IOC Report

loading gif

Files

File Path
Type
Category
Malicious
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\2947c590-3aaf-477f-b07c-fc90a3b09a17.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\3e9fd55b-0e88-46cb-bd2e-cc8b2b43c1e6.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\5e61c6f9-8444-4519-ae5f-36b0671849f0.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\5f2b645d-f680-4aee-bd68-d6286623b79a.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\6034979f-4a68-4b48-b9a7-c12a522533f9.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\67f56522-3846-43e7-846b-e843a542004c.tmp
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\974914be-e9ec-46f6-bef2-4743445e5a11.tmp
SysEx File -
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\9955a8c1-aa09-47b1-9277-0abb3ddec6e4.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1184e02f-f0e7-4998-9b36-f545866256e2.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\149c48ce-9cd1-49d8-a93f-0741bf04232c.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\188ac110-956b-4790-b895-cfe1b3813cf5.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1b932af3-9e3e-444b-9d7e-b4ccf4e42a3b.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1fc1b763-d1fa-447c-81bd-f8efcdd07495.tmp
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\22612e26-6f41-4bbe-93e3-72749262755a.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\29242b6e-453c-4aa2-b7cf-140a3b04b888.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5e67cf11-bc85-4683-9562-1b7feab317f1.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\654401c2-919c-4b10-b4db-b001b9d04565.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\68398b04-a983-4491-b8a2-66c4ba89d72a.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\68de40fd-022b-4c86-aea6-d2d1b6b01b27.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6d1893d9-8624-4139-8c58-fbd000fb20ea.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8cd9ab38-c02f-4b24-8d24-e09fc40058f4.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8f6e903c-5fb6-4b58-abe0-03a5bc7fb211.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9d569600-2deb-493b-bbf8-d35cabee1a2a.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old. (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old.. (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.olde" (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session (copy)
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabs\ (copy)
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.oldMP (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent Statemp (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.oldo, (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences.l (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences@ (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesA (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences\ (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences. (copy)
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent State.. (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\ebb50bf9-872f-47bc-8467-bc2818962431.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent State.. (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old` (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.old/l (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\ed144265-61a4-412d-9357-f59857f6a225.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old. (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.olds (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\TransportSecurityt: (copy)
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a8ad58fb-82f5-4b97-b0f5-ede76d112206.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\af2b993e-80c7-46f4-be17-e036ce971607.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c2875657-77be-4806-b744-f6f216e6fbfd.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d9969a7f-ddf8-4061-b472-294c9540bd2f.tmp
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT. (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
MPEG-4 LOAS
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f4dbef13-6ac1-43f8-9e3e-d242b68e5f4c.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.oldd (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StateMP (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache.. (copy)
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache.H (copy)
SysEx File -
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info CacheMP (copy)
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\27\scoped_dir3232_1330010846\Ruleset Data
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\ab04e6a0-a1f1-41f8-98c7-23bf9e97cd95.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\ee57cb15-a876-4e81-a84b-4d044247a760.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\eed30b55-1323-455b-8a38-8af1efafa864.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\f9fff5c5-990e-4572-9abe-be7c878bd604.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\fe032178-ac06-465c-990a-5ac46edcf1f6.tmp
data
dropped
 clean
C:\Users\user\AppData\Local\Temp\0f6c24d4-9d4e-4af6-9e5b-4c9d0f10f499.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1092924051\Filtering Rules
data
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1092924051\LICENSE.txt
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1092924051\_metadata\verified_contents.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1092924051\manifest.fingerprint
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1092924051\manifest.json
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1189969895\LICENSE
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1189969895\_metadata\verified_contents.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1189969895\crl-set
data
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1189969895\manifest.fingerprint
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1189969895\manifest.json
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1552614337\_metadata\verified_contents.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1552614337\_platform_specific\x86_64\pnacl_public_pnacl_json
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1552614337\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1552614337\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1552614337\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1552614337\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=7511538a3a6a0b862c772eace49075ed1bbe2377, stripped
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1552614337\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a
current ar archive
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1552614337\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a
current ar archive
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1552614337\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a
current ar archive
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1552614337\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a
current ar archive
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1552614337\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=309d6d3d463e6b1b0690f39eb226b1e4c469b2ce, stripped
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1552614337\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_sz_nexe
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=4b15de4ab227d5e46213978b8518d53c53ce1db9, stripped
dropped
 clean
C:\Users\user\AppData\Local\Temp\3232_1552614337\manifest.fingerprint
ASCII text, with no line terminators
modified
 clean
C:\Users\user\AppData\Local\Temp\3232_1552614337\manifest.json
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Temp\8674bf97-c09f-447c-8c5c-705f07dc0d27.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Temp\ce017151-2dda-4553-bd95-b9e752fbc62b.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\f0966361-8f71-4d60-9a28-ec81f583b356.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\en\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\en_GB\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\es_419\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\fil\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\id\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\nl\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\pt_BR\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\pt_PT\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\zh_CN\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\_metadata\verified_contents.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\craw_background.js
ASCII text, with very long lines
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\craw_window.js
ASCII text, with very long lines
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\css\craw_window.css
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\html\craw_window.html
HTML document, ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\images\flapper.gif
GIF image data, version 89a, 30 x 30
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\images\icon_128.png
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\images\icon_16.png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\images\topbar_floating_button.png
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\images\topbar_floating_button_close.png
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\images\topbar_floating_button_hover.png
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\images\topbar_floating_button_maximize.png
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\images\topbar_floating_button_pressed.png
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\CRX_INSTALL\manifest.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1140446817\ce017151-2dda-4553-bd95-b9e752fbc62b.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\8674bf97-c09f-447c-8c5c-705f07dc0d27.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\am\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\ar\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\bn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\en\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\fa\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\fil\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\gu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\id\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\iw\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\kn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\ml\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\mr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\ms\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\nl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\pt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\sw\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\ta\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\te\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\zh\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\_metadata\verified_contents.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\angular.js
ASCII text, with very long lines
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\background_script.js
ASCII text, with very long lines
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\cast_sender.js
ASCII text, with very long lines
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\common.js
ASCII text, with very long lines
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\feedback.css
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\feedback.html
HTML document, ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\feedback_script.js
ASCII text, with very long lines
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\manifest.json
ASCII text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\material_css_min.css
ASCII text, with very long lines
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\mirroring_cast_streaming.js
ASCII text, with very long lines
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\mirroring_common.js
ASCII text, with very long lines
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\mirroring_hangouts.js
ASCII text, with very long lines
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3232_1714657335\CRX_INSTALL\mirroring_webrtc.js
ASCII text, with very long lines
dropped
 clean
There are 269 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "https://sites.google.com/view/greenberg-ramon-alonso-urbano/home
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1532,8088689805176024612,11020352485293425692,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1928 /prefetch:8
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1532,8088689805176024612,11020352485293425692,131072 --lang=en-US --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=4904 /prefetch:8
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1532,8088689805176024612,11020352485293425692,131072 --lang=en-US --service-sandbox-type=video_capture --enable-audio-service-sandbox --mojo-platform-channel-handle=4892 /prefetch:8
clean

URLs

Name
IP
Malicious
https://sites.google.com/view/greenberg-ramon-alonso-urbano/home
malicious
https://aliyahaliyahs-amyloses-knackwursts.s3.us-west-002.backblazeb2.com/index.html
206.190.215.254
 malicious
https://aliyahaliyahs-amyloses-knackwursts.s3.us-west-002.backblazeb2.com/index.htmlCache-Control:
unknown
 malicious
https://csp.withgoogle.com/csp/report-to/encsid_AXrpQdfshzicv7_VskvwG2bjOovrglCIO4nYwHSdXf_gRroAlOw
unknown
 clean
https://policies.google.com
unknown
 clean
https://www.youtube-nocookie.com/s/player/8eb5bf0c/www-embed-player.vflset/www-embed-player.js
unknown
 clean
https://lh5.googleusercontent.com/psRgWXnZTmhW9E7AVDP3VkPMAnJXhhbS3pdXLLpZndwTn8Tolu3eZlxTjziM3BVemG
unknown
 clean
https://stats.g.doubleclick.net
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/faqZ
unknown
 clean
https://www.youtube-nocookie.com/s/player/8eb5bf0c/fetch-polyfill.vflset/fetch-polyfill.js
unknown
 clean
https://www.youtube-nocookie.com/generate_204?w-wMwQ
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/team#h.mc9c3iu9koq0
clean
https://easylist.to/)
unknown
 clean
https://csp.withgoogle.com/csp/report-to/apps-sites
unknown
 clean
https://csp.withgoogle.com/csp/report-to/apps-themes
unknown
 clean
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
unknown
 clean
https://policies.google.com/technologies/cookies
172.217.18.110
 clean
https://yt3.ggpht.com
unknown
 clean
https://preprod-hangouts-googleapis.sandbox.google.com
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/history#h.a887fllea086)Greenberg
unknown
 clean
https://www.google.com
unknown
 clean
https://csp.withgoogle.com/csp/report-to/encsid_AXrpQdcxyaoTJMYdhC5b1IVX_h4UhkFjYl5miMVZgqtCo-gS
unknown
 clean
https://www.youtube-nocookie.com/s/player/8eb5bf0c/player_ias.vflset/en_US/base.js
unknown
 clean
https://www.youtube-nocookie.com/s/player/8eb5bf0c/player_ias.vflset/en_US/embed.js
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/history#h.wz7mar23iqyu
unknown
 clean
https://hangouts.google.com/hangouts/_/logpref
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/faqu
unknown
 clean
https://policies.google.com/_/IdentityPoliciesUi/manifest.json
unknown
 clean
https://lh5.googleusercontent.com/YyCnndu4qV2D9cKfELPcky4GZPXiBI1N80uV4xL6beLRKC_5hgiv8yvmjbrG--n6Xx6nx2AG-WlMC4nXHH8QM-fQS7iyXEwNaa8UXOZoT9C6vY3BBxJDbB6kp5BYxxIcQw=w1280
142.250.185.225
 clean
https://i.ytimg.com/vi_webp/TBR-xtJVq7E/sddefault.webpj1
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/home2
unknown
 clean
https://lh5.googleusercontent.com/Z_7UHB9pK7hYkmoZO7HMOP_arIZYyi-zPcKD_7ij49f5QuoYj4UlT9U-yky8vBg4kO
unknown
 clean
https://www.youtube-nocookie.com/s/player/8eb5bf0c/player_ias.vflset/en_US/remote.js
unknown
 clean
https://yt3.ggpht.com/ytc/AKedOLQhCqLTkEGQeSzNuaSndU18yVP8hqtaW-zJ4-ylRlw=s68-c-k-c0x00ffffff-no-rj
142.250.186.97
 clean
https://creativecommons.org/publicdomain/zero/1.0/.
unknown
 clean
https://lh6.googleusercontent.com/DKGMAakCDInSD5m0XDWz3B08SHp3WYCQyvX8-1B_EJTKEwHv10MIzkv4_TGE46SlJCICp30CZ0E2GRz5AQmCM8Yc1Cywqre5CgYXE1MGp22xC0lZoHYGIimfpg0a1XFXEw=w1280
142.250.185.225
 clean
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
unknown
 clean
https://www.google.com/images/branding/googlelogo/1x/googlelogo_color_74x24dp.png
unknown
 clean
https://github.com/madler/zlib/blob/master/zlib.h
unknown
 clean
https://lh6.googleusercontent.com/VhsBRL-0xk3iyBgeyCTnNT6t7h9NmfDXgEduISKkAC1N-W2WLfB75-9eLph0Jybh73YuatZ1m4FpwGsq5C2sGHc_z2TLvlj40ZJK2XU-ecoLkROQOCVL2pAisQNMKes5SA=w1280
142.250.185.225
 clean
https://lh3.googleusercontent.com/_8UJS2ieeqKvOtI79D8dcdWLSCe55nQLsuG3iai1SusUET5edLpPmFUnQMVCZY8ApS
unknown
 clean
https://lh3.googleusercontent.com/GAyWSyj34xvzFZZYYpwdjyUYX38ssxdrSeCvk972j1eg8hV_oyHoHHvLFwDzkgj8BfykQOBzxj4a93aHnExN-kk=w16383
142.250.185.225
 clean
https://apis.google.com/_/scs/apps-static/_/js/k=oz.gapi.en_US.wk7zEZseXNs.O/m=client/rt=j/sv=1/d=1/
unknown
 clean
https://dns.google
unknown
 clean
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
unknown
 clean
https://support.google.com/chromecast/troubleshooter/2995236
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/history#h.wz7mar23iqyu
clean
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
unknown
 clean
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
172.217.18.110
 clean
https://payments.google.com/payments/v4/js/integrator.js
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/faq%Greenberg
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/team#h.a4rji4pxv1xr&Greenberg
unknown
 clean
https://www.google.com/images/x2.gif
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/history#h.wz7mar23iqyu)Greenberg
unknown
 clean
https://www.google.com/images/dot2.gif
unknown
 clean
https://play.google.com/log?format=json&hasfast=true
142.250.185.78
 clean
https://csp.withgoogle.com/csp/report-to/encsid_AXrpQdfshzicv7_VskvwG2bjOovrglCIO4nYwHSdXf_gRroAlOwy
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/team#h.a4rji4pxv1xrl.Y
unknown
 clean
https://ajax.aspnetcdn.com/
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/faq;
unknown
 clean
https://apis.google.com/
unknown
 clean
http://tools.ietf.org/html/rfc1950
unknown
 clean
https://www.google.com/js/th/xM3nE4Rqf8Lmby-AYZk2Alo28IFgPHmQ9Cgz8Y4hA8M.js
unknown
 clean
https://i.imgur.com/qLcPmYb.jpg9Yr2#
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/home
142.250.184.206
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/team#h.mc9c3iu9koq0
unknown
 clean
https://sites.google.com/
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/team&Greenberg
unknown
 clean
https://www.google.com/
unknown
 clean
https://apis.google.com/js/client.js?onload=gapiLoaded
142.250.184.238
 clean
https://lh6.googleusercontent.com/VqulTL2PkGd_PYN0YRTxtXXDXFk8xcvmfWlYtSDN9y0Cdan3iRrwCdxEA3l7cmSl4Go6px8LFgaxSVI6rtbgzsWpakQvkWJdIQDQPqdrYlkJXUX-SAFu6KO5DxwABnrtiQ=w1280
142.250.185.225
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/team#h.mc9c3iu9koq0&Greenberg
unknown
 clean
https://clients6.google.com
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/faqB
unknown
 clean
https://www.google.com/url?q=https%3A%2F%2Faliyahaliyahs-amyloses-knackwursts.s3.us-west-002.backbla
unknown
 clean
https://csp.withgoogle.com/csp/report-to/static-on-bigtable
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/history)Greenberg
unknown
 clean
https://csp.withgoogle.com/csp/report-to/botguard-scs
unknown
 clean
https://www.google.com/images/cleardot.gif
unknown
 clean
https://www.google.com/policies/technologies/cookies/
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/history#h.a887fllea086
unknown
 clean
https://apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.hvE_rrhCzPE.O/m=gapi_iframes
unknown
 clean
https://play.google.com
unknown
 clean
https://policies.google.com/technologies/cookies2How
unknown
 clean
https://csp.withgoogle.com/csp/apps-themesCross-Origin-Resource-Policy:
unknown
 clean
https://policies.google.com/technologies/cookies
clean
https://www.google.com/log?format=json&hasfast=true
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/history#h.wz7mar23iqyub
unknown
 clean
https://csp.withgoogle.com/csp/report-to/youtube
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/faq
unknown
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/team#h.a4rji4pxv1xr
clean
https://lh6.googleusercontent.com/VqulTL2PkGd_PYN0YRTxtXXDXFk8xcvmfWlYtSDN9y0Cdan3iRrwCdxEA3l7cmSl4G
unknown
 clean
https://lh4.googleusercontent.com/su5gQTMChl_3cMVQwycJjxz2LLoqqlDzVzIw3fJ4_6CDwzy4i3Ctu2jDniWUXJvK0B
unknown
 clean
https://sandbox.google.com/payments/v4/js/integrator.js
unknown
 clean
https://www.youtube-nocookie.com/generate_204?AfzKSwQ
unknown
 clean
https://lh3.googleusercontent.com/FKx5L2soM9KjyYuNE3Oc_OqckaR8EtzNCLl4KmfOaGp7Z99j0pSaezKLgucDwZXBg3
unknown
 clean
https://www.youtube-nocookie.com
unknown
 clean
https://lh5.googleusercontent.com/YyCnndu4qV2D9cKfELPcky4GZPXiBI1N80uV4xL6beLRKC_5hgiv8yvmjbrG--n6Xx
unknown
 clean
https://lh5.googleusercontent.com/t8ugzkrMuS7OCmMEqKSIM-PyDdfa5-GyY04bGMM70VRx16xIXH95-xanz5CxKaGERx
unknown
 clean
https://accounts.google.com/MergeSession
unknown
 clean
https://creativecommons.org/compatiblelicenses
unknown
 clean
There are 90 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
gstaticadssl.l.google.com
142.250.184.195
 clean
accounts.google.com
172.217.18.109
 clean
plus.l.google.com
142.250.184.238
 clean
www-google-analytics.l.google.com
142.250.186.110
 clean
stats.l.doubleclick.net
74.125.140.154
 clean
i.ytimg.com
142.250.185.150
 clean
sites.google.com
142.250.184.206
 clean
policies.google.com
172.217.18.110
 clean
youtube-ui.l.google.com
142.250.185.78
 clean
play.google.com
142.250.185.78
 clean
photos-ugc.l.googleusercontent.com
142.250.186.97
 clean
www.google.com
142.250.185.132
 clean
clients.l.google.com
172.217.18.110
 clean
aliyahaliyahs-amyloses-knackwursts.s3.us-west-002.backblazeb2.com
206.190.215.254
 clean
googlehosted.l.googleusercontent.com
142.250.185.225
 clean
ipv4.imgur.map.fastly.net
151.101.112.193
 clean
yt3.ggpht.com
unknown
 clean
lh6.googleusercontent.com
unknown
 clean
lh3.googleusercontent.com
unknown
 clean
ajax.aspnetcdn.com
unknown
 clean
stats.g.doubleclick.net
unknown
 clean
clients2.googleusercontent.com
unknown
 clean
lh5.googleusercontent.com
unknown
 clean
clients2.google.com
unknown
 clean
i.imgur.com
unknown
 clean
apis.google.com
unknown
 clean
www.youtube-nocookie.com
unknown
 clean
lh4.googleusercontent.com
unknown
 clean
There are 18 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
142.250.185.78
youtube-ui.l.google.com
United States
clean
192.168.2.1
unknown
unknown
clean
142.250.185.225
googlehosted.l.googleusercontent.com
United States
clean
142.250.186.110
www-google-analytics.l.google.com
United States
clean
142.250.184.206
sites.google.com
United States
clean
151.101.112.193
ipv4.imgur.map.fastly.net
United States
clean
172.217.18.110
policies.google.com
United States
clean
142.250.186.97
photos-ugc.l.googleusercontent.com
United States
clean
206.190.215.254
aliyahaliyahs-amyloses-knackwursts.s3.us-west-002.backblazeb2.com
United States
clean
142.250.184.195
gstaticadssl.l.google.com
United States
clean
142.250.185.132
www.google.com
United States
clean
74.125.140.154
stats.l.doubleclick.net
United States
clean
239.255.255.250
unknown
Reserved
clean
172.217.18.109
accounts.google.com
United States
clean
142.250.185.150
i.ytimg.com
United States
clean
142.250.184.238
plus.l.google.com
United States
clean
192.168.2.255
unknown
unknown
clean
127.0.0.1
unknown
unknown
clean
There are 8 hidden IPs, click here to show them.

Registry

Path
Value
Malicious
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
S-1-5-21-3853321935-2125563209-4053062332-1002
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
ahfgeienlihckogmohjhadlkjgocpleb
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
gdaefkejpgkiemlaofpalmlakkmbjdnl
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
gfdkimpbcpahaombhbimeihdjnejgicl
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
kmendfapggjehodndflmmgagdbamhnfd
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
mfehgcgbbipciphmccgaenjidiccnmng
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
mhjfbmdgcfjbbpaeojofohoefgiehjai
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
neajdppkdcdipfabeoofebfddakdcjhd
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nkeimhogjdpnpccoofpliimaahmaaome
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nmmhkkegccagdldgiimedpiccmgmieda
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
pkedcjkdefgpdelpbcmbmeomcjbeemfm
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
prefs.preference_reset_time
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
gfdkimpbcpahaombhbimeihdjnejgicl
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nmmhkkegccagdldgiimedpiccmgmieda
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nmmhkkegccagdldgiimedpiccmgmieda
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
pkedcjkdefgpdelpbcmbmeomcjbeemfm
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
software_reporter.reporting
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
module_blacklist_cache_md5_digest
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
media.storage_id_salt
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
google.services.last_account_id
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
google.services.account_id
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
software_reporter.prompt_seed
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.last_triggered_for_homepage
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
default_search_provider_data.template_url_data
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
safebrowsing.incidents_sent
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
pinned_tabs
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
search_provider_overrides
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.last_triggered_for_default_search
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
prefs.preference_reset_time
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
google.services.last_username
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
session.startup_urls
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
session.restore_on_startup
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
software_reporter.prompt_version
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.last_triggered_for_startup_urls
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.prompt_wave
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
homepage
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
homepage_is_newtabpage
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
browser.show_home_button
 clean
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
user_experience_metrics.stability.exited_cleanly
 clean
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
lastrun
 clean
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\3F728A35DE52B2C8994A4FB101A03B95E87B06C8
Blob
 clean
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\3F728A35DE52B2C8994A4FB101A03B95E87B06C8
Blob
 clean
HKEY_CURRENT_USER\Software\Microsoft\ActiveMovie\devenum 64-bit
Version
 clean
There are 37 hidden registries, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
7FF5CAAB3000
unkown image
page readonly
 clean
24F61F20000
unkown
page read and write
 clean
198CD0E0000
unkown image
page readonly
 clean
7FF53C9C4000
unkown image
page readonly
 clean
7FF53CB43000
unkown image
page readonly
 clean
24F621C0000
unkown
page read and write
 clean
7FF53CBE4000
unkown image
page readonly
 clean
7DF504390000
unkown image
page readonly
 clean
7FF5CB10A000
unkown image
page readonly
 clean
7FF4EEA3F000
unkown image
page readonly
 clean
244B31A0000
unkown
page read and write
 clean
7FF4EE98C000
unkown image
page readonly
 clean
24F61F2A000
unkown
page read and write
 clean
3A328FE000
stack
page read and write
 clean
23C65502000
unkown
page read and write
 clean
18105C30000
unkown image
page read and write
 clean
24F5C9A0000
unkown image
page readonly
 clean
23C65402000
unkown
page read and write
 clean
7FF53C37B000
unkown image
page readonly
 clean
7FF53CD9A000
unkown image
page readonly
 clean
24F622F2000
unkown
page read and write
 clean
7DF504380000
unkown image
page readonly
 clean
26ED2113000
unkown
page read and write
 clean
24F622FF000
unkown
page read and write
 clean
244B3302000
unkown
page read and write
 clean
7FF5E8BC4000
unkown image
page readonly
 clean
7FF5CB492000
unkown image
page readonly
 clean
26ED1FA0000
unkown image
page readonly
 clean
7FF5CB288000
unkown image
page readonly
 clean
24F5D1F0000
unkown
page read and write
 clean
7DF504372000
unkown image
page readonly
 clean
7DF552752000
unkown image
page readonly
 clean
7FF5E922D000
unkown image
page readonly
 clean
244B3200000
unkown
page read and write
 clean
244B325C000
unkown
page read and write
 clean
24F5CAB9000
unkown
page read and write
 clean
24F5DA20000
unkown image
page readonly
 clean
198CD0C0000
unkown image
page read and write
 clean
24F62060000
unkown
page read and write
 clean
7FF5CB276000
unkown image
page readonly
 clean
24F5D359000
unkown
page read and write
 clean
4E3287F000
stack
page read and write
 clean
7FF5B11E6000
unkown image
page readonly
 clean
7FF5CB58D000
unkown image
page readonly
 clean
24F62090000
unkown
page read and write
 clean
24F5CA3D000
unkown
page read and write
 clean
7FF53CD57000
unkown image
page readonly
 clean
198CD26F000
unkown
page read and write
 clean
18105E5C000
unkown
page read and write
 clean
7FF5CB342000
unkown image
page readonly
 clean
7FF53CE3E000
unkown image
page readonly
 clean
24F5D401000
unkown
page read and write
 clean
7FF5E90CA000
unkown image
page readonly
 clean
AFA0A7B000
stack
page read and write
 clean
18105C80000
unkown image
page readonly
 clean
18105E13000
unkown
page read and write
 clean
3A326FD000
stack
page read and write
 clean
24F5C850000
unkown image
page read and write
 clean
7FF5CB4DD000
unkown image
page readonly
 clean
91B4D7F000
stack
page read and write
 clean
7FF5B13F0000
unkown image
page readonly
 clean
3A31ECC000
unkown
page read and write
 clean
18105C50000
unkown image
page readonly
 clean
7DF450610000
unkown image
page readonly
 clean
7FF50E938000
unkown image
page readonly
 clean
7DF5FEC72000
unkown image
page readonly
 clean
24F622F3000
unkown
page read and write
 clean
7FF5B1437000
unkown image
page readonly
 clean
4E32E7D000
stack
page read and write
 clean
7FF4EE998000
unkown image
page readonly
 clean
7FF5B152F000
unkown image
page readonly
 clean
23C65468000
unkown
page read and write
 clean
244B322A000
unkown
page read and write
 clean
23C65428000
unkown
page read and write
 clean
26ED20BB000
unkown
page read and write
 clean
24F5D800000
unkown
page read and write
 clean
24F5D318000
unkown
page read and write
 clean
198CD275000
unkown
page read and write
 clean
18106602000
unkown
page read and write
 clean
4E324EB000
unkown
page read and write
 clean
24F62306000
unkown
page read and write
 clean
7FF5B1413000
unkown image
page readonly
 clean
7FF53CD85000
unkown image
page readonly
 clean
7FF53CB0F000
unkown image
page readonly
 clean
24F62212000
unkown
page read and write
 clean
7FF5E937F000
unkown image
page readonly
 clean
7DF5E0EA0000
unkown image
page readonly
 clean
24F62420000
unkown
page read and write
 clean
7FF5CB576000
unkown image
page readonly
 clean
7FF50E862000
unkown image
page readonly
 clean
24F6230A000
unkown
page read and write
 clean
24F622F5000
unkown
page read and write
 clean
7DF5C6E32000
unkown image
page readonly
 clean
7FF5E9338000
unkown image
page readonly
 clean
7FF53CB71000
unkown image
page readonly
 clean
7FF5B143D000
unkown image
page readonly
 clean
7DF5E0EA2000
unkown image
page readonly
 clean
24F5D202000
unkown
page read and write
 clean
24F5D358000
unkown
page read and write
 clean
18105E00000
unkown
page read and write
 clean
244B3020000
unkown image
page readonly
 clean
18105C40000
heap private
page read and write
 clean
7FF5E921D000
unkown image
page readonly
 clean
7FF50E95D000
unkown image
page readonly
 clean
24F61DA0000
unkown
page read and write
 clean
7FF53C981000
unkown image
page readonly
 clean
7FF50E964000
unkown image
page readonly
 clean
26ED2900000
unkown
page read and write
 clean
24F5CAAB000
unkown
page read and write
 clean
24F62040000
unkown
page read and write
 clean
7FF5B1469000
unkown image
page readonly
 clean
7FF4EE9C3000
unkown image
page readonly
 clean
23C65230000
heap private
page read and write
 clean
7FF5B152F000
unkown image
page readonly
 clean
7FF5B14EF000
unkown image
page readonly
 clean
26ED2000000
unkown
page read and write
 clean
7FF50E888000
unkown image
page readonly
 clean
7FF50E8E5000
unkown image
page readonly
 clean
7DF524270000
unkown image
page readonly
 clean
18105E73000
unkown
page read and write
 clean
7DF5E0EC0000
unkown image
page readonly
 clean
7FF53CD93000
unkown image
page readonly
 clean
7FF53CE4F000
unkown image
page readonly
 clean
24F5CA8E000
unkown
page read and write
 clean
24F5C8C0000
heap default
page read and write
 clean
7DF524280000
unkown image
page readonly
 clean
18105E02000
unkown
page read and write
 clean
198CD246000
unkown
page read and write
 clean
198CD302000
unkown
page read and write
 clean
18106200000
unkown image
page readonly
 clean
7FF5CB4BC000
unkown image
page readonly
 clean
24F6221D000
unkown
page read and write
 clean
23C65513000
unkown
page read and write
 clean
7FF53CE1E000
unkown image
page readonly
 clean
7DF5E0EC0000
unkown image
page readonly
 clean
7FF4EE9E5000
unkown image
page readonly
 clean
24F63010000
unkown
page read and write
 clean
7DF5FEC82000
unkown image
page readonly
 clean
7FF50E97F000
unkown image
page readonly
 clean
24F61F44000
unkown
page read and write
 clean
7DF552752000
unkown image
page readonly
 clean
7FF50E88C000
unkown image
page readonly
 clean
64A647A000
stack
page read and write
 clean
24F61F60000
unkown
page read and write
 clean
3A32AFF000
stack
page read and write
 clean
26ED2802000
unkown
page read and write
 clean
23C65220000
unkown image
page read and write
 clean
23C65440000
unkown
page read and write
 clean
7FF5E9287000
unkown image
page readonly
 clean
24F5DA10000
unkown image
page readonly
 clean
18106380000
unkown image
page readonly
 clean
24F61F40000
unkown
page read and write
 clean
7FF50E94B000
unkown image
page readonly
 clean
24F62080000
unkown
page read and write
 clean
198CD22D000
unkown
page read and write
 clean
7DF5FEC82000
unkown image
page readonly
 clean
7FF4EEA4B000
unkown image
page readonly
 clean
7FF5CB594000
unkown image
page readonly
 clean
7FF53CE4B000
unkown image
page readonly
 clean
7DF504372000
unkown image
page readonly
 clean
198CD23A000
unkown
page read and write
 clean
198CD850000
unkown image
page readonly
 clean
198CD260000
unkown
page read and write
 clean
7DF552760000
unkown image
page readonly
 clean
24F5CA13000
unkown
page read and write
 clean
7FF5CB4A3000
unkown image
page readonly
 clean
7DF504382000
unkown image
page readonly
 clean
7DF524290000
unkown image
page readonly
 clean
23C65370000
unkown image
page readonly
 clean
7DF552750000
unkown image
page readonly
 clean
23C65464000
unkown
page read and write
 clean
7FF5B150D000
unkown image
page readonly
 clean
7FF5E935D000
unkown image
page readonly
 clean
7FF53CE3B000
unkown image
page readonly
 clean
24F6230D000
unkown
page read and write
 clean
7FF5CB4B7000
unkown image
page readonly
 clean
24F5CA9A000
unkown
page read and write
 clean
7FF50E71D000
unkown image
page readonly
 clean
7DF552742000
unkown image
page readonly
 clean
7FF50E898000
unkown image
page readonly
 clean
AFA016B000
unkown
page read and write
 clean
7FF53CD24000
unkown image
page readonly
 clean
7DF5C6E22000
unkown image
page readonly
 clean
7FF50E73C000
unkown image
page readonly
 clean
244B3400000
unkown image
page readonly
 clean
23C65479000
unkown
page read and write
 clean
24F6230A000
unkown
page read and write
 clean
198CD249000
unkown
page read and write
 clean
4E3297C000
stack
page read and write
 clean
198CD213000
unkown
page read and write
 clean
24F61FF0000
unkown
page read and write
 clean
7FF5E92AD000
unkown image
page readonly
 clean
198CD100000
unkown image
page readonly
 clean
244B3050000
unkown image
page readonly
 clean
23C65290000
heap default
page read and write
 clean
198CD242000
unkown
page read and write
 clean
7FF5B1228000
unkown image
page readonly
 clean
7FF53CD3C000
unkown image
page readonly
 clean
26ED2042000
unkown
page read and write
 clean
198CD27E000
unkown
page read and write
 clean
24F61F26000
unkown
page read and write
 clean
7FF50E74F000
unkown image
page readonly
 clean
7FF53C35A000
unkown image
page readonly
 clean
24F5C8A0000
unkown image
page readonly
 clean
24F62080000
unkown
page read and write
 clean
7FF50E712000
unkown image
page readonly
 clean
24F62261000
unkown
page read and write
 clean
7FF5E933F000
unkown image
page readonly
 clean
7DF524282000
unkown image
page readonly
 clean
198CD231000
unkown
page read and write
 clean
24F5DA00000
unkown image
page readonly
 clean
24F61F20000
unkown
page read and write
 clean
24F621B0000
unkown
page read and write
 clean
24F61E20000
unkown
page read and write
 clean
24F62070000
unkown
page read and write
 clean
7DF5FEC80000
unkown image
page readonly
 clean
7FF5E926C000
unkown image
page readonly
 clean
7FF50E7FE000
unkown image
page readonly
 clean
7FF4EEA7B000
unkown image
page readonly
 clean
7FF5E936E000
unkown image
page readonly
 clean
7FF50E8B9000
unkown image
page readonly
 clean
244B3240000
unkown
page read and write
 clean
24F5D359000
unkown
page read and write
 clean
244B3600000
unkown image
page readonly
 clean
24F61F2E000
unkown
page read and write
 clean
7FF5B14FB000
unkown image
page readonly
 clean
23C65240000
unkown image
page readonly
 clean
24F61F20000
unkown
page read and write
 clean
7DF4DED70000
unkown image
page readonly
 clean
23C65990000
unkown image
page readonly
 clean
7FF5B1473000
unkown image
page readonly
 clean
7FF5E8EB1000
unkown image
page readonly
 clean
24F5CB13000
unkown
page read and write
 clean
7FF5CB10E000
unkown image
page readonly
 clean
24F62200000
unkown
page read and write
 clean
7FF4EE28F000
unkown image
page readonly
 clean
91B4A7E000
stack
page read and write
 clean
7FF50E67D000
unkown image
page readonly
 clean
244B3202000
unkown
page read and write
 clean
7DF5C6E40000
unkown image
page readonly
 clean
7DF504370000
unkown image
page readonly
 clean
198CD241000
unkown
page read and write
 clean
7FF5B1495000
unkown image
page readonly
 clean
7FF50E8AD000
unkown image
page readonly
 clean
24F6230A000
unkown
page read and write
 clean
26ED1E70000
unkown image
page readonly
 clean
7FF4EE977000
unkown image
page readonly
 clean
7FF53C9DF000
unkown image
page readonly
 clean
24F5DD90000
unkown
page read and write
 clean
198CD160000
unkown
page read and write
 clean
7FF53CCFD000
unkown image
page readonly
 clean
91B48FE000
stack
page read and write
 clean
7FF53CB41000
unkown image
page readonly
 clean
24F5D9F0000
unkown image
page readonly
 clean
7FF53CC87000
unkown image
page readonly
 clean
7FF53CD43000
unkown image
page readonly
 clean
3A325FE000
stack
page read and write
 clean
198CD247000
unkown
page read and write
 clean
18105C50000
unkown image
page readonly
 clean
7FF4EEA38000
unkown image
page readonly
 clean
7FF50E946000
unkown image
page readonly
 clean
198CD274000
unkown
page read and write
 clean
7FF50E97B000
unkown image
page readonly
 clean
26ED1E50000
unkown image
page read and write
 clean
4E32AFF000
stack
page read and write
 clean
7FF5CB4C8000
unkown image
page readonly
 clean
7DF552750000
unkown image
page readonly
 clean
24F5D318000
unkown
page read and write
 clean
7FF5E936B000
unkown image
page readonly
 clean
24F622F2000
unkown
page read and write
 clean
7DF5E0EB2000
unkown image
page readonly
 clean
198CD269000
unkown
page read and write
 clean
7FF4EEA64000
unkown image
page readonly
 clean
7FF53CE4F000
unkown image
page readonly
 clean
24F5D313000
unkown
page read and write
 clean
64A69FE000
stack
page read and write
 clean
7FF5B14F6000
unkown image
page readonly
 clean
CD3D97B000
stack
page read and write
 clean
7FF5CB34D000
unkown image
page readonly
 clean
7FF53CC1C000
unkown image
page readonly
 clean
7FF53C9CA000
unkown image
page readonly
 clean
24F62050000
unkown
page read and write
 clean
24F61F50000
unkown
page read and write
 clean
24F5CB02000
unkown
page read and write
 clean
7FF53C8FF000
unkown image
page readonly
 clean
AFA0D7F000
stack
page read and write
 clean
198CD25F000
unkown
page read and write
 clean
7DF5C6E20000
unkown image
page readonly
 clean
18105C70000
unkown image
page readonly
 clean
24F622ED000
unkown
page read and write
 clean
64A67FF000
stack
page read and write
 clean
7FF4EE9B5000
unkown image
page readonly
 clean
18105E5A000
unkown
page read and write
 clean
24F6230D000
unkown
page read and write
 clean
198CD24F000
unkown
page read and write
 clean
3A324FD000
stack
page read and write
 clean
7FF5CB56F000
unkown image
page readonly
 clean
7DF5FEC90000
unkown image
page readonly
 clean
7FF53CC03000
unkown image
page readonly
 clean
7FF5E9277000
unkown image
page readonly
 clean
3A329FF000
stack
page read and write
 clean
23C65390000
unkown
page read and write
 clean
18105E78000
unkown
page read and write
 clean
7FF5CB424000
unkown image
page readonly
 clean
7FF50E8B5000
unkown image
page readonly
 clean
24F5CA8A000
unkown
page read and write
 clean
7DF5C6E22000
unkown image
page readonly
 clean
7FF5CB515000
unkown image
page readonly
 clean
7FF53CB33000
unkown image
page readonly
 clean
24F5D8F0000
unkown
page read and write
 clean
24F5D700000
unkown
page read and write
 clean
7DF552740000
unkown image
page readonly
 clean
7DF5C6E30000
unkown image
page readonly
 clean
198CD24E000
unkown
page read and write
 clean
24F622AB000
unkown
page read and write
 clean
18105CA0000
heap default
page read and write
 clean
7FF53CBED000
unkown image
page readonly
 clean
7FF5CB568000
unkown image
page readonly
 clean
198CD6D0000
unkown image
page readonly
 clean
24F5C9D0000
unkown image
page read and write
 clean
AFA077F000
stack
page read and write
 clean
18105E62000
unkown
page read and write
 clean
7DF4FCB40000
unkown image
page readonly
 clean
23C65400000
unkown
page read and write
 clean
26ED1EC0000
heap default
page read and write
 clean
26ED2660000
unkown image
page write copy
 clean
7FF53CB48000
unkown image
page readonly
 clean
7FF5E934E000
unkown image
page readonly
 clean
7DF5C6E30000
unkown image
page readonly
 clean
7DF5FEC70000
unkown image
page readonly
 clean
7DF552760000
unkown image
page readonly
 clean
91B487E000
stack
page read and write
 clean
7DF5E0EB0000
unkown image
page readonly
 clean
24F61F25000
unkown
page read and write
 clean
24F62030000
unkown
page read and write
 clean
23C65800000
unkown image
page readonly
 clean
64A637A000
stack
page read and write
 clean
7FF53CB3C000
unkown image
page readonly
 clean
198CD24D000
unkown
page read and write
 clean
198CD264000
unkown
page read and write
 clean
24F62302000
unkown
page read and write
 clean
7FF53CC08000
unkown image
page readonly
 clean
91B4C7E000
stack
page read and write
 clean
24F6229F000
unkown
page read and write
 clean
24F61F2F000
unkown
page read and write
 clean
24F5DD71000
unkown
page read and write
 clean
64A667B000
stack
page read and write
 clean
7FF50E873000
unkown image
page readonly
 clean
7FF5CB42E000
unkown image
page readonly
 clean
24F61E00000
unkown
page read and write
 clean
7FF4EEA6E000
unkown image
page readonly
 clean
244B31A0000
unkown
page read and write
 clean
244B3780000
unkown image
page readonly
 clean
64A6A7E000
stack
page read and write
 clean
7FF50E687000
unkown image
page readonly
 clean
244B3070000
heap default
page read and write
 clean
7FF5B1465000
unkown image
page readonly
 clean
198CD229000
unkown
page read and write
 clean
244B3A02000
unkown
page read and write
 clean
7FF5E90F7000
unkown image
page readonly
 clean
AFA057C000
stack
page read and write
 clean
198CD26B000
unkown
page read and write
 clean
7FF53CD47000
unkown image
page readonly
 clean
7FF5CB57E000
unkown image
page readonly
 clean
23C65980000
unkown image
page readonly
 clean
7DF5C6E40000
unkown image
page readonly
 clean
7FF53CCC4000
unkown image
page readonly
 clean
198CD140000
unkown image
page readonly
 clean
198CD24B000
unkown
page read and write
 clean
24F5D300000
unkown
page read and write
 clean
244B3020000
unkown image
page readonly
 clean
23C65C02000
unkown
page read and write
 clean
7FF53CB3A000
unkown image
page readonly
 clean
7FF5E92C3000
unkown image
page readonly
 clean
7FF5B145D000
unkown image
page readonly
 clean
AFA0C7E000
stack
page read and write
 clean
18105DA0000
unkown
page read and write
 clean
CD3DC7E000
stack
page read and write
 clean
24F5CA78000
unkown
page read and write
 clean
24F63000000
unkown
page read and write
 clean
24F5D358000
unkown
page read and write
 clean
7FF5CB113000
unkown image
page readonly
 clean
7FF53CDB5000
unkown image
page readonly
 clean
7FF5E92B5000
unkown image
page readonly
 clean
24F5D318000
unkown
page read and write
 clean
7FF50E8C3000
unkown image
page readonly
 clean
7FF53CE4D000
unkown image
page readonly
 clean
24F61F41000
unkown
page read and write
 clean
7FF53C9D7000
unkown image
page readonly
 clean
24F62303000
unkown
page read and write
 clean
7FF4EEA50000
unkown image
page readonly
 clean
24F6223D000
unkown
page read and write
 clean
198CD266000
unkown
page read and write
 clean
26ED1EA0000
unkown image
page readonly
 clean
7FF53CD28000
unkown image
page readonly
 clean
26ED2932000
unkown
page read and write
 clean
24F5CC00000
unkown image
page readonly
 clean
7DF5FEC80000
unkown image
page readonly
 clean
26ED1E70000
unkown image
page readonly
 clean
18106000000
unkown image
page readonly
 clean
18105E29000
unkown
page read and write
 clean
24F5CA9C000
unkown
page read and write
 clean
7FF53C369000
unkown image
page readonly
 clean
7FF5CB4F3000
unkown image
page readonly
 clean
24F622E6000
unkown
page read and write
 clean
24F5D358000
unkown
page read and write
 clean
7FF53C956000
unkown image
page readonly
 clean
7FF5B1427000
unkown image
page readonly
 clean
24F622FF000
unkown
page read and write
 clean
244B3040000
unkown image
page readonly
 clean
24F5D318000
unkown
page read and write
 clean
7FF53CD89000
unkown image
page readonly
 clean
24F62080000
unkown
page read and write
 clean
198CD0D0000
heap private
page read and write
 clean
24F62302000
unkown
page read and write
 clean
AFA08FC000
stack
page read and write
 clean
24F5D318000
unkown
page read and write
 clean
24F62302000
unkown
page read and write
 clean
7FF50E746000
unkown image
page readonly
 clean
198CDA02000
unkown
page read and write
 clean
198CD27B000
unkown
page read and write
 clean
244B3010000
heap private
page read and write
 clean
24F5C890000
unkown image
page readonly
 clean
AFA09FC000
stack
page read and write
 clean
24F622FD000
unkown
page read and write
 clean
24F5CAFB000
unkown
page read and write
 clean
7FF5CB4FA000
unkown image
page readonly
 clean
7FF5B1500000
unkown image
page readonly
 clean
24F5D215000
unkown
page read and write
 clean
24F61DC0000
unkown
page read and write
 clean
3A327FF000
stack
page read and write
 clean
7FF50E97D000
unkown image
page readonly
 clean
7FF53C60B000
unkown image
page readonly
 clean
CD3D67B000
unkown
page read and write
 clean
7FF5E928C000
unkown image
page readonly
 clean
7FF53CD32000
unkown image
page readonly
 clean
7FF5CADF4000
unkown image
page readonly
 clean
7FF4EE9CA000
unkown image
page readonly
 clean
24F6224A000
unkown
page read and write
 clean
24F5CA88000
unkown
page read and write
 clean
7DF5C6E20000
unkown image
page readonly
 clean
26ED2102000
unkown
page read and write
 clean
7DF524270000
unkown image
page readonly
 clean
24F622F2000
unkown
page read and write
 clean
64A5DEC000
unkown
page read and write
 clean
26ED1E60000
heap private
page read and write
 clean
24F61D90000
unkown
page read and write
 clean
26ED2590000
unkown image
page readonly
 clean
7FF4EEA46000
unkown image
page readonly
 clean
7FF53CADA000
unkown image
page readonly
 clean
64A6B79000
stack
page read and write
 clean
24F6230D000
unkown
page read and write
 clean
7FF5E9346000
unkown image
page readonly
 clean
64A6C7E000
stack
page read and write
 clean
244B3170000
unkown
page read and write
 clean
64A677E000
stack
page read and write
 clean
7FF50E97F000
unkown image
page readonly
 clean
24F5CA29000
unkown
page read and write
 clean
198CD27D000
unkown
page read and write
 clean
24F622F2000
unkown
page read and write
 clean
24F61F60000
unkown
page read and write
 clean
198CD261000
unkown
page read and write
 clean
24F5D9E0000
unkown image
page readonly
 clean
4E32C7F000
stack
page read and write
 clean
198CD26D000
unkown
page read and write
 clean
18105F13000
unkown
page read and write
 clean
198CD200000
unkown
page read and write
 clean
7FF4EE81D000
unkown image
page readonly
 clean
244B3790000
unkown image
page readonly
 clean
24F5CA76000
unkown
page read and write
 clean
7DF5E0EA2000
unkown image
page readonly
 clean
64A66FF000
stack
page read and write
 clean
26ED2200000
unkown image
page readonly
 clean
4E32BFD000
stack
page read and write
 clean
24F5D200000
unkown
page read and write
 clean
198CD245000
unkown
page read and write
 clean
198CD240000
unkown
page read and write
 clean
7FF4EE9B9000
unkown image
page readonly
 clean
24F5D1F3000
unkown
page read and write
 clean
7FF5CB484000
unkown image
page readonly
 clean
18105F02000
unkown
page read and write
 clean
7FF5E92B9000
unkown image
page readonly
 clean
7FF5B147A000
unkown image
page readonly
 clean
26ED2400000
unkown image
page readonly
 clean
23C65240000
unkown image
page readonly
 clean
24F6230D000
unkown
page read and write
 clean
18105E6A000
unkown
page read and write
 clean
7FF5B12CD000
unkown image
page readonly
 clean
198CD23B000
unkown
page read and write
 clean
7FF5CB5AF000
unkown image
page readonly
 clean
23C65260000
unkown image
page readonly
 clean
24F62304000
unkown
page read and write
 clean
7FF5CB5AD000
unkown image
page readonly
 clean
26ED20C4000
unkown
page read and write
 clean
7DF5FEC90000
unkown image
page readonly
 clean
24F5CA57000
unkown
page read and write
 clean
7FF5E937F000
unkown image
page readonly
 clean
7FF53CE0F000
unkown image
page readonly
 clean
7DF552740000
unkown image
page readonly
 clean
24F61F50000
unkown
page read and write
 clean
244B31A0000
unkown
page read and write
 clean
24F62070000
unkown
page read and write
 clean
7FF50E96E000
unkown image
page readonly
 clean
24F5D359000
unkown
page read and write
 clean
24F61E10000
unkown
page read and write
 clean
7DF5FEC72000
unkown image
page readonly
 clean
7FF5E8E86000
unkown image
page readonly
 clean
24F5D318000
unkown
page read and write
 clean
7FF5CB5AB000
unkown image
page readonly
 clean
3A322FA000
stack
page read and write
 clean
24F61F2B000
unkown
page read and write
 clean
7DF5E0EA0000
unkown image
page readonly
 clean
24F62080000
unkown
page read and write
 clean
7FF5CB3BD000
unkown image
page readonly
 clean
7FF5E9237000
unkown image
page readonly
 clean
24F5C870000
unkown image
page readonly
 clean
7FF5E9230000
unkown image
page readonly
 clean
7FF53CE34000
unkown image
page readonly
 clean
24F5D318000
unkown
page read and write
 clean
24F5CF90000
unkown image
page readonly
 clean
24F61F2C000
unkown
page read and write
 clean
7FF50E854000
unkown image
page readonly
 clean
24F62302000
unkown
page read and write
 clean
7DF552742000
unkown image
page readonly
 clean
64A697A000
stack
page read and write
 clean
7FF53C60F000
unkown image
page readonly
 clean
3A323FF000
stack
page read and write
 clean
7FF5B14E8000
unkown image
page readonly
 clean
7FF50E950000
unkown image
page readonly
 clean
7FF53CE16000
unkown image
page readonly
 clean
24F61F28000
unkown
page read and write
 clean
24F61F64000
unkown
page read and write
 clean
7DF422140000
unkown image
page readonly
 clean
7FF53CE2D000
unkown image
page readonly
 clean
24F622FF000
unkown
page read and write
 clean
24F5C9C0000
unkown
page read and write
 clean
7DF504382000
unkown image
page readonly
 clean
7DF524280000
unkown image
page readonly
 clean
198CD244000
unkown
page read and write
 clean
7FF4EE733000
unkown image
page readonly
 clean
AFA0B7C000
stack
page read and write
 clean
18105D80000
unkown image
page readonly
 clean
7FF5CB05F000
unkown image
page readonly
 clean
7FF5CB4A7000
unkown image
page readonly
 clean
7FF5E937D000
unkown image
page readonly
 clean
7FF53CD20000
unkown image
page readonly
 clean
7DF4C4CF0000
unkown image
page readonly
 clean
64A6D7F000
stack
page read and write
 clean
7FF4EEA7F000
unkown image
page readonly
 clean
24F6222B000
unkown
page read and write
 clean
7FF50E8CA000
unkown image
page readonly
 clean
3A32BFF000
stack
page read and write
 clean
7DF524290000
unkown image
page readonly
 clean
7DF504380000
unkown image
page readonly
 clean
26ED20CC000
unkown
page read and write
 clean
64A627E000
stack
page read and write
 clean
244B3150000
unkown image
page readonly
 clean
7FF53C9D0000
unkown image
page readonly
 clean
24F6229D000
unkown
page read and write
 clean
24F5D359000
unkown
page read and write
 clean
23C65270000
unkown image
page readonly
 clean
7FF5CB57B000
unkown image
page readonly
 clean
24F622F2000
unkown
page read and write
 clean
7FF5B1400000
unkown image
page readonly
 clean
7FF50DE70000
unkown image
page readonly
 clean
198CD263000
unkown
page read and write
 clean
64A687F000
stack
page read and write
 clean
198CD110000
unkown image
page readonly
 clean
7FF5CB49C000
unkown image
page readonly
 clean
244B3860000
unkown
page read and write
 clean
24F62300000
unkown
page read and write
 clean
7FF50E877000
unkown image
page readonly
 clean
7FF53CD10000
unkown image
page readonly
 clean
7FF53C9F4000
unkown image
page readonly
 clean
AFA087F000
stack
page read and write
 clean
7FF5E92E5000
unkown image
page readonly
 clean
198CD230000
unkown
page read and write
 clean
7FF4EEA6B000
unkown image
page readonly
 clean
7FF5CB3C6000
unkown image
page readonly
 clean
7FF53C373000
unkown image
page readonly
 clean
7FF5CB4E5000
unkown image
page readonly
 clean
7FF4EEA7F000
unkown image
page readonly
 clean
7FF53CB73000
unkown image
page readonly
 clean
7DF524272000
unkown image
page readonly
 clean
4E329FE000
stack
page read and write
 clean
198CD284000
unkown
page read and write
 clean
7FF5E934B000
unkown image
page readonly
 clean
23C65500000
unkown
page read and write
 clean
7FF53CD00000
unkown image
page readonly
 clean
7FF53CD68000
unkown image
page readonly
 clean
24F61F21000
unkown
page read and write
 clean
CD3DB7F000
stack
page read and write
 clean
198CD239000
unkown
page read and write
 clean
7FF53CB4D000
unkown image
page readonly
 clean
244B3000000
unkown image
page read and write
 clean
7FF53CBA0000
unkown image
page readonly
 clean
7FF5B11D8000
unkown image
page readonly
 clean
7FF5E9262000
unkown image
page readonly
 clean
7DF5E0EB2000
unkown image
page readonly
 clean
91B45DC000
unkown
page read and write
 clean
7FF5B152D000
unkown image
page readonly
 clean
7DF5E0EB0000
unkown image
page readonly
 clean
7FF50E96B000
unkown image
page readonly
 clean
24F5C860000
heap private
page read and write
 clean
23C65600000
unkown image
page readonly
 clean
64A61F7000
stack
page read and write
 clean
AFA0E7F000
stack
page read and write
 clean
7FF5B151B000
unkown image
page readonly
 clean
7DF504370000
unkown image
page readonly
 clean
26ED1FC0000
unkown
page read and write
 clean
7FF5B151E000
unkown image
page readonly
 clean
7FF5B0A1A000
unkown image
page readonly
 clean
198CD255000
unkown
page read and write
 clean
24F5CA73000
unkown
page read and write
 clean
7FF50E60A000
unkown image
page readonly
 clean
7FF5CB59B000
unkown image
page readonly
 clean
26ED2580000
unkown image
page readonly
 clean
7FF5CB4E9000
unkown image
page readonly
 clean
198CD4D0000
unkown image
page readonly
 clean
26ED20E2000
unkown
page read and write
 clean
18106390000
unkown image
page readonly
 clean
26ED2088000
unkown
page read and write
 clean
26ED206D000
unkown
page read and write
 clean
4E32D7D000
stack
page read and write
 clean
7FF53CE08000
unkown image
page readonly
 clean
198CD23D000
unkown
page read and write
 clean
7FF5E90C5000
unkown image
page readonly
 clean
244B3213000
unkown
page read and write
 clean
7DF524272000
unkown image
page readonly
 clean
24F5D810000
unkown image
page read and write
 clean
7FF53CC9F000
unkown image
page readonly
 clean
7FF5CB59E000
unkown image
page readonly
 clean
18105E40000
unkown
page read and write
 clean
7DF402240000
unkown image
page readonly
 clean
24F5C870000
unkown image
page readonly
 clean
7FF50E86C000
unkown image
page readonly
 clean
7FF5CB5AF000
unkown image
page readonly
 clean
24F5CF80000
unkown image
page readonly
 clean
7FF53CD07000
unkown image
page readonly
 clean
7FF5E914E000
unkown image
page readonly
 clean
CD3DA7E000
stack
page read and write
 clean
24F5CE00000
unkown image
page readonly
 clean
7FF5B1514000
unkown image
page readonly
 clean
7FF53CB57000
unkown image
page readonly
 clean
7FF5E9364000
unkown image
page readonly
 clean
7FF50E93F000
unkown image
page readonly
 clean
7FF5E92CA000
unkown image
page readonly
 clean
198CD130000
heap default
page read and write
 clean
7FF5CB3D2000
unkown image
page readonly
 clean
7DF504390000
unkown image
page readonly
 clean
7FF53CD7D000
unkown image
page readonly
 clean
24F5D302000
unkown
page read and write
 clean
7DF5FEC70000
unkown image
page readonly
 clean
7FF5E900A000
unkown image
page readonly
 clean
7DF5C6E32000
unkown image
page readonly
 clean
198CD0E0000
unkown image
page readonly
 clean
24F62302000
unkown
page read and write
 clean
24F5D318000
unkown
page read and write
 clean
7FF4EE9AD000
unkown image
page readonly
 clean
64A657E000
stack
page read and write
 clean
7FF5CB4A5000
unkown image
page readonly
 clean
24F6230D000
unkown
page read and write
 clean
23C65413000
unkown
page read and write
 clean
198CD231000
unkown
page read and write
 clean
26ED2029000
unkown
page read and write
 clean
24F61DC3000
unkown
page read and write
 clean
24F5D9D0000
unkown image
page readonly
 clean
198CD248000
unkown
page read and write
 clean
24F5CA6E000
unkown
page read and write
 clean
26ED1E90000
unkown image
page readonly
 clean
23C65458000
unkown
page read and write
 clean
198CD262000
unkown
page read and write
 clean
198CD22E000
unkown
page read and write
 clean
7DF524282000
unkown image
page readonly
 clean
91B4B7E000
stack
page read and write
 clean
7FF53CE1B000
unkown image
page readonly
 clean
7FF53CD5C000
unkown image
page readonly
 clean
24F5CA00000
unkown
page read and write
 clean
198CD267000
unkown
page read and write
 clean
7FF5E9096000
unkown image
page readonly
 clean
26ED2013000
unkown
page read and write
 clean
There are 671 hidden memdumps, click here to show them.

DOM / HTML

URL
Malicious
https://sites.google.com/view/greenberg-ramon-alonso-urbano/home
 malicious
https://aliyahaliyahs-amyloses-knackwursts.s3.us-west-002.backblazeb2.com/index.html
 malicious
https://sites.google.com/view/greenberg-ramon-alonso-urbano/history
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/team
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/faq
 clean
https://www.google.com/url?q=https%3A%2F%2Faliyahaliyahs-amyloses-knackwursts.s3.us-west-002.backblazeb2.com%2Findex.html&sa=D&sntz=1&usg=AFQjCNH8kz413y_EqiRKG7k161Kyek6ENg
 clean
https://www.youtube-nocookie.com/embed/TBR-xtJVq7E?rel=0&showinfo=0&theme=light&version=3&hl=en&cc_lang_pref=en&cc_load_policy=1
 clean
https://policies.google.com/technologies/cookies
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/history#h.afyj9j9g00b0
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/history#h.wz7mar23iqyu
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/team#h.a4rji4pxv1xr
 clean
https://sites.google.com/view/greenberg-ramon-alonso-urbano/team#h.mc9c3iu9koq0
 clean
There are 2 hidden doms, click here to show them.