Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\00202325-ddcf-4985-a26b-dc7c35d6d7d6.tmp
|
SysEx File -
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\07fab1aa-8cdf-4130-a1b8-accc35a9d7cd.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\437d958e-993d-47d3-bc52-c5f9116d9731.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\546fe6b3-722e-4c3b-9949-cd5be0f29958.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\5e6f90b2-c2cf-46d8-89eb-0b842c444b42.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\44fc7d17-ddb3-4c19-bfaa-47a06cb9ef4c.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\4e41146e-ada5-46f9-8e24-373cb8a3dfac.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\54092f3a-c9c6-4523-9427-a17796dd2c9d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\54e22b56-5a25-48b0-be96-5e0352d79ac6.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\55f165b7-c273-4715-ac7f-48a04bad2811.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5f290e35-6607-4c0d-808f-628278018fce.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6683036f-02d2-4d96-826b-150144626ce7.tmp
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\83a243a1-c135-46b4-bf83-15965a96d979.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\84e22fb0-3916-4a1b-a605-30a3483d4037.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\98ec5fff-17af-491e-a764-2aa173100102.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\e8f43554-03a4-435b-91a2-a1351137ac6d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\c5292198-ab1a-48a7-9e6e-848ebbc14452.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b0f3d1c2-247e-4102-ad44-e8cd6ba8a1a4.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\e3f59225-3471-43e0-b277-d33f1cc8896e.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f5444c69-224e-410e-8158-a60424e540a3.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\a995934a-983d-4703-b12b-03c992f210f6.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\adece6ff-a3b5-4f55-a053-3d6193def75f.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\ebba3b4b-0908-466c-be09-229deeacc67e.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6ddc5cac-2887-4c30-9d88-b56971765644.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\8dad742b-834f-41c6-ab97-59c5a677e898.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\6ddc5cac-2887-4c30-9d88-b56971765644.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6072_917294890\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
There are 92 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "https://docs.google.com/presentation/d/e/2PACX-1vQLIu1X0IVnxZJYibfHTDtGdl4umjzrNQRqM8P15_pKuHsxivDaDjKXey0w5atKnGomwg17E-2HUJIW/pub?start=false&loop=false&delayms=3000&slide=id.p
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1600,12104884464461412917,7261113528987720669,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1944 /prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1600,12104884464461412917,7261113528987720669,131072
--lang=en-US --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=6136 /prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService
--field-trial-handle=1600,12104884464461412917,7261113528987720669,131072 --lang=en-US --service-sandbox-type=video_capture
--enable-audio-service-sandbox --mojo-platform-channel-handle=6100 /prefetch:8
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://docs.google.com/presentation/d/e/2PACX-1vQLIu1X0IVnxZJYibfHTDtGdl4umjzrNQRqM8P15_pKuHsxivDaDjKXey0w5atKnGomwg17E-2HUJIW/pub?start=false&loop=false&delayms=3000&slide=id.p
|
|||
|
https://www.google.com/url?q=https://accounts.appsgsuite-tunneldrive.tk/eEBrdljc&sa=D&source=editors&ust=1653677947346759&usg=AOvVaw3QU4sK3cAcPp4ymAmsc8mY
|
|||
|
https://web.dev/js/store-1afdb64d.js
|
199.36.158.100
|
||
|
https://web.dev/js/index-793a397e.js
|
199.36.158.100
|
||
|
https://transparencyreport.google.com/safe-browsing/search
|
|||
|
https://www.google.com/images/cleardot.gif
|
unknown
|
||
|
https://safebrowsing.google.com
|
unknown
|
||
|
https://play.google.com
|
unknown
|
||
|
https://www.google.com/url?q=https://accounts.appsgsuite-tunneldrive.tk/eEBrdljc&sa=D&source=editors&ust=1653677947346759&usg=AOvVaw3QU4sK3cAcPp4ymAmsc8mY
|
142.250.203.100
|
||
|
https://web.dev/hacked/
|
199.36.158.100
|
||
|
https://transparencyreport.google.com/
|
|||
|
https://web.dev/css/next.css?v=30010cda
|
199.36.158.100
|
||
|
https://web.dev/fonts/google-sans/bold/latin.woff2
|
199.36.158.100
|
||
|
https://web.dev/js/app.js?v=145f0867
|
199.36.158.100
|
||
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
https://accounts.google.com/MergeSession
|
unknown
|
||
|
https://www.google.co.uk/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-126406676-2&cid=1778341496.1653706916&jid=207518192&_u=YEBAAAAAAAAAAC~&z=1572055668
|
172.217.168.35
|
||
|
https://www.google.com
|
unknown
|
||
|
https://www.google.com/images/branding/googlelogo/svg/googlelogo_clr_74x24px.svg
|
142.250.203.100
|
||
|
https://web.dev/images/favicon-32x32.png
|
199.36.158.100
|
||
|
https://web.dev/images/lockup-color.png
|
199.36.158.100
|
||
|
https://www.google.com/favicon.ico?v1
|
142.250.203.100
|
||
|
https://web.dev/images/android-chrome-192x192.png
|
199.36.158.100
|
||
|
https://docs.google.com/presentation/d/e/2PACX-1vQLIu1X0IVnxZJYibfHTDtGdl4umjzrNQRqM8P15_pKuHsxivDaD
|
unknown
|
||
|
https://accounts.google.com
|
unknown
|
||
|
https://docs.google.com/presentation/d/e/2PACX-1vQLIu1X0IVnxZJYibfHTDtGdl4umjzrNQRqM8P15_pKuHsxivDaDjKXey0w5atKnGomwg17E-2HUJIW/pub?start=false&loop=false&delayms=3000&slide=id.p
|
|||
|
https://web.dev/manifest.webmanifest
|
199.36.158.100
|
||
|
https://web.dev/images/favicon-16x16.png
|
199.36.158.100
|
||
|
https://apis.google.com
|
unknown
|
||
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
||
|
https://transparencyreport.google.com/safe-browsing/overview
|
172.217.168.46
|
||
|
https://transparencyreport.google.com
|
unknown
|
||
|
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdCiQETAAAAADLZgnQbEQ8zAGa1eL7YA7TtN4N1&co=aHR0cHM6Ly9zYWZlYnJvd3NpbmcuZ29vZ2xlLmNvbTo0NDM.&hl=en&v=M-QqaF9xk6BpjLH22uHZRhXt&size=normal&cb=cg7d3oeuaspl
|
|||
|
https://www.google.com/tools/firefox/common/moz-header-bg-bottom.png
|
142.250.203.100
|
||
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
||
|
https://clients2.google.com
|
unknown
|
||
|
https://web.dev/images/favicon.ico
|
199.36.158.100
|
||
|
https://dns.google
|
unknown
|
||
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
||
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
||
|
https://ogs.google.com
|
unknown
|
||
|
https://transparencyreport.google.com/safe-browsing/overview
|
|||
|
https://web.dev/css/legacy-rollout.css?v=c92bcb17
|
199.36.158.100
|
||
|
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
216.58.215.238
|
||
|
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
142.250.203.109
|
||
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
https://lh3.googleusercontent.com
|
unknown
|
||
|
https://docs.google.com/presentation/d/e/2PACX-1vQLIu1X0IVnxZJYibfHTDtGdl4umjzrNQRqM8P15_pKuHsxivDaDjKXey0w5atKnGomwg17E-2HUJIW/pub?start=false&loop=false&delayms=3000&slide=id.p
|
172.217.168.14
|
||
|
https://www.google.com/url?q=https://accounts.appsgsuite-tunneldrive.tk/eEBrdljc&sa=D&source=editors
|
unknown
|
||
|
https://web.dev/fonts/google-sans/regular/latin.woff2
|
199.36.158.100
|
||
|
https://web.dev/js/index-a8636400.js
|
199.36.158.100
|
||
|
https://web.dev/js/index-d1373fab.js
|
199.36.158.100
|
||
|
https://web.dev/hacked/
|
|||
|
https://www.google.com/images/x2.gif
|
unknown
|
||
|
https://web-dev.imgix.net/image/kheDArv5csY6rvQUJDbWRscckLr1/INhVTTPZ65TEBG9N4Qpz.gif?auto=format&w=845
|
151.101.14.208
|
||
|
https://www.google.com/images/phishing_logo.png
|
142.250.203.100
|
||
|
https://developers.google.com/web/fundamentals/security/hacked
|
172.217.168.14
|
||
|
https://www.google.com/images/dot2.gif
|
unknown
|
||
|
https://i.ytimg.com/vi_webp/mbJvL61DOZg/hqdefault.webp
|
172.217.168.86
|
||
|
https://web.dev/js/content.js?v=00db7c42
|
199.36.158.100
|
||
|
https://www.google.com/tools/firefox/common/moz-header-bg-top.png
|
142.250.203.100
|
||
|
https://stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-126406676-2&cid=1778341496.1653706916&jid=207518192&gjid=2063473025&_gid=1189465226.1653706916&_u=YEBAAAAAAAAAAC~&z=487429079
|
108.177.126.156
|
||
|
https://web.dev/fonts/material-icons/regular.woff2
|
199.36.158.100
|
||
|
http://www.google.com/safebrowsing/report_error/?tpl=websearch&url=https://accounts.appsgsuite-tunneldrive.tk/eEBrdljc
|
142.250.203.100
|
||
|
https://safebrowsing.google.com/safebrowsing/report_error/?tpl=websearch&url=https://accounts.appsgsuite-tunneldrive.tk/eEBrdljc&hl=en
|
|||
|
https://clients2.googleusercontent.com
|
unknown
|
||
|
https://docs.google.com
|
unknown
|
||
|
https://www.google.com/
|
unknown
|
||
|
https://www.google.com/recaptcha/api2/bframe?hl=en&v=M-QqaF9xk6BpjLH22uHZRhXt&k=6LdCiQETAAAAADLZgnQbEQ8zAGa1eL7YA7TtN4N1
|
|||
|
https://clients2.google.com/service/update2/crx
|
unknown
|
There are 59 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
gstaticadssl.l.google.com
|
216.58.215.227
|
||
|
docs.google.com
|
172.217.168.14
|
||
|
web.dev
|
199.36.158.100
|
||
|
accounts.google.com
|
142.250.203.109
|
||
|
www-google-analytics.l.google.com
|
142.250.203.110
|
||
|
stats.l.doubleclick.net
|
108.177.126.156
|
||
|
www-googletagmanager.l.google.com
|
172.217.168.8
|
||
|
i.ytimg.com
|
172.217.168.86
|
||
|
play.google.com
|
142.250.203.110
|
||
|
www3.l.google.com
|
172.217.168.46
|
||
|
developers.google.com
|
172.217.168.14
|
||
|
sb.l.google.com
|
142.250.203.110
|
||
|
www.google.co.uk
|
172.217.168.35
|
||
|
www.google.com
|
142.250.203.100
|
||
|
clients.l.google.com
|
216.58.215.238
|
||
|
dualstack.com.imgix.map.fastly.net
|
151.101.14.208
|
||
|
googlehosted.l.googleusercontent.com
|
172.217.168.65
|
||
|
transparencyreport.google.com
|
unknown
|
||
|
lh3.googleusercontent.com
|
unknown
|
||
|
stats.g.doubleclick.net
|
unknown
|
||
|
clients2.google.com
|
unknown
|
||
|
web-dev.imgix.net
|
unknown
|
||
|
safebrowsing.google.com
|
unknown
|
There are 13 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.168.2.1
|
unknown
|
unknown
|
||
|
216.58.215.238
|
clients.l.google.com
|
United States
|
||
|
216.58.215.227
|
gstaticadssl.l.google.com
|
United States
|
||
|
142.250.203.100
|
www.google.com
|
United States
|
||
|
172.217.168.46
|
www3.l.google.com
|
United States
|
||
|
199.36.158.100
|
web.dev
|
United States
|
||
|
172.217.168.35
|
www.google.co.uk
|
United States
|
||
|
172.217.168.8
|
www-googletagmanager.l.google.com
|
United States
|
||
|
172.217.168.14
|
docs.google.com
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
151.101.14.208
|
dualstack.com.imgix.map.fastly.net
|
United States
|
||
|
108.177.126.156
|
stats.l.doubleclick.net
|
United States
|
||
|
172.217.168.86
|
i.ytimg.com
|
United States
|
||
|
172.217.168.65
|
googlehosted.l.googleusercontent.com
|
United States
|
||
|
127.0.0.1
|
unknown
|
unknown
|
||
|
142.250.203.109
|
accounts.google.com
|
United States
|
There are 6 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\ActiveMovie\devenum 64-bit
|
Version
|
There are 34 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
1B554220000
|
remote allocation
|
page read and write
|
||
|
7A0417F000
|
stack
|
page read and write
|
||
|
2B74A313000
|
heap
|
page read and write
|
||
|
7A0477A000
|
stack
|
page read and write
|
||
|
165E2B02000
|
heap
|
page read and write
|
||
|
7A0497F000
|
stack
|
page read and write
|
||
|
1B554230000
|
trusted library allocation
|
page read and write
|
||
|
2B74A27A000
|
heap
|
page read and write
|
||
|
CC896FE000
|
stack
|
page read and write
|
||
|
1B54F313000
|
heap
|
page read and write
|
||
|
285D928A000
|
heap
|
page read and write
|
||
|
165E2B13000
|
heap
|
page read and write
|
||
|
24E15C3A000
|
heap
|
page read and write
|
||
|
1B553F06000
|
heap
|
page read and write
|
||
|
CC07D7E000
|
stack
|
page read and write
|
||
|
4D7A47F000
|
stack
|
page read and write
|
||
|
8FBB07D000
|
stack
|
page read and write
|
||
|
207F345C000
|
heap
|
page read and write
|
||
|
8FBADDE000
|
stack
|
page read and write
|
||
|
1B54FD90000
|
trusted library allocation
|
page read and write
|
||
|
DAA0877000
|
stack
|
page read and write
|
||
|
165E2A02000
|
heap
|
page read and write
|
||
|
1B54EA70000
|
heap
|
page read and write
|
||
|
1B54F359000
|
heap
|
page read and write
|
||
|
DAA0A7E000
|
stack
|
page read and write
|
||
|
1B553DD1000
|
trusted library allocation
|
page read and write
|
||
|
8FBB6FD000
|
stack
|
page read and write
|
||
|
1B54EA5A000
|
heap
|
page read and write
|
||
|
207F3425000
|
heap
|
page read and write
|
||
|
CC082FD000
|
stack
|
page read and write
|
||
|
7A0487D000
|
stack
|
page read and write
|
||
|
24E15C61000
|
heap
|
page read and write
|
||
|
15A26800000
|
heap
|
page read and write
|
||
|
2B74A262000
|
heap
|
page read and write
|
||
|
24E15C4B000
|
heap
|
page read and write
|
||
|
1B54EA79000
|
heap
|
page read and write
|
||
|
4D7A67E000
|
stack
|
page read and write
|
||
|
165E2870000
|
heap
|
page read and write
|
||
|
165E28E0000
|
heap
|
page read and write
|
||
|
1B54F358000
|
heap
|
page read and write
|
||
|
2B74AA02000
|
trusted library allocation
|
page read and write
|
||
|
24E15C30000
|
heap
|
page read and write
|
||
|
1B54F1C0000
|
trusted library allocation
|
page read and write
|
||
|
1B554190000
|
trusted library allocation
|
page read and write
|
||
|
1B54FA20000
|
trusted library section
|
page readonly
|
||
|
1B54F401000
|
trusted library allocation
|
page read and write
|
||
|
1B54F300000
|
heap
|
page read and write
|
||
|
8FBB2FF000
|
stack
|
page read and write
|
||
|
1B553EAB000
|
heap
|
page read and write
|
||
|
1B54F215000
|
heap
|
page read and write
|
||
|
1B54E800000
|
heap
|
page read and write
|
||
|
24E15C32000
|
heap
|
page read and write
|
||
|
DAA047B000
|
stack
|
page read and write
|
||
|
207F3400000
|
heap
|
page read and write
|
||
|
285D926C000
|
heap
|
page read and write
|
||
|
7A0437B000
|
stack
|
page read and write
|
||
|
24E15C13000
|
heap
|
page read and write
|
||
|
15A26856000
|
heap
|
page read and write
|
||
|
1B54F202000
|
heap
|
page read and write
|
||
|
1B553DC0000
|
trusted library allocation
|
page read and write
|
||
|
15A265B0000
|
heap
|
page read and write
|
||
|
1B54F318000
|
heap
|
page read and write
|
||
|
2B74A23C000
|
heap
|
page read and write
|
||
|
2B74A200000
|
heap
|
page read and write
|
||
|
1B554220000
|
remote allocation
|
page read and write
|
||
|
4C2787B000
|
stack
|
page read and write
|
||
|
165E2A3E000
|
heap
|
page read and write
|
||
|
15A26620000
|
heap
|
page read and write
|
||
|
DAA077B000
|
stack
|
page read and write
|
||
|
8FBB8FC000
|
stack
|
page read and write
|
||
|
1B554220000
|
remote allocation
|
page read and write
|
||
|
1B553F09000
|
heap
|
page read and write
|
||
|
1B553E48000
|
heap
|
page read and write
|
||
|
1B54F359000
|
heap
|
page read and write
|
||
|
1B54E9D1000
|
trusted library allocation
|
page read and write
|
||
|
1B54F39A000
|
heap
|
page read and write
|
||
|
CC891AE000
|
stack
|
page read and write
|
||
|
1B553EF8000
|
heap
|
page read and write
|
||
|
CC0817D000
|
stack
|
page read and write
|
||
|
24E15C45000
|
heap
|
page read and write
|
||
|
24E15C44000
|
heap
|
page read and write
|
||
|
2B74A202000
|
heap
|
page read and write
|
||
|
1B54EB02000
|
heap
|
page read and write
|
||
|
1B553DD0000
|
trusted library allocation
|
page read and write
|
||
|
2B74A180000
|
heap
|
page read and write
|
||
|
285D9070000
|
heap
|
page read and write
|
||
|
1B5541E0000
|
trusted library allocation
|
page read and write
|
||
|
1B553E11000
|
heap
|
page read and write
|
||
|
1B54EB13000
|
heap
|
page read and write
|
||
|
4C2732C000
|
stack
|
page read and write
|
||
|
1B553E5E000
|
heap
|
page read and write
|
||
|
15A26864000
|
heap
|
page read and write
|
||
|
4D7A37F000
|
stack
|
page read and write
|
||
|
285D9313000
|
heap
|
page read and write
|
||
|
1B54FA00000
|
trusted library section
|
page readonly
|
||
|
2B74A120000
|
heap
|
page read and write
|
||
|
CC083FF000
|
stack
|
page read and write
|
||
|
1B553E43000
|
heap
|
page read and write
|
||
|
1B553E9E000
|
heap
|
page read and write
|
||
|
2B74A260000
|
heap
|
page read and write
|
||
|
207F39C0000
|
remote allocation
|
page read and write
|
||
|
15A26902000
|
heap
|
page read and write
|
||
|
1B554124000
|
trusted library allocation
|
page read and write
|
||
|
207F31C0000
|
heap
|
page read and write
|
||
|
4C273AE000
|
stack
|
page read and write
|
||
|
24E15C6C000
|
heap
|
page read and write
|
||
|
7A04279000
|
stack
|
page read and write
|
||
|
8FBB17C000
|
stack
|
page read and write
|
||
|
165E3202000
|
trusted library allocation
|
page read and write
|
||
|
24E15C40000
|
heap
|
page read and write
|
||
|
CC0807E000
|
stack
|
page read and write
|
||
|
207F31D0000
|
heap
|
page read and write
|
||
|
285D9010000
|
heap
|
page read and write
|
||
|
1B54F318000
|
heap
|
page read and write
|
||
|
285D9229000
|
heap
|
page read and write
|
||
|
8FBB57D000
|
stack
|
page read and write
|
||
|
CC07EFE000
|
stack
|
page read and write
|
||
|
2B74A28B000
|
heap
|
page read and write
|
||
|
7A0457F000
|
stack
|
page read and write
|
||
|
24E15C3D000
|
heap
|
page read and write
|
||
|
4D799AE000
|
stack
|
page read and write
|
||
|
1B553E00000
|
heap
|
page read and write
|
||
|
15A2687F000
|
heap
|
page read and write
|
||
|
207F343D000
|
heap
|
page read and write
|
||
|
1B54EA29000
|
heap
|
page read and write
|
||
|
1B553DF0000
|
trusted library allocation
|
page read and write
|
||
|
1B54FA10000
|
trusted library section
|
page readonly
|
||
|
24E16190000
|
trusted library allocation
|
page read and write
|
||
|
207F3990000
|
trusted library allocation
|
page read and write
|
||
|
24E15C7F000
|
heap
|
page read and write
|
||
|
285D92C4000
|
heap
|
page read and write
|
||
|
24E15C00000
|
heap
|
page read and write
|
||
|
1B553EA0000
|
heap
|
page read and write
|
||
|
1B553F02000
|
heap
|
page read and write
|
||
|
2B74A213000
|
heap
|
page read and write
|
||
|
285D92E2000
|
heap
|
page read and write
|
||
|
15A26828000
|
heap
|
page read and write
|
||
|
1B554108000
|
trusted library allocation
|
page read and write
|
||
|
285D9170000
|
trusted library allocation
|
page read and write
|
||
|
1B554100000
|
trusted library allocation
|
page read and write
|
||
|
285D92CE000
|
heap
|
page read and write
|
||
|
24E15C29000
|
heap
|
page read and write
|
||
|
1B54EA13000
|
heap
|
page read and write
|
||
|
CC081FE000
|
stack
|
page read and write
|
||
|
24E159D0000
|
heap
|
page read and write
|
||
|
7A045FF000
|
stack
|
page read and write
|
||
|
1B554100000
|
trusted library allocation
|
page read and write
|
||
|
24E15C60000
|
heap
|
page read and write
|
||
|
4D7A17D000
|
stack
|
page read and write
|
||
|
24E15C7B000
|
heap
|
page read and write
|
||
|
4C2767E000
|
stack
|
page read and write
|
||
|
1B554200000
|
trusted library allocation
|
page read and write
|
||
|
1B54F318000
|
heap
|
page read and write
|
||
|
1B54E970000
|
trusted library section
|
page read and write
|
||
|
2B74A252000
|
heap
|
page read and write
|
||
|
24E15C39000
|
heap
|
page read and write
|
||
|
1B553ED8000
|
heap
|
page read and write
|
||
|
165E2A00000
|
heap
|
page read and write
|
||
|
1B54F9F0000
|
trusted library section
|
page readonly
|
||
|
207F3429000
|
heap
|
page read and write
|
||
|
24E15C6E000
|
heap
|
page read and write
|
||
|
1B554210000
|
trusted library allocation
|
page read and write
|
||
|
1B54F810000
|
trusted library allocation
|
page read and write
|
||
|
4D7A57F000
|
stack
|
page read and write
|
||
|
1B54F302000
|
heap
|
page read and write
|
||
|
4D7A27E000
|
stack
|
page read and write
|
||
|
1B55410E000
|
trusted library allocation
|
page read and write
|
||
|
285D9000000
|
heap
|
page read and write
|
||
|
7A03C7C000
|
stack
|
page read and write
|
||
|
8FBB9FF000
|
stack
|
page read and write
|
||
|
24E16202000
|
trusted library allocation
|
page read and write
|
||
|
1B54FA40000
|
trusted library section
|
page readonly
|
||
|
4C27A7E000
|
stack
|
page read and write
|
||
|
1B54E9F3000
|
trusted library allocation
|
page read and write
|
||
|
1B553DC0000
|
trusted library allocation
|
page read and write
|
||
|
CC895FE000
|
stack
|
page read and write
|
||
|
207F3402000
|
heap
|
page read and write
|
||
|
165E2A29000
|
heap
|
page read and write
|
||
|
2B74A1B0000
|
trusted library allocation
|
page read and write
|
||
|
24E15D02000
|
heap
|
page read and write
|
||
|
1B54EA8D000
|
heap
|
page read and write
|
||
|
207F39C0000
|
remote allocation
|
page read and write
|
||
|
207F39C0000
|
remote allocation
|
page read and write
|
||
|
CC07F7E000
|
stack
|
page read and write
|
||
|
7A043FF000
|
stack
|
page read and write
|
||
|
1B54EA3F000
|
heap
|
page read and write
|
||
|
1B553F07000
|
heap
|
page read and write
|
||
|
2B74A110000
|
heap
|
page read and write
|
||
|
15A26913000
|
heap
|
page read and write
|
||
|
DAA04FE000
|
stack
|
page read and write
|
||
|
285D9200000
|
heap
|
page read and write
|
||
|
1B553EF6000
|
heap
|
page read and write
|
||
|
15A26E02000
|
trusted library allocation
|
page read and write
|
||
|
1B553DD0000
|
trusted library allocation
|
page read and write
|
||
|
1B553E2D000
|
heap
|
page read and write
|
||
|
1B54EA75000
|
heap
|
page read and write
|
||
|
165E2880000
|
heap
|
page read and write
|
||
|
1B553E21000
|
heap
|
page read and write
|
||
|
1B554330000
|
trusted library allocation
|
page read and write
|
||
|
2B74A27E000
|
heap
|
page read and write
|
||
|
24E15C67000
|
heap
|
page read and write
|
||
|
24E15C49000
|
heap
|
page read and write
|
||
|
15A26877000
|
heap
|
page read and write
|
||
|
CC07C7B000
|
stack
|
page read and write
|
||
|
15A265C0000
|
heap
|
page read and write
|
||
|
15A26879000
|
heap
|
page read and write
|
||
|
15A26900000
|
heap
|
page read and write
|
||
|
15A26802000
|
heap
|
page read and write
|
||
|
165E29E0000
|
trusted library allocation
|
page read and write
|
||
|
285D9A02000
|
heap
|
page read and write
|
||
|
1B54F910000
|
trusted library allocation
|
page read and write
|
||
|
1B554104000
|
trusted library allocation
|
page read and write
|
||
|
1B54E860000
|
heap
|
page read and write
|
||
|
4D79F7D000
|
stack
|
page read and write
|
||
|
24E159C0000
|
heap
|
page read and write
|
||
|
7A03F7A000
|
stack
|
page read and write
|
||
|
285D92BD000
|
heap
|
page read and write
|
||
|
4D79D7B000
|
stack
|
page read and write
|
||
|
2B74A27F000
|
heap
|
page read and write
|
||
|
1B553EF9000
|
heap
|
page read and write
|
||
|
1B553F02000
|
heap
|
page read and write
|
||
|
8FBAD5C000
|
stack
|
page read and write
|
||
|
7A0407B000
|
stack
|
page read and write
|
||
|
15A26813000
|
heap
|
page read and write
|
||
|
1B54F700000
|
trusted library allocation
|
page read and write
|
||
|
1B54EAA1000
|
heap
|
page read and write
|
||
|
207F3413000
|
heap
|
page read and write
|
||
|
4D79C7D000
|
stack
|
page read and write
|
||
|
1B54E960000
|
trusted library allocation
|
page read and write
|
||
|
24E15C42000
|
heap
|
page read and write
|
||
|
1B554121000
|
trusted library allocation
|
page read and write
|
||
|
24E15C4E000
|
heap
|
page read and write
|
||
|
2B74A300000
|
heap
|
page read and write
|
||
|
DAA067C000
|
stack
|
page read and write
|
||
|
165E2A77000
|
heap
|
page read and write
|
||
|
24E15A30000
|
heap
|
page read and write
|
||
|
1B553ECD000
|
heap
|
page read and write
|
||
|
285D9302000
|
heap
|
page read and write
|
||
|
1B553EF6000
|
heap
|
page read and write
|
||
|
1B553EDD000
|
heap
|
page read and write
|
||
|
4D79E7D000
|
stack
|
page read and write
|
||
|
1B54E9F0000
|
trusted library allocation
|
page read and write
|
||
|
DAA097E000
|
stack
|
page read and write
|
||
|
1B54EAFD000
|
heap
|
page read and write
|
||
|
165E2A66000
|
heap
|
page read and write
|
||
|
24E15C78000
|
heap
|
page read and write
|
||
|
CC07DFE000
|
stack
|
page read and write
|
||
|
8FBB7FF000
|
stack
|
page read and write
|
||
|
2B74A308000
|
heap
|
page read and write
|
||
|
165E2A13000
|
heap
|
page read and write
|
||
|
CC897FE000
|
stack
|
page read and write
|
||
|
1B54EA94000
|
heap
|
page read and write
|
||
|
2B74A273000
|
heap
|
page read and write
|
||
|
165E2A70000
|
heap
|
page read and write
|
||
|
1B5541F0000
|
trusted library allocation
|
page read and write
|
||
|
1B5541D0000
|
trusted library allocation
|
page read and write
|
||
|
1B54F200000
|
heap
|
page read and write
|
||
|
24E15C48000
|
heap
|
page read and write
|
||
|
207F3230000
|
heap
|
page read and write
|
||
|
7A04AFD000
|
stack
|
page read and write
|
||
|
CC898FE000
|
stack
|
page read and write
|
||
|
8FBB5FB000
|
stack
|
page read and write
|
||
|
285D9240000
|
heap
|
page read and write
|
||
|
24E15C41000
|
heap
|
page read and write
|
||
|
7A044FF000
|
stack
|
page read and write
|
||
|
165E2A41000
|
heap
|
page read and write
|
||
|
15A267F0000
|
trusted library allocation
|
page read and write
|
||
|
1B54FA30000
|
trusted library section
|
page readonly
|
||
|
7A049FD000
|
stack
|
page read and write
|
||
|
24E15C62000
|
heap
|
page read and write
|
||
|
7A03E78000
|
stack
|
page read and write
|
||
|
4C27B7E000
|
stack
|
page read and write
|
||
|
24E15C2D000
|
heap
|
page read and write
|
||
|
1B54F820000
|
trusted library allocation
|
page read and write
|
||
|
8FBB3FF000
|
stack
|
page read and write
|
||
|
15A2683C000
|
heap
|
page read and write
|
||
|
285D9B00000
|
heap
|
page read and write
|
||
|
CC8912C000
|
stack
|
page read and write
|
||
|
8FBB47C000
|
stack
|
page read and write
|
||
|
2B74A25C000
|
heap
|
page read and write
|
||
|
24E15C4F000
|
heap
|
page read and write
|
||
|
207F3A02000
|
trusted library allocation
|
page read and write
|
||
|
1B553DF0000
|
trusted library allocation
|
page read and write
|
||
|
24E15C6A000
|
heap
|
page read and write
|
||
|
165E2A54000
|
heap
|
page read and write
|
||
|
24E15C85000
|
heap
|
page read and write
|
||
|
2B74A267000
|
heap
|
page read and write
|
||
|
1B54EA8B000
|
heap
|
page read and write
|
||
|
CC07CFE000
|
stack
|
page read and write
|
||
|
1B553F02000
|
heap
|
page read and write
|
||
|
7A0467E000
|
stack
|
page read and write
|
||
|
1B54EA00000
|
heap
|
page read and write
|
||
|
285D9213000
|
heap
|
page read and write
|
||
|
285D9B32000
|
heap
|
page read and write
|
||
|
7A03D7F000
|
stack
|
page read and write
|
||
|
24E15C7C000
|
heap
|
page read and write
|
||
|
24E15C32000
|
heap
|
page read and write
|
||
|
207F3502000
|
heap
|
page read and write
|
||
|
7A03CFE000
|
stack
|
page read and write
|
||
|
2B74A229000
|
heap
|
page read and write
|
||
|
165E2A5B000
|
heap
|
page read and write
|
||
|
4C2797B000
|
stack
|
page read and write
|
||
|
7A0447F000
|
stack
|
page read and write
|
||
|
285D9B12000
|
heap
|
page read and write
|
||
|
4D7992C000
|
stack
|
page read and write
|
||
|
2B74A302000
|
heap
|
page read and write
|
||
|
1B553EF4000
|
heap
|
page read and write
|
||
|
4D7A07F000
|
stack
|
page read and write
|
||
|
24E15C46000
|
heap
|
page read and write
|
||
|
1B553E3B000
|
heap
|
page read and write
|
||
|
24E15C47000
|
heap
|
page read and write
|
||
|
1B54F1D0000
|
trusted library allocation
|
page read and write
|
||
|
1B54E7F0000
|
heap
|
page read and write
|
||
|
CC8947E000
|
stack
|
page read and write
|
||
|
24E15C2E000
|
heap
|
page read and write
|
||
|
DAA057E000
|
stack
|
page read and write
|
||
|
1B553EEE000
|
heap
|
page read and write
|
There are 307 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://docs.google.com/presentation/d/e/2PACX-1vQLIu1X0IVnxZJYibfHTDtGdl4umjzrNQRqM8P15_pKuHsxivDaDjKXey0w5atKnGomwg17E-2HUJIW/pub?start=false&loop=false&delayms=3000&slide=id.p
|
||
|
https://www.google.com/url?q=https://accounts.appsgsuite-tunneldrive.tk/eEBrdljc&sa=D&source=editors&ust=1653677947346759&usg=AOvVaw3QU4sK3cAcPp4ymAmsc8mY
|
||
|
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdCiQETAAAAADLZgnQbEQ8zAGa1eL7YA7TtN4N1&co=aHR0cHM6Ly9zYWZlYnJvd3NpbmcuZ29vZ2xlLmNvbTo0NDM.&hl=en&v=M-QqaF9xk6BpjLH22uHZRhXt&size=normal&cb=cg7d3oeuaspl
|
||
|
https://safebrowsing.google.com/safebrowsing/report_error/?tpl=websearch&url=https://accounts.appsgsuite-tunneldrive.tk/eEBrdljc&hl=en
|
||
|
https://www.google.com/recaptcha/api2/bframe?hl=en&v=M-QqaF9xk6BpjLH22uHZRhXt&k=6LdCiQETAAAAADLZgnQbEQ8zAGa1eL7YA7TtN4N1
|
||
|
https://transparencyreport.google.com/safe-browsing/overview
|
||
|
https://transparencyreport.google.com/
|
||
|
https://transparencyreport.google.com/safe-browsing/search
|
||
|
https://web.dev/hacked/
|