Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\0d89be2c-c67f-4ac3-af1f-e4fdb6b59dbb.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\1a562cb5-0812-4f19-9097-f6d520d52b4d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\307dde0a-2e97-4879-a241-be417a7b78ec.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\423be078-73c9-4de3-aff9-b40c512c2b7f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\7d231985-b690-48d5-a60b-d1352d300427.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\94a0eef0-8ae2-46b6-bf60-7ee9c026ed7d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\94fa266f-7893-4111-92ad-11bfc0ecc68d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\9525774e-c1d6-4de6-8976-9c350704412c.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\954a132f-0918-417e-9cea-b3b83028ec01.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\05428b73-4cb8-4796-b9e1-2cd593eab456.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\13fd322a-ac75-438f-8fc2-71de8b0141ab.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\148d7455-1a88-4ca1-8bda-e08352ca313c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\175faa00-cdfd-4a9d-a7b6-6fb864491171.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2993e2a7-2707-42c1-859c-7fe1cd2db6f8.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2ce8f007-444e-40d8-affd-13dc05ea164e.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\375d7f13-a7a2-4af8-8bed-ccd1a5af138c.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3a821e45-dc15-41c3-b8e4-19e10a7b3511.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\47199a30-ed52-49d7-83f3-4621f5d65015.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\4abad8f5-01a5-4ae1-babd-bade8a1d0101.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old"0 (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences\ (copy)
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure PreferencesMP (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferencess- (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\8d454001-03cc-42a8-ba1a-a4134cd05d7b.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State.. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\587ad5c5-835b-4e10-8cd7-57d6afe643ce.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
Statece (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
modified
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.oldMP
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a7a4422b-15f5-42f9-be21-ba60cbad20ba.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a971a55d-d534-4666-802d-7c47102ecebc.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b395bfc2-58f0-4f12-97ce-b809f2be6e39.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c6c8b5e2-7c82-4146-b005-e00f37ceb06c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c95f0593-85cd-4064-aefe-83e05df14dc4.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d389d252-a51e-410a-befb-c0892fd8eb6f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d8384415-6176-443a-a8c0-77ba29e02f00.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info CacheMP (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\a8fd2781-74a2-4e7b-b891-0b2347b44d85.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\c008613e-7421-4823-b346-283cad985b47.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\da49494b-f6b6-4bbe-acea-e1c09787c2ab.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\f325a433-621f-4cfd-82a0-468f0a5cd00c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\fc3dc7cd-d016-42ad-ae97-114c7505f0af.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\219b646a-cd29-44dc-bd11-dbb6057c3b33.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5330c1eb-1ebf-48d1-8634-2d3cc72d12b0.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_374337630\LICENSE
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_374337630\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_374337630\crl-set
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_374337630\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_374337630\manifest.json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_862130722\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_862130722\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_862130722\manifest.json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_862130722\ssl_error_assistant.pb
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\8b8b36ce-c0e7-4082-91e5-d7e7b7d239d5.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\c46ac0da-1f09-4b27-bcd4-8ed5c1889b19.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\5330c1eb-1ebf-48d1-8634-2d3cc72d12b0.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1879999964\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\8b8b36ce-c0e7-4082-91e5-d7e7b7d239d5.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\iw\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\angular.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\background_script.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\cast_sender.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\common.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\feedback.css
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\feedback.html
|
HTML document, ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\feedback_script.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\material_css_min.css
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\mirroring_cast_streaming.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\mirroring_common.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\mirroring_hangouts.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_507343404\CRX_INSTALL\mirroring_webrtc.js
|
ASCII text, with very long lines
|
dropped
|
There are 194 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "https://www.quiz-bliss.com/kittycantrell/harry-potter-20-year-anniversary-trivia-quiz-112821
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1536,9302057933297055962,10316816090944240565,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1924 /prefetch:8
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://www.quiz-bliss.com/kittycantrell/harry-potter-20-year-anniversary-trivia-quiz-112821
|
|||
|
https://apis.google.com/js/client.js
|
unknown
|
||
|
https://www.google.com/images/cleardot.gif
|
unknown
|
||
|
https://play.google.com
|
unknown
|
||
|
https://s0.2mdn.net/sadbundle/11288944710048972181/300x250-en/index.html
|
|||
|
https://googleads.g.doubleclick.net/xbbe/pixel?d=CKi2gLICELWvmbICGJK0-78BMAE&v=APEucNU7Y7rRXHnNhkvcuUveQ6PCY04sEqUwGAnKQEIBoX3YcRtRU26fnK4nY9LHWgxgw9_EM4r5pUwMRrzveMSPRUUdUPew8g
|
|||
|
https://crash.corp.google.com/samples?reportid=&q=
|
unknown
|
||
|
https://www.google.com/log?format=json&hasfast=true
|
unknown
|
||
|
https://www.quiz-bliss.com/quizzes/harry%20potter
|
|||
|
https://googleads.g.doubleclick.net/xbbe/pixel?d=CKi2gLICELWvmbICGJK0-78BMAE&v=APEucNXD8VqIQag_88xrraiQBA3nM2WEC1ntwSS7HNbeN3Gtrz4q3swc61hzCRlP1vavH9n0GSNr1BGaaZUfuvqyyDUFEfi08w
|
|||
|
https://www.quiz-bliss.com/kittycantrell/greys-anatomy-jackson-april-relaitonship-japril-trivia-quiz-121921
|
|||
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
|
unknown
|
||
|
https://accounts.google.com/MergeSession
|
unknown
|
||
|
https://preprod-hangouts-googleapis.sandbox.google.com
|
unknown
|
||
|
https://www.google.com
|
unknown
|
||
|
https://www.quiz-bliss.com/
|
|||
|
https://www.quiz-bliss.com/quizzes/movies
|
|||
|
https://hangouts.clients6.google.com
|
unknown
|
||
|
https://meet.google.com
|
unknown
|
||
|
https://hangouts.google.com/hangouts/_/logpref
|
unknown
|
||
|
https://accounts.google.com
|
unknown
|
||
|
https://clients2.google.com/cr/report
|
unknown
|
||
|
https://www.quiz-bliss.com/quizzes/knowledge?sort=recenthttps://www.quiz-bliss.com/quizzes/geography?sort=recent
|
|||
|
http://angularjs.org
|
unknown
|
||
|
https://creativecommons.org/publicdomain/zero/1.0/.
|
unknown
|
||
|
https://github.com/angular/material
|
unknown
|
||
|
https://apis.google.com
|
unknown
|
||
|
https://www.quiz-bliss.com/kittycantrell
|
|||
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
||
|
https://www.google.com/recaptcha/api2/aframe
|
|||
|
https://github.com/madler/zlib/blob/master/zlib.h
|
unknown
|
||
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
||
|
https://clients2.google.com
|
unknown
|
||
|
https://www.google.com/tools/feedback
|
unknown
|
||
|
http://www.apache.org/licenses/LICENSE-2.0
|
unknown
|
||
|
https://dns.google
|
unknown
|
||
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
||
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
||
|
https://www.quiz-bliss.com/kittycantrell/harry-potter-20-year-anniversary-trivia-quiz-112821
|
|||
|
https://ogs.google.com
|
unknown
|
||
|
https://www.quiz-bliss.com/quizzes
|
|||
|
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
||
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
|
unknown
|
||
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
https://www.google.com;
|
unknown
|
||
|
https://hangouts.google.com/
|
unknown
|
||
|
https://www.google.com/images/x2.gif
|
unknown
|
||
|
https://www.google.com/images/dot2.gif
|
unknown
|
||
|
https://meetings.clients6.google.com
|
unknown
|
||
|
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
||
|
https://www.quiz-bliss.com/quizzes/entertainment?sort=recent
|
|||
|
https://www.quiz-bliss.com/quizzes/trivia?sort=recent
|
|||
|
http://tools.ietf.org/html/rfc1950
|
unknown
|
||
|
https://www.quiz-bliss.com/quizzes/personality?sort=recent
|
|||
|
https://support.google.com/chromecast/answer/2998456
|
unknown
|
||
|
https://www.quiz-bliss.com/kittycantrell/harry-potter-20-year-anniversary-trivia-quiz-1128212YCelebr
|
unknown
|
||
|
https://clients2.googleusercontent.com
|
unknown
|
||
|
https://docs.google.com
|
unknown
|
||
|
https://www.google.com/
|
unknown
|
||
|
https://feedback.googleusercontent.com
|
unknown
|
||
|
https://clients2.google.com/service/update2/crx
|
unknown
|
||
|
https://clients6.google.com
|
unknown
|
There are 52 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
gstaticadssl.l.google.com
|
216.58.215.227
|
||
|
um.wbtrk.net
|
127.0.0.2
|
||
|
s.tribalfusion.com
|
104.18.13.5
|
||
|
tr.blismedia.com
|
34.96.105.8
|
||
|
media-gcp.women.com
|
35.186.224.64
|
||
|
www.googletagservices.com
|
172.217.168.2
|
||
|
www.quiz-bliss.com
|
130.211.6.0
|
||
|
adservice.google.com
|
142.250.203.98
|
||
|
scontent.xx.fbcdn.net
|
157.240.17.15
|
||
|
cm.g.doubleclick.net
|
172.217.168.34
|
||
|
tg.dr.socdm.com
|
202.241.208.100
|
||
|
www.google.com
|
142.250.203.100
|
||
|
eu2-ice.360yield.com
|
18.197.199.94
|
||
|
e-volution.rtb-as-useast.ak-is2.net
|
174.137.133.49
|
||
|
star-mini.c10r.facebook.com
|
157.240.17.35
|
||
|
pagead46.l.doubleclick.net
|
142.250.203.98
|
||
|
pagead-googlehosted.l.google.com
|
172.217.168.65
|
||
|
accounts.google.com
|
142.250.203.109
|
||
|
www-google-analytics.l.google.com
|
142.250.203.110
|
||
|
googleads4.g.doubleclick.net
|
172.217.168.66
|
||
|
img.women.com
|
34.98.97.49
|
||
|
nl3ads5.simpli.fi
|
169.50.137.182
|
||
|
cs.media.net
|
184.87.212.24
|
||
|
partnerad.l.doubleclick.net
|
172.217.168.66
|
||
|
s0-2mdn-net.l.google.com
|
172.217.168.6
|
||
|
googleads.g.doubleclick.net
|
172.217.168.2
|
||
|
cs.emxdgt.com
|
18.195.155.181
|
||
|
s.ad.smaato.net
|
143.204.215.20
|
||
|
a.tribalfusion.com
|
104.18.12.5
|
||
|
sb.scorecardresearch.com
|
143.204.215.108
|
||
|
clients.l.google.com
|
142.250.203.110
|
||
|
ib.anycast.adnxs.com
|
185.33.221.13
|
||
|
googlehosted.l.googleusercontent.com
|
172.217.168.33
|
||
|
securepubads.g.doubleclick.net
|
unknown
|
||
|
um.simpli.fi
|
unknown
|
||
|
htlb.casalemedia.com
|
unknown
|
||
|
a.rfihub.com
|
unknown
|
||
|
fastlane.rubiconproject.com
|
unknown
|
||
|
adservice.google.co.uk
|
unknown
|
||
|
clients2.googleusercontent.com
|
unknown
|
||
|
clients2.google.com
|
unknown
|
||
|
rtb2-useast.e-volution.ai
|
unknown
|
||
|
www.facebook.com
|
unknown
|
||
|
cdn-heroku.women.com
|
unknown
|
||
|
connect.facebook.net
|
unknown
|
||
|
px.ads.linkedin.com
|
unknown
|
||
|
static.xx.fbcdn.net
|
unknown
|
||
|
tg.socdm.com
|
unknown
|
||
|
dsum-sec.casalemedia.com
|
unknown
|
||
|
s.pinimg.com
|
unknown
|
||
|
ib.adnxs.com
|
unknown
|
||
|
match.360yield.com
|
unknown
|
||
|
s0.2mdn.net
|
unknown
|
There are 43 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.168.2.1
|
unknown
|
unknown
|
||
|
169.50.137.182
|
nl3ads5.simpli.fi
|
United States
|
||
|
157.240.17.35
|
star-mini.c10r.facebook.com
|
United States
|
||
|
185.33.221.13
|
ib.anycast.adnxs.com
|
Netherlands
|
||
|
157.240.17.15
|
scontent.xx.fbcdn.net
|
United States
|
||
|
18.197.199.94
|
eu2-ice.360yield.com
|
United States
|
||
|
172.217.168.65
|
pagead-googlehosted.l.google.com
|
United States
|
||
|
172.217.168.6
|
s0-2mdn-net.l.google.com
|
United States
|
||
|
34.96.105.8
|
tr.blismedia.com
|
United States
|
||
|
142.250.203.109
|
accounts.google.com
|
United States
|
||
|
143.204.215.108
|
sb.scorecardresearch.com
|
United States
|
||
|
174.137.133.49
|
e-volution.rtb-as-useast.ak-is2.net
|
United States
|
||
|
184.87.212.24
|
cs.media.net
|
United States
|
||
|
142.250.203.100
|
www.google.com
|
United States
|
||
|
202.241.208.100
|
tg.dr.socdm.com
|
Japan
|
||
|
18.195.155.181
|
cs.emxdgt.com
|
United States
|
||
|
172.217.168.2
|
www.googletagservices.com
|
United States
|
||
|
34.98.97.49
|
img.women.com
|
United States
|
||
|
130.211.6.0
|
www.quiz-bliss.com
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
127.0.0.2
|
um.wbtrk.net
|
unknown
|
||
|
127.0.0.1
|
unknown
|
unknown
|
||
|
104.18.12.5
|
a.tribalfusion.com
|
United States
|
||
|
143.204.215.20
|
s.ad.smaato.net
|
United States
|
||
|
104.18.13.5
|
s.tribalfusion.com
|
United States
|
There are 15 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\Software\Microsoft\Speech\Voices
|
DefaultTokenId
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
There are 35 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
2266705A000
|
unkown
|
page read and write
|
||
|
22318FE000
|
stack
|
page read and write
|
||
|
1A7DBFB000
|
stack
|
page read and write
|
||
|
1F35E902000
|
unkown
|
page read and write
|
||
|
9EF837B000
|
stack
|
page read and write
|
||
|
5C297FB000
|
stack
|
page read and write
|
||
|
1A7DF7E000
|
stack
|
page read and write
|
||
|
1F35F181000
|
unkown
|
page read and write
|
||
|
1F35F1A1000
|
unkown
|
page read and write
|
||
|
22667059000
|
unkown
|
page read and write
|
||
|
15DE686F000
|
unkown
|
page read and write
|
||
|
1A7D6DB000
|
stack
|
page read and write
|
||
|
1F35E8E9000
|
unkown
|
page read and write
|
||
|
1B8EB64A000
|
unkown
|
page read and write
|
||
|
22667802000
|
unkown
|
page read and write
|
||
|
2773E66F000
|
unkown
|
page read and write
|
||
|
1C068A90000
|
remote allocation
|
page read and write
|
||
|
5C29CFE000
|
stack
|
page read and write
|
||
|
155B3300000
|
unkown
|
page read and write
|
||
|
1F35F1C1000
|
unkown
|
page read and write
|
||
|
1B8EB64A000
|
unkown
|
page read and write
|
||
|
1A7DC7E000
|
stack
|
page read and write
|
||
|
15DE6849000
|
unkown
|
page read and write
|
||
|
5C296FE000
|
stack
|
page read and write
|
||
|
1F35E84A000
|
unkown
|
page read and write
|
||
|
5C29C78000
|
stack
|
page read and write
|
||
|
1F35F550000
|
remote allocation
|
page read and write
|
||
|
1F35F18B000
|
unkown
|
page read and write
|
||
|
15DE682C000
|
unkown
|
page read and write
|
||
|
2773E600000
|
unkown
|
page read and write
|
||
|
1F35F1D0000
|
unkown
|
page read and write
|
||
|
155B328C000
|
unkown
|
page read and write
|
||
|
9EF7FAE000
|
stack
|
page read and write
|
||
|
2266704B000
|
unkown
|
page read and write
|
||
|
2773E672000
|
unkown
|
page read and write
|
||
|
1F35E886000
|
unkown
|
page read and write
|
||
|
2773E65A000
|
unkown
|
page read and write
|
||
|
178AC58D000
|
heap
|
page read and write
|
||
|
1F35F199000
|
unkown
|
page read and write
|
||
|
1F35F11B000
|
unkown
|
page read and write
|
||
|
1AFE6FD0000
|
heap
|
page read and write
|
||
|
178AC580000
|
heap
|
page read and write
|
||
|
327BA79000
|
stack
|
page read and write
|
||
|
1AFE705F000
|
unkown
|
page read and write
|
||
|
15DE6E02000
|
unkown
|
page read and write
|
||
|
1F35F1AA000
|
unkown
|
page read and write
|
||
|
9EF877D000
|
stack
|
page read and write
|
||
|
1F35E8AF000
|
unkown
|
page read and write
|
||
|
1F35F1AA000
|
unkown
|
page read and write
|
||
|
155B3213000
|
unkown
|
page read and write
|
||
|
1F35F188000
|
unkown
|
page read and write
|
||
|
15DE6853000
|
unkown
|
page read and write
|
||
|
1F35F18F000
|
unkown
|
page read and write
|
||
|
5C2967E000
|
stack
|
page read and write
|
||
|
155B3313000
|
unkown
|
page read and write
|
||
|
1F35E7F0000
|
heap
|
page read and write
|
||
|
178AC530000
|
heap
|
page read and write
|
||
|
1F35F10E000
|
unkown
|
page read and write
|
||
|
22667102000
|
unkown
|
page read and write
|
||
|
1F35F602000
|
unkown
|
page read and write
|
||
|
A37277E000
|
stack
|
page read and write
|
||
|
2773E702000
|
unkown
|
page read and write
|
||
|
22666FB0000
|
unkown
|
page read and write
|
||
|
1A7DE7E000
|
stack
|
page read and write
|
||
|
5C293FC000
|
stack
|
page read and write
|
||
|
22667049000
|
unkown
|
page read and write
|
||
|
9EF867F000
|
stack
|
page read and write
|
||
|
1AFE7108000
|
unkown
|
page read and write
|
||
|
22666F10000
|
heap
|
page read and write
|
||
|
1F35F168000
|
unkown
|
page read and write
|
||
|
1F35E8C5000
|
unkown
|
page read and write
|
||
|
1F35F155000
|
unkown
|
page read and write
|
||
|
A47CD7F000
|
stack
|
page read and write
|
||
|
1F35F188000
|
unkown
|
page read and write
|
||
|
1F35F188000
|
unkown
|
page read and write
|
||
|
1F35E857000
|
unkown
|
page read and write
|
||
|
178AC562000
|
heap
|
page read and write
|
||
|
155B3302000
|
unkown
|
page read and write
|
||
|
A47C8AB000
|
stack
|
page read and write
|
||
|
1F35E8F8000
|
unkown
|
page read and write
|
||
|
1F35F1A9000
|
unkown
|
page read and write
|
||
|
A47D07E000
|
stack
|
page read and write
|
||
|
1F35F10F000
|
unkown
|
page read and write
|
||
|
1F35F602000
|
unkown
|
page read and write
|
||
|
1F35E870000
|
unkown
|
page read and write
|
||
|
1F35F1B9000
|
unkown
|
page read and write
|
||
|
1F35F174000
|
unkown
|
page read and write
|
||
|
1B8EB659000
|
unkown
|
page read and write
|
||
|
1AFE703C000
|
unkown
|
page read and write
|
||
|
1F35F199000
|
unkown
|
page read and write
|
||
|
2773E67E000
|
unkown
|
page read and write
|
||
|
223127C000
|
stack
|
page read and write
|
||
|
1F35F1AC000
|
unkown
|
page read and write
|
||
|
178AC567000
|
heap
|
page read and write
|
||
|
327B9FE000
|
stack
|
page read and write
|
||
|
155B3308000
|
unkown
|
page read and write
|
||
|
22667029000
|
unkown
|
page read and write
|
||
|
2773E68A000
|
unkown
|
page read and write
|
||
|
223157B000
|
stack
|
page read and write
|
||
|
1F35F1AC000
|
unkown
|
page read and write
|
||
|
22667055000
|
unkown
|
page read and write
|
||
|
1F35E851000
|
unkown
|
page read and write
|
||
|
A47C9AE000
|
stack
|
page read and write
|
||
|
1F35F1A9000
|
unkown
|
page read and write
|
||
|
155B3250000
|
unkown
|
page read and write
|
||
|
2773E675000
|
unkown
|
page read and write
|
||
|
327B97E000
|
stack
|
page read and write
|
||
|
2773E66A000
|
unkown
|
page read and write
|
||
|
1F35E83C000
|
unkown
|
page read and write
|
||
|
1F35F18B000
|
unkown
|
page read and write
|
||
|
1F35F16D000
|
unkown
|
page read and write
|
||
|
15DE687D000
|
unkown
|
page read and write
|
||
|
22317FF000
|
stack
|
page read and write
|
||
|
1F35F164000
|
unkown
|
page read and write
|
||
|
1F35F188000
|
unkown
|
page read and write
|
||
|
1F35F100000
|
unkown
|
page read and write
|
||
|
1F35E8BE000
|
unkown
|
page read and write
|
||
|
178AC550000
|
heap
|
page read and write
|
||
|
5C29EFD000
|
stack
|
page read and write
|
||
|
1F35F188000
|
unkown
|
page read and write
|
||
|
15DE684B000
|
unkown
|
page read and write
|
||
|
2773E647000
|
unkown
|
page read and write
|
||
|
155B31F0000
|
heap
|
page read and write
|
||
|
1A7DAFB000
|
stack
|
page read and write
|
||
|
1F35F188000
|
unkown
|
page read and write
|
||
|
15DE6813000
|
unkown
|
page read and write
|
||
|
1B8EB65A000
|
unkown
|
page read and write
|
||
|
1F35F188000
|
unkown
|
page read and write
|
||
|
15DE6902000
|
unkown
|
page read and write
|
||
|
A47C92E000
|
stack
|
page read and write
|
||
|
9EF847B000
|
stack
|
page read and write
|
||
|
1F35E913000
|
unkown
|
page read and write
|
||
|
15DE65E0000
|
heap
|
page read and write
|
||
|
1AFE7100000
|
unkown
|
page read and write
|
||
|
15DE6913000
|
unkown
|
page read and write
|
||
|
15DE6888000
|
unkown
|
page read and write
|
||
|
1F35F154000
|
unkown
|
page read and write
|
||
|
155B3268000
|
unkown
|
page read and write
|
||
|
1F35F188000
|
unkown
|
page read and write
|
||
|
1F35E916000
|
unkown
|
page read and write
|
||
|
1F35E908000
|
unkown
|
page read and write
|
||
|
22667100000
|
unkown
|
page read and write
|
||
|
2773E677000
|
unkown
|
page read and write
|
||
|
178AC3E0000
|
heap
|
page read and write
|
||
|
2773E63A000
|
unkown
|
page read and write
|
||
|
327BB7D000
|
stack
|
page read and write
|
||
|
1B8EB649000
|
unkown
|
page read and write
|
||
|
2773E67C000
|
unkown
|
page read and write
|
||
|
1F35F11B000
|
unkown
|
page read and write
|
||
|
1F35F15E000
|
unkown
|
page read and write
|
||
|
1F35F602000
|
unkown
|
page read and write
|
||
|
1F35F153000
|
unkown
|
page read and write
|
||
|
A3726FE000
|
stack
|
page read and write
|
||
|
2773E64E000
|
unkown
|
page read and write
|
||
|
1AFE708A000
|
unkown
|
page read and write
|
||
|
22666F20000
|
heap
|
page read and write
|
||
|
1F35F128000
|
unkown
|
page read and write
|
||
|
1F35F199000
|
unkown
|
page read and write
|
||
|
155B3950000
|
unkown
|
page read and write
|
||
|
2773E631000
|
unkown
|
page read and write
|
||
|
1F35F619000
|
unkown
|
page read and write
|
||
|
15DE6640000
|
heap
|
page read and write
|
||
|
15DE684D000
|
unkown
|
page read and write
|
||
|
22316F7000
|
stack
|
page read and write
|
||
|
1F35E85B000
|
unkown
|
page read and write
|
||
|
2773E66C000
|
unkown
|
page read and write
|
||
|
1F35F18B000
|
unkown
|
page read and write
|
||
|
1F35F168000
|
unkown
|
page read and write
|
||
|
22667070000
|
unkown
|
page read and write
|
||
|
1F35E829000
|
unkown
|
page read and write
|
||
|
1AFE7002000
|
unkown
|
page read and write
|
||
|
5C2997E000
|
stack
|
page read and write
|
||
|
5C2A0FE000
|
stack
|
page read and write
|
||
|
22667058000
|
unkown
|
page read and write
|
||
|
22315FF000
|
stack
|
page read and write
|
||
|
5C29A77000
|
stack
|
page read and write
|
||
|
155B3A02000
|
unkown
|
page read and write
|
||
|
1F35F1BA000
|
unkown
|
page read and write
|
||
|
1F35E800000
|
unkown
|
page read and write
|
||
|
1F35E813000
|
unkown
|
page read and write
|
||
|
1A7DD77000
|
stack
|
page read and write
|
||
|
1AFE7730000
|
unkown
|
page read and write
|
||
|
2773E679000
|
unkown
|
page read and write
|
||
|
223137E000
|
stack
|
page read and write
|
||
|
A47D17F000
|
stack
|
page read and write
|
||
|
155B3200000
|
unkown
|
page read and write
|
||
|
22667050000
|
unkown
|
page read and write
|
||
|
15DE688C000
|
unkown
|
page read and write
|
||
|
2773E683000
|
unkown
|
page read and write
|
||
|
1F35F160000
|
unkown
|
page read and write
|
||
|
1F35F1B4000
|
unkown
|
page read and write
|
||
|
178AC58D000
|
heap
|
page read and write
|
||
|
9EF7F2B000
|
stack
|
page read and write
|
||
|
2266703C000
|
unkown
|
page read and write
|
||
|
5C29DFC000
|
stack
|
page read and write
|
||
|
1F35F199000
|
unkown
|
page read and write
|
||
|
178AC580000
|
heap
|
page read and write
|
||
|
1F35F602000
|
unkown
|
page read and write
|
||
|
2773E664000
|
unkown
|
page read and write
|
||
|
1F35F188000
|
unkown
|
page read and write
|
||
|
A37267B000
|
stack
|
page read and write
|
||
|
1F35F663000
|
unkown
|
page read and write
|
||
|
1F35F188000
|
unkown
|
page read and write
|
||
|
155B3180000
|
heap
|
page read and write
|
||
|
155B3271000
|
unkown
|
page read and write
|
||
|
1F35F550000
|
remote allocation
|
page read and write
|
||
|
155B3190000
|
heap
|
page read and write
|
||
|
327BAFF000
|
stack
|
page read and write
|
||
|
1F35F188000
|
unkown
|
page read and write
|
||
|
2773EE02000
|
unkown
|
page read and write
|
||
|
1F35F180000
|
unkown
|
page read and write
|
||
|
2773E65B000
|
unkown
|
page read and write
|
||
|
1AFE7054000
|
unkown
|
page read and write
|
||
|
1F35E84D000
|
unkown
|
page read and write
|
||
|
15DE65D0000
|
heap
|
page read and write
|
||
|
22667013000
|
unkown
|
page read and write
|
||
|
178AC580000
|
heap
|
page read and write
|
||
|
2266704F000
|
unkown
|
page read and write
|
||
|
15DE6800000
|
unkown
|
page read and write
|
||
|
1F35F188000
|
unkown
|
page read and write
|
||
|
15DE6802000
|
unkown
|
page read and write
|
||
|
A3729FF000
|
stack
|
page read and write
|
||
|
2773E613000
|
unkown
|
page read and write
|
||
|
2773E67A000
|
unkown
|
page read and write
|
||
|
1F35E8DD000
|
unkown
|
page read and write
|
||
|
155B3281000
|
unkown
|
page read and write
|
||
|
15DE6900000
|
unkown
|
page read and write
|
||
|
A372BFE000
|
stack
|
page read and write
|
||
|
1F35E848000
|
unkown
|
page read and write
|
||
|
2773E490000
|
heap
|
page read and write
|
||
|
1F35F15A000
|
unkown
|
page read and write
|
||
|
1A7D75E000
|
stack
|
page read and write
|
||
|
178AC58D000
|
heap
|
page read and write
|
||
|
1B8ED0F0000
|
remote allocation
|
page read and write
|
||
|
1B8ED0F0000
|
remote allocation
|
page read and write
|
||
|
1F35F550000
|
remote allocation
|
page read and write
|
||
|
1F35E84E000
|
unkown
|
page read and write
|
||
|
A47CCFC000
|
stack
|
page read and write
|
||
|
1F35E780000
|
heap
|
page read and write
|
||
|
9EF8577000
|
stack
|
page read and write
|
||
|
A47CE7B000
|
stack
|
page read and write
|
||
|
1F35F188000
|
unkown
|
page read and write
|
||
|
178AC575000
|
heap
|
page read and write
|
||
|
1F35F199000
|
unkown
|
page read and write
|
||
|
1F35F16F000
|
unkown
|
page read and write
|
||
|
1F35F188000
|
unkown
|
page read and write
|
||
|
15DE6850000
|
unkown
|
page read and write
|
||
|
1F35E852000
|
unkown
|
page read and write
|
||
|
1F35F15E000
|
unkown
|
page read and write
|
||
|
178AC576000
|
heap
|
page read and write
|
||
|
1AFE7802000
|
unkown
|
page read and write
|
||
|
2773E667000
|
unkown
|
page read and write
|
||
|
1AFE7113000
|
unkown
|
page read and write
|
||
|
1AFE7065000
|
unkown
|
page read and write
|
||
|
5C29FFC000
|
stack
|
page read and write
|
||
|
1AFE707D000
|
unkown
|
page read and write
|
||
|
22667076000
|
unkown
|
page read and write
|
||
|
1F35F188000
|
unkown
|
page read and write
|
||
|
1AFE7029000
|
unkown
|
page read and write
|
||
|
1F35E84F000
|
unkown
|
page read and write
|
||
|
1F35F188000
|
unkown
|
page read and write
|
||
|
22667000000
|
unkown
|
page read and write
|
||
|
1F35F11D000
|
unkown
|
page read and write
|
||
|
2773E63D000
|
unkown
|
page read and write
|
||
|
22667108000
|
unkown
|
page read and write
|
||
|
2773E65C000
|
unkown
|
page read and write
|
||
|
15DE6847000
|
unkown
|
page read and write
|
||
|
22667113000
|
unkown
|
page read and write
|
||
|
1F35F1AA000
|
unkown
|
page read and write
|
||
|
223147B000
|
stack
|
page read and write
|
||
|
1B8EB65A000
|
unkown
|
page read and write
|
||
|
1F35F188000
|
unkown
|
page read and write
|
||
|
1F35F18F000
|
unkown
|
page read and write
|
||
|
155B3268000
|
unkown
|
page read and write
|
||
|
327B87A000
|
stack
|
page read and write
|
||
|
155B323C000
|
unkown
|
page read and write
|
||
|
2773E67B000
|
unkown
|
page read and write
|
||
|
1C068A90000
|
remote allocation
|
page read and write
|
||
|
2773E66D000
|
unkown
|
page read and write
|
||
|
155B324C000
|
unkown
|
page read and write
|
||
|
1F35E84C000
|
unkown
|
page read and write
|
||
|
1F35F199000
|
unkown
|
page read and write
|
||
|
A3728FE000
|
stack
|
page read and write
|
||
|
15DE6908000
|
unkown
|
page read and write
|
||
|
327B8FF000
|
stack
|
page read and write
|
||
|
1F35E790000
|
heap
|
page read and write
|
||
|
29508668000
|
unkown
|
page read and write
|
||
|
1F35F002000
|
unkown
|
page read and write
|
||
|
1F35E889000
|
unkown
|
page read and write
|
||
|
1AFE6F60000
|
heap
|
page read and write
|
||
|
155B3202000
|
unkown
|
page read and write
|
||
|
155B3257000
|
unkown
|
page read and write
|
||
|
1F35F11D000
|
unkown
|
page read and write
|
||
|
2773E480000
|
heap
|
page read and write
|
||
|
1F35E847000
|
unkown
|
page read and write
|
||
|
1F35E856000
|
unkown
|
page read and write
|
||
|
1F35F169000
|
unkown
|
page read and write
|
||
|
178AC58E000
|
heap
|
page read and write
|
||
|
2266704C000
|
unkown
|
page read and write
|
||
|
1F35E849000
|
unkown
|
page read and write
|
||
|
22312FE000
|
stack
|
page read and write
|
||
|
1F35E854000
|
unkown
|
page read and write
|
||
|
1AFE7102000
|
unkown
|
page read and write
|
||
|
2773E629000
|
unkown
|
page read and write
|
||
|
1F35F199000
|
unkown
|
page read and write
|
||
|
9EF827E000
|
stack
|
page read and write
|
||
|
1F35F188000
|
unkown
|
page read and write
|
||
|
2773E4F0000
|
heap
|
page read and write
|
||
|
2773E634000
|
unkown
|
page read and write
|
||
|
178AC690000
|
heap
|
page read and write
|
||
|
1B8ED0F0000
|
remote allocation
|
page read and write
|
||
|
1F35E85A000
|
unkown
|
page read and write
|
||
|
178AC55B000
|
heap
|
page read and write
|
||
|
15DE683C000
|
unkown
|
page read and write
|
||
|
15DE6DA0000
|
unkown
|
page read and write
|
||
|
1F35F600000
|
unkown
|
page read and write
|
||
|
1F35EF50000
|
unkown
|
page read and write
|
||
|
178AC695000
|
heap
|
page read and write
|
||
|
22667081000
|
unkown
|
page read and write
|
||
|
5C29B7E000
|
stack
|
page read and write
|
||
|
2773E669000
|
unkown
|
page read and write
|
||
|
15DE6829000
|
unkown
|
page read and write
|
||
|
178AC510000
|
heap
|
page read and write
|
||
|
2773E657000
|
unkown
|
page read and write
|
||
|
22667052000
|
unkown
|
page read and write
|
||
|
1AFE7000000
|
unkown
|
page read and write
|
||
|
2266704D000
|
unkown
|
page read and write
|
||
|
1F35F602000
|
unkown
|
page read and write
|
||
|
2773E674000
|
unkown
|
page read and write
|
||
|
2266704A000
|
unkown
|
page read and write
|
||
|
155B3229000
|
unkown
|
page read and write
|
||
|
1AFE7013000
|
unkown
|
page read and write
|
||
|
1AFE6F70000
|
heap
|
page read and write
|
||
|
1F35F1C1000
|
unkown
|
page read and write
|
||
|
1AFE7049000
|
unkown
|
page read and write
|
||
|
A372AFE000
|
stack
|
page read and write
|
||
|
1A7D7DE000
|
stack
|
page read and write
|
||
|
2773E661000
|
unkown
|
page read and write
|
||
|
5C298F7000
|
stack
|
page read and write
|
||
|
2773E5F0000
|
unkown
|
page read and write
|
||
|
1C068A90000
|
remote allocation
|
page read and write
|
||
|
A47CF77000
|
stack
|
page read and write
|
||
|
1F35F1B9000
|
unkown
|
page read and write
|
||
|
1F35F188000
|
unkown
|
page read and write
|
||
|
155B3252000
|
unkown
|
page read and write
|
||
|
1F35F173000
|
unkown
|
page read and write
|
||
|
22666F80000
|
heap
|
page read and write
|
||
|
1F35F619000
|
unkown
|
page read and write
|
There are 338 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://www.quiz-bliss.com/kittycantrell/harry-potter-20-year-anniversary-trivia-quiz-112821
|
||
|
https://www.google.com/recaptcha/api2/aframe
|
||
|
https://www.quiz-bliss.com/
|
||
|
https://www.quiz-bliss.com/kittycantrell/greys-anatomy-jackson-april-relaitonship-japril-trivia-quiz-121921
|
||
|
https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
|
||
|
https://tpc.googlesyndication.com/sodar/Enqz_20U.html
|
||
|
https://44d9d952e871c812b395ceaacbf30586.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
|
||
|
https://s0.2mdn.net/sadbundle/11288944710048972181/300x250-en/index.html
|
||
|
https://www.quiz-bliss.com/quizzes/knowledge?sort=recenthttps://www.quiz-bliss.com/quizzes/geography?sort=recent
|
||
|
https://googleads.g.doubleclick.net/xbbe/pixel?d=CKi2gLICELWvmbICGJK0-78BMAE&v=APEucNXD8VqIQag_88xrraiQBA3nM2WEC1ntwSS7HNbeN3Gtrz4q3swc61hzCRlP1vavH9n0GSNr1BGaaZUfuvqyyDUFEfi08w
|
||
|
https://googleads.g.doubleclick.net/xbbe/pixel?d=CKi2gLICELWvmbICGJK0-78BMAE&v=APEucNU7Y7rRXHnNhkvcuUveQ6PCY04sEqUwGAnKQEIBoX3YcRtRU26fnK4nY9LHWgxgw9_EM4r5pUwMRrzveMSPRUUdUPew8g
|
||
|
https://www.quiz-bliss.com/quizzes/personality?sort=recent
|
||
|
https://www.quiz-bliss.com/quizzes/entertainment?sort=recent
|
||
|
https://www.quiz-bliss.com/quizzes/trivia?sort=recent
|
||
|
https://www.quiz-bliss.com/kittycantrell
|
||
|
https://www.facebook.com/login.php?skip_api_login=1&api_key=966242223397117&signed_next=1&next=https%3A%2F%2Fwww.facebook.com%2Fsharer.php%3Fu%3Dhttps%253A%252F%252Fwww.quiz-bliss.com%252Fkittycantrell%252Fharry-potter-20-year-anniversary-trivia-quiz-112821&cancel_url=https%3A%2F%2Fwww.facebook.com%2Fdialog%2Fclose_window%2F%3Fapp_id%3D966242223397117%26connect%3D0%23_%3D_&display=popup&locale=en_US
|
||
|
https://www.quiz-bliss.com/quizzes/movies
|
||
|
https://www.quiz-bliss.com/quizzes/harry%20potter
|
||
|
https://www.quiz-bliss.com/quizzes
|
There are 9 hidden doms, click here to show them.