WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. Join 93085 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!

Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Internet Browsers been infected [Solved]

Started by yukukuhi , Dec 21 2019 05:25 AM

This topic is locked

73 replies to this topic

#16 Satchfan

SuperHelper

Malware Team
6,813 posts

Interests:LFC, music, more LFC, more music

Posted 26 December 2019 - 04:48 AM

Apparently that command can't be used any more.

Open the last RogueKiller report, click on Export > Json file.

Please attach it to your next post.

==========================================

Run Farbar Recovery Scan Tool, (FRST), in the Recovery Environment, (RE)

Item(s) required: .

USB Flash Drive (size depend on if you have to create a USB Recovery or Installation media)
another computer, (clean of infection)
CD/DVD, (optional: only needed if you need to create a Recovery or Installation media and your USB Flash Drive is too small)

Follow the instructions below to download and run a scan on your system with FRST from the Recovery Environment.

Preparing the USB Flash Drive

Download FRST from a clean computer:

On the clean computer, transfer FRST64.exe on to your USB Flash Drive.

Do not plug it in to the infected computer yet.

On the infected computer, Boot in to the Recovery Environment

To enter the Recovery Environment with Windows 10, follow the instructions in this tutorial.

Note: if you can't access the Recovery Environment using the method above, you'll need to create a Windows installation or repair media. It can be made on the computer itself or another one running the same version of Windows as the one you plan to use it on. For more information, see this tutorial.

once in the Windows RE, plug the USB Flash Drive into the computer
in the command prompt, type Notepad and then press Enter
when Notepad opens,click on the ‘File’ menu and select Open
click on Computer/This PC, find the letter for your USB Flash Drive, then close the window and Notepad
in the command prompt, type e:\frst.exe, (for the x64 version, type e:\frst64.exe and press Enter
Note: Replace the letter e with the drive letter of your USB Flash Drive - FRST will open
click on Yes to accept the disclaimer
click on the Scan button and wait for the scan to complete.

A log called FRST.txt will be saved on your USB Flash Drive. Attach it to your next reply.

Thanks

Satchfan

NINA - Proud graduate of the WTT Classroom

Member of UNITE

The help you receive here is free but if you feel I have helped, you may consider making a Donation.

Advertisements

Register to Remove

#17 yukukuhi

Authentic Member

Authentic Member
92 posts

Posted 27 December 2019 - 12:09 PM

Ok in what recovery environment mode should I boot into coz there are a lot of modes to choose from like enable safe mode with networking, enable safe mode with command prompt etc. So what option should I select?

#18 Satchfan

SuperHelper

Malware Team
6,813 posts

Interests:LFC, music, more LFC, more music

Posted 27 December 2019 - 03:29 PM

I gave you a link to show you here.

Start recovery (aka: Windows RE or WinRE), troubleshooting, and diagnostic tools.

That is what you need to choose.

NINA - Proud graduate of the WTT Classroom

Member of UNITE

The help you receive here is free but if you feel I have helped, you may consider making a Donation.

#19 yukukuhi

Authentic Member

Authentic Member
92 posts

Posted 28 December 2019 - 12:15 PM

#20 yukukuhi

Authentic Member

Authentic Member
92 posts

Posted 28 December 2019 - 12:17 PM

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-12-2019
Ran by SGK (administrator) on DESKTOP-VF56AA2 (LENOVO 20CKCTO1WW) (28-12-2019 22:38:16)
Running from d:\
Loaded Profiles: SGK (Available Profiles: SGK)
Platform: Windows 10 Pro Version 1903 18362.356 (X64) Language: English (United States)
Default browser not detected!
Boot Mode: Safe Mode (minimal)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\osk.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\upfc.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PrivacyIconClient.exe [1178400 2015-07-07] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
HKLM-x32\...\Run: [Aimersoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe [2138272 2016-10-08] (Shenzhen Jia Xing Investment Co., Ltd. -> AimerSoft)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1312040 2018-12-04] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2295186157-4208122820-3846616368-1001\...\Run: [BaiduYunGuanjia] => C:\Users\SGK\AppData\Roaming\baidu\BaiduNetdisk\baidunetdisk.exe [8954888 2019-08-23] (Beijing Baidu Netcom Science and Technology Co.,Ltd -> )
HKU\S-1-5-21-2295186157-4208122820-3846616368-1001\...\Run: [BaiduYunDetect] => C:\Users\SGK\AppData\Roaming\baidu\BaiduNetdisk\YunDetectService.exe [1126920 2019-08-23] (Beijing Baidu Netcom Science and Technology Co.,Ltd -> )
HKU\S-1-5-21-2295186157-4208122820-3846616368-1001\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE [416896 2017-09-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-2295186157-4208122820-3846616368-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE [416896 2017-09-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-2295186157-4208122820-3846616368-1001\...\Run: [Chromium] => "c:\users\sgk\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Defaul

#21 Satchfan

SuperHelper

Malware Team
6,813 posts

Interests:LFC, music, more LFC, more music

Posted 28 December 2019 - 02:59 PM

I need the complete log please.

NINA - Proud graduate of the WTT Classroom

Member of UNITE

The help you receive here is free but if you feel I have helped, you may consider making a Donation.

#22 yukukuhi

Authentic Member

Authentic Member
92 posts

Posted 28 December 2019 - 11:59 PM

Sorry! I'll post it.

Edited by yukukuhi, 29 December 2019 - 12:06 AM.

#23 Satchfan

SuperHelper

Malware Team
6,813 posts

Interests:LFC, music, more LFC, more music

Posted 29 December 2019 - 04:43 AM

And also the complete Json log.

NINA - Proud graduate of the WTT Classroom

Member of UNITE

The help you receive here is free but if you feel I have helped, you may consider making a Donation.

#24 yukukuhi

Authentic Member

Authentic Member
92 posts

Posted 29 December 2019 - 08:16 AM

{"header": {"program": {"project": "RogueKiller Anti-Malware", "version": "14.0.2.0", "x64": true, "date": "Dec 16 2019", "contact": "https://adlice.com/contact/","website": "https://adlice.com/download/roguekiller/"}, "environment": {"operating_system": "Windows 10 (10.0.18362) 64 bits", "boot": 0, "winpe": false, "user": "SYSTEM", "user_admin": true, "program_location": "C:\\Program Files\\RogueKiller\\RogueKiller64.exe", "x64": true, "licensing": "free"}, "report": {"type": 1, "aborted": false, "date": "2019/12/22 07:46:08", "duration": 1233, "count": 1049, "scanned_count": 70084, "scan_mode": "standard", "signatures_version": "20191220_142306", "log_legit": false, "expert_mode": false, "truesight_loaded": true, "switches": ["-minimize"], "id": "1F4788DDFC55BAD0"}}, "results": {"processes": [{"name": "[System Process]", "pid": 0, "children": []}, {"name": "System", "pid": 4, "children": [{"name": "smss.exe", "pid": 532, "children": []}, {"name": "Memory Compression", "pid": 2388, "children": []}]}, {"name": "Registry", "pid": 96, "children": []}, {"name": "csrss.exe", "pid": 708, "children": []}, {"name": "wininit.exe", "pid": 796, "children": [{"name": "fontdrvhost.exe", "pid": 696, "children": []}, {"name": "services.exe", "pid": 916, "children": [{"name": "svchost.exe", "pid": 652, "children": []}, {"name": "RegSrvc.exe", "pid": 680, "children": []}, {"name": "AGSService.exe", "pid": 808, "children": []}, {"name": "svchost.exe", "pid": 996, "children": []}, {"name": "armsvc.exe", "pid": 1036, "children": []}, {"name": "svchost.exe", "pid": 1040, "children": [{"name": "RuntimeBroker.exe", "pid": 648, "children": []}, {"name": "ApplicationFrameHost.exe", "pid": 2980, "children": []}, {"name": "SettingSyncHost.exe", "pid": 3100, "children": []}, {"name": "RuntimeBroker.exe", "pid": 4288, "children": []}, {"name": "RuntimeBroker.exe", "pid": 4936, "children": []}, {"name": "ShellExperienceHost.exe", "pid": 5392, "children": []}, {"name": "WmiPrvSE.exe", "pid": 5660, "children": []}, {"name": "SearchUI.exe", "pid": 5920, "children": []}, {"name": "StartMenuExperienceHost.exe", "pid": 6244, "children": []}, {"name": "unsecapp.exe", "pid": 6416, "children": []}, {"name": "SystemSettings.exe", "pid": 6872, "children": []}, {"name": "Video.UI.exe", "pid": 8616, "children": []}, {"name": "WinStore.App.exe", "pid": 9452, "children": []}, {"name": "WmiPrvSE.exe", "pid": 9948, "children": []}, {"name": "smartscreen.exe", "pid": 10340, "children": []}, {"name": "RuntimeBroker.exe", "pid": 11884, "children": []}, {"name": "RuntimeBroker.exe", "pid": 12068, "children": []}, {"name": "WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe", "pid": 12792, "children": []}, {"name": "SystemSettingsBroker.exe", "pid": 13160, "children": []}]}, {"name": "svchost.exe", "pid": 1068, "children": []}, {"name": "WUDFHost.exe", "pid": 1088, "children": []}, {"name": "svchost.exe", "pid": 1168, "children": []}, {"name": "svchost.exe", "pid": 1212, "children": []}, {"name": "EvtEng.exe", "pid": 1320, "children": []}, {"name": "svchost.exe", "pid": 1384, "children": []}, {"name": "escsvc64.exe", "pid": 1412, "children": []}, {"name": "svchost.exe", "pid": 1476, "children": [{"name": "RAVBg64.exe", "pid": 1300, "children": []}, {"name": "PowerMgr.exe", "pid": 5940, "children": []}, {"name": "taskhostw.exe", "pid": 6688, "children": []}, {"name": "taskhostw.exe", "pid": 14288, "children": []}]}, {"name": "svchost.exe", "pid": 1488, "children": []}, {"name": "svchost.exe", "pid": 1504, "children": []}, {"name": "svchost.exe", "pid": 1624, "children": []}, {"name": "svchost.exe", "pid": 1656, "children": []}, {"name": "svchost.exe", "pid": 1672, "children": []}, {"name": "svchost.exe", "pid": 1700, "children": [{"name": "sihost.exe", "pid": 11372, "children": []}]}, {"name": "svchost.exe", "pid": 1740, "children": []}, {"name": "svchost.exe", "pid": 1860, "children": []}, {"name": "svchost.exe", "pid": 1920, "children": []}, {"name": "svchost.exe", "pid": 1932, "children": []}, {"name": "svchost.exe", "pid": 1940, "children": []}, {"name": "svchost.exe", "pid": 2012, "children": []}, {"name": "ibmpmsvc.exe", "pid": 2028, "children": []}, {"name": "LPlatSvc.exe", "pid": 2036, "children": [{"name": "LPlatSvc.exe", "pid": 9440, "children": []}]}, {"name": "svchost.exe", "pid": 2084, "children": []}, {"name": "svchost.exe", "pid": 2100, "children": []}, {"name": "svchost.exe", "pid": 2204, "children": []}, {"name": "svchost.exe", "pid": 2292, "children": []}, {"name": "svchost.exe", "pid": 2300, "children": []}, {"name": "svchost.exe", "pid": 2308, "children": []}, {"name": "svchost.exe", "pid": 2436, "children": []}, {"name": "svchost.exe", "pid": 2444, "children": []}, {"name": "igfxCUIService.exe", "pid": 2496, "children": []}, {"name": "svchost.exe", "pid": 2564, "children": []}, {"name": "svchost.exe", "pid": 2572, "children": []}, {"name": "svchost.exe", "pid": 2580, "children": []}, {"name": "svchost.exe", "pid": 2712, "children": []}, {"name": "svchost.exe", "pid": 2772, "children": []}, {"name": "svchost.exe", "pid": 2816, "children": []}, {"name": "RtkAudioService64.exe", "pid": 2888, "children": [{"name": "RAVBg64.exe", "pid": 9208, "children": []}]}, {"name": "svchost.exe", "pid": 2988, "children": []}, {"name": "svchost.exe", "pid": 2996, "children": []}, {"name": "svchost.exe", "pid": 3012, "children": []}, {"name": "svchost.exe", "pid": 3040, "children": []}, {"name": "SynTPEnhService.exe", "pid": 3180, "children": [{"name": "SynTPEnh.exe", "pid": 10100, "children": [{"name": "SynLenovoHelper.exe", "pid": 1132, "children": []}, {"name": "SynTPLpr.exe", "pid": 11988, "children": []}]}]}, {"name": "svchost.exe", "pid": 3272, "children": [{"name": "wlanext.exe", "pid": 3404, "children": [{"name": "conhost.exe", "pid": 3444, "children": []}]}]}, {"name": "svchost.exe", "pid": 3332, "children": []}, {"name": "spoolsv.exe", "pid": 3452, "children": []}, {"name": "svchost.exe", "pid": 3544, "children": []}, {"name": "svchost.exe", "pid": 3624, "children": []}, {"name": "svchost.exe", "pid": 3644, "children": []}, {"name": "svchost.exe", "pid": 3668, "children": [{"name": "dasHost.exe", "pid": 2964, "children": []}]}, {"name": "svchost.exe", "pid": 3720, "children": []}, {"name": "svchost.exe", "pid": 3784, "children": []}, {"name": "svchost.exe", "pid": 3948, "children": [{"name": "ctfmon.exe", "pid": 9896, "children": []}]}, {"name": "svchost.exe", "pid": 4112, "children": []}, {"name": "ZeroConfigService.exe", "pid": 4300, "children": []}, {"name": "MBAMService.exe", "pid": 4304, "children": [{"name": "mbamtray.exe", "pid": 2920, "children": []}]}, {"name": "svchost.exe", "pid": 4388, "children": []}, {"name": "svchost.exe", "pid": 4484, "children": []}, {"name": "svchost.exe", "pid": 4788, "children": []}, {"name": "svchost.exe", "pid": 4900, "children": []}, {"name": "svchost.exe", "pid": 5104, "children": []}, {"name": "svchost.exe", "pid": 5252, "children": []}, {"name": "svchost.exe", "pid": 5276, "children": []}, {"name": "WmiApSrv.exe", "pid": 5484, "children": []}, {"name": "Lenovo.Modern.ImController.exe", "pid": 5576, "children": [{"name": "Lenovo.Modern.ImController.PluginHost.Device.exe", "pid": 3384, "children": []}, {"name": "Lenovo.Modern.ImController.PluginHost.SettingsApp.exe", "pid": 6540, "children": []}, {"name": "Lenovo.Modern.ImController.PluginHost.CompanionApp.exe", "pid": 9612, "children": []}]}, {"name": "svchost.exe", "pid": 5892, "children": []}, {"name": "svchost.exe", "pid": 6004, "children": []}, {"name": "svchost.exe", "pid": 6068, "children": []}, {"name": "AGMService.exe", "pid": 6208, "children": []}, {"name": "SearchIndexer.exe", "pid": 6236, "children": []}, {"name": "ibtsiva.exe", "pid": 6252, "children": []}, {"name": "svchost.exe", "pid": 6752, "children": []}, {"name": "svchost.exe", "pid": 6804, "children": []}, {"name": "PresentationFontCache.exe", "pid": 6888, "children": []}, {"name": "svchost.exe", "pid": 8060, "children": []}, {"name": "svchost.exe", "pid": 8612, "children": []}, {"name": "svchost.exe", "pid": 9092, "children": []}, {"name": "svchost.exe", "pid": 9664, "children": []}, {"name": "svchost.exe", "pid": 9676, "children": []}, {"name": "svchost.exe", "pid": 9924, "children": []}, {"name": "SecurityHealthService.exe", "pid": 10248, "children": []}, {"name": "RogueKillerSvc.exe", "pid": 10356, "children": [{"name": "RogueKiller64.exe", "pid": 13072, "children": []}]}, {"name": "svchost.exe", "pid": 10572, "children": []}, {"name": "GoogleUpdate.exe", "pid": 10652, "children": [{"name": "chrome.exe", "pid": 10828, "children": [{"name": "cmd.exe", "pid": 3356, "children": [{"name": "conhost.exe", "pid": 5612, "children": []}, {"name": "native.exe", "pid": 8996, "children": [], "scan_what": 1, "scan_how": [5, 2, 1, 4, 3, 8, 6, 7], "vendors": ["PUP.NtvHost"], "path": "C:\\ProgramData\\NtvHost\\native.exe", "target": "C:\\ProgramData\\NtvHost\\native.exe", "command_line": "C:\\ProgramData\\NtvHost\\native.exe chrome-extension://fihjoeiieegbpmlegnomkccgiilkjdpk/ --parent-window=0 ", "pid_parent": 3356, "name_parent": "cmd.exe", "path_parent": "C:\\Windows\\System32\\cmd.exe", "file_md5": "F05F9DDC13A17EB42AB7CB61642B3D69", "file_sha256": "9DCBF8D93AC7A071AD6A1738B1A4DCB98A9CD81DF56DB66A44762F64A740724D", "file_exists": true, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_kill": 0, "is_64": true, "malpe_score": -1.0, "id": 3}]}, {"name": "chrome.exe", "pid": 9640, "children": []}, {"name": "chrome.exe", "pid": 10368, "children": []}, {"name": "chrome.exe", "pid": 10628, "children": []}, {"name": "chrome.exe", "pid": 10892, "children": []}, {"name": "chrome.exe", "pid": 10972, "children": []}, {"name": "chrome.exe", "pid": 10984, "children": []}]}]}, {"name": "svchost.exe", "pid": 10852, "children": []}, {"name": "SgrmBroker.exe", "pid": 11020, "children": []}, {"name": "svchost.exe", "pid": 11032, "children": []}, {"name": "svchost.exe", "pid": 11116, "children": []}, {"name": "svchost.exe", "pid": 11588, "children": []}, {"name": "svchost.exe", "pid": 12040, "children": []}, {"name": "svchost.exe", "pid": 12324, "children": []}, {"name": "svchost.exe", "pid": 12740, "children": []}, {"name": "svchost.exe", "pid": 12948, "children": []}]}, {"name": "lsass.exe", "pid": 956, "children": []}]}, {"name": "RAVCpl64.exe", "pid": 2384, "children": []}, {"name": "YourPhone.exe", "pid": 3904, "children": []}, {"name": "svchost.exe", "pid": 3980, "children": [], "scan_what": 1, "scan_how": [5, 2, 1, 4, 3, 8, 6, 7], "vendors": ["Proc.Svchost"], "path": "C:\\Windows\\SysWOW64\\svchost.exe", "target": "", "command_line": "\"C:\\WINDOWS\\System32\\svchost.exe\" -k LocalService", "pid_parent": 2956, "name_parent": "", "path_parent": "", "file_md5": "", "file_sha256": "", "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 2, "status_str": "Found", "status_choice": 2, "status_kill": 0, "is_64": true, "malpe_score": -1.0, "id": 0}, {"name": "svchost.exe", "pid": 3992, "children": [{"name": "svchost.exe", "pid": 2332, "children": [], "scan_what": 1, "scan_how": [5, 2, 1, 4, 3, 8, 6, 7], "vendors": ["Proc.Svchost"], "path": "C:\\Windows\\SysWOW64\\svchost.exe", "target": "", "command_line": "C:\\WINDOWS\\SysWOW64\\svchost.exe -k rpcss", "pid_parent": 3992, "name_parent": "svchost.exe", "path_parent": "C:\\Windows\\SysWOW64\\svchost.exe", "file_md5": "", "file_sha256": "", "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 2, "status_str": "Found", "status_choice": 2, "status_kill": 0, "is_64": true, "malpe_score": -1.0, "id": 2}, {"name": "svchost.exe", "pid": 9800, "children": [], "scan_what": 1, "scan_how": [5, 2, 1, 4, 3, 8, 6, 7], "vendors": ["Proc.Svchost"], "path": "C:\\Windows\\SysWOW64\\svchost.exe", "target": "", "command_line": "C:\\WINDOWS\\SysWOW64\\svchost.exe -k rpcss", "pid_parent": 3992, "name_parent": "svchost.exe", "path_parent": "C:\\Windows\\SysWOW64\\svchost.exe", "file_md5": "", "file_sha256": "", "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 2, "status_str": "Found", "status_choice": 2, "status_kill": 0, "is_64": true, "malpe_score": -1.0, "id": 4}], "scan_what": 1, "scan_how": [5, 2, 1, 4, 3, 8, 6, 7], "vendors": ["Proc.Svchost"], "path": "C:\\Windows\\SysWOW64\\svchost.exe", "target": "", "command_line": "\"C:\\WINDOWS\\System32\\svchost.exe\" -k NetworkService", "pid_parent": 2956, "name_parent": "", "path_parent": "", "file_md5": "", "file_sha256": "", "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 2, "status_str": "Found", "status_choice": 2, "status_kill": 0, "is_64": true, "malpe_score": -1.0, "id": 1}, {"name": "SynTPHelper.exe", "pid": 4584, "children": []}, {"name": "igfxEM.exe", "pid": 5444, "children": []}, {"name": "LSCNotify.exe", "pid": 5872, "children": []}, {"name": "osk.exe", "pid": 8300, "children": []}, {"name": "igfxHK.exe", "pid": 8436, "children": []}, {"name": "winlogon.exe", "pid": 9056, "children": [{"name": "fontdrvhost.exe", "pid": 3572, "children": []}, {"name": "dwm.exe", "pid": 8444, "children": []}]}, {"name": "csrss.exe", "pid": 9620, "children": []}, {"name": "explorer.exe", "pid": 11128, "children": []}, {"name": "TpShocks.exe", "pid": 11732, "children": []}], "modules": [], "services": [{"scan_what": 0, "scan_how": [1, 2, 3, 4, 8, 6, 5, 7], "vendors": ["Tr.Gen"], "name": "EventSvc", "name_process": "", "target": "C:\\ProgramData\\EventSvc\\eventsvc.exe", "pid": 0, "path_process": "", "path": "\"C:\\ProgramData\\EventSvc\\eventsvc.exe\"", "file_md5": "255E6773ADE02C13C2E51223E0843577", "file_sha256": "9F35CDFA6E2204DF9A250454AEA6C2C45D745168F99425D5236B1D30EFDAE01F", "file_exists": true, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 2, "status_str": "Found", "status_choice": 2, "status_kill": 0, "malpe_score": -1.0, "id": 5}, {"scan_what": 0, "scan_how": [1, 2, 3, 4, 8, 6, 5, 7], "vendors": ["Hidden.From.Registry"], "name": "Msfs", "name_process": "", "target": "", "pid": 0, "path_process": "", "path": "", "file_md5": "", "file_sha256": "", "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 2, "status_str": "Found", "status_choice": 2, "status_kill": 0, "malpe_score": -1.0, "id": 6}, {"scan_what": 0, "scan_how": [1, 2, 3, 4, 8, 6, 5, 7], "vendors": ["Hidden.From.Registry"], "name": "mshidkmdf", "name_process": "", "target": "C:\\Windows\\System32\\drivers\\mshidkmdf.sys", "pid": 0, "path_process": "", "path": "\\SystemRoot\\System32\\drivers\\mshidkmdf.sys", "file_md5": "22813FD068277CC4994CB3FB5547AA23", "file_sha256": "AA5FCFEE8161EA12ED65FAB5A662EE3BFF5B7D725DEFF081FCB45C534FAC976A", "file_exists": true, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 2, "status_str": "Found", "status_choice": 2, "status_kill": 0, "malpe_score": -1.0, "id": 7}, {"scan_what": 0, "scan_how": [1, 2, 3, 4, 8, 6, 5, 7], "vendors": ["Hidden.From.Registry"], "name": "mshidumdf", "name_process": "", "target": "C:\\Windows\\System32\\drivers\\mshidumdf.sys", "pid": 0, "path_process": "", "path": "\\SystemRoot\\System32\\drivers\\mshidumdf.sys", "file_md5": "ED11DC4C201FF6C06F171E18B379B589", "file_sha256": "37E1901ECF54A22D016B844B68847B3894EDCA7854D713C46951BD41684735BB", "file_exists": true, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 2, "status_str": "Found", "status_choice": 2, "status_kill": 0, "malpe_score": -1.0, "id": 8}, {"scan_what": 0, "scan_how": [1, 2, 3, 4, 8, 6, 5, 7], "vendors": ["Hidden.From.Registry"], "name": "MSKSSRV", "name_process": "", "target": "C:\\Windows\\System32\\drivers\\mskssrv.sys", "pid": 0, "path_process": "", "path": "\\SystemRoot\\System32\\drivers\\MSKSSRV.sys", "file_md5": "E3B4680BAB18D0898E80C6E4FE05BF55", "file_sha256": "2F215EB0122A796674123241D7F34849B4A77E9376A373968D5ADAFAB4D428B2", "file_exists": true, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 2, "status_str": "Found", "status_choice": 2, "status_kill": 0, "malpe_score": -1.0, "id": 9}, {"scan_what": 0, "scan_how": [1, 2, 3, 4, 8, 6, 5, 7], "vendors": ["Hidden.From.Registry"], "name": "msiserver", "name_process": "", "target": "C:\\Windows\\System32\\msiexec.exe", "pid": 0, "path_process": "", "path": "C:\\WINDOWS\\system32\\msiexec.exe /V", "file_md5": "2D9F692E71D9985F1C6237F063F6FE76", "file_sha256": "199B3890D28A1F5906F4014E73615A268B3C4414F1F71697BF13E0D464258D54", "file_exists": true, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 2, "status_str": "Found", "status_choice": 2, "status_kill": 0, "malpe_score": -1.0, "id": 10}, {"scan_what": 0, "scan_how": [1, 2, 3, 4, 8, 6, 5, 7], "vendors": ["Hidden.From.Registry"], "name": "MSPCLOCK", "name_process": "", "target": "C:\\Windows\\System32\\drivers\\mspclock.sys", "pid": 0, "path_process": "", "path": "\\SystemRoot\\System32\\drivers\\MSPCLOCK.sys", "file_md5": "FAFA1781D123CD9B2542719DD523177D", "file_sha256": "FDDA2690AE37D970935A74CBD54492331E520DBC0D4C8484812E75678AE7383C", "file_exists": true, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 2, "status_str": "Found", "status_choice": 2, "status_kill": 0, "malpe_score": -1.0, "id": 11}], "tasks": [], "registry": [{"rule_name": "scan_software", "rule_code": "XX", "rule_friendly_name": "Software", "children": [{"scan_what": 2, "scan_how": [8], "vendors": ["PUP.Lightening"], "type": 3, "name": "lighteningplayer", "action": "remove_subkey", "path": "HKEY_LOCAL_MACHINE\\Software\\lighteningplayer", "data": "", "analysis_data": "", "view": 64, "file_md5": "", "file_sha256": "", "has_file": false, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 12}, {"scan_what": 2, "scan_how": [8], "vendors": ["PUP.Auslogics"], "type": 3, "name": "Auslogics", "action": "remove_subkey", "path": "HKEY_LOCAL_MACHINE\\Software\\Auslogics", "data": "", "analysis_data": "", "view": 32, "file_md5": "", "file_sha256": "", "has_file": false, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 13}, {"scan_what": 2, "scan_how": [8], "vendors": ["PUP.Gen1"], "type": 3, "name": "csastats", "action": "remove_subkey", "path": "HKEY_USERS\\S-1-5-21-2295186157-4208122820-3846616368-1001\\Software\\csastats", "data": "", "analysis_data": "", "view": 64, "file_md5": "", "file_sha256": "", "has_file": false, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 14}]}, {"rule_name": "scan_services", "rule_code": "O23", "rule_friendly_name": "Services", "children": [{"scan_what": 2, "scan_how": [4, 6, 18, 21, 19, 22], "vendors": ["Tr.Gen"], "type": 3, "name": "EventSvc", "action": "remove_subkey", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\EventSvc", "data": "", "analysis_data": "C:\\ProgramData\\EventSvc\\eventsvc.exe", "view": 64, "file_md5": "255E6773ADE02C13C2E51223E0843577", "file_sha256": "9F35CDFA6E2204DF9A250454AEA6C2C45D745168F99425D5236B1D30EFDAE01F", "has_file": true, "file_exists": true, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 2, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 15}]}, {"rule_name": "scan_proxy", "rule_code": "R5", "rule_friendly_name": "Proxy", "children": [{"scan_what": 1, "scan_how": [10], "vendors": ["PUM.Proxy"], "type": 1, "name": "ProxyEnable", "action": "replace_value", "path": "HKEY_USERS\\S-1-5-21-2295186157-4208122820-3846616368-1001\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings|ProxyEnable", "data": "1", "replace_data": 0, "analysis_data": "", "view": 64, "file_md5": "", "file_sha256": "", "has_file": false, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 4, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 16}, {"scan_what": 1, "scan_how": [13], "vendors": ["PUM.Proxy"], "type": 1, "name": "ProxyServer", "action": "remove_value", "path": "HKEY_USERS\\S-1-5-21-2295186157-4208122820-3846616368-1001\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings|ProxyServer", "data": "http=127.0.0.1:8080;https=127.0.0.1:8080", "analysis_data": "", "view": 64, "file_md5": "", "file_sha256": "", "has_file": false, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 4, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 17}, {"scan_what": 1, "scan_how": [13], "vendors": ["PUM.Proxy"], "type": 1, "name": "", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\NlaSvc\\Parameters\\Internet\\ManualProxies|", "data": "1http=127.0.0.1:8080;https=127.0.0.1:8080", "analysis_data": "", "view": 64, "file_md5": "", "file_sha256": "", "has_file": false, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 4, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 18}]}, {"rule_name": "scan_firewall", "rule_code": "O87", "rule_friendly_name": "Firewall", "children": [{"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{49993646-B42B-4AE7-82AA-D66862E26370}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{49993646-B42B-4AE7-82AA-D66862E26370}", "data": "v2.28|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\\Users\\SGK\\AppData\\Local\\Temp\\EpInsNav\\DL\\3013\\Network\\EpsonNetSetup\\Data\\ENEasyApp.exe|Name=EpsonNet Setup|", "analysis_data": "C:\\Users\\SGK\\AppData\\Local\\Temp\\EpInsNav\\DL\\3013\\Network\\EpsonNetSetup\\Data\\ENEasyApp.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 19}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{572B2F1F-58EF-4B5E-9A9B-0B197CE8AD40}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{572B2F1F-58EF-4B5E-9A9B-0B197CE8AD40}", "data": "v2.28|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\\Users\\SGK\\AppData\\Local\\Temp\\EpInsNav\\DL\\3013\\Network\\EpsonNetSetup\\Data\\ENEasyApp.exe|Name=EpsonNet Setup|", "analysis_data": "C:\\Users\\SGK\\AppData\\Local\\Temp\\EpInsNav\\DL\\3013\\Network\\EpsonNetSetup\\Data\\ENEasyApp.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 20}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F758C816-0F6C-4ABF-B958-B23805B8C0EA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F758C816-0F6C-4ABF-B958-B23805B8C0EA}", "data": "v2.28|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\\Users\\SGK\\AppData\\Local\\Temp\\L3150\\Network\\EpsonNetSetup\\ENEasyApp.exe|Name=EpsonNet Setup|", "analysis_data": "C:\\Users\\SGK\\AppData\\Local\\Temp\\L3150\\Network\\EpsonNetSetup\\ENEasyApp.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 21}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{357B04ED-3802-40E0-A169-7B77C988064A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{357B04ED-3802-40E0-A169-7B77C988064A}", "data": "v2.28|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\\Users\\SGK\\AppData\\Local\\Temp\\L3150\\Network\\EpsonNetSetup\\ENEasyApp.exe|Name=EpsonNet Setup|", "analysis_data": "C:\\Users\\SGK\\AppData\\Local\\Temp\\L3150\\Network\\EpsonNetSetup\\ENEasyApp.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 22}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{92E0B79D-3736-4CA2-84F4-382C8DC4F2A9}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{92E0B79D-3736-4CA2-84F4-382C8DC4F2A9}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 23}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4FF1E977-9E42-44E7-B2FD-C3BF1DA79D87}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4FF1E977-9E42-44E7-B2FD-C3BF1DA79D87}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 24}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2AD1C09E-C95F-4B57-B95F-24F6AD4EF61F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2AD1C09E-C95F-4B57-B95F-24F6AD4EF61F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 25}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B039E9A0-C51E-4FD5-AE55-B107B6DED039}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B039E9A0-C51E-4FD5-AE55-B107B6DED039}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 26}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8D215232-EE35-4670-9ADF-15099AAE7478}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8D215232-EE35-4670-9ADF-15099AAE7478}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 27}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BE55F8C8-BA99-4522-AA73-B5AFA47845DE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BE55F8C8-BA99-4522-AA73-B5AFA47845DE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 28}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AC7E1597-445B-449F-928B-ED247AD1FCF9}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AC7E1597-445B-449F-928B-ED247AD1FCF9}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 29}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2860560B-954B-4069-85F8-7BD542A96ED4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2860560B-954B-4069-85F8-7BD542A96ED4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 30}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{71999774-4FAD-46EB-A5BF-21586BC5941F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{71999774-4FAD-46EB-A5BF-21586BC5941F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 31}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AAECA6E2-96BA-488F-A743-2F7124998617}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AAECA6E2-96BA-488F-A743-2F7124998617}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 32}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Tr.Gen"], "type": 1, "name": "{7CF5DC7B-FEDB-4B2E-8C86-2EF05A8F9173}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7CF5DC7B-FEDB-4B2E-8C86-2EF05A8F9173}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|Protocol=6|App=C:\\ProgramData\\winnmgr\\svcnetwk.exe|Name=System Network Control|Desc=System Network Control|EmbedCtxt=System Network Control|", "analysis_data": "C:\\ProgramData\\winnmgr\\svcnetwk.exe", "view": 64, "file_md5": "FB4C8364B3E12D53BC09594B18BE120B", "file_sha256": "41C8C11DF96F759C2897495FE8CABC4343A6308FFF2604F357F1FA55CE6765DE", "has_file": true, "file_exists": true, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 2, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 33}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CDA5A5D0-AB86-462A-A1FB-E34E52BF3758}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CDA5A5D0-AB86-462A-A1FB-E34E52BF3758}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 34}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0851C830-FEAB-4ADA-ACBC-63EE4C48EB0E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0851C830-FEAB-4ADA-ACBC-63EE4C48EB0E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 35}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{57465903-C046-43D5-A22F-D9A10F3220C7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{57465903-C046-43D5-A22F-D9A10F3220C7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 36}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{623D339D-7BF1-47CA-8B49-28C1AFA85B87}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{623D339D-7BF1-47CA-8B49-28C1AFA85B87}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 37}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{766398FF-58AB-493E-9759-C5D9E6666AA4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{766398FF-58AB-493E-9759-C5D9E6666AA4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 38}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EAD6AB5E-F521-4D7E-8D21-E37C8E01EEF3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EAD6AB5E-F521-4D7E-8D21-E37C8E01EEF3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 39}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B04B0FBA-A415-4A53-9AD7-891C5894A19D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B04B0FBA-A415-4A53-9AD7-891C5894A19D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 40}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D309036B-2DB3-43BC-A546-01B4CADACFE9}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D309036B-2DB3-43BC-A546-01B4CADACFE9}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 41}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{507BA27D-73CE-410E-B71B-587119474083}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{507BA27D-73CE-410E-B71B-587119474083}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 42}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8FD92CF3-ABA0-49DB-A0A5-7CABEF53650B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8FD92CF3-ABA0-49DB-A0A5-7CABEF53650B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 43}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{03BA30BC-79FB-4D3F-B32B-BAEE0C04E68F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{03BA30BC-79FB-4D3F-B32B-BAEE0C04E68F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 44}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7BC6825A-CC3C-4522-8A10-D55B9F863CFA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7BC6825A-CC3C-4522-8A10-D55B9F863CFA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 45}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3336A538-0B50-4C31-9A16-27B8B6EF0FA7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3336A538-0B50-4C31-9A16-27B8B6EF0FA7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 46}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{111630FB-AC5C-4616-AC2D-9D620DB18D73}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{111630FB-AC5C-4616-AC2D-9D620DB18D73}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 47}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{13B5A355-C3F0-4BAD-8E31-99D74196F3A5}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{13B5A355-C3F0-4BAD-8E31-99D74196F3A5}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 48}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{29A2948C-47B3-4544-BA5B-30CE9C551C0C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{29A2948C-47B3-4544-BA5B-30CE9C551C0C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 49}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6ED49EC9-462E-431B-8730-BA5DB846C985}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6ED49EC9-462E-431B-8730-BA5DB846C985}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 50}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{690B8D7C-38CA-4EFA-85F1-BE66EA48142F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{690B8D7C-38CA-4EFA-85F1-BE66EA48142F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 51}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{13D5D086-78AF-4C58-B7D2-EBAAC3325C6A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{13D5D086-78AF-4C58-B7D2-EBAAC3325C6A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 52}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6BAEA778-E4F3-4763-BBC7-48E7065B2DB8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6BAEA778-E4F3-4763-BBC7-48E7065B2DB8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 53}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4170B40F-C576-4954-ABC7-17818E50CC2B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4170B40F-C576-4954-ABC7-17818E50CC2B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 54}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E2A668E4-61DC-4341-9180-C90AF72081F6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E2A668E4-61DC-4341-9180-C90AF72081F6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 55}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{55F5BCC3-84D9-42A8-88CB-12EA2F61B0EA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{55F5BCC3-84D9-42A8-88CB-12EA2F61B0EA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 56}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D097D61A-B915-4F1D-85A4-281383FEBCEC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D097D61A-B915-4F1D-85A4-281383FEBCEC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 57}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{54364405-5346-4D5B-8641-103ACC9BA739}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{54364405-5346-4D5B-8641-103ACC9BA739}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 58}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2D0B419D-132B-48EB-B87A-53F7DA5B7C32}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2D0B419D-132B-48EB-B87A-53F7DA5B7C32}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 59}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{43139212-AC50-4BD7-A441-5FB9A474869E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{43139212-AC50-4BD7-A441-5FB9A474869E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 60}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{06112866-607A-401A-86AD-EA32E8EB65D2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{06112866-607A-401A-86AD-EA32E8EB65D2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 61}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{046C847B-B493-4655-B57F-94D8865142DA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{046C847B-B493-4655-B57F-94D8865142DA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 62}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{96C0114D-2939-49E3-9252-B2893BB52AE8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{96C0114D-2939-49E3-9252-B2893BB52AE8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 63}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4B60739F-D617-4097-AF6E-ED9B21D9A035}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4B60739F-D617-4097-AF6E-ED9B21D9A035}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 64}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{117C2400-0747-4611-8547-81A03A9035F1}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{117C2400-0747-4611-8547-81A03A9035F1}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 65}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AD3A3E5C-A67A-4ED3-A707-CED49B3B63B4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AD3A3E5C-A67A-4ED3-A707-CED49B3B63B4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 66}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{46ACC39A-2AA0-4C63-A9D0-9121DEF245B5}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{46ACC39A-2AA0-4C63-A9D0-9121DEF245B5}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 67}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{78CA01EA-75A5-4B90-ADE9-2AF5007D8B84}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{78CA01EA-75A5-4B90-ADE9-2AF5007D8B84}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 68}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C3CE913D-B4FE-4762-BFD6-7EEA3817A234}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C3CE913D-B4FE-4762-BFD6-7EEA3817A234}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 69}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DC450CD3-52B7-4359-B1EE-AE793452CBA2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DC450CD3-52B7-4359-B1EE-AE793452CBA2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 70}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{710A52C1-F14B-463C-AF1B-F4081D9F8F77}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{710A52C1-F14B-463C-AF1B-F4081D9F8F77}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 71}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E3E0C62A-7AC2-4AC7-9FFB-7AB6349BE2D3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E3E0C62A-7AC2-4AC7-9FFB-7AB6349BE2D3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 72}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{69B9DA8E-7CC5-4A5E-A15C-BE0C83858050}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{69B9DA8E-7CC5-4A5E-A15C-BE0C83858050}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 73}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{77F3A301-6AF4-4D03-A689-67DAE9FB3588}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{77F3A301-6AF4-4D03-A689-67DAE9FB3588}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 74}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9D6E7FC9-D576-49E8-A8AC-F72F3FA34F86}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9D6E7FC9-D576-49E8-A8AC-F72F3FA34F86}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 75}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A1317A9B-9699-4BCA-9E09-2322DB859EA9}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A1317A9B-9699-4BCA-9E09-2322DB859EA9}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 76}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7A24FF15-AA34-42CB-BB52-46B4FEAE9368}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7A24FF15-AA34-42CB-BB52-46B4FEAE9368}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 77}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F69831FF-43CA-4616-A4DD-7F53B2A1FF84}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F69831FF-43CA-4616-A4DD-7F53B2A1FF84}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 78}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{03AEA85E-BCDB-4965-ACAF-D597A3BCFF46}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{03AEA85E-BCDB-4965-ACAF-D597A3BCFF46}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 79}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1A598813-9AA3-4924-AA7C-624E416F6D4E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1A598813-9AA3-4924-AA7C-624E416F6D4E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 80}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{489FFE41-9752-4BEC-99D6-18A2ED14DCAA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{489FFE41-9752-4BEC-99D6-18A2ED14DCAA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 81}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{26E000A8-4B3B-43CC-AE49-040A48BF998B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{26E000A8-4B3B-43CC-AE49-040A48BF998B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 82}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C51EFBB5-F622-4005-AB1F-5D2F48A4A1C7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C51EFBB5-F622-4005-AB1F-5D2F48A4A1C7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 83}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{786FB88F-9A5D-42FF-BB8D-3703AAE321F8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{786FB88F-9A5D-42FF-BB8D-3703AAE321F8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 84}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6C7CC281-10EC-4716-80DB-936C47BE5C8E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6C7CC281-10EC-4716-80DB-936C47BE5C8E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 85}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E98CF423-D00A-419F-A392-5F6F7B649E2E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E98CF423-D00A-419F-A392-5F6F7B649E2E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 86}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EEC4EF1D-069D-4F2A-A2DF-70BDD142797D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EEC4EF1D-069D-4F2A-A2DF-70BDD142797D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 87}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4DC8064D-C008-4E7A-8DE5-A1C5F6316F2F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4DC8064D-C008-4E7A-8DE5-A1C5F6316F2F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 88}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A2871BA7-4BFE-49C5-A99D-B325604BD512}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A2871BA7-4BFE-49C5-A99D-B325604BD512}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 89}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8AE12C75-2421-482E-976C-B1D984A69C59}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8AE12C75-2421-482E-976C-B1D984A69C59}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 90}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B0F20DCC-0656-46FA-937A-23643D18AE9D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B0F20DCC-0656-46FA-937A-23643D18AE9D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 91}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2CB8D9F0-B808-4CC3-89C1-EE6D18CFF5A5}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2CB8D9F0-B808-4CC3-89C1-EE6D18CFF5A5}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 92}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7A6574EE-2578-4CA7-BF8C-4F5D0505E1BE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7A6574EE-2578-4CA7-BF8C-4F5D0505E1BE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 93}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2593DC5F-10CD-4A8F-BEA7-7FCEB9185AE2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2593DC5F-10CD-4A8F-BEA7-7FCEB9185AE2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 94}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2CD7EE50-25C2-4E4B-8855-3921FE702DCE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2CD7EE50-25C2-4E4B-8855-3921FE702DCE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 95}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{20A93B1A-D54C-41DD-8004-C5C950536C80}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{20A93B1A-D54C-41DD-8004-C5C950536C80}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 96}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{90B67538-EDE9-45F1-BD4E-6D66996D4DB3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{90B67538-EDE9-45F1-BD4E-6D66996D4DB3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 97}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7FF22F94-9E71-48F2-A043-429CEBA6F523}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7FF22F94-9E71-48F2-A043-429CEBA6F523}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 98}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B8A0A49A-59CB-4192-A172-F2AA9B11F7B9}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B8A0A49A-59CB-4192-A172-F2AA9B11F7B9}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 99}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1D295058-505B-4B0E-BF9D-DE78EE58E9B2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1D295058-505B-4B0E-BF9D-DE78EE58E9B2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 100}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{59C6F8EB-D93E-48E4-AD8B-CF757E2F8179}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{59C6F8EB-D93E-48E4-AD8B-CF757E2F8179}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 101}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6D7690BC-4286-4D18-889B-945A80BD7187}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6D7690BC-4286-4D18-889B-945A80BD7187}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 102}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3D6A897B-98C5-4620-B61C-F4B487792B5F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3D6A897B-98C5-4620-B61C-F4B487792B5F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 103}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C4143ECF-B11E-4C56-944E-A3E58A6551A3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C4143ECF-B11E-4C56-944E-A3E58A6551A3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 104}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C8550693-F7DC-4090-B415-B17E841B03AE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C8550693-F7DC-4090-B415-B17E841B03AE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 105}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4221BDF0-82FE-4C85-98B9-113EBFF6C32E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4221BDF0-82FE-4C85-98B9-113EBFF6C32E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 106}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8266F659-ACE9-479F-899F-63CD5D600FA4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8266F659-ACE9-479F-899F-63CD5D600FA4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 107}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7EF38220-C40B-438C-A4E6-32BE24D83B1C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7EF38220-C40B-438C-A4E6-32BE24D83B1C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 108}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{261E7DBA-CA38-4272-9429-374322CE888D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{261E7DBA-CA38-4272-9429-374322CE888D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 109}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{013F38A4-C41F-4F85-9DF1-D275B394498D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{013F38A4-C41F-4F85-9DF1-D275B394498D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 110}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0FAB3B02-BBD2-4D2C-8D49-63CE62C7AE01}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0FAB3B02-BBD2-4D2C-8D49-63CE62C7AE01}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 111}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5E03905B-EA86-4F18-8416-428BC10F4040}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5E03905B-EA86-4F18-8416-428BC10F4040}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 112}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CB728C7E-5753-4064-A6C1-EEA1DD01EB25}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CB728C7E-5753-4064-A6C1-EEA1DD01EB25}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 113}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0D8299F1-0FEF-43DD-916A-7D48CD5B5DA5}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0D8299F1-0FEF-43DD-916A-7D48CD5B5DA5}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 114}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7A88FEAC-3DCC-4A67-AD3D-CC99292E2A88}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7A88FEAC-3DCC-4A67-AD3D-CC99292E2A88}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 115}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DF86DF3D-8AAE-4BBA-B617-CC6A945FC325}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DF86DF3D-8AAE-4BBA-B617-CC6A945FC325}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 116}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{175F28F4-66CC-4BF8-8FE9-3BDC1037E67D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{175F28F4-66CC-4BF8-8FE9-3BDC1037E67D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 117}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{346B856C-DF80-4F9F-B27E-8EC44792FD94}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{346B856C-DF80-4F9F-B27E-8EC44792FD94}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 118}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D8CE40F0-6016-4073-9EC6-D7EF787E8C03}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D8CE40F0-6016-4073-9EC6-D7EF787E8C03}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 119}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E1D2DDCC-E1F2-4A2B-8CCD-13D44BA81548}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E1D2DDCC-E1F2-4A2B-8CCD-13D44BA81548}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 120}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B8F0FAD4-5FDA-4B8F-BD7D-582A62BA1DCA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B8F0FAD4-5FDA-4B8F-BD7D-582A62BA1DCA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 121}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B09B9382-8C5D-41DA-A38E-EC70107B46CD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B09B9382-8C5D-41DA-A38E-EC70107B46CD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 122}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A602D6FA-C9B6-4668-9E94-458CB7BD7367}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A602D6FA-C9B6-4668-9E94-458CB7BD7367}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 123}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AE222F61-FA1F-4891-8311-479E46EB905B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AE222F61-FA1F-4891-8311-479E46EB905B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 124}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9DB0807D-D6B9-4066-89C3-060081AA6EF6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9DB0807D-D6B9-4066-89C3-060081AA6EF6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 125}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3DAD6342-FC64-41A9-8C1C-B18E838C0DAC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3DAD6342-FC64-41A9-8C1C-B18E838C0DAC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 126}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{77795F4B-B59D-4012-BE81-A2B36EA778FA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{77795F4B-B59D-4012-BE81-A2B36EA778FA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 127}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{057EF09D-8618-43EB-8EDD-275F6CBB4A5F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{057EF09D-8618-43EB-8EDD-275F6CBB4A5F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 128}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{75CED6FB-A4F8-4557-90D5-F6B43B348977}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{75CED6FB-A4F8-4557-90D5-F6B43B348977}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 129}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AA770BF8-54F2-422E-97F4-043E4384D5D8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AA770BF8-54F2-422E-97F4-043E4384D5D8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 130}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B31AC0CB-8F30-4960-BA80-2A7ED567870C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B31AC0CB-8F30-4960-BA80-2A7ED567870C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 131}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EA7CB534-342C-45D2-97A7-642F48457CB8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EA7CB534-342C-45D2-97A7-642F48457CB8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 132}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{FF676715-09CF-490A-89ED-75047FADCEBC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{FF676715-09CF-490A-89ED-75047FADCEBC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 133}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2F648D30-7786-4822-94D7-5F67A2DF6644}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2F648D30-7786-4822-94D7-5F67A2DF6644}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 134}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3E166706-70BE-43CD-9FF7-31E628F2A25E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3E166706-70BE-43CD-9FF7-31E628F2A25E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 135}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F77904A1-85A0-4333-8FA2-F01C9E8ACB45}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F77904A1-85A0-4333-8FA2-F01C9E8ACB45}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 136}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7A0EABA3-1680-4A5D-92F7-7886C61BD255}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7A0EABA3-1680-4A5D-92F7-7886C61BD255}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 137}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CF2C169E-CDAC-45DE-9043-F4903740D0C1}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CF2C169E-CDAC-45DE-9043-F4903740D0C1}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 138}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C5C5ED4D-D72E-4435-956F-621BC285137A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C5C5ED4D-D72E-4435-956F-621BC285137A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 139}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{85C824D3-EECD-4C49-8391-ECF9C6CA969C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{85C824D3-EECD-4C49-8391-ECF9C6CA969C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 140}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4C8BBCBF-E65F-4E4C-A0D5-673CB0DCB4BC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4C8BBCBF-E65F-4E4C-A0D5-673CB0DCB4BC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 141}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3DF997CE-ECD8-4544-9758-B40C16BFA10A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3DF997CE-ECD8-4544-9758-B40C16BFA10A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 142}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{407F6B3D-A8D6-4952-8ED0-F2035CD9A87D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{407F6B3D-A8D6-4952-8ED0-F2035CD9A87D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 143}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B7E72B44-A73F-4743-B227-D03DDB057633}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B7E72B44-A73F-4743-B227-D03DDB057633}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 144}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F084659D-0DC9-4215-A6F1-D30CE4151A79}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F084659D-0DC9-4215-A6F1-D30CE4151A79}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 145}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F5399ABB-25B8-45CC-AE51-D233A059B61F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F5399ABB-25B8-45CC-AE51-D233A059B61F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 146}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2662DA5A-0AC1-4D7B-B6F9-4D6F956D1882}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2662DA5A-0AC1-4D7B-B6F9-4D6F956D1882}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 147}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8C4440E9-DFC5-4C21-98E0-ABEFD08AA67D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8C4440E9-DFC5-4C21-98E0-ABEFD08AA67D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 148}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6E45456F-B05E-4330-9AAA-618CF32296B5}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6E45456F-B05E-4330-9AAA-618CF32296B5}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 149}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4414FEB5-026F-44E7-917F-DDB2C62BBBFB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4414FEB5-026F-44E7-917F-DDB2C62BBBFB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 150}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F42EDD18-F2DF-4C4A-9F12-CB57E1427CF3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F42EDD18-F2DF-4C4A-9F12-CB57E1427CF3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 151}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{ACC2BDF4-549F-4865-A4B0-2CF869B3C947}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{ACC2BDF4-549F-4865-A4B0-2CF869B3C947}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 152}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EDC98A53-C10A-44A9-A288-8F99E44A66FB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EDC98A53-C10A-44A9-A288-8F99E44A66FB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 153}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7EE0A09A-AE29-43E3-AF99-04F877335D67}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7EE0A09A-AE29-43E3-AF99-04F877335D67}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 154}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{000F83E7-D27C-46A3-BDBE-99A47826C221}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{000F83E7-D27C-46A3-BDBE-99A47826C221}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 155}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{37FD38A7-70D0-4201-875F-A2EBCE926980}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{37FD38A7-70D0-4201-875F-A2EBCE926980}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 156}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2F03A345-14EF-4C93-98FA-B712C4592228}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2F03A345-14EF-4C93-98FA-B712C4592228}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 157}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{776F594D-1F3C-4739-958D-0CD38DBC3D35}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{776F594D-1F3C-4739-958D-0CD38DBC3D35}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 158}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{33976304-7AE2-4AF0-9F69-8A7BE85F2F4D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{33976304-7AE2-4AF0-9F69-8A7BE85F2F4D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 159}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0092E34E-9EA0-4EE9-822B-CD9A8B1565EE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0092E34E-9EA0-4EE9-822B-CD9A8B1565EE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 160}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{718BF72E-125C-49A0-B7D5-CB7A821B7281}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{718BF72E-125C-49A0-B7D5-CB7A821B7281}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 161}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CD800EF1-F4DE-4015-A308-CCC3C0A9C70E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CD800EF1-F4DE-4015-A308-CCC3C0A9C70E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 162}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A9676F8E-8F12-4A47-94D1-F0F18E7ADB2B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A9676F8E-8F12-4A47-94D1-F0F18E7ADB2B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 163}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AF1820EE-BE8B-43CF-8E0F-FF12DAFA79BE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AF1820EE-BE8B-43CF-8E0F-FF12DAFA79BE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|",

#25 yukukuhi

Authentic Member

Authentic Member
92 posts

Posted 29 December 2019 - 08:22 AM

"analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 164}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AAD417CF-FFBC-4D12-86C3-5A789C5C7115}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AAD417CF-FFBC-4D12-86C3-5A789C5C7115}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 165}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{215993C8-2622-4E76-8296-497ED789D984}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{215993C8-2622-4E76-8296-497ED789D984}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 166}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8F446B0F-4A59-4D94-BD00-9217C19721E6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8F446B0F-4A59-4D94-BD00-9217C19721E6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 167}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{14F4EAB5-04FC-4DFD-86CF-8A710590E2B2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{14F4EAB5-04FC-4DFD-86CF-8A710590E2B2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 168}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E2938F21-5681-45BD-B214-51BAEF2417D6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E2938F21-5681-45BD-B214-51BAEF2417D6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 169}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BE316C1F-4148-4480-B9EA-8AFC193F353C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BE316C1F-4148-4480-B9EA-8AFC193F353C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 170}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E86B7F9B-1F61-4511-8A2A-86A2FC370ECC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E86B7F9B-1F61-4511-8A2A-86A2FC370ECC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 171}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{97B803EF-B4DC-4632-A759-6C3128DAAE25}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{97B803EF-B4DC-4632-A759-6C3128DAAE25}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 172}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{19C32D69-5CD7-4B2D-B27F-76DAA5A4D42E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{19C32D69-5CD7-4B2D-B27F-76DAA5A4D42E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 173}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BD56EAF1-990B-47A8-A546-1873F5A0F917}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BD56EAF1-990B-47A8-A546-1873F5A0F917}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 174}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9BC9559D-D400-4F2D-A832-BC9B2C75DBBA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9BC9559D-D400-4F2D-A832-BC9B2C75DBBA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 175}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6F32854F-E922-46B8-BA0C-541B535D154D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6F32854F-E922-46B8-BA0C-541B535D154D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 176}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{479EE95F-B6FC-4A3A-B8D5-A12326F5D636}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{479EE95F-B6FC-4A3A-B8D5-A12326F5D636}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 177}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{72C90D6C-9CCF-451B-8DCD-E73569CB2095}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{72C90D6C-9CCF-451B-8DCD-E73569CB2095}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 178}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2354CBB2-988C-4AAE-A975-4E53F2E29BC3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2354CBB2-988C-4AAE-A975-4E53F2E29BC3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 179}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{581A41A0-6A57-4B1C-83AD-52B6DC28BCFE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{581A41A0-6A57-4B1C-83AD-52B6DC28BCFE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 180}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8830E4E9-00C5-4FC9-B0FD-DB0C53BFB9D9}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8830E4E9-00C5-4FC9-B0FD-DB0C53BFB9D9}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 181}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EF41B2C1-F3E1-4CB3-BF18-A418AA3E40F0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EF41B2C1-F3E1-4CB3-BF18-A418AA3E40F0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 182}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{741E748A-9EBE-47F9-A113-1A6D8144EF9A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{741E748A-9EBE-47F9-A113-1A6D8144EF9A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 183}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BEE30A8E-4AFA-4873-8101-65CFCC47D3E4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BEE30A8E-4AFA-4873-8101-65CFCC47D3E4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 184}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F311C9A3-790C-4D84-AC47-EFCD29FFD3B8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F311C9A3-790C-4D84-AC47-EFCD29FFD3B8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 185}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{767BA9FB-FC54-4138-81CF-58A003696CBC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{767BA9FB-FC54-4138-81CF-58A003696CBC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 186}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C7F05744-CE4A-4713-832E-F9AAD6D35E40}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C7F05744-CE4A-4713-832E-F9AAD6D35E40}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 187}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2848CE0F-8C1C-4C68-BF41-C8C010A65384}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2848CE0F-8C1C-4C68-BF41-C8C010A65384}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 188}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{70F418F2-851B-4B33-88EE-39C222B0C8E4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{70F418F2-851B-4B33-88EE-39C222B0C8E4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 189}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3D4B998F-CC8C-440F-807F-FC197D24F2AD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3D4B998F-CC8C-440F-807F-FC197D24F2AD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 190}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0CAE669E-442F-496A-8801-CD1D787AE394}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0CAE669E-442F-496A-8801-CD1D787AE394}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 191}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1BE62BF4-2970-406B-BD80-581F1E1AE2BA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1BE62BF4-2970-406B-BD80-581F1E1AE2BA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 192}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EA7CBCDB-9EC8-448A-8736-9EF3D31683E1}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EA7CBCDB-9EC8-448A-8736-9EF3D31683E1}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 193}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EF40E2C8-D353-475A-915C-AD9F1A697D36}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EF40E2C8-D353-475A-915C-AD9F1A697D36}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 194}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B3E37956-85D8-41E0-815F-ED234DEDA560}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B3E37956-85D8-41E0-815F-ED234DEDA560}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 195}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{41969779-6390-4B71-AA24-CD5FB1C78574}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{41969779-6390-4B71-AA24-CD5FB1C78574}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 196}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4729CDA6-E3BA-48C9-B2AF-21D68E9438C3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4729CDA6-E3BA-48C9-B2AF-21D68E9438C3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 197}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9CB06770-A026-4959-BF87-5125F8CCDCE0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9CB06770-A026-4959-BF87-5125F8CCDCE0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 198}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{32788BA2-AB69-41C2-91C1-554DB8FA0AE3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{32788BA2-AB69-41C2-91C1-554DB8FA0AE3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 199}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{879487A3-EF10-4E69-A62D-C8D6E17C905F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{879487A3-EF10-4E69-A62D-C8D6E17C905F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 200}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8CB9B181-C944-4E6B-AA32-84BE084092D3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8CB9B181-C944-4E6B-AA32-84BE084092D3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 201}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{531B54AE-BE2D-4F75-9078-40521A8ABACE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{531B54AE-BE2D-4F75-9078-40521A8ABACE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 202}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1336308B-C8A2-482A-8C82-A2696031447C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1336308B-C8A2-482A-8C82-A2696031447C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 203}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{FF2EC1AE-7582-4E94-B652-662ECC1D29AD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{FF2EC1AE-7582-4E94-B652-662ECC1D29AD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 204}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2A996BAB-5CF2-497F-AC46-90F3DA5459C2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2A996BAB-5CF2-497F-AC46-90F3DA5459C2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 205}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9F192725-3657-472E-8C76-AF7031A39A26}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9F192725-3657-472E-8C76-AF7031A39A26}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 206}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8B942052-DBC5-4DF8-8BB9-9A2D4C6B9D98}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8B942052-DBC5-4DF8-8BB9-9A2D4C6B9D98}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 207}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A7724DD7-6146-46DB-B05C-6E4E250A3B82}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A7724DD7-6146-46DB-B05C-6E4E250A3B82}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 208}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8D84440E-CCC6-4FDE-A32F-58A5BE4D75E3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8D84440E-CCC6-4FDE-A32F-58A5BE4D75E3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 209}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9AA88E9F-CA31-43D8-B397-EC645F0D9F24}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9AA88E9F-CA31-43D8-B397-EC645F0D9F24}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 210}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E4E9A869-D6F3-4561-9D06-7322D4342803}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E4E9A869-D6F3-4561-9D06-7322D4342803}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 211}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2615C699-50AE-4AD6-96B2-9BC030451961}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2615C699-50AE-4AD6-96B2-9BC030451961}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 212}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C3EF5428-AE3E-4BAA-B586-3AD6BD57B5F6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C3EF5428-AE3E-4BAA-B586-3AD6BD57B5F6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 213}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F3D512C4-2105-4C12-A2C4-697345FCD144}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F3D512C4-2105-4C12-A2C4-697345FCD144}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 214}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{69EA3373-24B7-42D2-AA28-C8112BBDCB35}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{69EA3373-24B7-42D2-AA28-C8112BBDCB35}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 215}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D41F670C-BB41-4F5F-B859-AFFE2C7A2FD5}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D41F670C-BB41-4F5F-B859-AFFE2C7A2FD5}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 216}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0F6AF1B5-D1A9-4240-A1F0-029F92629F42}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0F6AF1B5-D1A9-4240-A1F0-029F92629F42}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 217}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BB3E89AF-2C8B-453F-9842-D004E204B35D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BB3E89AF-2C8B-453F-9842-D004E204B35D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 218}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{46786C3B-4545-4AFE-9295-6568E34DA14C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{46786C3B-4545-4AFE-9295-6568E34DA14C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 219}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{46AAA672-CFE2-41C0-B7BE-357FEA7B957E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{46AAA672-CFE2-41C0-B7BE-357FEA7B957E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 220}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E1DCA396-D884-4CDB-8C3B-894EF82D05B0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E1DCA396-D884-4CDB-8C3B-894EF82D05B0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 221}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C49BA57B-6429-4038-B7AC-709C738742FC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C49BA57B-6429-4038-B7AC-709C738742FC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 222}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D34BC7C5-3D29-4351-A5A5-3A7757C45D64}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D34BC7C5-3D29-4351-A5A5-3A7757C45D64}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 223}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BB7B64E7-F2BD-4CD9-8603-C4FF9CACCA2E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BB7B64E7-F2BD-4CD9-8603-C4FF9CACCA2E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 224}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{118B5E3D-BD96-4987-9709-9967AD612BEB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{118B5E3D-BD96-4987-9709-9967AD612BEB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 225}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3D503230-1BCD-4FFB-B254-6F70C74FA64D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3D503230-1BCD-4FFB-B254-6F70C74FA64D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 226}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{97C1FB82-6285-4875-B315-04C683B77D63}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{97C1FB82-6285-4875-B315-04C683B77D63}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 227}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D49C19EB-60A5-410B-A51B-53DD444AC4F4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D49C19EB-60A5-410B-A51B-53DD444AC4F4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 228}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1D90760E-AC7A-45C7-B6B4-44CB51EE2866}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1D90760E-AC7A-45C7-B6B4-44CB51EE2866}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 229}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DD42C3EF-023C-40A7-A31B-24D1B2D4FD72}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DD42C3EF-023C-40A7-A31B-24D1B2D4FD72}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 230}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{644D91B2-B48B-4D31-A767-C2B4B52B3ADD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{644D91B2-B48B-4D31-A767-C2B4B52B3ADD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 231}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A8451A78-D45D-412A-84F8-AA333F5BC6C7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A8451A78-D45D-412A-84F8-AA333F5BC6C7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 232}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{12E0BE69-DBE7-4583-90DF-EF6938A4F015}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{12E0BE69-DBE7-4583-90DF-EF6938A4F015}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 233}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4E8907C4-2BFC-4556-8EA5-F3CBFAD07B73}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4E8907C4-2BFC-4556-8EA5-F3CBFAD07B73}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 234}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{00DAC9A6-7B93-4BFC-BB46-4BD530B04DAD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{00DAC9A6-7B93-4BFC-BB46-4BD530B04DAD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 235}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2E0C8EF1-896B-4B6C-81C3-A78DD6692C29}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2E0C8EF1-896B-4B6C-81C3-A78DD6692C29}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 236}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{07BB13E8-27C7-47BB-B14B-71590D831A79}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{07BB13E8-27C7-47BB-B14B-71590D831A79}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 237}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5F221BFF-46E1-4C5A-B2F2-2002F4AFEC5F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5F221BFF-46E1-4C5A-B2F2-2002F4AFEC5F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 238}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{54A9E959-18BB-4A65-BF65-1CA33CA02E1C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{54A9E959-18BB-4A65-BF65-1CA33CA02E1C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 239}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4DF35AA0-4EE7-43D8-B726-E27724272F74}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4DF35AA0-4EE7-43D8-B726-E27724272F74}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 240}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A289126B-AC49-448D-8046-D25549B1B807}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A289126B-AC49-448D-8046-D25549B1B807}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 241}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AB7FB68F-FB88-403F-81F4-DF7F91FEA87B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AB7FB68F-FB88-403F-81F4-DF7F91FEA87B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 242}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D1CB5AA9-3106-437A-8D6A-D363E2BC1CC2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D1CB5AA9-3106-437A-8D6A-D363E2BC1CC2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 243}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F7220061-3D2B-48C1-85A3-8EF0F8244422}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F7220061-3D2B-48C1-85A3-8EF0F8244422}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 244}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C84293CA-C878-4FC9-9005-26F9F568B93F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C84293CA-C878-4FC9-9005-26F9F568B93F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 245}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C94DE968-0FB1-4C10-9DCE-11C841E37F16}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C94DE968-0FB1-4C10-9DCE-11C841E37F16}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 246}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BFD99A90-269B-4B89-8D62-9ABC0068196A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BFD99A90-269B-4B89-8D62-9ABC0068196A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 247}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1DDFEE36-A254-4A4F-944A-D5D8C020B5F2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1DDFEE36-A254-4A4F-944A-D5D8C020B5F2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 248}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EFE7AB03-68CF-4503-BD7B-9F3816B1F41C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EFE7AB03-68CF-4503-BD7B-9F3816B1F41C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 249}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1F4E4127-AF0E-44E2-BD08-201848F171BD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1F4E4127-AF0E-44E2-BD08-201848F171BD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 250}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EF73A003-D39B-4CBE-98FF-500F40A90602}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EF73A003-D39B-4CBE-98FF-500F40A90602}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 251}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{65BB0BA3-CE8E-48E6-88A1-DDDC974F7717}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{65BB0BA3-CE8E-48E6-88A1-DDDC974F7717}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 252}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E2B6740E-F3FF-4CCC-BAC6-69C205270A45}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E2B6740E-F3FF-4CCC-BAC6-69C205270A45}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 253}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DA726ADC-32D7-4047-863C-2F2361319AE2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DA726ADC-32D7-4047-863C-2F2361319AE2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 254}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6FC6D721-B1C8-4320-9C16-234981275B7C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6FC6D721-B1C8-4320-9C16-234981275B7C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 255}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1FC0C598-3063-4788-B245-7EA245B1708E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1FC0C598-3063-4788-B245-7EA245B1708E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 256}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D257A152-8650-4685-80F8-92936206B3BF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D257A152-8650-4685-80F8-92936206B3BF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 257}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{270C5F00-9439-4543-BCCD-9A45DDC88762}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{270C5F00-9439-4543-BCCD-9A45DDC88762}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 258}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0EE08272-D55A-4D9D-BC4F-03D5E4A58327}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0EE08272-D55A-4D9D-BC4F-03D5E4A58327}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 259}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DDE74174-6A28-46FA-9096-10878FB16B08}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DDE74174-6A28-46FA-9096-10878FB16B08}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 260}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CE481B60-5443-416B-9AB0-38A874692D03}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CE481B60-5443-416B-9AB0-38A874692D03}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 261}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F04D8DA1-CAD9-486E-AB81-3164AABA49D0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F04D8DA1-CAD9-486E-AB81-3164AABA49D0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 262}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{31317C30-C7DF-4CE0-BACB-59329178A32B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{31317C30-C7DF-4CE0-BACB-59329178A32B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 263}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1579718B-2973-4775-958D-C52D6EB04A81}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1579718B-2973-4775-958D-C52D6EB04A81}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 264}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{61850F90-AE69-45C8-B780-03FDD78A9648}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{61850F90-AE69-45C8-B780-03FDD78A9648}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 265}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1595F3FA-72FB-401C-BFA8-6A6BEF538A5F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1595F3FA-72FB-401C-BFA8-6A6BEF538A5F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 266}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{08FB44C0-BDBC-4087-BA81-041C8EF38E80}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{08FB44C0-BDBC-4087-BA81-041C8EF38E80}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 267}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5F6B9290-C131-4C8E-9A90-B9D8AFCC233D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5F6B9290-C131-4C8E-9A90-B9D8AFCC233D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 268}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{39F82AAA-DB9E-4745-9302-A59A5A571A76}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{39F82AAA-DB9E-4745-9302-A59A5A571A76}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 269}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BE3DD640-BF0B-4DB8-A13B-CAAA10F42C29}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BE3DD640-BF0B-4DB8-A13B-CAAA10F42C29}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 270}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B143AFF3-0AEB-41B3-A49A-C2B1CFA11B39}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B143AFF3-0AEB-41B3-A49A-C2B1CFA11B39}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 271}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A6DDD118-DD4E-4ECF-A3CB-1E6A6B7FF269}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A6DDD118-DD4E-4ECF-A3CB-1E6A6B7FF269}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 272}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F33B801A-7236-42A4-B186-46CA3A530A19}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F33B801A-7236-42A4-B186-46CA3A530A19}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 273}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E52154B3-BB5B-4D4B-931B-6B7F5432622D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E52154B3-BB5B-4D4B-931B-6B7F5432622D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 274}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{59CF4176-131A-4E20-BD19-EE29308BC7AF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{59CF4176-131A-4E20-BD19-EE29308BC7AF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 275}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D0609DB8-9273-4DE3-9BBA-86109681A8E1}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D0609DB8-9273-4DE3-9BBA-86109681A8E1}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 276}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{543A8BA0-0A44-482B-A2F7-C7C46ABB7B40}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{543A8BA0-0A44-482B-A2F7-C7C46ABB7B40}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 277}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{86388459-4D18-49D6-A738-EAAF17212606}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{86388459-4D18-49D6-A738-EAAF17212606}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 278}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{836AF6CD-3062-4B8F-9859-B787142FC102}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{836AF6CD-3062-4B8F-9859-B787142FC102}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 279}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DC502654-BF9E-4A6C-A3C5-A637B4BD3504}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DC502654-BF9E-4A6C-A3C5-A637B4BD3504}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 280}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{786E0D3F-5599-4EFD-A0AC-24B170D5B00E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{786E0D3F-5599-4EFD-A0AC-24B170D5B00E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 281}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B8E88592-3672-483C-96C0-AC476EF51A9D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B8E88592-3672-483C-96C0-AC476EF51A9D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 282}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BF90893F-0E54-4405-8CF6-FE42045ED6C6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BF90893F-0E54-4405-8CF6-FE42045ED6C6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 283}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C25FC32D-287C-4073-AA59-7D4BF2394F22}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C25FC32D-287C-4073-AA59-7D4BF2394F22}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 284}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{54992CF7-6CA2-48A4-B649-DFB0273193C6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{54992CF7-6CA2-48A4-B649-DFB0273193C6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 285}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E748EAA1-E09B-4A50-9D1C-4ECC06842C61}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E748EAA1-E09B-4A50-9D1C-4ECC06842C61}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 286}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{570D8D10-119D-4D0D-99C1-E14BB8325070}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{570D8D10-119D-4D0D-99C1-E14BB8325070}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 287}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DAC455E3-AAC8-435E-B806-05AD1F42ABEB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DAC455E3-AAC8-435E-B806-05AD1F42ABEB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 288}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C64D9E6C-9CCE-4275-AA98-35E8A5D47A70}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C64D9E6C-9CCE-4275-AA98-35E8A5D47A70}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 289}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D8ACFF02-5E08-463D-9E3E-2338B940F9EE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D8ACFF02-5E08-463D-9E3E-2338B940F9EE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 290}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0F127B71-7AB6-4541-B0CB-6C1EAD9340A7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0F127B71-7AB6-4541-B0CB-6C1EAD9340A7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 291}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2BF17336-4E7A-469E-87FB-68D0F35700E7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2BF17336-4E7A-469E-87FB-68D0F35700E7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 292}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{20819A9E-45DE-47A1-B6E4-8856344460D3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{20819A9E-45DE-47A1-B6E4-8856344460D3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 293}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{761C7ECA-0C34-441A-9AF1-03673AB7D614}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{761C7ECA-0C34-441A-9AF1-03673AB7D614}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 294}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8AF6D688-B975-4788-8BF3-18F4BB7F1BDE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8AF6D688-B975-4788-8BF3-18F4BB7F1BDE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 295}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F32E72F4-AF96-4DC8-BDD2-2E5A554F55A4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F32E72F4-AF96-4DC8-BDD2-2E5A554F55A4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 296}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3C8F698C-3C20-4BB4-A8F5-FA1049988EC7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3C8F698C-3C20-4BB4-A8F5-FA1049988EC7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 297}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{23432A9B-C6D5-4169-A95B-1ED0856B1989}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{23432A9B-C6D5-4169-A95B-1ED0856B1989}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 298}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{156F2E4A-1DE0-4773-B429-F0169D366B86}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{156F2E4A-1DE0-4773-B429-F0169D366B86}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 299}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A956400F-B56F-4AED-A565-3208C536497D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A956400F-B56F-4AED-A565-3208C536497D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 300}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C911D019-3127-4011-97DC-4D8EC118F149}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C911D019-3127-4011-97DC-4D8EC118F149}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 301}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0E039A97-BC7B-4C50-9570-BBC006A1E9D7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0E039A97-BC7B-4C50-9570-BBC006A1E9D7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 302}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{23260966-74A8-4B3D-A925-E9F46B4C82E7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{23260966-74A8-4B3D-A925-E9F46B4C82E7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 303}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{207804AD-7505-46A7-BC29-0EBA247F8FD0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{207804AD-7505-46A7-BC29-0EBA247F8FD0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 304}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C0FED9E5-6642-423C-B9B9-70820366A3EF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C0FED9E5-6642-423C-B9B9-70820366A3EF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 305}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7FB9BDE4-4664-4BC8-921E-BA8E2B1A575E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7FB9BDE4-4664-4BC8-921E-BA8E2B1A575E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 306}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{78448656-2CFD-4753-80A8-B59A420C1531}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{78448656-2CFD-4753-80A8-B59A420C1531}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 307}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2AE4F507-18FD-4F86-91A5-589802826D43}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2AE4F507-18FD-4F86-91A5-589802826D43}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 308}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7DE8F549-C5B2-411A-8492-8E52C6D83CFC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7DE8F549-C5B2-411A-8492-8E52C6D83CFC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 309}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CCBC2264-BC37-4264-8F1C-26D970DF6342}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CCBC2264-BC37-4264-8F1C-26D970DF6342}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 310}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D820648D-A6AC-4D46-82EC-689BAE1E6BD2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D820648D-A6AC-4D46-82EC-689BAE1E6BD2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 311}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6290C808-5EBB-47CA-AC56-1C4B60C00DFD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6290C808-5EBB-47CA-AC56-1C4B60C00DFD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 312}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{68437C6E-5197-4EE0-8B18-F273FA3B2981}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{68437C6E-5197-4EE0-8B18-F273FA3B2981}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 313}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4F2D74F8-C51C-4597-9AB7-B6ECB37F0E8C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4F2D74F8-C51C-4597-9AB7-B6ECB37F0E8C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 314}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B517F83D-9C9D-4177-9DF7-4024C4803B45}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B517F83D-9C9D-4177-9DF7-4024C4803B45}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 315}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DA1954D4-7B27-472E-9DF0-7EE8C3A8C26F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DA1954D4-7B27-472E-9DF0-7EE8C3A8C26F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 316}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{54FE1344-592B-4F1E-9938-33037BBC6174}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{54FE1344-592B-4F1E-9938-33037BBC6174}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 317}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4BABF5FF-28AB-42C4-B8D6-E7082E87DBF3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4BABF5FF-28AB-42C4-B8D6-E7082E87DBF3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 318}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{18A53A7A-2B9E-43F9-B51E-E5EEDE4AAD23}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{18A53A7A-2B9E-43F9-B51E-E5EEDE4AAD23}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 319}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CA6FD01D-32D6-4A57-82C8-02D2B7AB9723}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CA6FD01D-32D6-4A57-82C8-02D2B7AB9723}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 320}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D2D102CB-925F-4370-BC02-B3985F7C17AA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D2D102CB-925F-4370-BC02-B3985F7C17AA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 321}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8278C65E-C9A8-4367-B9B9-81E6391BD1BA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8278C65E-C9A8-4367-B9B9-81E6391BD1BA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 322}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1DA247B6-5C10-4DA8-AA66-A53C33A0B57F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1DA247B6-5C10-4DA8-AA66-A53C33A0B57F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 323}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2AD7181F-9B05-4DCA-A40A-12B5CD13D7FF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2AD7181F-9B05-4DCA-A40A-12B5CD13D7FF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 324}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3984DFAC-C956-4FD0-B147-AD780983CC85}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3984DFAC-C956-4FD0-B147-AD780983CC85}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 325}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{35A4C6C0-02BF-49CF-AA27-6292C9AAF0D2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{35A4C6C0-02BF-49CF-AA27-6292C9AAF0D2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 326}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{77EE4ED2-51CF-4E7C-95C9-8954CA77E313}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{77EE4ED2-51CF-4E7C-95C9-8954CA77E313}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 327}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9C6CF96C-AD76-42C2-A2B7-C70E58708564}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9C6CF96C-AD76-42C2-A2B7-C70E58708564}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 328}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{763FDED3-61E1-42D4-9B06-12507AC7595B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{763FDED3-61E1-42D4-9B06-12507AC7595B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 329}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{86F00A55-89A0-41FE-AEDC-229C505AE1FE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{86F00A55-89A0-41FE-AEDC-229C505AE1FE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 330}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8AF0F5C8-B183-45D8-9A28-F0E3E8F39649}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8AF0F5C8-B183-45D8-9A28-F0E3E8F39649}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 331}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D9F3EEF9-B48C-4A40-B2C7-27B7BF572AD6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D9F3EEF9-B48C-4A40-B2C7-27B7BF572AD6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 332}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3FB62FA0-4A52-48E7-BE38-65B185FBB4A0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3FB62FA0-4A52-48E7-BE38-65B185FBB4A0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 333}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A2431AE8-1EA0-4C0D-BE7F-B5EF81173B59}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A2431AE8-1EA0-4C0D-BE7F-B5EF81173B59}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 334}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B5E8D854-317D-413F-A3CD-15B90D8FB841}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B5E8D854-317D-413F-A3CD-15B90D8FB841}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 335}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{516971E9-A5AF-4F23-AACF-1AB4EF12BD14}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{516971E9-A5AF-4F23-AACF-1AB4EF12BD14}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 336}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{342BB011-3830-40C0-8768-D792B63AF674}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{342BB011-3830-40C0-8768-D792B63AF674}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 337}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C5FCEA3A-7BCE-487C-BE6D-ACD28185A3BB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C5FCEA3A-7BCE-487C-BE6D-ACD28185A3BB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 338}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CF7652D8-EE25-463B-89F2-49D1223BBB27}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CF7652D8-EE25-463B-89F2-49D1223BBB27}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 339}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D12C1AC0-87CD-4248-B096-6F146E9F73DE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D12C1AC0-87CD-4248-B096-6F146E9F73DE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 340}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8FDC1055-18F9-4886-BD36-40A751EB8202}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8FDC1055-18F9-4886-BD36-40A751EB8202}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 341}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9D1A41A9-5C44-436F-9B87-7A46D7F2AF32}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9D1A41A9-5C44-436F-9B87-7A46D7F2AF32}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 342}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{704057DA-49D5-4630-B858-0C3EC7429604}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{704057DA-49D5-4630-B858-0C3EC7429604}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 343}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{39FF9879-1CDD-4600-A9C6-4280692C32DB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{39FF9879-1CDD-4600-A9C6-4280692C32DB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 344}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{40F04333-72A2-438B-93C1-A367F5713236}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{40F04333-72A2-438B-93C1-A367F5713236}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 345}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BCAEF955-E7F0-4F24-9916-A7854CAC8B36}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BCAEF955-E7F0-4F24-9916-A7854CAC8B36}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 346}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{78E8BB38-ECBD-4BF6-9A4A-969CFD6B178A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{78E8BB38-ECBD-4BF6-9A4A-969CFD6B178A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 347}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BAAB6E00-3C9B-4A95-9AED-ADCE54F7D577}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BAAB6E00-3C9B-4A95-9AED-ADCE54F7D577}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 348}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C4BBE208-C52C-4EDD-8B68-5CBBC6050E3C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C4BBE208-C52C-4EDD-8B68-5CBBC6050E3C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 349}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EE926B3D-C91F-41C1-A59B-A441E6E3CFDF}", "action": "remove_value",v

Advertisements

Register to Remove

#26 yukukuhi

Authentic Member

Authentic Member
92 posts

Posted 29 December 2019 - 08:27 AM

"path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EE926B3D-C91F-41C1-A59B-A441E6E3CFDF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 350}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C45758E1-E985-4F43-ABCE-F507F933DED0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C45758E1-E985-4F43-ABCE-F507F933DED0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 351}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1A236CD7-7F77-4E3B-83DF-38E206BE8923}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1A236CD7-7F77-4E3B-83DF-38E206BE8923}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 352}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{35E5EB13-EED4-4FE2-806D-344CEFC3EE20}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{35E5EB13-EED4-4FE2-806D-344CEFC3EE20}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 353}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2EF36EC7-C36D-4042-B3C2-ADCC48C3413D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2EF36EC7-C36D-4042-B3C2-ADCC48C3413D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 354}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D42D8557-F86C-42C3-97A4-E7B11E0CE938}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D42D8557-F86C-42C3-97A4-E7B11E0CE938}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 355}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8926D08E-BA33-4210-B168-4DD7298170E7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8926D08E-BA33-4210-B168-4DD7298170E7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 356}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{40D0A155-D1E9-4382-A011-1E2EDAC58FA1}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{40D0A155-D1E9-4382-A011-1E2EDAC58FA1}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 357}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3CCA4C69-379C-476C-848B-AD5BB5B879F3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3CCA4C69-379C-476C-848B-AD5BB5B879F3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 358}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{76A72478-CBCD-429A-85C3-4786B271B924}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{76A72478-CBCD-429A-85C3-4786B271B924}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 359}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6C1606E2-BD80-4868-B090-CCFD3D0A7963}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6C1606E2-BD80-4868-B090-CCFD3D0A7963}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 360}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{04A8D147-C603-4DF2-899C-7C181021B9FC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{04A8D147-C603-4DF2-899C-7C181021B9FC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 361}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EEA0CEB2-D629-4D52-9B3B-A460681AD4E2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EEA0CEB2-D629-4D52-9B3B-A460681AD4E2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 362}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5731AB8C-95E6-4DE4-AE6B-595806B8DE03}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5731AB8C-95E6-4DE4-AE6B-595806B8DE03}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 363}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5E00F95F-AC78-4E21-96D1-2BCBF1BBAC28}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5E00F95F-AC78-4E21-96D1-2BCBF1BBAC28}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 364}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{33EEC96F-F147-43C5-A842-3A05692BD12B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{33EEC96F-F147-43C5-A842-3A05692BD12B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 365}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0CEA22F8-910C-48D3-A3DB-3CF6F52FAB90}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0CEA22F8-910C-48D3-A3DB-3CF6F52FAB90}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 366}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8B874116-A0A3-4C90-8B6D-AD6B1BB43B30}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8B874116-A0A3-4C90-8B6D-AD6B1BB43B30}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 367}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7E425BF0-C620-4209-8068-D97C678F2839}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7E425BF0-C620-4209-8068-D97C678F2839}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 368}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3E74BFFE-0D19-48DE-A343-464B16F1071D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3E74BFFE-0D19-48DE-A343-464B16F1071D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 369}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{07789CEB-5BA4-4902-BA36-93F674088EE9}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{07789CEB-5BA4-4902-BA36-93F674088EE9}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 370}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C9A8B373-96F4-4E05-94F8-459FD327EC27}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C9A8B373-96F4-4E05-94F8-459FD327EC27}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 371}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{853F5484-63DC-4E3F-8ADB-09837B032265}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{853F5484-63DC-4E3F-8ADB-09837B032265}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 372}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{466EE249-D2A6-4226-9D79-37E8A84973B3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{466EE249-D2A6-4226-9D79-37E8A84973B3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 373}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D02BDF4C-5EFB-4349-BBF0-6B618B62B3EB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D02BDF4C-5EFB-4349-BBF0-6B618B62B3EB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 374}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5F941586-CE1D-4666-AFAD-D823546479E8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5F941586-CE1D-4666-AFAD-D823546479E8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 375}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3C9A30CC-B192-4FBB-B566-DED7C13BA0CE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3C9A30CC-B192-4FBB-B566-DED7C13BA0CE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 376}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{77F89A8D-733D-48F3-91DF-B8536F82AEF1}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{77F89A8D-733D-48F3-91DF-B8536F82AEF1}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 377}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5E612939-F155-4A90-83B3-505C2437EB9D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5E612939-F155-4A90-83B3-505C2437EB9D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 378}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BA3FB926-7E23-4B51-B246-CE8E79C2A7F6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BA3FB926-7E23-4B51-B246-CE8E79C2A7F6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 379}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{34BBF4C4-BE05-44F5-88DD-F831C45C2A3F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{34BBF4C4-BE05-44F5-88DD-F831C45C2A3F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 380}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3F602583-1511-4DC3-BC7A-28AE48B20D57}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3F602583-1511-4DC3-BC7A-28AE48B20D57}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 381}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2CC66E96-11EF-4F1E-B61E-41171E241977}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2CC66E96-11EF-4F1E-B61E-41171E241977}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 382}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{626A8CA3-5949-49BC-8A75-6DD567D53EB2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{626A8CA3-5949-49BC-8A75-6DD567D53EB2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 383}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{FE9950C3-B002-41B5-BB9E-740195E710AD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{FE9950C3-B002-41B5-BB9E-740195E710AD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 384}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3492175D-01E1-4D15-BB6A-75D7AF3C6947}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3492175D-01E1-4D15-BB6A-75D7AF3C6947}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 385}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8E7DF82C-7E89-4332-A78F-9A2BA54E6728}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8E7DF82C-7E89-4332-A78F-9A2BA54E6728}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 386}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C5F4649F-B651-4B40-8149-DADFCE286E53}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C5F4649F-B651-4B40-8149-DADFCE286E53}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 387}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{84836532-1965-44A5-8A70-76C9F10C3DC0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{84836532-1965-44A5-8A70-76C9F10C3DC0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 388}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DDDB56C1-7986-4194-8C7B-4C31F2C5F95B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DDDB56C1-7986-4194-8C7B-4C31F2C5F95B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 389}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9451332E-09DE-48D0-A59F-164BE6769278}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9451332E-09DE-48D0-A59F-164BE6769278}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 390}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{ACF0C7A7-88E9-40A1-A852-85F34432F568}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{ACF0C7A7-88E9-40A1-A852-85F34432F568}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 391}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{81FAC60B-06B4-4897-8294-42EE0B40012B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{81FAC60B-06B4-4897-8294-42EE0B40012B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 392}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B66B163A-52A6-43A6-8032-567AF678194C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B66B163A-52A6-43A6-8032-567AF678194C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 393}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0B8BFEED-217E-4326-8B79-A2642D8CBFDF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0B8BFEED-217E-4326-8B79-A2642D8CBFDF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 394}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{628D3F9F-B8FB-4930-AADC-BC1FB3F05177}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{628D3F9F-B8FB-4930-AADC-BC1FB3F05177}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 395}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{52E72017-78D4-490A-85E4-D7C1CB103FF7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{52E72017-78D4-490A-85E4-D7C1CB103FF7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 396}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{530C0F19-2E7D-4309-89DC-A8D11D26B75A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{530C0F19-2E7D-4309-89DC-A8D11D26B75A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 397}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3B08AE28-5AD0-4A34-BD57-4EFE09A4E1A5}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3B08AE28-5AD0-4A34-BD57-4EFE09A4E1A5}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 398}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DC7B68A6-783E-42A2-8E47-E045E4935F24}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DC7B68A6-783E-42A2-8E47-E045E4935F24}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 399}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E0A38CE1-8DE6-49B7-A003-3B5A96663016}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E0A38CE1-8DE6-49B7-A003-3B5A96663016}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 400}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B202A239-5FDB-447F-9A37-786A2D3CD879}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B202A239-5FDB-447F-9A37-786A2D3CD879}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 401}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5955AFC5-25BE-4F27-B671-369C29F4B1FA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5955AFC5-25BE-4F27-B671-369C29F4B1FA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 402}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{875739AD-54BA-4E45-B2F4-F7742F5C5772}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{875739AD-54BA-4E45-B2F4-F7742F5C5772}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 403}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{FC6DE7EE-EE54-4772-9B59-9E82D22233DA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{FC6DE7EE-EE54-4772-9B59-9E82D22233DA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 404}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EE8D4C53-FAEB-4879-A2C6-6A8BABC12B86}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EE8D4C53-FAEB-4879-A2C6-6A8BABC12B86}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 405}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3C64D196-BFC8-4C86-8D94-284197801962}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3C64D196-BFC8-4C86-8D94-284197801962}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 406}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7151621F-AA52-4CB6-98D7-C60365688FEC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7151621F-AA52-4CB6-98D7-C60365688FEC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 407}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0806BC4B-6DA8-440C-A33A-08C40329F6C3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0806BC4B-6DA8-440C-A33A-08C40329F6C3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 408}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{73D85666-4692-4E13-8E51-8DAA7546D5EB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{73D85666-4692-4E13-8E51-8DAA7546D5EB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 409}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{47CC5CE4-2148-4E06-8840-174DBA8C0FCB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{47CC5CE4-2148-4E06-8840-174DBA8C0FCB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 410}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3CF1CC4E-B31B-4167-BEC0-9B8B1574CB66}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3CF1CC4E-B31B-4167-BEC0-9B8B1574CB66}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 411}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6B1659AE-F840-4E86-B527-9C83C04CB2FE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6B1659AE-F840-4E86-B527-9C83C04CB2FE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 412}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5BE24C57-C822-41DD-B02E-0B6FB690413E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5BE24C57-C822-41DD-B02E-0B6FB690413E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 413}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C2E1DAAE-A853-4570-AA36-D719844C1D26}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C2E1DAAE-A853-4570-AA36-D719844C1D26}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 414}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F5BB128D-A32B-4BE0-9F5A-E14AC4F2EEA1}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F5BB128D-A32B-4BE0-9F5A-E14AC4F2EEA1}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 415}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{280AC82D-35AA-47E4-8AE9-6901565EFBC4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{280AC82D-35AA-47E4-8AE9-6901565EFBC4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 416}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BE37872C-4E2D-444A-91A0-6CA4ED0F1451}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BE37872C-4E2D-444A-91A0-6CA4ED0F1451}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 417}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{60916988-AC48-4CBE-8967-2D300C9A452C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{60916988-AC48-4CBE-8967-2D300C9A452C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 418}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F6630E8A-9BA7-4E38-B0EA-4031D944038D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F6630E8A-9BA7-4E38-B0EA-4031D944038D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 419}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B93215C2-1316-4BA4-846B-78F206349FBF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B93215C2-1316-4BA4-846B-78F206349FBF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 420}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D7A6E3F6-CEF1-45FB-B63F-6A6EE3C735F5}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D7A6E3F6-CEF1-45FB-B63F-6A6EE3C735F5}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 421}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B532D801-5C51-4F85-B730-C04BFB9BEFA3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B532D801-5C51-4F85-B730-C04BFB9BEFA3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 422}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A2B56E9C-A926-4791-94AE-69917168952B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A2B56E9C-A926-4791-94AE-69917168952B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 423}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CA003FDF-5146-4907-B0CE-782F84656067}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CA003FDF-5146-4907-B0CE-782F84656067}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 424}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D20E0296-A91E-477B-AA19-21AE44BBD9ED}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D20E0296-A91E-477B-AA19-21AE44BBD9ED}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 425}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E65A6D1F-D672-418B-9965-296C048A1748}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E65A6D1F-D672-418B-9965-296C048A1748}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 426}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{10B1A0C7-B56F-4EF1-91FF-0A83D832840D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{10B1A0C7-B56F-4EF1-91FF-0A83D832840D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 427}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B3BC13E7-416E-4D34-9334-CEAA9B568239}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B3BC13E7-416E-4D34-9334-CEAA9B568239}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 428}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CD1D3DCD-0808-409E-8B42-6E36E717F8B5}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CD1D3DCD-0808-409E-8B42-6E36E717F8B5}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 429}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{26E02055-8550-46F5-9F44-76F036509ADD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{26E02055-8550-46F5-9F44-76F036509ADD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 430}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{763954E5-14BB-4810-B2B6-4A11C7B258C1}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{763954E5-14BB-4810-B2B6-4A11C7B258C1}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 431}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A738762B-83E0-4622-82BD-E3BF4F3B668E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A738762B-83E0-4622-82BD-E3BF4F3B668E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 432}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{392DE4E7-0D89-4424-A02E-BD60E0929E02}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{392DE4E7-0D89-4424-A02E-BD60E0929E02}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 433}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C078C517-1832-4DB5-AF95-F712D346D72B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C078C517-1832-4DB5-AF95-F712D346D72B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 434}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9D734716-5F67-4826-9A40-0A45B7662576}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9D734716-5F67-4826-9A40-0A45B7662576}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 435}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C6DB986F-2CAB-4620-B78A-E4A5A601018B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C6DB986F-2CAB-4620-B78A-E4A5A601018B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 436}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9803C45F-1EA1-49AE-AAF3-C517BFEF9947}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9803C45F-1EA1-49AE-AAF3-C517BFEF9947}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 437}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4806A7EF-D6C0-47CA-AEDD-40B2AAEC5BD5}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4806A7EF-D6C0-47CA-AEDD-40B2AAEC5BD5}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 438}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CCC87C23-B42D-4FD8-92DD-AE817CBC41F6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CCC87C23-B42D-4FD8-92DD-AE817CBC41F6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 439}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{548DDDAB-8903-4400-8B9F-24F159168C9C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{548DDDAB-8903-4400-8B9F-24F159168C9C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 440}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B084BA67-791B-442D-9B13-323498C712DE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B084BA67-791B-442D-9B13-323498C712DE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 441}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{26E4E257-1CC4-47A7-9075-F242470AD96C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{26E4E257-1CC4-47A7-9075-F242470AD96C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 442}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{79F6165A-20D6-41F9-A03C-08501EA40CEB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{79F6165A-20D6-41F9-A03C-08501EA40CEB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 443}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{89A48FF6-0842-4A7E-9AE6-D7EE75C63F47}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{89A48FF6-0842-4A7E-9AE6-D7EE75C63F47}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 444}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7DBE5D3A-4D02-445A-9859-B20992C0DD75}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7DBE5D3A-4D02-445A-9859-B20992C0DD75}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 445}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{130AFE12-E83A-4FF6-8B3A-956BE14DB15F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{130AFE12-E83A-4FF6-8B3A-956BE14DB15F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 446}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1CE9D43D-7ACE-4282-A704-AF437EF9E35C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1CE9D43D-7ACE-4282-A704-AF437EF9E35C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 447}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B952DAFF-A6C5-4269-9BFA-7043D3E443AF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B952DAFF-A6C5-4269-9BFA-7043D3E443AF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 448}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EAD91DDC-8C14-40C3-801E-E64C234BF95E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EAD91DDC-8C14-40C3-801E-E64C234BF95E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 449}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F9AFF1A9-996F-49A1-9294-B30E465FFAA5}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F9AFF1A9-996F-49A1-9294-B30E465FFAA5}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 450}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CB70920F-0121-41CE-B66F-59ACD95A3AFB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CB70920F-0121-41CE-B66F-59ACD95A3AFB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 451}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{36036AEE-C468-4E8F-8FE9-AD53077CC4F6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{36036AEE-C468-4E8F-8FE9-AD53077CC4F6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 452}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E0584424-C484-4987-A69D-15546D263277}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E0584424-C484-4987-A69D-15546D263277}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 453}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AF0F6481-6370-4D4F-81B4-EDC6300C549E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AF0F6481-6370-4D4F-81B4-EDC6300C549E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 454}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D9806D66-05DB-497A-8188-0F257713D5B4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D9806D66-05DB-497A-8188-0F257713D5B4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 455}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7CFFB769-E137-48F4-9ECB-5AFDC19A92EA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7CFFB769-E137-48F4-9ECB-5AFDC19A92EA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 456}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{96621492-DF87-42F9-BCDE-970BB9559203}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{96621492-DF87-42F9-BCDE-970BB9559203}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 457}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{21351D2E-CE72-49C0-A555-8F80AC0955C6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{21351D2E-CE72-49C0-A555-8F80AC0955C6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 458}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{707DF92A-8B6E-43AB-BE1D-349D23C4C69F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{707DF92A-8B6E-43AB-BE1D-349D23C4C69F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 459}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1FB281FA-C5E8-4634-BDC5-06EE5F42E00C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1FB281FA-C5E8-4634-BDC5-06EE5F42E00C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 460}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{186BD11F-9FE1-48F0-A40A-914A1D150116}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{186BD11F-9FE1-48F0-A40A-914A1D150116}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 461}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4A20C4B1-67F9-496F-8C8C-2792AFA7AC60}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4A20C4B1-67F9-496F-8C8C-2792AFA7AC60}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 462}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1968D3C5-90AA-45BE-8F5F-A6197F8E9BCA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1968D3C5-90AA-45BE-8F5F-A6197F8E9BCA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 463}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{11EFD6E3-FFF8-4B74-9AF8-0EC67D2EA82C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{11EFD6E3-FFF8-4B74-9AF8-0EC67D2EA82C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 464}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{43DD2547-2C34-41F0-ABC6-0037B7281FC7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{43DD2547-2C34-41F0-ABC6-0037B7281FC7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 465}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A9261B79-214B-421A-A234-EB3C7B72EF5F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A9261B79-214B-421A-A234-EB3C7B72EF5F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 466}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4B30FC4A-34C2-4BFA-93D2-6A7668EDD4CE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4B30FC4A-34C2-4BFA-93D2-6A7668EDD4CE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 467}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5AF292C5-2BF5-41DF-A232-6F8C8E9C4C3C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5AF292C5-2BF5-41DF-A232-6F8C8E9C4C3C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 468}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8FAE1EA1-DDC2-4FF9-8775-5A16CFDDDEE6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8FAE1EA1-DDC2-4FF9-8775-5A16CFDDDEE6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 469}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A9F277AE-446C-4889-B936-BB2B403FAAB8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A9F277AE-446C-4889-B936-BB2B403FAAB8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 470}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9B6BE53B-051E-42D4-AA55-9962ED5C6060}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9B6BE53B-051E-42D4-AA55-9962ED5C6060}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 471}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B185B0B3-C67D-41D8-BC40-25701B8C3041}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B185B0B3-C67D-41D8-BC40-25701B8C3041}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 472}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A4B3717F-8360-4255-B652-1D03CAB4AE3E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A4B3717F-8360-4255-B652-1D03CAB4AE3E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 473}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A5A4F65B-F0C2-42A8-9BCC-4F6AFDE73D0F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A5A4F65B-F0C2-42A8-9BCC-4F6AFDE73D0F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 474}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C6395692-4B8B-4C01-8FED-157CE47918AD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C6395692-4B8B-4C01-8FED-157CE47918AD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 475}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{275EE171-4B09-494E-8A1C-3F65B55E3572}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{275EE171-4B09-494E-8A1C-3F65B55E3572}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 476}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0C25949C-78DD-4B07-AE8D-B9580E1F9963}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0C25949C-78DD-4B07-AE8D-B9580E1F9963}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 477}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{81F87796-578F-4DD7-BF46-03A8AD713E25}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{81F87796-578F-4DD7-BF46-03A8AD713E25}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 478}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2057D539-9634-45B9-8287-632530FAA37A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2057D539-9634-45B9-8287-632530FAA37A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 479}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D251308D-4FFD-4735-80A7-A21A9AAD139B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D251308D-4FFD-4735-80A7-A21A9AAD139B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 480}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B836CE1E-167F-4EBE-A69A-3EFB288B27F4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B836CE1E-167F-4EBE-A69A-3EFB288B27F4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 481}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{00839A47-32CE-4567-947E-1FD378710C97}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{00839A47-32CE-4567-947E-1FD378710C97}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 482}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A47F353B-13AF-4D28-9A88-3F26540351FB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A47F353B-13AF-4D28-9A88-3F26540351FB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 483}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3E647A9E-85F7-406D-8A14-E29A56DCB810}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3E647A9E-85F7-406D-8A14-E29A56DCB810}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 484}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{757CF354-1D8D-48C5-8998-F0280BED20A9}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{757CF354-1D8D-48C5-8998-F0280BED20A9}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 485}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{94129DCE-9E34-458E-BD98-6EA03BD15839}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{94129DCE-9E34-458E-BD98-6EA03BD15839}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 486}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5D410014-3D0B-49C1-8BEA-43D95F519C35}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5D410014-3D0B-49C1-8BEA-43D95F519C35}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 487}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AC72E44A-7510-4E3B-A529-F0FA8C37E120}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AC72E44A-7510-4E3B-A529-F0FA8C37E120}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 488}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9D17EEB6-6F62-49F0-855E-5BFBBFBFFE32}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9D17EEB6-6F62-49F0-855E-5BFBBFBFFE32}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 489}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{471DE8B7-AA41-4965-BC7B-BC9445532823}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{471DE8B7-AA41-4965-BC7B-BC9445532823}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 490}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6D437B60-3D00-42F1-95BB-31C781A0EAE3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6D437B60-3D00-42F1-95BB-31C781A0EAE3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 491}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{024AA7DD-219A-408D-BB43-9FC8549021C2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{024AA7DD-219A-408D-BB43-9FC8549021C2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 492}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{FE3EF8B9-5FE1-4F48-948B-0B10EF8FAD2F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{FE3EF8B9-5FE1-4F48-948B-0B10EF8FAD2F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 493}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F0C75171-CF2C-486A-89C2-516E8548E126}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F0C75171-CF2C-486A-89C2-516E8548E126}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 494}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DECB30A2-8AB4-443E-A634-935518D8984E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DECB30A2-8AB4-443E-A634-935518D8984E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 495}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F8EAC636-F7B1-45DD-BF85-74D268ED791E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F8EAC636-F7B1-45DD-BF85-74D268ED791E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 496}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5E937228-AE13-4218-B1C9-0826F2B4C2E7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5E937228-AE13-4218-B1C9-0826F2B4C2E7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 497}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4852CE75-420F-47DD-A5CD-A7DDEC39C71C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4852CE75-420F-47DD-A5CD-A7DDEC39C71C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 498}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8CBE9052-5C9A-46D1-BFF1-DFC4E9D6EB25}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8CBE9052-5C9A-46D1-BFF1-DFC4E9D6EB25}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 499}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{709AB9BB-ED8D-4383-9F56-CF7FC06E1B47}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{709AB9BB-ED8D-4383-9F56-CF7FC06E1B47}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 500}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{55642850-60BD-475F-A04F-3C426F16020F}", "action": "remove_value",

#27 yukukuhi

Authentic Member

Authentic Member
92 posts

Posted 29 December 2019 - 08:31 AM

"path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{55642850-60BD-475F-A04F-3C426F16020F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 501}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B6EF1D00-AA96-4BCF-86CA-F4DF9FEE66BE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B6EF1D00-AA96-4BCF-86CA-F4DF9FEE66BE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 502}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DF2B87B7-14AE-444B-BD52-E4B3C4E53A46}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DF2B87B7-14AE-444B-BD52-E4B3C4E53A46}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 503}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A4B19D0D-9D3F-4808-9D6A-E1CD80A84111}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A4B19D0D-9D3F-4808-9D6A-E1CD80A84111}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 504}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{ACF0BB6E-C5C9-4926-8323-AA680043D9CB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{ACF0BB6E-C5C9-4926-8323-AA680043D9CB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 505}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{ABA2F78B-DE85-4C0C-BCEF-BC500A17A2DB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{ABA2F78B-DE85-4C0C-BCEF-BC500A17A2DB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 506}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2F1FDD07-6707-46AC-85D1-C851966EA33C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2F1FDD07-6707-46AC-85D1-C851966EA33C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 507}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3529D0F8-6802-457E-898C-8BB676374DC2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3529D0F8-6802-457E-898C-8BB676374DC2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 508}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6372BE73-4306-4C1E-AB65-414B5885430A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6372BE73-4306-4C1E-AB65-414B5885430A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 509}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8D59897B-2106-4C95-82F0-CD98585FB8A0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8D59897B-2106-4C95-82F0-CD98585FB8A0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 510}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B66EC4A3-D5B8-47FE-A13A-D869BA9E4E7F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B66EC4A3-D5B8-47FE-A13A-D869BA9E4E7F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 511}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{950F5261-251E-4C53-807D-AC8A7F96195E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{950F5261-251E-4C53-807D-AC8A7F96195E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 512}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E7C7C3DA-F756-4F72-811A-D142741D3A93}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E7C7C3DA-F756-4F72-811A-D142741D3A93}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 513}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4B8268BF-0323-4FB6-BD8C-E7518B5534D8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4B8268BF-0323-4FB6-BD8C-E7518B5534D8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 514}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{97F217CB-3454-485C-89BF-C287E0763527}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{97F217CB-3454-485C-89BF-C287E0763527}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 515}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9E107D94-87BE-4864-95E4-F556EF4C2E00}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9E107D94-87BE-4864-95E4-F556EF4C2E00}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 516}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D98C72A8-79E3-40EE-9A69-2546513F72BC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D98C72A8-79E3-40EE-9A69-2546513F72BC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 517}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6F91AB71-447E-4154-A902-D932B048DC05}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6F91AB71-447E-4154-A902-D932B048DC05}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 518}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3ED1AD4A-D205-4D1B-A25F-175FDE2C05D7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3ED1AD4A-D205-4D1B-A25F-175FDE2C05D7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 519}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C0B28CD6-35A7-4B4A-8D1F-32329C62B958}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C0B28CD6-35A7-4B4A-8D1F-32329C62B958}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 520}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B07CF68D-FB49-4AF5-BC14-518BB331836B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B07CF68D-FB49-4AF5-BC14-518BB331836B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 521}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DCBADAA6-93B4-4B6D-879D-A431BA576436}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DCBADAA6-93B4-4B6D-879D-A431BA576436}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 522}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4522DD7B-9A30-4424-93E6-3E69C3228222}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4522DD7B-9A30-4424-93E6-3E69C3228222}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 523}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0A8D4716-73B4-4753-A8B0-E794EDED6D12}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0A8D4716-73B4-4753-A8B0-E794EDED6D12}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 524}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{23D4C5BD-2D9A-489E-9672-7CB8934B89EE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{23D4C5BD-2D9A-489E-9672-7CB8934B89EE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 525}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BA91D680-46AA-41C1-A8BB-FB1EF5610741}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BA91D680-46AA-41C1-A8BB-FB1EF5610741}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 526}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8AD5E247-D0E9-4306-BA4D-BF49A81DD7D0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8AD5E247-D0E9-4306-BA4D-BF49A81DD7D0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 527}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D56C8BC1-E0AD-4BB9-9B4D-98373878BED3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D56C8BC1-E0AD-4BB9-9B4D-98373878BED3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 528}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2069294E-A634-4B1E-A0AF-A750D6950EBF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2069294E-A634-4B1E-A0AF-A750D6950EBF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 529}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0E16341B-E8C6-40EF-AB16-4B9BEDEC5489}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0E16341B-E8C6-40EF-AB16-4B9BEDEC5489}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 530}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0EFBBF89-F7FA-4AD1-ACCB-7DEF48E240FD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0EFBBF89-F7FA-4AD1-ACCB-7DEF48E240FD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 531}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EFFF88CD-4779-46AD-AEF2-EB61620826DE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EFFF88CD-4779-46AD-AEF2-EB61620826DE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 532}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7B37A2D0-DE26-4931-AC68-C90AF0F110B1}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7B37A2D0-DE26-4931-AC68-C90AF0F110B1}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 533}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{393582EE-6740-4065-933B-8FD7B9A8C9A3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{393582EE-6740-4065-933B-8FD7B9A8C9A3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 534}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{80E9D8A0-3470-459C-AFDC-695D6B65FF3B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{80E9D8A0-3470-459C-AFDC-695D6B65FF3B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 535}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B01DED03-3BDE-4FDE-90B1-3B65BC7557B1}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B01DED03-3BDE-4FDE-90B1-3B65BC7557B1}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 536}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{31890982-521D-4128-81A1-3F7922503623}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{31890982-521D-4128-81A1-3F7922503623}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 537}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C2C84FF6-A259-4A76-8366-C14E1E5BB077}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C2C84FF6-A259-4A76-8366-C14E1E5BB077}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 538}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{81E8414F-4066-4A9D-898A-188B065DD5A0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{81E8414F-4066-4A9D-898A-188B065DD5A0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 539}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BF4C1B81-B3DF-49F8-9C69-D7788D6C5ADD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BF4C1B81-B3DF-49F8-9C69-D7788D6C5ADD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 540}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E73EABC7-6708-4D13-9BD9-E49192B05D26}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E73EABC7-6708-4D13-9BD9-E49192B05D26}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 541}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{576BA81F-B5AB-43F7-A94E-71510C37EEBF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{576BA81F-B5AB-43F7-A94E-71510C37EEBF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 542}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6F690041-F829-4F1C-B901-CE9DE666F465}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6F690041-F829-4F1C-B901-CE9DE666F465}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 543}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F06941F6-48B4-4291-A553-F6199F703625}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F06941F6-48B4-4291-A553-F6199F703625}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 544}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{52735776-4202-4CC4-8BB5-21347D55C8CD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{52735776-4202-4CC4-8BB5-21347D55C8CD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 545}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CC7A57A7-7CFA-4A12-B4C7-E54A2B6B0A09}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CC7A57A7-7CFA-4A12-B4C7-E54A2B6B0A09}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 546}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E75E73C7-2DAB-48C8-98A3-CEBC68A8E1E2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E75E73C7-2DAB-48C8-98A3-CEBC68A8E1E2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 547}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F494FFCB-58B7-4AE1-8890-893086D64840}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F494FFCB-58B7-4AE1-8890-893086D64840}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 548}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D208572E-DD5A-44EA-B2C0-2DE2E7D6D81A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D208572E-DD5A-44EA-B2C0-2DE2E7D6D81A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 549}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C0589563-E2E8-4115-94D3-BAD6530ADE1D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C0589563-E2E8-4115-94D3-BAD6530ADE1D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 550}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A08D0FEB-9171-4FD9-958E-7DE394C1BEAC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A08D0FEB-9171-4FD9-958E-7DE394C1BEAC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 551}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DFF9656E-BDC1-4F9C-A09F-9F4B288F1521}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DFF9656E-BDC1-4F9C-A09F-9F4B288F1521}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 552}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{84619C12-46AF-4CCD-A8DF-E393E07221E0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{84619C12-46AF-4CCD-A8DF-E393E07221E0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 553}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0BB15D0A-BE1D-4470-89B0-971B4E877451}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0BB15D0A-BE1D-4470-89B0-971B4E877451}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 554}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{34C97EC3-4B6C-4527-9B3D-31F7123CAB10}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{34C97EC3-4B6C-4527-9B3D-31F7123CAB10}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 555}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3E1B8F9D-7C53-4F93-9058-E3B478823A2F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3E1B8F9D-7C53-4F93-9058-E3B478823A2F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 556}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A9099312-B987-4F74-82C7-FB4A959C3DA4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A9099312-B987-4F74-82C7-FB4A959C3DA4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 557}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{488F35AA-868B-4DD6-8513-4CAD1E073BB5}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{488F35AA-868B-4DD6-8513-4CAD1E073BB5}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 558}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8557E369-53BD-46A3-B912-502D19E5DDB6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8557E369-53BD-46A3-B912-502D19E5DDB6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 559}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9D723CDC-E142-4967-8E55-547E73843E3E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9D723CDC-E142-4967-8E55-547E73843E3E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 560}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DA4193BB-037E-4274-8E6B-0F1AF3BE9AF8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DA4193BB-037E-4274-8E6B-0F1AF3BE9AF8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 561}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3FABD7DD-1C2F-47F8-B12B-286E04A5A5B7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3FABD7DD-1C2F-47F8-B12B-286E04A5A5B7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 562}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5906615C-D8D3-421A-A951-029CD2089FA6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5906615C-D8D3-421A-A951-029CD2089FA6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 563}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E62933A9-DD09-4D7D-A3F6-0290C500E042}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E62933A9-DD09-4D7D-A3F6-0290C500E042}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 564}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{95BFA378-24F1-471E-8BCF-EC225A783C51}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{95BFA378-24F1-471E-8BCF-EC225A783C51}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 565}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DD2CDEB7-9B65-4EF4-AEAE-AA8BD30E41B7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DD2CDEB7-9B65-4EF4-AEAE-AA8BD30E41B7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 566}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{975DFC6E-9C68-4232-B6FD-0A3B48F79279}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{975DFC6E-9C68-4232-B6FD-0A3B48F79279}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 567}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{65076E13-D3FD-4267-877E-40F4D53B0DF9}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{65076E13-D3FD-4267-877E-40F4D53B0DF9}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 568}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{04999AF0-2F85-440B-AFE1-AF6391171FF3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{04999AF0-2F85-440B-AFE1-AF6391171FF3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 569}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1428702E-2DA8-4378-AA8A-06A0B7CA070F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1428702E-2DA8-4378-AA8A-06A0B7CA070F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 570}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DC204D92-3913-432A-802E-54547D7F9C5F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DC204D92-3913-432A-802E-54547D7F9C5F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 571}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{971BC098-5811-45CA-AEF5-DB68617C3E2C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{971BC098-5811-45CA-AEF5-DB68617C3E2C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 572}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A5F4BDBC-CE45-4036-87BA-327C506884E9}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A5F4BDBC-CE45-4036-87BA-327C506884E9}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 573}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0A3887B3-247C-4635-96B6-1B38C56679FE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0A3887B3-247C-4635-96B6-1B38C56679FE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 574}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{801142CB-6A2C-474D-BC07-0C62EA297EF7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{801142CB-6A2C-474D-BC07-0C62EA297EF7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 575}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3DD61AFA-2110-4F7C-9488-790B73ABC227}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3DD61AFA-2110-4F7C-9488-790B73ABC227}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 576}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EA4594C2-B724-4AA2-A32C-E5E4DF0F1ADF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EA4594C2-B724-4AA2-A32C-E5E4DF0F1ADF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 577}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{FDFF3299-23B9-41CD-8335-1797D44F335B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{FDFF3299-23B9-41CD-8335-1797D44F335B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 578}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F62B26C3-A491-4DD0-820A-B4B196F9D89C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F62B26C3-A491-4DD0-820A-B4B196F9D89C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 579}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6EBF6FF4-CA89-421D-A7A9-7A10F9AA5E91}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6EBF6FF4-CA89-421D-A7A9-7A10F9AA5E91}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 580}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9F8D3A2D-7D14-4D24-A510-285D5D809751}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9F8D3A2D-7D14-4D24-A510-285D5D809751}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 581}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0C18E989-5EB1-423C-B997-FE7228D08F20}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0C18E989-5EB1-423C-B997-FE7228D08F20}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 582}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{360D8331-852E-4D8F-BEA6-A8571817622E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{360D8331-852E-4D8F-BEA6-A8571817622E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 583}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DB8E04D7-C504-4AA9-9C39-FAFACFF668CD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DB8E04D7-C504-4AA9-9C39-FAFACFF668CD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 584}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5D5F99D9-95A5-42F4-BDF2-A1CD9D37AF38}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5D5F99D9-95A5-42F4-BDF2-A1CD9D37AF38}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 585}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{199598C9-11CC-4AA1-B918-C4C5333E1B07}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{199598C9-11CC-4AA1-B918-C4C5333E1B07}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 586}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F2C4C388-EC02-422A-A602-A2AE9DBDAB27}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F2C4C388-EC02-422A-A602-A2AE9DBDAB27}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 587}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E3EB3E71-09EB-4378-9D73-02A3876713F7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E3EB3E71-09EB-4378-9D73-02A3876713F7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 588}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EFD624F5-17A9-4256-AF64-CC7C49320049}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EFD624F5-17A9-4256-AF64-CC7C49320049}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 589}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{52C3FC6E-69E7-4DBE-B939-5C6FD75EF2C6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{52C3FC6E-69E7-4DBE-B939-5C6FD75EF2C6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 590}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3635859E-9FBE-4BB3-A989-8BDE0DEB2D3D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3635859E-9FBE-4BB3-A989-8BDE0DEB2D3D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 591}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DA24DF45-BF95-4988-A968-C4E01D1D5443}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DA24DF45-BF95-4988-A968-C4E01D1D5443}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 592}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{447072E4-C4AC-48BB-A08B-8B0C83627310}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{447072E4-C4AC-48BB-A08B-8B0C83627310}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 593}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B0F047B0-94E3-4E22-A8A2-CC213DBAE433}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B0F047B0-94E3-4E22-A8A2-CC213DBAE433}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 594}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1ED97DEE-062A-4ABC-AB85-7E9D58E87021}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1ED97DEE-062A-4ABC-AB85-7E9D58E87021}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 595}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{20D07848-81B7-4A7B-9944-92E6EE9DA541}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{20D07848-81B7-4A7B-9944-92E6EE9DA541}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 596}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4BF3CC59-EE9E-47EC-8222-AE748ED99C95}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4BF3CC59-EE9E-47EC-8222-AE748ED99C95}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 597}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9A8677E2-0E07-4AE2-8CBC-8DD04DDEC430}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9A8677E2-0E07-4AE2-8CBC-8DD04DDEC430}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 598}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{27177E56-2AC8-40EB-9BC1-45DFCD514EDE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{27177E56-2AC8-40EB-9BC1-45DFCD514EDE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 599}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{226BB699-F07A-4540-8104-B04F54DA2B2B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{226BB699-F07A-4540-8104-B04F54DA2B2B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 600}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F3C0A05C-ED0C-4C1A-BC64-195C24547C57}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F3C0A05C-ED0C-4C1A-BC64-195C24547C57}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 601}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{59E8A7BB-5142-466C-B98C-46F9B3F1A581}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{59E8A7BB-5142-466C-B98C-46F9B3F1A581}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 602}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A3581606-F79F-4C50-B9B8-4A343DAF9E13}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A3581606-F79F-4C50-B9B8-4A343DAF9E13}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 603}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F48804B3-EDA6-48D6-88CF-C0161932468A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F48804B3-EDA6-48D6-88CF-C0161932468A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 604}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AE0FE9BC-9DD4-4227-8C97-ED2AB498ABA1}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AE0FE9BC-9DD4-4227-8C97-ED2AB498ABA1}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 605}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{46D8801F-CE1D-4C3D-9BE9-F6F6C4280FE3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{46D8801F-CE1D-4C3D-9BE9-F6F6C4280FE3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 606}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B1398E66-181F-4C9B-939E-0D52995D5650}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B1398E66-181F-4C9B-939E-0D52995D5650}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 607}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F5F86AD0-2903-4D12-8DAC-7417DDC3D169}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F5F86AD0-2903-4D12-8DAC-7417DDC3D169}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 608}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6C3A2ADE-619B-4FBA-93AC-270098B534E7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6C3A2ADE-619B-4FBA-93AC-270098B534E7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 609}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C2EDCE42-90DB-41D6-97E1-151304070747}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C2EDCE42-90DB-41D6-97E1-151304070747}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 610}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DF3977A4-56E9-4143-AC86-4184016DC4CD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DF3977A4-56E9-4143-AC86-4184016DC4CD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 611}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E3253AB0-EC87-4C56-8D3A-4DA7CD73DF8C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E3253AB0-EC87-4C56-8D3A-4DA7CD73DF8C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 612}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9B5F8B6D-CF54-4CD3-9BC8-9BC671BE0BBD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9B5F8B6D-CF54-4CD3-9BC8-9BC671BE0BBD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 613}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EE70FE5F-8146-4AC3-B57B-22A96FC85F49}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EE70FE5F-8146-4AC3-B57B-22A96FC85F49}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 614}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{769A4762-7794-40EC-8F6D-F8C90914D965}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{769A4762-7794-40EC-8F6D-F8C90914D965}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 615}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C02F5563-1795-41B2-B2F1-50781D943A49}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C02F5563-1795-41B2-B2F1-50781D943A49}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 616}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3D3688CC-B953-46F9-B827-FD89771BB980}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3D3688CC-B953-46F9-B827-FD89771BB980}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 617}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7B24FFE5-A794-4554-8C55-B28348DCFEBB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7B24FFE5-A794-4554-8C55-B28348DCFEBB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 618}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6770C196-5D48-4DEB-A6DF-A6423E8CAB9F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6770C196-5D48-4DEB-A6DF-A6423E8CAB9F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 619}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D40004D2-2B12-4316-AB19-7A84D0BD3331}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D40004D2-2B12-4316-AB19-7A84D0BD3331}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 620}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{86B9EEE1-13C7-4844-A07F-B357A25BE78B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{86B9EEE1-13C7-4844-A07F-B357A25BE78B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 621}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E8310751-ACDB-4793-9EE3-AED62CC9FA1B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E8310751-ACDB-4793-9EE3-AED62CC9FA1B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 622}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A7885470-47D3-4F89-907D-D842B78688EF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A7885470-47D3-4F89-907D-D842B78688EF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 623}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{73F0C5FE-1F19-4705-B396-A410FF951DFF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{73F0C5FE-1F19-4705-B396-A410FF951DFF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 624}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A758615F-2A17-4538-9F03-44DA6413ABE8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A758615F-2A17-4538-9F03-44DA6413ABE8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 625}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{494ECC73-11CC-486C-B957-39CB1A80594B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{494ECC73-11CC-486C-B957-39CB1A80594B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 626}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2092430F-8964-495C-8D06-F2ED5C28BC6C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2092430F-8964-495C-8D06-F2ED5C28BC6C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 627}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{972E82B2-1562-408C-A5C9-4F9E146F5E7F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{972E82B2-1562-408C-A5C9-4F9E146F5E7F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 628}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{02AE9D1A-4CB6-4F8C-90F6-43A8904FB8BE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{02AE9D1A-4CB6-4F8C-90F6-43A8904FB8BE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 629}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{997BAA22-01C4-4D91-B382-953BA98AB0E2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{997BAA22-01C4-4D91-B382-953BA98AB0E2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 630}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CA688173-2621-428B-A9E3-5C1CA04C136A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CA688173-2621-428B-A9E3-5C1CA04C136A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 631}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1AF98497-5F04-45ED-BDA2-83F249A6B705}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1AF98497-5F04-45ED-BDA2-83F249A6B705}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 632}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7EDC3AFD-E7EB-4083-8C68-5220B8652A78}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7EDC3AFD-E7EB-4083-8C68-5220B8652A78}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 633}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AF84A561-5CC9-46EC-B4A2-5E0EF8604E22}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AF84A561-5CC9-46EC-B4A2-5E0EF8604E22}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 634}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C0F889A1-B679-4AE5-9CE9-8FBBFC794D89}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C0F889A1-B679-4AE5-9CE9-8FBBFC794D89}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 635}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D0327EB3-822F-4174-A6E2-C1E8235527BE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D0327EB3-822F-4174-A6E2-C1E8235527BE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 636}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{78030F38-6CD9-41A5-8562-A85CFF9E001B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{78030F38-6CD9-41A5-8562-A85CFF9E001B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 637}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8A05B462-D272-4761-8959-C56710EFBA97}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8A05B462-D272-4761-8959-C56710EFBA97}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 638}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4E95FC02-67C0-4C44-9130-4F1D887C0E50}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4E95FC02-67C0-4C44-9130-4F1D887C0E50}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 639}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9B749F3D-EEEE-463B-A5B9-ACF1AD3FBBE3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9B749F3D-EEEE-463B-A5B9-ACF1AD3FBBE3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 640}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{FE78C41E-E7CD-42CF-AF91-7FC7AF133B92}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{FE78C41E-E7CD-42CF-AF91-7FC7AF133B92}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 641}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{21F35E0D-E2AD-47CC-BEF1-7E760E57FDA9}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{21F35E0D-E2AD-47CC-BEF1-7E760E57FDA9}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 642}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F0F34E41-C78B-4425-88E1-4B726909154A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F0F34E41-C78B-4425-88E1-4B726909154A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 643}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6DE47718-1137-4824-A740-6160C7E47A10}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6DE47718-1137-4824-A740-6160C7E47A10}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 644}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4A8B56D2-F383-45E3-924F-D95C2B6A387C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4A8B56D2-F383-45E3-924F-D95C2B6A387C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 645}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5A025B9C-6A9E-46B4-B33A-1D26280CA4BA}", "action": "remove_value",

#28 yukukuhi

Authentic Member

Authentic Member
92 posts

Posted 29 December 2019 - 08:32 AM

"path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5A025B9C-6A9E-46B4-B33A-1D26280CA4BA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 646}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6411FF73-A64C-4322-BCAF-F62CAA685980}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6411FF73-A64C-4322-BCAF-F62CAA685980}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 647}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DF86673E-B091-4044-8B02-59E9D4D62D46}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DF86673E-B091-4044-8B02-59E9D4D62D46}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 648}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F764C1A3-E623-43FA-97C9-E80D432F3E3A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F764C1A3-E623-43FA-97C9-E80D432F3E3A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 649}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{FA8F562F-D178-409E-8327-1BC3C184F19D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{FA8F562F-D178-409E-8327-1BC3C184F19D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 650}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{900C7D23-5BF2-49ED-AD0B-AF23E0672794}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{900C7D23-5BF2-49ED-AD0B-AF23E0672794}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 651}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{07B27DB2-6817-4EE7-94FB-E6E37D8C5638}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{07B27DB2-6817-4EE7-94FB-E6E37D8C5638}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 652}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{627FD352-6720-4FEC-BCEF-2454B331E6EF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{627FD352-6720-4FEC-BCEF-2454B331E6EF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 653}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EB8F5186-E68C-4E6A-B10F-BEA324299519}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EB8F5186-E68C-4E6A-B10F-BEA324299519}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 654}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CFB3FB38-292D-4A98-83DC-4C07B7CA751A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CFB3FB38-292D-4A98-83DC-4C07B7CA751A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 655}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{85599B87-0459-4954-BF21-E47E1F870F07}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{85599B87-0459-4954-BF21-E47E1F870F07}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 656}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B356D14F-EC9E-4E28-98ED-C83FF63D015A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B356D14F-EC9E-4E28-98ED-C83FF63D015A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 657}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AAFCBC57-3384-4738-9F41-82933FB44449}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AAFCBC57-3384-4738-9F41-82933FB44449}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 658}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6D11F833-E69D-40D0-81DE-E222EFC3FE09}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6D11F833-E69D-40D0-81DE-E222EFC3FE09}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 659}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{31B994B0-1995-4C82-91A5-38F41860EB11}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{31B994B0-1995-4C82-91A5-38F41860EB11}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 660}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1AE5D33C-3574-4135-8A06-A85C37347C86}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1AE5D33C-3574-4135-8A06-A85C37347C86}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 661}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5FAAA974-5613-4875-AFBD-7D1E9EC853B4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5FAAA974-5613-4875-AFBD-7D1E9EC853B4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 662}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3B959755-37D1-4B71-ABD7-23D4AC37B8BF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3B959755-37D1-4B71-ABD7-23D4AC37B8BF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 663}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{72F7E007-9B90-42FD-A32F-B79DE6FFDF33}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{72F7E007-9B90-42FD-A32F-B79DE6FFDF33}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 664}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F472D35D-AB06-4D1E-BB66-FD6C66E1FCD6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F472D35D-AB06-4D1E-BB66-FD6C66E1FCD6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 665}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{690B2977-F8ED-435B-AA86-374026D22A36}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{690B2977-F8ED-435B-AA86-374026D22A36}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 666}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8EA7B101-8E15-4295-88EB-96A9A12EFADE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8EA7B101-8E15-4295-88EB-96A9A12EFADE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 667}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BB361F70-9943-407C-BDDF-6EC589E5A8FA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BB361F70-9943-407C-BDDF-6EC589E5A8FA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 668}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9D2E3134-5773-47C9-8C11-E3139901CD9C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9D2E3134-5773-47C9-8C11-E3139901CD9C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 669}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{627D4E8C-8E2D-4AF1-9614-0888CFD04C24}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{627D4E8C-8E2D-4AF1-9614-0888CFD04C24}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 670}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{547A99CB-9C3F-4A35-A9ED-E724E4100ACA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{547A99CB-9C3F-4A35-A9ED-E724E4100ACA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 671}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DB4E402C-FB95-41A5-9D74-5BF92D8980D4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DB4E402C-FB95-41A5-9D74-5BF92D8980D4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 672}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D40696B2-EDAA-48CB-957F-9D79AF49D356}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D40696B2-EDAA-48CB-957F-9D79AF49D356}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 673}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{FDAA8778-DE7F-4D17-BC54-57E7FA8036AA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{FDAA8778-DE7F-4D17-BC54-57E7FA8036AA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 674}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{09591C98-378C-49DF-8AD3-A90AABCBC170}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{09591C98-378C-49DF-8AD3-A90AABCBC170}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 675}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F5335434-7E77-429C-91B0-06A9B30E7E99}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F5335434-7E77-429C-91B0-06A9B30E7E99}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 676}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{68093E35-5B75-42F5-B684-6D176FC94E8A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{68093E35-5B75-42F5-B684-6D176FC94E8A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 677}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6739F0CA-C380-4F4F-862E-5620F429CE65}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6739F0CA-C380-4F4F-862E-5620F429CE65}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 678}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AEB8BC51-6B63-43C3-BE40-6ADCD450832C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AEB8BC51-6B63-43C3-BE40-6ADCD450832C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 679}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DDE9710E-A721-400F-AFBF-BD5930EDD465}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DDE9710E-A721-400F-AFBF-BD5930EDD465}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 680}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4D9DFB95-0C2C-4CC9-87D6-7871077F9444}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4D9DFB95-0C2C-4CC9-87D6-7871077F9444}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 681}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{09C42CA6-B8FB-427D-A120-CC6A2FF51BB3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{09C42CA6-B8FB-427D-A120-CC6A2FF51BB3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 682}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D00184DB-A5BB-4BCF-B565-C7404AD4A936}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D00184DB-A5BB-4BCF-B565-C7404AD4A936}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 683}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A60E67AC-A8C9-44A3-9B26-7D51548A41B4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A60E67AC-A8C9-44A3-9B26-7D51548A41B4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 684}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F44A4E48-FDDF-4BA1-B206-A8A67C4EAE69}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F44A4E48-FDDF-4BA1-B206-A8A67C4EAE69}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 685}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8A861881-F7F0-4479-B71F-40DC779104FE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8A861881-F7F0-4479-B71F-40DC779104FE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 686}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{835DAEAD-B2EC-40A0-87E5-49A39AE9F7E8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{835DAEAD-B2EC-40A0-87E5-49A39AE9F7E8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 687}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6EE5B848-4FD2-4C4C-B4E0-648CB177B4AF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6EE5B848-4FD2-4C4C-B4E0-648CB177B4AF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 688}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{65F9B295-B77F-4BEF-A3F0-AD81C38EE20A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{65F9B295-B77F-4BEF-A3F0-AD81C38EE20A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 689}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6FCD6FA9-4023-42E1-A32B-61C364069E07}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6FCD6FA9-4023-42E1-A32B-61C364069E07}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 690}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{49C38D90-B585-4F4B-8989-04BA321E8CB3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{49C38D90-B585-4F4B-8989-04BA321E8CB3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 691}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{08E8D6D1-9FEA-4A4C-9C5A-5D38CBECC9E6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{08E8D6D1-9FEA-4A4C-9C5A-5D38CBECC9E6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 692}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2D8A48BA-D455-4128-BA6B-81933EC98FCF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2D8A48BA-D455-4128-BA6B-81933EC98FCF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 693}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{288F7A06-C9ED-40ED-984C-E7265CC453A8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{288F7A06-C9ED-40ED-984C-E7265CC453A8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 694}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AE0EFE3B-F965-48C3-817E-09AC18C2A1F6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AE0EFE3B-F965-48C3-817E-09AC18C2A1F6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 695}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A190D605-C8E9-48FC-8A9D-E9A12D69CF4B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A190D605-C8E9-48FC-8A9D-E9A12D69CF4B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 696}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6391F978-10D3-42EF-9FE8-0C33B88AE879}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6391F978-10D3-42EF-9FE8-0C33B88AE879}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 697}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A5C2F2BA-41FC-4E34-AC59-FD585CE6C35D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A5C2F2BA-41FC-4E34-AC59-FD585CE6C35D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 698}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EAF6C49C-2905-498A-B6F6-2140AFAE5FDF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EAF6C49C-2905-498A-B6F6-2140AFAE5FDF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 699}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1D38E5B4-AB92-43BF-B934-796547A6FB80}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1D38E5B4-AB92-43BF-B934-796547A6FB80}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 700}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{58B408C7-33CB-432C-AE10-AECD5C507BA6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{58B408C7-33CB-432C-AE10-AECD5C507BA6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 701}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{60760AC6-0613-4A90-ACD9-6882832BAD70}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{60760AC6-0613-4A90-ACD9-6882832BAD70}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 702}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{130856E7-8B6F-4379-8EDE-4909203A8566}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{130856E7-8B6F-4379-8EDE-4909203A8566}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 703}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6CAE8716-7736-4DFA-B401-44DE8885D4F2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6CAE8716-7736-4DFA-B401-44DE8885D4F2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 704}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7AFA5550-A8E5-4F28-96F7-E929AEDE1FD6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7AFA5550-A8E5-4F28-96F7-E929AEDE1FD6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 705}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{169EB93F-4F87-44DD-95BD-0D3B61A25FAB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{169EB93F-4F87-44DD-95BD-0D3B61A25FAB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 706}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6AA45488-D876-4A1F-9C10-165446A42B36}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6AA45488-D876-4A1F-9C10-165446A42B36}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 707}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DE7BB0DD-4564-48ED-A272-39E20C5695FF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DE7BB0DD-4564-48ED-A272-39E20C5695FF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 708}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{587C0A9B-433A-4EFD-822C-C52BDF2F373D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{587C0A9B-433A-4EFD-822C-C52BDF2F373D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 709}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D0BF8128-6F67-45DA-B362-657353425377}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D0BF8128-6F67-45DA-B362-657353425377}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 710}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E2E0FCA3-7A37-4759-A61E-C2604B2FFE7A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E2E0FCA3-7A37-4759-A61E-C2604B2FFE7A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 711}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2ED25B54-1A98-4E2E-A9F0-31845067631C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2ED25B54-1A98-4E2E-A9F0-31845067631C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 712}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D37B9E6C-7D2B-48E4-85F6-F20570449023}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D37B9E6C-7D2B-48E4-85F6-F20570449023}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 713}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DE817B9B-2D79-4A15-969F-5C3DA0305948}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DE817B9B-2D79-4A15-969F-5C3DA0305948}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 714}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5A915DE6-1603-4D0E-B0B0-846BCFB8AB3D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5A915DE6-1603-4D0E-B0B0-846BCFB8AB3D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 715}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4EA73610-8F20-4AAF-939D-C21E36FBD0BB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4EA73610-8F20-4AAF-939D-C21E36FBD0BB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 716}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{860B2FC5-DA73-44D9-AA74-80B4B24DEE6E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{860B2FC5-DA73-44D9-AA74-80B4B24DEE6E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 717}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DF8404CE-2420-4DAA-8EB3-7EB2359F3F3F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DF8404CE-2420-4DAA-8EB3-7EB2359F3F3F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 718}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{26446943-A85B-439B-9E7B-39828E8958D4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{26446943-A85B-439B-9E7B-39828E8958D4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 719}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F147B357-B7D3-43A9-A0F0-E53CF9502060}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F147B357-B7D3-43A9-A0F0-E53CF9502060}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 720}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BC04B7AB-6A1F-4AB7-A49D-4C5388857F45}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BC04B7AB-6A1F-4AB7-A49D-4C5388857F45}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 721}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3489293B-9C72-4B13-80EC-43DAE40F82A2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3489293B-9C72-4B13-80EC-43DAE40F82A2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 722}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{67D49821-D77B-4FD6-9914-1978499A2024}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{67D49821-D77B-4FD6-9914-1978499A2024}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 723}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{950923CD-9074-4493-93BC-2C55CBF2AAAF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{950923CD-9074-4493-93BC-2C55CBF2AAAF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 724}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D515C127-B5DF-4233-B315-812B676FEF57}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D515C127-B5DF-4233-B315-812B676FEF57}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 725}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F11D23AB-6542-46E3-9BB8-D7FEE39BE323}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F11D23AB-6542-46E3-9BB8-D7FEE39BE323}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 726}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{FBC7A605-B062-4203-938E-EFAC2DF999FD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{FBC7A605-B062-4203-938E-EFAC2DF999FD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 727}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{84A67C55-2BA5-4E65-A868-DCFDE42E63ED}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{84A67C55-2BA5-4E65-A868-DCFDE42E63ED}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 728}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1697BA3C-9634-4FC1-BEBE-8D92DF521F3D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1697BA3C-9634-4FC1-BEBE-8D92DF521F3D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 729}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DA76B197-E8ED-49FB-BC9E-B77BC8E1E6FD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DA76B197-E8ED-49FB-BC9E-B77BC8E1E6FD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 730}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6262B15B-1341-4BC8-9660-54FAF4CC3B67}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6262B15B-1341-4BC8-9660-54FAF4CC3B67}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 731}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{36AC3BCA-0D44-4290-8747-C8AFFF5C5924}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{36AC3BCA-0D44-4290-8747-C8AFFF5C5924}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 732}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EF8AC9A6-1FF3-46C0-B371-BAAA2B8D8C48}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EF8AC9A6-1FF3-46C0-B371-BAAA2B8D8C48}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 733}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6886CB10-1511-45DA-9E1C-CEFA0CD24797}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6886CB10-1511-45DA-9E1C-CEFA0CD24797}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 734}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E5FB307E-8AFD-405A-9B15-03B40A27572F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E5FB307E-8AFD-405A-9B15-03B40A27572F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 735}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5EC9882D-66A2-48FA-A7C8-AE5F6D6DE285}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5EC9882D-66A2-48FA-A7C8-AE5F6D6DE285}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 736}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F349E60C-7708-494E-80E1-EFC48B7938A6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F349E60C-7708-494E-80E1-EFC48B7938A6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 737}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CA6CB76E-C00E-45C8-BD76-05BC53F072BD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CA6CB76E-C00E-45C8-BD76-05BC53F072BD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 738}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{385C12FD-872C-49AE-923B-AA7A00D44331}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{385C12FD-872C-49AE-923B-AA7A00D44331}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 739}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0270C74D-F8F2-4F85-B362-2484794B229E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0270C74D-F8F2-4F85-B362-2484794B229E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 740}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F0AF6F53-051E-487D-A90A-93CCD3261ECE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F0AF6F53-051E-487D-A90A-93CCD3261ECE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 741}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{26D3246D-F659-4890-A6ED-E82E2157E9D2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{26D3246D-F659-4890-A6ED-E82E2157E9D2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 742}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4A4F03AF-A991-4AC9-B385-50D0049A5BE8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4A4F03AF-A991-4AC9-B385-50D0049A5BE8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 743}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{82B8FD87-7E05-4582-84F4-A1D2BFC311FC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{82B8FD87-7E05-4582-84F4-A1D2BFC311FC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 744}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B1195CC7-9726-4041-9CFC-9D957A7F88CF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B1195CC7-9726-4041-9CFC-9D957A7F88CF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 745}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{74C2318F-9AEA-4FDE-9667-8AEDC46A67E2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{74C2318F-9AEA-4FDE-9667-8AEDC46A67E2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 746}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CD55019C-651B-4A50-BE41-D6840B58EC3F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CD55019C-651B-4A50-BE41-D6840B58EC3F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 747}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D7FEFF48-9DC1-439B-AE31-B99292F4681A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D7FEFF48-9DC1-439B-AE31-B99292F4681A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 748}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CA9104AA-8107-47DB-B2C7-729E8CA0077F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CA9104AA-8107-47DB-B2C7-729E8CA0077F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 749}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{07EF8B0D-4549-49B7-87CE-2629AFE9C956}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{07EF8B0D-4549-49B7-87CE-2629AFE9C956}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 750}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DCBA8734-8F5C-4DF1-A314-4FFEF8D41AE1}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DCBA8734-8F5C-4DF1-A314-4FFEF8D41AE1}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 751}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4DFB67A2-6FBD-44B4-B2A2-8ADD191475A1}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4DFB67A2-6FBD-44B4-B2A2-8ADD191475A1}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 752}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A945654F-94AD-47FC-BA78-CAD4C398AC4C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A945654F-94AD-47FC-BA78-CAD4C398AC4C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 753}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E0569262-70EC-4A87-8D32-8278A6212733}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E0569262-70EC-4A87-8D32-8278A6212733}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 754}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{313784E7-DE76-4E99-84AC-686B794C7380}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{313784E7-DE76-4E99-84AC-686B794C7380}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 755}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{92DFB7D0-FF89-4152-81BF-6BC0493D25BD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{92DFB7D0-FF89-4152-81BF-6BC0493D25BD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 756}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{30655812-8A0F-4A4B-89DD-E1B6E337CA24}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{30655812-8A0F-4A4B-89DD-E1B6E337CA24}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 757}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EE2D26C7-78E4-4B47-B260-29D08514D741}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EE2D26C7-78E4-4B47-B260-29D08514D741}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 758}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{103A578F-693A-4114-A029-55229AA3645B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{103A578F-693A-4114-A029-55229AA3645B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 759}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E5DB976F-3BC9-45C9-B14E-F3B69ABDA9D3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E5DB976F-3BC9-45C9-B14E-F3B69ABDA9D3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 760}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9D272DEB-996F-4E58-B386-FFCBD947D127}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9D272DEB-996F-4E58-B386-FFCBD947D127}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 761}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D7804522-A28E-4A4E-9B46-1F6B100015C4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D7804522-A28E-4A4E-9B46-1F6B100015C4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 762}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{25E8EFF9-B7A3-404E-9567-26F3C5D2B555}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{25E8EFF9-B7A3-404E-9567-26F3C5D2B555}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 763}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A2AB5811-F0AF-40C0-B5F8-580A90A8E680}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A2AB5811-F0AF-40C0-B5F8-580A90A8E680}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 764}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{212952CD-91F8-4C3D-88F2-4301EEB4016A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{212952CD-91F8-4C3D-88F2-4301EEB4016A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 765}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8A5C05C9-6542-4452-8DC0-71F6BB92944D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8A5C05C9-6542-4452-8DC0-71F6BB92944D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 766}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4AC0FB9D-15B0-425A-B77C-63D24F97A0DF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4AC0FB9D-15B0-425A-B77C-63D24F97A0DF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 767}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CB85B365-2AB7-4186-97E0-827EE64B75E7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CB85B365-2AB7-4186-97E0-827EE64B75E7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 768}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D1219746-B032-4A7A-9A7E-4B63AF5AB684}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D1219746-B032-4A7A-9A7E-4B63AF5AB684}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 769}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C5BE3985-7CFA-49D1-95F2-8978F608D9C2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C5BE3985-7CFA-49D1-95F2-8978F608D9C2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 770}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{25448279-FE6E-40D3-8995-697EC2959771}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{25448279-FE6E-40D3-8995-697EC2959771}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 771}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CB2DE058-B317-45FD-BF17-06AADC8EEB58}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CB2DE058-B317-45FD-BF17-06AADC8EEB58}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 772}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F3290700-8CC6-4BE7-B7D4-8F4852DCF5C3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F3290700-8CC6-4BE7-B7D4-8F4852DCF5C3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 773}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6B5DB301-EDCD-4E3D-88CE-BB6E43745FFE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6B5DB301-EDCD-4E3D-88CE-BB6E43745FFE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 774}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B1446ACD-51D3-4E74-9783-426F73F8B039}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B1446ACD-51D3-4E74-9783-426F73F8B039}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 775}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8E5F1CC9-9FCB-4824-BDE1-0D4EF288C5F8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8E5F1CC9-9FCB-4824-BDE1-0D4EF288C5F8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 776}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9F21DBBD-C662-4320-8799-105C4A6D00AC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9F21DBBD-C662-4320-8799-105C4A6D00AC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 777}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7A7AA4B5-2366-45A5-A7D8-5103A3132872}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7A7AA4B5-2366-45A5-A7D8-5103A3132872}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 778}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2D844121-AF56-40BE-8CF8-2302F552530E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2D844121-AF56-40BE-8CF8-2302F552530E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 779}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F6BE6229-B21A-4D4E-B819-382D2544C1BC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F6BE6229-B21A-4D4E-B819-382D2544C1BC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 780}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{679553FF-B2AF-4462-B111-8771CC2B6C6E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{679553FF-B2AF-4462-B111-8771CC2B6C6E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 781}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F7A7121A-28F0-4187-9CD4-9FB53B19E81C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F7A7121A-28F0-4187-9CD4-9FB53B19E81C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 782}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BBF038D9-88DB-41F5-BCFB-99EA3FE97F36}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BBF038D9-88DB-41F5-BCFB-99EA3FE97F36}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 783}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{077221B6-2EBE-4E18-AAC7-CDA368B04389}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{077221B6-2EBE-4E18-AAC7-CDA368B04389}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 784}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8B73C7A8-B67C-4834-81D0-903EA54BBD80}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8B73C7A8-B67C-4834-81D0-903EA54BBD80}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 785}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{37EC57BD-0373-4B80-8CAE-668247C38BD0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{37EC57BD-0373-4B80-8CAE-668247C38BD0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 786}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2705BA05-B052-467E-A0A8-65D90877520E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2705BA05-B052-467E-A0A8-65D90877520E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 787}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B2C60FC3-B221-46B5-ADC7-B0CB35BF364C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B2C60FC3-B221-46B5-ADC7-B0CB35BF364C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 788}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2496E959-048D-4FB7-A7AA-E9683B7A6C7C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2496E959-048D-4FB7-A7AA-E9683B7A6C7C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 789}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B28DF59F-5D68-409E-BB0A-F9BFC128C036}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B28DF59F-5D68-409E-BB0A-F9BFC128C036}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 790}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2E35EAC1-EE88-4611-9DAB-62B7177CB10D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2E35EAC1-EE88-4611-9DAB-62B7177CB10D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 791}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9626308F-7AF1-477C-9D99-7E1199912C2E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9626308F-7AF1-477C-9D99-7E1199912C2E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 792}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{87026D5E-EAA4-4ED3-823B-7324C36D20D1}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{87026D5E-EAA4-4ED3-823B-7324C36D20D1}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 793}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8F6EA7F7-8770-4F4A-A987-4C73DC884643}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8F6EA7F7-8770-4F4A-A987-4C73DC884643}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 794}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{188F9D19-0333-4347-89D1-BDAAAD7267FF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{188F9D19-0333-4347-89D1-BDAAAD7267FF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 795}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{02174F43-4DE4-4651-98A6-1E6288134BA8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{02174F43-4DE4-4651-98A6-1E6288134BA8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 796}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2996045F-3BC9-44A6-8AB5-61A1B1752BD5}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2996045F-3BC9-44A6-8AB5-61A1B1752BD5}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 797}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{196AA13D-FA34-4D9C-BC89-3FE60BD1BA11}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{196AA13D-FA34-4D9C-BC89-3FE60BD1BA11}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 798}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{FF5835AB-7B3C-41EB-A31F-F13DBB406728}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{FF5835AB-7B3C-41EB-A31F-F13DBB406728}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 799}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2D5E6C84-63C3-4658-A48A-C8508A6F850E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2D5E6C84-63C3-4658-A48A-C8508A6F850E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 800}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DCB158CE-D4B7-4D8E-A291-7C3E5FDD7BD4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DCB158CE-D4B7-4D8E-A291-7C3E5FDD7BD4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 801}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{23E26B7A-2794-47DA-8D40-151341A13C4A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{23E26B7A-2794-47DA-8D40-151341A13C4A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 802}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BA35E415-2C0F-44A5-8C0F-EEA4754D93F2}", "action": "remove_value",

#29 yukukuhi

Authentic Member

Authentic Member
92 posts

Posted 29 December 2019 - 08:34 AM

"path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BA35E415-2C0F-44A5-8C0F-EEA4754D93F2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 803}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CB1AB7CD-B3C4-47AE-9F58-3E3420A1FDB0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CB1AB7CD-B3C4-47AE-9F58-3E3420A1FDB0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 804}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DBBE215D-572C-4872-B356-BD318B88A425}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DBBE215D-572C-4872-B356-BD318B88A425}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 805}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5C4192DF-D3B0-4E5E-A883-75F4224B1E72}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5C4192DF-D3B0-4E5E-A883-75F4224B1E72}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 806}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DCDD60F3-ED5F-49E2-ADAF-9C16B9EDC836}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DCDD60F3-ED5F-49E2-ADAF-9C16B9EDC836}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 807}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EA31007C-9B94-4D21-8D7A-6CE62F7A1CCC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EA31007C-9B94-4D21-8D7A-6CE62F7A1CCC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 808}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{952C58B6-00DF-4B3F-A248-D842099B31FE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{952C58B6-00DF-4B3F-A248-D842099B31FE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 809}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8DDCE8EE-3368-49FF-B93B-FAE2644FB682}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8DDCE8EE-3368-49FF-B93B-FAE2644FB682}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 810}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{94400979-81DC-4090-871A-2EB787F6AA36}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{94400979-81DC-4090-871A-2EB787F6AA36}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 811}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DEF5209D-F8CD-478B-ABCB-CEC6097F34E3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DEF5209D-F8CD-478B-ABCB-CEC6097F34E3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 812}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{17240BEF-94FA-457B-B0F6-303F025DCCAE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{17240BEF-94FA-457B-B0F6-303F025DCCAE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 813}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3508D49D-675E-4BE3-8DB6-60A9606F4187}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3508D49D-675E-4BE3-8DB6-60A9606F4187}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 814}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{08F9B41F-1379-4840-9188-9BDC1B685AD0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{08F9B41F-1379-4840-9188-9BDC1B685AD0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 815}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2C596C3B-0315-4E39-BF10-240F73876A8A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2C596C3B-0315-4E39-BF10-240F73876A8A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 816}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4C131C70-CA24-43AE-AC88-1BA9E3FF461A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4C131C70-CA24-43AE-AC88-1BA9E3FF461A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 817}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B8DDD5DB-1FA5-46B5-9B75-997A9373C8BB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B8DDD5DB-1FA5-46B5-9B75-997A9373C8BB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 818}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7A8D8832-BCD4-419B-B370-157D4BF079CF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7A8D8832-BCD4-419B-B370-157D4BF079CF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 819}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6882105A-9FCB-49C9-A7A4-9850B9C96867}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6882105A-9FCB-49C9-A7A4-9850B9C96867}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 820}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DDCC6C24-DB1A-4B5F-915D-841060295F11}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DDCC6C24-DB1A-4B5F-915D-841060295F11}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 821}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{156F6665-EDDC-42AD-815C-0410E205FD63}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{156F6665-EDDC-42AD-815C-0410E205FD63}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 822}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{481E7C72-5993-4A31-96FA-38F60FD1CE7B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{481E7C72-5993-4A31-96FA-38F60FD1CE7B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 823}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AD5FF983-8E42-4ACC-B8CA-1742526EDBF9}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AD5FF983-8E42-4ACC-B8CA-1742526EDBF9}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 824}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{FF514BFB-7847-4A77-B2AD-424FBEB4E4EF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{FF514BFB-7847-4A77-B2AD-424FBEB4E4EF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 825}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CACB3501-43C3-451A-8406-FF086C02295B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CACB3501-43C3-451A-8406-FF086C02295B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 826}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C987C6FC-C367-492A-92E9-9C07DF893EE3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C987C6FC-C367-492A-92E9-9C07DF893EE3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 827}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EBFBB4A7-397E-416E-9E74-190F154719AB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EBFBB4A7-397E-416E-9E74-190F154719AB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 828}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{115617EF-2521-4121-A389-E446E04969BD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{115617EF-2521-4121-A389-E446E04969BD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 829}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{15C668E7-0056-46C2-B2E0-932FD44F36E1}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{15C668E7-0056-46C2-B2E0-932FD44F36E1}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 830}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F8BA52C4-FD92-427E-BCF3-7420EB9561AD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F8BA52C4-FD92-427E-BCF3-7420EB9561AD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 831}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{69E0A7DD-5E67-46A3-9E95-B70E0F6CC894}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{69E0A7DD-5E67-46A3-9E95-B70E0F6CC894}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 832}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{46F69667-379E-4991-BD54-28A1DCFE90F9}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{46F69667-379E-4991-BD54-28A1DCFE90F9}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 833}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0379F1E4-F9B2-43AE-A5AB-9FC6F380F089}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0379F1E4-F9B2-43AE-A5AB-9FC6F380F089}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 834}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D030C10C-2A75-46BF-8E47-505F8ACDCDF5}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D030C10C-2A75-46BF-8E47-505F8ACDCDF5}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 835}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{763E8C6D-685A-44CC-AA71-EDBA365A4CED}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{763E8C6D-685A-44CC-AA71-EDBA365A4CED}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 836}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{762CEA19-C80E-4643-855C-40CDE8D6851A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{762CEA19-C80E-4643-855C-40CDE8D6851A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 837}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2143F3A9-87FC-4C8B-A9CB-807DFFC4A912}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2143F3A9-87FC-4C8B-A9CB-807DFFC4A912}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 838}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{FE6EEF34-8BB0-460F-AE6D-5A85E963CA74}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{FE6EEF34-8BB0-460F-AE6D-5A85E963CA74}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 839}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AFF5770E-9270-477B-B8D5-58F35C733310}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AFF5770E-9270-477B-B8D5-58F35C733310}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 840}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9F60BF57-925C-42D2-BF14-476570D8C36B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9F60BF57-925C-42D2-BF14-476570D8C36B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 841}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{82179C68-2C37-4555-935A-1AB2E5EACE9D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{82179C68-2C37-4555-935A-1AB2E5EACE9D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 842}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A6984E7B-7328-4439-9C40-F618BC6056EA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A6984E7B-7328-4439-9C40-F618BC6056EA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 843}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B8AB8956-6CF1-4A9A-9A0A-6892FAFDA1F2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B8AB8956-6CF1-4A9A-9A0A-6892FAFDA1F2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 844}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B1ED9DAF-FE3C-48D2-97FB-46BCA88369E6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B1ED9DAF-FE3C-48D2-97FB-46BCA88369E6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 845}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F2A3C819-79FB-4A80-A8C5-1765FD05592D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F2A3C819-79FB-4A80-A8C5-1765FD05592D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 846}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9A3EB64D-42E9-4079-82CD-FBD23002C3A2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9A3EB64D-42E9-4079-82CD-FBD23002C3A2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 847}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{311D6321-279B-408B-B35D-254340011AD7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{311D6321-279B-408B-B35D-254340011AD7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 848}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CBC27C9C-C0B7-4DB4-B668-911714737958}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CBC27C9C-C0B7-4DB4-B668-911714737958}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 849}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7E9FA38B-4E78-40C4-9A25-A32EABA51EFF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7E9FA38B-4E78-40C4-9A25-A32EABA51EFF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 850}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8C87BA0E-C6B1-4220-8827-989767039E2C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8C87BA0E-C6B1-4220-8827-989767039E2C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 851}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AEB0DDD2-FCA9-44C1-9BC3-C6ACB1E04F7D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AEB0DDD2-FCA9-44C1-9BC3-C6ACB1E04F7D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 852}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3BA32627-5147-490E-B10F-F7412E01B0B6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3BA32627-5147-490E-B10F-F7412E01B0B6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 853}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CCF3F242-6DB7-4936-BCA3-0D885CD997DD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CCF3F242-6DB7-4936-BCA3-0D885CD997DD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 854}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9B3B2A30-56E2-4FA5-8C47-209062C78271}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9B3B2A30-56E2-4FA5-8C47-209062C78271}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 855}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D5C4C4ED-3FD0-4D4B-B969-0B5E2BE938CB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D5C4C4ED-3FD0-4D4B-B969-0B5E2BE938CB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 856}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E1974E01-420D-4E63-BE98-067A7281EDCF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E1974E01-420D-4E63-BE98-067A7281EDCF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 857}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6CB9633B-5AD0-4159-BFCB-0468B55910AC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6CB9633B-5AD0-4159-BFCB-0468B55910AC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 858}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{329CA1B4-164D-44C7-AA2C-461EE4F3F939}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{329CA1B4-164D-44C7-AA2C-461EE4F3F939}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 859}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4079F001-FC70-4C34-8C0C-797907F52B3C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4079F001-FC70-4C34-8C0C-797907F52B3C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 860}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{49A0F3E7-C9BB-4047-87F2-166177ED013D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{49A0F3E7-C9BB-4047-87F2-166177ED013D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 861}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D8AE4C79-0FD1-4027-B82A-DF28B02DE508}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D8AE4C79-0FD1-4027-B82A-DF28B02DE508}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 862}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{78849830-F0F6-40C9-A8F2-7E9EC25F767E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{78849830-F0F6-40C9-A8F2-7E9EC25F767E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 863}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0712D8F8-8157-4327-A094-98FF792EA7E9}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0712D8F8-8157-4327-A094-98FF792EA7E9}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 864}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BD408FA8-D206-41FC-9533-2BF1004E0763}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BD408FA8-D206-41FC-9533-2BF1004E0763}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 865}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{88B66A91-F3D2-4FB3-AA9A-969A47A1FA7E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{88B66A91-F3D2-4FB3-AA9A-969A47A1FA7E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 866}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{61115EC0-0ABF-4BD7-86A8-358C0B64B953}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{61115EC0-0ABF-4BD7-86A8-358C0B64B953}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 867}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{747A338D-96FA-4AE9-9857-EBFC4EA7D5E2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{747A338D-96FA-4AE9-9857-EBFC4EA7D5E2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 868}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E7A97CC3-29F8-4B06-9E3E-6E2D926DB288}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E7A97CC3-29F8-4B06-9E3E-6E2D926DB288}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 869}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BC7E44A8-078F-4310-B7BB-8B6E198A6505}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BC7E44A8-078F-4310-B7BB-8B6E198A6505}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 870}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{827B49FB-9FF0-4DE2-816B-C1F959A9302B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{827B49FB-9FF0-4DE2-816B-C1F959A9302B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 871}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{509971DB-F236-4EB4-8235-A0EFEAC76BBF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{509971DB-F236-4EB4-8235-A0EFEAC76BBF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 872}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{40BE4405-7177-4676-AB69-2BB12D572463}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{40BE4405-7177-4676-AB69-2BB12D572463}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 873}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7B8294F7-0637-405D-8F92-0C06C9C70593}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7B8294F7-0637-405D-8F92-0C06C9C70593}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 874}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B0F7D823-691C-49F8-B2ED-1355956B625F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B0F7D823-691C-49F8-B2ED-1355956B625F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 875}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B657AB3E-9DAF-47FB-99F5-D92AFDD9AF61}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B657AB3E-9DAF-47FB-99F5-D92AFDD9AF61}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 876}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4DA8DFAA-D227-45F0-8AA4-192E480931AD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4DA8DFAA-D227-45F0-8AA4-192E480931AD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 877}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2643C956-C297-40B4-BD38-9005272B7E4C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2643C956-C297-40B4-BD38-9005272B7E4C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 878}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{81C5357C-0041-4FF0-A24A-9F917F5ED2DA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{81C5357C-0041-4FF0-A24A-9F917F5ED2DA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 879}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E9309CC9-A038-4807-B81D-7DE9C0D35CFD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E9309CC9-A038-4807-B81D-7DE9C0D35CFD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 880}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{65C1EFB2-AF60-48C7-9F6D-FDE2E576ED8D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{65C1EFB2-AF60-48C7-9F6D-FDE2E576ED8D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 881}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1E61D6E4-37C5-42BA-9560-33BA30EFC2C9}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1E61D6E4-37C5-42BA-9560-33BA30EFC2C9}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 882}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{08204729-9ACB-43FC-B5E3-343EC160110C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{08204729-9ACB-43FC-B5E3-343EC160110C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 883}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{958E0B25-9E91-47FE-A376-F03D61767691}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{958E0B25-9E91-47FE-A376-F03D61767691}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 884}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DE1AF159-89B2-488C-8F3C-28398417F8DC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DE1AF159-89B2-488C-8F3C-28398417F8DC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 885}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D2191ACE-9CFE-45F1-BAE1-20AFD516D717}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D2191ACE-9CFE-45F1-BAE1-20AFD516D717}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 886}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{538F5AF3-B074-469D-A9BE-1FF857A66BBB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{538F5AF3-B074-469D-A9BE-1FF857A66BBB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 887}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{579BCB92-AC51-4B97-9946-A0C0AB35A756}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{579BCB92-AC51-4B97-9946-A0C0AB35A756}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 888}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B8B0BD32-696B-4E6E-8A33-3971D3DC56DE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B8B0BD32-696B-4E6E-8A33-3971D3DC56DE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 889}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{205798FB-9AD6-4D20-AF13-F5D1698E2720}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{205798FB-9AD6-4D20-AF13-F5D1698E2720}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 890}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F6227F64-2E93-4199-8EFA-CBF11FEDAB97}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F6227F64-2E93-4199-8EFA-CBF11FEDAB97}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 891}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{655A8E7C-FFF5-4478-A8DB-5300846071D8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{655A8E7C-FFF5-4478-A8DB-5300846071D8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 892}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8C74886A-EC02-473F-9884-82430D3E1F99}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8C74886A-EC02-473F-9884-82430D3E1F99}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 893}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{095332EE-6AC4-41F1-B8AE-51CBABDB88CE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{095332EE-6AC4-41F1-B8AE-51CBABDB88CE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 894}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7E55670F-BE0B-4BFB-A44A-CD0C84AF9667}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7E55670F-BE0B-4BFB-A44A-CD0C84AF9667}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 895}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{502C7B66-0320-4583-AC84-25A2D04F57E0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{502C7B66-0320-4583-AC84-25A2D04F57E0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 896}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C2347F88-1282-4DD0-95EA-7164B61CD01D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C2347F88-1282-4DD0-95EA-7164B61CD01D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 897}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A41CB570-C5E4-4132-A7CC-2775F5A34D73}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A41CB570-C5E4-4132-A7CC-2775F5A34D73}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 898}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F56B3324-2CC5-43C8-8B80-C6F57BFCF188}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F56B3324-2CC5-43C8-8B80-C6F57BFCF188}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 899}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9F129530-E314-4671-8E8E-7DABA99A296D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9F129530-E314-4671-8E8E-7DABA99A296D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 900}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AF275728-1D54-456E-B69D-BA7F28140D96}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AF275728-1D54-456E-B69D-BA7F28140D96}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 901}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B868BFB9-6FC0-4F1F-8F53-60E1502563AA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B868BFB9-6FC0-4F1F-8F53-60E1502563AA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 902}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E007C925-4A9A-437D-94E2-C6D80A2FB5EA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E007C925-4A9A-437D-94E2-C6D80A2FB5EA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 903}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{54A1A2A8-30D1-4040-8BF3-1E4EA77266E0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{54A1A2A8-30D1-4040-8BF3-1E4EA77266E0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 904}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DE7B1B40-9B0C-492F-8ADC-FBB4F59A5B5E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DE7B1B40-9B0C-492F-8ADC-FBB4F59A5B5E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 905}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5EE05B2A-65F1-4A8F-85E4-E4D06335F3BB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5EE05B2A-65F1-4A8F-85E4-E4D06335F3BB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 906}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{ECCFA9E5-FC04-438F-95B6-8D4E191E2B9C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{ECCFA9E5-FC04-438F-95B6-8D4E191E2B9C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 907}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4DA5A81B-1BC9-43A5-B0C8-2ED8B355B8EF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4DA5A81B-1BC9-43A5-B0C8-2ED8B355B8EF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 908}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{63651393-53E7-4532-8E98-D63E4E0C703C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{63651393-53E7-4532-8E98-D63E4E0C703C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 909}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DA2073B3-EEA0-4325-BE19-E9D2726C5BE0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DA2073B3-EEA0-4325-BE19-E9D2726C5BE0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 910}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5759A268-9C9C-44B6-8F0A-49F52D2A76CA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5759A268-9C9C-44B6-8F0A-49F52D2A76CA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 911}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A6B002F6-6445-484A-AB17-5FB6B6A843A3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A6B002F6-6445-484A-AB17-5FB6B6A843A3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 912}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A8F17A74-D110-46DE-A8B9-63354A7C0F3E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A8F17A74-D110-46DE-A8B9-63354A7C0F3E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 913}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CC9112A5-98AF-47F7-9D52-EF3595B2DBEB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CC9112A5-98AF-47F7-9D52-EF3595B2DBEB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 914}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{89DB8F35-36FA-4307-A48D-C4A6A3F7AFD9}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{89DB8F35-36FA-4307-A48D-C4A6A3F7AFD9}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 915}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B4FB08C6-D80E-4F89-B8D9-C5D656DE55E7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B4FB08C6-D80E-4F89-B8D9-C5D656DE55E7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 916}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{27A01F5A-947C-4231-92FD-BF0D30AA35CA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{27A01F5A-947C-4231-92FD-BF0D30AA35CA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 917}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F45AC15E-201F-4A4E-B749-1C0BD1D35B95}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F45AC15E-201F-4A4E-B749-1C0BD1D35B95}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 918}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{36E4DFA0-EC43-4D71-B1FA-540150DB5E92}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{36E4DFA0-EC43-4D71-B1FA-540150DB5E92}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 919}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4EAC9520-7F47-40C6-8ED9-FC84C9663C55}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4EAC9520-7F47-40C6-8ED9-FC84C9663C55}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 920}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AD634356-362B-4726-9953-71661AB0CAE6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AD634356-362B-4726-9953-71661AB0CAE6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 921}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E4229182-62C1-406F-ADF6-5A9FDE8380AB}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E4229182-62C1-406F-ADF6-5A9FDE8380AB}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 922}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DA7DCBED-213D-45EC-996A-EBA7CA9F0AEE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DA7DCBED-213D-45EC-996A-EBA7CA9F0AEE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 923}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C567373F-9293-4A7D-9F58-115263095C64}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C567373F-9293-4A7D-9F58-115263095C64}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 924}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EF330B01-2738-4B4C-8444-7705B7299373}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EF330B01-2738-4B4C-8444-7705B7299373}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 925}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{7E1F7C94-584B-4DE1-AC19-4A44887E7D88}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{7E1F7C94-584B-4DE1-AC19-4A44887E7D88}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 926}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{79A1D437-2547-4FC4-9FEB-B269BF22C443}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{79A1D437-2547-4FC4-9FEB-B269BF22C443}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 927}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{3220E9FC-00D6-4D95-A2EC-0345BBDD1757}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{3220E9FC-00D6-4D95-A2EC-0345BBDD1757}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 928}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E709FD82-E225-4C5A-8450-821F2F6585CD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E709FD82-E225-4C5A-8450-821F2F6585CD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 929}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{955353CA-6404-4D29-9764-73AF38B44D12}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{955353CA-6404-4D29-9764-73AF38B44D12}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 930}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C1610EC0-DA57-4B39-AEF2-EA1362FAB543}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C1610EC0-DA57-4B39-AEF2-EA1362FAB543}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 931}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{0256877A-6EFD-4BD6-9FEF-A6A276359816}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{0256877A-6EFD-4BD6-9FEF-A6A276359816}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 932}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BE0ACB11-6E35-4531-8921-746B9621B941}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BE0ACB11-6E35-4531-8921-746B9621B941}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 933}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E441E24C-4111-42C0-BB90-796908FF567C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E441E24C-4111-42C0-BB90-796908FF567C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 934}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9FDB4983-56D8-44A6-9085-8AA5E8807DB4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9FDB4983-56D8-44A6-9085-8AA5E8807DB4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 935}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{54C764C3-D1EC-450C-93D2-169485C525FF}", "action": "remove_value",

#30 yukukuhi

Authentic Member

Authentic Member
92 posts

Posted 29 December 2019 - 08:35 AM

"path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{54C764C3-D1EC-450C-93D2-169485C525FF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 936}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{15A583F2-50DF-41DD-B3F1-E8918337AEC8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{15A583F2-50DF-41DD-B3F1-E8918337AEC8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 937}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{74A56C14-A525-48CE-9BCA-7BE3C938F62F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{74A56C14-A525-48CE-9BCA-7BE3C938F62F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 938}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B2858065-2B8D-4152-A7C1-AB105010D4E7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B2858065-2B8D-4152-A7C1-AB105010D4E7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 939}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{40600256-9258-4641-B22C-730E12C97221}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{40600256-9258-4641-B22C-730E12C97221}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 940}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4A4D4C31-DC90-4638-86E9-033BEF0E4A2E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4A4D4C31-DC90-4638-86E9-033BEF0E4A2E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 941}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5EC78FE8-9870-4E40-838A-BC3B55FBC433}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5EC78FE8-9870-4E40-838A-BC3B55FBC433}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 942}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F4CC5BFB-0D64-4447-8FE4-B06260606203}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F4CC5BFB-0D64-4447-8FE4-B06260606203}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 943}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B6E1DDFB-F87D-405B-B515-DB6B0B3982CF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B6E1DDFB-F87D-405B-B515-DB6B0B3982CF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 944}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1FC73ADD-CDC1-40C6-A919-0244F04C4C55}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1FC73ADD-CDC1-40C6-A919-0244F04C4C55}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 945}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BDD68D86-4CE6-4320-99F2-E369111364E5}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BDD68D86-4CE6-4320-99F2-E369111364E5}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 946}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2D3E172A-12E5-4FCF-986A-07A9C4D254E6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2D3E172A-12E5-4FCF-986A-07A9C4D254E6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 947}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{88958555-997E-4802-BC32-CAEF751FAE47}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{88958555-997E-4802-BC32-CAEF751FAE47}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 948}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D2B57A43-A14A-4E7E-BC9F-F330D5242E12}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D2B57A43-A14A-4E7E-BC9F-F330D5242E12}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 949}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{705FD3AC-B14D-4BAD-9CEF-CE3860A3E93D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{705FD3AC-B14D-4BAD-9CEF-CE3860A3E93D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 950}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9FD7C63D-B64D-4017-8601-58130E8C27BD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9FD7C63D-B64D-4017-8601-58130E8C27BD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 951}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1CC74548-751D-4FE0-B147-1F465C97708B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1CC74548-751D-4FE0-B147-1F465C97708B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 952}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{26E38F9D-AD35-41D2-A0B0-AD91BAE147DC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{26E38F9D-AD35-41D2-A0B0-AD91BAE147DC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 953}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{05C294AC-9E54-4960-AE15-5D1046ED0A92}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{05C294AC-9E54-4960-AE15-5D1046ED0A92}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 954}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D4CD97B0-F659-4EE1-A575-58D03CD4DFD6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D4CD97B0-F659-4EE1-A575-58D03CD4DFD6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 955}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4F31064B-D6C2-497C-A364-16370B8068DF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4F31064B-D6C2-497C-A364-16370B8068DF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 956}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{62429C79-A772-4CC1-B0F3-2A54F7B2BDA8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{62429C79-A772-4CC1-B0F3-2A54F7B2BDA8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 957}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8E8A362B-A3AE-4A8F-A653-F2EB7F26B1C0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8E8A362B-A3AE-4A8F-A653-F2EB7F26B1C0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 958}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A90B0E9E-47F5-414C-A392-9621687E99AF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A90B0E9E-47F5-414C-A392-9621687E99AF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 959}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{77286D02-7810-4F01-8B4E-DBF8CCED39EF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{77286D02-7810-4F01-8B4E-DBF8CCED39EF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 960}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{364FB552-AA6E-4290-9F7E-4528E89CC834}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{364FB552-AA6E-4290-9F7E-4528E89CC834}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 961}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B96628C1-DBC1-467F-A15A-A65719EB1601}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B96628C1-DBC1-467F-A15A-A65719EB1601}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 962}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{23326937-D244-4568-9221-025C71233A6D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{23326937-D244-4568-9221-025C71233A6D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 963}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CBBE2D66-B7F7-4AAB-9EE9-010C93C5433D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CBBE2D66-B7F7-4AAB-9EE9-010C93C5433D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 964}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8EB5F549-A18F-4C80-AC2C-C67B244FB732}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8EB5F549-A18F-4C80-AC2C-C67B244FB732}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 965}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CA5D3347-351C-4F3B-8FFD-B3880E1AAA78}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CA5D3347-351C-4F3B-8FFD-B3880E1AAA78}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 966}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CA636C82-7AA5-4097-B5A4-AD9BE7339DE4}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CA636C82-7AA5-4097-B5A4-AD9BE7339DE4}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 967}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A5926999-DC45-4D49-A2ED-3EB6581B8E76}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A5926999-DC45-4D49-A2ED-3EB6581B8E76}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 968}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{A7D52E62-84E8-476F-A148-4FB4CDCFE34B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{A7D52E62-84E8-476F-A148-4FB4CDCFE34B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 969}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{260CC681-A57C-4CCF-B475-7D405339ECC3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{260CC681-A57C-4CCF-B475-7D405339ECC3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 970}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{93A1EFCF-D67E-4942-857F-1B7322A6D4E2}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{93A1EFCF-D67E-4942-857F-1B7322A6D4E2}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 971}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{54DAB8BF-5CCF-4260-9176-FDD42F594067}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{54DAB8BF-5CCF-4260-9176-FDD42F594067}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 972}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{29E1A2B4-24DB-424A-A711-CB725F060C47}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{29E1A2B4-24DB-424A-A711-CB725F060C47}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 973}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{60DB2918-043B-467E-ADEA-A11194828D75}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{60DB2918-043B-467E-ADEA-A11194828D75}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 974}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{25D92F2A-DACA-4F07-A16A-DB0B4CBA3EE3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{25D92F2A-DACA-4F07-A16A-DB0B4CBA3EE3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 975}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E4F813CC-54F6-40DB-A39F-A1CF8EAFE3EE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E4F813CC-54F6-40DB-A39F-A1CF8EAFE3EE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 976}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DEBEB105-D6BC-4B1A-A5F7-9CE60264F4B7}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DEBEB105-D6BC-4B1A-A5F7-9CE60264F4B7}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 977}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{93F1D5BA-6380-4294-847B-D276B1D258EC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{93F1D5BA-6380-4294-847B-D276B1D258EC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 978}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E1F13071-1BBE-4897-8E11-EE6E554934C0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E1F13071-1BBE-4897-8E11-EE6E554934C0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 979}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{931B0BF9-0307-4C82-9BC3-8B2D1D46961E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{931B0BF9-0307-4C82-9BC3-8B2D1D46961E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 980}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{63F6027C-C9E5-4541-A640-8C65864C486F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{63F6027C-C9E5-4541-A640-8C65864C486F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 981}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1E39F7E0-5154-4B8E-B6C8-595AB7F8BE88}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1E39F7E0-5154-4B8E-B6C8-595AB7F8BE88}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 982}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8F3F6291-0EE0-4E63-832A-7318AD56F139}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8F3F6291-0EE0-4E63-832A-7318AD56F139}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 983}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{916021FE-E51B-4B1E-BE6B-94578E4E8644}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{916021FE-E51B-4B1E-BE6B-94578E4E8644}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 984}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{AA068440-B93C-44A4-8358-A47BE3874364}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{AA068440-B93C-44A4-8358-A47BE3874364}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 985}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EDEDCEB6-F7E7-4346-9ADC-34E5222A2CE6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EDEDCEB6-F7E7-4346-9ADC-34E5222A2CE6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 986}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B34D73CE-7A2C-46EC-B0B0-671CCC887211}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B34D73CE-7A2C-46EC-B0B0-671CCC887211}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 987}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{36BF806D-D301-4C77-A3A7-466605E3FCF1}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{36BF806D-D301-4C77-A3A7-466605E3FCF1}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 988}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4E40C6A0-DBF7-4720-934F-4BAA626ABA9D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4E40C6A0-DBF7-4720-934F-4BAA626ABA9D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 989}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{440DFE02-2670-4951-87DF-B9B3DBD53869}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{440DFE02-2670-4951-87DF-B9B3DBD53869}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 990}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B530D56E-D9DD-4200-A153-137D09E6CE83}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B530D56E-D9DD-4200-A153-137D09E6CE83}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 991}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E9E52BD9-349A-4A0D-B98E-F562A750CFE0}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E9E52BD9-349A-4A0D-B98E-F562A750CFE0}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 992}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C2437AEF-929D-42E9-B9C7-4761165A4261}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C2437AEF-929D-42E9-B9C7-4761165A4261}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 993}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{06AC5428-51F8-4E8E-BB4E-CBF58FF83CF9}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{06AC5428-51F8-4E8E-BB4E-CBF58FF83CF9}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 994}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{9A956545-4DA5-4E5E-9CB2-20903CDAD15D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{9A956545-4DA5-4E5E-9CB2-20903CDAD15D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 995}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{14D0FE1B-86D9-48EE-AD0E-14E6BCA1B2CC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{14D0FE1B-86D9-48EE-AD0E-14E6BCA1B2CC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 996}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8A56AEDD-BFC2-4177-BE10-C9D9E0773A91}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8A56AEDD-BFC2-4177-BE10-C9D9E0773A91}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 997}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4CDFA8EB-C2AE-439D-9127-5D70D8F8AC1B}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4CDFA8EB-C2AE-439D-9127-5D70D8F8AC1B}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 998}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B866C237-D517-4882-A7C7-B889FBF0CE6A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B866C237-D517-4882-A7C7-B889FBF0CE6A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 999}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{51D39DFD-3764-47D7-91C7-73C4588D2E00}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{51D39DFD-3764-47D7-91C7-73C4588D2E00}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1000}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{F4EA3021-F193-4D9A-A88B-B8C5BEEEC9B3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{F4EA3021-F193-4D9A-A88B-B8C5BEEEC9B3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1001}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{EDE840E0-73D5-43E3-9269-5DF93B24FDC6}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{EDE840E0-73D5-43E3-9269-5DF93B24FDC6}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1002}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{ACEAEE84-1BD1-40D2-8904-032856FCE606}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{ACEAEE84-1BD1-40D2-8904-032856FCE606}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1003}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{09FCAA57-838C-4159-94C3-7C1DE2E4D8BE}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{09FCAA57-838C-4159-94C3-7C1DE2E4D8BE}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1004}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{DE28F839-4454-4EBE-B6D6-D205F5F60A75}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{DE28F839-4454-4EBE-B6D6-D205F5F60A75}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1005}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{76D955E9-70CA-4B7B-A74B-406857764D91}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{76D955E9-70CA-4B7B-A74B-406857764D91}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1006}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4B6E98AC-A21B-4103-82B3-9BE411391A5D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4B6E98AC-A21B-4103-82B3-9BE411391A5D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1007}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{1BF2D998-45BC-4AB4-A910-74FE5245865C}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{1BF2D998-45BC-4AB4-A910-74FE5245865C}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1008}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{5F5C0F27-F8E3-4FE6-A3F7-5A316D643B74}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{5F5C0F27-F8E3-4FE6-A3F7-5A316D643B74}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1009}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2ECAC05C-DBEB-45CC-8A7E-6289A79244AA}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2ECAC05C-DBEB-45CC-8A7E-6289A79244AA}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1010}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{C488BDFE-47E2-4A08-9854-0FE6F156E3A1}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{C488BDFE-47E2-4A08-9854-0FE6F156E3A1}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1011}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{BF80EBD8-DE75-42D5-BE44-384F094ED442}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{BF80EBD8-DE75-42D5-BE44-384F094ED442}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1012}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E205B4F2-2ECC-4962-B6B4-BBB3FD32A42E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E205B4F2-2ECC-4962-B6B4-BBB3FD32A42E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1013}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{76E77DF2-3F09-40E4-AF7C-DD807DCB24BD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{76E77DF2-3F09-40E4-AF7C-DD807DCB24BD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1014}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2F2947AF-24A6-4B18-BCF6-DB1708837F4A}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2F2947AF-24A6-4B18-BCF6-DB1708837F4A}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1015}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{2665FE7B-1EFD-4ABF-B66C-D852C1ED108D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{2665FE7B-1EFD-4ABF-B66C-D852C1ED108D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1016}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{079C981B-5B55-4F86-8021-2A16E34C7607}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{079C981B-5B55-4F86-8021-2A16E34C7607}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1017}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CC326B8E-7090-46FE-AD58-197013AAADEF}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CC326B8E-7090-46FE-AD58-197013AAADEF}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1018}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{944CDE1B-5934-46E0-9039-B771978978BD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{944CDE1B-5934-46E0-9039-B771978978BD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1019}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{97A4AF42-61EC-455A-AB3A-453BA7A3767E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{97A4AF42-61EC-455A-AB3A-453BA7A3767E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1020}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{41A77638-B1BA-49EF-AD14-9E31D083EE9D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{41A77638-B1BA-49EF-AD14-9E31D083EE9D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1021}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{363DD2E1-536A-4184-8E3D-98B11E03A09D}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{363DD2E1-536A-4184-8E3D-98B11E03A09D}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1022}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E54BD798-8372-4DED-8FC9-AF0677854397}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E54BD798-8372-4DED-8FC9-AF0677854397}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1023}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6E3DD1FE-2864-4C18-88DD-11306B0EDD63}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6E3DD1FE-2864-4C18-88DD-11306B0EDD63}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1024}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{322855EF-EB73-4345-BFC7-2ADBBA402159}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{322855EF-EB73-4345-BFC7-2ADBBA402159}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1025}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{4D3C8A5D-97BE-4690-A15F-C41216687D62}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{4D3C8A5D-97BE-4690-A15F-C41216687D62}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1026}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{D94BD0E3-2A37-4B72-A8C4-47A5ED5087C8}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{D94BD0E3-2A37-4B72-A8C4-47A5ED5087C8}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1027}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{88123D8B-E39B-475F-B0A0-8F705CC15AD1}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{88123D8B-E39B-475F-B0A0-8F705CC15AD1}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1028}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{8DFDBBD2-FA52-463E-9A54-E28D4E6469E3}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{8DFDBBD2-FA52-463E-9A54-E28D4E6469E3}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1029}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{E0CC3C57-481A-4489-BB3F-01093641D143}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{E0CC3C57-481A-4489-BB3F-01093641D143}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1030}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B1D7CB0A-B534-4A08-A285-94E06BDEC64F}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B1D7CB0A-B534-4A08-A285-94E06BDEC64F}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1031}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{738BCE51-2144-4288-8545-10C662B70706}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{738BCE51-2144-4288-8545-10C662B70706}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1032}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B35FEDAA-6850-48DC-9599-CB94D70A754E}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B35FEDAA-6850-48DC-9599-CB94D70A754E}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1033}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{05793C00-4160-49BE-A0A8-74DAA238D895}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{05793C00-4160-49BE-A0A8-74DAA238D895}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1034}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{B9FAE27C-EE6C-4A60-BE68-9078961765BD}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{B9FAE27C-EE6C-4A60-BE68-9078961765BD}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1035}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{6CBF45C3-4F23-490D-BFA4-2702B1E34A71}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{6CBF45C3-4F23-490D-BFA4-2702B1E34A71}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1036}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{099196C6-D610-4A9F-A580-3DADE4F3E134}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{099196C6-D610-4A9F-A580-3DADE4F3E134}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1037}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{CBCCE611-3540-46FC-9FA1-CFA7403D7D80}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{CBCCE611-3540-46FC-9FA1-CFA7403D7D80}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1038}, {"scan_what": 1, "scan_how": [16, 6, 18, 21, 19, 22], "vendors": ["Suspicious.Path"], "type": 1, "name": "{50740A86-B214-4E95-9BFD-92DB440788DC}", "action": "remove_value", "path": "HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules|{50740A86-B214-4E95-9BFD-92DB440788DC}", "data": "v2.30|Action=Allow|Active=TRUE|Dir=In|App=C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe|Name=Google Chrome|", "analysis_data": "C:\\ProgramData\\Google\\ChromeDir2\\Application\\chrome.exe", "view": 64, "file_md5": "", "file_sha256": "", "has_file": true, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1039}]}, {"rule_name": "scan_policies", "rule_code": "XX", "rule_friendly_name": "System Policies", "children": [{"scan_what": 1, "scan_how": [10], "vendors": ["PUM.Policies"], "type": 1, "name": "ConsentPromptBehaviorAdmin", "action": "replace_value", "path": "HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System|ConsentPromptBehaviorAdmin", "data": "0", "replace_data": 2, "analysis_data": "", "view": 64, "file_md5": "", "file_sha256": "", "has_file": false, "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 4, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1040}]}], "wmi": [], "hosts": {"is_too_big": false, "hosts_file_path": "C:\\Windows\\System32\\drivers\\etc\\hosts", "lines": []}, "filesystem": [{"scan_what": 1, "scan_how": [1, 2, 3, 4], "vendors": ["Tr.Chapak"], "type": 2, "name": "rss", "path": "C:\\Windows\\rss", "target": "", "path_compressed": "%SystemRoot%\\rss", "file_md5": "", "file_sha356": "", "target_params": "", "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 2, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1041}, {"scan_what": 1, "scan_how": [1, 2, 3, 4], "vendors": ["Tr.Gen"], "type": 2, "name": "EventSvc", "path": "C:\\ProgramData\\EventSvc", "target": "", "path_compressed": "%programdata%\\EventSvc", "file_md5": "", "file_sha356": "", "target_params": "", "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 2, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1042}, {"scan_what": 1, "scan_how": [1, 2, 3, 4], "vendors": ["PUP.NtvHost"], "type": 2, "name": "NtvHost", "path": "C:\\ProgramData\\NtvHost", "target": "", "path_compressed": "%programdata%\\NtvHost", "file_md5": "", "file_sha356": "", "target_params": "", "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1043}, {"scan_what": 1, "scan_how": [1, 2, 3, 4], "vendors": ["Tr.Gen"], "type": 2, "name": "winnmgr", "path": "C:\\ProgramData\\winnmgr", "target": "", "path_compressed": "%programdata%\\winnmgr", "file_md5": "", "file_sha356": "", "target_params": "", "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 2, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1044}, {"scan_what": 1, "scan_how": [1, 2, 3, 4], "vendors": ["PUP.Auslogics"], "type": 2, "name": "Auslogics", "path": "C:\\Program Files (x86)\\Auslogics", "target": "", "path_compressed": "%programfiles(x86)%\\Auslogics", "file_md5": "", "file_sha356": "", "target_params": "", "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1045}, {"scan_what": 1, "scan_how": [1, 2, 3, 4], "vendors": ["Tr.Gen"], "type": 2, "name": "Seed Trade", "path": "C:\\Program Files (x86)\\Seed Trade", "target": "", "path_compressed": "%programfiles(x86)%\\Seed Trade", "file_md5": "", "file_sha356": "", "target_params": "", "file_exists": false, "file_signed": false, "file_signer": "", "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 2, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1046}], "web_browsers": [{"type": "firefox_addon", "children": [{"scan_what": 1, "scan_how": [1, 2, 3, 4], "vendors": ["PUP.Gen2"], "is_addon": true, "is_config": false, "browser": "firefox", "action": "remove_addon", "name": "Video Downloader professional", "path": "C:\\Users\\SGK\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\w02vk56o.default\\extensions\\ffext_basicvideoext@startpage24", "path2": "C:\\Users\\SGK\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\w02vk56o.default\\extensions\\ffext_basicvideoext@startpage24.xpi", "path3": "", "type": "firefox_addon", "user": "w02vk56o.default", "data": "ffext_basicvideoext@startpage24", "data2": "", "is_secure_prefs": false, "file_vtscore": -1, "file_vttotal": 0, "is_malicious": true, "detection_level": 3, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1047}]}, {"type": "firefox_config", "children": [{"scan_what": 2, "scan_how": [7], "vendors": ["Tr.Razy"], "is_addon": false, "is_config": true, "browser": "firefox", "action": "remove_config", "name": "browser.startup.homepage", "path": "C:\\Users\\SGK\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\w02vk56o.default\\prefs.js", "path2": "", "path3": "", "type": "firefox_config", "user": "w02vk56o.default", "data": "file:///C:/ProgramData/Voyasollams/ff.HP", "data2": "user_pref(\"browser.startup.homepage\", \"file:///C:/ProgramData/Voyasollams/ff.HP\");", "is_secure_prefs": false, "file_vtscore": 0, "file_vttotal": 0, "is_malicious": true, "detection_level": 2, "status_str": "Found", "status_choice": 2, "status_removal": 0, "malpe_score": -1.0, "id": 1048}]}]}}

Body Background

skin color theme