IOC Report

loading gif

Files

File Path
Type
Category
Malicious
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\04801f5c-3ef2-456d-aa06-0bc636c0f42d.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\170c4f52-03f6-436c-9884-3c21532452fc.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\366bac09-96ad-4fe1-986a-898c63bd6c69.tmp
data
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\49238e0f-3431-48dd-b242-07d709c8d031.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\9bdf8759-d7e0-4ca0-9bd6-0a4a6bae9709.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
data
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\0ab4fcd6-a321-4e03-ae13-db7d56eb0aca.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\1f7e3420-4145-4aad-b7ce-15581de177cf.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\2a3b55fa-9cc0-468f-a704-8b0691766de2.tmp
ASCII text, with very long lines, with no line terminators
modified
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\2aa1ff7e-8a88-48b7-b7ac-0bdf226dc6c9.tmp
very short file (no magic)
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\371e6fe9-cf5a-4361-9104-71f3ee87cb17.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\3791d3db-41dd-41fe-bdbf-a19bcef9c931.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\429e9052-89f2-4fc6-a4dd-26770a360ec6.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\48fc6a52-bf72-4914-9fd0-0f7816e0de2a.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\790fda5f-f49a-4c17-9eee-852bff3de094.tmp
MS Windows icon resource - 13 icons, 8x8, 32 bits/pixel, 10x10, 32 bits/pixel
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\9221.427.0.1_0\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Google Profile.ico.l (copy)
MS Windows icon resource - 13 icons, 8x8, 32 bits/pixel, 10x10, 32 bits/pixel
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\PreferencesNT (copy)
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Preferences\ (copy)
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences9 (copy)
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferencesn (copy)
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
data
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000001.dbtmp
ASCII text
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\CURRENT (copy)
ASCII text
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\MANIFEST-000001
PGP\011Secret Key -
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\a0c0019d-035e-47dc-ba49-5cddcf9729fd.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\b7591223-a5f6-4329-94b2-6501dfc4af03.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
modified
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\d9e0040c-3299-4a5a-9d0f-7ab9938f6cc9.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000006.dbtmp
ASCII text
modified
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\e522abcb-6cfc-4b42-91dc-45514247a1bf.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Last Browser
data
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Last Version
ASCII text, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Local State (copy)
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Local State. (copy)
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Module Info Cache\i (copy)
data
dropped
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\a91afdda-025c-4f01-af72-319a7226ac67.tmp
data
dropped
C:\Users\alfredo\AppData\Local\Temp\16125326-c92d-4d98-b37d-402ec8053a4a.tmp
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
dropped
C:\Users\alfredo\AppData\Local\Temp\1ed06a14-9a3f-4db5-a7fc-29e7cca4b83e.tmp
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
dropped
C:\Users\alfredo\AppData\Local\Temp\1fb7fa2c-e19c-410f-9829-940f6d493e59.tmp
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
dropped
C:\Users\alfredo\AppData\Local\Temp\488990eb-e4a9-46f3-8c0f-d23d3877f267.tmp
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\6979b419-e506-45e5-9dec-1c934e3b5149.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\7612_2096733677\_metadata\verified_contents.json
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\7612_2096733677\_platform_specific\x86_64\pnacl_public_pnacl_json
ASCII text
dropped
C:\Users\alfredo\AppData\Local\Temp\7612_2096733677\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
dropped
C:\Users\alfredo\AppData\Local\Temp\7612_2096733677\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
dropped
C:\Users\alfredo\AppData\Local\Temp\7612_2096733677\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
dropped
C:\Users\alfredo\AppData\Local\Temp\7612_2096733677\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=7511538a3a6a0b862c772eace49075ed1bbe2377, stripped
dropped
C:\Users\alfredo\AppData\Local\Temp\7612_2096733677\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a
current ar archive
dropped
C:\Users\alfredo\AppData\Local\Temp\7612_2096733677\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a
current ar archive
dropped
C:\Users\alfredo\AppData\Local\Temp\7612_2096733677\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a
current ar archive
dropped
C:\Users\alfredo\AppData\Local\Temp\7612_2096733677\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a
current ar archive
dropped
C:\Users\alfredo\AppData\Local\Temp\7612_2096733677\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=309d6d3d463e6b1b0690f39eb226b1e4c469b2ce, stripped
dropped
C:\Users\alfredo\AppData\Local\Temp\7612_2096733677\manifest.fingerprint
ASCII text, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\7612_2096733677\manifest.json
ASCII text
dropped
C:\Users\alfredo\AppData\Local\Temp\820039c0-38f3-43b6-86d0-13ea266c495e.tmp
Google Chrome extension, version 3
dropped
C:\Users\alfredo\AppData\Local\Temp\b9f31c97-9497-4944-98c6-6ca189e6c519.tmp
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
dropped
C:\Users\alfredo\AppData\Local\Temp\c84d928a-d60c-492a-a1af-65c9d2ed4b04.tmp
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
dropped
C:\Users\alfredo\AppData\Local\Temp\d5ada7e0-51a6-45df-bad7-9590fbb9d791.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\e1088b87-1776-48c3-87e8-cc666eeefc03.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\ee010154-e4b4-46cc-b86b-455c5b59bba4.tmp
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
dropped
C:\Users\alfredo\AppData\Local\Temp\fac369e9-fccf-40a2-910d-a6971692204e.tmp
Google Chrome extension, version 3
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\am\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\ar\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\bg\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\bn\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\ca\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\cs\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\da\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\de\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\el\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\en\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\es\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\et\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\fa\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\fi\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\fil\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\fr\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\gu\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\hi\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\hr\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\hu\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\id\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\it\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\iw\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\ja\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\kn\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\ko\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\lt\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\lv\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\ml\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\mr\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\ms\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\nb\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\nl\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\pl\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\pt\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\ro\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\ru\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\sk\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\sl\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\sr\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\sv\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\sw\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\ta\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\te\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\zh\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_2009907960\CRX_INSTALL\manifest.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\bg\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\ca\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\cs\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\da\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\de\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\el\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\en\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\es\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\es_419\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\et\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\fi\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\fil\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\fr\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\hi\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\hr\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\hu\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\it\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\ja\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\ko\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\lt\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\lv\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\nb\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\nl\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\pl\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\pt_BR\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\pt_PT\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\ro\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\ru\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\sk\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\sl\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\sr\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\sv\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\th\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\tr\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\uk\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\vi\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\zh_CN\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\_locales\zh_TW\messages.json
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\craw_background.js
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\craw_window.js
ASCII text, with very long lines
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\css\craw_window.css
ASCII text
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\html\craw_window.html
HTML document, ASCII text
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\images\flapper.gif
GIF image data, version 89a, 30 x 30
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\images\icon_128.png
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\images\icon_16.png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\images\topbar_floating_button.png
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\images\topbar_floating_button_close.png
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7612_54717587\CRX_INSTALL\manifest.json
ASCII text
dropped
C:\Users\alfredo\AppData\Roaming\Microsoft\Spelling\en-US\default.dic
Little-endian UTF-16 Unicode text, with no line terminators
dropped
There are 155 hidden files, click here to show them.

URLs

Name
IP
Malicious
https://bidproposalinvite.ucraft.site/
malicious
https://bidproposalinvite.ucraft.site/
malicious
https://taeappliances.space/schl/index.php
malicious

Domains

Name
IP
Malicious
gstaticadssl.l.google.com
216.58.215.227
taeappliances.space
161.97.110.227
bidproposalinvite.ucraft.site
35.205.94.174
accounts.google.com
142.250.185.237
cdnjs.cloudflare.com
104.16.18.94
maxcdn.bootstrapcdn.com
104.18.10.207
clients.l.google.com
142.250.203.110
googlehosted.l.googleusercontent.com
216.58.212.161
static.ucraft.net
104.21.45.175
clients2.googleusercontent.com
unknown
clients2.google.com
unknown
ka-f.fontawesome.com
unknown
code.jquery.com
unknown
kit.fontawesome.com
unknown
There are 4 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
142.250.203.106
unknown
United States
34.104.35.123
unknown
United States
192.168.2.1
unknown
unknown
104.18.10.207
maxcdn.bootstrapcdn.com
United States
35.205.94.174
bidproposalinvite.ucraft.site
United States
104.21.45.175
static.ucraft.net
United States
216.58.215.227
gstaticadssl.l.google.com
United States
104.21.81.131
unknown
United States
142.250.203.110
clients.l.google.com
United States
142.250.185.237
accounts.google.com
United States
239.255.255.250
unknown
Reserved
172.217.168.74
unknown
United States
172.217.168.10
unknown
United States
161.97.110.227
taeappliances.space
United States
69.16.175.10
unknown
United States
216.58.212.161
googlehosted.l.googleusercontent.com
United States
104.18.22.52
unknown
United States
104.16.18.94
cdnjs.cloudflare.com
United States
142.250.203.99
unknown
United States
127.0.0.1
unknown
unknown
There are 10 hidden IPs, click here to show them.