Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\28172b1c-8100-4db8-8c73-d54eaeb74b5b.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\4e7f35cd-4c33-4184-8b7b-c53359b56e9b.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\52b73885-e805-48d5-ba48-a481b71ec81d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\7eda20ec-e546-44c0-ab31-f990f5d83b85.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\8c0d81c2-d197-44e1-9c82-50e06e47483a.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\900d9cea-ae11-4858-a282-500f32e3e989.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\000ef615-0cba-4534-bacf-3bd9f3b0892a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\02e44a0f-56a3-43bc-a950-b188c779fc1a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1199492e-86f7-46e9-9d1c-c701996bfe61.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\14f4fafe-e142-488c-8bcf-6fc59426813f.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1b17872b-c67f-4cc6-9ec2-75fc70c1bf1e.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6c0841d3-e464-4e8d-a49b-11a594c8e0c6.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9405cbfa-9f79-456a-9fd8-9de9f3a17c9f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7b539bde8ca0807396a791d6ee4db1189d0e5380\472540d2-5393-4606-a557-8f1d6ef4aaab\556be1bce36d62b7_0
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7b539bde8ca0807396a791d6ee4db1189d0e5380\472540d2-5393-4606-a557-8f1d6ef4aaab\index
|
ISO-8859 text, with no line terminators, with escape sequences
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7b539bde8ca0807396a791d6ee4db1189d0e5380\472540d2-5393-4606-a557-8f1d6ef4aaab\index-dir\temp-index
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7b539bde8ca0807396a791d6ee4db1189d0e5380\472540d2-5393-4606-a557-8f1d6ef4aaab\index-dir\the-real-index
(copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7b539bde8ca0807396a791d6ee4db1189d0e5380\index.txt
(copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7b539bde8ca0807396a791d6ee4db1189d0e5380\index.txt.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\000001.dbtmp
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\CURRENT (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\MANIFEST-000001
|
PGP\011Secret Key -
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_0
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index
|
ISO-8859 text, with no line terminators, with escape sequences
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\temp-index
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\b8a49598-00c8-460c-bd0b-a1c6b0a2bce7.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a83c5a58-037a-4002-9460-518a9a37bebd.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c2518bbc-8f64-4f88-beae-6da9839b1993.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c3fe2151-778a-4eee-b5cf-cfd3649eee22.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d169de55-46fa-44b4-89ab-094eeb9ec5c0.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\e3812570-0768-4583-9eec-b029d76ec628.tmp
|
SysEx File -
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\e8df6882-1b86-4926-a5bd-38e565038a7b.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\e9c3ae74-663e-4b56-be71-e0bc267c041d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\eacffb7b-7416-4b03-be03-ff56bda05bfe.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\1164_182305502\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\1164_182305502\_platform_specific\win_x64\widevinecdm.dll
|
PE32+ executable (DLL) (console) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\1164_182305502\_platform_specific\win_x64\widevinecdm.dll.sig
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\1164_182305502\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\1164_182305502\manifest.json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\34e7ca78-7bb8-462e-8627-a5568bcd9fe6.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\d054163a-a87c-4768-8ac5-e4d18ee159b8.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\34e7ca78-7bb8-462e-8627-a5568bcd9fe6.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir1164_40846836\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
There are 107 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "https://na4.documents.adobe.com/public/esign?tsid=CBFCIBAA3AAABLblqZhB8Qj6QbTnIUkXyIOVKFHit4HytqNCpuPBOoBcUQPC8HrmQioZXc1sESSOHzJqQyADDH2vYtQJJ0Bq0JWCYVysQ&
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1604,7257101925499768878,9357559122083841458,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1928 /prefetch:8
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://na4.documents.adobe.com/public/esign?tsid=CBFCIBAA3AAABLblqZhB8Qj6QbTnIUkXyIOVKFHit4HytqNCpuPBOoBcUQPC8HrmQioZXc1sESSOHzJqQyADDH2vYtQJJ0Bq0JWCYVysQ&
|
 |
||
|
https://cents-alt-traffic-transactions.trycloudflare.com/login.html
|
|
||
|
https://www.google.com
|
unknown
|
||
|
https://www.google.com/images/dot2.gif
|
unknown
|
||
|
https://dns.google
|
unknown
|
||
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
||
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
||
|
https://bit.ly/wb-precache
|
unknown
|
||
|
https://ogs.google.com
|
unknown
|
||
|
https://www.google.com/images/cleardot.gif
|
unknown
|
||
|
https://cm.g.doubleclick.net
|
unknown
|
||
|
https://accounts.google.com
|
unknown
|
||
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
https://www.google.ch
|
unknown
|
||
|
https://googleads.g.doubleclick.net
|
unknown
|
||
|
https://clients2.googleusercontent.com
|
unknown
|
||
|
https://apis.google.com
|
unknown
|
||
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
||
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
https://www.google.com/images/x2.gif
|
unknown
|
||
|
https://www.google.com/
|
unknown
|
||
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
||
|
https://accounts.google.com/MergeSession
|
unknown
|
||
|
https://clients2.google.com
|
unknown
|
||
|
https://clients2.google.com/service/update2/crx
|
unknown
|
There are 14 hidden URLs, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.168.2.1
|
unknown
|
unknown
|
||
|
13.224.103.102
|
unknown
|
United States
|
||
|
52.51.78.176
|
unknown
|
United States
|
||
|
142.250.185.100
|
unknown
|
United States
|
||
|
8.8.8.8
|
unknown
|
United States
|
||
|
15.188.95.229
|
unknown
|
United States
|
||
|
104.16.148.64
|
unknown
|
United States
|
||
|
142.250.186.77
|
unknown
|
United States
|
||
|
54.72.129.85
|
unknown
|
United States
|
||
|
216.58.215.226
|
unknown
|
United States
|
||
|
13.224.103.31
|
unknown
|
United States
|
||
|
13.36.218.177
|
unknown
|
United States
|
||
|
54.155.94.243
|
unknown
|
United States
|
||
|
104.17.123.55
|
unknown
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
52.16.218.236
|
unknown
|
United States
|
||
|
185.199.108.153
|
unknown
|
Netherlands
|
||
|
52.223.40.198
|
unknown
|
United States
|
||
|
127.0.0.1
|
unknown
|
unknown
|
||
|
104.17.25.14
|
unknown
|
United States
|
||
|
52.216.136.21
|
unknown
|
United States
|
||
|
142.250.185.206
|
unknown
|
United States
|
||
|
104.18.10.207
|
unknown
|
United States
|
||
|
104.18.32.192
|
unknown
|
United States
|
||
|
13.224.92.57
|
unknown
|
United States
|
||
|
34.226.230.108
|
unknown
|
United States
|
||
|
104.17.30.92
|
unknown
|
United States
|
||
|
142.250.186.131
|
unknown
|
United States
|
||
|
13.224.103.17
|
unknown
|
United States
|
||
|
34.111.234.236
|
unknown
|
United States
|
||
|
142.250.74.195
|
unknown
|
United States
|
||
|
34.199.8.144
|
unknown
|
United States
|
||
|
91.228.74.133
|
unknown
|
United Kingdom
|
||
|
185.33.221.87
|
unknown
|
Netherlands
|
||
|
142.250.181.226
|
unknown
|
United States
|
||
|
104.17.27.92
|
unknown
|
United States
|
||
|
104.20.185.68
|
unknown
|
United States
|
||
|
34.98.64.218
|
unknown
|
United States
|
||
|
63.34.227.161
|
unknown
|
United States
|
There are 29 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
There are 31 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
26E1F1C0000
|
heap
|
page read and write
|
||
|
17E61E3F000
|
heap
|
page read and write
|
||
|
2E7928C9000
|
heap
|
page read and write
|
||
|
17E67708000
|
heap
|
page read and write
|
||
|
17E6770F000
|
heap
|
page read and write
|
||
|
17E673D0000
|
trusted library allocation
|
page read and write
|
||
|
2E793630000
|
heap
|
page readonly
|
||
|
26E1F213000
|
heap
|
page read and write
|
||
|
5D7E37E000
|
stack
|
page read and write
|
||
|
17E67550000
|
trusted library allocation
|
page read and write
|
||
|
17E67708000
|
heap
|
page read and write
|
||
|
1C576FE0000
|
heap
|
page read and write
|
||
|
C6A487B000
|
stack
|
page read and write
|
||
|
17E67728000
|
heap
|
page read and write
|
||
|
17E63050000
|
trusted library section
|
page readonly
|
||
|
1C57706D000
|
heap
|
page read and write
|
||
|
26E1F23C000
|
heap
|
page read and write
|
||
|
17E61D50000
|
heap
|
page read and write
|
||
|
2E792800000
|
heap
|
page read and write
|
||
|
17E67556000
|
trusted library allocation
|
page read and write
|
||
|
260207B000
|
stack
|
page read and write
|
||
|
1C577059000
|
heap
|
page read and write
|
||
|
2602477000
|
stack
|
page read and write
|
||
|
17E62918000
|
heap
|
page read and write
|
||
|
2E79265D000
|
heap
|
page read and write
|
||
|
17E61EB2000
|
heap
|
page read and write
|
||
|
17E62F40000
|
trusted library allocation
|
page read and write
|
||
|
2E79267B000
|
heap
|
page read and write
|
||
|
17E61F26000
|
heap
|
page read and write
|
||
|
5D7DE7E000
|
stack
|
page read and write
|
||
|
1C57707E000
|
heap
|
page read and write
|
||
|
17E62929000
|
heap
|
page read and write
|
||
|
17E67590000
|
trusted library allocation
|
page read and write
|
||
|
17E627F0000
|
trusted library allocation
|
page read and write
|
||
|
17E67580000
|
trusted library allocation
|
page read and write
|
||
|
5D7D977000
|
stack
|
page read and write
|
||
|
17E67594000
|
trusted library allocation
|
page read and write
|
||
|
5D7DB7A000
|
stack
|
page read and write
|
||
|
1C577052000
|
heap
|
page read and write
|
||
|
260257F000
|
stack
|
page read and write
|
||
|
1C577047000
|
heap
|
page read and write
|
||
|
17E61E79000
|
heap
|
page read and write
|
||
|
17E67551000
|
trusted library allocation
|
page read and write
|
||
|
C6A437B000
|
stack
|
page read and write
|
||
|
1C577100000
|
heap
|
page read and write
|
||
|
17E61E8E000
|
heap
|
page read and write
|
||
|
26E1F276000
|
heap
|
page read and write
|
||
|
F8B15F9000
|
stack
|
page read and write
|
||
|
17E67571000
|
trusted library allocation
|
page read and write
|
||
|
5D7DC7F000
|
stack
|
page read and write
|
||
|
17E678E0000
|
remote allocation
|
page read and write
|
||
|
17E61F13000
|
heap
|
page read and write
|
||
|
17E62900000
|
heap
|
page read and write
|
||
|
F8B157E000
|
stack
|
page read and write
|
||
|
17E6770C000
|
heap
|
page read and write
|
||
|
1C577880000
|
trusted library allocation
|
page read and write
|
||
|
17E62802000
|
heap
|
page read and write
|
||
|
17E62959000
|
heap
|
page read and write
|
||
|
1C576F70000
|
heap
|
page read and write
|
||
|
5D7DF7E000
|
stack
|
page read and write
|
||
|
26E1F228000
|
heap
|
page read and write
|
||
|
17E61E6F000
|
heap
|
page read and write
|
||
|
17E67554000
|
trusted library allocation
|
page read and write
|
||
|
17E676A0000
|
trusted library allocation
|
page read and write
|
||
|
17E67A00000
|
trusted library allocation
|
page read and write
|
||
|
26E1F302000
|
heap
|
page read and write
|
||
|
26E1FC02000
|
trusted library allocation
|
page read and write
|
||
|
17E63030000
|
trusted library section
|
page readonly
|
||
|
17E62918000
|
heap
|
page read and write
|
||
|
17E61DE0000
|
trusted library allocation
|
page read and write
|
||
|
17E678E0000
|
remote allocation
|
page read and write
|
||
|
17E67558000
|
trusted library allocation
|
page read and write
|
||
|
26020FF000
|
stack
|
page read and write
|
||
|
17E62918000
|
heap
|
page read and write
|
||
|
1C577057000
|
heap
|
page read and write
|
||
|
17E63020000
|
trusted library section
|
page readonly
|
||
|
17E61E58000
|
heap
|
page read and write
|
||
|
2E792677000
|
heap
|
page read and write
|
||
|
17E67707000
|
heap
|
page read and write
|
||
|
2E792655000
|
heap
|
page read and write
|
||
|
17E61E00000
|
heap
|
page read and write
|
||
|
C6A4A7E000
|
stack
|
page read and write
|
||
|
17E67553000
|
trusted library allocation
|
page read and write
|
||
|
1C57703C000
|
heap
|
page read and write
|
||
|
2E793620000
|
trusted library allocation
|
page read and write
|
||
|
17E6770D000
|
heap
|
page read and write
|
||
|
2E793650000
|
trusted library allocation
|
page read and write
|
||
|
2E792618000
|
heap
|
page read and write
|
||
|
2E792860000
|
trusted library allocation
|
page read and write
|
||
|
1C57704D000
|
heap
|
page read and write
|
||
|
5D7E17B000
|
stack
|
page read and write
|
||
|
17E62959000
|
heap
|
page read and write
|
||
|
17E61EFD000
|
heap
|
page read and write
|
||
|
1C57706D000
|
heap
|
page read and write
|
||
|
17E62959000
|
heap
|
page read and write
|
||
|
17E6770F000
|
heap
|
page read and write
|
||
|
17E61E13000
|
heap
|
page read and write
|
||
|
17E61DF0000
|
trusted library section
|
page read and write
|
||
|
17E627E3000
|
trusted library allocation
|
page read and write
|
||
|
1C57707B000
|
heap
|
page read and write
|
||
|
17E676B0000
|
trusted library allocation
|
page read and write
|
||
|
17E61E8C000
|
heap
|
page read and write
|
||
|
2E7925A0000
|
trusted library allocation
|
page read and write
|
||
|
2E79265D000
|
heap
|
page read and write
|
||
|
17E67711000
|
heap
|
page read and write
|
||
|
1C57705A000
|
heap
|
page read and write
|
||
|
260217F000
|
stack
|
page read and write
|
||
|
5D7DD7B000
|
stack
|
page read and write
|
||
|
17E67706000
|
heap
|
page read and write
|
||
|
17E678E0000
|
remote allocation
|
page read and write
|
||
|
17E61D40000
|
heap
|
page read and write
|
||
|
1C577000000
|
heap
|
page read and write
|
||
|
17E61E74000
|
heap
|
page read and write
|
||
|
26E1F1F0000
|
trusted library allocation
|
page read and write
|
||
|
2E792610000
|
heap
|
page read and write
|
||
|
26E1F25A000
|
heap
|
page read and write
|
||
|
17E67708000
|
heap
|
page read and write
|
||
|
5D7E57F000
|
stack
|
page read and write
|
||
|
1C577113000
|
heap
|
page read and write
|
||
|
5D7E07E000
|
stack
|
page read and write
|
||
|
17E63060000
|
trusted library section
|
page readonly
|
||
|
17E673C0000
|
trusted library allocation
|
page read and write
|
||
|
17E6770D000
|
heap
|
page read and write
|
||
|
26E1F200000
|
heap
|
page read and write
|
||
|
5D7DA7A000
|
stack
|
page read and write
|
||
|
17E63070000
|
trusted library section
|
page readonly
|
||
|
5D7D87E000
|
stack
|
page read and write
|
||
|
17E61EA1000
|
heap
|
page read and write
|
||
|
1C577013000
|
heap
|
page read and write
|
||
|
17E61E9F000
|
heap
|
page read and write
|
||
|
17E6755E000
|
trusted library allocation
|
page read and write
|
||
|
17E627E0000
|
trusted library allocation
|
page read and write
|
||
|
2E7928D0000
|
trusted library allocation
|
page read and write
|
||
|
17E67707000
|
heap
|
page read and write
|
||
|
17E62A01000
|
trusted library allocation
|
page read and write
|
||
|
1C577055000
|
heap
|
page read and write
|
||
|
C6A4B7F000
|
stack
|
page read and write
|
||
|
17E67550000
|
trusted library allocation
|
page read and write
|
||
|
17E61E29000
|
heap
|
page read and write
|
||
|
F8B10DB000
|
stack
|
page read and write
|
||
|
17E67574000
|
trusted library allocation
|
page read and write
|
||
|
17E61E92000
|
heap
|
page read and write
|
||
|
17E627C1000
|
trusted library allocation
|
page read and write
|
||
|
2E792880000
|
trusted library allocation
|
page read and write
|
||
|
F8B1479000
|
stack
|
page read and write
|
||
|
17E6299A000
|
heap
|
page read and write
|
||
|
17E6299C000
|
heap
|
page read and write
|
||
|
1C577102000
|
heap
|
page read and write
|
||
|
17E67704000
|
heap
|
page read and write
|
||
|
17E61E76000
|
heap
|
page read and write
|
||
|
17E67706000
|
heap
|
page read and write
|
||
|
5D7D54C000
|
stack
|
page read and write
|
||
|
5D7DEFE000
|
stack
|
page read and write
|
||
|
C6A497B000
|
stack
|
page read and write
|
||
|
1C577108000
|
heap
|
page read and write
|
||
|
17E67700000
|
heap
|
page read and write
|
||
|
17E61F02000
|
heap
|
page read and write
|
||
|
1C577A02000
|
trusted library allocation
|
page read and write
|
||
|
17E62800000
|
heap
|
page read and write
|
||
|
260227B000
|
stack
|
page read and write
|
||
|
26E1F202000
|
heap
|
page read and write
|
||
|
26E1F150000
|
heap
|
page read and write
|
||
|
1C577046000
|
heap
|
page read and write
|
||
|
17E6770C000
|
heap
|
page read and write
|
||
|
1C577088000
|
heap
|
page read and write
|
||
|
2E792590000
|
heap
|
page read and write
|
||
|
2E7936A0000
|
trusted library allocation
|
page read and write
|
||
|
1C57704B000
|
heap
|
page read and write
|
||
|
17E62959000
|
heap
|
page read and write
|
||
|
2E79265D000
|
heap
|
page read and write
|
||
|
260237B000
|
stack
|
page read and write
|
||
|
17E67702000
|
heap
|
page read and write
|
||
|
26E1F300000
|
heap
|
page read and write
|
||
|
5D7E47D000
|
stack
|
page read and write
|
||
|
1C577075000
|
heap
|
page read and write
|
||
|
2E7928C5000
|
heap
|
page read and write
|
||
|
17E67557000
|
trusted library allocation
|
page read and write
|
||
|
C6A477F000
|
stack
|
page read and write
|
||
|
2E7927E0000
|
heap
|
page read and write
|
||
|
1C577029000
|
heap
|
page read and write
|
||
|
1C57704C000
|
heap
|
page read and write
|
||
|
17E676F8000
|
heap
|
page read and write
|
||
|
2E792620000
|
heap
|
page read and write
|
||
|
17E6770A000
|
heap
|
page read and write
|
||
|
F8B14F9000
|
stack
|
page read and write
|
||
|
1C577050000
|
heap
|
page read and write
|
||
|
17E61DB0000
|
heap
|
page read and write
|
||
|
17E62D00000
|
trusted library allocation
|
page read and write
|
||
|
26E1F313000
|
heap
|
page read and write
|
||
|
260267F000
|
stack
|
page read and write
|
||
|
17E67820000
|
trusted library allocation
|
page read and write
|
||
|
17E633C0000
|
trusted library allocation
|
page read and write
|
||
|
1C577070000
|
heap
|
page read and write
|
||
|
17E67706000
|
heap
|
page read and write
|
||
|
5D7DDFF000
|
stack
|
page read and write
|
||
|
1C57708E000
|
heap
|
page read and write
|
||
|
2E793410000
|
trusted library allocation
|
page read and write
|
||
|
17E67704000
|
heap
|
page read and write
|
||
|
2E792870000
|
trusted library allocation
|
page read and write
|
||
|
1C57704F000
|
heap
|
page read and write
|
||
|
17E62913000
|
heap
|
page read and write
|
||
|
2E793640000
|
trusted library allocation
|
page read and write
|
||
|
17E62A81000
|
trusted library allocation
|
page read and write
|
||
|
17E63040000
|
trusted library section
|
page readonly
|
||
|
5D7E279000
|
stack
|
page read and write
|
||
|
17E62815000
|
heap
|
page read and write
|
||
|
17E62918000
|
heap
|
page read and write
|
||
|
26E1F160000
|
heap
|
page read and write
|
||
|
1C576F80000
|
heap
|
page read and write
|
||
|
2E7928C0000
|
heap
|
page read and write
|
||
|
5D7DFFF000
|
stack
|
page read and write
|
There are 201 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://cents-alt-traffic-transactions.trycloudflare.com/login.html
|
|
|
|
https://na4.documents.adobe.com/public/esign?tsid=CBFCIBAA3AAABLblqZhB8Qj6QbTnIUkXyIOVKFHit4HytqNCpuPBOoBcUQPC8HrmQioZXc1sESSOHzJqQyADDH2vYtQJJ0Bq0JWCYVysQ&
|
||
|
https://acrobat.adobe.com/us/en/
|
||
|
https://www.adobe.com/legal/consumer-disclosure-linkfree.html
|
||
|
https://acrobat.adobe.com/us/en/
|
||
|
https://status.adobe.com/products/1554
|
||
|
https://acrobat.adobe.com/us/en/
|
||
|
https://commerce.adobe.com/checkout/iframe/preload/
|
||
|
https://commerce.adobe.com/store/iframe/preload
|