
page read and write
clean
28292954000
unkown
page read and write
clean
1D8F8286000
unkown
page read and write
clean
7FF5E406E000
unkown
page readonly
clean
7FF5E900F000
unkown
page readonly
clean
7FF5E3F77000
unkown
page readonly
clean
2A32003B000
unkown
page read and write
clean
7FF5E36DF000
unkown
page readonly
clean
1746064C000
unkown
page read and write
clean
7FF5E387D000
unkown
page readonly
clean
7FF5E8FF4000
unkown
page readonly
clean
7FF5E3E1D000
unkown
page readonly
clean
7FF5E3F87000
unkown
page readonly
clean
28292920000
unkown
page read and write
clean
2A320065000
unkown
page read and write
clean
7FF5E8F1C000
unkown
page readonly
clean
7FF5ADBAF000
unkown
page readonly
clean
1D8F8C00000
unkown
page readonly
clean
2A320067000
unkown
page read and write
clean
28292AB1000
unkown
page read and write
clean
2A320047000
unkown
page read and write
clean
7FF5E3ECF000
unkown
page readonly
clean
1746067A000
unkown
page read and write
clean
2A32006E000
unkown
page read and write
clean
2134944B000
unkown
page read and write
clean
7FF5E3FC3000
unkown
page readonly
clean
2A320060000
unkown
page read and write
clean
2A31FF30000
unkown
page readonly
clean
6D95F7E000
unkown
page read and write
clean
7FF5E8FE0000
unkown
page readonly
clean
7FF5E379C000
unkown
page readonly
clean
28292AE5000
unkown
page read and write
clean
7FF5CEA7A000
unkown
page readonly
clean
17460700000
unkown
page read and write
clean
1D8F8140000
heap private
page read and write
clean
7FF5E8F75000
unkown
page readonly
clean
2A320040000
unkown
page read and write
clean
240C8490000
unkown
page read and write
clean
17460480000
heap default
page read and write
clean
2A320029000
unkown
page read and write
clean
7FF5E8FD6000
unkown
page readonly
clean
2A320045000
unkown
page read and write
clean
7FF5CE97F000
unkown
page readonly
clean
1746063C000
unkown
page read and write
clean
7FF5E403F000
unkown
page readonly
clean
1D8F81B0000
unkown
page readonly
clean
7FF5E8F5A000
unkown
page readonly
clean
7FF5CEA65000
unkown
page readonly
clean
7FF5E3ED5000
unkown
page readonly
clean
7FF5E37C5000
unkown
page readonly
clean
2A320061000
unkown
page read and write
clean
7FF5E3FB5000
unkown
page readonly
clean
2828DD18000
unkown
page read and write
clean
7FF5E407F000
unkown
page readonly
clean
7FF5E388B000
unkown
page readonly
clean
1D8F8260000
unkown
page read and write
clean
7FF5CE9A4000
unkown
page readonly
clean
2A32007C000
unkown
page read and write
clean
17460580000
unkown
page read and write
clean
7FF5E3797000
unkown
page readonly
clean
2A320064000
unkown
page read and write
clean
240C773B000
unkown
page read and write
clean
1D8F81C0000
unkown
page readonly
clean
28292ADF000
unkown
page read and write
clean
7FF5E8F49000
unkown
page readonly
clean
21349350000
unkown
page readonly
clean
1D8F8255000
unkown
page read and write
clean
7FF5CEB2F000
unkown
page readonly
clean
28292AE7000
unkown
page read and write
clean
7FF5E407F000
unkown
page readonly
clean
7FF5E3F8C000
unkown
page readonly
clean
28292D08000
unkown
page read and write
clean
28292ADF000
unkown
page read and write
clean
28292AB3000
unkown
page read and write
clean
240C776C000
unkown
page read and write
clean
7FF5E37A8000
unkown
page readonly
clean
7FF5E3359000
unkown
page readonly
clean
1D8F8A02000
unkown
page read and write
clean
7FF5E407B000
unkown
page readonly
clean
2A320802000
unkown
page read and write
clean
28292ADC000
unkown
page read and write
clean
21349C02000
unkown
page read and write
clean
2A320068000
unkown
page read and write
clean
2134948E000
unkown
page read and write
clean
7FF5E8FDB000
unkown
page readonly
clean
1746064F000
unkown
page read and write
clean
7FF5CEA95000
unkown
page readonly
clean
240C7763000
unkown
page read and write
clean
A27737B000
unkown
page read and write
clean
E97D67F000
unkown
page read and write
clean
7FF5E385B000
unkown
page readonly
clean
28292AE2000
unkown
page read and write
clean
E97D57E000
unkown
page read and write
clean
17460490000
unkown
page readonly
clean
28292AB3000
unkown
page read and write
clean
7FF5E36E5000
unkown
page readonly
clean
7FF5CE8CD000
unkown
page readonly
clean
28292AE1000
unkown
page read and write
clean
21349600000
unkown
page readonly
clean
7FF5CE997000
unkown
page readonly
clean
240C7757000
unkown
page read and write
clean
7FF5CEB0D000
unkown
page readonly
clean
283CBC68000
unkown
page read and write
clean
28292AE6000
unkown
page read and write
clean
7FF5CE32D000
unkown
page readonly
clean
28292D70000
unkown
page read and write
clean
240C7751000
unkown
page read and write
clean
7FF5E367E000
unkown
page readonly
clean
1415CFC0000
unkown
page read and write
clean
7FF5E3E93000
unkown
page readonly
clean
28292AB3000
unkown
page read and write
clean
1415CFC0000
unkown
page read and write
clean
7FF5E8F53000
unkown
page readonly
clean
28292D70000
unkown
page read and write
clean
28292AB8000
unkown
page read and write
clean
2A320013000
unkown
page read and write
clean
7FF5CEA37000
unkown
page readonly
clean
7FF5E387B000
unkown
page readonly
clean
240C7764000
unkown
page read and write
clean
7FF5CEA73000
unkown
page readonly
clean
There are 387 hidden memdumps, click here to show them.

DOM / HTML

URL
Malicious
https://xpans.in/document/Drive/vynii1ggv7u34dlblu2qibdn.php?89bi9G16269732590bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc851&email=&error=
malicious
https://www.paperturn-view.com/paperturn-marketing/embed-features-page-country-heritage?pid=MzE31606&p=3&v=2.1&bgcolor=transparent&embed=iframe
clean
https://consentcdn.cookiebot.com/sdk/bc-v3.min.html
clean
https://www.paperturn.com/prices
clean
https://www.paperturn.com/flipbook
clean
https://www.paperturn.com/online-pdf-flip-book-features
clean
https://www.youtube.com/embed/q0nkrcMDCmc?rel=0
clean
https://www.paperturn.com/uk/
clean
https://www.paperturn.com/online-pdf-flip-book-features
clean
https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1
clean
https://www.paperturn.com/prices
clean
https://www.paperturn.com/uk/
clean
https://www.paperturn.com/flipbook
clean
https://www.paperturn.com/login
clean
https://www.paperturn-view.com/paperturn-marketing/embed-features-page-country-heritage?pid=MzE31606&v=2.1&p=3&bgcolor=transparent&embed=iframe
clean
There are 5 hidden doms, click here to show them.