Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
https://main.d35pe6tu6wfnod.amplifyapp.com
|
URL
|
initial url
|
 |
|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
 |
|
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506
|
Microsoft Cabinet archive data, 58596 bytes, 1 file
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\053d0f58-2397-4d38-95e7-114a26aba69f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\712e0d6f-a55d-4541-a0b9-5ee14bd84d28.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\45949a70-282e-4729-85ab-a42fe07fa5bc.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\726188f3-b98a-45c9-ad6e-60525e21bb73.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\73a2365f-e731-4429-b42b-072c2d58e9ca.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\83218606-9a66-4818-a026-adcc76313e26.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\84681e28-88fc-4246-8e43-5888a3ae91b4.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\98adc6fa-036f-40f9-b94c-a20dda050c35.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\03123a4ace810c09_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3032001
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\694805a0-2dd7-42ab-bab5-b4745b63901d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\cca0649a-926d-4838-9626-dc0d5176767d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_nmmhkkegccagdldgiimedpiccmgmieda\7ff924de-643d-42d2-a26e-4ddd3395252c.tmp
|
MS Windows icon resource - 13 icons, 8x8, 32 bits/pixel, 10x10, 32 bits/pixel
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_nmmhkkegccagdldgiimedpiccmgmieda\Chrome
Web Store Payments.ico.md5
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\e26f1860-38b0-46b1-9521-0cb493f4dd9f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\b720e139-d126-48b9-b8da-d91fe153d714.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\fd952a64-a8b2-47e3-aaef-9027f236f4bd.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\052b5b32-1e9b-45a1-860c-db3c19cc6b7f.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\57b9baeb-b997-4dfe-98ba-d4e14c5da338.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\be4e925c-d05b-4f06-bf51-a693ba6aaec2.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\c9044496-1a15-4088-9094-fc1425747352.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\dca5c874-007b-4694-aa8a-a045c53f9a0f.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\dfc40dfa-4014-4f9c-987f-19282c192d53.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\052b5b32-1e9b-45a1-860c-db3c19cc6b7f.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1740971245\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\57b9baeb-b997-4dfe-98ba-d4e14c5da338.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_1765614983\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3560_232976641\dfc40dfa-4014-4f9c-987f-19282c192d53.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
There are 207 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized 'https://main.d35pe6tu6wfnod.amplifyapp.com'
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1544,7093597635801048285,11986457263259393063,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1680 /prefetch:8
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://main.d35pe6tu6wfnod.amplifyapp.com
|
unknown
|
|
|
|
https://main.d35pe6tu6wfnod.amplifyapp.com/Sign
|
unknown
|
|
|
|
https://main.d35pe6tu6wfnod.amplifyapp.com/outlook.office.commailinbox.html?https://login.microsofto
|
unknown
|
|
|
|
https://main.d35pe6tu6wfnod.amplifyapp.com/2
|
unknown
|
|
|
|
https://main.d35pe6tu6wfnod.amplifyapp.com/
|
unknown
|
|
|
|
https://dns.google
|
unknown
|
|
|
|
https://a.nel.cloudflare.com/report?s=C1fzOz90DL9bexwimRyB1uJnVPI%2FVuic%2FU1Qkk7KKrP6ipoj83kcQX03Dz
|
unknown
|
|
|
|
https://clients2.googleusercontent.com
|
unknown
|
|
|
|
https://amplifyapp.com/
|
unknown
|
|
|
|
https://feedback.googleusercontent.com
|
unknown
|
|
|
|
https://code.jquery.com/jquery-3.1.1.min.js
|
unknown
|
|
There are 1 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
cs1100.wpc.omegacdn.net
|
152.199.23.37
|
|
|
|
cdnjs.cloudflare.com
|
104.16.19.94
|
|
|
|
srv-file8.gofile.io
|
144.76.69.233
|
|
|
|
googlehosted.l.googleusercontent.com
|
172.217.168.33
|
|
|
|
main.d35pe6tu6wfnod.amplifyapp.com
|
13.32.25.32
|
|
|
|
ipv4.imgur.map.fastly.net
|
151.101.112.193
|
|
|
|
i.ibb.co
|
146.59.152.166
|
|
|
|
clients2.googleusercontent.com
|
unknown
|
|
|
|
i.stack.imgur.com
|
unknown
|
|
|
|
code.jquery.com
|
unknown
|
|
|
|
image.flaticon.com
|
unknown
|
|
|
|
aadcdn.msftauth.net
|
unknown
|
|
There are 2 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.168.2.1
|
unknown
|
unknown
|
|
|
|
146.59.152.166
|
i.ibb.co
|
Norway
|
|
|
|
239.255.255.250
|
unknown
|
Reserved
|
|
|
|
172.217.168.33
|
googlehosted.l.googleusercontent.com
|
United States
|
|
|
|
13.32.25.32
|
main.d35pe6tu6wfnod.amplifyapp.com
|
United States
|
|
|
|
144.76.69.233
|
srv-file8.gofile.io
|
Germany
|
|
|
|
151.101.112.193
|
ipv4.imgur.map.fastly.net
|
United States
|
|
|
|
152.199.23.37
|
cs1100.wpc.omegacdn.net
|
United States
|
|
|
|
127.0.0.1
|
unknown
|
unknown
|
|
|
|
104.16.19.94
|
cdnjs.cloudflare.com
|
United States
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
ahfgeienlihckogmohjhadlkjgocpleb
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
kmendfapggjehodndflmmgagdbamhnfd
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
mfehgcgbbipciphmccgaenjidiccnmng
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
neajdppkdcdipfabeoofebfddakdcjhd
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
nkeimhogjdpnpccoofpliimaahmaaome
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
prefs.preference_reset_time
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
state
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
StatusCodes
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
StatusCodes
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
state
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
software_reporter.reporting
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
module_blacklist_cache_md5_digest
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
media.storage_id_salt
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
google.services.last_account_id
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
google.services.account_id
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
software_reporter.prompt_seed
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.last_triggered_for_homepage
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
default_search_provider_data.template_url_data
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
safebrowsing.incidents_sent
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
pinned_tabs
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
search_provider_overrides
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.last_triggered_for_default_search
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
prefs.preference_reset_time
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
google.services.last_username
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
session.startup_urls
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
session.restore_on_startup
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
software_reporter.prompt_version
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.last_triggered_for_startup_urls
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.prompt_wave
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
homepage
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
homepage_is_newtabpage
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
browser.show_home_button
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
user_experience_metrics.stability.exited_cleanly
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
lastrun
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
GlobalAssocChangedCounter
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
Blob
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
Blob
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
Blob
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
Blob
|
|
There are 39 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7FF58D3C8000
|
unkown
|
page readonly
|
|
|
|
7FF5CD7B6000
|
unkown
|
page readonly
|
|
|
|
7FF5CD5CF000
|
unkown
|
page readonly
|
|
|
|
7FF55C33C000
|
unkown
|
page readonly
|
|
|
|
7FF5CD740000
|
unkown
|
page readonly
|
|
|
|
25FAA66B000
|
unkown
|
page read and write
|
|
|
|
292B9B00000
|
unkown
|
page read and write
|
|
|
|
193FC602000
|
unkown
|
page read and write
|
|
|
|
5BB52FF000
|
unkown
|
page read and write
|
|
|
|
193FC5D0000
|
unkown
|
page readonly
|
|
|
|
120EC26F000
|
unkown
|
page read and write
|
|
|
|
7FF5C3117000
|
unkown
|
page readonly
|
|
|
|
23672F13000
|
unkown
|
page read and write
|
|
|
|
193FD2D0000
|
unkown
|
page read and write
|
|
|
|
9F4EB7F000
|
unkown
|
page read and write
|
|
|
|
292B9950000
|
unkown
|
page read and write
|
|
|
|
7FF4F4F00000
|
unkown
|
page readonly
|
|
|
|
A5D527F000
|
unkown
|
page read and write
|
|
|
|
7FF5C5141000
|
unkown
|
page readonly
|
|
|
|
7FF5B1A9C000
|
unkown
|
page readonly
|
|
|
|
7FF5B1A71000
|
unkown
|
page readonly
|
|
|
|
23672E41000
|
unkown
|
page read and write
|
|
|
|
120EC213000
|
unkown
|
page read and write
|
|
|
|
7FF5C304A000
|
unkown
|
page readonly
|
|
|
|
7FF4F4E78000
|
unkown
|
page readonly
|
|
|
|
FB16AFE000
|
unkown
|
page read and write
|
|
|
|
7FF5C50BC000
|
unkown
|
page readonly
|
|
|
|
7FF57662D000
|
unkown
|
page readonly
|
|
|
|
292B9B02000
|
unkown
|
page read and write
|
|
|
|
7FF55C2B0000
|
unkown
|
page readonly
|
|
|
|
13731040000
|
unkown
|
page read and write
|
|
|
|
7FF5DD39B000
|
unkown
|
page readonly
|
|
|
|
48EFFE000
|
unkown
|
page read and write
|
|
|
|
2101A902000
|
unkown
|
page read and write
|
|
|
|
7FF58D426000
|
unkown
|
page readonly
|
|
|
|
1215AB13000
|
unkown
|
page read and write
|
|
|
|
7FF5C5056000
|
unkown
|
page readonly
|
|
|
|
23672D00000
|
heap default
|
page read and write
|
|
|
|
2865BD90000
|
unkown
|
page readonly
|
|
|
|
193FD223000
|
unkown
|
page read and write
|
|
|
|
2865BE60000
|
unkown
|
page read and write
|
|
|
|
7FF5CD785000
|
unkown
|
page readonly
|
|
|
|
1215AC00000
|
unkown
|
page readonly
|
|
|
|
23672D10000
|
unkown
|
page readonly
|
|
|
|
7FF5CD465000
|
unkown
|
page readonly
|
|
|
|
7FF5DD465000
|
unkown
|
page readonly
|
|
|
|
193FCDE0000
|
unkown
|
page read and write
|
|
|
|
23673B40000
|
unkown
|
page readonly
|
|
|
|
A54A27C000
|
unkown
|
page read and write
|
|
|
|
7FF58D3FF000
|
unkown
|
page readonly
|
|
|
|
7FF5DD291000
|
unkown
|
page readonly
|
|
|
|
7FF5DCD13000
|
unkown
|
page readonly
|
|
|
|
7FF5B1B57000
|
unkown
|
page readonly
|
|
|
|
7FF560FF8000
|
unkown
|
page readonly
|
|
|
|
7FF5DD429000
|
unkown
|
page readonly
|
|
|
|
1372F462000
|
unkown
|
page read and write
|
|
|
|
7FF5DD44C000
|
unkown
|
page readonly
|
|
|
|
7FF5C508F000
|
unkown
|
page readonly
|
|
|
|
7FF58D3C2000
|
unkown
|
page readonly
|
|
|
|
7FF55B7C3000
|
unkown
|
page readonly
|
|
|
|
7FF4F4F07000
|
unkown
|
page readonly
|
|
|
|
CC3A0FD000
|
unkown
|
page read and write
|
|
|
|
7FF5C30C9000
|
unkown
|
page readonly
|
|
|
|
193FD3F0000
|
unkown
|
page read and write
|
|
|
|
193FD590000
|
unkown
|
page readonly
|
|
|
|
1372F446000
|
unkown
|
page read and write
|
|
|
|
7562078000
|
unkown
|
page read and write
|
|
|
|
7FF58D457000
|
unkown
|
page readonly
|
|
|
|
120ECA02000
|
unkown
|
page read and write
|
|
|
|
2865B7B0000
|
unkown
|
page readonly
|
|
|
|
1372F447000
|
unkown
|
page read and write
|
|
|
|
7FF57F50A000
|
unkown
|
page readonly
|
|
|
|
7FF4F4D73000
|
unkown
|
page readonly
|
|
|
|
2865B7C0000
|
unkown
|
page read and write
|
|
|
|
7FF5B1B3C000
|
unkown
|
page readonly
|
|
|
|
1215AA57000
|
unkown
|
page read and write
|
|
|
|
7FF5765C0000
|
unkown
|
page readonly
|
|
|
|
756297F000
|
unkown
|
page read and write
|
|
|
|
2101A908000
|
unkown
|
page read and write
|
|
|
|
7FF5DD2A0000
|
unkown
|
page readonly
|
|
|
|
7FF58CB8F000
|
unkown
|
page readonly
|
|
|
|
7FF5CD7D5000
|
unkown
|
page readonly
|
|
|
|
7FF5DD4D0000
|
unkown
|
page readonly
|
|
|
|
7FF55C350000
|
unkown
|
page readonly
|
|
|
|
1E209140000
|
unkown
|
page read and write
|
|
|
|
2101A913000
|
unkown
|
page read and write
|
|
|
|
7FF5C3179000
|
unkown
|
page readonly
|
|
|
|
292B9940000
|
unkown
|
page readonly
|
|
|
|
2865B7A0000
|
unkown
|
page readonly
|
|
|
|
7FF561195000
|
unkown
|
page readonly
|
|
|
|
7FF5CD78F000
|
unkown
|
page readonly
|
|
|
|
7FF5766C9000
|
unkown
|
page readonly
|
|
|
|
7FF5B1BAE000
|
unkown
|
page readonly
|
|
|
|
193FD4E0000
|
unkown
|
page read and write
|
|
|
|
FB16775000
|
unkown
|
page read and write
|
|
|
|
7FF57648B000
|
unkown
|
page readonly
|
|
|
|
193FD62E000
|
unkown
|
page read and write
|
|
|
|
193FD410000
|
unkown
|
page read and write
|
|
|
|
7FF560F2A000
|
unkown
|
page readonly
|
|
|
|
7FF5C50D5000
|
unkown
|
page readonly
|
|
|
|
193FD680000
|
unkown
|
page read and write
|
|
|
|
1AD95F00000
|
unkown
|
page readonly
|
|
|
|
12897C000
|
unkown
|
page read and write
|
|
|
|
48E96B000
|
unkown
|
page read and write
|
|
|
|
193FC759000
|
unkown
|
page read and write
|
|
|
|
7FF5C3105000
|
unkown
|
page readonly
|
|
|
|
7FF5CD77E000
|
unkown
|
page readonly
|
|
|
|
2865BA00000
|
unkown
|
page readonly
|
|
|
|
1AD96200000
|
unkown
|
page readonly
|
|
|
|
7FF5C30FC000
|
unkown
|
page readonly
|
|
|
|
7FF5C30F6000
|
unkown
|
page readonly
|
|
|
|
7FF55C3B9000
|
unkown
|
page readonly
|
|
|
|
7FF5CD83E000
|
unkown
|
page readonly
|
|
|
|
193FBE71000
|
unkown
|
page read and write
|
|
|
|
1AD95E20000
|
heap default
|
page read and write
|
|
|
|
193FD570000
|
unkown
|
page readonly
|
|
|
|
7561EFE000
|
unkown
|
page read and write
|
|
|
|
1372F400000
|
unkown
|
page read and write
|
|
|
|
7FF5C3114000
|
unkown
|
page readonly
|
|
|
|
7FF58D454000
|
unkown
|
page readonly
|
|
|
|
7FF5C5058000
|
unkown
|
page readonly
|
|
|
|
7FF55C345000
|
unkown
|
page readonly
|
|
|
|
48EC7D000
|
unkown
|
page read and write
|
|
|
|
7FF5B1B2C000
|
unkown
|
page readonly
|
|
|
|
7FF5C454F000
|
unkown
|
page readonly
|
|
|
|
7FF561102000
|
unkown
|
page readonly
|
|
|
|
7FF57659A000
|
unkown
|
page readonly
|
|
|
|
FB169F7000
|
unkown
|
page read and write
|
|
|
|
193FBE29000
|
unkown
|
page read and write
|
|
|
|
7FF561041000
|
unkown
|
page readonly
|
|
|
|
7FF55C2DA000
|
unkown
|
page readonly
|
|
|
|
7FF4F4ECD000
|
unkown
|
page readonly
|
|
|
|
7FF5DD0E6000
|
unkown
|
page readonly
|
|
|
|
7FF57644F000
|
unkown
|
page readonly
|
|
|
|
7FF5DD45C000
|
unkown
|
page readonly
|
|
|
|
7FF5765B8000
|
unkown
|
page readonly
|
|
|
|
7FF58CB9B000
|
unkown
|
page readonly
|
|
|
|
7FF56114F000
|
unkown
|
page readonly
|
|
|
|
7FF5C305C000
|
unkown
|
page readonly
|
|
|
|
7FF5608DF000
|
unkown
|
page readonly
|
|
|
|
26FCDE80000
|
unkown
|
page readonly
|
|
|
|
193FD500000
|
unkown
|
page read and write
|
|
|
|
E7C00FE000
|
unkown
|
page read and write
|
|
|
|
7FF55C31D000
|
unkown
|
page readonly
|
|
|
|
7FF55C2C8000
|
unkown
|
page readonly
|
|
|
|
1AD95FF0000
|
unkown
|
page read and write
|
|
|
|
120EC1B0000
|
unkown
|
page readonly
|
|
|
|
7FF5CD849000
|
unkown
|
page readonly
|
|
|
|
1372F3D0000
|
unkown
|
page readonly
|
|
|
|
292B9A3C000
|
unkown
|
page read and write
|
|
|
|
1372F440000
|
unkown
|
page read and write
|
|
|
|
7FF5C309A000
|
unkown
|
page readonly
|
|
|
|
2101B002000
|
unkown
|
page read and write
|
|
|
|
7FF5762B1000
|
unkown
|
page readonly
|
|
|
|
1215B060000
|
unkown
|
page readonly
|
|
|
|
193FD530000
|
unkown
|
page read and write
|
|
|
|
1372F413000
|
unkown
|
page read and write
|
|
|
|
7FF5DD371000
|
unkown
|
page readonly
|
|
|
|
7FF57F592000
|
unkown
|
page readonly
|
|
|
|
7FF55C1F7000
|
unkown
|
page readonly
|
|
|
|
7FF5765CD000
|
unkown
|
page readonly
|
|
|
|
2865B7F0000
|
unkown
|
page read and write
|
|
|
|
193FD3F4000
|
unkown
|
page read and write
|
|
|
|
48EEFE000
|
unkown
|
page read and write
|
|
|
|
120ECB3A000
|
unkown
|
page read and write
|
|
|
|
7FF5C5149000
|
unkown
|
page readonly
|
|
|
|
292B9A70000
|
unkown
|
page read and write
|
|
|
|
7FF55C357000
|
unkown
|
page readonly
|
|
|
|
193FD4C7000
|
unkown
|
page readonly
|
|
|
|
26FCDF30000
|
heap private
|
page read and write
|
|
|
|
1215A960000
|
unkown
|
page readonly
|
|
|
|
13730DE0000
|
unkown
|
page read and write
|
|
|
|
193FD6AC000
|
unkown
|
page read and write
|
|
|
|
13730DE0000
|
unkown
|
page read and write
|
|
|
|
7FF5C507E000
|
unkown
|
page readonly
|
|
|
|
193FD820000
|
unkown
|
page read and write
|
|
|
|
193FBE9E000
|
unkown
|
page read and write
|
|
|
|
292B9850000
|
heap default
|
page read and write
|
|
|
|
193FD663000
|
unkown
|
page read and write
|
|
|
|
128AFB000
|
unkown
|
page read and write
|
|
|
|
5BB51FF000
|
unkown
|
page read and write
|
|
|
|
1AD9604C000
|
unkown
|
page read and write
|
|
|
|
1372F3F0000
|
unkown
|
page read and write
|
|
|
|
7FF5CD7E4000
|
unkown
|
page readonly
|
|
|
|
193FD3D0000
|
unkown
|
page read and write
|
|
|
|
A5D517E000
|
unkown
|
page read and write
|
|
|
|
75626FF000
|
unkown
|
page read and write
|
|
|
|
7FF55C326000
|
unkown
|
page readonly
|
|
|
|
26FCDD70000
|
unkown
|
page readonly
|
|
|
|
7FF5766C9000
|
unkown
|
page readonly
|
|
|
|
7FF561209000
|
unkown
|
page readonly
|
|
|
|
1575DFF000
|
unkown
|
page read and write
|
|
|
|
1372F457000
|
unkown
|
page read and write
|
|
|
|
7FF5B1BB9000
|
unkown
|
page readonly
|
|
|
|
7FF5765C2000
|
unkown
|
page readonly
|
|
|
|
120EC180000
|
unkown
|
page read and write
|
|
|
|
292B97F0000
|
heap private
|
page read and write
|
|
|
|
7FF5DD25F000
|
unkown
|
page readonly
|
|
|
|
7FF5764E0000
|
unkown
|
page readonly
|
|
|
|
CC3A1FB000
|
unkown
|
page read and write
|
|
|
|
7FF5762FE000
|
unkown
|
page readonly
|
|
|
|
7FF5B1AC6000
|
unkown
|
page readonly
|
|
|
|
7FF5DD391000
|
unkown
|
page readonly
|
|
|
|
7561E7C000
|
unkown
|
page read and write
|
|
|
|
2865B7F0000
|
unkown
|
page read and write
|
|
|
|
7FF5C4ECF000
|
unkown
|
page readonly
|
|
|
|
7FF57F48E000
|
unkown
|
page readonly
|
|
|
|
7FF5C3070000
|
unkown
|
page readonly
|
|
|
|
7FF5CD7B1000
|
unkown
|
page readonly
|
|
|
|
9F4EDFF000
|
unkown
|
page read and write
|
|
|
|
193FD4A4000
|
unkown
|
page readonly
|
|
|
|
7FF5C50B6000
|
unkown
|
page readonly
|
|
|
|
7FF4F4EDC000
|
unkown
|
page readonly
|
|
|
|
7FF5764D7000
|
unkown
|
page readonly
|
|
|
|
7FF57ED7F000
|
unkown
|
page readonly
|
|
|
|
7FF576636000
|
unkown
|
page readonly
|
|
|
|
193FD530000
|
unkown
|
page read and write
|
|
|
|
7FF57ECCB000
|
unkown
|
page readonly
|
|
|
|
7FF55C22C000
|
unkown
|
page readonly
|
|
|
|
7FF5C2EDE000
|
unkown
|
page readonly
|
|
|
|
193FD280000
|
unkown
|
page readonly
|
|
|
|
E7C01FD000
|
unkown
|
page read and write
|
|
|
|
7FF57F580000
|
unkown
|
page readonly
|
|
|
|
25FAC530000
|
unkown
|
page read and write
|
|
|
|
193FD6B4000
|
unkown
|
page read and write
|
|
|
|
7FF5DD446000
|
unkown
|
page readonly
|
|
|
|
7FF58CFF1000
|
unkown
|
page readonly
|
|
|
|
1215AA02000
|
unkown
|
page read and write
|
|
|
|
7FF5C482B000
|
unkown
|
page readonly
|
|
|
|
7FF5DCBBE000
|
unkown
|
page readonly
|
|
|
|
1215AA63000
|
unkown
|
page read and write
|
|
|
|
1AD96071000
|
unkown
|
page read and write
|
|
|
|
7FF58D2C7000
|
unkown
|
page readonly
|
|
|
|
7FF5DD3A7000
|
unkown
|
page readonly
|
|
|
|
2101A900000
|
unkown
|
page read and write
|
|
|
|
7FF57F5E9000
|
unkown
|
page readonly
|
|
|
|
7FF56116D000
|
unkown
|
page readonly
|
|
|
|
7FF55B7DD000
|
unkown
|
page readonly
|
|
|
|
A54A3FD000
|
unkown
|
page read and write
|
|
|
|
1575A7E000
|
unkown
|
page read and write
|
|
|
|
48ED7F000
|
unkown
|
page read and write
|
|
|
|
2101A86E000
|
unkown
|
page read and write
|
|
|
|
193FD6B5000
|
unkown
|
page read and write
|
|
|
|
23672E67000
|
unkown
|
page read and write
|
|
|
|
7FF58D4B9000
|
unkown
|
page readonly
|
|
|
|
193FD6B1000
|
unkown
|
page read and write
|
|
|
|
7FF5B1AA8000
|
unkown
|
page readonly
|
|
|
|
26FCDE60000
|
unkown
|
page read and write
|
|
|
|
25FAA6D5000
|
unkown
|
page read and write
|
|
|
|
25FAA667000
|
unkown
|
page read and write
|
|
|
|
193FBE8A000
|
unkown
|
page read and write
|
|
|
|
26FCF9E0000
|
heap private
|
page read and write
|
|
|
|
7FF55C1C3000
|
unkown
|
page readonly
|
|
|
|
756257B000
|
unkown
|
page read and write
|
|
|
|
7FF5C5099000
|
unkown
|
page readonly
|
|
|
|
1215AA40000
|
unkown
|
page read and write
|
|
|
|
292B9B13000
|
unkown
|
page read and write
|
|
|
|
7FF4F4EA5000
|
unkown
|
page readonly
|
|
|
|
CC3A2FE000
|
unkown
|
page read and write
|
|
|
|
26FCDEF0000
|
unkown
|
page readonly
|
|
|
|
26FCE3E0000
|
unkown
|
page readonly
|
|
|
|
CC39DDB000
|
unkown
|
page read and write
|
|
|
|
48F3FE000
|
unkown
|
page read and write
|
|
|
|
193FD600000
|
unkown
|
page read and write
|
|
|
|
7FF58D3F5000
|
unkown
|
page readonly
|
|
|
|
1372F2F0000
|
heap default
|
page read and write
|
|
|
|
7FF4F4E62000
|
unkown
|
page readonly
|
|
|
|
120EC264000
|
unkown
|
page read and write
|
|
|
|
193FD530000
|
unkown
|
page read and write
|
|
|
|
193FD3DE000
|
unkown
|
page read and write
|
|
|
|
193FD230000
|
unkown
|
page read and write
|
|
|
|
1372F600000
|
unkown
|
page readonly
|
|
|
|
7FF5B1B26000
|
unkown
|
page readonly
|
|
|
|
1215A980000
|
unkown
|
page read and write
|
|
|
|
7FF5611FE000
|
unkown
|
page readonly
|
|
|
|
1E208A02000
|
unkown
|
page read and write
|
|
|
|
1AD96052000
|
unkown
|
page read and write
|
|
|
|
193FC901000
|
unkown
|
page read and write
|
|
|
|
1372F3E0000
|
unkown
|
page readonly
|
|
|
|
120EC2CB000
|
unkown
|
page read and write
|
|
|
|
7FF58CFF5000
|
unkown
|
page readonly
|
|
|
|
7FF4F4D3A000
|
unkown
|
page readonly
|
|
|
|
23672DE0000
|
unkown
|
page readonly
|
|
|
|
2101AA00000
|
unkown
|
page readonly
|
|
|
|
7FF5DD41F000
|
unkown
|
page readonly
|
|
|
|
756287F000
|
unkown
|
page read and write
|
|
|
|
193FBDB0000
|
unkown
|
page read and write
|
|
|
|
7FF4F4F04000
|
unkown
|
page readonly
|
|
|
|
7FF4F4A70000
|
unkown
|
page readonly
|
|
|
|
7FF5DD3E2000
|
unkown
|
page readonly
|
|
|
|
A5D4D7D000
|
unkown
|
page read and write
|
|
|
|
7FF561186000
|
unkown
|
page readonly
|
|
|
|
7FF561100000
|
unkown
|
page readonly
|
|
|
|
1372F456000
|
unkown
|
page read and write
|
|
|
|
7FF4F4E60000
|
unkown
|
page readonly
|
|
|
|
193FD850000
|
unkown
|
page readonly
|
|
|
|
1215ACD0000
|
unkown
|
page readonly
|
|
|
|
7FF58D436000
|
unkown
|
page readonly
|
|
|
|
13730DE0000
|
unkown
|
page read and write
|
|
|
|
7FF4F4EEC000
|
unkown
|
page readonly
|
|
|
|
2101A720000
|
heap default
|
page read and write
|
|
|
|
FB168FE000
|
unkown
|
page read and write
|
|
|
|
7FF5DD34C000
|
unkown
|
page readonly
|
|
|
|
FB16BFE000
|
unkown
|
page read and write
|
|
|
|
7FF5766BE000
|
unkown
|
page readonly
|
|
|
|
193FBD80000
|
unkown
|
page readonly
|
|
|
|
1372F300000
|
unkown
|
page readonly
|
|
|
|
193FD613000
|
unkown
|
page read and write
|
|
|
|
7FF560D00000
|
unkown
|
page readonly
|
|
|
|
7FF4F4DA1000
|
unkown
|
page readonly
|
|
|
|
48F4FC000
|
unkown
|
page read and write
|
|
|
|
756277E000
|
unkown
|
page read and write
|
|
|
|
193FD2B0000
|
unkown
|
page read and write
|
|
|
|
7FF57F54D000
|
unkown
|
page readonly
|
|
|
|
7FF5C2595000
|
unkown
|
page readonly
|
|
|
|
1AD96000000
|
unkown
|
page read and write
|
|
|
|
193FBEFD000
|
unkown
|
page read and write
|
|
|
|
7FF4F4E9E000
|
unkown
|
page readonly
|
|
|
|
7FF5C2E35000
|
unkown
|
page readonly
|
|
|
|
7FF5B17EE000
|
unkown
|
page readonly
|
|
|
|
7FF5B1A67000
|
unkown
|
page readonly
|
|
|
|
120EC160000
|
unkown
|
page readonly
|
|
|
|
120ECF40000
|
unkown
|
page readonly
|
|
|
|
2865B802000
|
unkown
|
page read and write
|
|
|
|
7FF4F4A60000
|
unkown
|
page readonly
|
|
|
|
9F4EFFF000
|
unkown
|
page read and write
|
|
|
|
1215A950000
|
heap default
|
page read and write
|
|
|
|
7FF55BEB0000
|
unkown
|
page readonly
|
|
|
|
A5D4E75000
|
unkown
|
page read and write
|
|
|
|
120ECC00000
|
unkown
|
page readonly
|
|
|
|
7FF5762A2000
|
unkown
|
page readonly
|
|
|
|
7FF5DD3C8000
|
unkown
|
page readonly
|
|
|
|
1AD96102000
|
unkown
|
page read and write
|
|
|
|
7FF57F4F6000
|
unkown
|
page readonly
|
|
|
|
26FCFAA0000
|
heap private
|
page read and write
|
|
|
|
CC3A8FE000
|
unkown
|
page read and write
|
|
|
|
26FCDF50000
|
heap default
|
page read and write
|
|
|
|
1372F402000
|
unkown
|
page read and write
|
|
|
|
7FF4F4E72000
|
unkown
|
page readonly
|
|
|
|
2101A855000
|
unkown
|
page read and write
|
|
|
|
7FF58CB8C000
|
unkown
|
page readonly
|
|
|
|
7FF5B1AFF000
|
unkown
|
page readonly
|
|
|
|
7FF55C354000
|
unkown
|
page readonly
|
|
|
|
7FF55C2C6000
|
unkown
|
page readonly
|
|
|
|
1E208A00000
|
unkown
|
page read and write
|
|
|
|
7FF5C3171000
|
unkown
|
page readonly
|
|
|
|
7FF5DD298000
|
unkown
|
page readonly
|
|
|
|
7FF58D3EE000
|
unkown
|
page readonly
|
|
|
|
193FD4A0000
|
unkown
|
page read and write
|
|
|
|
7FF5DD3D0000
|
unkown
|
page readonly
|
|
|
|
193FD530000
|
unkown
|
page readonly
|
|
|
|
7FF4F4D7D000
|
unkown
|
page readonly
|
|
|
|
7FF576646000
|
unkown
|
page readonly
|
|
|
|
1372F471000
|
unkown
|
page read and write
|
|
|
|
13731400000
|
unkown
|
page readonly
|
|
|
|
7FF5B1BB0000
|
unkown
|
page readonly
|
|
|
|
7FF55C2EE000
|
unkown
|
page readonly
|
|
|
|
7FF55C1F1000
|
unkown
|
page readonly
|
|
|
|
7FF56101D000
|
unkown
|
page readonly
|
|
|
|
7FF5611A7000
|
unkown
|
page readonly
|
|
|
|
128DFD000
|
unkown
|
page read and write
|
|
|
|
A5D4CFF000
|
unkown
|
page read and write
|
|
|
|
193FD530000
|
unkown
|
page read and write
|
|
|
|
120EC2BD000
|
unkown
|
page read and write
|
|
|
|
7FF5C3086000
|
unkown
|
page readonly
|
|
|
|
2865B824000
|
unkown
|
page read and write
|
|
|
|
7FF58C8D5000
|
unkown
|
page readonly
|
|
|
|
1E208A29000
|
unkown
|
page read and write
|
|
|
|
7FF5B1AF5000
|
unkown
|
page readonly
|
|
|
|
FB163BE000
|
unkown
|
page read and write
|
|
|
|
292B9860000
|
unkown
|
page readonly
|
|
|
|
7FF5B1B21000
|
unkown
|
page readonly
|
|
|
|
7FF4F438D000
|
unkown
|
page readonly
|
|
|
|
7FF5C30E6000
|
unkown
|
page readonly
|
|
|
|
7FF57660F000
|
unkown
|
page readonly
|
|
|
|
1E2089F0000
|
unkown
|
page readonly
|
|
|
|
292B9930000
|
unkown
|
page readonly
|
|
|
|
CC3A4FE000
|
unkown
|
page read and write
|
|
|
|
26FCFB9F000
|
heap private
|
page read and write
|
|
|
|
7FF4F4CEF000
|
unkown
|
page readonly
|
|
|
|
7FF56107C000
|
unkown
|
page readonly
|
|
|
|
193FD4C4000
|
unkown
|
page readonly
|
|
|
|
7FF5C50C6000
|
unkown
|
page readonly
|
|
|
|
7FF560CFA000
|
unkown
|
page readonly
|
|
|
|
7FF58D41D000
|
unkown
|
page readonly
|
|
|
|
7FF57F5E9000
|
unkown
|
page readonly
|
|
|
|
7FF5CD403000
|
unkown
|
page readonly
|
|
|
|
1215B202000
|
unkown
|
page read and write
|
|
|
|
7FF57F566000
|
unkown
|
page readonly
|
|
|
|
7FF5C30EC000
|
unkown
|
page readonly
|
|
|
|
5BB4E7E000
|
unkown
|
page read and write
|
|
|
|
193FBEBB000
|
unkown
|
page read and write
|
|
|
|
1575FFF000
|
unkown
|
page read and write
|
|
|
|
7FF576555000
|
unkown
|
page readonly
|
|
|
|
2101A800000
|
unkown
|
page read and write
|
|
|
|
A5D4F7B000
|
unkown
|
page read and write
|
|
|
|
7FF5C30DD000
|
unkown
|
page readonly
|
|
|
|
23673390000
|
unkown
|
page readonly
|
|
|
|
7FF5C5040000
|
unkown
|
page readonly
|
|
|
|
7FF5DD06E000
|
unkown
|
page readonly
|
|
|
|
2101AE70000
|
unkown
|
page readonly
|
|
|
|
7FF5CD717000
|
unkown
|
page readonly
|
|
|
|
23672F02000
|
unkown
|
page read and write
|
|
|
|
292B9A4B000
|
unkown
|
page read and write
|
|
|
|
23672E76000
|
unkown
|
page read and write
|
|
|
|
7FF4F4F61000
|
unkown
|
page readonly
|
|
|
|
120EC2E1000
|
unkown
|
page read and write
|
|
|
|
193FC5C0000
|
unkown
|
page readonly
|
|
|
|
7FF5DD3BC000
|
unkown
|
page readonly
|
|
|
|
7FF58D4AE000
|
unkown
|
page readonly
|
|
|
|
7FF58D452000
|
unkown
|
page readonly
|
|
|
|
7FF57642E000
|
unkown
|
page readonly
|
|
|
|
13730DF0000
|
unkown
|
page readonly
|
|
|
|
E7BFF7F000
|
unkown
|
page read and write
|
|
|
|
7FF5B16F1000
|
unkown
|
page readonly
|
|
|
|
1E208A33000
|
unkown
|
page read and write
|
|
|
|
193FD201000
|
unkown
|
page read and write
|
|
|
|
292B9C00000
|
unkown
|
page readonly
|
|
|
|
193FD2C0000
|
unkown
|
page read and write
|
|
|
|
7FF576468000
|
unkown
|
page readonly
|
|
|
|
1E209202000
|
unkown
|
page read and write
|
|
|
|
7FF5C2D48000
|
unkown
|
page readonly
|
|
|
|
7FF561201000
|
unkown
|
page readonly
|
|
|
|
7FF55C1CD000
|
unkown
|
page readonly
|
|
|
|
1575EFB000
|
unkown
|
page read and write
|
|
|
|
193FD830000
|
unkown
|
page readonly
|
|
|
|
1AD96057000
|
unkown
|
page read and write
|
|
|
|
1AD9603C000
|
unkown
|
page read and write
|
|
|
|
120ECB00000
|
unkown
|
page read and write
|
|
|
|
7FF560F8F000
|
unkown
|
page readonly
|
|
|
|
292BA202000
|
unkown
|
page read and write
|
|
|
|
23673800000
|
unkown
|
page readonly
|
|
|
|
7FF5DD474000
|
unkown
|
page readonly
|
|
|
|
7FF5764EC000
|
unkown
|
page readonly
|
|
|
|
193FD4A0000
|
unkown
|
page write copy
|
|
|
|
7FF55C32C000
|
unkown
|
page readonly
|
|
|
|
7FF57F1FC000
|
unkown
|
page readonly
|
|
|
|
7FF576547000
|
unkown
|
page readonly
|
|
|
|
193FD686000
|
unkown
|
page read and write
|
|
|
|
7FF57F4F8000
|
unkown
|
page readonly
|
|
|
|
193FBE7A000
|
unkown
|
page read and write
|
|
|
|
120EC302000
|
unkown
|
page read and write
|
|
|
|
756247A000
|
unkown
|
page read and write
|
|
|
|
1372F500000
|
unkown
|
page read and write
|
|
|
|
13730DB0000
|
unkown
|
page read and write
|
|
|
|
1AD96029000
|
unkown
|
page read and write
|
|
|
|
1AD96002000
|
unkown
|
page read and write
|
|
|
|
26FCDF8A000
|
heap default
|
page read and write
|
|
|
|
7FF5CD752000
|
unkown
|
page readonly
|
|
|
|
7FF57F5DE000
|
unkown
|
page readonly
|
|
|
|
7FF576316000
|
unkown
|
page readonly
|
|
|
|
7FF576619000
|
unkown
|
page readonly
|
|
|
|
2865B902000
|
unkown
|
page read and write
|
|
|
|
CC3A6FD000
|
unkown
|
page read and write
|
|
|
|
193FBDA0000
|
unkown
|
page read and write
|
|
|
|
7FF5C50E0000
|
unkown
|
page readonly
|
|
|
|
7FF58C8C4000
|
unkown
|
page readonly
|
|
|
|
26FCF7F0000
|
unkown
|
page readonly
|
|
|
|
CC3ACFE000
|
unkown
|
page read and write
|
|
|
|
1575CFB000
|
unkown
|
page read and write
|
|
|
|
7FF5DD27E000
|
unkown
|
page readonly
|
|
|
|
7FF5C506A000
|
unkown
|
page readonly
|
|
|
|
7FF5CD742000
|
unkown
|
page readonly
|
|
|
|
7FF5DD470000
|
unkown
|
page readonly
|
|
|
|
756217B000
|
unkown
|
page read and write
|
|
|
|
7FF5DD43D000
|
unkown
|
page readonly
|
|
|
|
9F4EEF7000
|
unkown
|
page read and write
|
|
|
|
23673460000
|
unkown
|
page read and write
|
|
|
|
7FF5C258F000
|
unkown
|
page readonly
|
|
|
|
A5D5077000
|
unkown
|
page read and write
|
|
|
|
7FF5C3082000
|
unkown
|
page readonly
|
|
|
|
7FF5DD4CE000
|
unkown
|
page readonly
|
|
|
|
193FBF02000
|
unkown
|
page read and write
|
|
|
|
2101A730000
|
unkown
|
page readonly
|
|
|
|
7FF55C3AE000
|
unkown
|
page readonly
|
|
|
|
7FF4F4D58000
|
unkown
|
page readonly
|
|
|
|
25FAC754000
|
unkown
|
page read and write
|
|
|
|
7FF5611A0000
|
unkown
|
page readonly
|
|
|
|
193FBE58000
|
unkown
|
page read and write
|
|
|
|
7FF57F494000
|
unkown
|
page readonly
|
|
|
|
7FF5B1B36000
|
unkown
|
page readonly
|
|
|
|
7FF57F575000
|
unkown
|
page readonly
|
|
|
|
7FF561159000
|
unkown
|
page readonly
|
|
|
|
1AD95DC0000
|
heap private
|
page read and write
|
|
|
|
7FF5CD7E7000
|
unkown
|
page readonly
|
|
|
|
7FF5C3072000
|
unkown
|
page readonly
|
|
|
|
7FF5DD0DD000
|
unkown
|
page readonly
|
|
|
|
7FF5C316E000
|
unkown
|
page readonly
|
|
|
|
FB1633C000
|
unkown
|
page read and write
|
|
|
|
23672E29000
|
unkown
|
page read and write
|
|
|
|
193FC0D0000
|
unkown
|
page readonly
|
|
|
|
7FF5C3088000
|
unkown
|
page readonly
|
|
|
|
193FD657000
|
unkown
|
page read and write
|
|
|
|
756227A000
|
unkown
|
page read and write
|
|
|
|
1E208980000
|
heap private
|
page read and write
|
|
|
|
7FF57F584000
|
unkown
|
page readonly
|
|
|
|
E7BF95B000
|
unkown
|
page read and write
|
|
|
|
2865C002000
|
unkown
|
page read and write
|
|
|
|
7FF5CCC3E000
|
unkown
|
page readonly
|
|
|
|
7FF576605000
|
unkown
|
page readonly
|
|
|
|
7FF5C2F49000
|
unkown
|
page readonly
|
|
|
|
7FF58D180000
|
unkown
|
page readonly
|
|
|
|
7FF5C5085000
|
unkown
|
page readonly
|
|
|
|
1AD96100000
|
unkown
|
page read and write
|
|
|
|
7FF4F4F69000
|
unkown
|
page readonly
|
|
|
|
A54A57D000
|
unkown
|
page read and write
|
|
|
|
193FC5F0000
|
unkown
|
page readonly
|
|
|
|
7FF55C2F5000
|
unkown
|
page readonly
|
|
|
|
7FF5C2E27000
|
unkown
|
page readonly
|
|
|
|
120EC313000
|
unkown
|
page read and write
|
|
|
|
7FF5CD758000
|
unkown
|
page readonly
|
|
|
|
2865B6C0000
|
heap default
|
page read and write
|
|
|
|
292B9B08000
|
unkown
|
page read and write
|
|
|
|
7FF5B18E7000
|
unkown
|
page readonly
|
|
|
|
7FF5765D6000
|
unkown
|
page readonly
|
|
|
|
7FF5C5149000
|
unkown
|
page readonly
|
|
|
|
E7C037F000
|
unkown
|
page read and write
|
|
|
|
7FF5DD415000
|
unkown
|
page readonly
|
|
|
|
1372F488000
|
unkown
|
page read and write
|
|
|
|
7FF55C3B1000
|
unkown
|
page readonly
|
|
|
|
7FF5DD067000
|
unkown
|
page readonly
|
|
|
|
1E208A30000
|
unkown
|
page read and write
|
|
|
|
193FC5E0000
|
unkown
|
page readonly
|
|
|
|
193FD3D0000
|
unkown
|
page read and write
|
|
|
|
128EFF000
|
unkown
|
page read and write
|
|
|
|
1215A970000
|
unkown
|
page readonly
|
|
|
|
7FF4F4EE6000
|
unkown
|
page readonly
|
|
|
|
2101A83C000
|
unkown
|
page read and write
|
|
|
|
7FF5DD011000
|
unkown
|
page readonly
|
|
|
|
7FF5DD3B3000
|
unkown
|
page readonly
|
|
|
|
7FF5C3005000
|
unkown
|
page readonly
|
|
|
|
193FD3F1000
|
unkown
|
page read and write
|
|
|
|
1215AA68000
|
unkown
|
page read and write
|
|
|
|
CC3A07E000
|
unkown
|
page read and write
|
|
|
|
7FF4F4E8A000
|
unkown
|
page readonly
|
|
|
|
7FF4F4EB9000
|
unkown
|
page readonly
|
|
|
|
292BA400000
|
unkown
|
page readonly
|
|
|
|
193FD69C000
|
unkown
|
page read and write
|
|
|
|
1E208A83000
|
unkown
|
page read and write
|
|
|
|
1372F290000
|
heap private
|
page read and write
|
|
|
|
FB1687B000
|
unkown
|
page read and write
|
|
|
|
13730DE0000
|
unkown
|
page read and write
|
|
|
|
7FF4F4ED6000
|
unkown
|
page readonly
|
|
|
|
7FF5B1AB0000
|
unkown
|
page readonly
|
|
|
|
7FF57F5E1000
|
unkown
|
page readonly
|
|
|
|
7FF55BEC0000
|
unkown
|
page readonly
|
|
|
|
193FD240000
|
unkown
|
page read and write
|
|
|
|
19380000000
|
unkown
|
page read and write
|
|
|
|
7FF5765D2000
|
unkown
|
page readonly
|
|
|
|
7FF5DD0EC000
|
unkown
|
page readonly
|
|
|
|
120EC2CE000
|
unkown
|
page read and write
|
|
|
|
1E208A39000
|
unkown
|
page read and write
|
|
|
|
193FD220000
|
unkown
|
page read and write
|
|
|
|
7FF58D258000
|
unkown
|
page readonly
|
|
|
|
2101A813000
|
unkown
|
page read and write
|
|
|
|
1AD95FE0000
|
unkown
|
page readonly
|
|
|
|
193FC702000
|
unkown
|
page read and write
|
|
|
|
7FF5C4552000
|
unkown
|
page readonly
|
|
|
|
7FF5B1A6A000
|
unkown
|
page readonly
|
|
|
|
7FF58D43C000
|
unkown
|
page readonly
|
|
|
|
A54A37E000
|
unkown
|
page read and write
|
|
|
|
1284FE000
|
unkown
|
page read and write
|
|
|
|
193FC5B0000
|
unkown
|
page readonly
|
|
|
|
7FF57664C000
|
unkown
|
page readonly
|
|
|
|
193FBE13000
|
unkown
|
page read and write
|
|
|
|
193FBE00000
|
unkown
|
page read and write
|
|
|
|
7FF55C336000
|
unkown
|
page readonly
|
|
|
|
7FF5B1B09000
|
unkown
|
page readonly
|
|
|
|
7FF57F55C000
|
unkown
|
page readonly
|
|
|
|
1E208C00000
|
unkown
|
page readonly
|
|
|
|
7FF58D289000
|
unkown
|
page readonly
|
|
|
|
193FC718000
|
unkown
|
page read and write
|
|
|
|
7FF55C17E000
|
unkown
|
page readonly
|
|
|
|
193FD63F000
|
unkown
|
page read and write
|
|
|
|
7FF5DD456000
|
unkown
|
page readonly
|
|
|
|
7FF4F4DDC000
|
unkown
|
page readonly
|
|
|
|
193FD400000
|
unkown
|
page read and write
|
|
|
|
1215A8F0000
|
heap private
|
page read and write
|
|
|
|
7FF5DD050000
|
unkown
|
page readonly
|
|
|
|
7FF5765EA000
|
unkown
|
page readonly
|
|
|
|
7FF4F4F69000
|
unkown
|
page readonly
|
|
|
|
7FF5C50E7000
|
unkown
|
page readonly
|
|
|
|
1AD96B40000
|
unkown
|
page readonly
|
|
|
|
7FF58D445000
|
unkown
|
page readonly
|
|
|
|
120EC860000
|
unkown
|
page readonly
|
|
|
|
193FC759000
|
unkown
|
page read and write
|
|
|
|
7FF560FCE000
|
unkown
|
page readonly
|
|
|
|
756267E000
|
unkown
|
page read and write
|
|
|
|
1AD96013000
|
unkown
|
page read and write
|
|
|
|
292B9A4E000
|
unkown
|
page read and write
|
|
|
|
7FF58D42C000
|
unkown
|
page readonly
|
|
|
|
2101A6C0000
|
heap private
|
page read and write
|
|
|
|
7FF561176000
|
unkown
|
page readonly
|
|
|
|
CC3A9FF000
|
unkown
|
page read and write
|
|
|
|
1AD96108000
|
unkown
|
page read and write
|
|
|
|
7FF58C8CD000
|
unkown
|
page readonly
|
|
|
|
292B9A51000
|
unkown
|
page read and write
|
|
|
|
7FF4F464B000
|
unkown
|
page readonly
|
|
|
|
292BA060000
|
unkown
|
page readonly
|
|
|
|
7FF5CD841000
|
unkown
|
page readonly
|
|
|
|
120EC229000
|
unkown
|
page read and write
|
|
|
|
7FF5DD441000
|
unkown
|
page readonly
|
|
|
|
7FF57F58D000
|
unkown
|
page readonly
|
|
|
|
1AD96800000
|
unkown
|
page readonly
|
|
|
|
1215AB00000
|
unkown
|
page read and write
|
|
|
|
48F0FE000
|
unkown
|
page read and write
|
|
|
|
7FF57F4FA000
|
unkown
|
page readonly
|
|
|
|
12857D000
|
unkown
|
page read and write
|
|
|
|
7FF5DD477000
|
unkown
|
page readonly
|
|
|
|
7DFEAF172000
|
unkown
|
page readonly
|
|
|
|
7FF5765D8000
|
unkown
|
page readonly
|
|
|
|
7FF5C30BF000
|
unkown
|
page readonly
|
|
|
|
7FF576664000
|
unkown
|
page readonly
|
|
|
|
7FF5DD3E6000
|
unkown
|
page readonly
|
|
|
|
7FF58D409000
|
unkown
|
page readonly
|
|
|
|
12867C000
|
unkown
|
page read and write
|
|
|
|
2101B540000
|
unkown
|
page readonly
|
|
|
|
7FF5C50E4000
|
unkown
|
page readonly
|
|
|
|
7FF5B1AEE000
|
unkown
|
page readonly
|
|
|
|
7FF55C2FF000
|
unkown
|
page readonly
|
|
|
|
7FF5B198A000
|
unkown
|
page readonly
|
|
|
|
7FF58D3A4000
|
unkown
|
page readonly
|
|
|
|
7FF57653C000
|
unkown
|
page readonly
|
|
|
|
7FF561118000
|
unkown
|
page readonly
|
|
|
|
7FF58D3C6000
|
unkown
|
page readonly
|
|
|
|
7FF5B1A57000
|
unkown
|
page readonly
|
|
|
|
7FF4F4C8A000
|
unkown
|
page readonly
|
|
|
|
7FF55C13F000
|
unkown
|
page readonly
|
|
|
|
7FF57F26C000
|
unkown
|
page readonly
|
|
|
|
292B9A4F000
|
unkown
|
page read and write
|
|
|
|
2865B660000
|
heap private
|
page read and write
|
|
|
|
7FF561013000
|
unkown
|
page readonly
|
|
|
|
7FF5B16F5000
|
unkown
|
page readonly
|
|
|
|
7562A7C000
|
unkown
|
page read and write
|
|
|
|
1575AFE000
|
unkown
|
page read and write
|
|
|
|
1372F502000
|
unkown
|
page read and write
|
|
|
|
7FF5DD3B7000
|
unkown
|
page readonly
|
|
|
|
5BB4EFE000
|
unkown
|
page read and write
|
|
|
|
7FF576232000
|
unkown
|
page readonly
|
|
|
|
120EC289000
|
unkown
|
page read and write
|
|
|
|
292B9A4A000
|
unkown
|
page read and write
|
|
|
|
7FF5DD3D2000
|
unkown
|
page readonly
|
|
|
|
128BFD000
|
unkown
|
page read and write
|
|
|
|
1E208CD0000
|
unkown
|
page readonly
|
|
|
|
1215AB02000
|
unkown
|
page read and write
|
|
|
|
120EC170000
|
unkown
|
page readonly
|
|
|
|
23672E13000
|
unkown
|
page read and write
|
|
|
|
CC3A3FD000
|
unkown
|
page read and write
|
|
|
|
23673480000
|
unkown
|
page readonly
|
|
|
|
23672DF0000
|
unkown
|
page readonly
|
|
|
|
193FBEAD000
|
unkown
|
page read and write
|
|
|
|
1E208B02000
|
unkown
|
page read and write
|
|
|
|
7FF57F525000
|
unkown
|
page readonly
|
|
|
|
1E208A5F000
|
unkown
|
page read and write
|
|
|
|
5BB50FF000
|
unkown
|
page read and write
|
|
|
|
128A7E000
|
unkown
|
page read and write
|
|
|
|
7FF5B1B1D000
|
unkown
|
page readonly
|
|
|
|
7FF5765AC000
|
unkown
|
page readonly
|
|
|
|
26FCF8F0000
|
heap private
|
page read and write
|
|
|
|
7FF5DD4D9000
|
unkown
|
page readonly
|
|
|
|
26FCDEE0000
|
unkown
|
page readonly
|
|
|
|
7FF560FDA000
|
unkown
|
page readonly
|
|
|
|
7FF58D27A000
|
unkown
|
page readonly
|
|
|
|
193FBD10000
|
heap private
|
page read and write
|
|
|
|
1287FE000
|
unkown
|
page read and write
|
|
|
|
7FF55BEAA000
|
unkown
|
page readonly
|
|
|
|
25FAD010000
|
unkown
|
page read and write
|
|
|
|
193FBD70000
|
heap default
|
page read and write
|
|
|
|
2101AE80000
|
unkown
|
page read and write
|
|
|
|
1372F990000
|
unkown
|
page readonly
|
|
|
|
7FF57F4E2000
|
unkown
|
page readonly
|
|
|
|
2101A89C000
|
unkown
|
page read and write
|
|
|
|
7FF5B1BB9000
|
unkown
|
page readonly
|
|
|
|
2865B6D0000
|
unkown
|
page readonly
|
|
|
|
7FF5C513E000
|
unkown
|
page readonly
|
|
|
|
2865B85C000
|
unkown
|
page read and write
|
|
|
|
7FF5DD015000
|
unkown
|
page readonly
|
|
|
|
1E2089E0000
|
heap default
|
page read and write
|
|
|
|
7561F7E000
|
unkown
|
page read and write
|
|
|
|
23673000000
|
unkown
|
page readonly
|
|
|
|
7FF5DD28C000
|
unkown
|
page readonly
|
|
|
|
137310C0000
|
unkown
|
page readonly
|
|
|
|
1372F457000
|
unkown
|
page read and write
|
|
|
|
7FF57F48A000
|
unkown
|
page readonly
|
|
|
|
1AD9608C000
|
unkown
|
page read and write
|
|
|
|
E7BFE7E000
|
unkown
|
page read and write
|
|
|
|
7FF58D220000
|
unkown
|
page readonly
|
|
|
|
7FF561209000
|
unkown
|
page readonly
|
|
|
|
26FCDE40000
|
unkown
|
page read and write
|
|
|
|
193FC5A0000
|
unkown
|
page readonly
|
|
|
|
7FF5DD3E8000
|
unkown
|
page readonly
|
|
|
|
5BB4BFB000
|
unkown
|
page read and write
|
|
|
|
9F4EAFE000
|
unkown
|
page read and write
|
|
|
|
7FF5763F4000
|
unkown
|
page readonly
|
|
|
|
E7C007D000
|
unkown
|
page read and write
|
|
|
|
193FBD90000
|
unkown
|
page readonly
|
|
|
|
7FF56112A000
|
unkown
|
page readonly
|
|
|
|
13730E02000
|
unkown
|
page read and write
|
|
|
|
23672CA0000
|
heap private
|
page read and write
|
|
|
|
7FF5CD414000
|
unkown
|
page readonly
|
|
|
|
7FF58D4B9000
|
unkown
|
page readonly
|
|
|
|
193FC000000
|
unkown
|
page readonly
|
|
|
|
7FF5DC91D000
|
unkown
|
page readonly
|
|
|
|
7562B7E000
|
unkown
|
page read and write
|
|
|
|
48F2FD000
|
unkown
|
page read and write
|
|
|
|
E7C02FF000
|
unkown
|
page read and write
|
|
|
|
7FF5DD18E000
|
unkown
|
page readonly
|
|
|
|
193FC718000
|
unkown
|
page read and write
|
|
|
|
CC3AAFE000
|
unkown
|
page read and write
|
|
|
|
292B9A13000
|
unkown
|
page read and write
|
|
|
|
48E9ED000
|
unkown
|
page read and write
|
|
|
|
7FF57F556000
|
unkown
|
page readonly
|
|
|
|
7FF58D345000
|
unkown
|
page readonly
|
|
|
|
7FF5DD2A9000
|
unkown
|
page readonly
|
|
|
|
1AD96602000
|
unkown
|
page read and write
|
|
|
|
2865B7F0000
|
unkown
|
page read and write
|
|
|
|
7FF5B1AC8000
|
unkown
|
page readonly
|
|
|
|
193FD6B4000
|
unkown
|
page read and write
|
|
|
|
7FF5DD15C000
|
unkown
|
page readonly
|
|
|
|
7FF5B1AB2000
|
unkown
|
page readonly
|
|
|
|
7FF55C18A000
|
unkown
|
page readonly
|
|
|
|
7FF58D1E3000
|
unkown
|
page readonly
|
|
|
|
120EC400000
|
unkown
|
page readonly
|
|
|
|
193FCEC0000
|
unkown
|
page readonly
|
|
|
|
48F1FC000
|
unkown
|
page read and write
|
|
|
|
193FBE76000
|
unkown
|
page read and write
|
|
|
|
7FF5DD218000
|
unkown
|
page readonly
|
|
|
|
2101A829000
|
unkown
|
page read and write
|
|
|
|
1E208A13000
|
unkown
|
page read and write
|
|
|
|
7FF55C1A8000
|
unkown
|
page readonly
|
|
|
|
26FCE050000
|
unkown
|
page readonly
|
|
|
|
CC3ABFF000
|
unkown
|
page read and write
|
|
|
|
193FD520000
|
unkown
|
page read and write
|
|
|
|
120EC0F0000
|
heap private
|
page read and write
|
|
|
|
26FCDEC5000
|
heap private
|
page read and write
|
|
|
|
7FF5C3179000
|
unkown
|
page readonly
|
|
|
|
7FF4F4EF5000
|
unkown
|
page readonly
|
|
|
|
2865B800000
|
unkown
|
page read and write
|
|
|
|
292B9A00000
|
unkown
|
page read and write
|
|
|
|
7FF57F4E0000
|
unkown
|
page readonly
|
|
|
|
1215AA28000
|
unkown
|
page read and write
|
|
|
|
193FC700000
|
unkown
|
page read and write
|
|
|
|
7FF576655000
|
unkown
|
page readonly
|
|
|
|
FB1667E000
|
unkown
|
page read and write
|
|
|
|
23672E00000
|
unkown
|
page read and write
|
|
|
|
7FF4F4E76000
|
unkown
|
page readonly
|
|
|
|
7FF55C2C2000
|
unkown
|
page readonly
|
|
|
|
23672E7A000
|
unkown
|
page read and write
|
|
|
|
7FF5DD0A8000
|
unkown
|
page readonly
|
|
|
|
120EC4D0000
|
unkown
|
page readonly
|
|
|
|
26FCDEC0000
|
heap private
|
page read and write
|
|
|
|
7FF57F551000
|
unkown
|
page readonly
|
|
|
|
7FF5611A4000
|
unkown
|
page readonly
|
|
|
|
7FF58CB9E000
|
unkown
|
page readonly
|
|
|
|
7FF5DD345000
|
unkown
|
page readonly
|
|
|
|
12847C000
|
unkown
|
page read and write
|
|
|
|
7FF5DD387000
|
unkown
|
page readonly
|
|
|
|
23672E5B000
|
unkown
|
page read and write
|
|
|
|
7FF576660000
|
unkown
|
page readonly
|
|
|
|
7FF5DCC7B000
|
unkown
|
page readonly
|
|
|
|
7FF55C3B9000
|
unkown
|
page readonly
|
|
|
|
7FF58D3B0000
|
unkown
|
page readonly
|
|
|
|
7FF4F4F5E000
|
unkown
|
page readonly
|
|
|
|
7FF4F4DA7000
|
unkown
|
page readonly
|
|
|
|
25FAA668000
|
unkown
|
page read and write
|
|
|
|
7FF5DD357000
|
unkown
|
page readonly
|
|
|
|
9F4EA7B000
|
unkown
|
page read and write
|
|
|
|
9F4ED7B000
|
unkown
|
page read and write
|
|
|
|
7FF57F587000
|
unkown
|
page readonly
|
|
|
|
7FF5C50CC000
|
unkown
|
page readonly
|
|
|
|
7FF5C2EFF000
|
unkown
|
page readonly
|
|
|
|
7FF5B1B45000
|
unkown
|
page readonly
|
|
|
|
193FD4D7000
|
unkown
|
page write copy
|
|
|
|
7FF561047000
|
unkown
|
page readonly
|
|
|
|
7FF4F4EAF000
|
unkown
|
page readonly
|
|
|
|
193FD621000
|
unkown
|
page read and write
|
|
|
|
1E209060000
|
unkown
|
page readonly
|
|
|
|
7FF5CD7CC000
|
unkown
|
page readonly
|
|
|
|
7FF57622E000
|
unkown
|
page readonly
|
|
|
|
193FD414000
|
unkown
|
page read and write
|
|
|
|
193FCD00000
|
unkown
|
page read and write
|
|
|
|
7FF5B1AC2000
|
unkown
|
page readonly
|
|
|
|
7FF5CD407000
|
unkown
|
page readonly
|
|
|
|
7FF5CD7C6000
|
unkown
|
page readonly
|
|
|
|
193FBE8E000
|
unkown
|
page read and write
|
|
|
|
7FF5C30B5000
|
unkown
|
page readonly
|
|
|
|
292B9A8C000
|
unkown
|
page read and write
|
|
|
|
7FF5DD1A0000
|
unkown
|
page readonly
|
|
|
|
7FF5766C0000
|
unkown
|
page readonly
|
|
|
|
2865B813000
|
unkown
|
page read and write
|
|
|
|
13731410000
|
unkown
|
page write copy
|
|
|
|
1372F447000
|
unkown
|
page read and write
|
|
|
|
7FF57663C000
|
unkown
|
page readonly
|
|
|
|
7FF55C0DA000
|
unkown
|
page readonly
|
|
|
|
26FCDE90000
|
unkown
|
page readonly
|
|
|
|
120EC150000
|
heap default
|
page read and write
|
|
|
|
7FF58D175000
|
unkown
|
page readonly
|
|
|
|
1372F518000
|
unkown
|
page read and write
|
|
|
|
7FF58D23F000
|
unkown
|
page readonly
|
|
|
|
7FF5B1920000
|
unkown
|
page readonly
|
|
|
|
13731000000
|
unkown
|
page read and write
|
|
|
|
7FF5C2E40000
|
unkown
|
page readonly
|
|
|
|
193FBE41000
|
unkown
|
page read and write
|
|
|
|
7FF55C2B2000
|
unkown
|
page readonly
|
|
|
|
1372F42A000
|
unkown
|
page read and write
|
|
|
|
193FD810000
|
unkown
|
page readonly
|
|
|
|
2101B200000
|
unkown
|
page readonly
|
|
|
|
193FC713000
|
unkown
|
page read and write
|
|
|
|
7FF58D11D000
|
unkown
|
page readonly
|
|
|
|
23673602000
|
unkown
|
page read and write
|
|
|
|
1215AA13000
|
unkown
|
page read and write
|
|
|
|
7FF55C309000
|
unkown
|
page readonly
|
|
|
|
7FF57F539000
|
unkown
|
page readonly
|
|
|
|
193FC600000
|
unkown
|
page read and write
|
|
|
|
7FF5CD400000
|
unkown
|
page readonly
|
|
|
|
120EC930000
|
unkown
|
page write copy
|
|
|
|
7FF56113E000
|
unkown
|
page readonly
|
|
|
|
26FCDF00000
|
unkown
|
page readonly
|
|
|
|
7FF5DD40E000
|
unkown
|
page readonly
|
|
|
|
1288FE000
|
unkown
|
page read and write
|
|
|
|
7FF5DD23E000
|
unkown
|
page readonly
|
|
|
|
7FF5C2E2E000
|
unkown
|
page readonly
|
|
|
|
7FF58D4B1000
|
unkown
|
page readonly
|
|
|
|
CC3A5FF000
|
unkown
|
page read and write
|
|
|
|
7FF56117C000
|
unkown
|
page readonly
|
|
|
|
7FF5DD195000
|
unkown
|
page readonly
|
|
|
|
120ECB12000
|
unkown
|
page read and write
|
|
|
|
7FF4F4D2E000
|
unkown
|
page readonly
|
|
|
|
7FF576631000
|
unkown
|
page readonly
|
|
|
|
7FF57F56C000
|
unkown
|
page readonly
|
|
|
|
7FF5DD3FA000
|
unkown
|
page readonly
|
|
|
|
7FF5DC913000
|
unkown
|
page readonly
|
|
|
|
75627FF000
|
unkown
|
page read and write
|
|
|
|
7FF57629F000
|
unkown
|
page readonly
|
|
|
|
7FF4F4A5A000
|
unkown
|
page readonly
|
|
|
|
7FF5765FE000
|
unkown
|
page readonly
|
|
|
|
7FF576667000
|
unkown
|
page readonly
|
|
|
|
193FD400000
|
unkown
|
page read and write
|
|
|
|
7FF58D3A8000
|
unkown
|
page readonly
|
|
|
|
1E209130000
|
unkown
|
page readonly
|
|
|
|
7FF5CD849000
|
unkown
|
page readonly
|
|
|
|
193FC460000
|
unkown
|
page readonly
|
|
|
|
2865B83D000
|
unkown
|
page read and write
|
|
|
|
7FF5DD187000
|
unkown
|
page readonly
|
|
|
|
15757AC000
|
unkown
|
page read and write
|
|
|
|
7FF58D3B2000
|
unkown
|
page readonly
|
|
|
|
1AD96050000
|
unkown
|
page read and write
|
|
|
|
7FF5C2F38000
|
unkown
|
page readonly
|
|
|
|
7FF5CD7AD000
|
unkown
|
page readonly
|
|
|
|
7FF561112000
|
unkown
|
page readonly
|
|
|
|
193FD580000
|
unkown
|
page readonly
|
|
|
|
193FC615000
|
unkown
|
page read and write
|
|
|
|
292B9A29000
|
unkown
|
page read and write
|
|
|
|
7FF5CD799000
|
unkown
|
page readonly
|
|
|
|
7FF56118C000
|
unkown
|
page readonly
|
|
|
|
1215B400000
|
unkown
|
page readonly
|
|
|
|
2101A84F000
|
unkown
|
page read and write
|
|
|
|
7FF5C2F18000
|
unkown
|
page readonly
|
|
|
|
7FF558179000
|
unkown
|
page readonly
|
|
|
|
7FF5B1788000
|
unkown
|
page readonly
|
|
|
|
26FCDD10000
|
unkown
|
page readonly
|
|
|
|
75625FE000
|
unkown
|
page read and write
|
|
|
|
292B9A4C000
|
unkown
|
page read and write
|
|
|
|
2865B82A000
|
unkown
|
page read and write
|
|
|
|
7FF57F51E000
|
unkown
|
page readonly
|
|
|
|
1215AA79000
|
unkown
|
page read and write
|
|
|
|
193FD510000
|
unkown
|
page read and write
|
|
|
|
25FAC530000
|
unkown
|
page read and write
|
|
|
|
756237E000
|
unkown
|
page read and write
|
|
|
|
120EC200000
|
unkown
|
page read and write
|
|
|
|
25FAC530000
|
unkown
|
page read and write
|
|
|
|
1E208A3D000
|
unkown
|
page read and write
|
|
|
|
A54A4FE000
|
unkown
|
page read and write
|
|
|
|
1372F482000
|
unkown
|
page read and write
|
|
|
|
120EC242000
|
unkown
|
page read and write
|
|
|
|
7FF5CD70B000
|
unkown
|
page readonly
|
|
|
|
7FF5C3110000
|
unkown
|
page readonly
|
|
|
|
7FF5DD20C000
|
unkown
|
page readonly
|
|
|
|
193FD3D8000
|
unkown
|
page read and write
|
|
|
|
7FF5DD0EF000
|
unkown
|
page readonly
|
|
|
|
193FD64C000
|
unkown
|
page read and write
|
|
|
|
7FF5C50AD000
|
unkown
|
page readonly
|
|
|
|
A5D4C7C000
|
unkown
|
page read and write
|
|
|
|
7FF58D05D000
|
unkown
|
page readonly
|
|
|
|
7FF58CCF3000
|
unkown
|
page readonly
|
|
|
|
193FD4D4000
|
unkown
|
page write copy
|
|
|
|
E7BFC7E000
|
unkown
|
page read and write
|
|
|
|
193FBE93000
|
unkown
|
page read and write
|
|
|
|
26FCDF5B000
|
heap default
|
page read and write
|
|
|
|
A54A2FF000
|
unkown
|
page read and write
|
|
|
|
1372F513000
|
unkown
|
page read and write
|
|
|
|
7FF561145000
|
unkown
|
page readonly
|
|
|
|
48EDFE000
|
unkown
|
page read and write
|
|
|
|
23672E02000
|
unkown
|
page read and write
|
|
|
|
9F4F0FE000
|
unkown
|
page read and write
|
|
|
|
E7BFDFE000
|
unkown
|
page read and write
|
|
|
|
7FF57F263000
|
unkown
|
page readonly
|
|
|
|
193FD4F0000
|
unkown
|
page read and write
|
|
|
|
E7BF9DE000
|
unkown
|
page read and write
|
|
|
|
2101AC00000
|
unkown
|
page readonly
|
|
|
|
193FBF13000
|
unkown
|
page read and write
|
|
|
|
7FF5DD4D9000
|
unkown
|
page readonly
|
|
|
|
7FF560D10000
|
unkown
|
page readonly
|
|
|
|
1AD95E30000
|
unkown
|
page readonly
|
|
|
|
1215AA00000
|
unkown
|
page read and write
|
|
|
|
1AD96113000
|
unkown
|
page read and write
|
|
|
|
7FF5CD7BC000
|
unkown
|
page readonly
|
|
|
|
7FF561116000
|
unkown
|
page readonly
|
|
|
|
128CFE000
|
unkown
|
page read and write
|
|
|
|
7FF5C30AE000
|
unkown
|
page readonly
|
|
|
|
7FF5DD1FB000
|
unkown
|
page readonly
|
|
|
|
7FF5B1B54000
|
unkown
|
page readonly
|
|
|
|
CC3A7FE000
|
unkown
|
page read and write
|
|
|
|
7FF5C3068000
|
unkown
|
page readonly
|
|
|
|
7FF5C4E6A000
|
unkown
|
page readonly
|
|
There are 905 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://main.d35pe6tu6wfnod.amplifyapp.com/outlook.office.commailinbox.html?https://login.microsoftonline.com/common/oauth2/authorize?client_id=4345a7b9-9a63-4910-a426-35363201d503&redirect_uri=https%3A%2F%2Fwww.office.com%2Flanding&response_type=code%20id_token&scope=openid%20profile&response_mode=form_post&nonce=637478753968739283.ZGQwNWM4ZTgtMDRmOC00Zjc5LWFkODEtYjk3ZjdlMWUwODg0YTg0N2E3MDktMDhhMi00OTg5LTg1NWMtY2M3MmY4NTJiMjcy&ui_locales=en-US&mkt=en-US&client-request-id=07326398-218f-4df0-b177-e2fd0e4b58da&state=3_FqDfZM_S_DRpirdMLvzLCQ9DrHwvAzDqW46wIszpamzc2d0JIlKVUffM25_n3gFUghLWZlPtZDmCRbvUgv1UYf7v96uWY_2G-upJeGFfjHycsGLM1_JHUXj8cPtQOxfR4l8Vrk2rgpCe4eRV1TK14Y3LJgo5eEsldxYUCH-xx1e65TN5r_FDCP8SU8CL_T8wGPWVPzdUNz2zCX_fTbijDy9MLPUrqxkWxXDoBr-S3Rd2mNL3_QpbORVW7uEB5Hu-L9iXZm9Ux6W2PYn3jn0w&x-client-SKU=ID_NETSTANDARD2_0&x-client-ver=6.8.0.0
|
|