Forum Discussion
Content blocked by IT Admin
- Apr 21, 2023You should be able to see which process is trying to access this URL, if you look at the Defender Antivirus event logs.
I cannot post it it won't let me. When I use my phones mmi code to view fcm, instead of my carrier I see mtalk.google.com
You need to look in your program files for chrome and look for a folder with a bunch of funky letters search for *.crx in the text of that folder and you'll find hidden Google, youtube, docs. sheets. As extensions and a single file with a strange extension that is xml binding them to global listeners in there them in there you will find manifest folder and in there you will find Google store app IDs
Preloaded from a system user module that is hiding in firmware and driver space or CMOS or netbios I can't figure where on the board
In a 3rd hidden program data folder you will find the chrome extensions waiting in after time logged online look for office 14 and 16 mixed all jalopy status in one of them there is an azure folder and having a 00000000-string to id them that's how they Phish your sites like ic3.gov and EDD or whatever however you got it you can find those websites scripted in Json files Java ....dirty stuff....
These are Google's app IDs and from the XML the fake names for their in browser transport meant to confuse but shouldn't exist in a brand new first login but they do whether or not you even have chrome they exist waiting for it. Run them by Gemini she knows them by id... not name they're used to isolate us from a regular internet.
Chrome ext
blpcfgokakmgnkcojhhkbfbldkacnbeo
"Chrome to Web app NonGsuite"
pjkljhegncpnkpknbcohdijeoejaedia
Chrome to Web app gsuite
apdfllckaahabafndbhieahigkjlhalf
Docs
aohghmighlieiainnegkcijnfilokake
Sheets
aapocclcgogkmnckokdopfmhonfmgoek
Slides
felcaaldnbdncclmgdcncolpebgiejap
Drive
ghbmnnjooekpmoecnnnilnnbdlolhkhi
I've looked on the disc and within the .wim file and none of that exists....
I will never buy a system from eBay ever again!!!
I hope this posts