Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
Serhii Dubinevych - FuelWell-P&L-financial-projection-02_2023.xlsx
|
Microsoft Excel 2007+
|
initial sample
|
||
C:\Program Files (x86)\Microsoft Office\root\vfs\Common AppData\Microsoft\OFFICE\Heartbeat\HeartbeatCache.xml
|
XML 1.0 document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
|
data
|
dropped
|
||
C:\Users\user\Desktop\D9E40000
|
Microsoft Excel 2007+
|
dropped
|
||
C:\Users\user\Desktop\D9E40000:Zone.Identifier
|
ASCII text, with CRLF line terminators
|
modified
|
||
C:\Users\user\Desktop\Serhii Dubinevych - FuelWell-P&L-financial-projection-02_2023.xlsx (copy)
|
Microsoft Excel 2007+
|
dropped
|
||
C:\Users\user\Desktop\~$Serhii Dubinevych - FuelWell-P&L-financial-projection-02_2023.xlsx
|
data
|
dropped
|
||
Chrome Cache Entry: 306
|
Non-ISO extended-ASCII text, with very long lines (4592)
|
dropped
|
||
Chrome Cache Entry: 307
|
ASCII text
|
dropped
|
||
Chrome Cache Entry: 308
|
HTML document, ASCII text, with very long lines (15896), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 309
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1x1, components
3
|
dropped
|
||
Chrome Cache Entry: 310
|
GIF image data, version 89a, 39 x 43
|
dropped
|
||
Chrome Cache Entry: 311
|
HTML document, ASCII text, with very long lines (15896), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 312
|
ASCII text, with very long lines (27104)
|
dropped
|
||
Chrome Cache Entry: 313
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 314
|
ASCII text, with very long lines (31483)
|
dropped
|
||
Chrome Cache Entry: 315
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 316
|
ASCII text, with very long lines (4013)
|
dropped
|
||
Chrome Cache Entry: 317
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 318
|
ASCII text, with very long lines (5945)
|
dropped
|
||
Chrome Cache Entry: 319
|
ASCII text
|
dropped
|
||
Chrome Cache Entry: 320
|
M3U playlist, ASCII text
|
dropped
|
||
Chrome Cache Entry: 321
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 322
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 323
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 324
|
HTML document, ASCII text
|
dropped
|
||
Chrome Cache Entry: 325
|
GIF image data, version 89a, 252 x 90
|
dropped
|
||
Chrome Cache Entry: 326
|
ASCII text, with very long lines (64713)
|
dropped
|
||
Chrome Cache Entry: 327
|
HTML document, ASCII text
|
dropped
|
||
Chrome Cache Entry: 328
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 329
|
ASCII text, with very long lines (563), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 330
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 331
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 332
|
M3U playlist, ASCII text
|
dropped
|
||
Chrome Cache Entry: 333
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 334
|
HTML document, ASCII text
|
dropped
|
||
Chrome Cache Entry: 335
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 336
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 337
|
HTML document, ASCII text, with very long lines (2920), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 338
|
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 339
|
HTML document, ASCII text, with very long lines (15896), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 340
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 341
|
HTML document, ASCII text, with very long lines (15896), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 342
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 343
|
C source, ASCII text, with very long lines (41240), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 344
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 345
|
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 346
|
ASCII text, with very long lines (65446)
|
dropped
|
||
Chrome Cache Entry: 347
|
ASCII text, with very long lines (6482), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 348
|
HTML document, ASCII text, with very long lines (15896), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 349
|
ASCII text, with very long lines (65447)
|
dropped
|
||
Chrome Cache Entry: 350
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 351
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 352
|
HTML document, ASCII text
|
dropped
|
||
Chrome Cache Entry: 353
|
ASCII text, with very long lines (5540), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 354
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 355
|
SVG Scalable Vector Graphics image
|
dropped
|
||
Chrome Cache Entry: 356
|
HTML document, ASCII text, with very long lines (15896), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 357
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 358
|
HTML document, ASCII text, with very long lines (326)
|
dropped
|
||
Chrome Cache Entry: 359
|
ASCII text, with very long lines (3048)
|
dropped
|
||
Chrome Cache Entry: 360
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 361
|
ASCII text, with very long lines (65446)
|
dropped
|
||
Chrome Cache Entry: 362
|
ASCII text
|
dropped
|
||
Chrome Cache Entry: 363
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 364
|
HTML document, ASCII text, with very long lines (1871), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 365
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 366
|
ASCII text, with very long lines (49614), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 367
|
ASCII text, with very long lines (4262)
|
dropped
|
||
Chrome Cache Entry: 368
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 369
|
HTML document, ASCII text, with very long lines (15896), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 370
|
M3U playlist, ASCII text
|
dropped
|
||
Chrome Cache Entry: 371
|
ASCII text, with very long lines (4014)
|
dropped
|
||
Chrome Cache Entry: 372
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 373
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 374
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 375
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 376
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 377
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 378
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 379
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 380
|
ASCII text, with very long lines (56888), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 381
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 382
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 383
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 384
|
HTML document, ASCII text, with very long lines (3313), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 385
|
Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 386
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 387
|
HTML document, ASCII text
|
dropped
|
||
Chrome Cache Entry: 388
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 389
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 390
|
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 391
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 392
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 393
|
Non-ISO extended-ASCII text, with very long lines (4592)
|
dropped
|
||
Chrome Cache Entry: 394
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 395
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 396
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 397
|
ASCII text, with very long lines (4014)
|
dropped
|
||
Chrome Cache Entry: 398
|
MPEG transport stream data
|
dropped
|
||
Chrome Cache Entry: 399
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 400
|
Unicode text, UTF-8 text, with very long lines (50357), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 401
|
ASCII text, with very long lines (5945)
|
dropped
|
||
Chrome Cache Entry: 402
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 403
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 404
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 405
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 406
|
Unicode text, UTF-8 text, with very long lines (14527), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 407
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 408
|
ASCII text, with very long lines (1455), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 409
|
ASCII text, with very long lines (2343)
|
dropped
|
||
Chrome Cache Entry: 410
|
PNG image data, 646 x 250, 8-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 411
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 412
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 413
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 414
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 415
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 416
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 417
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 418
|
ASCII text, with very long lines (3048)
|
dropped
|
||
Chrome Cache Entry: 419
|
ASCII text, with very long lines (49614), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 420
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 421
|
HTML document, ASCII text, with very long lines (15896), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 422
|
ASCII text, with very long lines (43601), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 423
|
JPEG image data, baseline, precision 8, 1000x750, components 3
|
dropped
|
||
Chrome Cache Entry: 424
|
ASCII text, with very long lines (32065)
|
dropped
|
||
Chrome Cache Entry: 425
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 426
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 427
|
ASCII text, with very long lines (65536), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 428
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 429
|
ASCII text, with very long lines (32027)
|
dropped
|
||
Chrome Cache Entry: 430
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 431
|
ASCII text, with very long lines (2343)
|
dropped
|
||
Chrome Cache Entry: 432
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 433
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 434
|
ASCII text, with very long lines (23843), with escape sequences
|
dropped
|
||
Chrome Cache Entry: 435
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 436
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 437
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 438
|
C++ source, ASCII text, with very long lines (2873)
|
dropped
|
||
Chrome Cache Entry: 439
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 440
|
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 441
|
Unicode text, UTF-8 text, with very long lines (61446)
|
dropped
|
||
Chrome Cache Entry: 442
|
ASCII text, with very long lines (745)
|
dropped
|
||
Chrome Cache Entry: 443
|
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 444
|
HTML document, ASCII text, with very long lines (28302)
|
dropped
|
||
Chrome Cache Entry: 445
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 446
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 447
|
C source, ASCII text, with very long lines (41240), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 448
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 449
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 450
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 451
|
HTML document, ASCII text, with very long lines (8923), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 452
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 453
|
Unicode text, UTF-8 text, with very long lines (61446)
|
dropped
|
||
Chrome Cache Entry: 454
|
M3U playlist, ASCII text
|
dropped
|
||
Chrome Cache Entry: 455
|
ASCII text, with very long lines (43601), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 456
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 457
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 458
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 459
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 460
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 461
|
ASCII text, with very long lines (32065)
|
dropped
|
||
Chrome Cache Entry: 462
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 463
|
HTML document, ASCII text, with very long lines (603), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 464
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 465
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 466
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 467
|
JPEG image data, baseline, precision 8, 1000x750, components 3
|
dropped
|
||
Chrome Cache Entry: 468
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 469
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 470
|
ASCII text, with very long lines (56888), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 471
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 472
|
Unicode text, UTF-8 text, with very long lines (31061), with LF, NEL line terminators
|
dropped
|
||
Chrome Cache Entry: 473
|
ASCII text, with very long lines (4013)
|
dropped
|
||
Chrome Cache Entry: 474
|
M3U playlist, ASCII text
|
dropped
|
||
Chrome Cache Entry: 475
|
HTML document, ASCII text
|
dropped
|
||
Chrome Cache Entry: 476
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 477
|
ASCII text, with very long lines (65467)
|
dropped
|
||
Chrome Cache Entry: 478
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 479
|
M3U playlist, ASCII text
|
dropped
|
||
Chrome Cache Entry: 480
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 481
|
HTML document, ASCII text, with very long lines (15896), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 482
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 483
|
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 484
|
ASCII text, with very long lines (65536), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 485
|
HTML document, ASCII text, with very long lines (603), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 486
|
Unicode text, UTF-8 text, with very long lines (50357), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 487
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 488
|
Audio file with ID3 version 2.4.0, contains:\012- Audio file with ID3 version 2.4.0, contains:\012- MPEG ADTS, AAC, v4 LC,
48 kHz, stereo
|
dropped
|
||
Chrome Cache Entry: 489
|
HTML document, ASCII text, with very long lines (2387), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 490
|
ASCII text, with very long lines (501)
|
dropped
|
||
Chrome Cache Entry: 491
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 492
|
ASCII text, with very long lines (6482), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 493
|
ASCII text, with very long lines (65354)
|
dropped
|
||
Chrome Cache Entry: 494
|
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 495
|
ASCII text, with very long lines (64561)
|
dropped
|
||
Chrome Cache Entry: 496
|
ASCII text, with very long lines (523)
|
dropped
|
||
Chrome Cache Entry: 497
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 498
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 499
|
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 500
|
ASCII text, with very long lines (31483)
|
dropped
|
||
Chrome Cache Entry: 501
|
ASCII text, with very long lines (563), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 502
|
HTML document, ASCII text
|
dropped
|
||
Chrome Cache Entry: 503
|
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 504
|
MPEG transport stream data
|
dropped
|
||
Chrome Cache Entry: 505
|
Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
|
dropped
|
||
Chrome Cache Entry: 506
|
HTML document, ASCII text
|
dropped
|
||
Chrome Cache Entry: 507
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 508
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 509
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 510
|
ASCII text, with very long lines (2090)
|
dropped
|
||
Chrome Cache Entry: 511
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 512
|
ASCII text, with very long lines (740)
|
dropped
|
||
Chrome Cache Entry: 513
|
ASCII text, with very long lines (561)
|
dropped
|
||
Chrome Cache Entry: 514
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 515
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 516
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 517
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 518
|
Audio file with ID3 version 2.4.0, contains:\012- Audio file with ID3 version 2.4.0, contains:\012- MPEG ADTS, AAC, v4 LC,
48 kHz, stereo
|
dropped
|
||
Chrome Cache Entry: 519
|
ASCII text, with very long lines (1676)
|
dropped
|
||
Chrome Cache Entry: 520
|
ASCII text, with very long lines (5945)
|
dropped
|
||
Chrome Cache Entry: 521
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 522
|
ASCII text, with very long lines (64713)
|
dropped
|
||
Chrome Cache Entry: 523
|
PNG image data, 646 x 250, 8-bit colormap, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 524
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 525
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 526
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 527
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 528
|
ASCII text, with very long lines (64561)
|
dropped
|
||
Chrome Cache Entry: 529
|
ISO-8859 text
|
dropped
|
||
Chrome Cache Entry: 530
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 531
|
ASCII text, with very long lines (65354)
|
dropped
|
||
Chrome Cache Entry: 532
|
ASCII text, with very long lines (501)
|
dropped
|
||
Chrome Cache Entry: 533
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 534
|
HTML document, ASCII text
|
dropped
|
||
Chrome Cache Entry: 535
|
GIF image data, version 89a, 252 x 90
|
dropped
|
||
Chrome Cache Entry: 536
|
HTML document, Unicode text, UTF-8 text, with very long lines (899), with CRLF line terminators
|
dropped
|
||
Chrome Cache Entry: 537
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 538
|
ASCII text, with very long lines (27104)
|
dropped
|
||
Chrome Cache Entry: 539
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 540
|
HTML document, ASCII text
|
dropped
|
||
Chrome Cache Entry: 541
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 542
|
GIF image data, version 89a, 39 x 43
|
dropped
|
||
Chrome Cache Entry: 543
|
HTML document, ASCII text, with very long lines (2089)
|
dropped
|
||
Chrome Cache Entry: 544
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 545
|
ASCII text, with very long lines (32027)
|
dropped
|
||
Chrome Cache Entry: 546
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 547
|
ASCII text
|
dropped
|
||
Chrome Cache Entry: 548
|
C source, ASCII text, with very long lines (2348)
|
dropped
|
||
Chrome Cache Entry: 549
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 550
|
Unicode text, UTF-8 text, with very long lines (65478)
|
dropped
|
||
Chrome Cache Entry: 551
|
ASCII text, with very long lines (65447)
|
dropped
|
||
Chrome Cache Entry: 552
|
HTML document, ASCII text, with very long lines (1470)
|
dropped
|
||
Chrome Cache Entry: 553
|
ASCII text, with very long lines (65467)
|
dropped
|
||
Chrome Cache Entry: 554
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 555
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 556
|
HTML document, ISO-8859 text, with CRLF line terminators
|
dropped
|
||
Chrome Cache Entry: 557
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 558
|
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
Chrome Cache Entry: 559
|
JSON data
|
dropped
|
||
Chrome Cache Entry: 560
|
HTML document, ASCII text
|
dropped
|
||
Chrome Cache Entry: 561
|
ASCII text, with very long lines (23843), with escape sequences
|
dropped
|
||
Chrome Cache Entry: 562
|
Unicode text, UTF-8 text, with very long lines (31061), with LF, NEL line terminators
|
dropped
|
||
Chrome Cache Entry: 563
|
ASCII text, with no line terminators
|
dropped
|
||
Chrome Cache Entry: 564
|
HTML document, ASCII text
|
dropped
|
||
Chrome Cache Entry: 565
|
HTML document, ASCII text
|
dropped
|
||
Chrome Cache Entry: 566
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 567
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 568
|
GIF image data, version 89a, 1 x 1
|
dropped
|
||
Chrome Cache Entry: 569
|
ASCII text, with very long lines (561)
|
dropped
|
There are 261 hidden files, click here to show them.
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE
|
"C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE" /automation -Embedding
|
||
C:\Windows\splwow64.exe
|
C:\Windows\splwow64.exe 12288
|
||
C:\Windows\splwow64.exe
|
C:\Windows\splwow64.exe 12288
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2080 --field-trial-handle=1948,i,36543809609165043,4265203075758315399,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://www.multitran.ru/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9"
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US
--service-sandbox-type=audio --mojo-platform-channel-handle=4824 --field-trial-handle=1948,i,36543809609165043,4265203075758315399,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2456 --field-trial-handle=2412,i,10596119694725537203,12646345865528063777,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://www.multitran.ru/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9"
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US
--service-sandbox-type=audio --mojo-platform-channel-handle=4992 --field-trial-handle=2412,i,10596119694725537203,12646345865528063777,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
There are 1 hidden processes, click here to show them.
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
https://usersync.gumgum.com/usersync?b=sad&i=2809080294951148902
|
34.247.205.196
|
||
https://ad.360yield.com/ux?&publisher_dmp_id=15&r=https%3A%2F%2Fids.ad.gt%2Fapi%2Fv1%2Fimpr_match%3F
|
unknown
|
||
https://f.creativecdn.com
|
unknown
|
||
https://aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&gdpr=0&dl=n-index_n-acuityads_n-MediaNet_n-Beeswax_smrt_cnv_n-inmobi_n-adYouLike_n-smaato_n-sharethrough_n-onetag_pm-db5_n-vmg_n-baidu_n-nativo_an-db5_sovrn_3lift_n-Outbrain&dcc=t
|
67.220.226.232
|
||
https://ad.360yield.com/ux?&publisher_dmp_id=15&r=https%3A%2F%2Fids.ad.gt%2Fapi%2Fv1%2Fimpr_match%3Fid%3DAU1D-0100-001727702220-VFVIGU3O-SOQK%26impr_uid%3D%7BPUB_USER_ID%7D
|
34.250.159.220
|
||
https://ids.ad.gt/api/v1/g_hosted?id=
|
unknown
|
||
https://match.adsrvr.org/track/cmf/generic?ttd_pid=gumgum&ttd_tpi=1&gdpr=0&gdpr_consent=
|
15.197.193.217
|
||
https://ib.adnxs.com/getuid?https%3A%2F%2Fevents-ssc.33across.com%2Fmatch%3Fliv%3Dh%26us_privacy%3D%26bidder_id%3D90%26external_user_id%3D%24UID
|
185.89.211.116
|
||
https://ads.stickyadstv.com/user-matching?id=3663&gdpr=0&gdpr_consent=
|
unknown
|
||
https://c1.adform.net/serving/cookie/match?party=14&cid=4746372F-8ECD-4ADF-9F41-B3EFB933B9A4&gdpr=0&
|
unknown
|
||
https://sync.adkernel.com/user-sync?zone=176971&dsp=649145&t=image&uid=5619797562597244228
|
103.67.200.72
|
||
https://cm.g.doubleclick.net/pixel?google_nid=stickyxchange_dbm&google_cm=&google_sc&google_hm=MTg5NjUxNjUzNjYwODdjNmUyOWE5OTNhYTI0NDkwYjU=&gdpr=&gdpr_consent=
|
142.250.186.98
|
||
https://ampcid.google.com/v1/publisher:getClientId
|
unknown
|
||
https://dsp.360yield.com/ul_cb/dsp_match/275?ssp=76&gdpr=0&gdpr_consent=&r=https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM3MzUmdGw9MTI5NjAw&piggybackCookie=%7BDSP_USER_ID%7D
|
34.248.56.28
|
||
https://onetag-sys.com/usync/?cb=1727702259278&us_privacy=1---
|
51.89.9.251
|
||
https://aax-eu.amazon-adsystem.com/s/ecm3?ex=3lift.com&id=1590848361649052531873
|
67.220.226.232
|
||
https://usersync.gumgum.com/usersync?b=dit&i=di_a241d21fd32943f39025f
|
52.210.15.1
|
||
https://fundingchoicesmessages.google.com/i/ca-pub-1428290592401732?href=https%3A%2F%2Fwww.multitran.com%2Fc%2Fm.exe&ers=2
|
142.250.185.78
|
||
https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZqcz0xJmNvZGU9MjkzNiZ0bD00MzIwMA==&piggybackCookie=uid:72433824BA8E42048B0BAA80CEB983E4&gdpr=0&gdpr_consent=
|
185.64.191.210
|
||
https://ssc-cms.33across.com/ps/?xi=1&xu=M1P1AMBZ-4-DAO6&us_privacy=1---
|
67.202.105.21
|
||
https://eb2.3lift.com/getuid?gdpr=0&cmp_cs=&us_privacy=&redir=https%3A%2F%2Fssc-cms.33across.com%2Fps%2F%3Fus_privacy%3D%26xi%3D33%26xu%3D%24UID
|
76.223.111.18
|
||
https://ib.adnxs.com/getuid?%2F%2Fsync.adkernel.com%2Fuser-sync%3Fzone%3D176971%26dsp%3D508546%26t%3Dimage%26uid%3D%24UID
|
37.252.171.85
|
||
https://s.company-target.com/s/eqx?sspurl=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D152%26partneruserid%3DPARTNER_USER_ID&gdpr=0&gdpr_consent=
|
34.96.71.22
|
||
https://ssc-cms.33across.com/ps/?us_privacy=&ts=1727702265840.3&ri=90&ru=https%3A%2F%2Fib.adnxs.com%2Fgetuid%3Fhttps%253A%252F%252Fevents-ssc.33across.com%252Fmatch%253Fliv%253Dh%2526us_privacy%253D%24%7BUS_PRIVACY%7D%2526bidder_id%253D90%2526external_user_id%253D%2524UID
|
67.202.105.21
|
||
https://aax.amazon-adsystem.com/e/dtb/bid?src=600&u=https%3A%2F%2Fwww.multitran.com%2Fc%2Fm.exe%3Ft%3D5428877_1_2%26s1%3D%25ED%25E0%25F3%25F7%25ED%25EE-%25E8%25F1%25F1%25EB%25E5%25E4%25EE%25E2%25E0%25F2%25E5%25EB%25FC%25F1%25EA%25E8%25E9&pid=LA2PNEcoAcn0p&cb=8&ws=1280x907&v=24.827.1552&t=3000&slots=%5B%7B%22sd%22%3A%22ADP_42845_728x90_00000001-8ca111dc-6e85-4c4a-9cce-cda543360ead%22%2C%22s%22%3A%5B%22728x90%22%2C%22690x90%22%2C%22675x90%22%2C%22670x90%22%2C%22650x90%22%2C%22630x90%22%2C%22600x90%22%2C%22580x90%22%2C%22570x90%22%2C%22468x60%22%2C%22320x50%22%2C%22300x50%22%2C%22300x75%22%5D%2C%22sn%22%3A%22%2F103512698%2FADP_42845_728X90_af7ac722-2488-47de-81af-fd4897f62d72%22%7D%5D&pj=%7B%22device%22%3A%7B%22sua%22%3A%7B%22architecture%22%3A%22x86%22%2C%22bitness%22%3A%2264%22%2C%22mobile%22%3A0%2C%22model%22%3A%22%22%2C%22source%22%3A2%2C%22platform%22%3A%7B%22brand%22%3A%22Windows%22%2C%22version%22%3A%5B%2210%22%2C%220%22%2C%220%22%5D%7D%2C%22browsers%22%3A%5B%7B%22brand%22%3A%22Google+Chrome%22%2C%22version%22%3A%5B%22117%22%2C%220%22%2C%225938%22%2C%22132%22%5D%7D%2C%7B%22brand%22%3A%22Not%3BA%3DBrand%22%2C%22version%22%3A%5B%228%22%2C%220%22%2C%220%22%2C%220%22%5D%7D%2C%7B%22brand%22%3A%22Chromium%22%2C%22version%22%3A%5B%22117%22%2C%220%22%2C%225938%22%2C%22132%22%5D%7D%5D%7D%7D%7D&schain=1.0%2C1%21adpushup.com%2C50b20a9bbdab7514c096e12d3b6f06d8%2C1%2C%2C%2C&gpp_sid=%5B-1%5D&sm=b0b0c663-9fc5-4ff1-8415-8776ba358d7f&pubid=2e7e1587-d92f-46dd-8721-80b53eccb87e&gdpre=0&gdprl=%7B%22status%22%3A%22tcfv2-success%22%7D&vm=%7B%22ids%22%3A%7B%22audigent%22%3A%22060ixdbj2g5le89i7dai9dafeb9hg6ie6dhuokgwsqy0m46u2keu6keomg6sq0um0%22%2C%22id5%22%3A%220%22%2C%22lotame%22%3A%22bf75845a6b4a967090c4c282cbd416d539380bdcbdb014206ae6fc29a484d1c5%22%2C%22pubcommon%22%3A%22ac47d973-e264-4b59-b4d0-8404bfddc2d2%22%7D%7D
|
13.35.57.188
|
||
https://cm.g.doubleclick.net/pixel?google_nid=index&google_cm&google_hm=Zvqk09HM51MAAHZlAG58agAABXAAAAIB&gdpr_consent=&us_privacy=&gdpr=&gpp=&gpp_sid=
|
142.250.185.194
|
||
https://sync.1rx.io/usersync/quantcast/DpkPRFmbCkQVzVsRWZdEQACZDEAVlwgQAJr1oVyn?
|
46.228.174.117
|
||
https://d.turn.com/r/dd/id/L2NzaWQvMS9jaWQvMTc0ODI0MTY1OC90LzA/url/https%3A%2F%2Fids.ad.gt%2Fapi%2Fv
|
unknown
|
||
https://cs.yellowblue.io/cs?aid=11601&id=18965165366087c6e29a993aa24490b5&gdpr_consent=&gdpr=0
|
52.213.77.211
|
||
https://b1sync.zemanta.com/usersync/amazon_tam/?cb=https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Doutbrain.com%26id%3D__ZUID__&gdpr=0&s=2
|
70.42.32.159
|
||
https://ads.servenobid.com/adreq?cb=937
|
63.33.110.144
|
||
https://sync.1rx.io/usersync2/pubmatic&gdpr=0&gdpr_consent=
|
46.228.174.117
|
||
https://ce.lijit.com/merge?pid=80&3pid=M1P1AMBZ-4-DAO6
|
3.248.166.48
|
||
https://sync.srv.stackadapt.com/sync?nid=1&gdpr=0&gdpr_consent=
|
54.157.37.140
|
||
https://dsum-sec.casalemedia.com/crum?cm_dsp_id=46&external_user_id=5619797562597244228
|
172.64.151.101
|
||
https://ads.mountain.com/serve?guid=b47d2d02-7bf9-32e6-9936-6d8315ad9dde&shadsgsreqts=1727702329576&shadsgsreq=1&shsbt=irongate_1036605188&ms=16384&aid=32677&cid=160558&eid=148&cb=2665514974&ttd_impression_id=1727702327034022.478894140.57.steelhouse&sh_ref=&tdid=AAEaAU7N9UoAABY83teMng&click=https%3a%2f%2fus-east-1.event.prod.bidr.io%2flog%2fclk%2fie%3fai%3dChEIvLCt5AEQORimgezb4OqIAxIVCgpzdGVlbGhvdXNlEAIYkEIgpIgBGgJpZTj_jg1AtRNIAVICaWVgAHo6Cg4IAxABEAQQAxACEAYQBxIECAMQARIECAYQARIECAIQARIECAUQARIECAcQARIECAEQARIECAQQAQ%3d%3d%26audit_flag_wp%3d%24%7bAUCTION_PRICE%7d%26dest%3D&bid_ip=OC40Ni4xMjMuMzM=&publisher=www.multitran.com
|
34.209.34.172
|
||
https://apex.go.sonobi.com/trinity.json?key_maker=%7B%22324e65f0cf7b9d65%22%3A%222460649b48d5963cdf8a%7C640x360%7Cf%3D0.85%2Cc%3Dv%2Cpm%3D2%3A6%2Cp%3D1%2C%22%2C%223256e47988106899%22%3A%222460649b48d5963cdf8a%7C640x360%7Cf%3D0.85%2Cc%3Dv%2Cpm%3D2%3A6%2Cp%3D1%2C%22%7D&ref=https%3A%2F%2Fwww.multitran.com%2Fc%2Fm.exe%3Ft%3D5428877_1_2%26s1%3D%25ED%25E0%25F3%25F7%25ED%25EE-%25E8%25F1%25F1%25EB%25E5%25E4%25EE%25E2%25E0%25F2%25E5%25EB%25FC%25F1%25EA%25E8%25E9&s=1b729122-26fb-4a0a-ad90-92d618282dc7&pv=f3307e57-ba96-4e7a-b934-ceb4cf3d3d43&vp=desktop&lib_name=prebid&lib_v=8.45.0&us=5&iqid=null&fpd=%7B%22source%22%3A%7B%7D%2C%22site%22%3A%7B%22domain%22%3A%22multitran.com%22%2C%22keywords%22%3A%22Multitran%2Cdictionary%2Ctranslation%22%2C%22publisher%22%3A%7B%22domain%22%3A%22multitran.com%22%7D%2C%22page%22%3A%22https%3A%2F%2Fwww.multitran.com%2Fc%2Fm.exe%3Ft%3D5428877_1_2%26s1%3D%25ED%25E0%25F3%25F7%25ED%25EE-%25E8%25F1%25F1%25EB%25E5%25E4%25EE%25E2%25E0%25F2%25E5%25EB%25FC%25F1%25EA%25E8%25E9%22%7D%2C%22device%22%3A%7B%22w%22%3A1034%2C%22h%22%3A870%2C%22dnt%22%3A0%2C%22ua%22%3A%22Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64)%20AppleWebKit%2F537.36%20(KHTML%2C%20like%20Gecko)%20Chrome%2F117.0.0.0%20Safari%2F537.36%22%2C%22language%22%3A%22en%22%2C%22sua%22%3A%7B%22source%22%3A1%2C%22platform%22%3A%7B%22brand%22%3A%22Windows%22%7D%2C%22browsers%22%3A%5B%7B%22brand%22%3A%22Google%20Chrome%22%2C%22version%22%3A%5B%22117%22%5D%7D%2C%7B%22brand%22%3A%22Not%3BA%3DBrand%22%2C%22version%22%3A%5B%228%22%5D%7D%2C%7B%22brand%22%3A%22Chromium%22%2C%22version%22%3A%5B%22117%22%5D%7D%5D%2C%22mobile%22%3A0%7D%7D%7D&ius=0&schain=%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22adpushup.com%22%2C%22sid%22%3A%2250b20a9bbdab7514c096e12d3b6f06d8%22%2C%22hp%22%3A1%7D%5D%7D&kw=Multitran%2Cdictionary%2Ctranslation&coppa=0
|
69.166.1.64
|
||
https://pixel-eu.onaudience.com/?partner=270&smartmap=1&gdpr=0&gdpr_consent=&redirect=image2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%26piggybackCookie%3D%25_rid%26gdpr%3D0%26gdpr_consent%3D%25_gdpr_consent
|
54.38.113.6
|
||
https://ap.lijit.com/pixel?gdpr=0&gdpr_consent=&redir=https%3A%2F%2Fcs-server-s2s.yellowblue.io%2Fcs
|
unknown
|
||
https://ads.servenobid.com/adreq?cb=7589
|
54.220.49.214
|
||
https://b1sync.zemanta.com/usersync/gumgum/?puid=e_8f91b3c0-4256-4af1-9422-b299c036a719&gdpr=0&gdpr_consent=&us_privacy=1---&cb=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dzem%26i%3D__ZUID__
|
70.42.32.159
|
||
https://bh.contextweb.com/bh/rtset?pid=562316&ev=1&rurl=https://ids.ad.gt/api/v1/ppnt_match?uid=%%VG
|
unknown
|
||
https://pubads.g.doubleclick.net/adsid/integrator.json?aos=
|
unknown
|
||
https://ssc-cms.33across.com/ps/?xi=10&us_privacy=&xu=1dd8272e-4cf2-424e-a94e-51098c77708e
|
67.202.105.23
|
||
https://ads.servenobid.com/adreq?cb=10916
|
52.213.44.117
|
||
https://pixel-sync.sitescout.com/dmp/pixelSync?nid=64&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D68%26partneruserid%3D%7BuserId%7D&gdpr=0&gdpr_consent=
|
34.36.216.150
|
||
https://events-ssc.33across.com/match?bidder_id=5&external_user_id=WDajMYxlowxX&ts=1727702268&gdpr_58=&gdpr=0&gdpr_consent=&us_privacy=
|
34.117.239.71
|
||
http://mathiasbynens.be/
|
unknown
|
||
https://e3.adpushup.com/AdPushupFeedbackWebService/feedback/aphb/auctionData?data=eyJzaXRlSWQiOjQyODQ1LCJ1cmwiOiJodHRwczovL3d3dy5tdWx0aXRyYW4uY29tL2MvbS5leGU%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&c_b=111567.60000000003
|
152.199.21.70
|
||
https://sync.crwdcntrl.net/qmap?c=240&tp=PUBM&tpid=4746372F-8ECD-4ADF-9F41-B3EFB933B9A4&gdpr=0&gdpr_consent=
|
52.211.255.159
|
||
https://token.rubiconproject.com/token?pid=50242&puid=
|
unknown
|
||
https://image2.pubmatic.com/AdServer/Pug?gdpr=0&vcode=bz0yJnR5cGU9MSZjb2RlPTExMTMmdGw9NDMyMDA=&piggybackCookie=HHY4mEt0PZgHImzNS3hznBJ2O5wHeD_MEnUhr0LJ
|
198.47.127.205
|
||
https://x.bidswitch.net/sync?dsp_id=70&user_id=6723054822523908865&ssp=fmx
|
35.214.136.108
|
||
https://onetag-sys.com/match/?int_id=180&uid=
|
unknown
|
||
https://us-u.openx.net/w/1.0/cm?_={CACHEBUSTER}&id=47f31213-389c-4904-aaa6-9b11aab9c211&gdpr=0&gdpr_consent=&us_privacy=1---&r=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dopx%26i%3D
|
34.98.64.218
|
||
https://github.com/krux/prescribe/
|
unknown
|
||
https://t.adx.opera.com/pub/sync?pubid=pub11169426274368&coppa=&us_privacy=
|
82.145.213.8
|
||
https://onetag-sys.com/match/?int_id=113&callback=https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Donetag.com%26id%3D%24%7BUSER_TOKEN%7D&gdpr=0
|
51.75.86.98
|
||
https://match.adsrvr.org/track/cmf/generic?ttd_pid=8gkxb6n&ttd_tpi=1&ttd_puid=AU1D-0100-001727702220-VFVIGU3O-SOQK&gdpr=0
|
15.197.193.217
|
||
https://ups.analytics.yahoo.com/ups/58292/sync?_origin=1&uid=4746372F-8ECD-4ADF-9F41-B3EFB933B9A4&redir=true&gdpr=0&gdpr_consent=
|
3.75.62.37
|
||
https://ap.lijit.com/pixel?gdpr=0&gdpr_consent=&redir=https%3A%2F%2Fsync.inmobi.com%2Fsetuid%3FbidderID%3D13%26dspUserId%3D%24UID
|
34.248.207.102
|
||
https://ep2.adtrafficquality.google/sodar/$
|
unknown
|
||
https://ids.ad.gt/api/v1/g_hosted?id=AU1D-0100-001727702220-VFVIGU3O-SOQK
|
52.40.251.215
|
||
https://ads.servenobid.com/sync?pid=369&uid=50800d3c-299b-44df-86be-8e367cae4959
|
54.170.214.245
|
||
https://cdn.adpushup.com/42845/adpushup.js
|
152.199.21.70
|
||
https://ids.ad.gt/api/v1/t_match?tdid=73e2eec1-23cf-4a56-8a81-97103112d253&id=AU1D-0100-001727702220-VFVIGU3O-SOQK
|
52.40.251.215
|
||
https://cm.g.doubleclick.net/pixel?google_nid=pubmatic&google_cm&google_sc&gdpr=0&gdpr_consent=
|
142.250.185.194
|
||
https://apex.go.sonobi.com/trinity.json?key_maker=%7B%22953b66a7be29f8e%22%3A%222460649b48d5963cdf8a%7C640x360%7Cf%3D0.85%2Cc%3Dv%2Cpm%3D2%3A6%2Cp%3D1%2C%22%2C%229612500ee99ea55%22%3A%222460649b48d5963cdf8a%7C640x360%7Cf%3D0.85%2Cc%3Dv%2Cpm%3D2%3A6%2Cp%3D1%2C%22%7D&ref=https%3A%2F%2Fwww.multitran.com%2Fc%2Fm.exe%3Ft%3D5428877_1_2%26s1%3D%25ED%25E0%25F3%25F7%25ED%25EE-%25E8%25F1%25F1%25EB%25E5%25E4%25EE%25E2%25E0%25F2%25E5%25EB%25FC%25F1%25EA%25E8%25E9&s=d0bc806f-8272-46d5-852b-f872883617a1&pv=f3307e57-ba96-4e7a-b934-ceb4cf3d3d43&vp=desktop&lib_name=prebid&lib_v=8.45.0&us=5&iqid=null&fpd=%7B%22source%22%3A%7B%7D%2C%22site%22%3A%7B%22domain%22%3A%22multitran.com%22%2C%22keywords%22%3A%22Multitran%2Cdictionary%2Ctranslation%22%2C%22publisher%22%3A%7B%22domain%22%3A%22multitran.com%22%7D%2C%22page%22%3A%22https%3A%2F%2Fwww.multitran.com%2Fc%2Fm.exe%3Ft%3D5428877_1_2%26s1%3D%25ED%25E0%25F3%25F7%25ED%25EE-%25E8%25F1%25F1%25EB%25E5%25E4%25EE%25E2%25E0%25F2%25E5%25EB%25FC%25F1%25EA%25E8%25E9%22%7D%2C%22device%22%3A%7B%22w%22%3A1280%2C%22h%22%3A907%2C%22dnt%22%3A0%2C%22ua%22%3A%22Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64)%20AppleWebKit%2F537.36%20(KHTML%2C%20like%20Gecko)%20Chrome%2F117.0.0.0%20Safari%2F537.36%22%2C%22language%22%3A%22en%22%2C%22sua%22%3A%7B%22source%22%3A1%2C%22platform%22%3A%7B%22brand%22%3A%22Windows%22%7D%2C%22browsers%22%3A%5B%7B%22brand%22%3A%22Google%20Chrome%22%2C%22version%22%3A%5B%22117%22%5D%7D%2C%7B%22brand%22%3A%22Not%3BA%3DBrand%22%2C%22version%22%3A%5B%228%22%5D%7D%2C%7B%22brand%22%3A%22Chromium%22%2C%22version%22%3A%5B%22117%22%5D%7D%5D%2C%22mobile%22%3A0%7D%7D%7D&ius=0&schain=%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22adpushup.com%22%2C%22sid%22%3A%2250b20a9bbdab7514c096e12d3b6f06d8%22%2C%22hp%22%3A1%7D%5D%7D&kw=Multitran%2Cdictionary%2Ctranslation&coppa=0
|
69.166.1.9
|
||
https://keymap.adpushup.com/urlutmmapping/42845/UrlMapping/ca477594da315e4b53f6ea52b8abd56c50a329fa.json
|
152.199.21.70
|
||
https://cdn.hadronid.net/hadron.js
|
unknown
|
||
https://aax-eu.amazon-adsystem.com/s/v3/pr?exlist=n-Beeswax_n-sharethrough_n-onetag_cnv_n-nativo&fv=1.0&a=cm&cm3ppd=1&dmt=3&gdpr=0
|
52.95.115.255
|
||
https://csync.smilewanted.com/set_partner_userid_get/pubmatic/4746372F-8ECD-4ADF-9F41-B3EFB933B9A4
|
104.22.31.209
|
||
https://ap.lijit.com/dsp/google/cookiematch/dv?gdpr=&gdpr_consent=&gpp_sid=
|
54.216.33.27
|
||
https://developers.google.com/youtube/iframe_api_reference#Events
|
unknown
|
||
https://sync.1rx.io/usersync/tradedesk/73e2eec1-23cf-4a56-8a81-97103112d253
|
46.228.174.117
|
||
https://cm-supply-web.gammaplatform.com/adx/usersyncsupply?pid=7&t=pixel
|
unknown
|
||
https://aax.amazon-adsystem.com/e/dtb/bid?src=600&u=https%3A%2F%2Fwww.multitran.com%2Fc%2Fm.exe%3Ft%3D5428877_1_2%26s1%3D%25ED%25E0%25F3%25F7%25ED%25EE-%25E8%25F1%25F1%25EB%25E5%25E4%25EE%25E2%25E0%25F2%25E5%25EB%25FC%25F1%25EA%25E8%25E9&pid=LA2PNEcoAcn0p&cb=25&ws=1034x870&v=24.827.1552&t=3000&slots=%5B%7B%22fc%22%3A%22USD%22%2C%22fp%22%3A85%2C%22id%22%3A%22Adpushup_Instream%22%2C%22mt%22%3A%22v%22%2C%22s%22%3A%5B%22640x480%22%5D%7D%5D&pj=%7B%22device%22%3A%7B%22sua%22%3A%7B%22architecture%22%3A%22x86%22%2C%22bitness%22%3A%2264%22%2C%22mobile%22%3A0%2C%22model%22%3A%22%22%2C%22source%22%3A2%2C%22platform%22%3A%7B%22brand%22%3A%22Windows%22%2C%22version%22%3A%5B%2210%22%2C%220%22%2C%220%22%5D%7D%2C%22browsers%22%3A%5B%7B%22brand%22%3A%22Google+Chrome%22%2C%22version%22%3A%5B%22117%22%2C%220%22%2C%225938%22%2C%22132%22%5D%7D%2C%7B%22brand%22%3A%22Not%3BA%3DBrand%22%2C%22version%22%3A%5B%228%22%2C%220%22%2C%220%22%2C%220%22%5D%7D%2C%7B%22brand%22%3A%22Chromium%22%2C%22version%22%3A%5B%22117%22%2C%220%22%2C%225938%22%2C%22132%22%5D%7D%5D%7D%7D%7D&schain=1.0%2C1%21adpushup.com%2C50b20a9bbdab7514c096e12d3b6f06d8%2C1%2C%2C%2C&gpp_sid=%5B-1%5D&sm=b0b0c663-9fc5-4ff1-8415-8776ba358d7f&pubid=2e7e1587-d92f-46dd-8721-80b53eccb87e&gdpre=0&gdprl=%7B%22status%22%3A%22tcfv2-success%22%7D&vm=%7B%22ids%22%3A%7B%22audigent%22%3A%22060ixdbj2g5le89i7dai9dafeb9hg6ie6dhuokgwsqy0m46u2keu6keomg6sq0um0%22%2C%22id5%22%3A%220%22%2C%22lotame%22%3A%22bf75845a6b4a967090c4c282cbd416d539380bdcbdb014206ae6fc29a484d1c5%22%2C%22pubcommon%22%3A%22ac47d973-e264-4b59-b4d0-8404bfddc2d2%22%7D%7D
|
13.33.173.196
|
||
https://apex.go.sonobi.com/trinity.json?key_maker=%7B%2246da7cf8809eaad%22%3A%222460649b48d5963cdf8a%7C640x360%7Cf%3D0.85%2Cc%3Dv%2Cpm%3D2%3A6%2Cp%3D1%2C%22%2C%224795f831bb61267%22%3A%222460649b48d5963cdf8a%7C640x360%7Cf%3D0.85%2Cc%3Dv%2Cpm%3D2%3A6%2Cp%3D1%2C%22%7D&ref=https%3A%2F%2Fwww.multitran.com%2Fc%2Fm.exe%3Ft%3D5428877_1_2%26s1%3D%25ED%25E0%25F3%25F7%25ED%25EE-%25E8%25F1%25F1%25EB%25E5%25E4%25EE%25E2%25E0%25F2%25E5%25EB%25FC%25F1%25EA%25E8%25E9&s=f5bd08e7-b131-49e1-82f0-60eb187503f5&pv=f3307e57-ba96-4e7a-b934-ceb4cf3d3d43&vp=desktop&lib_name=prebid&lib_v=8.45.0&us=5&iqid=null&fpd=%7B%22source%22%3A%7B%7D%2C%22site%22%3A%7B%22domain%22%3A%22multitran.com%22%2C%22keywords%22%3A%22Multitran%2Cdictionary%2Ctranslation%22%2C%22publisher%22%3A%7B%22domain%22%3A%22multitran.com%22%7D%2C%22page%22%3A%22https%3A%2F%2Fwww.multitran.com%2Fc%2Fm.exe%3Ft%3D5428877_1_2%26s1%3D%25ED%25E0%25F3%25F7%25ED%25EE-%25E8%25F1%25F1%25EB%25E5%25E4%25EE%25E2%25E0%25F2%25E5%25EB%25FC%25F1%25EA%25E8%25E9%22%7D%2C%22device%22%3A%7B%22w%22%3A1280%2C%22h%22%3A907%2C%22dnt%22%3A0%2C%22ua%22%3A%22Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64)%20AppleWebKit%2F537.36%20(KHTML%2C%20like%20Gecko)%20Chrome%2F117.0.0.0%20Safari%2F537.36%22%2C%22language%22%3A%22en%22%2C%22sua%22%3A%7B%22source%22%3A1%2C%22platform%22%3A%7B%22brand%22%3A%22Windows%22%7D%2C%22browsers%22%3A%5B%7B%22brand%22%3A%22Google%20Chrome%22%2C%22version%22%3A%5B%22117%22%5D%7D%2C%7B%22brand%22%3A%22Not%3BA%3DBrand%22%2C%22version%22%3A%5B%228%22%5D%7D%2C%7B%22brand%22%3A%22Chromium%22%2C%22version%22%3A%5B%22117%22%5D%7D%5D%2C%22mobile%22%3A0%7D%7D%7D&ius=0&schain=%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22adpushup.com%22%2C%22sid%22%3A%2250b20a9bbdab7514c096e12d3b6f06d8%22%2C%22hp%22%3A1%7D%5D%7D&kw=Multitran%2Cdictionary%2Ctranslation&coppa=0
|
69.166.1.9
|
||
https://ads.servenobid.com/adreq?cb=4900
|
34.246.81.179
|
||
https://a.nel.cloudflare.com/report/v4?s=cvqiu%2Bsi0tZmOk%2FevM6rxH9MJ6aF%2BGrEGjFfhiU2DahRDA4ZnilVJ6rOZ%2BnG3oqZpVlgd2wG%2FpaGgHCtl9%2B7VbFh%2FEUqf%2BYTdYYhnhoA%2BXYJVOfCYvoFoofbUuH%2B8YF0aBiwkTwt
|
35.190.80.1
|
||
https://securepubads.g.doubleclick.net/pagead/managed/js/gpt/m202409240101/pubads_impl.js
|
142.250.185.98
|
||
https://cs.media.net/cksync?cs=31&type=tam&redirect=https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Dmedia.net%26id%3D%3Cvsid%3E&gdpr=0
|
23.212.88.20
|
||
https://match.adsrvr.org/track/cmf/generic?ttd_pid=tapad&ttd_tpi=1&ttd_puid=882c07dc-2932-46e0-9294-e34fa891ea18%252Chttps%25253A%25252F%25252Fids.ad.gt%25252Fapi%25252Fv1%25252Ftapad_match%25253Fid%25253DAU1D-0100-001727702220-VFVIGU3O-SOQK%252526tapad_id%25253D882c07dc-2932-46e0-9294-e34fa891ea18%252C&gdpr=0&gdpr_consent=
|
15.197.193.217
|
||
https://sync.mathtag.com/sync/img?cs_wd_sy=1&dp=43&redir=https%3A%2F%2Fsync.go.sonobi.com%2Fus.gif%3Fnw%3Dif%26nuid%3D[MM_UUID]
|
74.121.140.211
|
||
https://pbjs.e-planning.net/pbjs/1/AP/42845_multitran.com/1/www.multitran.com/ROS?rnd=0.43013598678955556&e=728x90_0%3A728x90%2C690x90%2C675x90%2C670x90%2C650x90%2C630x90%2C600x90%2C580x90%2C570x90%2C468x60%2C320x50%2C300x50%2C300x75&ur=https%3A%2F%2Fwww.multitran.com%2Fc%2Fm.exe%3Ft%3D5428877_1_2%26s1%3D%25ED%25E0%25F3%25F7%25ED%25EE-%25E8%25F1%25F1%25EB%25E5%25E4%25EE%25E2%25E0%25F2%25E5%25EB%25FC%25F1%25EA%25E8%25E9&pbv=8.27.0&ncb=1&vs=F&crs=UTF-8&fr=https%3A%2F%2Fwww.multitran.com%2Fc%2Fm.exe%3Ft%3D5428877_1_2%26s1%3D%25ED%25E0%25F3%25F7%25ED%25EE-%25E8%25F1%25F1%25EB%25E5%25E4%25EE%25E2%25E0%25F2%25E5%25EB%25FC%25F1%25EA%25E8%25E9&ccpa=1---&e_quantcastId=P0-219187005-1727702215188&e_pubcid=ac47d973-e264-4b59-b4d0-8404bfddc2d2
|
193.3.178.4
|
||
https://bh.contextweb.com/bh/rtset?pid=561516&ev=1&us_privacy=&rurl=https%3A%2F%2Fssc-cms.33across.com%2Fps%2F%3Fxi%3D5%26xu%3D%25%25VGUID%25%25
|
208.93.169.131
|
||
https://x.bidswitch.net/sync?dsp_id=70&user_id=6723054822523908865&ssp=aerserv
|
35.214.136.108
|
||
https://bh.contextweb.com/bh/rtset?pid=560288&ev=1&rurl=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D92%26partneruserid%3D%25%25VGUID%25%25&gdpr=0&gdpr_consent=
|
208.93.169.131
|
||
https://ap.lijit.com/pixel?&gdpr=0&us_privacy=1---&redir=https%3A%2F%2Fprebid.a-mo.net%2Fcchain%2F3%2F25805%3Fgpp%3D%26gdpr_consent%3D%26gdpr%3D0%26gpp_sid%3D%26us_privacy%3D%26A%3Dd645fa9b-421a-454b-a837-735a1676a4cc%26bidder%3Dsovrn%26cbx%3DaHR0cHM6Ly9hZHMuc2VydmVub2JpZC5jb20vc3luYz9waWQ9MzI3JnVpZD0%253D%26uid%3D%24UID
|
54.155.119.8
|
||
https://cs.ingage.tech/wdc/v1/syncPage/sharethrough?userId=e416d9de-73a3-41d6-875b-fcc8585a3224&to=https%3A%2F%2Fmatch.sharethrough.com%2Funiversal%2Fv1%3Fsupply_id%3Djc3Tkmr6
|
52.72.235.192
|
||
https://sync.go.sonobi.com/us.gif?nw=st&nuid=RO9hsv43VjtJegiqx3XZlggueyE
|
69.166.1.67
|
||
https://us.shb-sync.com/d3cf52c0-fa89-45fb-83fa-f14d2af39226.gif?puid=[UID]&redir=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fadwmg%2F%5BUID%5D&gdpr=[GDPR]&gdpr_consent=[GDPR_CONSENT]&ccpa=[CCPA]
|
8.2.110.33
|
||
https://dis.criteo.com/dis/usersync.aspx?r=3&p=4&cp=pubmaticUS&cu=1&&gdpr=0&gdpr_consent=&url=https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:@@CRITEO_USERID@@
|
178.250.1.9
|
||
https://cse.google.com/cse.js
|
unknown
|
||
https://cdn.ampproject.org/rtv/$
|
unknown
|
||
https://e3.adpushup.com/AdPushupFeedbackWebService/user/sync
|
152.199.21.70
|
||
https://p.ad.gt/api/v1/p/777
|
unknown
|
||
https://ads.yieldmo.com/pbsync?is=rise&gdpr=0&gdpr_consent=&us_privacy=&redirectUri=https%3A%2F%2Fcs-server-s2s.yellowblue.io%2Fcs%3Faid%3D11584%26uid%3D$UID
|
54.194.52.65
|
||
https://cm.g.doubleclick.net/pixel?google_nid=gumgum_dbm&google_hm=ZV84ZjkxYjNjMC00MjU2LTRhZjEtOTQyM
|
unknown
|
||
https://apex.go.sonobi.com/trinity.json?key_maker=%7B%22263a4d8201c33695%22%3A%222460649b48d5963cdf8a%7C640x360%7Cf%3D0.85%2Cc%3Dv%2Cpm%3D2%3A6%2Cp%3D1%2C%22%2C%22264e18629fe93403%22%3A%222460649b48d5963cdf8a%7C640x360%7Cf%3D0.85%2Cc%3Dv%2Cpm%3D2%3A6%2Cp%3D1%2C%22%7D&ref=https%3A%2F%2Fwww.multitran.com%2Fc%2Fm.exe%3Ft%3D5428877_1_2%26s1%3D%25ED%25E0%25F3%25F7%25ED%25EE-%25E8%25F1%25F1%25EB%25E5%25E4%25EE%25E2%25E0%25F2%25E5%25EB%25FC%25F1%25EA%25E8%25E9&s=bb8830e3-a107-48fd-ac20-b8dca6ccbfae&pv=f3307e57-ba96-4e7a-b934-ceb4cf3d3d43&vp=desktop&lib_name=prebid&lib_v=8.45.0&us=5&iqid=null&fpd=%7B%22source%22%3A%7B%7D%2C%22site%22%3A%7B%22domain%22%3A%22multitran.com%22%2C%22keywords%22%3A%22Multitran%2Cdictionary%2Ctranslation%22%2C%22publisher%22%3A%7B%22domain%22%3A%22multitran.com%22%7D%2C%22page%22%3A%22https%3A%2F%2Fwww.multitran.com%2Fc%2Fm.exe%3Ft%3D5428877_1_2%26s1%3D%25ED%25E0%25F3%25F7%25ED%25EE-%25E8%25F1%25F1%25EB%25E5%25E4%25EE%25E2%25E0%25F2%25E5%25EB%25FC%25F1%25EA%25E8%25E9%22%7D%2C%22device%22%3A%7B%22w%22%3A1034%2C%22h%22%3A870%2C%22dnt%22%3A0%2C%22ua%22%3A%22Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64)%20AppleWebKit%2F537.36%20(KHTML%2C%20like%20Gecko)%20Chrome%2F117.0.0.0%20Safari%2F537.36%22%2C%22language%22%3A%22en%22%2C%22sua%22%3A%7B%22source%22%3A1%2C%22platform%22%3A%7B%22brand%22%3A%22Windows%22%7D%2C%22browsers%22%3A%5B%7B%22brand%22%3A%22Google%20Chrome%22%2C%22version%22%3A%5B%22117%22%5D%7D%2C%7B%22brand%22%3A%22Not%3BA%3DBrand%22%2C%22version%22%3A%5B%228%22%5D%7D%2C%7B%22brand%22%3A%22Chromium%22%2C%22version%22%3A%5B%22117%22%5D%7D%5D%2C%22mobile%22%3A0%7D%7D%7D&ius=0&schain=%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22adpushup.com%22%2C%22sid%22%3A%2250b20a9bbdab7514c096e12d3b6f06d8%22%2C%22hp%22%3A1%7D%5D%7D&kw=Multitran%2Cdictionary%2Ctranslation&coppa=0
|
69.166.1.9
|
There are 90 hidden URLs, click here to show them.
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
securepubads.g.doubleclick.net
|
142.250.186.66
|
||
um.simpli.fi
|
35.204.74.118
|
||
global.px.quantserve.com
|
91.228.74.159
|
||
ssum.casalemedia.com
|
104.18.36.155
|
||
d-ams1.turn.com
|
46.228.164.13
|
||
rtb.openx.net
|
35.227.252.103
|
||
bttrack.com
|
192.132.33.68
|
||
1.cpm.ak-is2.net
|
103.67.200.72
|
||
mwzeom.zeotap.com
|
104.22.51.98
|
||
r.casalemedia.com
|
172.64.151.101
|
||
ats-eks.eu-central-1.dcs-online-targeting-prd.aws.oath.cloud
|
3.75.62.37
|
||
sync.intentiq.com
|
3.160.150.30
|
||
id.rlcdn.com
|
35.244.174.68
|
||
bcp.crwdcntrl.net
|
52.19.187.77
|
||
match.adsrvr.org
|
15.197.193.217
|
||
dsp-cookie.adfarm1.adition.com
|
80.82.210.217
|
||
creativecdn.com
|
185.184.8.90
|
||
d1giprow6b9psh.cloudfront.net
|
13.32.27.88
|
||
uip.semasio.net
|
77.243.51.122
|
||
ActivationEdge-activation-1631408035.eu-central-1.elb.amazonaws.com
|
52.58.104.46
|
||
m.deepintent.com
|
8.18.47.7
|
||
iad-2-apex.go.sonobi.com
|
69.166.1.8
|
||
nld-prebid.a-mx.net
|
163.5.194.33
|
||
pixel-sync.sitescout.com
|
34.36.216.150
|
||
pixel.onaudience.com
|
54.38.113.4
|
||
firewall-external-2134955858.eu-west-1.elb.amazonaws.com
|
52.31.206.55
|
||
d1ykf07e75w7ss.cloudfront.net
|
13.224.186.120
|
||
ssum-sec.casalemedia.com
|
172.64.151.101
|
||
rtb.adgrx.com
|
52.215.155.11
|
||
config.aps.amazon-adsystem.com
|
18.245.31.123
|
||
iad-2-sync.go.sonobi.com
|
69.166.1.67
|
||
am1-direct-bgp.contextweb.com
|
208.93.169.131
|
||
hbx.media.net
|
23.212.88.20
|
||
nlb-dflb-496f722d06cc67e2.elb.eu-north-1.amazonaws.com
|
13.53.196.230
|
||
hde.tynt.com
|
67.202.105.31
|
||
a018.casalemedia.com
|
75.119.185.41
|
||
prebid.smilewanted.com
|
104.22.31.209
|
||
pbs-cluster-prod-public-1705277228.eu-central-1.elb.amazonaws.com
|
35.156.32.92
|
||
pixel-eu.onaudience.com
|
54.38.113.6
|
||
spug-lhrc.pubmnet.com
|
185.64.190.81
|
||
rtb.adentifi.com
|
44.218.170.50
|
||
pixel.tapad.com
|
34.111.113.62
|
||
rtb-csync-euw2.smartadserver.com
|
51.178.195.216
|
||
a.nel.cloudflare.com
|
35.190.80.1
|
||
us-east-1.event.prod.bidr.io
|
54.157.156.92
|
||
imgsync-amsfpairbc.pubmnet.com
|
198.47.127.18
|
||
alb-logs-http-shard0-194173476.us-east-1.elb.amazonaws.com
|
3.233.146.93
|
||
outspot2-ams.adx.opera.com
|
82.145.213.8
|
||
match.adsby.bidtheatre.com
|
188.166.17.21
|
||
b.sharethrough.com
|
18.66.122.23
|
||
sync.e-volution.ai
|
91.227.144.188
|
||
matching.truffle.bid
|
162.55.120.196
|
||
httplb-gce-nl-clickdistrict.clickdistrict.iponweb.net
|
35.214.241.248
|
||
jsdelivr.map.fastly.net
|
151.101.129.229
|
||
groundcontrol.rendering.sharethrough.com
|
13.32.27.87
|
||
jelly.mdhv.io
|
216.239.32.21
|
||
1x1.a-mo.net
|
3.123.214.38
|
||
ids.ad.gt
|
52.40.251.215
|
||
pug-vac.pubmnet.com
|
8.28.7.83
|
||
sync.1rx.io
|
46.228.174.117
|
||
idaas-ext.cph.liveintent.com
|
54.173.74.149
|
||
ds-pr-bh.ybp.gysm.yahoodns.net
|
54.77.193.201
|
||
api.id5-sync.com
|
141.95.98.64
|
||
spug-amsfpairbc.pubmnet.com
|
198.47.127.20
|
||
ads.mountain.com
|
34.209.34.172
|
||
nydc1.outbrain.org
|
70.42.32.159
|
||
us-u.openx.net
|
34.98.64.218
|
||
d27cxv6pgoe1ut.cloudfront.net
|
13.225.78.90
|
||
ads.servenobid.com
|
54.170.214.245
|
||
in-ftd-65.nl3.vip.prod.criteo.com
|
178.250.1.56
|
||
gs.mountain.com
|
35.81.162.201
|
||
alb-logs-http-shard3-1093753826.us-east-1.elb.amazonaws.com
|
3.233.155.50
|
||
d1jvc9b8z3vcjs.cloudfront.net
|
18.244.15.236
|
||
prod.appnexus.map.fastly.net
|
151.101.1.108
|
||
pixel-origin.mathtag.com
|
216.200.232.253
|
||
alb-logs-http-shard4-375716607.us-east-1.elb.amazonaws.com
|
3.233.156.158
|
||
www.multitran.com
|
65.109.102.246
|
||
fp31cd.wpc.thetacdn.net
|
152.199.21.70
|
||
htlb.casalemedia.com
|
172.64.151.101
|
||
cs.iqzone.com
|
8.2.111.13
|
||
usersync.gumgum.com
|
34.247.205.196
|
||
dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com
|
54.217.153.213
|
||
sync-service.net
|
204.62.13.67
|
||
raptor-prd-ew1-alb-2127381300.eu-west-1.elb.amazonaws.com
|
99.80.51.253
|
||
static.smilewanted.com
|
104.22.30.209
|
||
exchange.mediavine.com
|
3.124.241.215
|
||
play.google.com
|
142.250.185.142
|
||
gum.nl3.vip.prod.criteo.com
|
178.250.1.11
|
||
cm.ctnsnet.com
|
35.186.193.173
|
||
pug-ams-bc.pubmnet.com
|
198.47.127.205
|
||
eexsync.com
|
80.77.87.108
|
||
cs.yellowblue.io
|
52.213.77.211
|
||
alb-logs-http-shard1-557248136.us-east-1.elb.amazonaws.com
|
3.233.144.220
|
||
load-euw1.exelator.com
|
34.254.143.3
|
||
match-eu-central-1-ecs.sharethrough.com
|
18.197.30.174
|
||
static.nl3.vip.prod.criteo.net
|
178.250.1.3
|
||
id5-sync.com
|
162.19.138.117
|
||
cs.admanmedia.com
|
80.77.87.161
|
||
cdn.w55c.net
|
3.73.2.196
|
||
btlr-eu-central-1.sharethrough.com
|
18.159.212.21
|
There are 90 hidden domains, click here to show them.
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
37.252.171.149
|
unknown
|
European Union
|
||
91.228.74.200
|
unknown
|
United Kingdom
|
||
13.35.57.188
|
unknown
|
United States
|
||
185.89.210.153
|
unknown
|
Germany
|
||
99.80.51.253
|
raptor-prd-ew1-alb-2127381300.eu-west-1.elb.amazonaws.com
|
United States
|
||
52.211.255.159
|
sync.crwdcntrl.net
|
United States
|
||
54.78.188.125
|
unknown
|
United States
|
||
52.210.91.197
|
unknown
|
United States
|
||
5.135.209.97
|
unknown
|
France
|
||
198.47.127.205
|
pug-ams-bc.pubmnet.com
|
United States
|
||
35.71.131.137
|
unknown
|
United States
|
||
34.254.143.3
|
load-euw1.exelator.com
|
United States
|
||
18.66.122.92
|
unknown
|
United States
|
||
104.18.42.227
|
unknown
|
United States
|
||
104.22.53.173
|
cdn.hadronid.net
|
United States
|
||
52.50.91.153
|
tag.device9.com
|
United States
|
||
34.249.58.119
|
sync.springserve.com
|
United States
|
||
52.54.151.52
|
sync.ipredictive.com
|
United States
|
||
34.243.210.180
|
unknown
|
United States
|
||
3.121.102.242
|
unknown
|
United States
|
||
89.149.192.244
|
unknown
|
Netherlands
|
||
185.255.84.152
|
visitor-fra02.omnitagjs.com
|
France
|
||
185.255.84.153
|
unknown
|
France
|
||
216.58.206.34
|
cm.g.doubleclick.net
|
United States
|
||
208.93.169.131
|
am1-direct-bgp.contextweb.com
|
United States
|
||
18.157.230.4
|
unknown
|
United States
|
||
54.194.52.65
|
rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com
|
United States
|
||
185.89.210.180
|
ib.anycast.adnxs.com
|
Germany
|
||
162.19.138.120
|
unknown
|
United States
|
||
185.89.210.46
|
unknown
|
Germany
|
||
3.233.155.50
|
alb-logs-http-shard3-1093753826.us-east-1.elb.amazonaws.com
|
United States
|
||
54.175.124.176
|
unknown
|
United States
|
||
178.250.1.9
|
widget.nl3.vip.prod.criteo.com
|
France
|
||
178.250.1.7
|
ssp-sync.nl3.vip.prod.criteo.com
|
France
|
||
35.186.154.107
|
cm-supply-web.gammaplatform.com
|
United States
|
||
3.211.168.14
|
partners-alb-1113315349.us-east-1.elb.amazonaws.com
|
United States
|
||
178.250.1.3
|
static.nl3.vip.prod.criteo.net
|
France
|
||
91.227.144.188
|
sync.e-volution.ai
|
Kazakhstan
|
||
54.155.119.8
|
blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com
|
United States
|
||
54.84.3.18
|
unknown
|
United States
|
||
142.250.181.226
|
unknown
|
United States
|
||
34.102.163.6
|
ad.mrtnsvr.com
|
United States
|
||
51.75.86.98
|
unknown
|
France
|
||
162.19.138.117
|
id5-sync.com
|
United States
|
||
162.19.138.118
|
lb.eu-1-id5-sync.com
|
United States
|
||
46.228.174.117
|
sync.1rx.io
|
United Kingdom
|
||
52.58.104.46
|
ActivationEdge-activation-1631408035.eu-central-1.elb.amazonaws.com
|
United States
|
||
91.228.74.244
|
unknown
|
United Kingdom
|
||
104.18.37.193
|
s.tribalfusion.com
|
United States
|
||
103.67.200.72
|
1.cpm.ak-is2.net
|
United States
|
||
52.95.115.255
|
unknown
|
United States
|
||
8.18.47.7
|
m.deepintent.com
|
United States
|
||
18.66.102.121
|
unknown
|
United States
|
||
3.233.146.48
|
unknown
|
United States
|
||
162.19.138.83
|
unknown
|
United States
|
||
54.74.215.235
|
unknown
|
United States
|
||
35.214.241.248
|
httplb-gce-nl-clickdistrict.clickdistrict.iponweb.net
|
United States
|
||
3.124.64.248
|
eu-tlx.3lift.com
|
United States
|
||
69.166.1.9
|
unknown
|
United States
|
||
69.166.1.8
|
iad-2-apex.go.sonobi.com
|
United States
|
||
34.96.71.22
|
s.dsp-prod.demandbase.com
|
United States
|
||
34.248.56.28
|
euw-ice.360yield.com
|
United States
|
||
104.18.38.76
|
js-sec.indexww.com
|
United States
|
||
104.18.36.155
|
ssum.casalemedia.com
|
United States
|
||
54.38.113.4
|
pixel.onaudience.com
|
France
|
||
104.18.41.106
|
ex.ingage.tech
|
United States
|
||
3.123.214.38
|
1x1.a-mo.net
|
United States
|
||
34.149.66.130
|
http-intake.logs.us5.datadoghq.com
|
United States
|
||
212.102.56.178
|
1792641740.rsc.cdn77.org
|
Italy
|
||
178.250.1.56
|
in-ftd-65.nl3.vip.prod.criteo.com
|
France
|
||
104.22.52.173
|
unknown
|
United States
|
||
18.245.31.106
|
public.servenobid.com
|
United States
|
||
172.217.16.194
|
unknown
|
United States
|
||
52.214.158.174
|
unknown
|
United States
|
||
34.91.62.186
|
unknown
|
United States
|
||
34.117.239.71
|
events-ssc.33across.com
|
United States
|
||
44.242.111.32
|
unknown
|
United States
|
||
67.202.105.23
|
unknown
|
United States
|
||
3.71.149.231
|
unknown
|
United States
|
||
172.64.151.101
|
r.casalemedia.com
|
United States
|
||
54.38.113.6
|
pixel-eu.onaudience.com
|
France
|
||
67.202.105.33
|
unknown
|
United States
|
||
67.202.105.31
|
hde.tynt.com
|
United States
|
||
52.31.206.55
|
firewall-external-2134955858.eu-west-1.elb.amazonaws.com
|
United States
|
||
172.240.155.116
|
sync.colossusssp.com
|
United States
|
||
35.208.249.213
|
trace.mediago.io
|
United States
|
||
142.250.186.98
|
unknown
|
United States
|
||
35.186.193.173
|
cm.ctnsnet.com
|
United States
|
||
67.220.226.233
|
unknown
|
United States
|
||
67.220.226.232
|
aax-eu.amazon-adsystem.com
|
United States
|
||
185.89.210.90
|
unknown
|
Germany
|
||
8.2.110.134
|
cs.krushmedia.com
|
United States
|
||
34.250.159.220
|
unknown
|
United States
|
||
65.109.102.246
|
www.multitran.com
|
United States
|
||
18.245.31.123
|
config.aps.amazon-adsystem.com
|
United States
|
||
18.66.122.23
|
b.sharethrough.com
|
United States
|
||
18.195.125.95
|
unknown
|
United States
|
||
34.107.140.113
|
s2s.t13.io
|
United States
|
||
18.193.1.33
|
sonata-notifications.taptapnetworks.com
|
United States
|
||
54.77.143.176
|
unknown
|
United States
|
There are 90 hidden IPs, click here to show them.
Registry
Path
|
Value
|
Malicious
|
|
---|---|---|---|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Excel\Resiliency\StartupItems
|
.~?
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\MHTML
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\Wow6432Node\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\Version
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\Wow6432Node\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\Version\16
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML
|
KnownIDs
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\shell\Edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Default
Editor
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Old Default
Editor
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Default
Editor\shell
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Old Default
Editor\shell
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Default
Editor\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Old Default
Editor\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Default
Editor\shell\Edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Old Default
Editor\shell\Edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Default
HTML Editor
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Default
HTML Editor\shell
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Default
HTML Editor\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Default
HTML Editor
|
Description
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Default
HTML Editor\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Default
Editor\shell\Print
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Old Default
Editor\shell\Print
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Default
Editor\shell\Print\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Old Default
Editor\shell\Print\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\shell\Print\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\DefaultIcon
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\ShellEx\IconHandler
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\Wow6432Node\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\Old
Icon
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\Wow6432Node\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\Old
Icon\htmlfile
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\Wow6432Node\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\Old
Icon\htmlfile\DefaultIcon
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Microsoft Word
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Microsoft Word\shell
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Microsoft Word\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\WinWord.exe
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\WinWord.exe\shell
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\WinWord.exe\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Microsoft Word\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\WinWord.exe\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Microsoft Excel
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Microsoft Excel\shell
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Microsoft Excel\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Excel.exe
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Excel.exe\shell
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Excel.exe\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Microsoft Excel\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Microsoft Excel\shell\edit\ddeexec
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Excel.exe\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Microsoft Publisher
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Microsoft Publisher\shell
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\MSPub.exe
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\MSPub.exe\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Microsoft Publisher\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\MSPub.exe\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\MHTML
|
KnownIDs
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\MHTML\Default
Editor
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\MHTML\Old Default
Editor
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\MHTML\Default
Editor\shell
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\MHTML\Default
Editor\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\MHTML\Old Default
Editor\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\MHTML\Old Default
Editor\shell\Edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Default
MHTML Editor
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Default
MHTML Editor\shell
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Default
MHTML Editor\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Default
MHTML Editor
|
Description
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Default
MHTML Editor\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Print
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Print\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\MHTML\Old Default
Editor\shell\Print
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\MHTML\Default
Editor\shell\Print\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\MHTML\Old Default
Editor\shell\Print\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\DefaultIcon
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\ShellEx\IconHandler
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\Wow6432Node\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\Old
Icon\mhtmlfile
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\Wow6432Node\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\Old
Icon\mhtmlfile\DefaultIcon
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Microsoft Word
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Microsoft Word\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\WinWord.exe
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\WinWord.exe\shell
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\WinWord.exe\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Microsoft Word\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\WinWord.exe\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Microsoft Excel
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Microsoft Excel\shell
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Microsoft Excel\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Excel.exe
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Excel.exe\shell
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Excel.exe\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Microsoft Excel\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Microsoft Excel\shell\edit\ddeexec
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Excel.exe\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Excel.exe\shell\edit\ddeexec
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Microsoft Publisher
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Microsoft Publisher\shell
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\MSPub.exe
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\MSPub.exe\shell
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\MSPub.exe\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Microsoft Publisher\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\MSPub.exe\shell\edit\command
|
NULL
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Excel
|
ExcelWorkbookOpenedCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ETWMonitor\{02FD33DF-F746-4A10-93A0-2BC6273BC8E4}
|
4
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ETWMonitor\{02FD33DF-F746-4A10-93A0-2BC6273BC8E4}
|
Categories
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ULSMonitor
|
ULSTagIds0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ULSMonitor
|
ULSCategoriesSeverities
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Excel\Security\FileBlock
|
FileTypeBlockList
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Excel\Security\FileBlock
|
OoxmlConverterBlockList
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Excel
|
ExcelWorkbookAutoRecoverDirty
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ReviewCycle
|
ReviewToken
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Excel\Resiliency\DocumentRecovery\2AC16
|
2AC16
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\FileIO
|
FileActivityStoreVersion
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109F00000000000000000F01FEC\Usage
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109F00000000000000000F01FEC\Usage
|
VBAFiles
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\ExdCache\Excel8.0
|
MSForms
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\ExdCache\Excel8.0
|
MSComctlLib
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\VBA\Forms3\Controls
|
EnableActiveXControlArchitetureIndependent
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\VBA\Forms3\Controls
|
EnableActiveXControlMSWebBrowserArchiteturePersistenceIssue
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\TeachingCallouts
|
AccCheckerStatusBarTeachingCallout
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.28
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.29
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel
|
ETag
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel
|
ConfigIds
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Excel\Resiliency\StartupItems
|
e/
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\IdentityCRL\ClockData
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\IdentityCRL\ClockData
|
ClockTimeSeconds
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\IdentityCRL\ClockData
|
TickCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\IdentityCRL\Immersive\production\Property
|
00184010E3A05907
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\ClientTelemetry\Volatile
|
MsaDevice
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ETWMonitor\{02FD33DF-F746-4A10-93A0-2BC6273BC8E4}
|
4
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ETWMonitor\{02FD33DF-F746-4A10-93A0-2BC6273BC8E4}
|
Categories
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ULSMonitor
|
ULSTagIds0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ULSMonitor
|
ULSCategoriesSeverities
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ETWMonitor\{F562BB8E-422D-4B5C-B20E-90D710F7D11C}
|
4
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ETWMonitor\{F562BB8E-422D-4B5C-B20E-90D710F7D11C}
|
Categories
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ETWMonitor\{02FD33DF-F746-4A10-93A0-2BC6273BC8E4}
|
4
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ETWMonitor\{02FD33DF-F746-4A10-93A0-2BC6273BC8E4}
|
Categories
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ULSMonitor
|
ULSTagIds0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ULSMonitor
|
ULSTagIds1
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ULSMonitor
|
ULSTagIds2
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ULSMonitor
|
ULSCategoriesSeverities
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ULSMonitor
|
ULSAllCategories
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ETWMonitor\{F562BB8E-422D-4B5C-B20E-90D710F7D11C}
|
4
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ETWMonitor\{F562BB8E-422D-4B5C-B20E-90D710F7D11C}
|
Categories
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ETWMonitor\{02FD33DF-F746-4A10-93A0-2BC6273BC8E4}
|
4
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ETWMonitor\{02FD33DF-F746-4A10-93A0-2BC6273BC8E4}
|
Categories
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ULSMonitor
|
ULSTagIds0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ULSMonitor
|
ULSTagIds1
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ULSMonitor
|
ULSTagIds2
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ULSMonitor
|
ULSCategoriesSeverities
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesMetadata\excel.exe\ULSMonitor
|
ULSAllCategories
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Excel\Resiliency\DocumentRecovery\4EABB
|
4EABB
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\ClientTelemetry\Sampling
|
1
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\LanguageResources\EnabledEditingLanguages
|
en-CH
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\LanguageResources\EnabledEditingLanguages
|
en-GB
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\LanguageResources\EnabledEditingLanguages
|
en-CH
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\LanguageResources\EnabledEditingLanguages
|
en-GB
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Excel
|
ImmersiveWorkbookDirtySentinel
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Excel
|
ExcelPreviousSessionId
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common
|
SessionId
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\Wow6432Node\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\Version\16
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Default
Editor\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Old Default
Editor\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Default
Editor\shell\Edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Old Default
Editor\shell\Edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Default
Editor\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Old Default
Editor\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\shell\Edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\shell\Edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\shell\Edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\shell\Edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Default
HTML Editor\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Default
HTML Editor\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Default
Editor\shell\Print
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Old Default
Editor\shell\Print
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Default
Editor\shell\Print\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\HTML\Old Default
Editor\shell\Print\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\shell\Print
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\shell\Print
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\shell\Print
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\shell\Print
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\shell\Print\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\shell\Print\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\shell\Print\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\htmlfile\ShellEx\IconHandler
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\Wow6432Node\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\Old
Icon\htmlfile\DefaultIcon
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\Wow6432Node\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\InprocServer32
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Microsoft Word\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Microsoft Word\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\WinWord.exe\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\WinWord.exe\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Microsoft Excel\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Microsoft Excel\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Microsoft Excel\shell\edit\ddeexec
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Excel.exe\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Excel.exe\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Excel.exe\shell\edit\ddeexec
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Microsoft Publisher\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\Microsoft Publisher\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\MSPub.exe\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.htm\OpenWithList\MSPub.exe\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\MHTML\Default
Editor\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\MHTML\Old Default
Editor\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\MHTML\Old Default
Editor\shell\Edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\MHTML\Default
Editor\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Shared\MHTML\Old Default
Editor\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Default
MHTML Editor\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Default
MHTML Editor\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Print\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Print
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Print
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Print
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Print
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Print\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Print\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\shell\Print\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\mhtmlfile\ShellEx\IconHandler
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\Wow6432Node\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\Old
Icon\mhtmlfile\DefaultIcon
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Microsoft Word\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Microsoft Word\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\WinWord.exe\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\WinWord.exe\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Microsoft Excel\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Microsoft Excel\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Microsoft Excel\shell\edit\ddeexec
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Excel.exe\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Excel.exe\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Excel.exe\shell\edit\ddeexec
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\Microsoft Publisher\shell\edit\command
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\MSPub.exe\shell\edit
|
NULL
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\.mht\OpenWithList\MSPub.exe\shell\edit\command
|
NULL
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\Internet\WebServiceCache\AllUsers\officeclient.microsoft.com\config16--syslcid=8192&build=16.0.16827&crev=3\0
|
FilePath
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\Internet\WebServiceCache\AllUsers\officeclient.microsoft.com\config16--syslcid=8192&build=16.0.16827&crev=3\0
|
StartDate
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\Internet\WebServiceCache\AllUsers\officeclient.microsoft.com\config16--syslcid=8192&build=16.0.16827&crev=3\0
|
EndDate
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs
|
LicenseCategoryInfo
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs
|
LicenseSKUInfo
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\Internet\WebServiceCache
|
LastClean
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Excel
|
ExcelWorkbookOpenedCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Excel
|
ImmersiveWorkbookDirtySentinel
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Excel
|
ImmersiveWorkbookDirtySentinel
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Excel
|
ExcelWorkbookAutoRecoverDirty
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Excel
|
ExcelWorkbookAutoRecoverDirty
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109F00000000000000000F01FEC\Usage
|
VBAFiles
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\Roaming
|
RoamingConfigurableSettings
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\Roaming
|
RoamingConfigurableSettings
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\Roaming
|
RoamingLastSyncTimeExcel
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\Roaming
|
RoamingLastWriteTimeExcel
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel
|
Expires
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.1
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.2
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.3
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.4
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.5
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.6
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.7
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.8
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.9
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.10
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.11
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.12
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.13
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.14
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.15
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.16
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.17
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.18
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.19
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.20
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.21
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.22
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.23
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.24
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.25
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.26
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
0.27
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
ChunkCount
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel\ConfigContextData
|
VersionId
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel
|
Expires
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ExperimentConfigs\Ecs\excel
|
DeferredConfigs
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common\CrashPersistence\EXCEL\7512
|
0
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\IdentityCRL\Immersive\production\Token\{2B379600-B42B-4FE9-A59C-A312FB934935}
|
DeviceTicket
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\IdentityCRL\Immersive\production\Token\{2B379600-B42B-4FE9-A59C-A312FB934935}
|
DeviceId
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Excel\Security\Trusted Documents
|
LastPurgeTime
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesLastModified
|
excel.exe_queried
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\ClientTelemetry\RulesLastModified
|
excel.exe_queried
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows Script\Settings\Telemetry\splwow64.exe
|
JScriptSetScriptStateStarted
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows Script\Settings\Telemetry\splwow64.exe
|
JScriptSetScriptStateStarted
|
There are 341 hidden registries, click here to show them.
DOM / HTML
URL
|
Malicious
|
|
---|---|---|
https://www.multitran.com/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9
|
||
https://www.multitran.com/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9
|
||
https://www.multitran.com/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9
|
||
https://www.multitran.com/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9
|
||
https://www.multitran.com/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9
|
||
https://www.multitran.com/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9
|
||
https://www.multitran.com/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9
|
||
https://www.multitran.com/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9
|
||
https://www.multitran.com/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9
|
||
https://www.multitran.com/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9
|
||
https://www.multitran.com/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9
|
||
https://www.multitran.com/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9
|
||
https://www.multitran.com/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9
|
||
https://www.multitran.com/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9
|
||
https://www.multitran.com/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9
|
||
https://www.multitran.com/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9
|
||
https://www.multitran.com/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9
|
||
https://www.multitran.com/c/m.exe?t=5428877_1_2&s1=%ED%E0%F3%F7%ED%EE-%E8%F1%F1%EB%E5%E4%EE%E2%E0%F2%E5%EB%FC%F1%EA%E8%E9
|
There are 8 hidden doms, click here to show them.