General Info

URL

https://cliqz.com/en/desktop

Full analysis
https://app.any.run/tasks/94b73373-9c6d-4da7-93fd-c4b342f7611a
Verdict
Malicious activity
Analysis date
4/14/2019, 23:02:40
OS:
Windows 7 Professional Service Pack 1 (build: 7601, 32 bit)
Indicators:

ANY.RUN is an interactive service which provides full access to the guest system. Information in this report could be distored by user actions and is provided for user acknowledgement as it is. ANY.RUN does not guarantee maliciousness or safety of the content.

Software environment set and analysis options

Launch configuration

Task duration
120 seconds
Additional time used
60 seconds
Fakenet option
off
Heavy Evaision option
on
MITM proxy
off
Route via Tor
off
Network geolocation
off
Privacy
Public submission
Autoconfirmation of UAC
on

Software preset

  • Internet Explorer 8.0.7601.17514
  • Adobe Acrobat Reader DC MUI (15.023.20070)
  • Adobe Flash Player 26 ActiveX (26.0.0.131)
  • Adobe Flash Player 26 NPAPI (26.0.0.131)
  • Adobe Flash Player 26 PPAPI (26.0.0.131)
  • Adobe Refresh Manager (1.8.0)
  • CCleaner (5.35)
  • FileZilla Client 3.36.0 (3.36.0)
  • Google Chrome (73.0.3683.75)
  • Google Update Helper (1.3.33.23)
  • Java 8 Update 92 (8.0.920.14)
  • Java Auto Updater (2.8.92.14)
  • Microsoft .NET Framework 4.6.1 (4.6.01055)
  • Microsoft Office Access MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Access Setup Metadata MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Excel MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office OneNote MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Outlook MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office PowerPoint MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Professional 2010 (14.0.6029.1000)
  • Microsoft Office Proof (English) 2010 (14.0.6029.1000)
  • Microsoft Office Proof (French) 2010 (14.0.6029.1000)
  • Microsoft Office Proof (Spanish) 2010 (14.0.6029.1000)
  • Microsoft Office Proofing (English) 2010 (14.0.6029.1000)
  • Microsoft Office Publisher MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Shared MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Shared Setup Metadata MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Single Image 2010 (14.0.6029.1000)
  • Microsoft Office Word MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (9.0.30729.6161)
  • Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (10.0.40219)
  • Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (12.0.30501.0)
  • Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (12.0.21005)
  • Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (12.0.21005)
  • Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (14.15.26706.0)
  • Microsoft Visual C++ 2017 x86 Additional Runtime - 14.15.26706 (14.15.26706)
  • Microsoft Visual C++ 2017 x86 Minimum Runtime - 14.15.26706 (14.15.26706)
  • Mozilla Firefox 65.0.2 (x86 en-US) (65.0.2)
  • Notepad++ (32-bit x86) (7.5.1)
  • Opera 12.15 (12.15.1748)
  • Skype version 8.29 (8.29)
  • VLC media player (2.2.6)
  • WinRAR 5.60 (32-bit) (5.60.0)

Hotfixes

  • Client LanguagePack Package
  • Client Refresh LanguagePack Package
  • CodecPack Basic Package
  • Foundation Package
  • IE Troubleshooters Package
  • InternetExplorer Optional Package
  • KB2534111
  • KB2999226
  • KB976902
  • LocalPack AU Package
  • LocalPack CA Package
  • LocalPack GB Package
  • LocalPack US Package
  • LocalPack ZA Package
  • ProfessionalEdition
  • UltimateEdition

Behavior activities

MALICIOUS SUSPICIOUS INFO
Application was dropped or rewritten from another process
  • CliqzInstaller-en.exe (PID: 2968)
  • setup-stub.exe (PID: 2108)
  • setup-stub.exe (PID: 3216)
Loads dropped or rewritten executable
  • setup-stub.exe (PID: 2108)
  • setup-stub.exe (PID: 3216)
Application launched itself
  • setup-stub.exe (PID: 3216)
Executable content was dropped or overwritten
  • setup-stub.exe (PID: 3216)
  • setup-stub.exe (PID: 2108)
  • chrome.exe (PID: 2412)
  • chrome.exe (PID: 1080)
  • CliqzInstaller-en.exe (PID: 2968)
Starts Internet Explorer
  • setup-stub.exe (PID: 3216)
Creates files in the program directory
  • setup-stub.exe (PID: 2108)
Creates files in the user directory
  • iexplore.exe (PID: 2996)
Reads Internet Cache Settings
  • iexplore.exe (PID: 2996)
Reads internet explorer settings
  • iexplore.exe (PID: 2996)
Changes internet zones settings
  • iexplore.exe (PID: 1344)
Application launched itself
  • iexplore.exe (PID: 1344)
  • chrome.exe (PID: 1080)
Dropped object may contain Bitcoin addresses
  • chrome.exe (PID: 2412)
  • CliqzInstaller-en.exe (PID: 2968)

Find more information about signature artifacts and mapping to MITRE ATT&CK™ MATRIX at the full report

Screenshots

Processes

Total processes
52
Monitored processes
19
Malicious processes
4
Suspicious processes
0

Behavior graph

+
drop and start start drop and start chrome.exe chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs cliqzinstaller-en.exe setup-stub.exe setup-stub.exe iexplore.exe iexplore.exe
Specs description
Program did not start
Integrity level elevation
Task сontains an error or was rebooted
Process has crashed
Task contains several apps running
Executable file was dropped
Debug information is available
Process was injected
Network attacks were detected
Application downloaded the executable file
Actions similar to stealing personal data
Behavior similar to exploiting the vulnerability
Inspected object has sucpicious PE structure
File is detected by antivirus software
CPU overrun
RAM overrun
Process starts the services
Process was added to the startup
Behavior similar to spam
Low-level access to the HDD
Probably Tor was used
System was rebooted
Connects to the network
Known threat

Process information

Click at the process to see the details.

PID
1080
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" https://cliqz.com/en/desktop
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
Parent process
––
User
admin
Integrity Level
MEDIUM
Exit code
3221225547
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\ole32.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\netapi32.dll
c:\windows\system32\netutils.dll
c:\windows\system32\srvcli.dll
c:\windows\system32\wkscli.dll
c:\windows\system32\samcli.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\oleacc.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\hid.dll
c:\windows\system32\propsys.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\ncrypt.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\winusb.dll
c:\windows\system32\msi.dll
c:\windows\system32\wevtapi.dll
c:\windows\system32\gpapi.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\dhcpcsvc6.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\mscms.dll
c:\windows\system32\winsta.dll
c:\windows\system32\wlanapi.dll
c:\windows\system32\wlanutil.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wpc.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\samlib.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\firewallapi.dll
c:\windows\system32\kbdus.dll
c:\windows\system32\explorerframe.dll
c:\windows\system32\duser.dll
c:\windows\system32\dui70.dll
c:\windows\system32\windowscodecs.dll
c:\windows\system32\linkinfo.dll
c:\windows\system32\ehstorshell.dll
c:\windows\system32\cscui.dll
c:\windows\system32\cscdll.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\cscapi.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\wship6.dll
c:\windows\system32\ntshrui.dll
c:\windows\system32\slc.dll
c:\windows\system32\imageres.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\bcryptprimitives.dll
c:\windows\system32\imagehlp.dll
c:\program files\winrar\rarext.dll
c:\program files\microsoft office\office14\olkfstub.dll
c:\progra~1\micros~1\office14\mlshext.dll
c:\program files\microsoft office\office14\onfilter.dll
c:\program files\microsoft office\office14\visshe.dll
c:\program files\common files\microsoft shared\office14\msoshext.dll
c:\program files\microsoft office\office14\msohevi.dll
c:\windows\system32\mf.dll
c:\windows\system32\shdocvw.dll
c:\program files\filezilla ftp client\fzshellext.dll
c:\windows\system32\syncui.dll
c:\program files\notepad++\nppshell_06.dll
c:\program files\windows sidebar\sbdrop.dll
c:\windows\system32\stobject.dll
c:\windows\system32\cryptext.dll
c:\windows\system32\colorui.dll
c:\windows\system32\comdlg32.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\wininet.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\winspool.drv
c:\program files\google\chrome\application\73.0.3683.75\chrome_child.dll
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\mssprxy.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\rasapi32.dll
c:\windows\system32\rasman.dll
c:\windows\system32\rtutils.dll
c:\windows\system32\sensapi.dll
c:\windows\system32\rasadhlp.dll
c:\users\admin\downloads\cliqzinstaller-en.exe
c:\windows\system32\sfc.dll
c:\windows\system32\sfc_os.dll
c:\windows\system32\devrtl.dll
c:\windows\system32\mpr.dll

PID
300
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=73.0.3683.75 --initial-client-data=0x7c,0x80,0x84,0x78,0x88,0x6fae0f18,0x6fae0f28,0x6fae0f34
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
MEDIUM
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\cryptbase.dll

PID
3064
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=1208 --on-initialized-event-handle=308 --parent-handle=312 /prefetch:6
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
MEDIUM
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\ole32.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_watcher.dll

PID
852
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=952,16757165573614761929,13464838209277135556,131072 --enable-features=PasswordImport --gpu-preferences=KAAAAAAAAACAAwAAAQAAAAAAAAAAAGAAAAAAAAEAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=8016973629193070172 --mojo-platform-channel-handle=972 --ignored=" --type=renderer " /prefetch:2
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_child.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\dbghelp.dll
c:\windows\system32\comdlg32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\mf.dll
c:\windows\system32\atl.dll
c:\windows\system32\mfplat.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ksuser.dll
c:\windows\system32\msmpeg2vdec.dll
c:\windows\system32\evr.dll
c:\windows\system32\powrprof.dll
c:\windows\system32\slc.dll
c:\windows\system32\sqmapi.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\dxva2.dll
c:\program files\google\chrome\application\73.0.3683.75\d3dcompiler_47.dll
c:\windows\system32\ddraw.dll
c:\windows\system32\dciman32.dll
c:\program files\google\chrome\application\73.0.3683.75\swiftshader\libglesv2.dll
c:\program files\google\chrome\application\73.0.3683.75\swiftshader\libegl.dll

PID
2412
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=952,16757165573614761929,13464838209277135556,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=network --service-request-channel-token=13333574489058329730 --mojo-platform-channel-handle=1480 /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
Parent process
chrome.exe
User
admin
Integrity Level
MEDIUM
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_child.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\dbghelp.dll
c:\windows\system32\comdlg32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\dhcpcsvc6.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\wship6.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\fwpuclnt.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\gpapi.dll
c:\windows\system32\ncrypt.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\bcryptprimitives.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\cryptnet.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\ntmarta.dll

PID
2432
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=952,16757165573614761929,13464838209277135556,131072 --enable-features=PasswordImport --service-pipe-token=14653279280412748734 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=14653279280412748734 --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1920 /prefetch:1
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_child.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\dbghelp.dll
c:\windows\system32\comdlg32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\cryptbase.dll

PID
2584
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=952,16757165573614761929,13464838209277135556,131072 --enable-features=PasswordImport --service-pipe-token=7915464454482220074 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=7915464454482220074 --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2072 /prefetch:1
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_child.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\dbghelp.dll
c:\windows\system32\comdlg32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\cryptbase.dll

PID
1172
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=952,16757165573614761929,13464838209277135556,131072 --enable-features=PasswordImport --service-pipe-token=6819432710453975675 --lang=en-US --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=6819432710453975675 --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2284 /prefetch:1
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_child.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\dbghelp.dll
c:\windows\system32\comdlg32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\cryptbase.dll

PID
2716
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=952,16757165573614761929,13464838209277135556,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=utility --service-request-channel-token=17983102735950941099 --mojo-platform-channel-handle=3084 --ignored=" --type=renderer " /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_child.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\dbghelp.dll
c:\windows\system32\comdlg32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\cryptbase.dll

PID
2748
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=952,16757165573614761929,13464838209277135556,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=utility --service-request-channel-token=10390114739927229211 --mojo-platform-channel-handle=3236 --ignored=" --type=renderer " /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_child.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\dbghelp.dll
c:\windows\system32\comdlg32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\cryptbase.dll

PID
2744
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=952,16757165573614761929,13464838209277135556,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=utility --service-request-channel-token=14641596926845947663 --mojo-platform-channel-handle=2960 --ignored=" --type=renderer " /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_child.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\dbghelp.dll
c:\windows\system32\comdlg32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\cryptbase.dll

PID
2616
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=952,16757165573614761929,13464838209277135556,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=utility --service-request-channel-token=9315799626072554834 --mojo-platform-channel-handle=3320 --ignored=" --type=renderer " /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_child.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\dbghelp.dll
c:\windows\system32\comdlg32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\cryptbase.dll

PID
2464
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=952,16757165573614761929,13464838209277135556,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=utility --service-request-channel-token=14524554936810679715 --mojo-platform-channel-handle=3488 --ignored=" --type=renderer " /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_child.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\dbghelp.dll
c:\windows\system32\comdlg32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\cryptbase.dll

PID
3664
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=952,16757165573614761929,13464838209277135556,131072 --enable-features=PasswordImport --disable-gpu-sandbox --use-gl=disabled --gpu-preferences=KAAAAAAAAACAAwAAAQAAAAAAAAAAAGAAAAAAAAEAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=2224206580000009611 --mojo-platform-channel-handle=3532 /prefetch:2
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
MEDIUM
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_child.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\dbghelp.dll
c:\windows\system32\comdlg32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\mf.dll
c:\windows\system32\atl.dll
c:\windows\system32\mfplat.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ksuser.dll
c:\windows\system32\msmpeg2vdec.dll
c:\windows\system32\evr.dll
c:\windows\system32\powrprof.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\slc.dll
c:\windows\system32\sqmapi.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\dxva2.dll

PID
2968
CMD
"C:\Users\admin\Downloads\CliqzInstaller-en.exe"
Path
C:\Users\admin\Downloads\CliqzInstaller-en.exe
Indicators
Parent process
chrome.exe
User
admin
Integrity Level
MEDIUM
Exit code
0
Version:
Company
Cliqz GmbH
Description
Cliqz Internet
Version
1.25.0
Modules
Image
c:\users\admin\downloads\cliqzinstaller-en.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\user32.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\userenv.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\profapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\propsys.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\clbcatq.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\shlwapi.dll
c:\users\admin\appdata\local\temp\7zs89bf04b0\setup-stub.exe

PID
3216
CMD
.\setup-stub.exe
Path
C:\Users\admin\AppData\Local\Temp\7zS89BF04B0\setup-stub.exe
Indicators
Parent process
CliqzInstaller-en.exe
User
admin
Integrity Level
MEDIUM
Exit code
0
Version:
Company
Cliqz GmbH
Description
Cliqz Installer
Version
1.25.0
Modules
Image
c:\users\admin\appdata\local\temp\7zs89bf04b0\setup-stub.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\propsys.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\version.dll
c:\windows\system32\shfolder.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\shdocvw.dll
c:\users\admin\appdata\local\temp\nsmadd7.tmp\system.dll
c:\users\admin\appdata\local\temp\nsmadd7.tmp\uac.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\mpr.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\psapi.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\program files\internet explorer\iexplore.exe

PID
2108
CMD
"C:\Users\admin\AppData\Local\Temp\7zS89BF04B0\setup-stub.exe" /UAC:30164 /NCRC
Path
C:\Users\admin\AppData\Local\Temp\7zS89BF04B0\setup-stub.exe
Indicators
Parent process
setup-stub.exe
User
admin
Integrity Level
HIGH
Exit code
0
Version:
Company
Cliqz GmbH
Description
Cliqz Installer
Version
1.25.0
Modules
Image
c:\users\admin\appdata\local\temp\7zs89bf04b0\setup-stub.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\propsys.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\version.dll
c:\windows\system32\shfolder.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\shdocvw.dll
c:\users\admin\appdata\local\temp\nsjb336.tmp\system.dll
c:\users\admin\appdata\local\temp\nsjb336.tmp\uac.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\users\admin\appdata\local\temp\nsjb336.tmp\userinfo.dll
c:\users\admin\appdata\local\temp\nsjb336.tmp\cliqzhelper.dll
c:\windows\system32\psapi.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\riched20.dll
c:\users\admin\appdata\local\temp\nsjb336.tmp\nsdialogs.dll
c:\windows\system32\comdlg32.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\asycfilt.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\explorerframe.dll
c:\windows\system32\duser.dll
c:\windows\system32\dui70.dll
c:\users\admin\appdata\local\temp\nsjb336.tmp\inetbgdl.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\normaliz.dll
c:\windows\system32\rasapi32.dll
c:\windows\system32\rasman.dll
c:\windows\system32\rtutils.dll
c:\windows\system32\sensapi.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\schannel.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\wship6.dll
c:\windows\system32\fwpuclnt.dll
c:\windows\system32\credssp.dll

PID
1344
CMD
"C:\Program Files\Internet Explorer\iexplore.exe" -nohome
Path
C:\Program Files\Internet Explorer\iexplore.exe
Indicators
Parent process
setup-stub.exe
User
admin
Integrity Level
MEDIUM
Exit code
1
Version:
Company
Microsoft Corporation
Description
Internet Explorer
Version
8.00.7600.16385 (win7_rtm.090713-1255)
Modules
Image
c:\program files\internet explorer\iexplore.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\shell32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\psapi.dll
c:\windows\system32\oleacc.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\profapi.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\comdlg32.dll
c:\windows\system32\cryptbase.dll
c:\program files\internet explorer\sqmapi.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\rasapi32.dll
c:\windows\system32\rasman.dll
c:\windows\system32\rtutils.dll
c:\windows\system32\sensapi.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\ieui.dll
c:\windows\system32\msimg32.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\clbcatq.dll
c:\program files\internet explorer\ieproxy.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\url.dll
c:\windows\system32\version.dll
c:\windows\system32\xmllite.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\propsys.dll
c:\windows\system32\explorerframe.dll
c:\windows\system32\duser.dll
c:\windows\system32\dui70.dll
c:\windows\system32\msfeeds.dll
c:\windows\system32\sxs.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\normaliz.dll
c:\windows\system32\wship6.dll
c:\windows\system32\fwpuclnt.dll
c:\windows\system32\mlang.dll
c:\windows\system32\userenv.dll
c:\windows\system32\linkinfo.dll

PID
2996
CMD
"C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:1344 CREDAT:71937
Path
C:\Program Files\Internet Explorer\iexplore.exe
Indicators
Parent process
iexplore.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Microsoft Corporation
Description
Internet Explorer
Version
8.00.7600.16385 (win7_rtm.090713-1255)
Modules
Image
c:\program files\internet explorer\iexplore.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\shell32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\psapi.dll
c:\windows\system32\oleacc.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\comdlg32.dll
c:\program files\internet explorer\ieshims.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\rpcrtremote.dll
c:\program files\internet explorer\sqmapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\propsys.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\profapi.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\rsaenh.dll
c:\program files\internet explorer\ieproxy.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\mlang.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\apphelp.dll
c:\program files\java\jre1.8.0_92\bin\ssv.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
c:\windows\system32\version.dll
c:\progra~1\micros~1\office14\urlredir.dll
c:\windows\system32\secur32.dll
c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
c:\progra~1\micros~1\office14\msohev.dll
c:\program files\java\jre1.8.0_92\bin\jp2ssv.dll
c:\program files\java\jre1.8.0_92\bin\msvcr100.dll
c:\program files\java\jre1.8.0_92\bin\deploy.dll
c:\windows\system32\imagehlp.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\sxs.dll
c:\windows\system32\rasapi32.dll
c:\windows\system32\rasman.dll
c:\windows\system32\rtutils.dll
c:\windows\system32\sensapi.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\normaliz.dll
c:\windows\system32\userenv.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\schannel.dll
c:\windows\system32\wship6.dll
c:\windows\system32\fwpuclnt.dll
c:\windows\system32\credssp.dll
c:\windows\system32\mshtml.dll
c:\windows\system32\msls31.dll
c:\windows\system32\feclient.dll
c:\windows\system32\iepeers.dll
c:\windows\system32\winspool.drv
c:\windows\system32\msimtf.dll
c:\windows\system32\jscript.dll
c:\windows\system32\imgutil.dll
c:\windows\system32\pngfilt.dll
c:\windows\system32\msimg32.dll

Registry activity

Total events
1561
Read events
1432
Write events
127
Delete events
2

Modification events

PID
Process
Operation
Key
Name
Value
3064
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\BrowserExitCodes
1080-13199749375338750
259
3064
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\BrowserExitCodes
1080-13199749375338750
0
2412
chrome.exe
write
HKEY_CLASSES_ROOT\Local Settings\MuiCache\62\52C64B7E
LanguageList
en-US
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
failed_count
0
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
2
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
01000000
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
1
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
dr
1
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome
UsageStatsInSample
0
1080
chrome.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}
usagestats
0
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
metricsid
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
metricsid_installdate
0
1080
chrome.exe
delete key
HKEY_CURRENT_USER\Software\Google\Chrome\BrowserExitCodes
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
metricsid_enableddate
0
1080
chrome.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\_NumAccounts
aggregate
sum()
1080
chrome.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\_NumAccounts
S-1-5-21-1302019708-1500728564-335382590-1000
1
1080
chrome.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\_NumSignedIn
aggregate
sum()
1080
chrome.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\_NumSignedIn
S-1-5-21-1302019708-1500728564-335382590-1000
0
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
user_experience_metrics.stability.exited_cleanly
0
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
lastrun
13199749376588750
1080
chrome.exe
write
HKEY_CLASSES_ROOT\Local Settings\MuiCache\62\52C64B7E
LanguageList
en-US
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
UNCAsIntranet
0
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
AutoDetect
1
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
ProxyEnable
0
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
SavedLegacySettings
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
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Discardable\PostSetup\Component Categories\{56FFCC30-D398-11D0-B2AE-00A0C908FA49}\Enum
Implementing
1C00000001000000E307040000000E00150003000A00FF0100000000
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Discardable\PostSetup\Component Categories\{56FFCC30-D398-11D0-B2AE-00A0C908FA49}\Enum
Implementing
1C00000001000000E307040000000E00150003000A00030200000000
1080
chrome.exe
delete key
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
aapocclcgogkmnckokdopfmhonfmgoek
7464C14A5FE3ED0FE82E86BE4B0C8967B3C909EF6BF905E6EEF489C6956DB091
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
ahfgeienlihckogmohjhadlkjgocpleb
15B1C3FE35F29528448F36A72A4DFBC58A8083C7190559D25865779166D220A2
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
aohghmighlieiainnegkcijnfilokake
587423D3A1109B3FF4D00805153FAFD278CC612F1C5A7F75E3AE4D6A8C91D1A3
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
apdfllckaahabafndbhieahigkjlhalf
F1311A354261983B44E2C8ED03A4CACBFBBC78C17D24E1CCE908858F2DAFDAD9
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
blpcfgokakmgnkcojhhkbfbldkacnbeo
5F6EAC0A4D48FE40D5110EF2FA55CEBC6C7DEDFD38E8E00EBD8EA12A895B2822
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
felcaaldnbdncclmgdcncolpebgiejap
33299FC96015823BEC6F7864E2839BCE6A1D2DBFB4147DA4C741896C3F11EB48
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
gfdkimpbcpahaombhbimeihdjnejgicl
D6B079666F209503A09486C70AC09307652A0F7F783166A999B27C99D0DA79E2
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
ghbmnnjooekpmoecnnnilnnbdlolhkhi
BFAE97A5114ADBB3CD410E832D36F920F1A1BE80C46FA1A7F631278616E3A517
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
kmendfapggjehodndflmmgagdbamhnfd
00175B8120231631976CA8B862A3416996C9373BA3D289F0619DDA992973DDFA
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
mfehgcgbbipciphmccgaenjidiccnmng
63355C14E8C7DF9A075F2EDDEA6F2807DC8166B83F96F4C975B9B6554C6324D7
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
mhjfbmdgcfjbbpaeojofohoefgiehjai
0E265BFED6F1C7D5F0A9BD790C50BB30E78E959631D51EEBB8BB0DE73E65763C
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
neajdppkdcdipfabeoofebfddakdcjhd
04A45240BDA55E8777FA04357712CA6DD942253A21323E4C7D3CCF769B34BFED
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nkeimhogjdpnpccoofpliimaahmaaome
EFA63CBF982B82CF44E63E567FF3BB95FE3F51570D9A0CED8846E77B13199169
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nmmhkkegccagdldgiimedpiccmgmieda
F901569BBA57A3487B50B223F9B4B9EFC3633EDBB9FB79D413F9C40F61FEFAA1
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
pjkljhegncpnkpknbcohdijeoejaedia
369E4576530A9312910660CE18E3AA541638020DE4E0A68CA3DDCDF4D0364729
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
pkedcjkdefgpdelpbcmbmeomcjbeemfm
7949624DF21B1987A4F63891B77D9FECF0C26126DEC20050E92DBB035F3116FE
1080
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
user_experience_metrics.stability.exited_cleanly
1
2108
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Cliqz
CliqzInstallerTest
Write Test
2108
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Cliqz
CliqzBrandInfo
pk_campaign=web0003
2108
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Cliqz
CliqzBrandInfoTime
1555275796
2108
setup-stub.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
UNCAsIntranet
0
2108
setup-stub.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
AutoDetect
1
2108
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASAPI32
EnableFileTracing
0
2108
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASAPI32
EnableConsoleTracing
0
2108
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASAPI32
FileTracingMask
4294901760
2108
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASAPI32
ConsoleTracingMask
4294901760
2108
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASAPI32
MaxFileSize
1048576
2108
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASAPI32
FileDirectory
%windir%\tracing
2108
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASMANCS
EnableFileTracing
0
2108
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASMANCS
EnableConsoleTracing
0
2108
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASMANCS
FileTracingMask
4294901760
2108
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASMANCS
ConsoleTracingMask
4294901760
2108
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASMANCS
MaxFileSize
1048576
2108
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASMANCS
FileDirectory
%windir%\tracing
2108
setup-stub.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
ProxyEnable
0
2108
setup-stub.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
SavedLegacySettings
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
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main
CompatibilityFlags
0
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
UNCAsIntranet
0
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
AutoDetect
1
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones
SecuritySafe
1
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
ProxyEnable
0
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
SavedLegacySettings
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
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Recovery\Active
{CC509F5E-5EF8-11E9-B63D-5254004A04AF}
0
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2670000A-7350-4F3C-8081-5663EE0C6C49}\iexplore
Type
4
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2670000A-7350-4F3C-8081-5663EE0C6C49}\iexplore
Count
1
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2670000A-7350-4F3C-8081-5663EE0C6C49}\iexplore
Time
E307040000000E00150003003100F002
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}\iexplore
Type
4
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}\iexplore
Count
1
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}\iexplore
Time
E307040000000E00150003003100F002
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main
FullScreen
no
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main
Window_Placement
2C0000000000000001000000FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF20000000200000004003000078020000
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Favorites\Links
Order
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
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore
Type
3
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore
Count
1
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore
Time
E307040000000E001500030032001200
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore
Type
3
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore
Count
1
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore
Time
E307040000000E001500030032005000
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore
Type
3
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore
Count
1
1344
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore
Time
E307040000000E00150003003200FC00

Files activity

Executable files
14
Suspicious files
71
Text files
177
Unknown types
20

Dropped files

PID
Process
Filename
Type
1080
chrome.exe
C:\Users\admin\Downloads\b7c9cf2d-ccb9-45a1-a1d5-0d06d97b49e9.tmp
executable
MD5: 26777bbe0e92cb1df07ef8722c00c198
SHA256: a6a0f133dea773a88c245d5fa40c31033d7c465d2f594999576ecacd20516c5c
2108
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsjB336.tmp\CliqzHelper.dll
executable
MD5: 1bc196d6e731115924a5ba2c1bbfb9e5
SHA256: 2261cace6f0573548c0a9d41ababa81c6d711fe3f1a1afa6af42adb16f17335c
3216
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsmADD7.tmp\System.dll
executable
MD5: 17ed1c86bd67e78ade4712be48a7d2bd
SHA256: bd046e6497b304e4ea4ab102cab2b1f94ce09bde0eebba4c59942a732679e4eb
2968
CliqzInstaller-en.exe
C:\Users\admin\AppData\Local\Temp\7zS89BF04B0\setup-stub.exe
executable
MD5: 309148e41751e749a8ece36da6fed226
SHA256: ae303e736fe457c3687e8b4b294f6d857ecd5c60dfe52af85c0ac1852d367a43
1080
chrome.exe
C:\Users\admin\Downloads\CliqzInstaller-en.exe
executable
MD5: f198c34e005eefa337d2bc012f05414e
SHA256: 195074c1d80a2bbcfa91e0778d91dfb8a669d5f1aee75f4c7fedcfbcdf60d87b
2108
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsjB336.tmp\System.dll
executable
MD5: 17ed1c86bd67e78ade4712be48a7d2bd
SHA256: bd046e6497b304e4ea4ab102cab2b1f94ce09bde0eebba4c59942a732679e4eb
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00001d
executable
MD5: f198c34e005eefa337d2bc012f05414e
SHA256: 195074c1d80a2bbcfa91e0778d91dfb8a669d5f1aee75f4c7fedcfbcdf60d87b
2108
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsjB336.tmp\nsDialogs.dll
executable
MD5: 42b064366f780c1f298fa3cb3aeae260
SHA256: c13104552b8b553159f50f6e2ca45114493397a6fa4bf2cbb960c4a2bbd349ab
1080
chrome.exe
C:\Users\admin\Downloads\Unconfirmed 59058.crdownload
executable
MD5: 425651858e0ada792c1d341736d39a03
SHA256: 03094c8c934faf68ce5ac67b8bd73b28d589d36c322431a182617cd17c092764
2108
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsjB336.tmp\InetBgDL.dll
executable
MD5: 73a0bec837004bc5ae5cd0a5b0d3bcf8
SHA256: 0dd38281a824298100b2bc89ee5b8a5c9cd9ec7a3b051dff42037a891fa7c534
3216
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsmADD7.tmp\UAC.dll
executable
MD5: 113c5f02686d865bc9e8332350274fd1
SHA256: 0d21041a1b5cd9f9968fc1d457c78a802c9c5a23f375327e833501b65bcd095d
2108
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsjB336.tmp\UAC.dll
executable
MD5: 113c5f02686d865bc9e8332350274fd1
SHA256: 0d21041a1b5cd9f9968fc1d457c78a802c9c5a23f375327e833501b65bcd095d
2108
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsjB336.tmp\UserInfo.dll
executable
MD5: 1b446b36f5b4022d50ffdc0cf567b24a
SHA256: 2862c7bc7f11715cebdea003564a0d70bf42b73451e2b672110e1392ec392922
1080
chrome.exe
C:\Users\admin\Downloads\Unconfirmed 59058.crdownload
executable
MD5: f198c34e005eefa337d2bc012f05414e
SHA256: 195074c1d80a2bbcfa91e0778d91dfb8a669d5f1aee75f4c7fedcfbcdf60d87b
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\ko\messages.json
––
MD5:  ––
SHA256:  ––
2996
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0W30U4O4\favcenter[1]
image
MD5: 25d76ee5fb5b890f2cc022d94a42fe19
SHA256: 07d07a467e4988d3c377acd6dc9e53abca6b64e8fbf70f6be19d795a1619289b
2996
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0W30U4O4\httpErrorPagesScripts[1]
text
MD5: e7ca76a3c9ee0564471671d500e3f0f3
SHA256: 58268ca71a28973b756a48bbd7c9dc2f6b87b62ae343e582ce067c725275b63c
2996
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\D6Q5F1RA\noConnect[1]
image
MD5: 3cb8faccd5de434d415ab75c17e8fd86
SHA256: 6976c426e3ac66d66303c114b22b2b41109a7de648ba55ffc3e5a53bd0db09e7
2996
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MB1RSFJ3\errorPageStrings[1]
text
MD5: 1a0563f7fb85a678771450b131ed66fd
SHA256: eb5678de9d8f29ca6893d4e6ca79bd5ab4f312813820fe4997b009a2b1a1654c
2996
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\D9D0CWNU\ErrorPageTemplate[1]
text
MD5: f4fe1cb77e758e1ba56b8a8ec20417c5
SHA256: 8d018639281b33da8eb3ce0b21d11e1d414e59024c3689f92be8904eb5779b5f
2996
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\D6Q5F1RA\dnserror[1]
html
MD5: 68e03ed57ec741a4afbbcd11fab1bdbe
SHA256: 1ff3334c3eb27033f8f37029fd72f648edd4551fce85fc1f5159feaea1439630
2108
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\~DF6C01623045DB3C3B.TMP
––
MD5:  ––
SHA256:  ––
1344
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H6QNMHE9\favicon[1].png
image
MD5: 9fb559a691078558e77d6848202f6541
SHA256: 6d8a01dc7647bc218d003b58fe04049e24a9359900b7e0cebae76edf85b8b914
1344
iexplore.exe
C:\Users\admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
––
MD5:  ––
SHA256:  ––
1344
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H6QNMHE9\favicon[1].ico
––
MD5:  ––
SHA256:  ––
2996
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\index.dat
dat
MD5: 2a92636918775e1578a73cf26a2ffcf3
SHA256: d57ad5d59a38a1a8a021b74eba651da5ecb6082ff4912d5f63d8ebc5fc660660
2996
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MB1RSFJ3\desktop.ini
ini
MD5: 4a3deb274bb5f0212c2419d3d8d08612
SHA256: 2842973d15a14323e08598be1dfb87e54bf88a76be8c7bc94c56b079446edf38
2996
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0W30U4O4\desktop.ini
ini
MD5: 4a3deb274bb5f0212c2419d3d8d08612
SHA256: 2842973d15a14323e08598be1dfb87e54bf88a76be8c7bc94c56b079446edf38
1344
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Feeds Cache\desktop.ini
ini
MD5: 4a3deb274bb5f0212c2419d3d8d08612
SHA256: 2842973d15a14323e08598be1dfb87e54bf88a76be8c7bc94c56b079446edf38
2996
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\D9D0CWNU\desktop.ini
ini
MD5: 4a3deb274bb5f0212c2419d3d8d08612
SHA256: 2842973d15a14323e08598be1dfb87e54bf88a76be8c7bc94c56b079446edf38
2996
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\D6Q5F1RA\desktop.ini
ini
MD5: 4a3deb274bb5f0212c2419d3d8d08612
SHA256: 2842973d15a14323e08598be1dfb87e54bf88a76be8c7bc94c56b079446edf38
2996
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\desktop.ini
ini
MD5: 4a3deb274bb5f0212c2419d3d8d08612
SHA256: 2842973d15a14323e08598be1dfb87e54bf88a76be8c7bc94c56b079446edf38
2996
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\desktop.ini
ini
MD5: 4a3deb274bb5f0212c2419d3d8d08612
SHA256: 2842973d15a14323e08598be1dfb87e54bf88a76be8c7bc94c56b079446edf38
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\chrome_shutdown_ms.txt
text
MD5: be501e4a25be66ec967d36ebadbb5d86
SHA256: e2eed454e2115520576b0086fd5eedc0be12371b7eee831ff2214600c95d26d5
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_1
binary
MD5: f50f89a0a91564d0b8a211f8921aa7de
SHA256: b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cookies
sqlite
MD5: e61e71b5be031bc6ef6402bf6040e94e
SHA256: 795aa3fa23740c5062912f82fab56d52ea53b2937aa566be3df95f1be829ff3e
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State
text
MD5: 6411e9df7993e55e36051dcb5fe641f2
SHA256: 39838a3842d2cd20fd9bbb532f4019cc2137b7a9b15c2d38824309e3f10311fa
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State~RF10c0a2.TMP
text
MD5: 6411e9df7993e55e36051dcb5fe641f2
SHA256: 39838a3842d2cd20fd9bbb532f4019cc2137b7a9b15c2d38824309e3f10311fa
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity
text
MD5: d2f40da8d5e43214adc9035ea9470dc3
SHA256: 218b45d98d6fc477e69fb8e85b8d4106cc8ea89c828b84310ea3b9800a3151cd
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
––
MD5:  ––
SHA256:  ––
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\c3ad4fcb-154e-42de-9024-a69144dd9469.tmp
––
MD5:  ––
SHA256:  ––
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2
binary
MD5: 8ce080de48216d0a9c71ee4bd4105130
SHA256: f2a4277e83bb8c246194425cf5bddd6b33e5d0dd3c9a249d477f22fe4ff775c8
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
binary
MD5: aba3e58204fa60092d3f8ef926b62dd8
SHA256: 186b40b7324c42e50480c4daeba6e674a6fa6a790f9edb66599fafd8287f0218
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
binary
MD5: 3418d64fc0df3ab8bdd54cd5f628473f
SHA256: 15349f870c3e37bb351f94d4775a9a0b34175ac04aa785e89de548ad85cb86db
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
text
MD5: 49d117cc0de4bfd2133ae9edfc2149a5
SHA256: 81ec21e0c1da070db724d8d1ff1fe36823375e9310777b78ba79d72b67d10697
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity~RF10c093.TMP
text
MD5: d2f40da8d5e43214adc9035ea9470dc3
SHA256: 218b45d98d6fc477e69fb8e85b8d4106cc8ea89c828b84310ea3b9800a3151cd
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000018
binary
MD5: dc50999a09b1e2f6e9350855136b865e
SHA256: f759b718dac41a2b27aca56179793c7063060dd8dc1bc051948866503c275b6f
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\MANIFEST-000002
binary
MD5: 22bf0e81636b1b45051b138f48b3d148
SHA256: e292f241daafc3df90f3e2d339c61c6e2787a0d0739aac764e1ea9bb8544ee97
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
binary
MD5: ea95679221eafeab8dfe105e6688a7b5
SHA256: 69d220e04be08c30ed0ffe2029d95e405e58abe9bedb5e74fef12f49d4cf47b0
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
text
MD5: 388f0358bc80d3849a6db7ec81959404
SHA256: c820420ae5af57461ee03f44bebd834e1c2e091a8a5e67b37dfb896d878e899e
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
text
MD5: 8c72512fe54b620be14c142739e5cb22
SHA256: 7b34fee5c5b6b7a3260da2626025f354d20dd4efe6761b96de3d5eb72c7621f5
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
text
MD5: de3f422d3340d489166c8a7ae96f929f
SHA256: 727201ad5047e41d24edbc9be9c8009b236c6c52f2db12c5465a5f7c8085aeb0
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
binary
MD5: ea8acd7197375079e60ea039783c3a3f
SHA256: 980db72186092dd716faa77986c4e6963d41e30be8ba38f7243b28d7bb6fe61e
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index~RF10c093.TMP
binary
MD5: ea95679221eafeab8dfe105e6688a7b5
SHA256: 69d220e04be08c30ed0ffe2029d95e405e58abe9bedb5e74fef12f49d4cf47b0
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Local State~RF10c093.TMP
text
MD5: 7380de9f8589ff264ec9ffe1187732ab
SHA256: 18d65b84453630b283c8fe56b7c8a8cde32f7773f6aa3714e3bdeac78513729e
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\LOG
text
MD5: 4f24e08fb1273185f80ef018716658d0
SHA256: d273719c7b4224a75ef5909bfdaf8cab5a4cfcb7f8f1c3a69570127e25b02e66
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor
sqlite
MD5: d5a38ff34170edfcd7b25fb782d54861
SHA256: 405ac0ee04ba36a174f79e9005e16b46d1691ad9cf05a5d951c8c18d5ce66db5
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
binary
MD5: e188725433ac34f12e2b8ab37cce1dfc
SHA256: 0c68040e32a8873769882307c12ee40190c10c50a96cfc0523d54f227a9019c0
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\000003.log
binary
MD5: 40d357e8e90e7fe933336c4cd051641c
SHA256: e1975187bdb2bf41ad7cc73ce4e5bf2e603101a93f65c58c9f5bebeaea9114b1
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF10c093.TMP
text
MD5: 8c72512fe54b620be14c142739e5cb22
SHA256: 7b34fee5c5b6b7a3260da2626025f354d20dd4efe6761b96de3d5eb72c7621f5
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\4c38a53a-3603-4343-84d3-387aa6b3f6ee.tmp
––
MD5:  ––
SHA256:  ––
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\27736d72-ac28-4d9f-b642-891e5753098c.tmp
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\c5edeee3-d603-4ab9-9a47-a419fb431b7a.tmp
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Local State
text
MD5: 7380de9f8589ff264ec9ffe1187732ab
SHA256: 18d65b84453630b283c8fe56b7c8a8cde32f7773f6aa3714e3bdeac78513729e
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
text
MD5: 4b1dc3dcab93a9d4df64b35b988155a5
SHA256: 0c555b7a114b00e064c50c9de592f4de2f3547c647a29583d75402135f5e13e4
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\History
sqlite
MD5: a036014e717ed56a96c31e1555b72440
SHA256: 017f3d654549569ecbf8f46edac5fadb6da9345c2c3ce3163ba9d48178a25abf
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Login Data
sqlite
MD5: 89c00a8e4f5230432acea5e752ed1170
SHA256: 23550ad3798aff7c3fa2b3b06f807ff63af264f257945a8525ccaa6c07ac4bfe
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Top Sites
sqlite
MD5: ce3615469d3c267d58692854cdfd2fe1
SHA256: 5d1274b58203d224625ef41c7d560835a9bd45415c60a87b0b2d1b3ca06ca794
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Visited Links
binary
MD5: f20131fa84962208de3b25f9c1d4755b
SHA256: f026321b6294609423aa76b3f2086bc6271c756aab3b167ac6e5d90eb55bd7a2
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Local State~RF10c083.TMP
text
MD5: 7380de9f8589ff264ec9ffe1187732ab
SHA256: 18d65b84453630b283c8fe56b7c8a8cde32f7773f6aa3714e3bdeac78513729e
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies
sqlite
MD5: 9c149b78176fbf4928dd4269af232a2c
SHA256: fdba4fcfbb7918f2e295669c6dd3ce00718db3c0027fb3d74ee581a5b81892e8
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
text
MD5: 4cde6ee85c81d14d1bad7e2ad35ad968
SHA256: 519d1239f7d3286a72c4a9963b08d1c5544735674a7d396a48a0ab756e7eab01
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Web Data
sqlite
MD5: 7e3c1d082ac38e9acb3ee1f77a1b0175
SHA256: 33e0bc91aa5158664287cad7adff0f546291ce2917235c061dea11297d43f38e
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Favicons
sqlite
MD5: 0e15f522f4ee1aad24e901761c011a60
SHA256: 1a1dbf17a8942f3b11ced391b0b5c68697f48fd7d6dc54e87286b5365fd56d60
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\000003.log
binary
MD5: e69ab6cc3c7a4fc6bdb1cf810d05f4c5
SHA256: b7e2ff385db18cdf41e21aec2f325e282b31b1cc2d2098716ce226cc1cf5abd5
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
text
MD5: 59f8a00482d48fea72eefe5a0206b238
SHA256: abc310f35bc8d1c01367c4e3ba1d079917aad71ff3c0fefe9f0390de3f92fb75
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
text
MD5: 9654f08086ae2fcd4bbbcb0997cd23ad
SHA256: d5ef8469d3eef131f84d00aff968ed9dedad206bb008f2697a1b18238ea017b7
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
binary
MD5: 683427c8c1593e21c947917f2c26a011
SHA256: ea13dbff86d32e287cd01fe1e9115b67c11eaaed189a9a44047136b53b4d615d
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies-journal
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\History-journal
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Login Data-journal
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\579c3ca2-72a6-4dc2-ae7e-28d4fa07545d.tmp
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Top Sites-journal
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Current Session
binary
MD5: 8f4dfb7fb46bdab623d7e4e7b1df1c1f
SHA256: e73e0ca8434cde6c487aaac34f96582441471cdfe1c5a6d556dbb548af374597
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Local State
text
MD5: 85f52d7a87b3c8af3cc58d585cf26c4d
SHA256: ef0ff9c3ce0f0d8770b713fcdebddd3b98b1ad2192abbb25b9951b4065b5eae1
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Local State~RF10b661.TMP
text
MD5: 85f52d7a87b3c8af3cc58d585cf26c4d
SHA256: ef0ff9c3ce0f0d8770b713fcdebddd3b98b1ad2192abbb25b9951b4065b5eae1
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\6a76c9ce-f5e7-4ab0-bb2a-f5a0fc5fef04.tmp
––
MD5:  ––
SHA256:  ––
2996
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\History\Low\History.IE5\index.dat
dat
MD5: d7a950fefd60dbaa01df2d85fefb3862
SHA256: 75d0b1743f61b76a35b1fedd32378837805de58d79fa950cb6e8164bfa72073a
1344
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Internet Explorer\Recovery\Active\RecoveryStore.{CC509F5E-5EF8-11E9-B63D-5254004A04AF}.dat
––
MD5:  ––
SHA256:  ––
1344
iexplore.exe
C:\Users\admin\AppData\Local\Temp\~DF10CAD7D1CD26FE82.TMP
––
MD5:  ––
SHA256:  ––
2108
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsjB336.tmp\artboard5.bmp
image
MD5: 45c5761d7a154e5e7990fa5484175d47
SHA256: 3b388267db9994c7d9b68ba08b663d10870bd48d01161f6834a38c2edc530adb
2996
iexplore.exe
C:\Users\admin\AppData\Local\Temp\Low\JavaDeployReg.log
text
MD5: bcd8a8c509c5b31e52ffc25662cb35d4
SHA256: 78aba6034b801a37c97b74c7ccbadb0d2bf535acd09f1a790b4d136afb06e4d4
2108
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsjB336.tmp\cliqzlogo_2x.gif
image
MD5: d5eb07ab3d7bb10231edfff2f4624746
SHA256: 416748f27fef01668da0cc15078b323693385876e3ac1a0252490f012f28fbd9
2108
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsjB336.tmp\artboard3.bmp
image
MD5: 03ecdce1c458ab581d04666bd24202d1
SHA256: b5e7982fd20377b4937cf96eabfef9f6020754904d13389c11460a70bca83afd
2108
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsjB336.tmp\artboard4.bmp
image
MD5: cd5e1a81b305f232df22f6a837faf326
SHA256: 2380a273560c508ce6a3b20dec9d8581115ede6058a5eff946cd8f500e7f590b
2108
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsjB336.tmp\cliqzlogo.gif
image
MD5: 061421d732d4bb776970817fa0762d4a
SHA256: d2afd78595233d2fb752887ae06b22d77a8e5bd459bd8ac3acb7a85cec1e9689
2108
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsjB336.tmp\artboard2.bmp
image
MD5: 922853ede4bfe38e0d144ec144eb72ee
SHA256: 370f2f88512cb90994a3d144562d8cdb3992206163ae098ccd0ada107399f1bc
2108
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsjB336.tmp\artboard1.bmp
image
MD5: b78a5d4e5878402573bc0d06313df7de
SHA256: c85d3decd6621a7ac8b82535974b1ccbb7f5dba7bddb021336d4ec0b2f52e75c
1344
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Internet Explorer\Recovery\Active\{CC509F5F-5EF8-11E9-B63D-5254004A04AF}.dat
––
MD5:  ––
SHA256:  ––
1344
iexplore.exe
C:\Users\admin\AppData\Local\Temp\~DF605DC1955EED9CFF.TMP
––
MD5:  ––
SHA256:  ––
1344
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Internet Explorer\Recovery\Last Active\{CC509F61-5EF8-11E9-B63D-5254004A04AF}.dat
binary
MD5: a77ddf8ead841415226ea8cac654dee6
SHA256: 2a24aca24707a5938f41e4a342550585f8b96389845f03fac2cb60c3b2b6c69d
1344
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Internet Explorer\Recovery\Last Active\RecoveryStore.{CC509F60-5EF8-11E9-B63D-5254004A04AF}.dat
binary
MD5: 6efef5fd0cffac3d11e48f42f2e0e8b0
SHA256: d8e665ab15cab42f02f61e390156fb2228bee3f5a683c20a678c5588e01aa73c
1344
iexplore.exe
C:\Users\admin\AppData\Local\Temp\~DF0F4CED28A7C4576D.TMP
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
text
MD5: 93b29e24da45434b9a832d42387342d5
SHA256: e82c748bf501dab723c5fdaf5c7146db221c3e4f1b10a4b07288633dc20a661f
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences~RF10a4cd.TMP
text
MD5: 93b29e24da45434b9a832d42387342d5
SHA256: e82c748bf501dab723c5fdaf5c7146db221c3e4f1b10a4b07288633dc20a661f
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\ee4361b8-47e4-4fea-ba1b-a40db07ce112.tmp
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\DownloadMetadata
binary
MD5: 0dc9c3a7d3c9fb07d0082f668998ee00
SHA256: 43d07b9d2773c92f24867cd5d958d2a97bd64ca9a5ac682ecffd57b6b7a9c974
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\DownloadMetadata~RF10a308.TMP
binary
MD5: 0dc9c3a7d3c9fb07d0082f668998ee00
SHA256: 43d07b9d2773c92f24867cd5d958d2a97bd64ca9a5ac682ecffd57b6b7a9c974
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\95e0c1de-6120-47c1-9701-72a83afeb6bf.tmp
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\DownloadMetadata
binary
MD5: 490e1a88997ff95eaed3e8fe6d2470f2
SHA256: 0828d460d868871235f8449bb6e04d2c751eb182d613b4b9ce6881bb106546c7
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\c4a2df4c-66ff-422f-901a-23ca5ce8cd5c.tmp
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\Downloads\CliqzInstaller-en.exe:Zone.Identifier
text
MD5: fbccf14d504b7b2dbcb5a5bda75bd93b
SHA256: eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00001f
image
MD5: d2b0dea9771c77849fe68fbc64d700b7
SHA256: 58181c17dbcbdefbfed5eb73c518d20f7a7fd35780c4860394d43fc9503bf51d
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00001e
image
MD5: 5d7a4bee259c56c9763b8bdb455a16e9
SHA256: b42b65180a8e35d8e911590a9046e5f1834f3b4d37217c1df63ef4bb04544057
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2eb09f7e7e0001ba_0
binary
MD5: e27780674cf4785b8493ff79bfb5e6e1
SHA256: 472f7accd42ad9733829ef49249db0ceee85621c102432e1d81eaf99b912b4e3
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c672f78ec66d2af9_0
binary
MD5: 14d849daf65d87fd4c97b08d1e4bd8d3
SHA256: 8f5193f27f8ee2e537cc45b5922cf3b5f4a77b28d09ee69aac39b322b7dc62a2
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d68eccd9c6262fd5_0
binary
MD5: ec046019bd9effc5443ab9aa070e59a7
SHA256: 0e4d3936130ab92a9850e1653c292880717929bee402e155b0212e563f7d16f2
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\32d76c2491211a90_0
binary
MD5: 98758686a657e59c3076b33bf747fd42
SHA256: 7b7b584851d804fb41411bce9b42295336183841b2333f94d6ba90485e2f5ed6
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\27f48f40be7369e8_0
binary
MD5: dbd4d06784cd1a2b5ec0933cc2494516
SHA256: e209587175f46f4df25882876914b46c85e698af4285fdb613c9259f86f84e5f
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0c364944a7d213eb_0
binary
MD5: 17fd005a9c6ba848aa12566ed4965ea1
SHA256: 49f451d75a5938e960eb2627d1a9d21c246d3f27fdc9c46f99a359c5d7d006ec
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\33c65dd48f484a9d_0
binary
MD5: 4855e296e19b2732bc9cfcae0d575125
SHA256: 122f3b58c7bed16e79dc085b44d927018ab0961ccca692eba94cab576c818ac0
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0cf278fc503275f4_0
binary
MD5: b869f131881c6aa6dfc31b0742379c15
SHA256: d7a1f56aa505bb64bc85902787432d62f030b707490e2d6aa57dd27d2308b141
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5909d908ea584b96_0
binary
MD5: d6b076f8ae4a3072f47603d59f23b7ff
SHA256: 6e55d18209c030ae0ee9b2b1042d7003441a68cbe4096ba80b2ceb6985111a4e
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\46fc64f6820505b1_0
binary
MD5: 8b0a413ab379cadbd941519fb07b2567
SHA256: fd47db9d8aa675aa4beb79f53bbb5a8beb062ca98c06f08b5cb14653732f8c39
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5d205350e56b689c_0
binary
MD5: aec4f35d8af418b3d7ea994859c03d8d
SHA256: 07bca38760a7ff4159ec479af062add74ee6fdc9e3fc1302aa2258e599532281
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\db0bd979cbbe5f28_0
binary
MD5: e003318191ac3ca6daf1589f6248263d
SHA256: 6b9134c79cc716a33ca8e287a3c45f08ee65c23a29ddeb239c7318fadf21e23e
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9b891497357212cd_0
binary
MD5: 462046cd42bbe95fb09962f855da9b38
SHA256: 5a8e47a16c59169d34c4470a32bfec383ac8f66d7be6a339e006a905ec5640d9
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\25571672fa239da5_0
binary
MD5: 6fb5048ece397ae1121afc64abe67e65
SHA256: 308d25bed0a40aab60b690f47f7f8181d7d6aab2801177699096802c8de38341
1344
iexplore.exe
C:\Users\admin\AppData\Local\Temp\~DF22E01A442B8B6386.TMP
––
MD5:  ––
SHA256:  ––
2996
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT
smt
MD5: 5b62c13d97d3e9a8a72d46ca5136dcab
SHA256: 4f053c5055e702bb748e9931d4931cc3474c241f98c488fd3d9f49d2b0ddb238
2996
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\D9D0CWNU\background_gradient[1]
image
MD5: 20f0110ed5e4e0d5384a496e4880139b
SHA256: 1471693be91e53c2640fe7baeecbc624530b088444222d93f2815dfce1865d5b
2996
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MB1RSFJ3\down[1]
image
MD5: 555e83ce7f5d280d7454af334571fb25
SHA256: 70f316a5492848bb8242d49539468830b353ddaa850964db4e60a6d2d7db4880
2996
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\D6Q5F1RA\tools[1]
image
MD5: 6f20ba58551e13cfd87ec059327effd0
SHA256: 62a7038cc42c1482d70465192318f21fc1ce0f0c737cb8804137f38a1f9d680b
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\CURRENT
text
MD5: 206702161f94c5cd39fadd03f4014d98
SHA256: 1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\CURRENT~RF1091e1.TMP
text
MD5: 206702161f94c5cd39fadd03f4014d98
SHA256: 1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\000002.dbtmp
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\000001.dbtmp
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\MANIFEST-000001
––
MD5:  ––
SHA256:  ––
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity
text
MD5: e19c5fa5f73fba1bf4f7678f23e2e7e1
SHA256: de4e9b22517657ce0b846328ae12371eaa1a5dc010ae9f6d14172b3fbbcce653
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity~RF109136.TMP
text
MD5: e19c5fa5f73fba1bf4f7678f23e2e7e1
SHA256: de4e9b22517657ce0b846328ae12371eaa1a5dc010ae9f6d14172b3fbbcce653
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\ea9efffa-21d3-4916-b16d-26941313aa8e.tmp
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF108bf6.TMP
text
MD5: 7a4d00a052eb75994ad12c647057fe48
SHA256: a30b3319643ff1f9e71c6f0818e79504e301473697342f7746c7f1b5e818d424
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
text
MD5: 7a4d00a052eb75994ad12c647057fe48
SHA256: a30b3319643ff1f9e71c6f0818e79504e301473697342f7746c7f1b5e818d424
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\ae6cfd35-43b9-4f3c-b529-0f6673e36986.tmp
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Local State~RF108abd.TMP
text
MD5: abdcd6b8cbbd7d604da7fa00aac5d2f2
SHA256: 08da23720bb9b72a3f0b50e3418df881dfb2f94bcdc9e6b64a503b72dd52ebce
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Local State
text
MD5: abdcd6b8cbbd7d604da7fa00aac5d2f2
SHA256: 08da23720bb9b72a3f0b50e3418df881dfb2f94bcdc9e6b64a503b72dd52ebce
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\46adb92d-b364-411a-a9a2-072ab20da0e6.tmp
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\7319.128.0.1_0
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\Temp\scoped_dir1080_15845\CRX_INSTALL
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\zh\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\zh_TW\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\uk\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\vi\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\tr\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\ta\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\th\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\sw\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\te\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\sv\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\sl\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\sk\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\ru\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\sr\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\ro\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\pt\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\mr\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\ms\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\ml\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\lv\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\lt\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\nb\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\nl\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\pl\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\ja\messages.json
––
MD5:  ––
SHA256:  ––
300
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\CrashpadMetrics.pma
binary
MD5: b59113c2dcd2d346f31a64f231162ada
SHA256: 1d97c69aea85d3b06787458ea47576b192ce5c5db9940e5eaa514ff977ce2dc2
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\it\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\kn\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\hr\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\id\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\hu\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\hi\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\fr\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\fil\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\gu\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\fi\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\da\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\fa\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\en\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\bn\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\es\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\de\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\el\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\cs\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\et\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\ca\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\am\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\ar\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\bg\messages.json
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\manifest.json
––
MD5:  ––
SHA256:  ––
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\mirroring_webrtc.js
text
MD5: 05b6b803898b50ba46ef100bb9138371
SHA256: eec784d4a6209d32f263f4873ea9a9a79a226dbf8f6e9c487ed75bef4af8d1af
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\mirroring_hangouts.js
text
MD5: 3878dc32ddab95c95655212b22995d89
SHA256: 337298f720e5eda9946adc0cfdf5a95fe99f27505a2e00f7cc4801e71c563e19
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_metadata\verified_contents.json
text
MD5: 22e79719df0f623df7392be3060a23d7
SHA256: 69eec99c7e6aa1826baa0583c8b566e79163c27291ac91798970bf45c0910749
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\mirroring_cast_streaming.js
text
MD5: 6943caa86048b3b27cf034306017866b
SHA256: 503cad31f78ed39b56fe99d0b0f46854cc0e436bf6b16a8bdb2ad71cee78b415
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\mirroring_common.js
text
MD5: 601e598f3fbbc2d67c0e2e9e3397a5ac
SHA256: 299341580def7206225a92624bcbecadaeb7676747d87d94dad3783e7c262390
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\common.js
text
MD5: 6da98ef1c025dc449057575d55549186
SHA256: 92c09d1a78ef6ff9fdfaa9ae5b4c610876bc0799f7311b9c8194780581e7ca5e
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\feedback.html
html
MD5: d8999d70edf2140409a700ba5590c7e6
SHA256: 36e036646c0550b5bc3aa5e2c961851e9fb84f6afa126edf0f91f93d18a6f12f
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\feedback.css
text
MD5: d8ee20737329319bfa1acbb0e6c219a6
SHA256: a582fc20dbcad1918000b690eb8f237ec14e5b836fd7f799c35702d88dbe6862
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\material_css_min.css
text
MD5: 3358ffd27f0e24441652d11d0a923386
SHA256: f64ef9e918ec588cf8fdf6f3c2adadda4d08123bde180527277dd9832ef84ab5
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\feedback_script.js
text
MD5: a351ee4448c90d82b5b16b93203c32d8
SHA256: bf5f5a4d40f0701083c29f0e0c2415f0afd77b859a321bfbf2003c699101e7d0
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\cast_setup\setup.html
html
MD5: 8388cc359430657e940186a45deddc5c
SHA256: 25e58675bc9d45f7c860e01637326a661f68a1d360e2508706eccfa408edd23f
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\cast_setup\devices.html
html
MD5: 8388cc359430657e940186a45deddc5c
SHA256: 25e58675bc9d45f7c860e01637326a661f68a1d360e2508706eccfa408edd23f
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\cast_setup\chromecast_logo_grey.png
image
MD5: a7099e08e14f10d8f47a0cd7b8bc003b
SHA256: 59fe744de6c2636df554075ffb1c28aa3f8fd75830434e28c1f85b19eb9d566b
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\cast_setup\cast_app_redirect.js
text
MD5: a2a7a6c00091ead24b4476bc6131c8f9
SHA256: 753c002de0970d0732be1cacba9ac3e38e75b28d2e8221f9fa7fbb477011b71a
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\cast_setup\index.html
html
MD5: d6129176a40c5f18d1e4b692d37f9bc2
SHA256: d2792c70ef575d9d822ad6e2b804bec13a274aec969b0f8d7b0db8b35dbfa834
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\cast_setup\offers.html
html
MD5: 8388cc359430657e940186a45deddc5c
SHA256: 25e58675bc9d45f7c860e01637326a661f68a1d360e2508706eccfa408edd23f
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\cast_setup\cast_app_min.css
text
MD5: acf54711f0b70a104e4e3afad9142856
SHA256: deb1d6a67165e2225d1d4b8b3cf50299078b20b733516622600e4cd032dd6d2b
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\cast_setup\cast_app.js
text
MD5: 3c9d2a76ce88f23b2ce051444667862c
SHA256: 17942f2e603c99fd2c571f42229fc7a6242095dcf74d3e4d219f7fd2ec290db1
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\cast_sender.js
text
MD5: 4811c1bad63fad553090315710df4522
SHA256: 0ed8e460ad47eb6b3bb6151cc1eaa0d67554266ae0b543addc8c4b200accbb4b
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\cast_game_sender.js
text
MD5: 0b363a38dfb5f71870c6cce3314a81f0
SHA256: 09583d0b906e1be8707d53ce5ad33ef35de2ae33887767bbf206068f67508383
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\background_script.js
text
MD5: 36db5de50640307501492aa794718ef0
SHA256: 346468148d51c889c0662f5229df9890dea98ac5353ae5759a4c7e1f75a2d59d
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\angular.js
text
MD5: cc86f1d45febd80dd24791d59b2aa616
SHA256: f321dc8d9a4d8a779add44180974e59a43d5bd10744542a768c1b15d7e63a832
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\zh_TW\messages.json
html
MD5: c6f48c269246a6fa0e2f0b396b7604df
SHA256: 81bc1bc507238ab26ffaf68003d811fd603e5f4bdc1b0b94d0f4506cbbe97241
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\uk\messages.json
text
MD5: ae50bf36f89d4706da22d21959863425
SHA256: 6b7f56819e94b99b792fe0c11273e259ce18c7fb57392bb47be8b0fd29b24e7d
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\vi\messages.json
html
MD5: 47bbd75f76e25d79ea10f2014f7d9bc7
SHA256: 53b2b2454bb45be824119b15dda1ea2226958794fc259d80f0347d1bc706eb7b
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\zh\messages.json
html
MD5: 0a57b005bd27db7a0070f914c354a072
SHA256: 91a4c7d3fbd1e41d0801029bda6f14e52c8653a648fc5f39fe1f046564d0f60b
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\th\messages.json
html
MD5: 84140112d747bd5176c96a374a18ad1a
SHA256: b60a1cbb9ac067f4e903170c8564e4bc2c3572f76a5b09bbeedbd6e1b88df1e1
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\tr\messages.json
html
MD5: 2b0dfabc643cff3ec13e96e3ec842258
SHA256: 816add33835ba6028915b4532d5b45a71a280de6788398b008bd60733326ceb7
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\sw\messages.json
html
MD5: 1712a3588bafaee411bc46ec5dcb8ca2
SHA256: 8485722d70475c9d98a8a7d6d2613117149bfaea487ad7f92d9a6e094de949f0
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\ta\messages.json
text
MD5: 5f7b6880dbea25f769f97d2c99e7b7f6
SHA256: 5a22269c0eda694e0131b0ac52ebfdf828aad3c735b592a54d210f6b8db0ab82
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\te\messages.json
text
MD5: cebd49bb6f838e23140cee4118c76dfb
SHA256: 0b71586dee26943b55899583ad4355b8f4007a4853510364faa76a99ba9a0566
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\sv\messages.json
html
MD5: cf637a380c4aecd9778a46a19108c406
SHA256: 4010ebf76c0af564b9c3026b98ff2885af77955be12d77a05a508ff7d5f8366d
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\sr\messages.json
text
MD5: 59cdbb02241ab4e8a3e4421ee7800474
SHA256: 4d71ed4a97228755c0861b04da1a4c97eef7562406afc29e4213faba36fa3511
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\ro\messages.json
html
MD5: 2228b9adecbfb55d24890c9510f20b5b
SHA256: d2ce829cc617a8d01c366ec60d1718f52c63f1a9515fb0b1611e55b22f909c69
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\ru\messages.json
text
MD5: e61ccfd8f13aa36fef4fd8d651aca7aa
SHA256: 04c6ac4f77a59052f5ceb07c06e6e1cf311b5d5231e8732d837c7f936c3ae219
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\sk\messages.json
html
MD5: 7c3596001e0e44f016816e422f664763
SHA256: d4f5ccd81ed83b460fe2dc51a8415076716c0aa593edb28bbbbaf76a2a49ca47
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\sl\messages.json
html
MD5: 22a021701f9572cb94606ad35a9be88a
SHA256: 6adf87ecfc785e46593f8a8975989d344dfec3ac0e5672c394d999b7eef70a2c
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\nl\messages.json
html
MD5: 8e38c515a274c55a4b003c47a23ddb4e
SHA256: ed0c2304a02cc8c49d5f4b055b73412b31505ce290a5af73858761c50f2000ef
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\pt\messages.json
html
MD5: 816dc05089e3ec573f5d4341a748fefb
SHA256: d610e5f9fae2d429ca1ba5c41bb52b93d2551222ceb751f335b0d43695544351
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\pl\messages.json
html
MD5: 0bd6d31a53f196364e23f00f1f5b0768
SHA256: 4ea7d131167712c8756062d7b6e8f8ae6de7eb2be91c440d3b8b260b7c7d494e
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\nb\messages.json
html
MD5: 3f56c75fcbcc66ba27df14b9ca5a1119
SHA256: d09c1ed9753d6ba323012a4b4ea4f186321bc3ae9bbaa7990b5773d95cc9a242
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\ms\messages.json
html
MD5: 9c3779e6e9f6f10e232ee7ad03d75921
SHA256: 6d7e1a3b52ea61d53cf44e770c89b4a370075b786dfa64174fa8b4565d0fadf3
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\mr\messages.json
text
MD5: df8ae4588605c10278c88d94e9c1dbbc
SHA256: b783440d2b13c18b97b02f24e953aa7a0c778817162ac91c9afbfead2d0bc8ff
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\ml\messages.json
text
MD5: 90f5f8ccfc9001b7845e2437d5b83740
SHA256: a0d6831c4dcb9492ceb7d8b1ff0426bf6bc7f6a9ceec7b26dafacde8ae06a3c3
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\lv\messages.json
html
MD5: 0cfd87cf25cd27b7928925f136978097
SHA256: a6dbd930c083e2e5dfb665131d9f1e6e6bd8896753cdb79cf059e21488a920da
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\lt\messages.json
html
MD5: a4e08cf83276578f0444c5c0a5b5196d
SHA256: c8a5d07ff98a92409aadcacd7ae99809e5f6e3be634ded7626dad8c00ec663e1
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\ko\messages.json
html
MD5: 46060399fc358c0c0620463fbfd3f325
SHA256: 139c7f78ca0f385cfaf9f08066d3347eeeba8705f746bee8eae4e15c82ba40cc
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\ja\messages.json
html
MD5: d38392c4246c105fe2f394c7ef41d0a8
SHA256: d61644907520d8a808aed9fb1532ec0f5ef12461e66a5acc7327c9ed6c2a2681
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\iw\messages.json
html
MD5: 4b3a7915595b1f5a74027909bce968dd
SHA256: f95692a9717639fb9d3886efa9de71808cb5c6b0f4354e9b99816a996298fa8f
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\kn\messages.json
text
MD5: b79cb28daffc5af94b6ecd39a3aa4032
SHA256: 27e2c6d453cd3398f8cb64fb9d4a8776be0d80eb608088804bb23ac985a3aae7
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\hi\messages.json
html
MD5: 46fca60f4c16afd5b68738750a16057e
SHA256: 61c146d44f9c4c054c9dbe79d565463496aae7fa95f784164649026eb852dee6
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\hu\messages.json
html
MD5: 2d794e2754e5c80f54bff8ed635184d0
SHA256: c83ec71e1b3b7f14910d05e962ecfc61dad91b034a6fa8abe6afaa5b968689e9
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\id\messages.json
html
MD5: 7b9a0847c6faa8402eab61c096024d33
SHA256: 5e50b077a10a977de39a8a99dbe25ee4c022e88f34d009a665ebf4b7cff688dc
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\hr\messages.json
html
MD5: 444cd89a9aab432251330292216f8dae
SHA256: 2defd1bcbd8d822f07a9c79e13e10bba7e61f49aa4d395b1315321dee6df6503
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\it\messages.json
html
MD5: c248ee6105ae77036fbb4c4e3e9d66e7
SHA256: c7451e207005197a225a3e43b479643c4dbe03865c2fff052acb9facc1025980
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\fil\messages.json
html
MD5: ec51f209a7be042e832b851430ff75c6
SHA256: c137bd71c5266addf08cac46a606285e1be10e555eef8f0dbe804effe1d94d57
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\fr\messages.json
html
MD5: 4d3875bef5c65792c16abe203fde1f16
SHA256: a34353385db3b07a96bb1c2da7a8e623ee296618845858a239834f7371685144
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\fi\messages.json
html
MD5: 9ad4a516864a35f4225410d0f353fb58
SHA256: 0ee5e9fd9615920fa51e50667f19e8ae4399f591de1d702516779f20d62e75f4
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\gu\messages.json
html
MD5: 18bd0fa4585a840991bbe01ea1d6bff9
SHA256: 5537157a0078c9485699fc8b103ffbbd069532e29245430c60cac08d6fc50e6e
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\fa\messages.json
html
MD5: edb2ec2c7f482909a814b903024ac672
SHA256: 60ce4f04acfba61db4c54f7e5e990a06535b205a12d53b62d36075b84bb5cbd8
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\et\messages.json
html
MD5: 2e75cee7712c279bf151d93c40757e81
SHA256: 953cad518d95ade3150c43eb753ae24057164d3c2a2bd31109e45b9e0b42bf1b
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\es\messages.json
html
MD5: f76e1dec23c5b058be8d85ecf814ab45
SHA256: 1eda00d6c22c88a6bdec3fd9926f842ab845555096be68a492b92a983beab199
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\en\messages.json
html
MD5: 54536c1afc37045fc1e67404d3247775
SHA256: 525f6693856ec39183a2713b1f79decd65c82c7bde0ce426200fb288f791e5ad
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\el\messages.json
text
MD5: 9463fd9c6e74bc71fd662b25719d2429
SHA256: 59a2e6a9682f367c81f381cdf0633b3217cc538604faa53f04116407f5d15608
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\de\messages.json
html
MD5: fc9bd60c101f41758269170812356cea
SHA256: 0bc5972106aa310219404ba5b9518b4d2f0f5780624ca7dd40321c4adce804ba
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\da\messages.json
html
MD5: d7a7b55a20e71db0c5924ba061362bdf
SHA256: 270ad3210aa587ee077b0762e0f38aa694f06f298a2f0a8531dda812843421d1
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\cs\messages.json
html
MD5: 6c2f7dd3e5d63d41d463fb53d890f17d
SHA256: 7891476c3333a760037df7f9f319b1e47cc19058b66a208fa0127c9d7eb962ba
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\ca\messages.json
html
MD5: e3cbb47ad514c8679a9681fcd22a19b7
SHA256: c0e35c1d23b8c5cf553772434d96a10e5ecf1f70170a81deca882b3f705d65d8
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\bn\messages.json
text
MD5: 98c0e976877ae91edc3dabdcea30b227
SHA256: e74817f1f5868faece3bbe1aefb3f7967969f0ad26b7c507b04787106d22ef0e
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\bg\messages.json
text
MD5: c7d7597209588826f1612285261af898
SHA256: 31aac8506daa5f302f6c4167b923788df4aab7cdf4f0673e712ad823b63536c0
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\ar\messages.json
html
MD5: cdfef1cc3d9b1a7f8295f469e5d7cce1
SHA256: 1fd3e52e3082ada8fad1f2f2ce654edaf7e99177b43f468016e8e09f11d061a9
2616
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\_locales\am\messages.json
html
MD5: 544acece47a9653d8908af804aa24c4f
SHA256: 4b1bdceed72e74dc5a64ef305c8dc476f5e2a56e00eb6884d09b0e82e59a69f5
2748
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\CRX_INSTALL\manifest.json
text
MD5: aa820edca2a1d86c3b0a259f28cd4b6c
SHA256: 0cb121b2c53dee18adedc1fa004ca640c88644fd75c5f062ce749401f96ebf49
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\scoped_dir1080_25522\9db74901-5094-435a-b049-0be879b56e45.tmp
crx
MD5: c9f1737667f13e06aa8cfb26416cd7f9
SHA256: d9a59c97ed4b1dc1c15ce3136afc93fc45d7a2253f7e9e26100f35499f3e94bf
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\ab91cf27-1d0a-407d-a662-a05070edf547.tmp
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Temp\9db74901-5094-435a-b049-0be879b56e45.tmp
crx
MD5: c9f1737667f13e06aa8cfb26416cd7f9
SHA256: d9a59c97ed4b1dc1c15ce3136afc93fc45d7a2253f7e9e26100f35499f3e94bf
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00001c
image
MD5: 7c10dfff9d90d4ac6b51d59ad0e20a98
SHA256: e3ae575e108231bb39040d9df008763c0b04c9f9f27b765ea4bd9e63e32c3a1f
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00001b
image
MD5: c617ad0651c3ed83f284d77fad86a899
SHA256: 2e8ad1e60be8ba06cfccc75c88cc30db10829ed12f390eb7eb2493f4f7b26ce8
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00001a
image
MD5: 226d35b5d46bb96682d99460b7d1d7e3
SHA256: 5579e51cdfa602366ac653e7d32493671aee257ce10c1f72cc0491c4767a5f06
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000019
image
MD5: a468268d4785c6831d7169fdcd5ae95d
SHA256: abbbfd7c5b9f235d550e59d4000a32b03c948cab2233fa687f862b0426faa9b4
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000018
image
MD5: c017108f65585d283f5923f211b0f460
SHA256: 568f8044c8c690f735df1048b046c8ac801bbb593390d733b2f5f5e3c67249df
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000017
image
MD5: d5fa0bdb7ebb80a8f453af2c387ada4b
SHA256: 83a8bc6bfd9eeca680897ec8f8315f17f28649477b2bb4381bcbf27e7860f2f5
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000016
image
MD5: 87831fb64878b4c8c1ae61f825e0c765
SHA256: c261fc53d8adbd58770014c14531bb6b4a1ffd68e69a8026cba932b00bcdf0f2
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000015
image
MD5: fdb05378aba8f4a87e2e78ccc1a6a6ce
SHA256: f2b7da9ee81e07841c89bd14b09c8a076dc49ec9d9d48d6df85b544ce2498560
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000014
image
MD5: e724f4dcbc0af6b4026b53eecc52f91c
SHA256: bf88a55a29e585200c91c1038204c335ab04485a37cb1acfcaed9b2abb68d6cd
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000013
image
MD5: ec6617b0bca3e35f7eb2bf05f1204181
SHA256: 98726f071f91cefc31e6d056d6df0929ec672a2c222ca16becff69265b1439af
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000012
image
MD5: 91ccf688098873be52219944b342339e
SHA256: c39152cb4546b6bfd896cdda8ddd2e5a9dc2e0474ed4859e96e2f05b5b50d99d
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000011
image
MD5: 1f7f2be5e7d143ed27f78f943922e4dd
SHA256: 803483daf6fe20afdcca4d86234ebefbccb9e9bb72d526bae0ea3e4e52613173
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000010
image
MD5: b03814062552f0368cbd85705f7ff612
SHA256: 2c2497c62f5ba0496912d2d7d9621805759a35ca350b07ab2f33f4c70f163e95
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2eb09f7e7e0001ba_0
binary
MD5: d4acd0056c41c3d58f59228700d94385
SHA256: d47daf9c605ef90db7dd2ba8e16b1677b1b2610273685ceef791deda78a85310
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00000f
compressed
MD5: 2c6a3aec631b4c3c588c8a3e6d6fdcc9
SHA256: 2f340c2be34769410047cbbda78c72bbd40df476782165c8f1885cf3909cfae8
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00000e
woff
MD5: 5ea9a2632a9e5d39963daec600569871
SHA256: 18f22e7764845055d68fa660d4797b5be1d2f7f797e5c8baace389f6e2de59c2
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00000d
image
MD5: 028295ff1804721a7b252d458b031faf
SHA256: 3d22a8dcdf145c60d46c150e2a9d2a480469cd3ab38e7ac9a1a2521c503173f5
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00000c
woff
MD5: 5579740c25cd5b83e560fd678d184962
SHA256: 47bcc39d1213946876ba17fc6c77cd8f80bfedc3f8411b31fada524a47795afd
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c672f78ec66d2af9_0
binary
MD5: 6e5b3532dec7ee34712f441bcbb88370
SHA256: 0ef275c0c82044585b32d4f24ef056439f3e518c60aa550d2d7313e4dc5c51c2
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d68eccd9c6262fd5_0
binary
MD5: 0b2336a4d28eae1cae7497bb634b06b5
SHA256: 2b305b22c5bd6c024fe34440fd505703a7e7cb45320e60d5906a46a628bde4bb
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\32d76c2491211a90_0
binary
MD5: b1d6b7611106081046832bb64898adfe
SHA256: a593543bc045a2af44b8136814241d8dc121820b49a0ea5f1a042df3e932a5ee
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\27f48f40be7369e8_0
binary
MD5: ebdb23ac3470152383742d607dfe8e68
SHA256: c95e3124d3fa095cc5c881344156f96df0da8b112d22fedd9db5fb9b2e1aed43
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e924d9b01d957ad2_0
binary
MD5: 960d2088a0bf7c9473bdae395a1d8ba0
SHA256: 3bf2b874a96848bea5cd31bd159b6431899c0f9e1782abf36f4ebf854b4c8d7c
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00000b
image
MD5: e2ce009e9e6fad1aff22a358224e01d4
SHA256: 622a6f7f5787f118f1fbc651fd2851f4be80edc2cabee8445820de629a6eb489
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\33c65dd48f484a9d_0
binary
MD5: 76504ea9580e73eff284b5c40b91f9fa
SHA256: 18ec8978b7a87d42dbcea2a05a84d666cb076ef829761c7741677162d300cb20
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00000a
image
MD5: fd53b70ddb9f04f620b0185d7c058ba6
SHA256: d419cbf63c877d577484ebcdf2a18d566daf3aa8efb31077a0f84244a56d6244
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000009
woff
MD5: 971b88d5860dcdfa8f813cd9bbd79aed
SHA256: fac5b47b464c4037a45dbc21c3795aa62dbdcd39654e4054b2c60de38fe1af72
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000008
woff
MD5: 1892c49ebd09cc7ed2697a3da238b175
SHA256: b629f7af63fac26c8ec7711059867ff903b63968339816774144788678b6724f
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000007
woff
MD5: ea36858027578c7373e7f6e92fd9bbc9
SHA256: ffb35b8d8cc6c57ffae2ecfacc82c97523bea47fbd3a72ea1917efeee9cfc202
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000006
woff
MD5: 74fdf92847f186588940485e7bf95705
SHA256: b285d4086d2a3a58ccdb52577229923313bec0d0c72e76baf201fdb5863d2cdb
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000005
compressed
MD5: 18c66ae6381f7efd8269f263eb8d71c2
SHA256: d09895503c4e0afb4d11e6c5ba05a79eebcccb4e9665af3a7c3e5ffb9c397efe
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extension State\CURRENT
text
MD5: 46295cac801e5d4857d09837238a6394
SHA256: 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extension State\000001.dbtmp
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-000001
binary
MD5: 5af87dfd673ba2115e2fcf5cfdb727ab
SHA256: f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0cf278fc503275f4_0
binary
MD5: 377deb35c88b20f876c58fd95630ff8c
SHA256: 4b8e8d95315488f8c495e5bec777215ce7dbc4004db0b03710132baa5df20afc
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\46fc64f6820505b1_0
binary
MD5: c3a87f42840088b325b586758705edbb
SHA256: d670dc103603c2f35b7da920c5e7372765a2ea18f437e633a0faf89ed4ed2323
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5909d908ea584b96_0
binary
MD5: c5be85787a9e5fc34d9ef870aded90f0
SHA256: 84454dbaf011aaa707717833e60df19b9136d9fc913613a4ed4df6b72d26ea5a
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5d205350e56b689c_0
binary
MD5: 579ab6670c59c01ca065146355df833c
SHA256: 242cea346b46e26eead78d6468ecd8b34bb05451f5e53def32f125b55779eb36
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\db0bd979cbbe5f28_0
binary
MD5: 1fe324c004334dbfcf3e101c50f54701
SHA256: 30998c8594e8ab64d7610f08e18924e724df34cefc1f5a41053dbff8e6e6f8c1
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e924d9b01d957ad2_0
binary
MD5: cea765c36ca59201766becb913b913b3
SHA256: 63a76826b036fb55b25f312fd838d7b7092bab23feffb4acd633c05d54eda566
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000004
compressed
MD5: eb772c5311f303fe6ced7016170a6612
SHA256: fc3fefc57df45e132448c9d03c4a5d3ab5a192b30b38b9ca5a59d31ef637c0a9
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9b891497357212cd_0
binary
MD5: 20d985596cac281e33eed69883cd7483
SHA256: 6f0a954014200d33de4bf3401f7856197de5ac3143d237ebb70cc18f8c230b64
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\25571672fa239da5_0
binary
MD5: dc8acd8c5509f1cafd0ee3b2f65324b4
SHA256: 46b96ead4171e00fe42e37952490ebaddd78915c05b9e5df2a3f4c52ddd386a9
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000003
compressed
MD5: 52e2b84578787767c3c49a3b193b94a4
SHA256: d9a40b219cc9307378ddb0cd864a73518bb83a249abdf3ef0edbeb8c3eca79df
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000002
compressed
MD5: 3340b4db397a81102b012cfa65f1c461
SHA256: 828d4c14d8398701dad9f4538fcfb5784ee1aab61f6a2f57cda62631b820325f
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000001
compressed
MD5: 662157e56e96666bce4eacc8795eeafd
SHA256: 653159f6235b8ac095d4221b2af826bf76658d9f9be69f0b6026abc293d4a079
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.old~RF106a06.TMP
text
MD5: 1c2c4bb805e49e0719deef84894dbb1f
SHA256: 1afb26b8e579f076590e61bb63648bb0230fee4516c08ebe588dfc31efd616da
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.old
text
MD5: 1c2c4bb805e49e0719deef84894dbb1f
SHA256: 1afb26b8e579f076590e61bb63648bb0230fee4516c08ebe588dfc31efd616da
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old
text
MD5: 1b8036252b09dda7ad0963a5a40e4aba
SHA256: 89e90f5dc88f667b89afa57d04c939a3c7397bb98b9d259766fa452ec297ec06
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old~RF1069d7.TMP
text
MD5: 1b8036252b09dda7ad0963a5a40e4aba
SHA256: 89e90f5dc88f667b89afa57d04c939a3c7397bb98b9d259766fa452ec297ec06
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_1
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
binary
MD5: f50f89a0a91564d0b8a211f8921aa7de
SHA256: b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2
––
MD5:  ––
SHA256:  ––
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
––
MD5:  ––
SHA256:  ––
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
––
MD5:  ––
SHA256:  ––
2412
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache\index
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_2
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_3
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_0
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\index
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT
text
MD5: 904754a73eb4f8a75410a92b2b7a920c
SHA256: c3225bb8babf9823a2daf2bccae0cafc5d3e0857c5f24187dc004f1b2560b4db
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old
text
MD5: c5a804a5780cfc948a8db73979de968b
SHA256: 2c6f183b3e9dfa1bdf791091ad09cdcb079307d23864dbc07c81f280aa7d9227
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT~RF106563.TMP
text
MD5: 904754a73eb4f8a75410a92b2b7a920c
SHA256: c3225bb8babf9823a2daf2bccae0cafc5d3e0857c5f24187dc004f1b2560b4db
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\e9c065d2-94a2-4b84-a7fc-5f3b5e83b508.tmp
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old~RF106563.TMP
text
MD5: c5a804a5780cfc948a8db73979de968b
SHA256: 2c6f183b3e9dfa1bdf791091ad09cdcb079307d23864dbc07c81f280aa7d9227
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000018.dbtmp
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old
text
MD5: 70f27bb5ff84782e8065f81ee64e6008
SHA256: fd5dd0c6f1056c6ee6c2d29bd31653abb589e7d528957942e65b3972b7ecb4e9
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old~RF106515.TMP
text
MD5: 768258eee3510091c97ade3bca3dc828
SHA256: 1f00cceba22a3fa7d0fffdebb99b95f0dfe19d2cda162abc09fc0d8a6e8ff21d
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old
text
MD5: 768258eee3510091c97ade3bca3dc828
SHA256: 1f00cceba22a3fa7d0fffdebb99b95f0dfe19d2cda162abc09fc0d8a6e8ff21d
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old
text
MD5: 007e2c8f160468cc5a8b6c225f0ac40c
SHA256: 7f09cf7ac785c12f0062eb23854505c4ed396c6522eca7109b43ad5cc1a5f74b
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
binary
MD5: 9c016064a1f864c8140915d77cf3389a
SHA256: 0e7265d4a8c16223538edd8cd620b8820611c74538e420a88e333be7f62ac787
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_2
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_3
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\index
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_0
––
MD5:  ––
SHA256:  ––
1080
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Last Version
text
MD5: f679598350690f14a2479935d826682b
SHA256: 4e7e1987eaf5ec751eb16b9f7cbae1c55873f1afe8e2b52416ed454f4efbf239
2996
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Cookies\Low\index.dat
dat
MD5: d7a950fefd60dbaa01df2d85fefb3862
SHA256: 75d0b1743f61b76a35b1fedd32378837805de58d79fa950cb6e8164bfa72073a

Find more information of the staic content and download it at the full report

Network activity

HTTP(S) requests
3
TCP/UDP connections
66
DNS requests
17
Threats
0

HTTP requests

PID Process Method HTTP Code IP URL CN Type Size Reputation
2412 chrome.exe GET 302 172.217.21.238:80 http://redirector.gvt1.com/edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvMjJlQUFXRC12Ny1ldUFnMXF3SDlXZDlFZw/7319.128.0.1_pkedcjkdefgpdelpbcmbmeomcjbeemfm.crx US
html
whitelisted
2412 chrome.exe GET 200 173.194.182.138:80 http://r5---sn-hpa7znsz.gvt1.com/edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvMjJlQUFXRC12Ny1ldUFnMXF3SDlXZDlFZw/7319.128.0.1_pkedcjkdefgpdelpbcmbmeomcjbeemfm.crx?cms_redirect=yes&mip=82.102.26.195&mm=28&mn=sn-hpa7znsz&ms=nvh&mt=1555275744&mv=m&pl=25&shardbypass=yes US
crx
whitelisted
1344 iexplore.exe GET 200 204.79.197.200:80 http://www.bing.com/favicon.ico US
image
whitelisted

Download PCAP, analyze network streams, HTTP content and a lot more at the full report

Connections

PID Process IP ASN CN Reputation
2412 chrome.exe 216.58.207.67:443 Google Inc. US whitelisted
2412 chrome.exe 35.187.22.222:443 Google Inc. US unknown
2412 chrome.exe 216.58.207.45:443 Google Inc. US whitelisted
2412 chrome.exe 94.31.29.96:443 netDNA GB unknown
2412 chrome.exe 18.196.210.232:443 Amazon.com, Inc. DE unknown
2412 chrome.exe 172.217.16.142:443 Google Inc. US whitelisted
2412 chrome.exe 172.217.21.238:80 Google Inc. US whitelisted
2412 chrome.exe 173.194.182.138:80 Google Inc. US whitelisted
2412 chrome.exe 172.217.16.131:443 Google Inc. US whitelisted
2412 chrome.exe 34.234.153.108:443 Amazon.com, Inc. US unknown
2412 chrome.exe 172.217.23.174:443 Google Inc. US whitelisted
–– –– 13.32.219.143:443 Amazon.com, Inc. US unknown
2108 setup-stub.exe 13.32.219.143:443 Amazon.com, Inc. US unknown
2108 setup-stub.exe 34.198.9.87:443 Amazon.com, Inc. US unknown
1344 iexplore.exe 204.79.197.200:80 Microsoft Corporation US whitelisted
2996 iexplore.exe 35.187.22.222:443 Google Inc. US unknown
–– –– 35.187.22.222:443 Google Inc. US unknown

DNS requests

Domain IP Reputation
clientservices.googleapis.com 216.58.207.67
whitelisted
cliqz.com 35.187.22.222
unknown
accounts.google.com 216.58.207.45
shared
static.cliqz.com 94.31.29.96
unknown
s.w.org 192.0.77.48
whitelisted
analytics.cliqz.com 18.196.210.232
3.120.25.17
unknown
clients1.google.com 172.217.16.142
whitelisted
clients2.google.com 172.217.16.142
whitelisted
redirector.gvt1.com 172.217.21.238
whitelisted
r5---sn-hpa7znsz.gvt1.com 173.194.182.138
whitelisted
ssl.gstatic.com 172.217.16.131
whitelisted
downloads.cliqz.com 34.234.153.108
52.44.212.250
unknown
sb-ssl.google.com 172.217.23.174
whitelisted
cdn.cliqz.com 13.32.219.143
13.32.219.252
13.32.219.208
13.32.219.164
unknown
reports.cliqz.com 34.198.9.87
34.231.74.131
unknown
www.bing.com 204.79.197.200
13.107.21.200
whitelisted

Threats

No threats detected.

Debug output strings

No debug info.