IOC Report

loading gif

Files

File Path
Type
Category
Malicious
C:\Users\user\AppData\Local\Google\Chrome\User Data\07c95433-00b9-4eca-8d85-af65fb2f1ffd.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\18b4d142-95bd-4b56-9d01-b06b09f57116.tmp
SysEx File -
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\1dbc8b41-c98c-4c4a-b658-0b0732087c33.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\271f3adf-6aa7-4d58-9726-fa57cbc71d0a.tmp
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\3c36be0b-127e-4e7c-9a8c-cb00b0e80671.tmp
ASCII text, with very long lines, with no line terminators
modified
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\50d8dbef-6ccf-4a9b-971b-1d4c2521e76a.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\59511810-3f13-4238-9ea9-63c0015b92b7.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\62a27cb9-77f7-4f7d-9533-3ee2faa14576.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\09c4cd43-3af7-46b4-95b5-a3df7e2432e0.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\0bf201f7-3b5d-4575-919e-ac2211e33c96.tmp
ASCII text, with very long lines, with no line terminators
modified
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1d81f5ee-7dce-4fdf-9764-a7d3fcc78b2e.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1e2452c0-c99b-4c80-b78e-d2f38d425351.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\4064469d-79ba-472f-8e18-192db2ddc1ce.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\41cbae51-a667-4b94-9cb4-b48acd189263.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\42ce5cf8-3306-46cc-a6b7-568aee1fc981.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7da52875-3764-4459-93f9-1c344c564139.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8c8df4e2-359d-4658-8b5f-7fe167e21729.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\98419d75-9c52-42da-80ec-c2a737232b86.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\008f529d5196fce7_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0119cfbe12ef6849_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0250d8ce2735e74e_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\061c3863cb1cb334_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0979634d70fe8bf4_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0b9b437d19b157ad_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0bb35d2e932f7d5c_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\122d04a8232973d0_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\15e452d2fd75ff72_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1b05ffd5da28fc60_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\22fa3f0261ab855a_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\26bc2306d567c45f_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2a9b8d17fe647aa0_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3289fde249942f78_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\335e69ddec2b9ac6_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\37e44d8b90496892_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3e3e4108dc16bf48_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\457e1225f8b1f669_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\48b9a0afab54515b_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4caad2c61557168b_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4f7938389e355e30_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4fac35a0862aa91e_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\52647438de9aa7c6_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\52bffd381b3fe893_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5617b546b35577e0_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\562773d099c8224c_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\58f4b934c035e44d_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5a95edd4a3bec553_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5ecb0e0481201bc2_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6178eb284ad25703_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\643f9e2be6f9fb43_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\64df0ffd5e590658_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\666dc7a806306830_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\687c6c3863423e0c_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6d4155db4a9b1e92_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6e4084a6cec32c65_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6ef17f4394ea58a4_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\72d14bd64a2d61f2_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\75206ac51fef4dfc_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7776b1d0aa036b7a_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\77809b77cef84e1f_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\78bf90adf0cdd3f5_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\894de1669273ce7e_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8b08fa616441c82b_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8bca89f2a67d8cbf_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\98c3e88ec1bef916_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\991e880b9053bd44_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9c52148f8ea6f3bf_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a36db06c0fedcb36_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ae8d29239e94aafe_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\af574fed3796c154_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b09fad8191cf23a7_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b19268b0244bb75a_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bd74d693f4a00e17_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bef619073e6e46a7_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c37982e2be998a49_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c683f78562ae17a8_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c7c858b6a9e8333e_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ca71f17fa3c804d4_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\dd21604f72ea78ba_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e0a9215026918f6c_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e66229c28c1c75ac_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e97c20b9a7db73b5_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ecc2b5848839a087_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f273df1364847783_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f4a29299914bdfb8_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fcc25e75f5f4cb5a_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fea7aba934ff6031_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ffdc07d76eb84b7b_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
SysEx File - Moog
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index\* (copy)
SysEx File - Moog
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old. (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.oldn (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_stripo.email_0.indexeddb.leveldb\000001.dbtmp
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_stripo.email_0.indexeddb.leveldb\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_stripo.email_0.indexeddb.leveldb\CURRENTso (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_stripo.email_0.indexeddb.leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_stripo.email_0.indexeddb.leveldb\MANIFEST-000001
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session (copy)
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabs (copy)
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old. (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State25 (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent Statemp (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.old() (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences.[ (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferencest (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\QuotaManager
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\QuotaManager-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure PreferencesTM (copy)
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\000001.dbtmp
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\CURRENT. (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\MANIFEST-000001
PGP\011Secret Key -
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\4cb013792b196a35_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\4cb013792b196a35_1
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index
ISO-8859 text, with no line terminators, with escape sequences
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\temp-index
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index (copy)
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old M (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\895ef927-5883-46e5-b598-c10632ab4daf.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent Stateaf (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\8a97ffd3-94fe-41b2-8bf5-da6bfaead306.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent State.. (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.oldP (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.oldpt (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity.. (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ae06fcb6-e989-4de0-adeb-1384a5b8f972.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\afaf73cf-a207-4ccf-930e-ab725c7acc99.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\bf611397-15bc-4ac0-821d-05d843fa3800.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c1f4cb6f-ccf6-4cb7-a040-9dcf11d768d9.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
MPEG-4 LOAS
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State. (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StateTM (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
SysEx File -
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache1 (copy)
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\b94c780d-3fc8-404c-b871-854b963b05c9.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\f16b0186-efd4-4c17-85da-64cc5dcd1c6a.tmp
data
dropped
 clean
C:\Users\user\AppData\Local\Temp\30e642f0-6ad9-402d-9608-7bfa8bd6287f.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\5f23432a-09d2-4fae-bec8-59c0f5243867.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Temp\74503670-eaa3-4a23-b2dc-aa12dd5e69d1.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Temp\a729c82f-8233-42b2-99bb-f10f10f87963.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\en\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\en_GB\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\es_419\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\fil\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\id\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\nl\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\pt_BR\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\pt_PT\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\zh_CN\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\images\icon_128.png
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\images\icon_16.png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\CRX_INSTALL\manifest.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_1647600183\a729c82f-8233-42b2-99bb-f10f10f87963.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\30e642f0-6ad9-402d-9608-7bfa8bd6287f.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\am\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\ar\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\bn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\en\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\fa\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\fil\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\gu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\id\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\kn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\ml\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\mr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\ms\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\nl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\pt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\sw\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\ta\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\te\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\zh\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6688_396412739\CRX_INSTALL\manifest.json
ASCII text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Windows\Fonts\seguisli.ttf
data
dropped
 clean
There are 299 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://viewstripo.email/template/d344d8c0-9b03-4cc6-b3e0-89285eb82082'
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1616,7430414823550753993,13542526025079458087,131072 --lang=en-GB --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1732 /prefetch:8
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1616,7430414823550753993,13542526025079458087,131072 --lang=en-GB --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=6820 /prefetch:8
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1616,7430414823550753993,13542526025079458087,131072 --lang=en-GB --service-sandbox-type=video_capture --enable-audio-service-sandbox --mojo-platform-channel-handle=6800 /prefetch:8
clean

URLs

Name
IP
Malicious
https://viewstripo.email/template/d344d8c0-9b03-4cc6-b3e0-89285eb82082
malicious
https://viewstripo.email/template/d344d8c0-9b03-4cc6-b3e0-89285eb82082
malicious
https://keegagrves.buzz/ramtool/adobe2020/Share
unknown
 malicious
https://viewstripo.email/template/d344d8c0-9b03-4cc6-b3e0-89285eb82082New
unknown
 malicious
https://keegagrves.buzz/ramtool/adobe2020/
malicious
https://js.intercomcdn.com/frame-modern.66d90d67.js
unknown
 clean
https://stripo.email/static/main.aaa0188cd34ccdf72502.js
unknown
 clean
https://push.esputnik.com/service-worker.js
unknown
 clean
https://cdn.jsdelivr.net/npm/sockjs-client
unknown
 clean
https://ajax.aspnetcdn.com/ajax/jquery.validate/1.15.0/jquery.validate.min.jsaD
unknown
 clean
https://code.jquery.com/jquery-3.2.1.slim.min.js
unknown
 clean
https://app.readpeak.com/ads
unknown
 clean
https://cdn.amplitude.com/libs/amplitude-5.2.2-min.gz.jsaD
unknown
 clean
https://adserver.html.it/
unknown
 clean
https://csp.withgoogle.com/csp/report-to/apps-themes
unknown
 clean
https://stripo-cdn.stripo.email/js/pages/plugin.js?id=31b00f6a39f6d5928f6c
unknown
 clean
https://b.plerdy.com/main2.js
unknown
 clean
https://viewstripo.emailh
unknown
 clean
https://stripo.email/en/demo/?guid=a72722c9-5e68-49e7-a554-f0863d8b75c4&project=109
clean
https://q.quora.com/_/ad/
unknown
 clean
https://ct.pinterest.com
unknown
 clean
https://stripo.email/?utm_source=user-templateStripo
unknown
 clean
https://stripo.email/static/assets/js/emojione.min.js
unknown
 clean
https://www.youtube.com
unknown
 clean
https://cdn.firstpromoter.com/fprom.jsaD
unknown
 clean
https://keegagrves.buzz/
unknown
 clean
https://stripo.email/nj
unknown
 clean
https://c.plerdy.com/public/js/click/main2.js
unknown
 clean
https://connect.facebook.net/signals/config/378780519466271?v=2.9.46&r=stableaD
unknown
 clean
https://stats.g.doubleclick.net/j/collect
unknown
 clean
https://test.plerdy.com
unknown
 clean
https://kit.fontawesome.com/585b051251.js
unknown
 clean
https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
unknown
 clean
https://t.firstpromoter.com/track/signup
unknown
 clean
https://cdnjs.cloudflare.com/ajax/libs/vertx/3.9.1/vertx-eventbus.min.js
unknown
 clean
https://youtube.com/
unknown
 clean
https://console.theviewpoint.com/inventory/placement/129
unknown
 clean
https://stripo.email/blog/Email
unknown
 clean
https://stripo.email/en/demo/?guid=a72722c9-5e68-49e7-a554-f0863d8b75c4
unknown
 clean
https://viewstripo.email/
unknown
 clean
https://stripo.email/EStripo
unknown
 clean
https://rum-static.pingdom.net/
unknown
 clean
https://www.youtube.com/s/player/d82ca80e/www-widgetapi.vflset/www-widgetapi.js
unknown
 clean
https://l.getsitecontrol.com/
unknown
 clean
https://stripo.email/request-enterprise-solution/
unknown
 clean
http://support.stripo.email
unknown
 clean
https://payments.google.com/payments/v4/js/integrator.js
unknown
 clean
https://stripo.email/.
unknown
 clean
https://s.pinimg.com/
unknown
 clean
https://stripo.email/0
unknown
 clean
https://www.youtube.com/s/player/d82ca80e/player_ias.vflset/en_GB/embed.js
unknown
 clean
https://s2.getsitecontrol.com/widgets/es6/runtime.a290b98.jsaD
unknown
 clean
https://www.youtube.com/
unknown
 clean
https://ajax.aspnetcdn.com/ajax/jquery.validate/1.15.0/jquery.validate.min.js
unknown
 clean
https://test.plerdy.com/click/
unknown
 clean
https://cdn.firstpromoter.com/
unknown
 clean
https://connect.facebook.net/
unknown
 clean
https://stripo-cdn.stripo.email/js/home-page.js?id=9ac0ae0560400c796562aD
unknown
 clean
https://stripo.email/customer-stories/https://stripo.email/pricing/
unknown
 clean
http://www.trizer.pl/?utm_source
unknown
 clean
https://esputnik.com/
unknown
 clean
https://stripo-cdn.stripo.email/favicon-32x32.png
unknown
 clean
https://stripo.email/
clean
https://a.nel.cloudflare.com/report/v3?s=BvHj9PBilTTO4G0kYRDvKHv0Kvd%2BdVVoqveqQaE9EK5D9sJBVHiGFwhic
unknown
 clean
https://ya-distrib.ru/r/
unknown
 clean
https://stripo.email/plugin/5Drag-n-Drop
unknown
 clean
https://stripo.email/?utm_source=user-template
clean
https://cdn.amplitude.com/
unknown
 clean
https://stripo.email/blog/(Email
unknown
 clean
https://feedback.googleusercontent.com
unknown
 clean
https://stripo-cdn.stripo.email/favicon-32x32.pngC
unknown
 clean
https://a.nel.cloudflare.com/report/v3?s=xXFr0eEsmeH3KfSz59Ts2cTT1xZe4cvVZuEg55KHLby5066QeQTdwfd1Ra%
unknown
 clean
https://esputnik.com/scripts/v1/public/scripts?apiKey=eyJhbGciOiJSUzI1NiJ9.eyJzdWIiOiI0NTI0ZWZhYTJkY
unknown
 clean
https://affiliazioniads.snai.it/
unknown
 clean
https://l.profitshare.ro/
unknown
 clean
https://push.esputnik.com/service-worker.jsaD
unknown
 clean
https://www.youtube.com/embed/?listType=playlist&list=PLgXmUKpFR5RgMlIiEPA_UgU_ho-rem35R&enablejsapi
unknown
 clean
https://stripo-cdn.stripo.email/js/app.js?id=39f54f22639ca779db8eaD
unknown
 clean
https://youtube.com/Ed
unknown
 clean
https://stripo.email/b
unknown
 clean
https://viewstripo.email/polyfills-es5.ac953fca0d74d8556d20.js
unknown
 clean
https://cdn.firstpromoter.com/fprom.js
unknown
 clean
https://d.plerdy.com/public/js/click/main.js
unknown
 clean
https://fonts.cdnfonts.com/
unknown
 clean
https://www.googleoptimize.com/optimize.js?id=OPT-K5SV2KQ
unknown
 clean
https://stripo.email.https://stripo.email/?utm_source=user-template
unknown
 clean
http://affiliazioniads.snai.it/
unknown
 clean
https://cdn.amplitude.com/libs/amplitude-5.2.2-min.gz.jsa
unknown
 clean
https://play.google.com
unknown
 clean
https://stripo.email/j
unknown
 clean
http://hitcounter.ru/top/stat.php
unknown
 clean
https://stripo.email/en/demo/polyfills-es2015.ddd81f6bf8fb594d96ae.js
unknown
 clean
https://stripo.email/blog/
clean
https://www.google.com/js/th/ySIUQvk5GAKWp7RJKF5OyVe9ZkTQkmns_YoJWAMMFa4.js
unknown
 clean
https://stripo.email/l
unknown
 clean
https://csp.withgoogle.com/csp/report-to/youtube
unknown
 clean
https://stripo.email/q
unknown
 clean
https://viewstripo.email/0
unknown
 clean
https://stripo.email/errorpage/
clean
https://t.firstpromoter.com/track/new
unknown
 clean
https://stripo.email/0s
unknown
 clean
There are 90 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
gstaticadssl.l.google.com
172.217.168.67
 clean
d2qqiyiyhqb1xe.cloudfront.net
52.84.140.33
 clean
pics.esputnik.com
163.172.69.196
 clean
i.ytimg.com
172.217.168.22
 clean
stripo.email
52.31.238.44
 clean
dash.getsitecontrol.com
52.2.182.207
 clean
cdnjs.cloudflare.com
104.16.19.94
 clean
a.plerdy.com
172.67.73.224
 clean
photos-ugc.l.googleusercontent.com
172.217.168.1
 clean
www.google.com
172.217.168.36
 clean
viewstripo.email
52.208.21.62
 clean
d2065cca9qi4ey.cloudfront.net
13.33.48.7
 clean
q.quora.com
18.205.51.212
 clean
d2ycxbs0cq3yaz.cloudfront.net
13.33.48.27
 clean
js.intercomcdn.com
52.84.140.61
 clean
star-mini.c10r.facebook.com
157.240.17.35
 clean
stats.l.doubleclick.net
142.250.145.154
 clean
maxcdn.bootstrapcdn.com
104.18.11.207
 clean
cdn.amplitude.com
54.230.9.145
 clean
api-iam.intercom.io
75.2.88.188
 clean
www.googleoptimize.com
142.250.203.110
 clean
prod.pinterest.global.map.fastly.net
151.101.0.84
 clean
youtube-ui.l.google.com
172.217.168.78
 clean
googleads.g.doubleclick.net
172.217.168.34
 clean
esputnik.com
63.33.134.133
 clean
clients.l.google.com
172.217.168.46
 clean
shopget24.com
104.219.248.46
 clean
googlehosted.l.googleusercontent.com
172.217.168.1
 clean
s.w.org
192.0.77.48
 clean
push.esputnik.com
52.214.40.3
 clean
gscmedia.b-cdn.net
89.187.165.193
 clean
keegagrves.buzz
104.21.70.171
 clean
rum-static.pingdom.net
104.20.21.239
 clean
scontent.xx.fbcdn.net
157.240.17.15
 clean
gscwidgets2.b-cdn.net
89.187.165.193
 clean
nexus-websocket-a.intercom.io
34.237.73.95
 clean
rqymqh.stripocdn.email
88.198.149.13
 clean
d1xve4zy7ijc09.cloudfront.net
13.224.84.109
 clean
a.nel.cloudflare.com
35.190.80.1
 clean
fonts.cdnfonts.com
172.67.172.36
 clean
accounts.google.com
172.217.168.13
 clean
www-google-analytics.l.google.com
172.217.168.78
 clean
d.plerdy.com
104.26.14.92
 clean
www-googletagmanager.l.google.com
172.217.168.40
 clean
widget.intercom.io
13.224.84.84
 clean
static-doubleclick-net.l.google.com
172.217.168.6
 clean
c.plerdy.com
172.67.73.224
 clean
gscstatic2.b-cdn.net
89.187.165.193
 clean
prod-dem-collector-elb-611025824.eu-west-1.elb.amazonaws.com
34.254.140.182
 clean
secure.esputnik.com
99.80.225.191
 clean
hpy.stripocdn.email
88.198.149.13
 clean
ety.stripocdn.email
88.198.149.13
 clean
www.google.ch
216.58.215.227
 clean
cdn-ckeditor.stripo.email
unknown
 clean
static.intercomassets.com
unknown
 clean
ka-f.fontawesome.com
unknown
 clean
v.pinimg.com
unknown
 clean
s2.getsitecontrol.com
unknown
 clean
stats.g.doubleclick.net
unknown
 clean
clients2.googleusercontent.com
unknown
 clean
shopget24.org
unknown
 clean
clients2.google.com
unknown
 clean
l.getsitecontrol.com
unknown
 clean
www.youtube.com
unknown
 clean
kit.fontawesome.com
unknown
 clean
connect.facebook.net
unknown
 clean
static.doubleclick.net
unknown
 clean
www.pinterest.com
unknown
 clean
yt3.ggpht.com
unknown
 clean
ajax.aspnetcdn.com
unknown
 clean
ct.pinterest.com
unknown
 clean
cdn.firstpromoter.com
unknown
 clean
code.jquery.com
unknown
 clean
stripo-cdn.stripo.email
unknown
 clean
media.getsitecontrol.com
unknown
 clean
i.pinimg.com
unknown
 clean
www.facebook.com
unknown
 clean
rum-collector-2.pingdom.net
unknown
 clean
s.pinimg.com
unknown
 clean
There are 69 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
151.101.0.84
prod.pinterest.global.map.fastly.net
United States
clean
192.168.2.1
unknown
unknown
clean
172.67.73.224
a.plerdy.com
United States
clean
54.230.9.145
cdn.amplitude.com
United States
clean
52.2.182.207
dash.getsitecontrol.com
United States
clean
163.172.69.196
pics.esputnik.com
United Kingdom
clean
104.219.248.46
shopget24.com
United States
clean
172.217.168.40
www-googletagmanager.l.google.com
United States
clean
192.168.2.4
unknown
unknown
clean
157.240.17.35
star-mini.c10r.facebook.com
United States
clean
52.214.40.3
push.esputnik.com
United States
clean
192.168.2.5
unknown
unknown
clean
172.217.168.46
clients.l.google.com
United States
clean
35.190.80.1
a.nel.cloudflare.com
United States
clean
63.33.134.133
esputnik.com
United States
clean
104.26.14.92
d.plerdy.com
United States
clean
172.217.168.1
photos-ugc.l.googleusercontent.com
United States
clean
172.217.168.13
accounts.google.com
United States
clean
239.255.255.250
unknown
Reserved
clean
89.187.165.193
gscmedia.b-cdn.net
Czech Republic
clean
34.254.140.182
prod-dem-collector-elb-611025824.eu-west-1.elb.amazonaws.com
United States
clean
127.0.0.1
unknown
unknown
clean
142.250.203.110
www.googleoptimize.com
United States
clean
13.33.48.27
d2ycxbs0cq3yaz.cloudfront.net
United States
clean
52.31.238.44
stripo.email
United States
clean
99.80.225.191
secure.esputnik.com
United States
clean
157.240.17.15
scontent.xx.fbcdn.net
United States
clean
18.205.51.212
q.quora.com
United States
clean
172.217.168.22
i.ytimg.com
United States
clean
52.208.21.62
viewstripo.email
United States
clean
13.224.84.109
d1xve4zy7ijc09.cloudfront.net
United States
clean
104.18.11.207
maxcdn.bootstrapcdn.com
United States
clean
172.217.168.78
youtube-ui.l.google.com
United States
clean
142.250.145.154
stats.l.doubleclick.net
United States
clean
172.217.168.36
www.google.com
United States
clean
172.67.172.36
fonts.cdnfonts.com
United States
clean
88.198.149.13
rqymqh.stripocdn.email
Germany
clean
104.21.70.171
keegagrves.buzz
United States
clean
104.20.21.239
rum-static.pingdom.net
United States
clean
104.16.19.94
cdnjs.cloudflare.com
United States
clean
There are 30 hidden IPs, click here to show them.

Registry

Path
Value
Malicious
0
kmendfapggjehodndflmmgagdbamhnfd
 malicious
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
ahfgeienlihckogmohjhadlkjgocpleb
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
gdaefkejpgkiemlaofpalmlakkmbjdnl
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
gfdkimpbcpahaombhbimeihdjnejgicl
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
kmendfapggjehodndflmmgagdbamhnfd
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
mfehgcgbbipciphmccgaenjidiccnmng
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
mhjfbmdgcfjbbpaeojofohoefgiehjai
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
neajdppkdcdipfabeoofebfddakdcjhd
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nkeimhogjdpnpccoofpliimaahmaaome
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
prefs.preference_reset_time
 clean
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
S-1-5-21-3853321935-2125563209-4053062332-1002
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
gfdkimpbcpahaombhbimeihdjnejgicl
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nmmhkkegccagdldgiimedpiccmgmieda
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
pkedcjkdefgpdelpbcmbmeomcjbeemfm
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nmmhkkegccagdldgiimedpiccmgmieda
 clean
HKEY_CURRENT_USER\Software\Microsoft\Speech\Voices
DefaultTokenId
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
 clean
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
dr
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
software_reporter.reporting
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
module_blacklist_cache_md5_digest
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
media.storage_id_salt
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
google.services.last_account_id
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
google.services.account_id
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
software_reporter.prompt_seed
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.last_triggered_for_homepage
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
default_search_provider_data.template_url_data
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
safebrowsing.incidents_sent
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
pinned_tabs
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
search_provider_overrides
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.last_triggered_for_default_search
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
prefs.preference_reset_time
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
google.services.last_username
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
session.startup_urls
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
session.restore_on_startup
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
software_reporter.prompt_version
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.last_triggered_for_startup_urls
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.prompt_wave
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
homepage
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
homepage_is_newtabpage
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
browser.show_home_button
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
user_experience_metrics.stability.exited_cleanly
 clean
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
lastrun
 clean
HKEY_CURRENT_USER\Software\Microsoft\ActiveMovie\devenum 64-bit
Version
 clean
There are 36 hidden registries, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
715AA7E000
unkown
page read and write
 clean
7FF5D847C000
unkown image
page readonly
 clean
185BB360000
unkown
page read and write
 clean
185BB654000
unkown
page read and write
 clean
7FF56903F000
unkown image
page readonly
 clean
7DF57E152000
unkown image
page readonly
 clean
185BB490000
unkown
page read and write
 clean
7FF5D843A000
unkown image
page readonly
 clean
185BB4A0000
unkown
page read and write
 clean
7FF5D84BE000
unkown image
page readonly
 clean
7FF5D8311000
unkown image
page readonly
 clean
7DF4EB490000
unkown image
page readonly
 clean
185B5E92000
unkown
page read and write
 clean
7FF568C71000
unkown image
page readonly
 clean
715AE77000
unkown
page read and write
 clean
2FB8F7F000
unkown
page read and write
 clean
7FF568C61000
unkown image
page readonly
 clean
185BB4B0000
unkown
page read and write
 clean
7FF568CCA000
unkown image
page readonly
 clean
7FF5D8467000
unkown image
page readonly
 clean
7FF568E85000
unkown image
page readonly
 clean
7FF568E21000
unkown image
page readonly
 clean
185B5E6E000
unkown
page read and write
 clean
7FF5D8542000
unkown image
page readonly
 clean
185BB260000
unkown
page read and write
 clean
2FB8AFE000
unkown
page read and write
 clean
7FF5D8455000
unkown image
page readonly
 clean
7DF47C020000
unkown image
page readonly
 clean
185B6702000
unkown
page read and write
 clean
7FF569024000
unkown image
page readonly
 clean
185BB384000
unkown
page read and write
 clean
7FF5D849A000
unkown image
page readonly
 clean
7FF568D90000
unkown image
page readonly
 clean
19378E00000
unkown image
page readonly
 clean
7DF5ED5E0000
unkown image
page readonly
 clean
185B5CE0000
unkown image
page readonly
 clean
7FF5D8010000
unkown image
page readonly
 clean
185B71C0000
unkown
page read and write
 clean
7FF568FDE000
unkown image
page readonly
 clean
7DF57E170000
unkown image
page readonly
 clean
7FF5D845B000
unkown image
page readonly
 clean
185B6000000
unkown image
page readonly
 clean
19378C00000
unkown
page read and write
 clean
7FF568B42000
unkown image
page readonly
 clean
185BB380000
unkown
page read and write
 clean
19378B20000
unkown image
page readonly
 clean
19378A20000
unkown image
page readonly
 clean
19378C13000
unkown
page read and write
 clean
185B6E30000
unkown image
page readonly
 clean
7FF568FCC000
unkown image
page readonly
 clean
185BB368000
unkown
page read and write
 clean
19378C3C000
unkown
page read and write
 clean
7FF5D83BC000
unkown image
page readonly
 clean
7FF569034000
unkown image
page readonly
 clean
7FF568FBF000
unkown image
page readonly
 clean
7FF5D8534000
unkown image
page readonly
 clean
7FF568BF7000
unkown image
page readonly
 clean
185B5CA0000
heap private
page read and write
 clean
7FF5D8487000
unkown image
page readonly
 clean
185B65D1000
unkown
page read and write
 clean
185B6200000
unkown image
page readonly
 clean
19379202000
unkown
page read and write
 clean
7FF568D9B000
unkown image
page readonly
 clean
185B5F13000
unkown
page read and write
 clean
2FB8FFF000
unkown
page read and write
 clean
19378C86000
unkown
page read and write
 clean
185B6E50000
unkown image
page readonly
 clean
185B5E74000
unkown
page read and write
 clean
7FF568DBF000
unkown image
page readonly
 clean
7FF5D81C7000
unkown image
page readonly
 clean
19378A10000
unkown image
page readonly
 clean
19378C5D000
unkown
page read and write
 clean
185BB3A4000
unkown
page read and write
 clean
185BB361000
unkown
page read and write
 clean
7FF56884D000
unkown image
page readonly
 clean
2FB90FF000
unkown
page read and write
 clean
7FF568F9F000
unkown image
page readonly
 clean
185BB1C0000
unkown
page read and write
 clean
7FF568FE5000
unkown image
page readonly
 clean
19379180000
unkown image
page readonly
 clean
7FF568DCB000
unkown image
page readonly
 clean
19378D00000
unkown
page read and write
 clean
7FF568E72000
unkown image
page readonly
 clean
19378C4D000
unkown
page read and write
 clean
185B5C90000
unkown image
page read and write
 clean
7FF5D8450000
unkown image
page readonly
 clean
7FF5D847F000
unkown image
page readonly
 clean
7FF568E16000
unkown image
page readonly
 clean
185B6700000
unkown
page read and write
 clean
185BB3A0000
unkown
page read and write
 clean
7FF568FA3000
unkown image
page readonly
 clean
185B5CB0000
unkown image
page readonly
 clean
7FF5D83B4000
unkown image
page readonly
 clean
7FF5D78F3000
unkown image
page readonly
 clean
193789E0000
heap private
page read and write
 clean
185BB1D0000
unkown
page read and write
 clean
715A7BE000
unkown
page read and write
 clean
19379000000
unkown image
page readonly
 clean
185BB4D0000
unkown
page read and write
 clean
7FF5D82A1000
unkown image
page readonly
 clean
7FF5D84B8000
unkown image
page readonly
 clean
185BB4E0000
unkown
page read and write
 clean
19378D08000
unkown
page read and write
 clean
185B6390000
unkown image
page readonly
 clean
2FB8DFE000
unkown
page read and write
 clean
185BB240000
unkown
page read and write
 clean
7FF569017000
unkown image
page readonly
 clean
19378C5D000
unkown
page read and write
 clean
7DF57E170000
unkown image
page readonly
 clean
185B6B00000
unkown
page read and write
 clean
19378C6E000
unkown
page read and write
 clean
185B6C60000
unkown image
page read and write
 clean
7FF568F93000
unkown image
page readonly
 clean
185B5E9E000
unkown
page read and write
 clean
7DF57E150000
unkown image
page readonly
 clean
7FF569056000
unkown image
page readonly
 clean
185BB4F0000
unkown
page read and write
 clean
185BB61E000
unkown
page read and write
 clean
7FF5D843C000
unkown image
page readonly
 clean
185BB390000
unkown
page read and write
 clean
2FB93FF000
unkown
page read and write
 clean
185BB381000
unkown
page read and write
 clean
19378A40000
heap default
page read and write
 clean
7FF568FDA000
unkown image
page readonly
 clean
7FF5D8025000
unkown image
page readonly
 clean
2FB8BFA000
unkown
page read and write
 clean
19378C4C000
unkown
page read and write
 clean
7FF5D8541000
unkown image
page readonly
 clean
7FF5690D2000
unkown image
page readonly
 clean
19378C50000
unkown
page read and write
 clean
185B5DE0000
unkown image
page readonly
 clean
7FF568FB4000
unkown image
page readonly
 clean
7DF5ED5D2000
unkown image
page readonly
 clean
185BB600000
unkown
page read and write
 clean
185BB649000
unkown
page read and write
 clean
185B6E60000
unkown image
page readonly
 clean
185B5E29000
unkown
page read and write
 clean
7DF5ED5D2000
unkown image
page readonly
 clean
7FF568D89000
unkown image
page readonly
 clean
7FF568FF7000
unkown image
page readonly
 clean
7FF568C5E000
unkown image
page readonly
 clean
7FF568EA1000
unkown image
page readonly
 clean
7FF568FEB000
unkown image
page readonly
 clean
7DF5ED5E0000
unkown image
page readonly
 clean
7DF57E162000
unkown image
page readonly
 clean
185BB4C0000
unkown
page read and write
 clean
7FF5D84AF000
unkown image
page readonly
 clean
7FF5D839D000
unkown image
page readonly
 clean
7DF5ED5C0000
unkown image
page readonly
 clean
185BB36E000
unkown
page read and write
 clean
7FF568F4C000
unkown image
page readonly
 clean
185B5E76000
unkown
page read and write
 clean
193789F0000
unkown image
page readonly
 clean
185B6713000
unkown
page read and write
 clean
185B6E40000
unkown image
page readonly
 clean
7FF568DA6000
unkown image
page readonly
 clean
7FF569048000
unkown image
page readonly
 clean
19378C53000
unkown
page read and write
 clean
2FB8CFA000
unkown
page read and write
 clean
7FF5690CA000
unkown image
page readonly
 clean
7FF5D8200000
unkown image
page readonly
 clean
185B6615000
unkown
page read and write
 clean
19378C8E000
unkown
page read and write
 clean
185BB4E0000
unkown
page read and write
 clean
7DF57E152000
unkown image
page readonly
 clean
19378D13000
unkown
page read and write
 clean
7FF568DDD000
unkown image
page readonly
 clean
19378C2A000
unkown
page read and write
 clean
7FF568FE0000
unkown image
page readonly
 clean
2FB907E000
unkown
page read and write
 clean
7FF5D853A000
unkown image
page readonly
 clean
7DF57E160000
unkown image
page readonly
 clean
7FF568E8A000
unkown image
page readonly
 clean
185B6E20000
unkown image
page readonly
 clean
185B5CD0000
unkown image
page readonly
 clean
7FF568F2D000
unkown image
page readonly
 clean
185B5D00000
heap default
page read and write
 clean
185B5E8C000
unkown
page read and write
 clean
185B5F02000
unkown
page read and write
 clean
7FF5D8331000
unkown image
page readonly
 clean
7FF568E78000
unkown image
page readonly
 clean
185B5E13000
unkown
page read and write
 clean
715B07F000
unkown
page read and write
 clean
19378D02000
unkown
page read and write
 clean
185BB200000
unkown
page read and write
 clean
193789F0000
unkown image
page readonly
 clean
7DF5ED5C2000
unkown image
page readonly
 clean
185B6881000
unkown
page read and write
 clean
185B5E8E000
unkown
page read and write
 clean
7FF568E8F000
unkown image
page readonly
 clean
7FF569028000
unkown image
page readonly
 clean
715AC7B000
unkown
page read and write
 clean
185B6E70000
unkown image
page readonly
 clean
7DF57E160000
unkown image
page readonly
 clean
715AD7C000
unkown
page read and write
 clean
7FF5687AD000
unkown image
page readonly
 clean
7FF568F80000
unkown image
page readonly
 clean
7FF5D84CD000
unkown image
page readonly
 clean
185BB4E0000
unkown
page read and write
 clean
7FF5D82F3000
unkown image
page readonly
 clean
7FF56900F000
unkown image
page readonly
 clean
7DF5ED5C2000
unkown image
page readonly
 clean
7FF568E14000
unkown image
page readonly
 clean
185BB661000
unkown
page read and write
 clean
7FF568BF5000
unkown image
page readonly
 clean
185B5CB0000
unkown image
page readonly
 clean
185BB4C0000
unkown
page read and write
 clean
193791A0000
unkown
page read and write
 clean
7DF5ED5C0000
unkown image
page readonly
 clean
185B5E78000
unkown
page read and write
 clean
185BB390000
unkown
page read and write
 clean
2FB91FF000
unkown
page read and write
 clean
7FF568E31000
unkown image
page readonly
 clean
185B5E56000
unkown
page read and write
 clean
7FF569059000
unkown image
page readonly
 clean
185BB63C000
unkown
page read and write
 clean
7FF5D844A000
unkown image
page readonly
 clean
7FF5D83A3000
unkown image
page readonly
 clean
7FF5D834B000
unkown image
page readonly
 clean
7FF5D84C9000
unkown image
page readonly
 clean
7FF568DD1000
unkown image
page readonly
 clean
19378C8F000
unkown
page read and write
 clean
2FB92FB000
unkown
page read and write
 clean
185BB683000
unkown
page read and write
 clean
7FF568DDF000
unkown image
page readonly
 clean
7FF5690C4000
unkown image
page readonly
 clean
185B6600000
unkown
page read and write
 clean
185BB4B0000
unkown
page read and write
 clean
185B6460000
unkown
page read and write
 clean
185BB250000
unkown
page read and write
 clean
185B6718000
unkown
page read and write
 clean
193789D0000
unkown image
page read and write
 clean
7FF5D84A4000
unkown image
page readonly
 clean
7FF568DB8000
unkown image
page readonly
 clean
7FF5D844E000
unkown image
page readonly
 clean
185BB60E000
unkown
page read and write
 clean
7FF568CB9000
unkown image
page readonly
 clean
7DF5ED5D0000
unkown image
page readonly
 clean
185BB1E0000
unkown
page read and write
 clean
185B6D40000
unkown
page read and write
 clean
7FF568CC4000
unkown image
page readonly
 clean
2FB887B000
unkown
page read and write
 clean
2FB917F000
unkown
page read and write
 clean
185B6570000
unkown image
page read and write
 clean
185BB360000
unkown
page read and write
 clean
7FF568CC7000
unkown image
page readonly
 clean
185B5EFC000
unkown
page read and write
 clean
7FF56892E000
unkown image
page readonly
 clean
7DF57E150000
unkown image
page readonly
 clean
7FF5D8016000
unkown image
page readonly
 clean
7FF568DEA000
unkown image
page readonly
 clean
185BB62B000
unkown
page read and write
 clean
7FF568FCA000
unkown image
page readonly
 clean
185B5E3D000
unkown
page read and write
 clean
7DF5ED5D0000
unkown image
page readonly
 clean
7FF56900C000
unkown image
page readonly
 clean
715AF7F000
unkown
page read and write
 clean
7DF57E162000
unkown image
page readonly
 clean
185B6602000
unkown
page read and write
 clean
7FF5D834E000
unkown image
page readonly
 clean
7FF5687A3000
unkown image
page readonly
 clean
7FF56904E000
unkown image
page readonly
 clean
7FF5D8494000
unkown image
page readonly
 clean
7FF5D84C6000
unkown image
page readonly
 clean
19378C49000
unkown
page read and write
 clean
715A73B000
unkown
page read and write
 clean
2FB8A77000
unkown
page read and write
 clean
185B6380000
unkown image
page readonly
 clean
19378C28000
unkown
page read and write
 clean
185B5EA0000
unkown
page read and write
 clean
185BB5B0000
unkown
page read and write
 clean
2FB8EFB000
unkown
page read and write
 clean
185BB430000
unkown
page read and write
 clean
185B5E00000
unkown
page read and write
 clean
7FF568F26000
unkown image
page readonly
 clean
7FF568C36000
unkown image
page readonly
 clean
7FF5690D1000
unkown image
page readonly
 clean
There are 267 hidden memdumps, click here to show them.

DOM / HTML

URL
Malicious
https://keegagrves.buzz/ramtool/adobe2020/
 malicious
https://viewstripo.email/template/d344d8c0-9b03-4cc6-b3e0-89285eb82082
 clean
https://secure.esputnik.com/AbHhtjY7oWs
 clean
https://stripo.email/?utm_source=user-template
 clean
https://stripo.email/blog/
 clean
https://stripo.email/
 clean
https://stripo.email/errorpage/
 clean
https://stripo.email/plugin/
 clean
https://stripo.email/en/demo/?guid=a72722c9-5e68-49e7-a554-f0863d8b75c4&project=109
 clean
https://www.youtube.com/embed/?listType=playlist&list=PLgXmUKpFR5RgMlIiEPA_UgU_ho-rem35R&enablejsapi=1&origin=https%3A%2F%2Fstripo.email&widgetid=1
 clean
https://stripo.email/en/demo/?guid=a72722c9-5e68-49e7-a554-f0863d8b75c4&project=109
 clean
There are 1 hidden doms, click here to show them.