IOC Report
https://telstranetworkinduction-physicalsecurity.com.au/

loading gifFilesProcessesURLsDomainsIPsRegistryMemdumpsDOM2015105010010Label

Files

File Path
Type
Category
Malicious
Download
C:\Users\user\AppData\Local\Google\Chrome\User Data\278c6f7a-c12f-4485-8156-308269b6f73a.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\3161234a-0ec5-4cf7-a661-df86b00593f0.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\569ce035-ed30-4c4a-9e7f-bf1f89fc54f1.tmp
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\741b85e6-a2ab-42a0-92db-4fe6a0da3382.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\7eeb5025-dbbc-4af3-849d-14a590021281.tmp
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\9be6b85c-eba1-4f5c-96d5-c482b8e56f61.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\182c955e-0d85-4501-8c7f-2a7f9c991b50.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2ba7186b-168d-447c-835b-e9ea98eb94dc.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\33945c12-fb99-4934-b9b8-99d1ef0eb4cc.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\63709bcc-8d0d-4a34-a989-27cd87787f8b.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\63f3b0c1-e84b-4a2c-a8b3-1cc2f21c6584.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6744114c-1a14-44f3-9eb8-583452897bcb.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6c15093e-3935-4ccd-8db8-2dee6ab24610.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6f711c4d-49d6-46be-9f45-6bf4db7842e2.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
zlib compressed data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\68a5e59a-cbda-431f-9529-d59bca6ac1fc.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent State (copy)
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity (copy)
ASCII text, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b838d29d-fb38-4e08-8d3d-bf3af3f9c18d.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\cd05f45f-008c-43c1-a6e0-4b02a3a0fd4e.tmp
ASCII text, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\e821b671-8a14-444e-a7e5-9bc3e3550f15.tmp
ASCII text, with very long lines, with no line terminators
modified
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ef1a0b38-c4d4-4507-a771-6997509d7ae5.tmp
very short file (no magic)
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
ASCII text, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\a6717e08-5a36-4978-aa22-46e3d786b148.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\f990afa2-7de1-437c-9c51-2c7c016aeea3.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\fa99ebe4-1bac-4198-9509-0c9383dc19ec.tmp
SysEx File -
dropped
C:\Users\user\AppData\Local\Temp\c1dd7489-ff4d-44dd-9a4a-bf6464c3533f.tmp
Google Chrome extension, version 3
dropped
C:\Users\user\AppData\Local\Temp\ec06fe5d-6b86-498c-8aa4-3dcfb9d7e6b9.tmp
very short file (no magic)
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\en\messages.json
ASCII text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\en_GB\messages.json
ASCII text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\es_419\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\fil\messages.json
ASCII text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\id\messages.json
ASCII text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\nl\messages.json
ASCII text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\pt_BR\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\pt_PT\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\zh_CN\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\_metadata\verified_contents.json
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\craw_background.js
ASCII text, with very long lines
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\craw_window.js
ASCII text, with very long lines
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\css\craw_window.css
ASCII text
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\html\craw_window.html
HTML document, ASCII text
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\images\flapper.gif
GIF image data, version 89a, 30 x 30
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\images\icon_128.png
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\images\icon_16.png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\images\topbar_floating_button.png
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\images\topbar_floating_button_close.png
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\images\topbar_floating_button_hover.png
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\images\topbar_floating_button_maximize.png
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\images\topbar_floating_button_pressed.png
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\CRX_INSTALL\manifest.json
ASCII text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir3736_391705591\c1dd7489-ff4d-44dd-9a4a-bf6464c3533f.tmp
Google Chrome extension, version 3
dropped
There are 88 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "https://telstranetworkinduction-physicalsecurity.com.au/
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1516,3377873635724703385,4378803371916777391,131072 --lang=en-GB --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1932 /prefetch:8

URLs

Name
IP
Malicious
https://telstranetworkinduction-physicalsecurity.com.au/
malicious
https://telstranetworkinduction-physicalsecurity.com.au/css/bootstrap.css
27.50.86.134
 malicious
https://telstranetworkinduction-physicalsecurity.com.au/images/courceimg.png
27.50.86.134
 malicious
https://telstranetworkinduction-physicalsecurity.com.au/?p=forgot
malicious
https://telstranetworkinduction-physicalsecurity.com.au/2
unknown
 malicious
https://telstranetworkinduction-physicalsecurity.com.au/?p=about&h=about
malicious
https://dev.telstranetworkinduction-physicalsecurity.com.au/images/telstralogo.PNG
27.50.86.134
 malicious
https://telstranetworkinduction-physicalsecurity.com.au/css/telstra.css
27.50.86.134
 malicious
https://telstranetworkinduction-physicalsecurity.com.au/images/ajax-loader.gif
27.50.86.134
 malicious
https://telstranetworkinduction-physicalsecurity.com.au/
27.50.86.134
 malicious
https://telstranetworkinduction-physicalsecurity.com.au/css/style.css
27.50.86.134
 malicious
https://telstranetworkinduction-physicalsecurity.com.au/images/registerimg.png
27.50.86.134
 malicious
https://telstranetworkinduction-physicalsecurity.com.au/images/ticked.PNG
27.50.86.134
 malicious
https://telstranetworkinduction-physicalsecurity.com.au/?p=register
27.50.86.134
 malicious
https://telstranetworkinduction-physicalsecurity.com.au/images/bg_quick_links.gif
27.50.86.134
 malicious
https://dev.telstranetworkinduction-physicalsecurity.com.au/images/elogo.PNG
27.50.86.134
 malicious
https://telstranetworkinduction-physicalsecurity.com.au/images/right_box_top_corner.jpg
27.50.86.134
 malicious
https://telstranetworkinduction-physicalsecurity.com.au/?p=about&h=about
27.50.86.134
 malicious
https://telstranetworkinduction-physicalsecurity.com.au/images/payimg.png
27.50.86.134
 malicious
https://telstranetworkinduction-physicalsecurity.com.au/?p=about&h=help
malicious
https://simplyelearning.com.au/
malicious
https://static.xx.fbcdn.net/rsrc.php/v3/yM/r/C0teK_h3UC4.js?_nc_x=Ij3Wp8lg5Kz
157.240.221.16
https://www.facebook.com/common/cavalry_endpoint.php?t_cstart=1655173251738&t_start=1655173251738&t_domcontent=1655173251754&t_layout=1655173252718&t_onload=1655173252718&t_paint=1655173252718&t_creport=1655173252718&t_tti=1655173251754&lid=7108914988291767963-0
31.13.92.36
https://static.xx.fbcdn.net/rsrc.php/v3i7244/ys/l/en_GB/Zt3iMaoIOwM.js?_nc_x=Ij3Wp8lg5Kz
157.240.221.16
https://simplyelearning.com.au/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.5
202.131.88.121
https://simplyelearning.com.au/wp-content/themes/dt-the7/css/compatibility/elementor/the7-vertical-menu-widget.min.css?ver=10.6.0
202.131.88.121
https://static.xx.fbcdn.net/rsrc.php/v3/yg/l/0,cross/y8lT2HgUMG8.css?_nc_x=Ij3Wp8lg5Kz
157.240.221.16
https://simplyelearning.com.au/wp-content/cache/autoptimize/css/autoptimize_single_f4d1d86a3dd5580e6a22116128adc5e1.css?ver=7321170c0c6f
202.131.88.121
https://simplyelearning.com.au/wp-content/themes/dt-the7/css/compatibility/elementor/the7-carousel-text-and-icon-widget.min.css?ver=10.6.0
202.131.88.121
https://simplyelearning.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
202.131.88.121
https://www.facebook.com/v6.0/plugins/customer_chat/bubble
31.13.92.36
https://www.facebook.com/common/cavalry_endpoint.php?t_cstart=1655173252737&t_start=1655173252737&t_domcontent=1655173252782&t_layout=1655173253098&t_onload=1655173253098&t_paint=1655173253098&t_creport=1655173253098&t_tti=1655173252782&lid=7108914986634051912-0
31.13.92.36
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
unknown
https://simplyelearning.com.au/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
202.131.88.121
https://static.xx.fbcdn.net/rsrc.php/v3/y5/r/EvmWrQrbtoN.js?_nc_x=Ij3Wp8lg5Kz
157.240.221.16
https://simplyelearning.com.au/wp-content/plugins/elementor/assets/js/image-carousel.db284b09c0f8a8f1c44d.bundle.min.js
202.131.88.121
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
unknown
https://simplyelearning.com.au/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1
202.131.88.121
https://simplyelearning.com.au/wp-content/plugins/elementor-pro/assets/js/animated-headline.fc85cfa4b6ff36a0d396.bundle.min.js
202.131.88.121
https://simplyelearning.com.au/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.5.3
202.131.88.121
https://www.facebook.com/plugins/chat/tab_impression_logging/?page_id=243184549136839&event_name=tab_impression&request_id=d882bf95-aee0-4742-aded-aec640bcea0c&plugin_interface=desktop&user_is_logged_in=false&tab_name=plugin_icon&loading_time=79&client_loading_time=11430&debug_data=%7B%22fromTime%22%3A1655173252723%2C%22now%22%3A1655173252801.685%2C%22loadingTime%22%3A79%2C%22clientLoadingTime%22%3A11430%2C%22hasStorageAccess%22%3Atrue%2C%22screenSize%22%3A%7B%22width%22%3A1280%2C%22height%22%3A1024%2C%22size%22%3A%221280x1024%22%7D%7D&event_timestamp=1655173252802&log_id=98046a23-2c8c-4d43-bac5-dc4c028039e5&server_loading_time=10411&is_new_welcome_view=false&entry_point_icon=messenger_icon&entry_point_label=chat
31.13.92.36
https://simplyelearning.com.au/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
202.131.88.121
https://simplyelearning.com.au/wp-includes/css/dist/block-library/style.min.css?ver=6.0
202.131.88.121
https://payments.google.com/payments/v4/js/integrator.js
unknown
https://simplyelearning.com.au/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
202.131.88.121
https://simplyelearning.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
202.131.88.121
https://simplyelearning.com.au/wp-content/uploads/2022/03/favicon-200x200.png
202.131.88.121
https://static.xx.fbcdn.net/rsrc.php/v3/yF/l/0,cross/FPdNN1TK3wJ.css?_nc_x=Ij3Wp8lg5Kz
157.240.221.16
https://static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
157.240.221.16
https://simplyelearning.com.au/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.5.1
202.131.88.121
https://simplyelearning.com.au/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
202.131.88.121
https://www.google.com/images/dot2.gif
unknown
https://www.facebook.com/plugins/chat/tab_impression_logging/?page_id=243184549136839&event_name=tab_impression&request_id=d882bf95-aee0-4742-aded-aec640bcea0c&plugin_interface=desktop&user_is_logged_in=false&tab_name=bubble&loading_time=9028&client_loading_time=10047&debug_data=%7B%22fromTime%22%3A1655173242391%2C%22now%22%3A1655173251419.245%2C%22loadingTime%22%3A9028%2C%22clientLoadingTime%22%3A10047%2C%22hasStorageAccess%22%3Atrue%2C%22screenSize%22%3A%7B%22width%22%3A1280%2C%22height%22%3A1024%2C%22size%22%3A%221280x1024%22%7D%7D&event_timestamp=1655173251420&is_new_welcome_view=false
31.13.92.36
https://static.xx.fbcdn.net/rsrc.php/v3/ye/r/d2fLL8mULMc.js?_nc_x=Ij3Wp8lg5Kz
157.240.221.16
https://simplyelearning.com.au/wp-content/cache/autoptimize/css/autoptimize_single_ea0c1eab45bd4c26df5f761e6f573b82.css?ver=7321170c0c6f
202.131.88.121
https://simplyelearning.com.au/wp-content/themes/dt-the7/js/compatibility/elementor/sticky-effects.min.js?ver=10.6.0
202.131.88.121
https://static.xx.fbcdn.net/rsrc.php/v3iGdy4/yI/l/en_US/GrJxbKOaNYi.js?_nc_x=Ij3Wp8lg5Kz
157.240.221.16
https://simplyelearning.com.au/wp-content/uploads/elementor/css/custom-pro-frontend.min.css?ver=1655165084
202.131.88.121
https://simplyelearning.com.au/wp-content/themes/dt-the7/js/main.min.js?ver=10.6.0
202.131.88.121
https://connect.facebook.net/en_US/sdk/xfbml.customerchat.js
157.240.17.15
https://www.google.com/images/cleardot.gif
unknown
https://simplyelearning.com.au/wp-content/themes/dt-the7/css/compatibility/elementor/the7-icon-box-grid-widget.min.css?ver=10.6.0
202.131.88.121
https://play.google.com
unknown
https://simplyelearning.com.au/
202.131.88.121
https://simplyelearning.com.au/wp-content/plugins/elementor/assets/js/counter.02cef29c589e742d4c8c.bundle.min.js
202.131.88.121
https://simplyelearning.com.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
202.131.88.121
https://simplyelearning.com.au/wp-content/cache/autoptimize/css/autoptimize_single_317498ea67ee5dde6b7ccc1403d3c089.css?ver=1655165084
202.131.88.121
https://static.xx.fbcdn.net/rsrc.php/v3/yL/r/RojAvN2Poq8.js?_nc_x=Ij3Wp8lg5Kz
157.240.221.16
https://simplyelearning.com.au/wp-content/plugins/autoptimize/classes/external/js/lazysizes.min.js?ao_version=3.0.4
202.131.88.121
https://simplyelearning.com.au/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
202.131.88.121
https://static.xx.fbcdn.net/rsrc.php/v3iEpO4/y1/l/en_US/3ay7UdnwSLD.js?_nc_x=Ij3Wp8lg5Kz
157.240.221.16
https://accounts.google.com/MergeSession
unknown
https://simplyelearning.com.au/wp-content/themes/dt-the7/lib/custom-scrollbar/custom-scrollbar.min.css?ver=10.6.0
202.131.88.121
https://static.xx.fbcdn.net/rsrc.php/v3/y2/r/tvir9mb6wmu.js?_nc_x=Ij3Wp8lg5Kz
157.240.221.16
https://simplyelearning.com.au/wp-content/uploads/elementor/css/custom-frontend.min.css?ver=1655165084
202.131.88.121
https://simplyelearning.com.au/wp-content/cache/autoptimize/css/autoptimize_single_87919152e480d34bc2ab66090bb82746.css?ver=1652052094
202.131.88.121
https://apis.google.com
unknown
https://simplyelearning.com.au/wp-content/cache/autoptimize/css/autoptimize_single_3e33b04359fed8e2c408d96538a79139.css?ver=1655165085
202.131.88.121
https://simplyelearning.com.au/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.5.1
202.131.88.121
https://dev.simplyelearning.com.au/wp-content/uploads/2022/03/background-01-01-01-01.png
202.131.88.121
https://simplyelearning.com.au/wp-content/cache/autoptimize/js/autoptimize_single_cfb428c02811f0cbe515d5f3dca61de6.js?ver=5.5.6.1
202.131.88.121
https://www.google.com/intl/en-US/chrome/blank.html
unknown
https://simplyelearning.com.au/wp-content/cache/autoptimize/css/autoptimize_single_e6fae855021a88a0067fcc58121c594f.css?ver=5.5.6.1
202.131.88.121
https://simplyelearning.com.au/wp-content/cache/autoptimize/css/autoptimize_single_aba98a57d5a9f1ff05fc0de6e650650a.css?ver=7321170c0c6f
202.131.88.121
https://simplyelearning.com.au/wp-content/cache/autoptimize/js/autoptimize_single_d9acc39bb3131ff6a72a64a32faf8b07.js?ver=1652052094
202.131.88.121
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
172.217.168.45
https://simplyelearning.com.au/wp-content/themes/dt-the7/lib/custom-scrollbar/custom-scrollbar.min.js?ver=10.6.0
202.131.88.121
https://static.xx.fbcdn.net/rsrc.php/v3/yK/r/XBLnClJ8ggF.js?_nc_x=Ij3Wp8lg5Kz
157.240.221.16
https://simplyelearning.com.au/wp-content/plugins/elementor/assets/js/text-editor.289ae80d76f0c5abea44.bundle.min.js
202.131.88.121
https://simplyelearning.com.au/wp-content/themes/dt-the7/fonts/FontAwesome/css/all.min.css?ver=10.6.0
202.131.88.121
https://simplyelearning.com.au/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.5.1
202.131.88.121
https://simplyelearning.com.au/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.5.1
202.131.88.121
https://simplyelearning.com.au/wp-content/themes/dt-the7/lib/jquery-sticky/jquery-sticky.min.js?ver=10.6.0
202.131.88.121
https://simplyelearning.com.au/wp-content/themes/dt-the7/css/main.min.css?ver=10.6.0
202.131.88.121
https://simplyelearning.com.au/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1
202.131.88.121
https://static.xx.fbcdn.net/rsrc.php/v3iEBX4/yI/l/en_US/nGwZIX76ikc.js?_nc_x=Ij3Wp8lg5Kz
157.240.221.16
https://simplyelearning.com.au/wp-content/cache/autoptimize/css/autoptimize_single_aae59dc8fdd045adaecd8e98fe3861d0.css?ver=7.4.3
202.131.88.121
http://www.simplyelearning.com.au/
202.131.88.121
https://simplyelearning.com.au/wp-content/uploads/2022/04/white-cr-logo-dsk.svg
202.131.88.121
https://simplyelearning.com.au/wp-content/cache/autoptimize/css/autoptimize_single_64303d03dfa4215f14030861b211fa57.css?ver=1655165085
202.131.88.121
https://www.facebook.com/v6.0/plugins/customer_chat/bubble
There are 90 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
gstaticadssl.l.google.com
172.217.168.3
star-mini.c10r.facebook.com
31.13.92.36
scontent.xx.fbcdn.net
157.240.17.15
accounts.google.com
172.217.168.45
www-google-analytics.l.google.com
216.58.215.238
www-googletagmanager.l.google.com
216.58.215.232
dev.simplyelearning.com.au
202.131.88.121
telstranetworkinduction-physicalsecurity.com.au
27.50.86.134
simplyelearning.com.au
202.131.88.121
clients.l.google.com
142.250.203.110
s.w.org
192.0.77.48
dev.telstranetworkinduction-physicalsecurity.com.au
27.50.86.134
www.facebook.com
unknown
clients2.google.com
unknown
www.simplyelearning.com.au
unknown
connect.facebook.net
unknown
static.xx.fbcdn.net
unknown
There are 7 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
192.168.2.1
unknown
unknown
31.13.92.36
star-mini.c10r.facebook.com
Ireland
142.250.203.110
clients.l.google.com
United States
27.50.86.134
telstranetworkinduction-physicalsecurity.com.au
Australia
202.131.88.121
dev.simplyelearning.com.au
Australia
216.58.215.232
www-googletagmanager.l.google.com
United States
157.240.221.16
unknown
United States
157.240.17.15
scontent.xx.fbcdn.net
United States
172.217.168.45
accounts.google.com
United States
239.255.255.250
unknown
Reserved
172.217.168.3
gstaticadssl.l.google.com
United States
127.0.0.1
unknown
unknown
There are 2 hidden IPs, click here to show them.

Registry

Path
Value
Malicious
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
ahfgeienlihckogmohjhadlkjgocpleb
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
gdaefkejpgkiemlaofpalmlakkmbjdnl
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
gfdkimpbcpahaombhbimeihdjnejgicl
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
kmendfapggjehodndflmmgagdbamhnfd
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
mfehgcgbbipciphmccgaenjidiccnmng
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
mhjfbmdgcfjbbpaeojofohoefgiehjai
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
neajdppkdcdipfabeoofebfddakdcjhd
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nkeimhogjdpnpccoofpliimaahmaaome
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
prefs.preference_reset_time
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
S-1-5-21-3853321935-2125563209-4053062332-1002
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
gfdkimpbcpahaombhbimeihdjnejgicl
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nmmhkkegccagdldgiimedpiccmgmieda
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
pkedcjkdefgpdelpbcmbmeomcjbeemfm
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
dr
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
software_reporter.reporting
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
module_blacklist_cache_md5_digest
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
media.storage_id_salt
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
google.services.last_account_id
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
google.services.account_id
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
software_reporter.prompt_seed
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.last_triggered_for_homepage
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
default_search_provider_data.template_url_data
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
safebrowsing.incidents_sent
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
pinned_tabs
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
search_provider_overrides
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.last_triggered_for_default_search
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
prefs.preference_reset_time
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
google.services.last_username
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
session.startup_urls
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
session.restore_on_startup
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
software_reporter.prompt_version
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.last_triggered_for_startup_urls
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.prompt_wave
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
homepage
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
homepage_is_newtabpage
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
browser.show_home_button
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
user_experience_metrics.stability.exited_cleanly
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
lastrun
There are 32 hidden registries, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
Download
BCB047B000
stack
page read and write
B8CCBFE000
stack
page read and write
1F896263000
heap
page read and write
29837A6D000
heap
page read and write
11D6F03F000
heap
page read and write
2983D034000
trusted library allocation
page read and write
10B987C000
stack
page read and write
A2D697E000
stack
page read and write
BCB08FE000
stack
page read and write
1FEF0690000
heap
page read and write
1BB64440000
heap
page read and write
1F89627B000
heap
page read and write
D5676FB000
stack
page read and write
2983CE80000
trusted library allocation
page read and write
D566DFD000
stack
page read and write
29837A9E000
heap
page read and write
1DF88602000
heap
page read and write
2983D140000
trusted library allocation
page read and write
8F9CBFD000
stack
page read and write
10B9D7F000
stack
page read and write
276D4A53000
heap
page read and write
10B9C7F000
stack
page read and write
D566D78000
stack
page read and write
1DF8A0B0000
trusted library allocation
page read and write
D5675FE000
stack
page read and write
1FEF0829000
heap
page read and write
1DF88550000
heap
page read and write
B7BE1FB000
stack
page read and write
11D6F068000
heap
page read and write
11D6F05B000
heap
page read and write
FDBE97F000
stack
page read and write
D5677FD000
stack
page read and write
BCB057E000
stack
page read and write
1F896229000
heap
page read and write
1F896247000
heap
page read and write
B7BDE7C000
stack
page read and write
29837A73000
heap
page read and write
206A2300000
heap
page read and write
8F9C1BB000
stack
page read and write
1F896200000
heap
page read and write
206A2313000
heap
page read and write
1F896239000
heap
page read and write
206A2202000
heap
page read and write
B7BE3FF000
stack
page read and write
29838313000
heap
page read and write
1FEF0913000
heap
page read and write
2983D160000
trusted library allocation
page read and write
D567A7D000
stack
page read and write
1DF88647000
heap
page read and write
29837A8C000
heap
page read and write
276D4B08000
heap
page read and write
2983D050000
trusted library allocation
page read and write
B7BE4FB000
stack
page read and write
206A2264000
heap
page read and write
2983D2E5000
heap
page read and write
206A2213000
heap
page read and write
1FEF0680000
heap
page read and write
2983D01A000
trusted library allocation
page read and write
2983D315000
heap
page read and write
1F8960C0000
heap
page read and write
FDBE5FB000
stack
page read and write
29838E70000
trusted library allocation
page read and write
2983D314000
heap
page read and write
1F896230000
heap
page read and write
FDBE47E000
stack
page read and write
29837800000
heap
page read and write
2983D2ED000
heap
page read and write
1FEF08B9000
heap
page read and write
8F9CEFF000
stack
page read and write
276D4A9F000
heap
page read and write
8F9C97C000
stack
page read and write
1BB64E02000
trusted library allocation
page read and write
BCB09FF000
stack
page read and write
1DF88657000
heap
page read and write
2983D150000
trusted library allocation
page read and write
1BB64657000
heap
page read and write
2983D22E000
heap
page read and write
2983D010000
trusted library allocation
page read and write
1F896213000
heap
page read and write
10B967B000
stack
page read and write
11D6F002000
heap
page read and write
1DF88646000
heap
page read and write
2983D040000
trusted library allocation
page read and write
D5678FF000
stack
page read and write
D56737E000
stack
page read and write
2983D170000
remote allocation
page read and write
B8CCCFE000
stack
page read and write
2983D170000
trusted library allocation
page read and write
D5670FF000
stack
page read and write
1F896246000
heap
page read and write
2983CEF0000
trusted library allocation
page read and write
206A20E0000
heap
page read and write
1FEF0844000
heap
page read and write
2983D276000
heap
page read and write
29838B10000
trusted library section
page readonly
2983D4A0000
trusted library allocation
page read and write
A2D66FE000
stack
page read and write
B8CC55B000
stack
page read and write
B8CD0FC000
stack
page read and write
11D6F802000
trusted library allocation
page read and write
B8CC97C000
stack
page read and write
1F896050000
heap
page read and write
2983D030000
trusted library allocation
page read and write
1DF88560000
heap
page read and write
2983D0E0000
trusted library allocation
page read and write
29838358000
heap
page read and write
29838E63000
trusted library allocation
page read and write
B8CCAFE000
stack
page read and write
1FEF08C4000
heap
page read and write
2983D160000
trusted library allocation
page read and write
276D4A9C000
heap
page read and write
206A2228000
heap
page read and write
2983D24C000
heap
page read and write
276D4A2A000
heap
page read and write
1DF88718000
heap
page read and write
29838B00000
trusted library section
page readonly
276D4A00000
heap
page read and write
10B9F7E000
stack
page read and write
29838215000
heap
page read and write
2983D300000
heap
page read and write
1FEF0813000
heap
page read and write
206A2251000
heap
page read and write
1FEF0869000
heap
page read and write
10B977F000
stack
page read and write
10B997E000
stack
page read and write
FDBE77F000
stack
page read and write
276D4A49000
heap
page read and write
1F896265000
heap
page read and write
298379E1000
trusted library allocation
page read and write
8F9CDFC000
stack
page read and write
1DF88702000
heap
page read and write
FDBE877000
stack
page read and write
2983D180000
trusted library allocation
page read and write
206A2268000
heap
page read and write
29838AE0000
trusted library section
page readonly
D5673FE000
stack
page read and write
1F896302000
heap
page read and write
2983CEB0000
trusted library allocation
page read and write
276D4B00000
heap
page read and write
1FEF1132000
heap
page read and write
276D4880000
heap
page read and write
206A227B000
heap
page read and write
FDBEA7F000
stack
page read and write
11D6F000000
heap
page read and write
1F896278000
heap
page read and write
2983D2F8000
heap
page read and write
206A223C000
heap
page read and write
29838318000
heap
page read and write
1DF88688000
heap
page read and write
29838359000
heap
page read and write
276D5202000
trusted library allocation
page read and write
2983D490000
trusted library allocation
page read and write
2983D313000
heap
page read and write
D566FFA000
stack
page read and write
11D6F078000
heap
page read and write
206A20F0000
heap
page read and write
276D4A4D000
heap
page read and write
2983D120000
trusted library allocation
page read and write
1BB64613000
heap
page read and write
8F9C8FE000
stack
page read and write
206A2150000
heap
page read and write
2983D01E000
trusted library allocation
page read and write
1FEF0800000
heap
page read and write
1F896A02000
trusted library allocation
page read and write
2983D170000
remote allocation
page read and write
1DF88647000
heap
page read and write
A2D6AFD000
stack
page read and write
29837A8A000
heap
page read and write
2983CE70000
trusted library allocation
page read and write
29838800000
trusted library allocation
page read and write
8F9C7FE000
stack
page read and write
1BB64602000
heap
page read and write
BCB07FE000
stack
page read and write
11D6EFA0000
trusted library allocation
page read and write
D5674FE000
stack
page read and write
1FEF0902000
heap
page read and write
276D4A50000
heap
page read and write
298389E0000
trusted library allocation
page read and write
1F89624F000
heap
page read and write
1DF8A170000
remote allocation
page read and write
2983D054000
trusted library allocation
page read and write
1DF885C0000
heap
page read and write
1DF88663000
heap
page read and write
1F896260000
heap
page read and write
276D4A4C000
heap
page read and write
B7BE2FE000
stack
page read and write
2983D216000
heap
page read and write
D566EFA000
stack
page read and write
29838300000
heap
page read and write
2983D23F000
heap
page read and write
29837970000
trusted library allocation
page read and write
11D6EE30000
heap
page read and write
276D4A3C000
heap
page read and write
8F9CA7E000
stack
page read and write
10B9A7D000
stack
page read and write
2983CF00000
trusted library allocation
page read and write
2983D2F6000
heap
page read and write
1F89627F000
heap
page read and write
1FEF08CA000
heap
page read and write
2983D2AA000
heap
page read and write
BCB04FE000
stack
page read and write
29837AFC000
heap
page read and write
11D6EE40000
heap
page read and write
10B947B000
stack
page read and write
B8CCDFC000
stack
page read and write
276D4B13000
heap
page read and write
1F896256000
heap
page read and write
276D4A62000
heap
page read and write
1DF8A080000
trusted library allocation
page read and write
1BB64600000
heap
page read and write
B8CCEFD000
stack
page read and write
8F9CCFE000
stack
page read and write
A2D65FE000
stack
page read and write
2983D302000
heap
page read and write
1F896262000
heap
page read and write
2983D309000
heap
page read and write
2983D2E9000
heap
page read and write
A2D677E000
stack
page read and write
A2D69FF000
stack
page read and write
11D6F067000
heap
page read and write
A2D6BFD000
stack
page read and write
29837A2A000
heap
page read and write
11D6F06E000
heap
page read and write
2983D130000
trusted library allocation
page read and write
2983D040000
trusted library allocation
page read and write
2983D220000
heap
page read and write
1F89626C000
heap
page read and write
1F896060000
heap
page read and write
2983839A000
heap
page read and write
1FEF0871000
heap
page read and write
206A2C02000
trusted library allocation
page read and write
276D4B02000
heap
page read and write
29838318000
heap
page read and write
8F9CAFB000
stack
page read and write
1F89624E000
heap
page read and write
1F89623D000
heap
page read and write
1F896255000
heap
page read and write
1BB643E0000
heap
page read and write
1BB64570000
remote allocation
page read and write
1DF8A202000
trusted library allocation
page read and write
29837810000
heap
page read and write
1DF88656000
heap
page read and write
10B9B7E000
stack
page read and write
276D4A13000
heap
page read and write
1BB64629000
heap
page read and write
2983D018000
trusted library allocation
page read and write
A2D647B000
stack
page read and write
29837A93000
heap
page read and write
29837A77000
heap
page read and write
1BB64540000
trusted library allocation
page read and write
1FEF07F0000
trusted library allocation
page read and write
1DF88613000
heap
page read and write
1DF8862A000
heap
page read and write
1BB643D0000
heap
page read and write
1F896242000
heap
page read and write
29838202000
heap
page read and write
1DF8863D000
heap
page read and write
1BB64570000
remote allocation
page read and write
29837A3D000
heap
page read and write
29837B02000
heap
page read and write
1F896275000
heap
page read and write
1DF8A170000
remote allocation
page read and write
1F89627C000
heap
page read and write
1DF885F0000
trusted library allocation
page read and write
29837980000
trusted library section
page read and write
276D4A7F000
heap
page read and write
11D6EEA0000
heap
page read and write
2983D302000
heap
page read and write
29838501000
trusted library allocation
page read and write
A2D687F000
stack
page read and write
1BB64570000
remote allocation
page read and write
29838AC0000
trusted library section
page readonly
1DF8A0F0000
trusted library allocation
page read and write
206A2200000
heap
page read and write
276D4A62000
heap
page read and write
D5671FA000
stack
page read and write
1FEF08E2000
heap
page read and write
1DF88713000
heap
page read and write
1F89626E000
heap
page read and write
276D4A6F000
heap
page read and write
29837B13000
heap
page read and write
1F896250000
heap
page read and write
11D6F029000
heap
page read and write
D56757F000
stack
page read and write
29837A58000
heap
page read and write
2983D170000
remote allocation
page read and write
276D49F0000
trusted library allocation
page read and write
BCB06FE000
stack
page read and write
1BB64702000
heap
page read and write
1DF88657000
heap
page read and write
2983D2F3000
heap
page read and write
29838200000
heap
page read and write
1BB6463D000
heap
page read and write
276D48F0000
heap
page read and write
2983D2D5000
heap
page read and write
10B9E7E000
stack
page read and write
1F896240000
heap
page read and write
2983D031000
trusted library allocation
page read and write
1F896245000
heap
page read and write
1DF8A170000
remote allocation
page read and write
276D4890000
heap
page read and write
1DF88700000
heap
page read and write
FDBE19C000
stack
page read and write
D5672FB000
stack
page read and write
206A2180000
trusted library allocation
page read and write
FDBE6FB000
stack
page read and write
29838E60000
trusted library allocation
page read and write
29838581000
trusted library allocation
page read and write
1F896249000
heap
page read and write
29837870000
heap
page read and write
276D4A2C000
heap
page read and write
2983D010000
trusted library allocation
page read and write
1FEF06F0000
heap
page read and write
1F896276000
heap
page read and write
29838318000
heap
page read and write
11D6F102000
heap
page read and write
1DF88600000
heap
page read and write
29837A00000
heap
page read and write
1F89626A000
heap
page read and write
1F896285000
heap
page read and write
8F9C5FC000
stack
page read and write
2983D200000
heap
page read and write
D56747E000
stack
page read and write
2983D255000
heap
page read and write
11D6F113000
heap
page read and write
2983D261000
heap
page read and write
2983D317000
heap
page read and write
1F8961C0000
trusted library allocation
page read and write
B8CCFFF000
stack
page read and write
29838AD0000
trusted library section
page readonly
FDBE4FE000
stack
page read and write
1FEF1100000
heap
page read and write
1FEF1002000
heap
page read and write
29838AF0000
trusted library section
page readonly
206A2302000
heap
page read and write
11D6F013000
heap
page read and write
29837A13000
heap
page read and write
2983D011000
trusted library allocation
page read and write
D56693C000
stack
page read and write
1F896267000
heap
page read and write
1F89624B000
heap
page read and write
There are 331 hidden memdumps, click here to show them.

DOM / HTML

URL
Malicious
https://telstranetworkinduction-physicalsecurity.com.au/
https://simplyelearning.com.au/
https://telstranetworkinduction-physicalsecurity.com.au/?p=register
https://telstranetworkinduction-physicalsecurity.com.au/?p=forgot
https://www.facebook.com/v6.0/plugins/customerchat.php?app_id=&attribution=wordpress&attribution_version=2.3&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df2db94121a286a4%26domain%3Dsimplyelearning.com.au%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fsimplyelearning.com.au%252Ff1c49130b69f6d8%26relation%3Dparent.parent&container_width=1263&current_url=https%3A%2F%2Fsimplyelearning.com.au%2F&is_loaded_by_facade=true&locale=en_US&log_id=98046a23-2c8c-4d43-bac5-dc4c028039e5&page_id=243184549136839&request_time=1655173241372&sdk=joey
https://www.facebook.com/bubble
https://telstranetworkinduction-physicalsecurity.com.au/?p=about&h=about
https://www.facebook.com/v6.0/plugins/customer_chat/bubble
https://telstranetworkinduction-physicalsecurity.com.au/?p=about&h=help