Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
$RLG2LCG.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
|
initial sample
|
||
|
C:\Users\user\AppData\Local\DSAS\usgs_rates.exe
|
PE32+ executable (console) x86-64, for MS Windows
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\DSAS\DSAS.exe
|
PE32+ executable (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\DSAS\uninstall.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\TokenBroker\Cache\5a2a7058cf8d1e56c20e6b19a7c48eb2386d141b.tbres
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\TokenBroker\Cache\e8ddd4cbd9c0504aace6ef7a13fa20d04fd52408.tbres
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\VCRUNTIME140.dll
|
PE32+ executable (DLL) (console) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\_asyncio.pyd
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\_bz2.pyd
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\_ctypes.pyd
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\_decimal.pyd
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\_hashlib.pyd
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\_lzma.pyd
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\_multiprocessing.pyd
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\_overlapped.pyd
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\_queue.pyd
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\_socket.pyd
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\_ssl.pyd
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\_uuid.pyd
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\_wmi.pyd
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\api-ms-win-core-console-l1-1-0.dll
|
PE32+ executable (DLL) (console) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\api-ms-win-core-datetime-l1-1-0.dll
|
PE32+ executable (DLL) (console) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\api-ms-win-core-debug-l1-1-0.dll
|
PE32+ executable (DLL) (console) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\api-ms-win-core-errorhandling-l1-1-0.dll
|
PE32+ executable (DLL) (console) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\api-ms-win-core-file-l1-1-0.dll
|
PE32+ executable (DLL) (console) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\api-ms-win-core-file-l1-2-0.dll
|
PE32+ executable (DLL) (console) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\api-ms-win-crt-time-l1-1-0.dll
|
PE32+ executable (DLL) (console) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\api-ms-win-crt-utility-l1-1-0.dll
|
PE32+ executable (DLL) (console) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\base_library.zip
|
Zip archive data, at least v2.0 to extract, compression method=store
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\libcrypto-3.dll
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\libffi-8.dll
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\libssl-3.dll
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\numpy.libs\libopenblas64__v0.3.23-293-gc2f4bdbb-gcc_10_3_0-2bde3a66a51006b2b53eb373ff767a3f.dll
|
PE32+ executable (DLL) (console) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\numpy\core\_multiarray_tests.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (GUI) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\numpy\core\_multiarray_umath.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (GUI) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\numpy\fft\_pocketfft_internal.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (GUI) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\numpy\linalg\_umath_linalg.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (GUI) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\numpy\random\_bounded_integers.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (GUI) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\numpy\random\_common.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (GUI) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\numpy\random\_generator.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (GUI) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\numpy\random\_mt19937.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (GUI) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\numpy\random\_pcg64.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (GUI) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\numpy\random\_philox.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (GUI) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\numpy\random\_sfc64.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (GUI) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\numpy\random\bit_generator.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (GUI) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\numpy\random\mtrand.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (GUI) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\psutil\_psutil_windows.pyd
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\pyexpat.pyd
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\python3.dll
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\python312.dll
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy.libs\libopenblas_v0.3.20-571-g3dec11c6-gcc_10_3_0-c2315440d6b6cef5037bad648efc8c59.dll
|
PE32+ executable (DLL) (console) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\_lib\_ccallback_c.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\_lib\_fpumode.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\_lib\_uarray\_uarray.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\_lib\messagestream.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\fft\_pocketfft\pypocketfft.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\integrate\_dop.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\integrate\_lsoda.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\integrate\_odepack.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\integrate\_quadpack.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\integrate\_vode.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\interpolate\_bspl.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\interpolate\_fitpack.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\interpolate\_ppoly.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\interpolate\_rbfinterp_pythran.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\interpolate\_rgi_cython.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\interpolate\dfitpack.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\interpolate\interpnd.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\linalg\_cythonized_array_utils.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\linalg\_decomp_lu_cython.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\linalg\_decomp_update.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\linalg\_fblas.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\linalg\_flapack.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\linalg\_flinalg.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\linalg\_interpolative.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\linalg\_matfuncs_expm.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\linalg\_matfuncs_sqrtm_triu.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\linalg\_solve_toeplitz.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\linalg\cython_blas.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\linalg\cython_lapack.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\ndimage\_nd_image.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\ndimage\_ni_label.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\optimize\_bglu_dense.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\optimize\_cobyla.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\optimize\_direct.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\optimize\_group_columns.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\optimize\_highs\_highs_constants.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\optimize\_highs\_highs_wrapper.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\optimize\_lbfgsb.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\optimize\_lsap.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\optimize\_lsq\givens_elimination.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\optimize\_minpack.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\optimize\_minpack2.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\optimize\_moduleTNC.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\optimize\_pava_pybind.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\optimize\_slsqp.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\optimize\_trlib\_trlib.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\optimize\_zeros.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\sparse\_csparsetools.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\sparse\_sparsetools.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\sparse\csgraph\_flow.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\sparse\csgraph\_matching.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\sparse\csgraph\_min_spanning_tree.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\sparse\csgraph\_reordering.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\sparse\csgraph\_shortest_path.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\sparse\csgraph\_tools.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\sparse\csgraph\_traversal.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\sparse\linalg\_dsolve\_superlu.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\sparse\linalg\_eigen\arpack\_arpack.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\sparse\linalg\_propack\_cpropack.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\sparse\linalg\_propack\_dpropack.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\sparse\linalg\_propack\_spropack.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\sparse\linalg\_propack\_zpropack.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\spatial\_ckdtree.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\spatial\_distance_pybind.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\spatial\_distance_wrap.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\spatial\_hausdorff.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\spatial\_qhull.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\spatial\_voronoi.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\spatial\transform\_rotation.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\special\_comb.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\special\_ellip_harm_2.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\special\_specfun.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\special\_ufuncs.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\special\_ufuncs_cxx.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\special\cython_special.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\stats\_ansari_swilk_statistics.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\stats\_biasedurn.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\stats\_boost\beta_ufunc.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\stats\_boost\binom_ufunc.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\stats\_boost\hypergeom_ufunc.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\stats\_boost\invgauss_ufunc.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\stats\_boost\nbinom_ufunc.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\stats\_boost\ncf_ufunc.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\stats\_boost\nct_ufunc.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\stats\_boost\ncx2_ufunc.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\stats\_boost\skewnorm_ufunc.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\stats\_levy_stable\levyst.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\stats\_mvn.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\stats\_qmc_cy.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\stats\_rcont\rcont.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\stats\_sobol.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\stats\_stats.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\stats\_stats_pythran.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\scipy\stats\_unuran\unuran_wrapper.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\select.pyd
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\ucrtbase.dll
|
PE32+ executable (DLL) (console) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\unicodedata.pyd
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\websockets-12.0.dist-info\INSTALLER
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\websockets-12.0.dist-info\LICENSE
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\websockets-12.0.dist-info\METADATA
|
Unicode text, UTF-8 text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\websockets-12.0.dist-info\RECORD
|
CSV text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\websockets-12.0.dist-info\WHEEL
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\websockets-12.0.dist-info\top_level.txt
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\_MEI68282\websockets\speedups.cp312-win_amd64.pyd
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
modified
|
||
|
C:\Users\user\AppData\Local\Temp\nsc69AF.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\nsr69BF.tmp\StartMenu.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\nsr69BF.tmp\System.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\nsr69BF.tmp\modern-wizard.bmp
|
PC bitmap, Windows 3.x format, 164 x 314 x 4, image size 26376, resolution 2834 x 2834 px/m, cbSize 26494, bits offset 118
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\nsr69BF.tmp\nsDialogs.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\nsr69BF.tmp\nsis_tauri_utils.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\03b43e3a-218a-40df-a7f6-2225e3d80191.tmp
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\12d60584-bb57-49ec-b271-fb6eca43f6bb.tmp
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\20ee445b-03d4-425d-b99c-07844eb09056.tmp
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\2b80cf49-5bfc-46f9-bb6d-cb734f5e6e86.tmp
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\6b77a8a6-8698-4c0c-9653-9babb1aee7e3.tmp
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Crashpad\settings.dat
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Crashpad\throttle_store.dat
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\132236e9-719e-4664-8313-67c8bce34daa.tmp
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\5510289a-cfe0-4bed-bea7-aedd05ae8c54.tmp
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\69c7955c-2139-4f04-8baf-03fc9545c9e6.tmp
|
JSON data
|
modified
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\AssistanceHome\AssistanceHomeSQLite
|
SQLite 3.x database, last written using SQLite version 3042000, file counter 1, database pages 3, cookie 0x1, schema 4, UTF-8,
version-valid-for 1
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Cache\Cache_Data\data_0
|
dBase IV DBT, blocks size 0, block length 1024, next free block index 3238316739, next free block 0, next used block 0
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Cache\Cache_Data\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Cache\Cache_Data\index
|
FoxPro FPT, blocks size 768, next free block index 3284796353, field type 0
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Code Cache\js\0de07f15d53a6ba4_0
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Code Cache\js\38f2a8ae46077c4d_0
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Code Cache\js\40b8a7789f0c1dda_0
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Code Cache\js\41436320e4f699f3_0
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Code Cache\js\42f1ad4f7b7662e4_0
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Code Cache\js\75d15a2ec1484f6a_0
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Code Cache\js\9f4e26c86b8c54d2_0
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Code Cache\js\c981a1a3fe3f7047_0
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Code Cache\js\dd75730ad1c978a4_0
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Code Cache\js\ffd2760baf61712a_0
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Code Cache\js\index-dir\temp-index
|
PDP-11 overlaid pure executable not stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Code Cache\js\index-dir\the-real-index (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Code Cache\js\index-dir\the-real-index~RF3e9f20.TMP (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Code Cache\js\index-dir\the-real-index~RF3ef36a.TMP (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Code Cache\wasm\index
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Code Cache\wasm\index-dir\temp-index
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Code Cache\wasm\index-dir\the-real-index (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\DIPS
|
SQLite 3.x database, last written using SQLite version 3042000, file counter 1, database pages 7, cookie 0x3, schema 4, UTF-8,
version-valid-for 1
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\DawnCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\DawnCache\index
|
FoxPro FPT, blocks size 768, next free block index 3284796353, field type 0
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\EdgeEDrop\EdgeEDropSQLite.db
|
SQLite 3.x database, last written using SQLite version 3042000, file counter 14, database pages 8, cookie 0xe, schema 4, UTF-8,
version-valid-for 14
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Extension Scripts\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Extension Scripts\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Extension State\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Extension State\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\ExtensionActivityComp
|
SQLite 3.x database, last written using SQLite version 3042000, file counter 1, database pages 1, cookie 0x1, schema 4, UTF-8,
version-valid-for 1
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\ExtensionActivityEdge
|
SQLite 3.x database, last written using SQLite version 3042000, file counter 2, database pages 8, cookie 0x8, schema 4, UTF-8,
version-valid-for 2
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Favicons
|
SQLite 3.x database, last written using SQLite version 3042000, page size 2048, file counter 2, database pages 13, cookie
0x8, schema 4, UTF-8, version-valid-for 2
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\GPUCache\data_0
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\GPUCache\data_2
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\GPUCache\data_3
|
data
|
modified
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\GPUCache\index
|
FoxPro FPT, blocks size 768, next free block index 3284796353, field type 0
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\History
|
SQLite 3.x database, last written using SQLite version 3042000, file counter 2, database pages 38, cookie 0x1f, schema 4,
UTF-8, version-valid-for 2
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Login Data
|
SQLite 3.x database, last written using SQLite version 3042000, page size 2048, file counter 1, database pages 21, cookie
0xc, schema 4, UTF-8, version-valid-for 1
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Network Action Predictor
|
SQLite 3.x database, last written using SQLite version 3042000, file counter 3, database pages 11, cookie 0x6, schema 4, UTF-8,
version-valid-for 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Network\2ed3cbd4-d0f4-4d1c-8f67-491517e99383.tmp
|
JSON data
|
modified
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Network\79f8ae84-d71d-4050-88d8-f5c010317ba4.tmp
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Network\Cookies
|
SQLite 3.x database, last written using SQLite version 3042000, file counter 7, database pages 5, cookie 0x5, schema 4, UTF-8,
version-valid-for 7
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Network\Network Persistent State (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Network\Network Persistent State~RF3ef30d.TMP (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Network\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3042000, file counter 4, database pages 9, cookie 0x4, schema 4, UTF-8,
version-valid-for 4
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Network\SCT Auditing Pending Reports (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Network\Sdch Dictionaries (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Network\Trust Tokens
|
SQLite 3.x database, last written using SQLite version 3042000, file counter 3, database pages 9, cookie 0x6, schema 4, UTF-8,
version-valid-for 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Network\a60ed5bd-ba59-4e6d-80cc-4d7b405ab702.tmp
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Network\d6dcbabf-bc13-44b3-ac02-9013effbda23.tmp
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Preferences (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Preferences~RF3ebc6c.TMP (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Preferences~RF3ef3e7.TMP (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\PreferredApps
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\README
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Secure Preferences (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Session Storage\000003.log
|
data
|
modified
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Site Characteristics Database\000001.dbtmp
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Site Characteristics Database\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Site Characteristics Database\CURRENT (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Site Characteristics Database\MANIFEST-000001
|
OpenPGP Secret Key
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Top Sites
|
SQLite 3.x database, last written using SQLite version 3042000, file counter 1, database pages 5, cookie 0x2, schema 4, UTF-8,
version-valid-for 1
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Visited Links
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\Web Data
|
SQLite 3.x database, last written using SQLite version 3042000, page size 2048, file counter 3, database pages 87, cookie
0x36, schema 4, UTF-8, version-valid-for 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\b07d4d50-e217-4991-9e11-bdbfb90a22fc.tmp
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\heavy_ad_intervention_opt_out.db
|
SQLite 3.x database, last written using SQLite version 3042000, file counter 2, database pages 4, cookie 0x2, schema 4, UTF-8,
version-valid-for 2
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\shared_proto_db\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\shared_proto_db\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\shared_proto_db\metadata\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\GrShaderCache\data_0
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\GrShaderCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\GrShaderCache\data_3
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\GrShaderCache\index
|
FoxPro FPT, blocks size 768, next free block index 3284796353, field type 0
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\GraphiteDawnCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\GraphiteDawnCache\data_2
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\GraphiteDawnCache\data_3
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\GraphiteDawnCache\index
|
FoxPro FPT, blocks size 768, next free block index 3284796353, field type 0
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Last Version
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Local State (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Local State~RF3e44fa.TMP (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Local State~RF3e6c39.TMP (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Local State~RF3ebc8c.TMP (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Local State~RF3ee63b.TMP (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Local State~RF3ef157.TMP (copy)
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\ShaderCache\data_0
|
FoxPro FPT, blocks size 512, next free block index 3284796609, field type 0
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\ShaderCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\ShaderCache\index
|
FoxPro FPT, blocks size 768, next free block index 3284796353, field type 0
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\Variations
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\a5e029a0-c971-4fa6-bfef-ce52554482c2.tmp
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\com.dsas.dev\EBWebView\fcfee87d-8228-4fd0-ab14-1b15fce3512d.tmp
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DSAS\DSAS.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Archive,
ctime=Fri Jan 31 13:35:34 2025, mtime=Thu Mar 13 11:40:35 2025, atime=Fri Jan 31 13:35:34 2025, length=10740224, window=hide
|
modified
|
||
|
C:\Users\user\Documents\DSASv6\Projects\default_project.json
|
JSON data
|
modified
|
||
|
C:\Users\user\Documents\DSASv6\Projects\settings.json
|
JSON data
|
dropped
|
There are 262 hidden files, click here to show them.
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://chrome.cloudflare-dns.com/dns-query
|
172.64.41.3
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
chrome.cloudflare-dns.com
|
172.64.41.3
|
||
|
d3l356eihxfp3l.cloudfront.net
|
13.32.121.8
|
||
|
services.arcgisonline.com
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
1.1.1.1
|
unknown
|
Australia
|
||
|
13.32.121.8
|
d3l356eihxfp3l.cloudfront.net
|
United States
|
||
|
13.107.42.16
|
unknown
|
United States
|
||
|
127.0.0.1
|
unknown
|
unknown
|
||
|
172.64.41.3
|
chrome.cloudflare-dns.com
|
United States
|