Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\004b9515-352f-485d-aaaa-58748aa99e40.tmp
|
SysEx File -
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\0b01cbc5-d336-4180-9f44-fae55033b40e.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\3584e0ba-17f9-4af5-91b6-c340d583c3e0.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\60779087-3df2-4215-9441-93ed3b9a4907.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\628e93cb-3b83-4aed-8868-591d8bd9c0b3.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
modified
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\11048848-a47e-4097-9184-3cc21ee940d0.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\153aed39-e6c4-434c-8603-215ba43097a9.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2df9c311-6088-4b1f-b60a-007c561b99bb.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\4408d527-03e1-4a6e-981a-b87ffc55196b.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\4938ee68-0c89-4eac-8744-b7ee7821ec1e.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5a8d4684-967e-40c8-b58a-f7b9776fd389.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\829e32d7-9758-4de8-aec9-a19b7a9784f4.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\2d9da7bc-bdb8-4af7-9b69-d7e4dbe1765b.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\258df83f-b36f-4fc8-947f-6b2164b40b9a.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a9eda465-4cda-4b89-9b27-f16f8143b536.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ab3d88c9-449a-451b-abcb-cf44ab2d1106.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\bb031ada-380c-4d64-be67-de24ce3f4bba.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c2efb078-06a7-4a25-9d53-78aac87412fa.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ca75878f-229c-4426-9274-0c65446f48d9.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\b477f4e9-452e-4c5e-9a53-cc521a3611aa.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\b69ee3fa-627e-4936-b3d5-9d144919274c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\b9322a9f-823e-4e0b-a247-940fe8bc2320.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\be40ba87-4693-4bb4-838f-06809c466785.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\dbb3fd22-27c4-452d-8bf8-4783be5b1c97.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\fde51204-7f7f-41e0-a5c6-05c23e0efa06.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4208_1871018900\Recovery.crx3
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4208_1871018900\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4208_1871018900\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4208_1871018900\manifest.json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4208_655625526\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4208_655625526\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4208_655625526\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4208_655625526\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_sz_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=4b15de4ab227d5e46213978b8518d53c53ce1db9,
stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5ed322b3-01d9-4f90-bf6f-f3d85b60be1c.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\e5b522ef-c020-4324-a940-2fad3e0b05b3.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\5ed322b3-01d9-4f90-bf6f-f3d85b60be1c.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4208_79857539\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
There are 101 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1532,9381571573011449228,10461064675178881136,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1856 /prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
C:\Program Files\Google\Chrome\Application\chrome.exe" "http://recp.mkt51.net/ctt?m=27097482&r=NzgzMjA3MzI5NTYxS0&j=MjI0NDQyMzQ1NgS2&b=3&mt=1&rt=0&kx=1&kt=12&k=ShopName&kd=https://login.lnspirationhm.com/?username=thomas.thueler@bdo.ch
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://recp.mkt51.net/ctt?m=27097482&r=NzgzMjA3MzI5NTYxS0&j=MjI0NDQyMzQ1NgS2&b=3&mt=1&rt=0&kx=1&kt=12&k=ShopName&kd=https://login.lnspirationhm.com/?username=thomas.thueler@bdo.ch
|
|||
|
https://brave.com/static-assets/images/brave-logo-no-shadow.png
|
18.66.122.72
|
||
|
https://stats.g.doubleclick.net
|
unknown
|
||
|
https://avatars.githubusercontent.com/u/6614172?s=88&u=fc3fba3d7e834c6a040a95227a5d9d962369e9ba&v=4
|
185.199.108.133
|
||
|
https://brave.com/static-assets/images/icon-download.svg
|
18.66.122.72
|
||
|
https://brave.com/js/referral.min.js
|
18.66.122.72
|
||
|
https://avatars.githubusercontent.com/u/36971246?s=60&u=9bb8b8dd424a7978265e526edf84faad529366f8&v=4
|
185.199.108.133
|
||
|
https://brave.com/static-assets/images/optimized/learn/images/fastest-browser@1x.webp
|
18.66.122.72
|
||
|
https://www.google.com
|
unknown
|
||
|
https://brave.com/static-assets/images/safari-logo.svg
|
18.66.122.72
|
||
|
https://avatars.githubusercontent.com/u/1810143?s=88&u=4c17c32187b5c73bed084a6423548fa913fc8686&v=4
|
185.199.108.133
|
||
|
https://play-lh.googleusercontent.com/WKlNHhjh9npwwp0m-3Jc4O2yRLg0xFaF0HO2fX9piYhHg_r_rNkFB60MSWsfuOYsPGUt=w526-h296-rw
|
172.217.168.54
|
||
|
https://brave.com/static-assets/images/optimized/learn/images/secure-browser@1x.webp
|
18.66.122.72
|
||
|
https://brave.com/download/
|
18.66.122.72
|
||
|
https://brave.com/js/accordion-faq.min.js
|
18.66.122.72
|
||
|
https://brave.com/static-assets/icons/close-icon.svg
|
18.66.122.72
|
||
|
https://brave.com/static-assets/images/coding-background-texture.jpg
|
18.66.122.72
|
||
|
https://stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-19995903-1&cid=229836576.1660226436&jid=864424213&gjid=145514429&_gid=1479797354.1660226436&_u=YEBAAEAAAAAAAC~&z=16008056
|
172.217.218.157
|
||
|
https://play-lh.googleusercontent.com/12USW7aflgz466ifDehKTnMoAep_VHxDmKJ6jEBoDZWCSefOC-ThRX14Mqe0r8KF9XCzrpMqJts=s20-rw
|
172.217.168.54
|
||
|
https://brave.com/static-assets/icons/chevron-right-icon.svg
|
18.66.122.72
|
||
|
https://analytics.brave.com/piwik.php?action_name=Secure%2C%20Fast%20%26%20Private%20Web%20Browser%20with%20Adblocker%20%7C%20Brave%20Browser&idsite=2&rec=1&r=497416&h=7&m=0&s=14&url=https%3A%2F%2Fbrave.com%2F&_id=&_idn=1&_refts=0&send_image=1&pdf=0&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024&pv_id=oLf2Q3&pf_net=271&pf_srv=30&pf_tfr=486&pf_dm1=2298
|
18.65.82.17
|
||
|
https://brave.com/static-assets/fonts/Poppins/Poppins-Medium.ttf
|
18.66.122.72
|
||
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
||
|
https://brave.com/static-assets/images/optimized/browser-1280x339.webp
|
18.66.122.72
|
||
|
https://brave.com/static-assets/images/category-thumbnail-web3-browsers.svg
|
18.66.122.72
|
||
|
https://brave.com/static-assets/fonts/Poppins/Poppins-Regular.ttf
|
18.66.122.72
|
||
|
https://www.google.de/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-19995903-1&cid=229836576.1660226436&jid=864424213&_u=YEBAAEAAAAAAAC~&z=1356843696
|
172.217.168.35
|
||
|
https://play-lh.googleusercontent.com/a-/AFdZucq-n-xeG5uGTjul0mkdclqMgRWwjr1D0zdKd_Ov0A=s32-rw
|
172.217.168.54
|
||
|
https://play-lh.googleusercontent.com/Yxa9AnKKAnMGFov2uBQ5dWfovUpIKtZs2tLgJUbh6AzEv3owH8lBSux975PEuaB8aIc=w526-h296-rw
|
172.217.168.54
|
||
|
https://github.githubassets.com/assets/dark-217d4f9c8e70.css
|
185.199.108.154
|
||
|
https://brave.com/static-assets/images/optimized/home-illustration-01.webp
|
18.66.122.72
|
||
|
https://brave.com/js/vimeo.min.js
|
18.66.122.72
|
||
|
https://brave.com/static-assets/images/interstitial-download-qr.png
|
18.66.122.72
|
||
|
https://dns.google
|
unknown
|
||
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
||
|
https://brave.com/static-assets/js/announcement-banner.js
|
18.66.122.72
|
||
|
https://brave.com/static-assets/images/app-store-badge.png
|
18.66.122.72
|
||
|
https://brave.com/ios/
|
18.66.122.72
|
||
|
https://play-lh.googleusercontent.com/rWoDevKXfJpuqVmCKiwMxfWWFzci7Ts7eXCNqc3UnVJTYgyEJ9RjkZAugxl3c95LhA=w526-h296-rw
|
172.217.168.54
|
||
|
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
172.217.168.14
|
||
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
https://brave.com/static-assets/images/site-nav-download-qr.png
|
18.66.122.72
|
||
|
https://brave.com/static-assets/images/optimized/home-illustration-02.webp
|
18.66.122.72
|
||
|
https://brave.com/static-assets/images/border_white.svg
|
18.66.122.84
|
||
|
https://github.githubassets.com/assets/light-5178aee0ee76.css
|
185.199.108.154
|
||
|
https://analytics.brave.com/piwik.php?link=https%3A%2F%2Fgithub.com%2Fsignalapp%2FSignal-Desktop%2Fissues%2F2483%23issuecomment-401047201&idsite=2&rec=1&r=714260&h=7&m=1&s=23&url=https%3A%2F%2Fbrave.com%2Flinux%2F&_id=&_idn=1&_refts=0&send_image=1&pdf=0&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024&pf_net=0&pf_srv=21&pf_tfr=38&pf_dm1=1717&pf_dm2=3290&pf_onl=1&pv_id=ctK86R
|
18.65.82.105
|
||
|
https://brave.com/static-assets/images/optimized/security-illustration.webp
|
18.66.122.72
|
||
|
https://github.githubassets.com/assets/primer-494ab2110a2a.css
|
185.199.108.154
|
||
|
https://brave.com/js/is-browser.min.js
|
18.66.122.72
|
||
|
https://brave.com/static-assets/vendors/lodash.throttle.min.js
|
18.66.122.72
|
||
|
https://www.google.com/images/x2.gif
|
unknown
|
||
|
https://brave.com/static-assets/images/playstore.png
|
18.66.122.72
|
||
|
https://github.com/signalapp/Signal-Desktop/issues/2483#issuecomment-401047201
|
|||
|
https://github.com/signalapp/Signal-Desktop/issues/2483
|
140.82.121.3
|
||
|
https://www.google.com/images/dot2.gif
|
unknown
|
||
|
https://brave.com/static-assets/images/optimized/desktop-hero-screenshot@1x.webp
|
18.66.122.72
|
||
|
https://github.githubassets.com/assets/runtime-16514c6125e8.js
|
185.199.108.154
|
||
|
https://brave.com/android/
|
18.66.122.72
|
||
|
https://brave.com/static-assets/images/logo-verizon.svg
|
18.66.122.72
|
||
|
https://analytics.brave.com/piwik.php?action_name=Installing%20Brave%20on%20Linux%20%7C%20Brave%20Browser&idsite=2&rec=1&r=113241&h=7&m=1&s=14&url=https%3A%2F%2Fbrave.com%2Flinux%2F&_id=&_idn=1&_refts=0&send_image=1&pdf=0&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024&pv_id=ctK86R&pf_net=0&pf_srv=21&pf_tfr=38&pf_dm1=1717
|
18.65.82.105
|
||
|
https://brave.com/static-assets/images/optimized/1.41-release/images/featured.webp
|
18.66.122.72
|
||
|
https://brave.com/js/1-ie-compat.min.js
|
18.66.122.72
|
||
|
https://play-lh.googleusercontent.com/4ttZsI2w3mI--LU7I2lOvjSELTxqvGTlLTUec43HtTof0ma9l7NerEnPGxHbPRYFbjo=s64-rw
|
172.217.168.54
|
||
|
https://brave.com/
|
|||
|
https://play-lh.googleusercontent.com/Ea12V8BesGX1BqYZT8UEC6r7zfn_Njdx-IkljrMvi_NGcnThCQ__CpbApLwJYmLLB6Y=w526-h296-rw
|
172.217.168.54
|
||
|
https://brave.com/static-assets/images/mobile.svg
|
18.66.122.72
|
||
|
https://brave.com/static-assets/images/optimized/mobile-plank-download-qr.png
|
18.66.122.72
|
||
|
https://github.githubassets.com/assets/global-5a9114f3bf45.css
|
185.199.108.154
|
||
|
http://recp.mkt51.net/ctt?m=27097482&r=NzgzMjA3MzI5NTYxS0&j=MjI0NDQyMzQ1NgS2&b=3&mt=1&rt=0&kx=1&kt=1
|
unknown
|
||
|
https://www.google.com/
|
unknown
|
||
|
https://brave.com/static-assets/images/optimized/import-settings.svg
|
18.66.122.72
|
||
|
https://brave.com/js/detect-platform.min.js
|
18.66.122.72
|
||
|
https://login.lnspirationhm.com/?username=thomas.thueler@bdo.ch
|
104.238.35.138
|
||
|
https://www.google.com/images/cleardot.gif
|
unknown
|
||
|
https://brave.com/linux/
|
18.66.122.72
|
||
|
https://play.google.com/store/apps/details?id=com.brave.browser
|
|||
|
https://play.google.com
|
unknown
|
||
|
https://brave.com/static-assets/images/optimized/speed-past-chrome-cover.png
|
18.66.122.72
|
||
|
https://avatars.githubusercontent.com/u/1810143?s=60&u=4c17c32187b5c73bed084a6423548fa913fc8686&v=4
|
185.199.108.133
|
||
|
https://brave.com/js/diagonal-movement.min.js
|
18.66.122.72
|
||
|
https://github.githubassets.com/assets/github-bbee8e363ed4.css
|
185.199.108.154
|
||
|
https://avatars.githubusercontent.com/u/167821?s=40&u=836283846d232d3d0be00ac58f9e0025d7a35335&v=4
|
185.199.108.133
|
||
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
https://brave.com/static-assets/fonts/Poppins/Poppins-Bold.ttf
|
18.66.122.72
|
||
|
https://brave.com/js/navigation.min.js
|
18.66.122.72
|
||
|
https://brave.com/static-assets/images/separator_curve.svg
|
18.66.122.72
|
||
|
https://avatars.githubusercontent.com/u/43970559?s=88&v=4
|
185.199.108.133
|
||
|
https://brave.com/static-assets/css/main.min.css
|
18.66.122.72
|
||
|
https://play-lh.googleusercontent.com/rh_JsaDPC_ArUMPdZFSEgCM6N-EbS0urR6k9VETap0CAQROivBPjJ6K5g99bXwHXUd1m=w526-h296-rw
|
172.217.168.54
|
||
|
https://accounts.google.com/MergeSession
|
unknown
|
||
|
https://brave.com/static-assets/images/logo-etoro.svg
|
18.66.122.72
|
||
|
https://play-lh.googleusercontent.com/maODa6yJ4GcLMwJ0oqbOOa2zUfy8hZPeTclRoH__2B1Ch5yV7L2hRa-Gk7PeIu_utgMr=w526-h296-rw
|
172.217.168.54
|
||
|
https://avatars.githubusercontent.com/u/167821?s=60&u=836283846d232d3d0be00ac58f9e0025d7a35335&v=4
|
185.199.108.133
|
||
|
https://brave.com/static-assets/images/brave-logo.svg
|
18.66.122.72
|
||
|
https://www.google.com/tools/feedback/chat_load.js
|
142.250.203.100
|
||
|
https://brave.com/static-assets/images/brave-favicon.png
|
18.66.122.72
|
||
|
https://brave.com/static-assets/images/filler.png
|
18.66.122.72
|
||
|
https://brave.com/static-assets/images/optimized/1.42-release/images/featured.webp
|
18.66.122.72
|
||
|
https://play-lh.googleusercontent.com/6eOk4kfniz8QOP_OhKMuw4ILpK-6TlQGIVdD3unMG0zZBgdaJnMxZKyJqSRQsZe-WmvN=w526-h296-rw
|
172.217.168.54
|
||
|
https://play-lh.googleusercontent.com/vvjvZn0l16nn8j1KfCAbHlBn7wm6la_55pfxGOW9Wg0ut6C51wKVb3DWJTqSJc-eCnA=s64-rw
|
172.217.168.54
|
||
|
https://avatars.githubusercontent.com/u/6614172?s=60&u=fc3fba3d7e834c6a040a95227a5d9d962369e9ba&v=4
|
185.199.108.133
|
There are 90 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
gstaticadssl.l.google.com
|
172.217.168.3
|
||
|
www.google.de
|
172.217.168.35
|
||
|
accounts.google.com
|
142.250.203.109
|
||
|
stats.l.doubleclick.net
|
172.217.218.157
|
||
|
avatars.githubusercontent.com
|
185.199.108.133
|
||
|
recp.mkt51.net
|
35.169.253.76
|
||
|
brave.com
|
18.66.122.72
|
||
|
github.com
|
140.82.121.3
|
||
|
api.github.com
|
140.82.121.6
|
||
|
login.lnspirationhm.com
|
104.238.35.138
|
||
|
d2cbcq2c2d2d1v.cloudfront.net
|
18.65.82.17
|
||
|
glb-db52c2cf8be544.github.com
|
140.82.114.21
|
||
|
github.githubassets.com
|
185.199.108.154
|
||
|
s3-w.us-east-1.amazonaws.com
|
54.231.203.121
|
||
|
play.google.com
|
216.58.215.238
|
||
|
play-lh.googleusercontent.com
|
172.217.168.54
|
||
|
www.google.com
|
142.250.203.100
|
||
|
user-images.githubusercontent.com
|
185.199.108.133
|
||
|
clients.l.google.com
|
172.217.168.14
|
||
|
is2-ssl.mzstatic.com
|
unknown
|
||
|
github-cloud.s3.amazonaws.com
|
unknown
|
||
|
analytics.brave.com
|
unknown
|
||
|
is4-ssl.mzstatic.com
|
unknown
|
||
|
stats.g.doubleclick.net
|
unknown
|
||
|
is3-ssl.mzstatic.com
|
unknown
|
||
|
collector.github.com
|
unknown
|
||
|
clients2.google.com
|
unknown
|
||
|
is1-ssl.mzstatic.com
|
unknown
|
||
|
is5-ssl.mzstatic.com
|
unknown
|
There are 19 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.168.2.1
|
unknown
|
unknown
|
||
|
18.65.82.105
|
unknown
|
United States
|
||
|
35.169.253.76
|
recp.mkt51.net
|
United States
|
||
|
172.217.218.157
|
stats.l.doubleclick.net
|
United States
|
||
|
104.238.35.138
|
login.lnspirationhm.com
|
United States
|
||
|
172.217.168.3
|
gstaticadssl.l.google.com
|
United States
|
||
|
142.250.203.109
|
accounts.google.com
|
United States
|
||
|
18.66.122.72
|
brave.com
|
United States
|
||
|
142.250.203.100
|
www.google.com
|
United States
|
||
|
18.65.82.17
|
d2cbcq2c2d2d1v.cloudfront.net
|
United States
|
||
|
140.82.121.3
|
github.com
|
United States
|
||
|
172.217.168.35
|
www.google.de
|
United States
|
||
|
172.217.168.14
|
clients.l.google.com
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
172.217.168.54
|
play-lh.googleusercontent.com
|
United States
|
||
|
185.199.108.133
|
avatars.githubusercontent.com
|
Netherlands
|
||
|
185.199.108.154
|
github.githubassets.com
|
Netherlands
|
||
|
18.66.122.84
|
unknown
|
United States
|
||
|
127.0.0.1
|
unknown
|
unknown
|
There are 9 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
There are 40 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
A42E27E000
|
unkown
|
page read and write
|
||
|
80750FB000
|
stack
|
page read and write
|
||
|
2567CB60000
|
remote allocation
|
page read and write
|
||
|
27500600000
|
heap
|
page read and write
|
||
|
80751FB000
|
stack
|
page read and write
|
||
|
195E2DD0000
|
trusted library allocation
|
page read and write
|
||
|
25F0E052000
|
heap
|
page read and write
|
||
|
9E625FE000
|
stack
|
page read and write
|
||
|
1A7A0E7E000
|
heap
|
page read and write
|
||
|
22F98A02000
|
trusted library allocation
|
page read and write
|
||
|
22F98302000
|
heap
|
page read and write
|
||
|
A42DFFE000
|
stack
|
page read and write
|
||
|
247E2A65000
|
heap
|
page read and write
|
||
|
234538E2000
|
heap
|
page read and write
|
||
|
2567CB60000
|
remote allocation
|
page read and write
|
||
|
1A7A0E3B000
|
heap
|
page read and write
|
||
|
1A7A0E64000
|
heap
|
page read and write
|
||
|
195DD902000
|
heap
|
page read and write
|
||
|
8F58AFC000
|
stack
|
page read and write
|
||
|
195E2D9E000
|
trusted library allocation
|
page read and write
|
||
|
195E3105000
|
heap
|
page read and write
|
||
|
23453660000
|
heap
|
page read and write
|
||
|
A42E1FE000
|
unkown
|
page read and write
|
||
|
A42DA7F000
|
stack
|
page read and write
|
||
|
646A6FB000
|
stack
|
page read and write
|
||
|
25F0E061000
|
heap
|
page read and write
|
||
|
275005A0000
|
heap
|
page read and write
|
||
|
195DD89E000
|
heap
|
page read and write
|
||
|
195DE159000
|
heap
|
page read and write
|
||
|
6199777000
|
stack
|
page read and write
|
||
|
BEA0B7E000
|
stack
|
page read and write
|
||
|
1A7A0E47000
|
heap
|
page read and write
|
||
|
195E30FA000
|
heap
|
page read and write
|
||
|
25F0E029000
|
heap
|
page read and write
|
||
|
1A7A0E62000
|
heap
|
page read and write
|
||
|
195DD826000
|
heap
|
page read and write
|
||
|
BEA047E000
|
stack
|
page read and write
|
||
|
1A7A0F02000
|
heap
|
page read and write
|
||
|
646AAFD000
|
stack
|
page read and write
|
||
|
195DD876000
|
heap
|
page read and write
|
||
|
1A7A0C50000
|
heap
|
page read and write
|
||
|
22F98244000
|
heap
|
page read and write
|
||
|
195E2D91000
|
trusted library allocation
|
page read and write
|
||
|
1A7A0E6D000
|
heap
|
page read and write
|
||
|
220C5DE000
|
stack
|
page read and write
|
||
|
1EE34464000
|
heap
|
page read and write
|
||
|
195E3098000
|
heap
|
page read and write
|
||
|
195E3116000
|
heap
|
page read and write
|
||
|
195DDF90000
|
trusted library section
|
page readonly
|
||
|
195DD871000
|
heap
|
page read and write
|
||
|
9E6247B000
|
stack
|
page read and write
|
||
|
A42E0FA000
|
stack
|
page read and write
|
||
|
195DD857000
|
heap
|
page read and write
|
||
|
27500628000
|
heap
|
page read and write
|
||
|
22F98213000
|
heap
|
page read and write
|
||
|
646ABFF000
|
stack
|
page read and write
|
||
|
247E331D000
|
heap
|
page read and write
|
||
|
27500663000
|
heap
|
page read and write
|
||
|
25F0E802000
|
trusted library allocation
|
page read and write
|
||
|
195E2DB4000
|
trusted library allocation
|
page read and write
|
||
|
234538CC000
|
heap
|
page read and write
|
||
|
195DD83D000
|
heap
|
page read and write
|
||
|
195DD829000
|
heap
|
page read and write
|
||
|
23454002000
|
heap
|
page read and write
|
||
|
195E3108000
|
heap
|
page read and write
|
||
|
9E6277E000
|
stack
|
page read and write
|
||
|
27500613000
|
heap
|
page read and write
|
||
|
BEA06FE000
|
stack
|
page read and write
|
||
|
195E2EF0000
|
remote allocation
|
page read and write
|
||
|
195E3109000
|
heap
|
page read and write
|
||
|
6199D7F000
|
stack
|
page read and write
|
||
|
247E2A6F000
|
heap
|
page read and write
|
||
|
27500640000
|
heap
|
page read and write
|
||
|
6199E7E000
|
stack
|
page read and write
|
||
|
619A0FD000
|
stack
|
page read and write
|
||
|
195E3260000
|
trusted library allocation
|
page read and write
|
||
|
A42EA7D000
|
unkown
|
page read and write
|
||
|
234536C0000
|
heap
|
page read and write
|
||
|
646AFFF000
|
stack
|
page read and write
|
||
|
195DDFA0000
|
trusted library section
|
page readonly
|
||
|
195E2DC0000
|
trusted library allocation
|
page read and write
|
||
|
23453813000
|
heap
|
page read and write
|
||
|
2567CB30000
|
trusted library allocation
|
page read and write
|
||
|
195DD7F3000
|
trusted library allocation
|
page read and write
|
||
|
1EE34340000
|
heap
|
page read and write
|
||
|
1EE34513000
|
heap
|
page read and write
|
||
|
195E2DD4000
|
trusted library allocation
|
page read and write
|
||
|
247E2A29000
|
heap
|
page read and write
|
||
|
9E629FF000
|
stack
|
page read and write
|
||
|
A42DEF9000
|
stack
|
page read and write
|
||
|
195DD8FC000
|
heap
|
page read and write
|
||
|
220C87E000
|
stack
|
page read and write
|
||
|
234538D1000
|
heap
|
page read and write
|
||
|
1A7A0E29000
|
heap
|
page read and write
|
||
|
2567CB60000
|
remote allocation
|
page read and write
|
||
|
247E2A92000
|
heap
|
page read and write
|
||
|
A42E97F000
|
unkown
|
page read and write
|
||
|
1A7A0E2D000
|
heap
|
page read and write
|
||
|
195DE159000
|
heap
|
page read and write
|
||
|
195DD893000
|
heap
|
page read and write
|
||
|
195DD813000
|
heap
|
page read and write
|
||
|
25F0E07B000
|
heap
|
page read and write
|
||
|
1EE34502000
|
heap
|
page read and write
|
||
|
BEA05FC000
|
stack
|
page read and write
|
||
|
6199A7E000
|
stack
|
page read and write
|
||
|
195E311A000
|
heap
|
page read and write
|
||
|
1A7A0E44000
|
heap
|
page read and write
|
||
|
220CC7F000
|
stack
|
page read and write
|
||
|
A42E37F000
|
unkown
|
page read and write
|
||
|
195E2EF0000
|
remote allocation
|
page read and write
|
||
|
1A7A0E40000
|
heap
|
page read and write
|
||
|
619A2FA000
|
stack
|
page read and write
|
||
|
1EE34476000
|
heap
|
page read and write
|
||
|
1A7A1602000
|
trusted library allocation
|
page read and write
|
||
|
2567C429000
|
heap
|
page read and write
|
||
|
247E2840000
|
heap
|
page read and write
|
||
|
23453913000
|
heap
|
page read and write
|
||
|
A42D9FE000
|
stack
|
page read and write
|
||
|
195DD6C0000
|
heap
|
page read and write
|
||
|
247E2A58000
|
heap
|
page read and write
|
||
|
1EE34350000
|
heap
|
page read and write
|
||
|
247E2A89000
|
heap
|
page read and write
|
||
|
27500530000
|
heap
|
page read and write
|
||
|
BE851FE000
|
stack
|
page read and write
|
||
|
25F0E03C000
|
heap
|
page read and write
|
||
|
25F0E108000
|
heap
|
page read and write
|
||
|
9E6297D000
|
stack
|
page read and write
|
||
|
22F9823D000
|
heap
|
page read and write
|
||
|
195E2EF0000
|
remote allocation
|
page read and write
|
||
|
2567C360000
|
heap
|
page read and write
|
||
|
195DE19B000
|
heap
|
page read and write
|
||
|
1A7A0CC0000
|
heap
|
page read and write
|
||
|
619933B000
|
stack
|
page read and write
|
||
|
1A7A0E69000
|
heap
|
page read and write
|
||
|
619987A000
|
stack
|
page read and write
|
||
|
1A7A0E13000
|
heap
|
page read and write
|
||
|
1A7A0E49000
|
heap
|
page read and write
|
||
|
25F0E002000
|
heap
|
page read and write
|
||
|
195E2D9A000
|
trusted library allocation
|
page read and write
|
||
|
1A7A0E3D000
|
heap
|
page read and write
|
||
|
2567C413000
|
heap
|
page read and write
|
||
|
2567C3D0000
|
heap
|
page read and write
|
||
|
27500679000
|
heap
|
page read and write
|
||
|
6199CFF000
|
stack
|
page read and write
|
||
|
1A7A0E84000
|
heap
|
page read and write
|
||
|
195E2D97000
|
trusted library allocation
|
page read and write
|
||
|
A42E2FE000
|
unkown
|
page read and write
|
||
|
2345388A000
|
heap
|
page read and write
|
||
|
BE84FFB000
|
stack
|
page read and write
|
||
|
25F0E013000
|
heap
|
page read and write
|
||
|
220CB7E000
|
stack
|
page read and write
|
||
|
27500E02000
|
trusted library allocation
|
page read and write
|
||
|
80753FF000
|
stack
|
page read and write
|
||
|
1A7A0C60000
|
heap
|
page read and write
|
||
|
22F98241000
|
heap
|
page read and write
|
||
|
195DD730000
|
heap
|
page read and write
|
||
|
195E311A000
|
heap
|
page read and write
|
||
|
1EE34400000
|
heap
|
page read and write
|
||
|
A42E67E000
|
unkown
|
page read and write
|
||
|
25F0E730000
|
trusted library allocation
|
page read and write
|
||
|
275005D0000
|
trusted library allocation
|
page read and write
|
||
|
A42E57D000
|
unkown
|
page read and write
|
||
|
2567C502000
|
heap
|
page read and write
|
||
|
80754FE000
|
stack
|
page read and write
|
||
|
2345386E000
|
heap
|
page read and write
|
||
|
195DD770000
|
trusted library section
|
page read and write
|
||
|
646AEFF000
|
stack
|
page read and write
|
||
|
BE850FE000
|
stack
|
page read and write
|
||
|
247E2B13000
|
heap
|
page read and write
|
||
|
25F0E102000
|
heap
|
page read and write
|
||
|
195E2EF0000
|
trusted library allocation
|
page read and write
|
||
|
195DD87A000
|
heap
|
page read and write
|
||
|
27500702000
|
heap
|
page read and write
|
||
|
195E2E60000
|
trusted library allocation
|
page read and write
|
||
|
A42DCF9000
|
stack
|
page read and write
|
||
|
BEA087D000
|
stack
|
page read and write
|
||
|
1A7A0DC0000
|
trusted library allocation
|
page read and write
|
||
|
22F98050000
|
heap
|
page read and write
|
||
|
BEA097E000
|
stack
|
page read and write
|
||
|
247E2A13000
|
heap
|
page read and write
|
||
|
BE852FB000
|
stack
|
page read and write
|
||
|
23453829000
|
heap
|
page read and write
|
||
|
195E3109000
|
heap
|
page read and write
|
||
|
27500602000
|
heap
|
page read and write
|
||
|
25F0E000000
|
heap
|
page read and write
|
||
|
27500713000
|
heap
|
page read and write
|
||
|
9E626FC000
|
stack
|
page read and write
|
||
|
247E2A43000
|
heap
|
page read and write
|
||
|
1A7A0E7B000
|
heap
|
page read and write
|
||
|
247E2A8E000
|
heap
|
page read and write
|
||
|
646ADFF000
|
stack
|
page read and write
|
||
|
A42D87B000
|
stack
|
page read and write
|
||
|
2567CC02000
|
trusted library allocation
|
page read and write
|
||
|
619A1FF000
|
stack
|
page read and write
|
||
|
1A7A0E42000
|
heap
|
page read and write
|
||
|
195E2DB1000
|
trusted library allocation
|
page read and write
|
||
|
247E3302000
|
heap
|
page read and write
|
||
|
195DE118000
|
heap
|
page read and write
|
||
|
1EE343E0000
|
trusted library allocation
|
page read and write
|
||
|
BE9FD1B000
|
stack
|
page read and write
|
||
|
1EE3445A000
|
heap
|
page read and write
|
||
|
195DE118000
|
heap
|
page read and write
|
||
|
195DDFB0000
|
trusted library section
|
page readonly
|
||
|
A42D97A000
|
stack
|
page read and write
|
||
|
22F980A0000
|
heap
|
page read and write
|
||
|
247E29B0000
|
trusted library allocation
|
page read and write
|
||
|
1EE34C02000
|
trusted library allocation
|
page read and write
|
||
|
247E331D000
|
heap
|
page read and write
|
||
|
1EE34413000
|
heap
|
page read and write
|
||
|
195E2D90000
|
trusted library allocation
|
page read and write
|
||
|
BEA0A7C000
|
stack
|
page read and write
|
||
|
22F98202000
|
heap
|
page read and write
|
||
|
23453902000
|
heap
|
page read and write
|
||
|
80752F7000
|
stack
|
page read and write
|
||
|
195E3102000
|
heap
|
page read and write
|
||
|
22F981A0000
|
trusted library allocation
|
page read and write
|
||
|
247E29D0000
|
trusted library allocation
|
page read and write
|
||
|
6199FFA000
|
stack
|
page read and write
|
||
|
2567C45C000
|
heap
|
page read and write
|
||
|
247E2A84000
|
heap
|
page read and write
|
||
|
195E2D95000
|
trusted library allocation
|
page read and write
|
||
|
8074D2E000
|
stack
|
page read and write
|
||
|
1A7A0E6B000
|
heap
|
page read and write
|
||
|
195DD7F0000
|
trusted library allocation
|
page read and write
|
||
|
247E2850000
|
heap
|
page read and write
|
||
|
8074CAB000
|
stack
|
page read and write
|
||
|
23453650000
|
heap
|
page read and write
|
||
|
A42E47B000
|
unkown
|
page read and write
|
||
|
25F0DF70000
|
heap
|
page read and write
|
||
|
234537C0000
|
trusted library allocation
|
page read and write
|
||
|
25F0E089000
|
heap
|
page read and write
|
||
|
195DD800000
|
heap
|
page read and write
|
||
|
A42E875000
|
unkown
|
page read and write
|
||
|
195DD878000
|
heap
|
page read and write
|
||
|
2567C425000
|
heap
|
page read and write
|
||
|
646A7FD000
|
stack
|
page read and write
|
||
|
A42DB7F000
|
stack
|
page read and write
|
||
|
247E2A78000
|
heap
|
page read and write
|
||
|
1A7A0E32000
|
heap
|
page read and write
|
||
|
1A7A0E46000
|
heap
|
page read and write
|
||
|
1EE34402000
|
heap
|
page read and write
|
||
|
22F9822E000
|
heap
|
page read and write
|
||
|
220CA7E000
|
stack
|
page read and write
|
||
|
1A7A0E77000
|
heap
|
page read and write
|
||
|
195E2EE0000
|
trusted library allocation
|
page read and write
|
||
|
247E2A5B000
|
heap
|
page read and write
|
||
|
A42DC7B000
|
stack
|
page read and write
|
||
|
25F0E05E000
|
heap
|
page read and write
|
||
|
1A7A0E4B000
|
heap
|
page read and write
|
||
|
234538C0000
|
heap
|
page read and write
|
||
|
195DE118000
|
heap
|
page read and write
|
||
|
2567C43D000
|
heap
|
page read and write
|
||
|
2567C402000
|
heap
|
page read and write
|
||
|
25F0DFD0000
|
heap
|
page read and write
|
||
|
195E3402000
|
heap
|
page read and write
|
||
|
195E3105000
|
heap
|
page read and write
|
||
|
25F0DF60000
|
heap
|
page read and write
|
||
|
27500680000
|
heap
|
page read and write
|
||
|
23453840000
|
heap
|
page read and write
|
||
|
BEA057E000
|
stack
|
page read and write
|
||
|
8F591FF000
|
stack
|
page read and write
|
||
|
619997A000
|
stack
|
page read and write
|
||
|
27500651000
|
heap
|
page read and write
|
||
|
23454100000
|
heap
|
page read and write
|
||
|
A42EB7B000
|
unkown
|
page read and write
|
||
|
BE84ABB000
|
stack
|
page read and write
|
||
|
195E2D98000
|
trusted library allocation
|
page read and write
|
||
|
195DE118000
|
heap
|
page read and write
|
||
|
2567C455000
|
heap
|
page read and write
|
||
|
BEA077B000
|
stack
|
page read and write
|
||
|
195DD913000
|
heap
|
page read and write
|
||
|
195DD88C000
|
heap
|
page read and write
|
||
|
195DD88E000
|
heap
|
page read and write
|
||
|
8F590FE000
|
stack
|
page read and write
|
||
|
195DE19B000
|
heap
|
page read and write
|
||
|
2567C370000
|
heap
|
page read and write
|
||
|
195E311B000
|
heap
|
page read and write
|
||
|
195E30AB000
|
heap
|
page read and write
|
||
|
1A7A0E00000
|
heap
|
page read and write
|
||
|
247E2A3C000
|
heap
|
page read and write
|
||
|
646A8FC000
|
stack
|
page read and write
|
||
|
6199C7F000
|
stack
|
page read and write
|
||
|
1A7A0E32000
|
heap
|
page read and write
|
||
|
22F98040000
|
heap
|
page read and write
|
||
|
A42DDFA000
|
stack
|
page read and write
|
||
|
1A7A0E7A000
|
heap
|
page read and write
|
||
|
BEA03FB000
|
stack
|
page read and write
|
||
|
247E2A00000
|
heap
|
page read and write
|
||
|
1EE34489000
|
heap
|
page read and write
|
||
|
9E62BFD000
|
stack
|
page read and write
|
||
|
9E62AFD000
|
stack
|
page read and write
|
||
|
A42E17F000
|
stack
|
page read and write
|
||
|
247E28B0000
|
heap
|
page read and write
|
||
|
195DE19A000
|
heap
|
page read and write
|
||
|
1A7A0E2E000
|
heap
|
page read and write
|
||
|
A42E77E000
|
unkown
|
page read and write
|
||
|
9E6287E000
|
stack
|
page read and write
|
||
|
25F0E064000
|
heap
|
page read and write
|
||
|
619967D000
|
stack
|
page read and write
|
||
|
195E30FA000
|
heap
|
page read and write
|
||
|
1A7A0E5F000
|
heap
|
page read and write
|
||
|
8F58FFA000
|
stack
|
page read and write
|
||
|
8074DAE000
|
stack
|
page read and write
|
||
|
1A7A0E5E000
|
heap
|
page read and write
|
||
|
1EE34429000
|
heap
|
page read and write
|
||
|
220C55B000
|
stack
|
page read and write
|
||
|
195DD7D1000
|
trusted library allocation
|
page read and write
|
||
|
1A7A0E45000
|
heap
|
page read and write
|
||
|
1A7A0E3A000
|
heap
|
page read and write
|
||
|
23453800000
|
heap
|
page read and write
|
||
|
2567C400000
|
heap
|
page read and write
|
||
|
1EE343B0000
|
heap
|
page read and write
|
||
|
1A7A0E31000
|
heap
|
page read and write
|
||
|
25F0E100000
|
heap
|
page read and write
|
||
|
27500700000
|
heap
|
page read and write
|
||
|
6199DFE000
|
stack
|
page read and write
|
||
|
22F98252000
|
heap
|
page read and write
|
||
|
195E4010000
|
heap
|
page read and write
|
||
|
1EE3443C000
|
heap
|
page read and write
|
||
|
1A7A0E5C000
|
heap
|
page read and write
|
||
|
27500668000
|
heap
|
page read and write
|
||
|
1EE34427000
|
heap
|
page read and write
|
||
|
195DD8A0000
|
heap
|
page read and write
|
||
|
195E310C000
|
heap
|
page read and write
|
||
|
1A7A0E61000
|
heap
|
page read and write
|
||
|
195E30F6000
|
heap
|
page read and write
|
||
|
27500540000
|
heap
|
page read and write
|
||
|
247E2A7A000
|
heap
|
page read and write
|
||
|
195DD760000
|
trusted library allocation
|
page read and write
|
||
|
195E2D90000
|
trusted library allocation
|
page read and write
|
||
|
6199EFF000
|
stack
|
page read and write
|
||
|
6199B7B000
|
stack
|
page read and write
|
||
|
22F9823B000
|
heap
|
page read and write
|
||
|
25F0E05C000
|
heap
|
page read and write
|
||
|
646A2CB000
|
stack
|
page read and write
|
||
|
195DE118000
|
heap
|
page read and write
|
||
|
22F98247000
|
heap
|
page read and write
|
||
|
646ACFE000
|
stack
|
page read and write
|
||
|
195E3105000
|
heap
|
page read and write
|
||
|
195DD6D0000
|
heap
|
page read and write
|
||
|
22F98229000
|
heap
|
page read and write
|
||
|
22F98200000
|
heap
|
page read and write
|
||
|
25F0E113000
|
heap
|
page read and write
|
||
|
1A7A0E66000
|
heap
|
page read and write
|
There are 334 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://brave.com/
|
||
|
https://brave.com/download/
|
||
|
https://play.google.com/store/apps/details?id=com.brave.browser
|
||
|
https://brave.com/linux/
|
||
|
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcA2tEZAAAAAJj7FTYTF9cZ4NL3ShgBCBfkWov0&co=aHR0cHM6Ly9wbGF5Lmdvb2dsZS5jb206NDQz&hl=en&v=gWN_U6xTIPevg0vuq7g1hct0&size=invisible&cb=7ne1x19iyfcl
|
||
|
https://github.com/signalapp/Signal-Desktop/issues/2483#issuecomment-401047201
|
||
|
https://apps.apple.com/ch/app/brave-private-internet-browser/id1052879175?uo=4&mt=8
|