Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/na.elf
|
/tmp/na.elf
|
||
|
/tmp/na.elf
|
-
|
||
|
/tmp/na.elf
|
-
|
||
|
/tmp/na.elf
|
-
|
||
|
/tmp/na.elf
|
-
|
||
|
/tmp/na.elf
|
-
|
||
|
/tmp/na.elf
|
-
|
||
|
/tmp/na.elf
|
-
|
||
|
/usr/bin/xfce4-panel
|
-
|
||
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 /usr/lib/x86_64-linux-gnu/xfce4/panel/plugins/libsystray.so 6 12582920 systray
"Notification Area" "Area where notification icons appear"
|
||
|
/usr/bin/xfce4-panel
|
-
|
||
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 /usr/lib/x86_64-linux-gnu/xfce4/panel/plugins/libstatusnotifier.so 7 12582921
statusnotifier "Status Notifier Plugin" "Provides a panel area for status notifier items (application indicators)"
|
||
|
/usr/bin/xfce4-panel
|
-
|
||
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 /usr/lib/x86_64-linux-gnu/xfce4/panel/plugins/libpulseaudio-plugin.so 8
12582922 pulseaudio "PulseAudio Plugin" "Adjust the audio volume of the PulseAudio sound system"
|
||
|
/usr/bin/xfce4-panel
|
-
|
||
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 /usr/lib/x86_64-linux-gnu/xfce4/panel/plugins/libxfce4powermanager.so 9
12582923 power-manager-plugin "Power Manager Plugin" "Display the battery levels of your devices and control the brightness
of your display"
|
||
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0
|
-
|
||
|
/usr/sbin/xfpm-power-backlight-helper
|
/usr/sbin/xfpm-power-backlight-helper --get-max-brightness
|
||
|
/usr/bin/xfce4-panel
|
-
|
||
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 /usr/lib/x86_64-linux-gnu/xfce4/panel/plugins/libnotification-plugin.so
10 12582924 notification-plugin "Notification Plugin" "Notification plugin for the Xfce panel"
|
||
|
/usr/bin/xfce4-panel
|
-
|
||
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 /usr/lib/x86_64-linux-gnu/xfce4/panel/plugins/libactions.so 14 12582925
actions "Action Buttons" "Log out, lock or other system actions"
|
||
|
/usr/bin/dbus-daemon
|
-
|
||
|
/usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd
|
/usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd
|
||
|
/usr/lib/systemd/systemd
|
-
|
||
|
/usr/lib/x86_64-linux-gnu/xfce4/notifyd/xfce4-notifyd
|
/usr/lib/x86_64-linux-gnu/xfce4/notifyd/xfce4-notifyd
|
There are 16 hidden processes, click here to show them.
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://92.249.48.84/bin
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/encoding/
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/envelope/
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
plutoc2.site
|
104.248.138.112
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
156.34.100.37
|
unknown
|
Canada
|
 |
|
|
41.30.192.101
|
unknown
|
South Africa
|
|
|
|
41.224.96.74
|
unknown
|
Tunisia
|
|
|
|
41.171.231.160
|
unknown
|
South Africa
|
|
|
|
156.132.105.213
|
unknown
|
United States
|
|
|
|
156.232.166.249
|
unknown
|
Seychelles
|
|
|
|
191.123.141.174
|
unknown
|
Brazil
|
||
|
147.110.92.82
|
unknown
|
South Africa
|
||
|
5.169.144.242
|
unknown
|
Italy
|
||
|
109.54.102.139
|
unknown
|
Italy
|
||
|
94.157.46.97
|
unknown
|
Netherlands
|
||
|
156.126.189.141
|
unknown
|
United States
|
||
|
117.157.2.213
|
unknown
|
China
|
||
|
86.95.183.81
|
unknown
|
Netherlands
|
||
|
178.43.18.73
|
unknown
|
Poland
|
||
|
197.58.173.187
|
unknown
|
Egypt
|
||
|
212.124.22.153
|
unknown
|
Russian Federation
|
||
|
182.159.234.226
|
unknown
|
Japan
|
||
|
173.201.163.70
|
unknown
|
United States
|
||
|
216.140.35.43
|
unknown
|
United States
|
||
|
156.87.159.221
|
unknown
|
United States
|
||
|
156.175.119.53
|
unknown
|
Egypt
|
||
|
144.17.214.58
|
unknown
|
United States
|
||
|
20.166.40.4
|
unknown
|
United States
|
||
|
109.16.176.120
|
unknown
|
France
|
||
|
82.233.18.74
|
unknown
|
France
|
||
|
90.222.252.251
|
unknown
|
United Kingdom
|
||
|
118.197.211.138
|
unknown
|
China
|
||
|
75.113.244.230
|
unknown
|
United States
|
||
|
117.128.187.185
|
unknown
|
China
|
||
|
8.204.151.132
|
unknown
|
United States
|
||
|
197.104.89.77
|
unknown
|
South Africa
|
||
|
203.231.141.183
|
unknown
|
Korea Republic of
|
||
|
5.201.73.157
|
unknown
|
Poland
|
||
|
157.48.138.233
|
unknown
|
India
|
||
|
80.88.171.24
|
unknown
|
Italy
|
||
|
212.215.188.107
|
unknown
|
Saudi Arabia
|
||
|
42.101.216.20
|
unknown
|
China
|
||
|
78.93.252.133
|
unknown
|
Saudi Arabia
|
||
|
96.204.210.40
|
unknown
|
United States
|
||
|
210.86.190.121
|
unknown
|
Thailand
|
||
|
185.176.223.197
|
unknown
|
Latvia
|
||
|
187.69.3.186
|
unknown
|
Brazil
|
||
|
167.162.48.161
|
unknown
|
Australia
|
||
|
210.125.152.89
|
unknown
|
Korea Republic of
|
||
|
41.198.16.204
|
unknown
|
South Africa
|
||
|
125.80.44.174
|
unknown
|
China
|
||
|
197.17.243.62
|
unknown
|
Tunisia
|
||
|
178.234.143.247
|
unknown
|
Russian Federation
|
||
|
156.15.146.174
|
unknown
|
United States
|
||
|
164.13.217.151
|
unknown
|
Finland
|
||
|
202.92.242.65
|
unknown
|
Australia
|
||
|
200.41.145.35
|
unknown
|
Argentina
|
||
|
147.206.57.133
|
unknown
|
United States
|
||
|
186.3.182.124
|
unknown
|
Ecuador
|
||
|
156.253.18.44
|
unknown
|
Seychelles
|
||
|
199.53.202.22
|
unknown
|
Switzerland
|
||
|
107.114.209.77
|
unknown
|
United States
|
||
|
41.15.176.217
|
unknown
|
South Africa
|
||
|
197.193.105.19
|
unknown
|
Egypt
|
||
|
156.198.96.217
|
unknown
|
Egypt
|
||
|
210.83.0.148
|
unknown
|
China
|
||
|
41.109.77.41
|
unknown
|
Algeria
|
||
|
2.51.218.9
|
unknown
|
United Arab Emirates
|
||
|
156.89.98.16
|
unknown
|
United States
|
||
|
41.173.148.68
|
unknown
|
South Africa
|
||
|
153.10.235.67
|
unknown
|
United States
|
||
|
41.114.224.8
|
unknown
|
South Africa
|
||
|
208.230.148.100
|
unknown
|
United States
|
||
|
202.219.102.192
|
unknown
|
Japan
|
||
|
38.15.62.251
|
unknown
|
United States
|
||
|
176.250.68.146
|
unknown
|
United Kingdom
|
||
|
73.109.15.214
|
unknown
|
United States
|
||
|
210.141.227.0
|
unknown
|
Japan
|
||
|
117.2.77.129
|
unknown
|
Viet Nam
|
||
|
18.127.165.240
|
unknown
|
United States
|
||
|
122.173.46.247
|
unknown
|
India
|
||
|
57.129.112.166
|
unknown
|
Belgium
|
||
|
197.150.90.71
|
unknown
|
Egypt
|
||
|
99.228.123.121
|
unknown
|
Canada
|
||
|
186.15.34.85
|
unknown
|
Costa Rica
|
||
|
94.50.150.156
|
unknown
|
Russian Federation
|
||
|
37.205.92.23
|
unknown
|
Russian Federation
|
||
|
76.201.253.144
|
unknown
|
United States
|
||
|
109.70.178.238
|
unknown
|
Finland
|
||
|
140.121.231.79
|
unknown
|
Taiwan; Republic of China (ROC)
|
||
|
117.114.24.125
|
unknown
|
China
|
||
|
212.34.0.48
|
unknown
|
Jordan
|
||
|
197.128.239.155
|
unknown
|
Morocco
|
||
|
181.7.203.202
|
unknown
|
Argentina
|
||
|
182.116.185.253
|
unknown
|
China
|
||
|
212.76.84.142
|
unknown
|
Saudi Arabia
|
||
|
148.130.191.183
|
unknown
|
United States
|
||
|
79.59.131.199
|
unknown
|
Italy
|
||
|
152.107.168.247
|
unknown
|
South Africa
|
||
|
169.41.38.28
|
unknown
|
Switzerland
|
||
|
197.43.31.85
|
unknown
|
Egypt
|
||
|
204.87.39.118
|
unknown
|
United States
|
||
|
77.37.177.227
|
unknown
|
Russian Federation
|
||
|
160.154.57.51
|
unknown
|
Cote D'ivoire
|
There are 90 hidden IPs, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7ff420413000
|
page execute read
|
|
||
|
7ff420413000
|
page execute read
|
|
||
|
7ff420413000
|
page execute read
|
|
||
|
7ff420413000
|
page execute read
|
|
||
|
7ff420413000
|
page execute read
|
|
||
|
7ff420413000
|
page execute read
|
|
||
|
7ff4a7d3d000
|
page read and write
|
|||
|
7ff4a78a4000
|
page read and write
|
|||
|
7ff4a0021000
|
page read and write
|
|||
|
7ff4a6a42000
|
page read and write
|
|||
|
7ff4a7d3d000
|
page read and write
|
|||
|
55c3066fb000
|
page execute and read and write
|
|||
|
7ff4a7245000
|
page read and write
|
|||
|
7ff420424000
|
page read and write
|
|||
|
55c30781e000
|
page read and write
|
|||
|
7ff420424000
|
page read and write
|
|||
|
55c3046f5000
|
page read and write
|
|||
|
7ff420476000
|
page read and write
|
|||
|
7ff4a7c14000
|
page read and write
|
|||
|
7ff4a78a4000
|
page read and write
|
|||
|
7ffc78fdc000
|
page execute read
|
|||
|
55c30781e000
|
page read and write
|
|||
|
7ffc78f1d000
|
page read and write
|
|||
|
7ff4a6a42000
|
page read and write
|
|||
|
7ff4a74e2000
|
page read and write
|
|||
|
7ff4a0000000
|
page read and write
|
|||
|
7ff4a74e2000
|
page read and write
|
|||
|
7ff4a78a4000
|
page read and write
|
|||
|
55c3066fb000
|
page execute and read and write
|
|||
|
7ff420423000
|
page read and write
|
|||
|
7ff420424000
|
page read and write
|
|||
|
7ffc78fdc000
|
page execute read
|
|||
|
7ff4a0000000
|
page read and write
|
|||
|
55c3046f5000
|
page read and write
|
|||
|
7ff4a74e2000
|
page read and write
|
|||
|
7ff420424000
|
page read and write
|
|||
|
7ff4a7c14000
|
page read and write
|
|||
|
7ffc78fdc000
|
page execute read
|
|||
|
7ff4a7253000
|
page read and write
|
|||
|
55c3046fd000
|
page read and write
|
|||
|
7ff4a7d8a000
|
page read and write
|
|||
|
7ff4a7d3d000
|
page read and write
|
|||
|
7ff4a6a42000
|
page read and write
|
|||
|
7ff4a7253000
|
page read and write
|
|||
|
7ff4a78a4000
|
page read and write
|
|||
|
55c3046fd000
|
page read and write
|
|||
|
55c3046fd000
|
page read and write
|
|||
|
7ff4a7d8a000
|
page read and write
|
|||
|
7ff4a0000000
|
page read and write
|
|||
|
7ff4a7d8a000
|
page read and write
|
|||
|
7ff4a7c14000
|
page read and write
|
|||
|
7ff420423000
|
page read and write
|
|||
|
7ffc78fdc000
|
page execute read
|
|||
|
7ff4a78c9000
|
page read and write
|
|||
|
7ffc78f1d000
|
page read and write
|
|||
|
7ff4a78a4000
|
page read and write
|
|||
|
7ff420423000
|
page read and write
|
|||
|
55c306712000
|
page read and write
|
|||
|
7ffc78f1d000
|
page read and write
|
|||
|
7ff420423000
|
page read and write
|
|||
|
55c30781e000
|
page read and write
|
|||
|
7ff4a78c9000
|
page read and write
|
|||
|
7ff4a78c9000
|
page read and write
|
|||
|
7ff4a0021000
|
page read and write
|
|||
|
55c3046f5000
|
page read and write
|
|||
|
55c3066fb000
|
page execute and read and write
|
|||
|
7ff4a7253000
|
page read and write
|
|||
|
7ff4a7245000
|
page read and write
|
|||
|
7ff420423000
|
page read and write
|
|||
|
55c3046fd000
|
page read and write
|
|||
|
7ffc78fdc000
|
page execute read
|
|||
|
55c3044df000
|
page execute read
|
|||
|
55c3046fd000
|
page read and write
|
|||
|
55c3044df000
|
page execute read
|
|||
|
7ff4a7d3d000
|
page read and write
|
|||
|
7ff4a6a42000
|
page read and write
|
|||
|
7ff4a78c9000
|
page read and write
|
|||
|
7ff4a7c14000
|
page read and write
|
|||
|
7ff4a74e2000
|
page read and write
|
|||
|
55c3066fb000
|
page execute and read and write
|
|||
|
7ff4a7d8a000
|
page read and write
|
|||
|
55c3066fb000
|
page execute and read and write
|
|||
|
7ff4a7245000
|
page read and write
|
|||
|
55c30781e000
|
page read and write
|
|||
|
7ff420424000
|
page read and write
|
|||
|
55c3044df000
|
page execute read
|
|||
|
55c306712000
|
page read and write
|
|||
|
7ffc78f1d000
|
page read and write
|
|||
|
7ff4206db000
|
page read and write
|
|||
|
7ffc78f1d000
|
page read and write
|
|||
|
7ff4a7253000
|
page read and write
|
|||
|
55c3044df000
|
page execute read
|
|||
|
55c3046f5000
|
page read and write
|
|||
|
55c3044df000
|
page execute read
|
|||
|
7ff4a7d45000
|
page read and write
|
|||
|
7ff4a7d45000
|
page read and write
|
|||
|
7ff4a0021000
|
page read and write
|
|||
|
55c3066fb000
|
page execute and read and write
|
|||
|
55c306712000
|
page read and write
|
|||
|
7ff420424000
|
page read and write
|
|||
|
7ff4a74e2000
|
page read and write
|
|||
|
55c30781e000
|
page read and write
|
|||
|
7ff4a7d45000
|
page read and write
|
|||
|
7ff4a7253000
|
page read and write
|
|||
|
55c306712000
|
page read and write
|
|||
|
7ff4a7c14000
|
page read and write
|
|||
|
7ff420476000
|
page read and write
|
|||
|
7ff4a7d3d000
|
page read and write
|
|||
|
55c306712000
|
page read and write
|
|||
|
7ff4a78a4000
|
page read and write
|
|||
|
55c3046fd000
|
page read and write
|
|||
|
55c3046f5000
|
page read and write
|
|||
|
7ff4a0000000
|
page read and write
|
|||
|
7ff4a7d8a000
|
page read and write
|
|||
|
7ff4a7d45000
|
page read and write
|
|||
|
55c3046f5000
|
page read and write
|
|||
|
7ff4a7253000
|
page read and write
|
|||
|
7ff4a6a42000
|
page read and write
|
|||
|
55c30781e000
|
page read and write
|
|||
|
7ffc78fdc000
|
page execute read
|
|||
|
7ff4a7245000
|
page read and write
|
|||
|
7ff4a7d3d000
|
page read and write
|
|||
|
7ff4a0000000
|
page read and write
|
|||
|
7ff420423000
|
page read and write
|
|||
|
7ff4a0021000
|
page read and write
|
|||
|
7ff4a7245000
|
page read and write
|
|||
|
7ff4a7d45000
|
page read and write
|
|||
|
7ff4a0021000
|
page read and write
|
|||
|
55c306712000
|
page read and write
|
|||
|
7ff4a74e2000
|
page read and write
|
|||
|
7ff4a0021000
|
page read and write
|
|||
|
7ff42042f000
|
page read and write
|
|||
|
7ff4a78c9000
|
page read and write
|
|||
|
7ff4a7245000
|
page read and write
|
|||
|
7ff4a6a42000
|
page read and write
|
|||
|
55c3044df000
|
page execute read
|
|||
|
7ff4a7c14000
|
page read and write
|
|||
|
7ffc78f1d000
|
page read and write
|
|||
|
7ff4a7d45000
|
page read and write
|
|||
|
55c30783e000
|
page read and write
|
|||
|
7ff4a7d8a000
|
page read and write
|
|||
|
7ff4a78c9000
|
page read and write
|
|||
|
7ff4a0000000
|
page read and write
|
There are 133 hidden memdumps, click here to show them.