IOC Report
revosetup.exe

loading gif

Files

File Path
Type
Category
Malicious
revosetup.exe
PE32 executable (GUI) Intel 80386, for MS Windows
initial sample
C:\Program Files\VS Revo Group\Revo Uninstaller\License.txt (copy)
Non-ISO extended-ASCII text, with very long lines (479), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\Revo Uninstaller Help.pdf (copy)
PDF document, version 1.7, 34 pages
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\RevoUnin.exe (copy)
PE32+ executable (GUI) x86-64, for MS Windows
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\is-3D3RB.tmp
Non-ISO extended-ASCII text, with very long lines (479), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\is-3UJFV.tmp
PE32+ executable (GUI) x86-64, for MS Windows
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\is-UKQ9R.tmp
PDF document, version 1.7, 34 pages
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\albanian.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (601), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\arabic.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (437), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\armenian.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (638), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\azerbaijani.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (562), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\bengali.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (739), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\bulgarian.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (705), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\czech.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (668), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\danish.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (431), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\dutch.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (782), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\english.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (662), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\estonian.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (602), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\finnish.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (552), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\french.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (653), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\german.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (896), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\gujarati.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (758), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\hebrew.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (400), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\hellenic.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (868), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\hindi.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (754), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\hrvatski.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (596), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\hungarian.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (671), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\indonesian.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (713), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-03S2V.tmp
Unicode text, UTF-16, little-endian text, with very long lines (1970), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-1GMMQ.tmp
Unicode text, UTF-16, little-endian text, with very long lines (638), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-20FHR.tmp
Unicode text, UTF-16, little-endian text, with very long lines (722), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-2JR70.tmp
Unicode text, UTF-16, little-endian text, with very long lines (774), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-4H15I.tmp
Unicode text, UTF-16, little-endian text, with very long lines (446), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-4HQ49.tmp
Unicode text, UTF-16, little-endian text, with very long lines (400), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-51DQ4.tmp
Unicode text, UTF-16, little-endian text, with very long lines (782), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-57PF0.tmp
Unicode text, UTF-16, little-endian text, with very long lines (675), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-6D4JF.tmp
Unicode text, UTF-16, little-endian text, with very long lines (787), with CRLF, CR line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-6JUB1.tmp
Unicode text, UTF-16, little-endian text, with very long lines (739), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-6RDSI.tmp
Unicode text, UTF-16, little-endian text, with very long lines (742), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-79H19.tmp
Unicode text, UTF-16, little-endian text, with very long lines (579), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-7F029.tmp
Unicode text, UTF-16, little-endian text, with very long lines (707), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-86R4G.tmp
Unicode text, UTF-16, little-endian text, with very long lines (758), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-89KBO.tmp
Unicode text, UTF-16, little-endian text, with very long lines (602), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-8HS44.tmp
Unicode text, UTF-16, little-endian text, with very long lines (705), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-8N9CU.tmp
Unicode text, UTF-16, little-endian text, with very long lines (436), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-A47CF.tmp
Unicode text, UTF-16, little-endian text, with very long lines (768), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-AP8OQ.tmp
Unicode text, UTF-16, little-endian text, with very long lines (435), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-BHORG.tmp
Unicode text, UTF-16, little-endian text, with very long lines (653), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-BRMVK.tmp
Unicode text, UTF-16, little-endian text, with very long lines (754), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-D9K51.tmp
Unicode text, UTF-16, little-endian text, with very long lines (480), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-F6T79.tmp
Unicode text, UTF-16, little-endian text, with very long lines (397), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-FNPTG.tmp
Unicode text, UTF-16, little-endian text, with very long lines (550), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-FVNN5.tmp
Unicode text, UTF-16, little-endian text, with very long lines (628), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-H8O5L.tmp
Unicode text, UTF-16, little-endian text, with very long lines (552), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-IE3NO.tmp
Unicode text, UTF-16, little-endian text, with very long lines (596), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-JEUE8.tmp
Unicode text, UTF-16, little-endian text, with very long lines (488), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-JLIIP.tmp
Unicode text, UTF-16, little-endian text, with very long lines (431), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-KQVVL.tmp
Unicode text, UTF-16, little-endian text, with very long lines (510), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-LQ7V0.tmp
Unicode text, UTF-16, little-endian text, with very long lines (562), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-MV7M3.tmp
Unicode text, UTF-16, little-endian text, with very long lines (768), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-NA2VL.tmp
Unicode text, UTF-16, little-endian text, with very long lines (671), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-NU8DV.tmp
Unicode text, UTF-16, little-endian text, with very long lines (896), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-O6OOC.tmp
Unicode text, UTF-16, little-endian text, with very long lines (400), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-ON5O0.tmp
Unicode text, UTF-16, little-endian text, with very long lines (662), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-OQLC1.tmp
Unicode text, UTF-16, little-endian text, with very long lines (868), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-P4FJN.tmp
Unicode text, UTF-16, little-endian text, with very long lines (713), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-Q3DI4.tmp
Unicode text, UTF-16, little-endian text, with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-Q5ETH.tmp
Unicode text, UTF-16, little-endian text, with very long lines (531), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-QNP87.tmp
Unicode text, UTF-16, little-endian text, with very long lines (437), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-QRKAM.tmp
Unicode text, UTF-16, little-endian text, with very long lines (657), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-R94T1.tmp
data
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-RM1PV.tmp
Unicode text, UTF-16, little-endian text, with very long lines (512), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-SRMPO.tmp
Unicode text, UTF-16, little-endian text, with very long lines (601), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\is-TF4FP.tmp
Unicode text, UTF-16, little-endian text, with very long lines (668), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\italiano.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (787), with CRLF, CR line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\japanese.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (397), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\korean.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (400), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\kurdish.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (531), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\macedonian.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (480), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\norwegian.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (435), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\persian.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (1970), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\polish.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (512), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\portuguese.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (768), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\portuguese_standard.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (768), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\portuguesebrazil.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (707), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\romanian.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (742), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\russian.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (488), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\serbian.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (436), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\serbianLatin.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (446), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\simplifiedchinese.ini (copy)
data
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\slovak.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (510), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\slovenian.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (675), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\spanish.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (628), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\swedish.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (774), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\thai.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (579), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\traditionalchinese.ini (copy)
Unicode text, UTF-16, little-endian text, with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\turkish.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (550), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\ukrainian.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (657), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\lang\vietnamese.ini (copy)
Unicode text, UTF-16, little-endian text, with very long lines (722), with CRLF line terminators
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\unins000.dat
InnoSetup Log 64-bit Revo Uninstaller {A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}, version 0x418, 17121 bytes, 701188\37\user\37, C:\Program Files\VS Revo Group\Revo Uninst
dropped
C:\Program Files\VS Revo Group\Revo Uninstaller\unins000.msg
InnoSetup messages, version 5.5.3, 221 messages (UTF-16), &About Setup...
dropped
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Revo Uninstaller Help.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Archive, ctime=Fri Apr 26 12:03:28 2024, mtime=Fri Apr 26 12:03:29 2024, atime=Tue Dec 6 08:12:10 2022, length=1467128, window=hide
dropped
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Revo Uninstaller on the Web.url
MS Windows 95 Internet shortcut text (URL=<https://www.revouninstaller.com/>), ASCII text, with CRLF line terminators
dropped
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Revo Uninstaller.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Archive, ctime=Fri Apr 26 12:03:28 2024, mtime=Fri Apr 26 12:03:28 2024, atime=Tue Jun 6 06:34:02 2023, length=15111408, window=hide
dropped
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Uninstall Revo Uninstaller.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Archive, ctime=Fri Apr 26 12:03:27 2024, mtime=Fri Apr 26 12:03:27 2024, atime=Fri Apr 26 12:03:09 2024, length=1348392, window=hide
dropped
C:\Users\Public\Desktop\Revo Uninstaller.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Archive, ctime=Fri Apr 26 12:03:28 2024, mtime=Fri Apr 26 12:03:29 2024, atime=Tue Jun 6 06:34:02 2023, length=15111408, window=hide
dropped
C:\Users\user\AppData\Local\Temp\Setup Log 2024-04-26 #001.txt
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
modified
C:\Users\user\AppData\Local\Temp\is-APUB4.tmp\_isetup\_setup64.tmp
PE32+ executable (console) x86-64, for MS Windows
modified
C:\Users\user\AppData\Local\Temp\is-QDQK0.tmp\revosetup.tmp
PE32 executable (GUI) Intel 80386, for MS Windows
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Apr 26 12:03:35 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Apr 26 12:03:35 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:54:41 2023, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Apr 26 12:03:35 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Apr 26 12:03:35 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Apr 26 12:03:35 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
dropped
Chrome Cache Entry: 168
Web Open Font Format (Version 2), TrueType, length 19128, version 1.0
downloaded
Chrome Cache Entry: 169
Web Open Font Format (Version 2), TrueType, length 24984, version 1.0
downloaded
Chrome Cache Entry: 170
JSON data
dropped
Chrome Cache Entry: 171
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 172
ASCII text, with very long lines (7789)
downloaded
Chrome Cache Entry: 173
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 7281
downloaded
Chrome Cache Entry: 174
ASCII text, with very long lines (65324)
downloaded
Chrome Cache Entry: 175
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 176
PNG image data, 1600 x 842, 8-bit colormap, non-interlaced
dropped
Chrome Cache Entry: 177
JSON data
dropped
Chrome Cache Entry: 178
ASCII text, with very long lines (21084)
downloaded
Chrome Cache Entry: 179
MS Windows icon resource - 1 icon, 24x24, 32 bits/pixel
dropped
Chrome Cache Entry: 180
ASCII text, with very long lines (1572)
downloaded
Chrome Cache Entry: 181
ASCII text, with very long lines (5140)
downloaded
Chrome Cache Entry: 183
ASCII text, with very long lines (32492)
downloaded
Chrome Cache Entry: 184
PNG image data, 790 x 521, 8-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 185
ASCII text, with very long lines (65307)
downloaded
Chrome Cache Entry: 187
ASCII text, with very long lines (57671), with no line terminators
downloaded
Chrome Cache Entry: 189
Unicode text, UTF-8 text, with very long lines (25709), with no line terminators
downloaded
Chrome Cache Entry: 190
ASCII text, with very long lines (10187), with no line terminators
downloaded
Chrome Cache Entry: 191
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
downloaded
Chrome Cache Entry: 194
ASCII text, with very long lines (65450)
downloaded
Chrome Cache Entry: 195
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 196
ASCII text, with very long lines (65307)
downloaded
Chrome Cache Entry: 198
PNG image data, 1600 x 814, 8-bit colormap, non-interlaced
dropped
Chrome Cache Entry: 199
Web Open Font Format (Version 2), TrueType, length 19572, version 1.0
downloaded
Chrome Cache Entry: 204
ASCII text, with very long lines (5945)
downloaded
Chrome Cache Entry: 205
Web Open Font Format (Version 2), TrueType, length 19388, version 1.0
downloaded
Chrome Cache Entry: 206
HTML document, ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 208
PNG image data, 170 x 126, 8-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 209
PNG image data, 286 x 35, 8-bit colormap, non-interlaced
dropped
Chrome Cache Entry: 211
PNG image data, 1650 x 875, 8-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 212
ASCII text, with very long lines (65451)
downloaded
Chrome Cache Entry: 213
PNG image data, 790 x 538, 8-bit colormap, non-interlaced
dropped
Chrome Cache Entry: 214
ASCII text, with very long lines (59729)
downloaded
Chrome Cache Entry: 216
ASCII text, with very long lines (64347)
downloaded
Chrome Cache Entry: 217
PNG image data, 1903 x 380, 8-bit colormap, non-interlaced
dropped
Chrome Cache Entry: 219
Web Open Font Format (Version 2), TrueType, length 19336, version 1.0
downloaded
Chrome Cache Entry: 220
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x500, components 3
downloaded
Chrome Cache Entry: 221
JSON data
dropped
Chrome Cache Entry: 222
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 21980
downloaded
Chrome Cache Entry: 223
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 224
ASCII text, with very long lines (2343)
downloaded
Chrome Cache Entry: 225
gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 56424
downloaded
There are 149 hidden files, click here to show them.

URLs

Name
IP
Malicious
about:blank
https://td.doubleclick.net/td/ga/rul?tid=G-P73P80145H&gacid=1413362299.1714136623&gtm=45je44o0v869118035z871855269za200&dma=0&gcd=13l3l3l3l1&npa=0&pscdl=noapi&aip=1&fledge=1&z=820655299

Domains

Name
IP
Malicious
stackpath.bootstrapcdn.com
104.18.11.207
jsdelivr.map.fastly.net
151.101.129.229
star-mini.c10r.facebook.com
157.240.14.35
v2assets.zopim.io
104.16.200.19
vsrevogroup.zendesk.com
104.16.53.111
platform.twitter.map.fastly.net
146.75.124.157
stats.g.doubleclick.net
173.194.216.156
static.zdassets.com
104.18.72.113
scontent.xx.fbcdn.net
31.13.67.20
script.hotjar.com
13.226.52.129
widget-mediator.zopim.com
54.145.171.210
ekr.zdassets.com
104.18.70.113
td.doubleclick.net
142.250.217.162
analytics.google.com
142.250.217.174
www.google.com
142.250.189.132
widget.trustpilot.com
18.66.255.92
revouninstaller.com
146.20.152.114
static-cdn.hotjar.com
108.157.173.76
static.ads-twitter.com
unknown
www.facebook.com
unknown
cdn.jsdelivr.net
unknown
f057a20f961f56a72089-b74530d2d26278124f446233f95622ef.ssl.cf1.rackcdn.com
unknown
connect.facebook.net
unknown
www.revouninstaller.com
unknown
static.hotjar.com
unknown
There are 15 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
13.226.52.129
script.hotjar.com
United States
31.13.67.35
unknown
Ireland
142.250.189.142
unknown
United States
18.66.255.92
widget.trustpilot.com
United States
146.20.152.114
revouninstaller.com
United States
146.75.124.157
platform.twitter.map.fastly.net
Sweden
151.101.129.229
jsdelivr.map.fastly.net
United States
192.168.2.17
unknown
unknown
104.71.249.186
unknown
United States
142.250.217.238
unknown
United States
157.240.14.35
star-mini.c10r.facebook.com
United States
142.250.64.142
unknown
United States
142.251.35.238
unknown
United States
142.251.35.234
unknown
United States
54.145.171.210
widget-mediator.zopim.com
United States
104.18.72.113
static.zdassets.com
United States
104.16.200.19
v2assets.zopim.io
United States
142.250.217.162
td.doubleclick.net
United States
108.157.173.76
static-cdn.hotjar.com
United States
172.253.123.84
unknown
United States
142.250.189.131
unknown
United States
192.178.50.67
unknown
United States
1.1.1.1
unknown
Australia
172.217.3.72
unknown
United States
104.16.53.111
vsrevogroup.zendesk.com
United States
142.250.189.132
www.google.com
United States
142.250.189.138
unknown
United States
104.18.11.207
stackpath.bootstrapcdn.com
United States
142.250.217.174
analytics.google.com
United States
239.255.255.250
unknown
Reserved
104.18.70.113
ekr.zdassets.com
United States
173.194.216.156
stats.g.doubleclick.net
United States
173.194.216.157
unknown
United States
142.251.35.228
unknown
United States
192.178.50.40
unknown
United States
18.66.255.15
unknown
United States
142.250.217.195
unknown
United States
31.13.67.20
scontent.xx.fbcdn.net
Ireland
23.22.231.22
unknown
United States
18.66.255.55
unknown
United States
142.250.217.170
unknown
United States
There are 31 hidden IPs, click here to show them.