IOCReport

loading gif

Files

File Path
Type
Category
Malicious
https://ww-agf.primside.ga/YW5keS5rb2NoYXJAYWdmLmNvbQ==
URL
initial url
 malicious
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506
Microsoft Cabinet archive data, 59134 bytes, 1 file
dropped
 clean
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\41b99a6c-b341-4617-9c22-b106eaabd80f.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\48d816ac-1017-4c2a-99d5-f9320e5108eb.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\591bd74d-2d35-401d-a9ca-7f57ac9221f0.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\5c79b71f-656c-4447-a969-314fbcb86d7a.tmp
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\61f65fc9-facc-4478-a4da-fed7695bab76.tmp
ASCII text, with very long lines, with no line terminators
modified
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\72a2b33e-aee2-4f8f-a217-309756c36aa6.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\022788f8-f157-450e-b39f-0bb4e705c93f.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\0ac2aa7e-5dae-41ce-b7cc-020ce941a73c.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\14a09176-bff7-4496-9980-236988310fad.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2903a80a-1590-4505-9a07-3bbd48700194.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2935fafe-ae78-4e6d-9ac9-7de7b12c1197.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2e24b595-f004-4ec2-b9cc-19e7cb000570.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\32823cb3-9dad-4f30-8304-86274c2ec992.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\363b47ad-fd55-4697-ad02-bec9e4ce3f8b.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\49141f8a-31f0-4b9c-acdb-d94ea6770e0f.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7e73bdf1-0408-44e5-9d3e-54aad430f79b.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8bf49b0f-b41d-4263-a21b-f7323be312a6.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\00add0752dc81105_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\094e2d6bf2abec98_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0f33a3f4bd9b4e23_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\145375f6fd9456d5_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\166ee82c52b87e97_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\18841ffaedbdc9b3_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\22fb0e1969c285c1_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\24d8148eb4e4c27a_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\28ed6ffa51f53762_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2fc23221b4b80782_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\309184ad59030aa2_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3b99dc3d3bc104fb_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\428111ef80473512_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\42bd799063a0846f_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\431ab35fa84a13dd_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\43fb384703621b6c_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4897c6f9e2ff1f8b_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4ac2f448771ab57b_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4fa8d4ec20662298_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\50030ae951750ff1_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\547db41b413d52f1_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\560eb50eaa655bc7_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5775d7ea69d43f30_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5884bcf8588200e3_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\59c8294b97fbf34c_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5a0d44391b90ff78_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5ce38a7727ba7508_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5db4ad138a5b020e_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\67ff2080fc2646fa_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6913b319d60c7157_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6aa8f657d25858ac_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6b848a87f40dd230_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\71f52630121e1252_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\72090e93af2b3d0c_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\73b12b162f1cf8a7_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\781980b07f1bb38f_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8548771546cff460_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8f3c2e2c260a7099_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9299ed2c4c7a3963_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9a5575bef7c495dc_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b180e6523891105c_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c7b12560f839e230_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\de5c13cb0b3aac41_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e4b92c98510f85ab_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e4b9b26cef092fbf_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f46ad1d2652b0b43_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f50f7e3b3653a201_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fbfb01c217345625_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ff3254c380ce1732_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
data
modified
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_1\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_2\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_lpcdn.lpsnmedia.net_0.indexeddb.leveldb\000001.dbtmp
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_lpcdn.lpsnmedia.net_0.indexeddb.leveldb\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_lpcdn.lpsnmedia.net_0.indexeddb.leveldb\000004.log
COM executable for DOS
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_lpcdn.lpsnmedia.net_0.indexeddb.leveldb\000005.ldb
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_lpcdn.lpsnmedia.net_0.indexeddb.leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_lpcdn.lpsnmedia.net_0.indexeddb.leveldb\MANIFEST-000001
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_publisher.liveperson.net_0.indexeddb.leveldb\000001.dbtmp
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_publisher.liveperson.net_0.indexeddb.leveldb\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_publisher.liveperson.net_0.indexeddb.leveldb\000004.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_publisher.liveperson.net_0.indexeddb.leveldb\000005.ldb
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_publisher.liveperson.net_0.indexeddb.leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_publisher.liveperson.net_0.indexeddb.leveldb\MANIFEST-000001
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\QuotaManager
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\QuotaManager-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\2b9f8560-d962-4d75-b6ec-34695c1acf5c.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\d83355af-bc8e-4bdc-8100-3c9e2de178d0.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_nmmhkkegccagdldgiimedpiccmgmieda\Chrome Web Store Payments.ico.md5
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_nmmhkkegccagdldgiimedpiccmgmieda\c9768170-eabf-432e-ba39-dbf6e6b79911.tmp
MS Windows icon resource - 13 icons, 8x8, 32 bits/pixel, 10x10, 32 bits/pixel
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a12791eb-7ae9-4faf-ba88-bba8bd94cf1f.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a2070db7-1c78-49be-83c4-6626ea159c62.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b77204b7-b0f9-4e12-aa3e-b9d791ceb5e0.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c728fc10-87a5-4012-b5a9-6025f2004003.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c9cfcf52-30f7-4005-81c6-b96c92910bc8.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
MPEG-4 LOAS
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\e5ece1d7-752d-4f2d-9d57-ecb70cd32a31.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f1b2f28c-07ac-4042-b82e-98b897187f7b.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\fc1ab7f0-f8a0-480f-abbb-d2f392b60ae9.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\e0c3666f-fd04-40da-837d-0dc40b821dea.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\e623bbf4-1af0-4b14-94a8-f57e28c407da.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\04017de3-aeca-49f7-a7a5-b39014ca3912.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Temp\49ec094f-b45b-4c26-8bb1-97aece96dcad.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\67033b0c-d329-47d9-ae0b-869c0daac90f.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Temp\c2ee0ebe-57ca-48c6-b6be-ae27c2cc9bb4.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\c871d4d8-1d11-4310-9af2-a664fec0350c.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\cd145717-6c7e-4bf1-9bbf-1956cdb9cb0e.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\en\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\en_GB\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\es_419\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\fil\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\id\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\nl\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\pt_BR\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\pt_PT\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\zh_CN\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\images\icon_128.png
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\images\icon_16.png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\CRX_INSTALL\manifest.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_3727987\c871d4d8-1d11-4310-9af2-a664fec0350c.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\en\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\en_GB\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\es_419\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\fil\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\id\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\nl\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\pt_BR\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\pt_PT\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\zh_CN\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\images\icon_128.png
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\images\icon_16.png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\CRX_INSTALL\manifest.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_854387825\c2ee0ebe-57ca-48c6-b6be-ae27c2cc9bb4.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\49ec094f-b45b-4c26-8bb1-97aece96dcad.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\am\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\ar\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\bn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\en\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\fa\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\fil\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\gu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\id\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\kn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\ml\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\mr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\ms\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\nl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\pt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\sw\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\ta\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\te\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\zh\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4524_883425556\CRX_INSTALL\manifest.json
ASCII text, with very long lines, with CRLF line terminators
dropped
 clean
\mojo.4524.6164.17146439099553445664
data
dropped
 clean
There are 289 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized 'https://ww-agf.primside.ga/YW5keS5rb2NoYXJAYWdmLmNvbQ=='
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1616,17962765629472374647,17200529593153591552,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1832 /prefetch:8
clean

URLs

Name
IP
Malicious
https://snowtike.cf/7b6eYENimwGy9Ma0g4XszBZLT5l2WqDVjoJ18pFUknfHAxch3tQrKIROvPuSDqQ1uYzobn7wig0r5kF3HRy2teLTW4PJSX96AKBjMhVav8IlpmEfZOsxNGCUlD4pvWYF8xZb51qiGfLjKsnz7gIUTOJ6h2wyHAEeQStRu90oamrk3PCcMXBVylpIMhzXU2iS1AGETa09oZcDBf8bY5jgHOQkesK7CF6w3L4NxtmqVPvnWuJR/2MogmySibBcJaLQGZ4IN8UACq7l1V5THpfzE0hjKxktrFu9RYPeWXvnwO36D.php
malicious
https://assets.onestore.ms/
unknown
 clean
https://accdn.lpsnmedia.net/api/account/60270350/configuration/setting/accountproperties/?cb=lpCb105
unknown
 clean
https://lpcdn.lpsnmedia.net(_https://lpcdn.lpsnmedia.net
unknown
 clean
https://liveperson.net/hF
unknown
 clean
https://liveperson.net/yER
unknown
 clean
https://publisher.liveperson.net/
unknown
 clean
https://liveperson.net/)
unknown
 clean
https://ajax.aspnetcdn.com/ajax/jQuery/jquery-1.9.1.min.js
unknown
 clean
https://snowtike.cf/7b6eYENimwGy9Ma0g4XszBZLT5l2WqDVjoJ18pFUknfHAxch3tQrKIROvPuSDqQ1uYzobn7wig0r5kF3
unknown
 clean
https://consentreceiverfd-prod.azurefd.net/v1
unknown
 clean
https://ajax.aspnetcdn.com/ajax/jQuery/jquery-1.11.2.min.jsaD
unknown
 clean
https://ajax.aspnetcdn.com/ajax/jQuery/jquery-1.7.2.min.js
unknown
 clean
https://accdn.lpsnmedia.net/api/account/60270350/configuration/setting/accountproperties/?cb=lpCb695
unknown
 clean
https://accdn.lpsnmedia.net/api/account/60270350/configuration/le-campaigns/zones?fields=id&fields=z
unknown
 clean
https://lpcdn.lpsnmedia.net/
unknown
 clean
https://liveperson.net/7
unknown
 clean
https://live.com/
unknown
 clean
https://publisher.liveperson.net/iframe-le-tag/iframe.html?lpsite=60270350&lpsection=store-sales-de-
unknown
 clean
https://lpcdn.lpsnmedia.net/le_secure_storage/3.12.0.0-release_5037/storage.secure.min.html?loc=http
unknown
 clean
https://lpcdn.lpsnmedia.net/le_re/3.43.0.1-release_5028/jsv2/UISuite.js?_v=3.43.0.1-release_5028
unknown
 clean
https://publisher.liveperson.net
unknown
 clean
https://mem.gfx.ms/scripts/me/MeControl/10.20321.2/de-DE/meBoot.min.js
unknown
 clean
https://a.nel.cloudflare.com/report?s=qqZibvSk5NPpeVskPih5brHhq86%2FDi59RVJPmWdEE7bFo3xlwOzMxQ5%2B6T
unknown
 clean
https://accdn.lpsnmedia.net/api/account/60270350/configuration/le-campaigns/campaigns/1644274130/eng
unknown
 clean
https://mem.gfx.ms/meversion?partner=MSHomePage&market=de-ch&uhf=1
unknown
 clean
https://accdn.lpsnmedia.net/api/account/60270350/configuration/setting/accountproperties/?cb=lpCb887
unknown
 clean
https://liveperson.net/Z
unknown
 clean
https://lpcdn.lpsnmedia.net/le_secure_storage/3.12.0.0-release_5037/storage.secure.min.js?loc=https%
unknown
 clean
https://dns.google
unknown
 clean
https://logincdn.msauth.net/16.000/content/js/MeControl_cfDm2fEwfL1YuSiw8j6tzA2.js
unknown
 clean
https://lpcdn.lpsnmedia.net
unknown
 clean
https://liveperson.net/Q
unknown
 clean
https://liveperson.net/
unknown
 clean
https://mem.gfx.ms/meversion?partner=Surface&market=de-ch&uhf=1
unknown
 clean
https://publisher.liveperson.net/iframe-le-tag/iframe.html?lpsite=60270350&lpsection=store-sales-de-ch&buttons=lpChatService,lpChatSales
clean
https://accdn.lpsnmedia.net/api/account/60270350/configuration/engagement-window/window-confs/164451
unknown
 clean
https://liveperson.net/V
unknown
 clean
https://mem.gfx.ms/meversion?partner=OfficeProducts&market=de-ch&uhf=1
unknown
 clean
https://logincdn.msauth.net/16.000/content/js/MeControl_cfDm2fEwfL1YuSiw8j6tzA2.jsaD
unknown
 clean
https://ajax.aspnetcdn.com/ajax/jQuery/jquery-1.11.2.min.js
unknown
 clean
https://storage.live.com/Users/0x
unknown
 clean
https://mem.gfx.ms/scripts/me/MeControl/10.20321.2/de-DE/meCore.min.jsaD
unknown
 clean
https://cdn.clipart.email/de08a54070b0e35e96d77ab05a6eea4a_microsoft-logo-transparent-png-picture-75
unknown
 clean
https://ajax.aspnetcdn.com/ajax/jQuery/jquery-1.7.2.min.jsaD
unknown
 clean
https://redux.js.org/api-reference/store#subscribe(listener)
unknown
 clean
https://snowtike.cf
unknown
 clean
https://lpcdn.lpsnmedia.net/le_re/3.43.0.1-release_5028/jsv2/overlay.js?_v=3.43.0.1-release_5028
unknown
 clean
https://ajax.aspnetcdn.com/
unknown
 clean
https://amp.azure.net/libs/amp/1.8.0/azuremediaplayer.min.js
unknown
 clean
https://mem.gfx.ms/scripts/me/MeControl/10.20321.2/de-DE/meBoot.min.jsaD
unknown
 clean
https://snowtike.cf/andy.kochar
unknown
 clean
https://aadcdn.msftauth.net
unknown
 clean
https://cdn.clipart.email
unknown
 clean
https://clients2.googleusercontent.com
unknown
 clean
https://mem.gfx.ms/scripts/me/MeControl/10.20321.2/de-DE/meCore.min.js
unknown
 clean
https://login.microsoftonline.com/common/oauth2/authorize?response_type=id_token&client_id=
unknown
 clean
https://static-assets.fs.liveperson.com/microsoft/lp_ada_enhancements-prod.js
unknown
 clean
https://aadcdn.msauth.net
unknown
 clean
https://feedback.googleusercontent.com
unknown
 clean
https://controls.account.microsoft-dev.com:44308/me/profile-image?partner=
unknown
 clean
https://lptag.liveperson.net/lptag/api/account/60270350/configuration/applications/taglets/.jsonp?v=
unknown
 clean
https://lptag.liveperson.net/tag/tag.js?site=60270350
unknown
 clean
There are 53 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
cdn.clipart.email
104.26.5.196
 clean
cs1100.wpc.omegacdn.net
152.199.23.37
 clean
microsoftwindows.112.2o7.net
35.181.18.61
 clean
ww-agf.primside.ga
162.241.67.201
 clean
dh1y47vf5ttia.cloudfront.net
143.204.11.96
 clean
va.v.liveperson.net
208.89.12.87
 clean
cs1227.wpc.alphacdn.net
192.229.221.185
 clean
mcraa.fs.liveperson.com
3.218.234.129
 clean
snowtike.cf
162.241.67.201
 clean
liveperson.map.fastly.net
151.101.1.192
 clean
googlehosted.l.googleusercontent.com
172.217.22.225
 clean
logincdn.msauth.net
unknown
 clean
lpcdn.lpsnmedia.net
unknown
 clean
accdn.lpsnmedia.net
unknown
 clean
statics-eas.onestore.ms
unknown
 clean
aadcdn.msftauth.net
unknown
 clean
aadcdn.msauth.net
unknown
 clean
assets.onestore.ms
unknown
 clean
ajax.aspnetcdn.com
unknown
 clean
static-assets.fs.liveperson.com
unknown
 clean
mem.gfx.ms
unknown
 clean
clients2.googleusercontent.com
unknown
 clean
bingexplore.azurewebsites.net
unknown
 clean
statics-neu.onestore.ms
unknown
 clean
statics-wcus.onestore.ms
unknown
 clean
statics-eus.onestore.ms
unknown
 clean
publisher.liveperson.net
unknown
 clean
amp.azure.net
unknown
 clean
lptag.liveperson.net
unknown
 clean
There are 19 hidden domains, click here to show them.

IPs

IP
Domain
Country
Active
Malicious
172.217.22.225
unknown
United States
unknown
 clean
192.168.2.1
unknown
unknown
unknown
 clean
208.89.12.87
unknown
United States
unknown
 clean
192.168.2.6
unknown
unknown
unknown
 clean
151.101.1.192
unknown
United States
unknown
 clean
162.241.67.201
unknown
United States
unknown
 clean
104.26.5.196
unknown
United States
unknown
 clean
239.255.255.250
unknown
Reserved
unknown
 clean
192.229.221.185
unknown
United States
unknown
 clean
35.181.18.61
unknown
United States
unknown
 clean
152.199.23.37
unknown
United States
unknown
 clean
143.204.11.96
unknown
United States
unknown
 clean
127.0.0.1
unknown
unknown
unknown
 clean
There are 3 hidden IPs, click here to show them.

Registry

Path
Value
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
S-1-5-21-3853321935-2125563209-4053062332-1002
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
ahfgeienlihckogmohjhadlkjgocpleb
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gdaefkejpgkiemlaofpalmlakkmbjdnl
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gfdkimpbcpahaombhbimeihdjnejgicl
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
kmendfapggjehodndflmmgagdbamhnfd
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
mfehgcgbbipciphmccgaenjidiccnmng
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
mhjfbmdgcfjbbpaeojofohoefgiehjai
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
neajdppkdcdipfabeoofebfddakdcjhd
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nkeimhogjdpnpccoofpliimaahmaaome
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
prefs.preference_reset_time
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gfdkimpbcpahaombhbimeihdjnejgicl
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nmmhkkegccagdldgiimedpiccmgmieda
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
pkedcjkdefgpdelpbcmbmeomcjbeemfm
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nmmhkkegccagdldgiimedpiccmgmieda
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nmmhkkegccagdldgiimedpiccmgmieda
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
state
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
StatusCodes
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
StatusCodes
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
state
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.reporting
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
module_blacklist_cache_md5_digest
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
media.storage_id_salt
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.last_account_id
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.account_id
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.prompt_seed
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_homepage
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
default_search_provider_data.template_url_data
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
safebrowsing.incidents_sent
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
pinned_tabs
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
search_provider_overrides
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_default_search
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
prefs.preference_reset_time
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.last_username
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
session.startup_urls
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
session.restore_on_startup
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.prompt_version
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_startup_urls
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.prompt_wave
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
homepage
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
homepage_is_newtabpage
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
browser.show_home_button
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
user_experience_metrics.stability.exited_cleanly
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
lastrun
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
S-1-5-21-3853321935-2125563209-4053062332-1002
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
GlobalAssocChangedCounter
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
 clean
There are 41 hidden registries, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
7FF5E2207000
unkown
page readonly
 clean
22D0548E000
unkown
page read and write
 clean
1BFCC9A0000
unkown
page read and write
 clean
7FF5CD8C8000
unkown
page readonly
 clean
22D054A9000
unkown
page read and write
 clean
7FF5CDAA6000
unkown
page readonly
 clean
7FF5C8D10000
unkown
page readonly
 clean
22D0548D000
unkown
page read and write
 clean
13B15F00000
unkown
page read and write
 clean
22D05487000
unkown
page read and write
 clean
1BFCB002000
unkown
page read and write
 clean
55838FE000
unkown
page read and write
 clean
7FF5CDA8A000
unkown
page readonly
 clean
7FF5E1F15000
unkown
page readonly
 clean
855F77000
unkown
page read and write
 clean
558387E000
unkown
page read and write
 clean
7FF5CD9F6000
unkown
page readonly
 clean
22D054BB000
unkown
page read and write
 clean
22D0547C000
unkown
page read and write
 clean
1BFCB034000
unkown
page read and write
 clean
7FF5C8D48000
unkown
page readonly
 clean
7FF5E2058000
unkown
page readonly
 clean
7FF5C8E32000
unkown
page readonly
 clean
7FF5C8F02000
unkown
page readonly
 clean
7FF5CDA64000
unkown
page readonly
 clean
7FF5E1F6F000
unkown
page readonly
 clean
7FF5CD84A000
unkown
page readonly
 clean
7FF5C8EC7000
unkown
page readonly
 clean
1BFCB029000
unkown
page read and write
 clean
13B16602000
unkown
page read and write
 clean
7FF5CD721000
unkown
page readonly
 clean
55839F5000
unkown
page read and write
 clean
7FF5C8D15000
unkown
page readonly
 clean
13B15D60000
unkown
page readonly
 clean
13B160D0000
unkown
page readonly
 clean
7FF5C8E01000
unkown
page readonly
 clean
1C969D40000
unkown
page readonly
 clean
7FF5CDAB7000
unkown
page readonly
 clean
22D05489000
unkown
page read and write
 clean
7FF5C8CC7000
unkown
page readonly
 clean
1C96923C000
unkown
page read and write
 clean
1C969250000
unkown
page read and write
 clean
7FF5CD9B1000
unkown
page readonly
 clean
22D054A6000
unkown
page read and write
 clean
7FF5E2242000
unkown
page readonly
 clean
7FF5E21FD000
unkown
page readonly
 clean
7FF5CD877000
unkown
page readonly
 clean
7FF5C8EB1000
unkown
page readonly
 clean
22D05497000
unkown
page read and write
 clean
7FF5CD9E2000
unkown
page readonly
 clean
7FF5CD9CD000
unkown
page readonly
 clean
13B15E8D000
unkown
page read and write
 clean
13B15E4E000
unkown
page read and write
 clean
7FF5C89B7000
unkown
page readonly
 clean
7FF5CDAA3000
unkown
page readonly
 clean
13B15F08000
unkown
page read and write
 clean
22D05491000
unkown
page read and write
 clean
1BFCB000000
unkown
page read and write
 clean
1BFCB113000
unkown
page read and write
 clean
13B15E49000
unkown
page read and write
 clean
7FF5E21F4000
unkown
page readonly
 clean
7FF5E2233000
unkown
page readonly
 clean
7FF5C8ECB000
unkown
page readonly
 clean
1C969313000
unkown
page read and write
 clean
7FF5CDAB7000
unkown
page readonly
 clean
1C969010000
unkown
page readonly
 clean
7FF5E1FBF000
unkown
page readonly
 clean
7FF5C8E46000
unkown
page readonly
 clean
7FF5C8E4D000
unkown
page readonly
 clean
1C969213000
unkown
page read and write
 clean
1C969A00000
unkown
page readonly
 clean
7FF5C8E2A000
unkown
page readonly
 clean
7FF5E220B000
unkown
page readonly
 clean
22D0546B000
unkown
page read and write
 clean
7FF5C8D85000
unkown
page readonly
 clean
22D05485000
unkown
page read and write
 clean
22D0547F000
unkown
page read and write
 clean
22D0549C000
unkown
page read and write
 clean
16C93CF000
unkown
page read and write
 clean
7FF5C89B1000
unkown
page readonly
 clean
7FF5C8CF6000
unkown
page readonly
 clean
7FF5CDA67000
unkown
page readonly
 clean
1C969400000
unkown
page readonly
 clean
22D05490000
unkown
page read and write
 clean
22D05492000
unkown
page read and write
 clean
13B15F13000
unkown
page read and write
 clean
13B15D50000
unkown
page readonly
 clean
22D0548E000
unkown
page read and write
 clean
7FF5E2199000
unkown
page readonly
 clean
7FF5C8ACF000
unkown
page readonly
 clean
7FF5C8EF3000
unkown
page readonly
 clean
13B15D40000
heap default
page read and write
 clean
22D05488000
unkown
page read and write
 clean
13B15E52000
unkown
page read and write
 clean
7FF5C8F07000
unkown
page readonly
 clean
7FF5E1F6B000
unkown
page readonly
 clean
22D05463000
unkown
page read and write
 clean
22D0547C000
unkown
page read and write
 clean
22D0549E000
unkown
page read and write
 clean
13B15CE0000
heap private
page read and write
 clean
7FF5CD8C0000
unkown
page readonly
 clean
22D05490000
unkown
page read and write
 clean
7FF5CD9DA000
unkown
page readonly
 clean
13B15E3C000
unkown
page read and write
 clean
7FF5C8EDA000
unkown
page readonly
 clean
7FF5E2172000
unkown
page readonly
 clean
7FF5E2117000
unkown
page readonly
 clean
1C969255000
unkown
page read and write
 clean
7FF5C8EC4000
unkown
page readonly
 clean
22D054A9000
unkown
page read and write
 clean
7FF5E2036000
unkown
page readonly
 clean
13B16B40000
unkown
page readonly
 clean
7FF5E20F5000
unkown
page readonly
 clean
1C969287000
unkown
page read and write
 clean
22D05490000
unkown
page read and write
 clean
7FF5CDA7B000
unkown
page readonly
 clean
7FF5E216A000
unkown
page readonly
 clean
7FF5CDA74000
unkown
page readonly
 clean
7FF5CD9AF000
unkown
page readonly
 clean
1BFCAF40000
unkown
page readonly
 clean
1BFCB056000
unkown
page read and write
 clean
1C969300000
unkown
page read and write
 clean
16C967A000
unkown
page read and write
 clean
7FF5E2186000
unkown
page readonly
 clean
22D054BE000
unkown
page read and write
 clean
1BFCADB0000
heap private
page read and write
 clean
7FF5C8E0F000
unkown
page readonly
 clean
7FF5C8EB4000
unkown
page readonly
 clean
7FF5E1E1A000
unkown
page readonly
 clean
7FF5E2247000
unkown
page readonly
 clean
22D0547F000
unkown
page read and write
 clean
7FF5CD9D6000
unkown
page readonly
 clean
85607F000
unkown
page read and write
 clean
22D054BC000
unkown
page read and write
 clean
1C96924D000
unkown
page read and write
 clean
7FF5E1E16000
unkown
page readonly
 clean
16C934F000
unkown
page read and write
 clean
1BFCAEF0000
unkown
page write copy
 clean
13B15D70000
unkown
page read and write
 clean
7FF5CD8A6000
unkown
page readonly
 clean
1C9691D0000
unkown
page read and write
 clean
22D05494000
unkown
page read and write
 clean
7FF5CD561000
unkown
page readonly
 clean
22D0547C000
unkown
page read and write
 clean
7FF5E2050000
unkown
page readonly
 clean
7FF5C8651000
unkown
page readonly
 clean
7FF5CDA6D000
unkown
page readonly
 clean
13B15F02000
unkown
page read and write
 clean
5583E7F000
unkown
page read and write
 clean
7FF5CDA07000
unkown
page readonly
 clean
85598E000
unkown
page read and write
 clean
1C969229000
unkown
page read and write
 clean
7FF5CDAB2000
unkown
page readonly
 clean
22D0547F000
unkown
page read and write
 clean
13B15E88000
unkown
page read and write
 clean
1BFCB102000
unkown
page read and write
 clean
7FF5E2247000
unkown
page readonly
 clean
7FF5E21F7000
unkown
page readonly
 clean
1C969000000
heap default
page read and write
 clean
22D0548C000
unkown
page read and write
 clean
1BFCAE10000
heap default
page read and write
 clean
22D054A9000
unkown
page read and write
 clean
7FF5C8C9A000
unkown
page readonly
 clean
22D0548E000
unkown
page read and write
 clean
16C977F000
unkown
page read and write
 clean
5583B7E000
unkown
page read and write
 clean
22D0548B000
unkown
page read and write
 clean
13B15E29000
unkown
page read and write
 clean
7FF5E2204000
unkown
page readonly
 clean
1BFCB013000
unkown
page read and write
 clean
22D05483000
unkown
page read and write
 clean
22D0548E000
unkown
page read and write
 clean
22D05496000
unkown
page read and write
 clean
7FF5E1A37000
unkown
page readonly
 clean
1BFCB03F000
unkown
page read and write
 clean
22D0549C000
unkown
page read and write
 clean
5583AFB000
unkown
page read and write
 clean
7FF5C8EBD000
unkown
page readonly
 clean
1C96924A000
unkown
page read and write
 clean
7FF5C8E13000
unkown
page readonly
 clean
7FF5E1F1F000
unkown
page readonly
 clean
855E7B000
unkown
page read and write
 clean
22D05493000
unkown
page read and write
 clean
7FF5CD727000
unkown
page readonly
 clean
7FF5CDA61000
unkown
page readonly
 clean
7FF5CD9BF000
unkown
page readonly
 clean
85617F000
unkown
page read and write
 clean
7FF5CD8C5000
unkown
page readonly
 clean
22D0548D000
unkown
page read and write
 clean
7FF53C937000
unkown
page readonly
 clean
1C969200000
unkown
page read and write
 clean
22D054A9000
unkown
page read and write
 clean
7FF5E2197000
unkown
page readonly
 clean
1BFCB009000
unkown
page read and write
 clean
7FF5E221A000
unkown
page readonly
 clean
1C969302000
unkown
page read and write
 clean
22D0548E000
unkown
page read and write
 clean
22D054BA000
unkown
page read and write
 clean
7FF5C8EF6000
unkown
page readonly
 clean
1C969270000
unkown
page read and write
 clean
13B16800000
unkown
page readonly
 clean
1C9690E0000
unkown
page readonly
 clean
7FF5CDA09000
unkown
page readonly
 clean
55835BB000
unkown
page read and write
 clean
7FF5C8B71000
unkown
page readonly
 clean
7FF5C8E26000
unkown
page readonly
 clean
85590B000
unkown
page read and write
 clean
13B15E13000
unkown
page read and write
 clean
7FF5E2236000
unkown
page readonly
 clean
16C96F9000
unkown
page read and write
 clean
7FF5E214F000
unkown
page readonly
 clean
1C968FA0000
heap private
page read and write
 clean
1BFCAE20000
unkown
page readonly
 clean
1BFCB200000
unkown
page readonly
 clean
13B15E56000
unkown
page read and write
 clean
7FF5CD935000
unkown
page readonly
 clean
7FF5C8F07000
unkown
page readonly
 clean
7FF5C8DFF000
unkown
page readonly
 clean
7FF5E215E000
unkown
page readonly
 clean
22D0547F000
unkown
page read and write
 clean
22D05490000
unkown
page read and write
 clean
5583C77000
unkown
page read and write
 clean
1BFCCAA0000
unkown
page readonly
 clean
855D75000
unkown
page read and write
 clean
7FF5CD567000
unkown
page readonly
 clean
1BFCAF80000
unkown
page read and write
 clean
855C7F000
unkown
page read and write
 clean
7FF5E218D000
unkown
page readonly
 clean
22D054A7000
unkown
page read and write
 clean
7FF5CAEB7000
unkown
page readonly
 clean
7FF5E1E08000
unkown
page readonly
 clean
22D054A9000
unkown
page read and write
 clean
7FF5C8D18000
unkown
page readonly
 clean
7FF5CD9C3000
unkown
page readonly
 clean
5583D7F000
unkown
page read and write
 clean
7FF5C8EB7000
unkown
page readonly
 clean
22D05490000
unkown
page read and write
 clean
7FF5E2166000
unkown
page readonly
 clean
7FF5C8E59000
unkown
page readonly
 clean
22D054A1000
unkown
page read and write
 clean
7FF5CD9FD000
unkown
page readonly
 clean
22D0548B000
unkown
page read and write
 clean
22D0547C000
unkown
page read and write
 clean
1C969308000
unkown
page read and write
 clean
7FF5C8E1D000
unkown
page readonly
 clean
22D054A1000
unkown
page read and write
 clean
7FF5CDA77000
unkown
page readonly
 clean
13B15E70000
unkown
page read and write
 clean
16C92CB000
unkown
page read and write
 clean
13B15E00000
unkown
page read and write
 clean
13B16000000
unkown
page readonly
 clean
7FF5E2153000
unkown
page readonly
 clean
7FF5E20F7000
unkown
page readonly
 clean
1C9691C0000
unkown
page readonly
 clean
1C969802000
unkown
page read and write
 clean
7FF5C8E57000
unkown
page readonly
 clean
22D05490000
unkown
page read and write
 clean
7FF5CD8F8000
unkown
page readonly
 clean
1BFCB06E000
unkown
page read and write
 clean
22D05497000
unkown
page read and write
 clean
13B15E4A000
unkown
page read and write
 clean
There are 251 hidden memdumps, click here to show them.

DOM / HTML

URL
Malicious
https://snowtike.cf/7b6eYENimwGy9Ma0g4XszBZLT5l2WqDVjoJ18pFUknfHAxch3tQrKIROvPuSDqQ1uYzobn7wig0r5kF3HRy2teLTW4PJSX96AKBjMhVav8IlpmEfZOsxNGCUlD4pvWYF8xZb51qiGfLjKsnz7gIUTOJ6h2wyHAEeQStRu90oamrk3PCcMXBVylpIMhzXU2iS1AGETa09oZcDBf8bY5jgHOQkesK7CF6w3L4NxtmqVPvnWuJR/2MogmySibBcJaLQGZ4IN8UACq7l1V5THpfzE0hjKxktrFu9RYPeWXvnwO36D.php
 malicious
https://privacy.microsoft.com/en-US/privacystatement
 clean
https://www.microsoft.com/en-US/servicesagreement/
 clean
https://www.microsoft.com/de-ch/
 clean
https://www.microsoft.com/store/buy/cartcount
 clean
https://www.microsoft.com/en-us/servicesagreement/default.aspx
 clean
https://www.microsoft.com/de-ch/microsoft-365?rtc=1
 clean
https://publisher.liveperson.net/iframe-le-tag/iframe.html?lpsite=60270350&lpsection=store-sales-de-ch&buttons=lpChatService,lpChatSales
 clean
https://www.microsoft.com/de-ch/store/collections/surfacelist?icid=MSCOM_QL_Surface&headerid=department-surface
 clean
https://www.microsoft.com/en-us/servicesagreementhttps://www.microsoft.com/en-us/servicesagreement/faq.aspx
 clean
https://bingexplore.azurewebsites.net/bing-data-suppliers/en/
 clean
There are 1 hidden doms, click here to show them.