Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
https://yolotats.com/Borrower/Borrower's-details.shtml
|
URL
|
initial url
|
 |
|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
 |
|
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506
|
Microsoft Cabinet archive data, 59863 bytes, 1 file
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\0a0938a0-2127-4a3f-a7e2-984deed327cb.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3cdcdaa6-5a7c-4be3-8122-3615fa41a74c.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\40f96ee6-453c-41a2-8c88-eac22213abb9.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6829f1b0-75f2-4569-b54b-87abd97e6c87.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7b6f9a58-09a1-4ba0-b1ac-30b1a8005059.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8fb20792-f4d2-4d73-a979-32b725521c53.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\954b861d-7a24-4530-a900-ab12cd548492.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9d19e752-659b-4cc2-9a3e-7e0ee7e00a48.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\080e5d32096294ef_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\58c452aae925b73a_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\533d441f-2c82-4fb7-b488-51a1d33de4c4.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a476d9a2-44e5-43be-8cc8-fa5399f0c909.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b1b3df6d-81ff-4ff7-a900-eaec7311a366.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\daf825cd-4502-4416-b4c9-19448949f82e.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\db1e5215-cd33-424b-b20f-b42ecb9c317c.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\a1428026-7b3e-4d06-82bd-195b327f723a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\b2390955-b7fd-405f-9775-a38989966d51.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\23670a59-3f7d-44cd-bb47-b678a0f34a9a.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\26022141-f371-4902-a106-e68062ad445e.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\748e34b5-1e6e-41ca-9f4a-ccac19e43429.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\7be03483-19c8-43d8-b5f2-304d3604e036.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\ae5723d0-dac9-4404-a578-a4c9b0786e60.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\b3c9b359-482c-49cf-af85-2a78bc6e3721.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\7be03483-19c8-43d8-b5f2-304d3604e036.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_1621826258\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\23670a59-3f7d-44cd-bb47-b678a0f34a9a.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_656506809\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir1060_724702331\ae5723d0-dac9-4404-a578-a4c9b0786e60.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
There are 202 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://yolotats.com/Borrower/Borrower's-details.shtml'
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1704,1686343471565443222,3804912756075544807,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1752 /prefetch:8
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://yolotats.com/Borrower/Borrower's-details.shtml
|
|
||
|
https://yolotats.com/Borrower/Borrower
|
unknown
|
|
|
|
https://dns.google
|
unknown
|
|
|
|
https://yolotats.com/-
|
unknown
|
|
|
|
https://clients2.googleusercontent.com
|
unknown
|
|
|
|
https://yolotats.com/
|
unknown
|
|
|
|
https://feedback.googleusercontent.com
|
unknown
|
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
yolotats.com
|
69.49.235.204
|
|
|
|
gofirstam.com
|
104.129.24.42
|
|
|
|
insagent.firstam.com
|
69.87.16.180
|
|
|
|
googlehosted.l.googleusercontent.com
|
216.58.212.129
|
|
|
|
maskeny.com
|
184.175.83.99
|
|
|
|
clients2.googleusercontent.com
|
unknown
|
|
|
|
www.maskeny.com
|
unknown
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.168.2.1
|
unknown
|
unknown
|
|
|
|
104.129.24.42
|
gofirstam.com
|
United States
|
|
|
|
216.58.212.129
|
googlehosted.l.googleusercontent.com
|
United States
|
|
|
|
192.168.2.5
|
unknown
|
unknown
|
|
|
|
239.255.255.250
|
unknown
|
Reserved
|
|
|
|
184.175.83.99
|
maskeny.com
|
United States
|
|
|
|
69.49.235.204
|
yolotats.com
|
United States
|
|
|
|
127.0.0.1
|
unknown
|
unknown
|
|
|
|
69.87.16.180
|
insagent.firstam.com
|
United States
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
ahfgeienlihckogmohjhadlkjgocpleb
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
kmendfapggjehodndflmmgagdbamhnfd
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
mfehgcgbbipciphmccgaenjidiccnmng
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
neajdppkdcdipfabeoofebfddakdcjhd
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
nkeimhogjdpnpccoofpliimaahmaaome
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
prefs.preference_reset_time
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
state
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
StatusCodes
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
StatusCodes
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
state
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
software_reporter.reporting
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
module_blacklist_cache_md5_digest
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
media.storage_id_salt
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
google.services.last_account_id
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
google.services.account_id
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
software_reporter.prompt_seed
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.last_triggered_for_homepage
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
default_search_provider_data.template_url_data
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
safebrowsing.incidents_sent
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
pinned_tabs
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
search_provider_overrides
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.last_triggered_for_default_search
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
prefs.preference_reset_time
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
google.services.last_username
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
session.startup_urls
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
session.restore_on_startup
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
software_reporter.prompt_version
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.last_triggered_for_startup_urls
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.prompt_wave
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
homepage
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
homepage_is_newtabpage
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
browser.show_home_button
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
user_experience_metrics.stability.exited_cleanly
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
lastrun
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
Blob
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
Blob
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
Blob
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
Blob
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
Blob
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
Blob
|
|
There are 37 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7FF50C2BC000
|
unkown
|
page readonly
|
|
|
|
7FF53F18C000
|
unkown
|
page readonly
|
|
|
|
7FF59AB2B000
|
unkown
|
page readonly
|
|
|
|
23D2D200000
|
unkown
|
page readonly
|
|
|
|
7FF53F198000
|
unkown
|
page readonly
|
|
|
|
1EDC87D0000
|
unkown
|
page read and write
|
|
|
|
1EDC8C24000
|
unkown
|
page read and write
|
|
|
|
7FF551C7C000
|
unkown
|
page readonly
|
|
|
|
7FF551D36000
|
unkown
|
page readonly
|
|
|
|
F7F007E000
|
unkown
|
page read and write
|
|
|
|
7FF50C197000
|
unkown
|
page readonly
|
|
|
|
7FF55DBB5000
|
unkown
|
page readonly
|
|
|
|
7FF50CB3D000
|
unkown
|
page readonly
|
|
|
|
1F8F7930000
|
unkown
|
page readonly
|
|
|
|
7FF55DB87000
|
unkown
|
page readonly
|
|
|
|
7FF50C003000
|
unkown
|
page readonly
|
|
|
|
2192DF00000
|
unkown
|
page readonly
|
|
|
|
DDB287D000
|
unkown
|
page read and write
|
|
|
|
7FF50C0ED000
|
unkown
|
page readonly
|
|
|
|
7FF59AB2F000
|
unkown
|
page readonly
|
|
|
|
23D2EAA0000
|
unkown
|
page readonly
|
|
|
|
7FF53EE5D000
|
unkown
|
page readonly
|
|
|
|
7FF50CB45000
|
unkown
|
page readonly
|
|
|
|
7FF53F1B9000
|
unkown
|
page readonly
|
|
|
|
1E6067B000
|
unkown
|
page read and write
|
|
|
|
2192E075000
|
unkown
|
page read and write
|
|
|
|
23D2D0E7000
|
unkown
|
page read and write
|
|
|
|
7FF55DB77000
|
unkown
|
page readonly
|
|
|
|
7FF551CBA000
|
unkown
|
page readonly
|
|
|
|
DD36B7F000
|
unkown
|
page read and write
|
|
|
|
18BA0C61000
|
unkown
|
page read and write
|
|
|
|
7FF4ED655000
|
unkown
|
page readonly
|
|
|
|
7FF537CA2000
|
unkown
|
page readonly
|
|
|
|
7FF59AAFB000
|
unkown
|
page readonly
|
|
|
|
212532A0000
|
unkown
|
page read and write
|
|
|
|
7FF551AE7000
|
unkown
|
page readonly
|
|
|
|
1EDC3B19000
|
unkown
|
page read and write
|
|
|
|
1E851EB0000
|
unkown
|
page readonly
|
|
|
|
7FF53EE62000
|
unkown
|
page readonly
|
|
|
|
7FF55DB6C000
|
unkown
|
page readonly
|
|
|
|
12AF1855000
|
unkown
|
page read and write
|
|
|
|
1EDC87D1000
|
unkown
|
page read and write
|
|
|
|
1EDC3110000
|
heap private
|
page read and write
|
|
|
|
7FF4F97F3000
|
unkown
|
page readonly
|
|
|
|
7FF50C1C2000
|
unkown
|
page readonly
|
|
|
|
7FF5B154D000
|
unkown
|
page readonly
|
|
|
|
AC686FF000
|
unkown
|
page read and write
|
|
|
|
29AAB530000
|
unkown
|
page readonly
|
|
|
|
7FF551C44000
|
unkown
|
page readonly
|
|
|
|
1EDC3313000
|
unkown
|
page read and write
|
|
|
|
1EDC3400000
|
unkown
|
page readonly
|
|
|
|
1EDC3180000
|
unkown
|
page readonly
|
|
|
|
1FCD3665000
|
unkown
|
page read and write
|
|
|
|
7FF53F238000
|
unkown
|
page readonly
|
|
|
|
7FF50C9FE000
|
unkown
|
page readonly
|
|
|
|
1EDC87F1000
|
unkown
|
page read and write
|
|
|
|
7FF4ED663000
|
unkown
|
page readonly
|
|
|
|
7FF4ED617000
|
unkown
|
page readonly
|
|
|
|
7FF5DDDA5000
|
unkown
|
page readonly
|
|
|
|
18BA0B90000
|
unkown
|
page readonly
|
|
|
|
2192E113000
|
unkown
|
page read and write
|
|
|
|
7FF551D6F000
|
unkown
|
page readonly
|
|
|
|
1E853790000
|
unkown
|
page readonly
|
|
|
|
7FF53831F000
|
unkown
|
page readonly
|
|
|
|
2ADF9702000
|
unkown
|
page read and write
|
|
|
|
7FF593DC0000
|
unkown
|
page readonly
|
|
|
|
7FF55DA96000
|
unkown
|
page readonly
|
|
|
|
29AABF39000
|
unkown
|
page read and write
|
|
|
|
1FCD3510000
|
heap private
|
page read and write
|
|
|
|
7FF5DDD75000
|
unkown
|
page readonly
|
|
|
|
1EDC8AC5000
|
unkown
|
page read and write
|
|
|
|
7FF5B16E9000
|
unkown
|
page readonly
|
|
|
|
29AAB4C0000
|
heap private
|
page read and write
|
|
|
|
7FF59AA48000
|
unkown
|
page readonly
|
|
|
|
7FF53F264000
|
unkown
|
page readonly
|
|
|
|
7FF4ED71F000
|
unkown
|
page readonly
|
|
|
|
EBEC77E000
|
unkown
|
page read and write
|
|
|
|
1EDC39F0000
|
unkown
|
page readonly
|
|
|
|
7FF50BEBD000
|
unkown
|
page readonly
|
|
|
|
7FF50CBC8000
|
unkown
|
page readonly
|
|
|
|
7FF4F98CB000
|
unkown
|
page readonly
|
|
|
|
7FF50CABD000
|
unkown
|
page readonly
|
|
|
|
7FF53F23F000
|
unkown
|
page readonly
|
|
|
|
21252B20000
|
unkown
|
page readonly
|
|
|
|
7FF50BEAF000
|
unkown
|
page readonly
|
|
|
|
AC68D7D000
|
unkown
|
page read and write
|
|
|
|
18BA0C3A000
|
unkown
|
page read and write
|
|
|
|
23D2EF86000
|
unkown
|
page read and write
|
|
|
|
7FF4ED6FD000
|
unkown
|
page readonly
|
|
|
|
B57EFFD000
|
unkown
|
page read and write
|
|
|
|
2192E200000
|
unkown
|
page readonly
|
|
|
|
7FF4ED630000
|
unkown
|
page readonly
|
|
|
|
7FF4F98EB000
|
unkown
|
page readonly
|
|
|
|
7FF55141C000
|
unkown
|
page readonly
|
|
|
|
7FF53EE4F000
|
unkown
|
page readonly
|
|
|
|
7FF538307000
|
unkown
|
page readonly
|
|
|
|
23D2EF15000
|
unkown
|
page read and write
|
|
|
|
7FF593DEF000
|
unkown
|
page readonly
|
|
|
|
20A8A8F0000
|
heap private
|
page read and write
|
|
|
|
2ADF9669000
|
unkown
|
page read and write
|
|
|
|
7FF537C9E000
|
unkown
|
page readonly
|
|
|
|
2192E002000
|
unkown
|
page read and write
|
|
|
|
7FF59AB14000
|
unkown
|
page readonly
|
|
|
|
7FF59A91E000
|
unkown
|
page readonly
|
|
|
|
7FF4ED685000
|
unkown
|
page readonly
|
|
|
|
1E6087A000
|
unkown
|
page read and write
|
|
|
|
1F8F71E0000
|
heap default
|
page read and write
|
|
|
|
18BA0D02000
|
unkown
|
page read and write
|
|
|
|
1FCD3602000
|
unkown
|
page read and write
|
|
|
|
7FF593AE8000
|
unkown
|
page readonly
|
|
|
|
12AF1A50000
|
unkown
|
page readonly
|
|
|
|
FB949FF000
|
unkown
|
page read and write
|
|
|
|
7FF53EF7D000
|
unkown
|
page readonly
|
|
|
|
2192E077000
|
unkown
|
page read and write
|
|
|
|
826487F000
|
unkown
|
page read and write
|
|
|
|
18BA0C60000
|
unkown
|
page read and write
|
|
|
|
1FCD3580000
|
unkown
|
page write copy
|
|
|
|
1FCD3665000
|
unkown
|
page read and write
|
|
|
|
1EDC86B0000
|
unkown
|
page read and write
|
|
|
|
1E853AD0000
|
heap private
|
page read and write
|
|
|
|
18BA0E00000
|
unkown
|
page readonly
|
|
|
|
1006FE000
|
unkown
|
page read and write
|
|
|
|
7FF53F187000
|
unkown
|
page readonly
|
|
|
|
1E8538F0000
|
heap private
|
page read and write
|
|
|
|
7FF55DC7B000
|
unkown
|
page readonly
|
|
|
|
7FF538073000
|
unkown
|
page readonly
|
|
|
|
B57E7AE000
|
unkown
|
page read and write
|
|
|
|
7FF4F97D4000
|
unkown
|
page readonly
|
|
|
|
2192E029000
|
unkown
|
page read and write
|
|
|
|
2ADF9669000
|
unkown
|
page read and write
|
|
|
|
7FF50C18A000
|
unkown
|
page readonly
|
|
|
|
7FF538409000
|
unkown
|
page readonly
|
|
|
|
AC67E7E000
|
unkown
|
page read and write
|
|
|
|
1EDC329C000
|
unkown
|
page read and write
|
|
|
|
1EDC32AD000
|
unkown
|
page read and write
|
|
|
|
7FF55DC3F000
|
unkown
|
page readonly
|
|
|
|
AC68CFC000
|
unkown
|
page read and write
|
|
|
|
1E853BCF000
|
heap private
|
page read and write
|
|
|
|
7FF55DC38000
|
unkown
|
page readonly
|
|
|
|
20A8AA6A000
|
unkown
|
page read and write
|
|
|
|
21252C13000
|
unkown
|
page read and write
|
|
|
|
EBEC6FE000
|
unkown
|
page read and write
|
|
|
|
2ADF9657000
|
unkown
|
page read and write
|
|
|
|
7FF4ED6DF000
|
unkown
|
page readonly
|
|
|
|
7FF50C005000
|
unkown
|
page readonly
|
|
|
|
1EDC8990000
|
unkown
|
page readonly
|
|
|
|
7FF593DAF000
|
unkown
|
page readonly
|
|
|
|
AC68BFF000
|
unkown
|
page read and write
|
|
|
|
1EDC8680000
|
unkown
|
page readonly
|
|
|
|
7FF50C29F000
|
unkown
|
page readonly
|
|
|
|
7FF5381C3000
|
unkown
|
page readonly
|
|
|
|
7FF4F8CEB000
|
unkown
|
page readonly
|
|
|
|
21252C3D000
|
unkown
|
page read and write
|
|
|
|
DDB327F000
|
unkown
|
page read and write
|
|
|
|
7FF5384CB000
|
unkown
|
page readonly
|
|
|
|
7FF55DBAD000
|
unkown
|
page readonly
|
|
|
|
7FF4F98FB000
|
unkown
|
page readonly
|
|
|
|
29AABCC0000
|
unkown
|
page write copy
|
|
|
|
1E851D80000
|
unkown
|
page readonly
|
|
|
|
1EDC3274000
|
unkown
|
page read and write
|
|
|
|
20A8AA00000
|
unkown
|
page read and write
|
|
|
|
1EDC8A4B000
|
unkown
|
page read and write
|
|
|
|
2ADF9669000
|
unkown
|
page read and write
|
|
|
|
7FF5DDD79000
|
unkown
|
page readonly
|
|
|
|
7FF50C1F8000
|
unkown
|
page readonly
|
|
|
|
1EDC88F0000
|
unkown
|
page read and write
|
|
|
|
1E606FF000
|
unkown
|
page read and write
|
|
|
|
1EDC3B18000
|
unkown
|
page read and write
|
|
|
|
7FF551B7D000
|
unkown
|
page readonly
|
|
|
|
B57F0FF000
|
unkown
|
page read and write
|
|
|
|
7FF593D3A000
|
unkown
|
page readonly
|
|
|
|
1FCD5070000
|
unkown
|
page read and write
|
|
|
|
7FF4ED71B000
|
unkown
|
page readonly
|
|
|
|
7FF5DDCDD000
|
unkown
|
page readonly
|
|
|
|
7FF55DA8D000
|
unkown
|
page readonly
|
|
|
|
7FF59AB2F000
|
unkown
|
page readonly
|
|
|
|
7FF4ED68D000
|
unkown
|
page readonly
|
|
|
|
18BA0C41000
|
unkown
|
page read and write
|
|
|
|
23D2E9A0000
|
unkown
|
page read and write
|
|
|
|
7FF50C17F000
|
unkown
|
page readonly
|
|
|
|
7FF55D4C4000
|
unkown
|
page readonly
|
|
|
|
23D2D029000
|
unkown
|
page read and write
|
|
|
|
7FF55DBE5000
|
unkown
|
page readonly
|
|
|
|
1E851FE0000
|
unkown
|
page readonly
|
|
|
|
7FF5378E9000
|
unkown
|
page readonly
|
|
|
|
7FF5383D7000
|
unkown
|
page readonly
|
|
|
|
7FF5383DC000
|
unkown
|
page readonly
|
|
|
|
18BA0C69000
|
unkown
|
page read and write
|
|
|
|
7FF59AA37000
|
unkown
|
page readonly
|
|
|
|
7FF53826D000
|
unkown
|
page readonly
|
|
|
|
7FF59AA27000
|
unkown
|
page readonly
|
|
|
|
7FF50CC0F000
|
unkown
|
page readonly
|
|
|
|
7FF593AA6000
|
unkown
|
page readonly
|
|
|
|
7FF5384BE000
|
unkown
|
page readonly
|
|
|
|
1F8F71F0000
|
unkown
|
page readonly
|
|
|
|
1EDC3170000
|
heap default
|
page read and write
|
|
|
|
7FF593DEF000
|
unkown
|
page readonly
|
|
|
|
1FCD3702000
|
unkown
|
page read and write
|
|
|
|
7FF50C223000
|
unkown
|
page readonly
|
|
|
|
2ADF9669000
|
unkown
|
page read and write
|
|
|
|
1E853910000
|
heap private
|
page read and write
|
|
|
|
7FF50C7FA000
|
unkown
|
page readonly
|
|
|
|
18BA0C31000
|
unkown
|
page read and write
|
|
|
|
7FF5DDE2B000
|
unkown
|
page readonly
|
|
|
|
7FF4F98C6000
|
unkown
|
page readonly
|
|
|
|
7FF50CB5A000
|
unkown
|
page readonly
|
|
|
|
29AAC340000
|
unkown
|
page readonly
|
|
|
|
23D2D0A2000
|
unkown
|
page read and write
|
|
|
|
23D2D0C2000
|
unkown
|
page read and write
|
|
|
|
23D2CDA0000
|
heap private
|
page read and write
|
|
|
|
1EDC39B0000
|
unkown
|
page readonly
|
|
|
|
18BA0C2E000
|
unkown
|
page read and write
|
|
|
|
1E851E50000
|
unkown
|
page read and write
|
|
|
|
7FF50C7ED000
|
unkown
|
page readonly
|
|
|
|
7FF50C2DB000
|
unkown
|
page readonly
|
|
|
|
1EDC8800000
|
unkown
|
page read and write
|
|
|
|
12AF183F000
|
unkown
|
page read and write
|
|
|
|
10007B000
|
unkown
|
page read and write
|
|
|
|
1EDC8960000
|
unkown
|
page read and write
|
|
|
|
1EDC88A9000
|
unkown
|
page write copy
|
|
|
|
1F8F729C000
|
unkown
|
page read and write
|
|
|
|
8264B7C000
|
unkown
|
page read and write
|
|
|
|
29AABF00000
|
unkown
|
page read and write
|
|
|
|
7FF50C1D3000
|
unkown
|
page readonly
|
|
|
|
7FF5DDBB7000
|
unkown
|
page readonly
|
|
|
|
7FF53F154000
|
unkown
|
page readonly
|
|
|
|
7FF55DC6E000
|
unkown
|
page readonly
|
|
|
|
12AF1802000
|
unkown
|
page read and write
|
|
|
|
4F002DB000
|
unkown
|
page read and write
|
|
|
|
1EDC8900000
|
unkown
|
page read and write
|
|
|
|
7FF5DDE1D000
|
unkown
|
page readonly
|
|
|
|
7FF59AA73000
|
unkown
|
page readonly
|
|
|
|
20A8AA6A000
|
unkown
|
page read and write
|
|
|
|
7FF50BD8F000
|
unkown
|
page readonly
|
|
|
|
12AF3300000
|
unkown
|
page readonly
|
|
|
|
DDB25BE000
|
unkown
|
page read and write
|
|
|
|
EBEC67C000
|
unkown
|
page read and write
|
|
|
|
1EDC8C70000
|
unkown
|
page read and write
|
|
|
|
7FF59AB1B000
|
unkown
|
page readonly
|
|
|
|
1EDC3A15000
|
unkown
|
page read and write
|
|
|
|
DDB2E7F000
|
unkown
|
page read and write
|
|
|
|
7FF59A985000
|
unkown
|
page readonly
|
|
|
|
7FF5383FD000
|
unkown
|
page readonly
|
|
|
|
7FF59A5F9000
|
unkown
|
page readonly
|
|
|
|
7FF4ED70B000
|
unkown
|
page readonly
|
|
|
|
1EDC8A5A000
|
unkown
|
page read and write
|
|
|
|
1EDC8640000
|
unkown
|
page read and write
|
|
|
|
7FF538405000
|
unkown
|
page readonly
|
|
|
|
7FF50CBFE000
|
unkown
|
page readonly
|
|
|
|
1005FE000
|
unkown
|
page read and write
|
|
|
|
1EDC88B4000
|
unkown
|
page readonly
|
|
|
|
7FF50C243000
|
unkown
|
page readonly
|
|
|
|
7FF50CBCF000
|
unkown
|
page readonly
|
|
|
|
7FF538344000
|
unkown
|
page readonly
|
|
|
|
1FCD3570000
|
heap default
|
page read and write
|
|
|
|
1EDC3A02000
|
unkown
|
page read and write
|
|
|
|
21252D02000
|
unkown
|
page read and write
|
|
|
|
7FF5383BC000
|
unkown
|
page readonly
|
|
|
|
7FF4F982D000
|
unkown
|
page readonly
|
|
|
|
29AAB67E000
|
unkown
|
page read and write
|
|
|
|
7FF50C2CB000
|
unkown
|
page readonly
|
|
|
|
7FF5DD9A5000
|
unkown
|
page readonly
|
|
|
|
2192DEF0000
|
heap default
|
page read and write
|
|
|
|
AC6857F000
|
unkown
|
page read and write
|
|
|
|
2ADF967B000
|
unkown
|
page read and write
|
|
|
|
7FF551C80000
|
unkown
|
page readonly
|
|
|
|
C78E0FC000
|
unkown
|
page read and write
|
|
|
|
1EDC8A2B000
|
unkown
|
page read and write
|
|
|
|
7FF551952000
|
unkown
|
page readonly
|
|
|
|
DD36CFE000
|
unkown
|
page read and write
|
|
|
|
7FF59AB1E000
|
unkown
|
page readonly
|
|
|
|
7FF5B179E000
|
unkown
|
page readonly
|
|
|
|
7FF5B1780000
|
unkown
|
page readonly
|
|
|
|
29AABC70000
|
unkown
|
page readonly
|
|
|
|
AC6867F000
|
unkown
|
page read and write
|
|
|
|
C78E37C000
|
unkown
|
page read and write
|
|
|
|
4F0067A000
|
unkown
|
page read and write
|
|
|
|
7FF50C2BD000
|
unkown
|
page readonly
|
|
|
|
20A8AA6A000
|
unkown
|
page read and write
|
|
|
|
4F006FA000
|
unkown
|
page read and write
|
|
|
|
7FF4ED70E000
|
unkown
|
page readonly
|
|
|
|
20A8AB13000
|
unkown
|
page read and write
|
|
|
|
7FF50C215000
|
unkown
|
page readonly
|
|
|
|
7FF4F98D0000
|
unkown
|
page readonly
|
|
|
|
7FF5B16DD000
|
unkown
|
page readonly
|
|
|
|
1F8F7300000
|
unkown
|
page read and write
|
|
|
|
7FF55DBB9000
|
unkown
|
page readonly
|
|
|
|
29AABA00000
|
unkown
|
page readonly
|
|
|
|
B57EEFF000
|
unkown
|
page read and write
|
|
|
|
7FF55D946000
|
unkown
|
page readonly
|
|
|
|
1F8F7313000
|
unkown
|
page read and write
|
|
|
|
7FF5384BB000
|
unkown
|
page readonly
|
|
|
|
82648FE000
|
unkown
|
page read and write
|
|
|
|
12AF1730000
|
unkown
|
page readonly
|
|
|
|
23D2EF02000
|
unkown
|
page read and write
|
|
|
|
23D2D113000
|
unkown
|
page read and write
|
|
|
|
7FF551B5E000
|
unkown
|
page readonly
|
|
|
|
7FF551CA5000
|
unkown
|
page readonly
|
|
|
|
F7EFF77000
|
unkown
|
page read and write
|
|
|
|
7FF59A8FE000
|
unkown
|
page readonly
|
|
|
|
7FF50C1E7000
|
unkown
|
page readonly
|
|
|
|
7FF53F1CA000
|
unkown
|
page readonly
|
|
|
|
23D2CE00000
|
heap default
|
page read and write
|
|
|
|
7FF50C219000
|
unkown
|
page readonly
|
|
|
|
7FF50CAE4000
|
unkown
|
page readonly
|
|
|
|
7FF5DDD83000
|
unkown
|
page readonly
|
|
|
|
7FF55D07F000
|
unkown
|
page readonly
|
|
|
|
7FF5DDE06000
|
unkown
|
page readonly
|
|
|
|
29AAB702000
|
unkown
|
page read and write
|
|
|
|
7FF53848F000
|
unkown
|
page readonly
|
|
|
|
1FCD366C000
|
unkown
|
page read and write
|
|
|
|
1FCD366A000
|
unkown
|
page read and write
|
|
|
|
23D2F010000
|
unkown
|
page readonly
|
|
|
|
1E853800000
|
unkown
|
page readonly
|
|
|
|
23D2CFF0000
|
unkown
|
page read and write
|
|
|
|
7FF551C77000
|
unkown
|
page readonly
|
|
|
|
1FCD366C000
|
unkown
|
page read and write
|
|
|
|
23D2EF46000
|
unkown
|
page read and write
|
|
|
|
1EDC8920000
|
unkown
|
page read and write
|
|
|
|
2ADF9669000
|
unkown
|
page read and write
|
|
|
|
7FF55195A000
|
unkown
|
page readonly
|
|
|
|
7FF551D40000
|
unkown
|
page readonly
|
|
|
|
7FF5931D2000
|
unkown
|
page readonly
|
|
|
|
7FF55DB75000
|
unkown
|
page readonly
|
|
|
|
21252C58000
|
unkown
|
page read and write
|
|
|
|
1F8F7C00000
|
unkown
|
page readonly
|
|
|
|
7FF5B1463000
|
unkown
|
page readonly
|
|
|
|
7FF551D6B000
|
unkown
|
page readonly
|
|
|
|
1F8F7A02000
|
unkown
|
page read and write
|
|
|
|
2ADF9669000
|
unkown
|
page read and write
|
|
|
|
7FF5383C3000
|
unkown
|
page readonly
|
|
|
|
2ADF9700000
|
unkown
|
page read and write
|
|
|
|
EBECB7B000
|
unkown
|
page read and write
|
|
|
|
DD36C7A000
|
unkown
|
page read and write
|
|
|
|
2ADF9669000
|
unkown
|
page read and write
|
|
|
|
1EDC3B59000
|
unkown
|
page read and write
|
|
|
|
20A8AA6C000
|
unkown
|
page read and write
|
|
|
|
7FF55DAFE000
|
unkown
|
page readonly
|
|
|
|
7FF5DDD8A000
|
unkown
|
page readonly
|
|
|
|
1EDC8A88000
|
unkown
|
page read and write
|
|
|
|
1EDC86D0000
|
unkown
|
page read and write
|
|
|
|
1EDC8920000
|
unkown
|
page read and write
|
|
|
|
1EDC329E000
|
unkown
|
page read and write
|
|
|
|
29AAB66F000
|
unkown
|
page read and write
|
|
|
|
1EDC8814000
|
unkown
|
page read and write
|
|
|
|
B57EBFE000
|
unkown
|
page read and write
|
|
|
|
1E8537B0000
|
unkown
|
page readonly
|
|
|
|
20A8AA02000
|
unkown
|
page read and write
|
|
|
|
1EDC34D0000
|
unkown
|
page readonly
|
|
|
|
7FF593CF7000
|
unkown
|
page readonly
|
|
|
|
21252BF0000
|
unkown
|
page readonly
|
|
|
|
7FF53F1AD000
|
unkown
|
page readonly
|
|
|
|
1FCD3667000
|
unkown
|
page read and write
|
|
|
|
7FF593DDB000
|
unkown
|
page readonly
|
|
|
|
2ADF9B90000
|
unkown
|
page readonly
|
|
|
|
7FF53818F000
|
unkown
|
page readonly
|
|
|
|
20A8AA6A000
|
unkown
|
page read and write
|
|
|
|
7FF53F08D000
|
unkown
|
page readonly
|
|
|
|
12AF1829000
|
unkown
|
page read and write
|
|
|
|
7FF551A95000
|
unkown
|
page readonly
|
|
|
|
1EDC3200000
|
unkown
|
page read and write
|
|
|
|
7FF50CBD6000
|
unkown
|
page readonly
|
|
|
|
7FF55DC6B000
|
unkown
|
page readonly
|
|
|
|
7FF55DC4B000
|
unkown
|
page readonly
|
|
|
|
2ADF9600000
|
unkown
|
page read and write
|
|
|
|
C78DD7C000
|
unkown
|
page read and write
|
|
|
|
1FCD38D0000
|
unkown
|
page readonly
|
|
|
|
18BA0C7B000
|
unkown
|
page read and write
|
|
|
|
7FF50BECA000
|
unkown
|
page readonly
|
|
|
|
B57E72B000
|
unkown
|
page read and write
|
|
|
|
23D2CF30000
|
unkown
|
page readonly
|
|
|
|
7FF50C2C4000
|
unkown
|
page readonly
|
|
|
|
F7EFD7E000
|
unkown
|
page read and write
|
|
|
|
7FF593D29000
|
unkown
|
page readonly
|
|
|
|
1F8F74D0000
|
unkown
|
page readonly
|
|
|
|
2192EA00000
|
unkown
|
page readonly
|
|
|
|
1EDC8C20000
|
unkown
|
page readonly
|
|
|
|
18BA0C29000
|
unkown
|
page read and write
|
|
|
|
7FF4F98FD000
|
unkown
|
page readonly
|
|
|
|
212532A0000
|
unkown
|
page read and write
|
|
|
|
1EDC3279000
|
unkown
|
page read and write
|
|
|
|
1EDC8A1D000
|
unkown
|
page read and write
|
|
|
|
7FF4ED5BF000
|
unkown
|
page readonly
|
|
|
|
C78E1FE000
|
unkown
|
page read and write
|
|
|
|
DDB297B000
|
unkown
|
page read and write
|
|
|
|
7FF5383E8000
|
unkown
|
page readonly
|
|
|
|
20A8AA29000
|
unkown
|
page read and write
|
|
|
|
7FF55DA1D000
|
unkown
|
page readonly
|
|
|
|
1EDC3B13000
|
unkown
|
page read and write
|
|
|
|
7FF53815A000
|
unkown
|
page readonly
|
|
|
|
18BA0AB0000
|
heap default
|
page read and write
|
|
|
|
23D2EDE0000
|
unkown
|
page readonly
|
|
|
|
18BA0C77000
|
unkown
|
page read and write
|
|
|
|
1EDC8A9F000
|
unkown
|
page read and write
|
|
|
|
7FF50C917000
|
unkown
|
page readonly
|
|
|
|
7FF5B1715000
|
unkown
|
page readonly
|
|
|
|
2ADF9669000
|
unkown
|
page read and write
|
|
|
|
23D2CEE0000
|
unkown
|
page write copy
|
|
|
|
7FF593DD4000
|
unkown
|
page readonly
|
|
|
|
EBEC97B000
|
unkown
|
page read and write
|
|
|
|
1EDC4623000
|
unkown
|
page read and write
|
|
|
|
7FF5DDD47000
|
unkown
|
page readonly
|
|
|
|
7FF551C20000
|
unkown
|
page readonly
|
|
|
|
7FF4F8CF0000
|
unkown
|
page readonly
|
|
|
|
7FF59A8CD000
|
unkown
|
page readonly
|
|
|
|
1F8F7F40000
|
unkown
|
page readonly
|
|
|
|
7FF5DDD37000
|
unkown
|
page readonly
|
|
|
|
7FF5DDE3D000
|
unkown
|
page readonly
|
|
|
|
1EDC322A000
|
unkown
|
page read and write
|
|
|
|
7FF5DDE0E000
|
unkown
|
page readonly
|
|
|
|
1EDC3B59000
|
unkown
|
page read and write
|
|
|
|
1EDC39E0000
|
unkown
|
page readonly
|
|
|
|
AC67BCC000
|
unkown
|
page read and write
|
|
|
|
7FF53F1E3000
|
unkown
|
page readonly
|
|
|
|
7FF50C030000
|
unkown
|
page readonly
|
|
|
|
7FF59AB00000
|
unkown
|
page readonly
|
|
|
|
C78DC7D000
|
unkown
|
page read and write
|
|
|
|
AC683FC000
|
unkown
|
page read and write
|
|
|
|
21253190000
|
unkown
|
page readonly
|
|
|
|
18BA0C66000
|
unkown
|
page read and write
|
|
|
|
23D2D086000
|
unkown
|
page read and write
|
|
|
|
FB9438F000
|
unkown
|
page read and write
|
|
|
|
7FF537C44000
|
unkown
|
page readonly
|
|
|
|
7FF55D958000
|
unkown
|
page readonly
|
|
|
|
1EDC87DE000
|
unkown
|
page read and write
|
|
|
|
7FF50C0CE000
|
unkown
|
page readonly
|
|
|
|
7FF538044000
|
unkown
|
page readonly
|
|
|
|
1F8F7940000
|
unkown
|
page read and write
|
|
|
|
1FCD3665000
|
unkown
|
page read and write
|
|
|
|
7FF50C190000
|
unkown
|
page readonly
|
|
|
|
AC685FE000
|
unkown
|
page read and write
|
|
|
|
20A8AB02000
|
unkown
|
page read and write
|
|
|
|
7FF593D33000
|
unkown
|
page readonly
|
|
|
|
7FF4F977E000
|
unkown
|
page readonly
|
|
|
|
18BA1402000
|
unkown
|
page read and write
|
|
|
|
7FF50CBDB000
|
unkown
|
page readonly
|
|
|
|
7FF4ED6EB000
|
unkown
|
page readonly
|
|
|
|
18BA0C5E000
|
unkown
|
page read and write
|
|
|
|
1E8537F0000
|
heap private
|
page read and write
|
|
|
|
7FF4ED5C3000
|
unkown
|
page readonly
|
|
|
|
1FCD3652000
|
unkown
|
page read and write
|
|
|
|
7FF5381BC000
|
unkown
|
page readonly
|
|
|
|
7FF538288000
|
unkown
|
page readonly
|
|
|
|
2ADF9669000
|
unkown
|
page read and write
|
|
|
|
1F8F7302000
|
unkown
|
page read and write
|
|
|
|
1F8F7200000
|
unkown
|
page read and write
|
|
|
|
7FF5DDE0B000
|
unkown
|
page readonly
|
|
|
|
7FF55DAA2000
|
unkown
|
page readonly
|
|
|
|
7FF551A6D000
|
unkown
|
page readonly
|
|
|
|
7FF53F250000
|
unkown
|
page readonly
|
|
|
|
7FF4F96C6000
|
unkown
|
page readonly
|
|
|
|
7FF551CB3000
|
unkown
|
page readonly
|
|
|
|
1EDC8C50000
|
unkown
|
page readonly
|
|
|
|
1EDC4630000
|
unkown
|
page read and write
|
|
|
|
7FF50C2A6000
|
unkown
|
page readonly
|
|
|
|
7FF5381BA000
|
unkown
|
page readonly
|
|
|
|
2ADF9669000
|
unkown
|
page read and write
|
|
|
|
29AAB600000
|
unkown
|
page read and write
|
|
|
|
18BA0C6D000
|
unkown
|
page read and write
|
|
|
|
20A8ACD0000
|
unkown
|
page readonly
|
|
|
|
18BA0C40000
|
unkown
|
page read and write
|
|
|
|
7FF551C88000
|
unkown
|
page readonly
|
|
|
|
1FCD3629000
|
unkown
|
page read and write
|
|
|
|
1EDC4000000
|
unkown
|
page read and write
|
|
|
|
18BA0C48000
|
unkown
|
page read and write
|
|
|
|
2192DE90000
|
heap private
|
page read and write
|
|
|
|
DDB317E000
|
unkown
|
page read and write
|
|
|
|
7FF53841A000
|
unkown
|
page readonly
|
|
|
|
7FF55DB98000
|
unkown
|
page readonly
|
|
|
|
7FF50B98C000
|
unkown
|
page readonly
|
|
|
|
29AAB520000
|
heap default
|
page read and write
|
|
|
|
29AAB644000
|
unkown
|
page read and write
|
|
|
|
23D2CF90000
|
heap private
|
page read and write
|
|
|
|
20A8A9B0000
|
unkown
|
page readonly
|
|
|
|
1EDC31B0000
|
unkown
|
page read and write
|
|
|
|
7FF537D08000
|
unkown
|
page readonly
|
|
|
|
7FF59A608000
|
unkown
|
page readonly
|
|
|
|
7FF5384CF000
|
unkown
|
page readonly
|
|
|
|
21252B10000
|
heap default
|
page read and write
|
|
|
|
FB948FD000
|
unkown
|
page read and write
|
|
|
|
7FF50C001000
|
unkown
|
page readonly
|
|
|
|
1FCD3640000
|
unkown
|
page read and write
|
|
|
|
7FF551D28000
|
unkown
|
page readonly
|
|
|
|
1EDC39C0000
|
unkown
|
page readonly
|
|
|
|
18BA0C42000
|
unkown
|
page read and write
|
|
|
|
F7EF9AE000
|
unkown
|
page read and write
|
|
|
|
7FF50C2B0000
|
unkown
|
page readonly
|
|
|
|
29AAB6E2000
|
unkown
|
page read and write
|
|
|
|
7FF4ED704000
|
unkown
|
page readonly
|
|
|
|
7FF593B8D000
|
unkown
|
page readonly
|
|
|
|
7FF5DDACA000
|
unkown
|
page readonly
|
|
|
|
7FF4ED30D000
|
unkown
|
page readonly
|
|
|
|
1EDC87F4000
|
unkown
|
page read and write
|
|
|
|
1EDC8960000
|
unkown
|
page read and write
|
|
|
|
7FF4F95FD000
|
unkown
|
page readonly
|
|
|
|
826458C000
|
unkown
|
page read and write
|
|
|
|
1FCD3665000
|
unkown
|
page read and write
|
|
|
|
7FF55DC7F000
|
unkown
|
page readonly
|
|
|
|
7FF50C2CE000
|
unkown
|
page readonly
|
|
|
|
7FF5378E3000
|
unkown
|
page readonly
|
|
|
|
1EDC3190000
|
unkown
|
page readonly
|
|
|
|
23D2D0DD000
|
unkown
|
page read and write
|
|
|
|
7FF50BB18000
|
unkown
|
page readonly
|
|
|
|
7FF53837D000
|
unkown
|
page readonly
|
|
|
|
B57EC7E000
|
unkown
|
page read and write
|
|
|
|
2ADF9470000
|
heap private
|
page read and write
|
|
|
|
7FF50C117000
|
unkown
|
page readonly
|
|
|
|
29AABF12000
|
unkown
|
page read and write
|
|
|
|
1EDC3A00000
|
unkown
|
page read and write
|
|
|
|
7FF50CB1C000
|
unkown
|
page readonly
|
|
|
|
7FF50C1B8000
|
unkown
|
page readonly
|
|
|
|
7FF53805F000
|
unkown
|
page readonly
|
|
|
|
1FCD366C000
|
unkown
|
page read and write
|
|
|
|
7FF551D4D000
|
unkown
|
page readonly
|
|
|
|
AC689FB000
|
unkown
|
page read and write
|
|
|
|
1EDC8960000
|
unkown
|
page read and write
|
|
|
|
20A8AA6C000
|
unkown
|
page read and write
|
|
|
|
1EDC3B59000
|
unkown
|
page read and write
|
|
|
|
7FF55D72F000
|
unkown
|
page readonly
|
|
|
|
2ADF95C0000
|
unkown
|
page readonly
|
|
|
|
2ADF9602000
|
unkown
|
page read and write
|
|
|
|
1EDC8ABB000
|
unkown
|
page read and write
|
|
|
|
2ADF9640000
|
unkown
|
page read and write
|
|
|
|
20A8AA13000
|
unkown
|
page read and write
|
|
|
|
23D2CFF0000
|
unkown
|
page read and write
|
|
|
|
1F8F7255000
|
unkown
|
page read and write
|
|
|
|
7FF53F06E000
|
unkown
|
page readonly
|
|
|
|
7FF59AAE8000
|
unkown
|
page readonly
|
|
|
|
7FF4F9465000
|
unkown
|
page readonly
|
|
|
|
1E8537A0000
|
unkown
|
page readonly
|
|
|
|
FB9477F000
|
unkown
|
page read and write
|
|
|
|
21252C50000
|
unkown
|
page read and write
|
|
|
|
7FF5381C1000
|
unkown
|
page readonly
|
|
|
|
7FF53F27B000
|
unkown
|
page readonly
|
|
|
|
29AAB6CC000
|
unkown
|
page read and write
|
|
|
|
1EDC3B18000
|
unkown
|
page read and write
|
|
|
|
29AAB689000
|
unkown
|
page read and write
|
|
|
|
12AF16C0000
|
heap private
|
page read and write
|
|
|
|
C78E67F000
|
unkown
|
page read and write
|
|
|
|
7FF50BE84000
|
unkown
|
page readonly
|
|
|
|
12AF1902000
|
unkown
|
page read and write
|
|
|
|
7FF551CD3000
|
unkown
|
page readonly
|
|
|
|
7FF53849E000
|
unkown
|
page readonly
|
|
|
|
1EDC8A00000
|
unkown
|
page read and write
|
|
|
|
1F8F7271000
|
unkown
|
page read and write
|
|
|
|
18BA0BA0000
|
unkown
|
page readonly
|
|
|
|
DDB2C7F000
|
unkown
|
page read and write
|
|
|
|
7FF551CA9000
|
unkown
|
page readonly
|
|
|
|
1E851F19000
|
heap default
|
page read and write
|
|
|
|
7FF5DDB56000
|
unkown
|
page readonly
|
|
|
|
7FF53F1B5000
|
unkown
|
page readonly
|
|
|
|
7FF53E92C000
|
unkown
|
page readonly
|
|
|
|
1EDC88A8000
|
unkown
|
page read and write
|
|
|
|
7FF50C7F2000
|
unkown
|
page readonly
|
|
|
|
7FF59A5F3000
|
unkown
|
page readonly
|
|
|
|
2ADFA000000
|
unkown
|
page readonly
|
|
|
|
7FF4ED683000
|
unkown
|
page readonly
|
|
|
|
7FF551C1D000
|
unkown
|
page readonly
|
|
|
|
DDB2A7E000
|
unkown
|
page read and write
|
|
|
|
1EDC8800000
|
unkown
|
page read and write
|
|
|
|
1EDC39D0000
|
unkown
|
page readonly
|
|
|
|
7FF50C2DF000
|
unkown
|
page readonly
|
|
|
|
7FF4ED71F000
|
unkown
|
page readonly
|
|
|
|
23D2CF70000
|
unkown
|
page read and write
|
|
|
|
7FF55D7DA000
|
unkown
|
page readonly
|
|
|
|
2192DFE0000
|
unkown
|
page readonly
|
|
|
|
23D2D0FC000
|
unkown
|
page read and write
|
|
|
|
1EDC88E0000
|
unkown
|
page read and write
|
|
|
|
AC67EFE000
|
unkown
|
page read and write
|
|
|
|
1EDC8C63000
|
unkown
|
page write copy
|
|
|
|
23D2D119000
|
unkown
|
page read and write
|
|
|
|
1EDC8A83000
|
unkown
|
page read and write
|
|
|
|
7FF5DDE3F000
|
unkown
|
page readonly
|
|
|
|
7FF538413000
|
unkown
|
page readonly
|
|
|
|
7FF5DD971000
|
unkown
|
page readonly
|
|
|
|
1EDC41E0000
|
unkown
|
page read and write
|
|
|
|
F7EF92E000
|
unkown
|
page read and write
|
|
|
|
7FF4F958A000
|
unkown
|
page readonly
|
|
|
|
7FF50C7DF000
|
unkown
|
page readonly
|
|
|
|
29AABE02000
|
unkown
|
page read and write
|
|
|
|
7FF4F969D000
|
unkown
|
page readonly
|
|
|
|
7FF59AA3C000
|
unkown
|
page readonly
|
|
|
|
7FF55DB8C000
|
unkown
|
page readonly
|
|
|
|
7FF53F12D000
|
unkown
|
page readonly
|
|
|
|
21252C25000
|
unkown
|
page read and write
|
|
|
|
82649FD000
|
unkown
|
page read and write
|
|
|
|
18BA0C6B000
|
unkown
|
page read and write
|
|
|
|
21253260000
|
unkown
|
page readonly
|
|
|
|
FB947F9000
|
unkown
|
page read and write
|
|
|
|
1FCD366A000
|
unkown
|
page read and write
|
|
|
|
1EDC8A3E000
|
unkown
|
page read and write
|
|
|
|
1FCD3700000
|
unkown
|
page read and write
|
|
|
|
7FF5381F3000
|
unkown
|
page readonly
|
|
|
|
7FF537B7B000
|
unkown
|
page readonly
|
|
|
|
23D30010000
|
unkown
|
page read and write
|
|
|
|
20A8AA6C000
|
unkown
|
page read and write
|
|
|
|
23D2CFE0000
|
unkown
|
page readonly
|
|
|
|
1EDC3256000
|
unkown
|
page read and write
|
|
|
|
7FF53F246000
|
unkown
|
page readonly
|
|
|
|
4F003DF000
|
unkown
|
page read and write
|
|
|
|
7FF59AA23000
|
unkown
|
page readonly
|
|
|
|
1EDC8AB3000
|
unkown
|
page read and write
|
|
|
|
C78DDFE000
|
unkown
|
page read and write
|
|
|
|
1EDC8960000
|
unkown
|
page readonly
|
|
|
|
1E851E90000
|
unkown
|
page readonly
|
|
|
|
2ADF9E02000
|
unkown
|
page read and write
|
|
|
|
1EDC8970000
|
unkown
|
page readonly
|
|
|
|
7FF50C1D7000
|
unkown
|
page readonly
|
|
|
|
7FF50CBFB000
|
unkown
|
page readonly
|
|
|
|
7FF59AAEF000
|
unkown
|
page readonly
|
|
|
|
1EDC31A0000
|
unkown
|
page read and write
|
|
|
|
7FF5DD946000
|
unkown
|
page readonly
|
|
|
|
7FF5B16FA000
|
unkown
|
page readonly
|
|
|
|
7FF4ED316000
|
unkown
|
page readonly
|
|
|
|
7FF50BEC2000
|
unkown
|
page readonly
|
|
|
|
7FF5DDB8D000
|
unkown
|
page readonly
|
|
|
|
7FF53F26E000
|
unkown
|
page readonly
|
|
|
|
7FF4F9818000
|
unkown
|
page readonly
|
|
|
|
7FF538001000
|
unkown
|
page readonly
|
|
|
|
7FF5DD684000
|
unkown
|
page readonly
|
|
|
|
1F8F7308000
|
unkown
|
page read and write
|
|
|
|
7FF55DC4E000
|
unkown
|
page readonly
|
|
|
|
7FF59A9A4000
|
unkown
|
page readonly
|
|
|
|
7FF50CB53000
|
unkown
|
page readonly
|
|
|
|
8264A7E000
|
unkown
|
page read and write
|
|
|
|
23D2EE02000
|
unkown
|
page read and write
|
|
|
|
7FF55D4B8000
|
unkown
|
page readonly
|
|
|
|
7FF53F25D000
|
unkown
|
page readonly
|
|
|
|
B57EE7D000
|
unkown
|
page read and write
|
|
|
|
2ADF9800000
|
unkown
|
page readonly
|
|
|
|
7FF55DC46000
|
unkown
|
page readonly
|
|
|
|
7FF538283000
|
unkown
|
page readonly
|
|
|
|
7FF53EFA5000
|
unkown
|
page readonly
|
|
|
|
20A8AA6A000
|
unkown
|
page read and write
|
|
|
|
7FF593CB0000
|
unkown
|
page readonly
|
|
|
|
C78E47E000
|
unkown
|
page read and write
|
|
|
|
21252AB0000
|
heap private
|
page read and write
|
|
|
|
DD36AFF000
|
unkown
|
page read and write
|
|
|
|
7FF4ED638000
|
unkown
|
page readonly
|
|
|
|
7FF4F98BF000
|
unkown
|
page readonly
|
|
|
|
7FF5B16C8000
|
unkown
|
page readonly
|
|
|
|
7FF59A97F000
|
unkown
|
page readonly
|
|
|
|
F7EFE7B000
|
unkown
|
page read and write
|
|
|
|
B57ED7F000
|
unkown
|
page read and write
|
|
|
|
23D2CF80000
|
unkown
|
page readonly
|
|
|
|
12AF3200000
|
unkown
|
page read and write
|
|
|
|
7FF53EE6A000
|
unkown
|
page readonly
|
|
|
|
7FF551C27000
|
unkown
|
page readonly
|
|
|
|
7FF593CC0000
|
unkown
|
page readonly
|
|
|
|
DDB253B000
|
unkown
|
page read and write
|
|
|
|
7FF50C2DD000
|
unkown
|
page readonly
|
|
|
|
29AAB629000
|
unkown
|
page read and write
|
|
|
|
1EDC4100000
|
unkown
|
page read and write
|
|
|
|
1F8F724F000
|
unkown
|
page read and write
|
|
|
|
7FF50CA1D000
|
unkown
|
page readonly
|
|
|
|
1EDC3302000
|
unkown
|
page read and write
|
|
|
|
18BA0C13000
|
unkown
|
page read and write
|
|
|
|
7FF4F97E2000
|
unkown
|
page readonly
|
|
|
|
2ADF95D0000
|
unkown
|
page read and write
|
|
|
|
18BA0C3B000
|
unkown
|
page read and write
|
|
|
|
7FF538435000
|
unkown
|
page readonly
|
|
|
|
DDB2F7F000
|
unkown
|
page read and write
|
|
|
|
1EDC88B0000
|
unkown
|
page read and write
|
|
|
|
7FF50CB17000
|
unkown
|
page readonly
|
|
|
|
7FF55193F000
|
unkown
|
page readonly
|
|
|
|
1FCD3667000
|
unkown
|
page read and write
|
|
|
|
7FF551A77000
|
unkown
|
page readonly
|
|
|
|
1E851EE0000
|
heap default
|
page read and write
|
|
|
|
1FCD366A000
|
unkown
|
page read and write
|
|
|
|
7FF5B16E5000
|
unkown
|
page readonly
|
|
|
|
7FF50C1EC000
|
unkown
|
page readonly
|
|
|
|
2ADF9713000
|
unkown
|
page read and write
|
|
|
|
2192E670000
|
unkown
|
page readonly
|
|
|
|
1EDC8C6C000
|
unkown
|
page readonly
|
|
|
|
7FF50C2AB000
|
unkown
|
page readonly
|
|
|
|
7FF50C057000
|
unkown
|
page readonly
|
|
|
|
7FF50C20D000
|
unkown
|
page readonly
|
|
|
|
2ADF9628000
|
unkown
|
page read and write
|
|
|
|
7FF5B17AF000
|
unkown
|
page readonly
|
|
|
|
7FF5381D7000
|
unkown
|
page readonly
|
|
|
|
1F8F7213000
|
unkown
|
page read and write
|
|
|
|
20A8AA55000
|
unkown
|
page read and write
|
|
|
|
1EDC8AB0000
|
unkown
|
page read and write
|
|
|
|
1FCD3668000
|
unkown
|
page read and write
|
|
|
|
1EDC8A86000
|
unkown
|
page read and write
|
|
|
|
23D2CFF0000
|
unkown
|
page read and write
|
|
|
|
7FF53F27F000
|
unkown
|
page readonly
|
|
|
|
DD36A7B000
|
unkown
|
page read and write
|
|
|
|
1EDC326F000
|
unkown
|
page read and write
|
|
|
|
1FCD3800000
|
unkown
|
page readonly
|
|
|
|
7FF5B179B000
|
unkown
|
page readonly
|
|
|
|
2192ED40000
|
unkown
|
page readonly
|
|
|
|
7FF50C1CC000
|
unkown
|
page readonly
|
|
|
|
7FF4F97EC000
|
unkown
|
page readonly
|
|
|
|
7FF5B1794000
|
unkown
|
page readonly
|
|
|
|
DDB2B7D000
|
unkown
|
page read and write
|
|
|
|
7FF5DDDF8000
|
unkown
|
page readonly
|
|
|
|
7FF5DDCF7000
|
unkown
|
page readonly
|
|
|
|
1EDC8A13000
|
unkown
|
page read and write
|
|
|
|
7FF55DB62000
|
unkown
|
page readonly
|
|
|
|
1E609FC000
|
unkown
|
page read and write
|
|
|
|
7FF59AB0D000
|
unkown
|
page readonly
|
|
|
|
12AF1A00000
|
unkown
|
page write copy
|
|
|
|
7FF5384CD000
|
unkown
|
page readonly
|
|
|
|
21252C29000
|
unkown
|
page read and write
|
|
|
|
B57F17E000
|
unkown
|
page read and write
|
|
|
|
7FF593CD3000
|
unkown
|
page readonly
|
|
|
|
7FF4F9839000
|
unkown
|
page readonly
|
|
|
|
1EDC8A61000
|
unkown
|
page read and write
|
|
|
|
2192E102000
|
unkown
|
page read and write
|
|
|
|
23D2D102000
|
unkown
|
page read and write
|
|
|
|
23D2D03F000
|
unkown
|
page read and write
|
|
|
|
7FF5B1768000
|
unkown
|
page readonly
|
|
|
|
29AAB6C9000
|
unkown
|
page read and write
|
|
|
|
1EDC86C0000
|
unkown
|
page read and write
|
|
|
|
1EDC3291000
|
unkown
|
page read and write
|
|
|
|
212532A0000
|
unkown
|
page read and write
|
|
|
|
7FF53849B000
|
unkown
|
page readonly
|
|
|
|
18BA0C3D000
|
unkown
|
page read and write
|
|
|
|
4F0077E000
|
unkown
|
page read and write
|
|
|
|
7FF50C935000
|
unkown
|
page readonly
|
|
|
|
7FF538496000
|
unkown
|
page readonly
|
|
|
|
7FF593DDE000
|
unkown
|
page readonly
|
|
|
|
FB94979000
|
unkown
|
page read and write
|
|
|
|
1FCD35D0000
|
unkown
|
page readonly
|
|
|
|
1EDC3254000
|
unkown
|
page read and write
|
|
|
|
23D2D0C4000
|
unkown
|
page read and write
|
|
|
|
7FF50CB49000
|
unkown
|
page readonly
|
|
|
|
7FF5383A8000
|
unkown
|
page readonly
|
|
|
|
2ADF94D0000
|
heap default
|
page read and write
|
|
|
|
2192E013000
|
unkown
|
page read and write
|
|
|
|
1EDC87D0000
|
unkown
|
page read and write
|
|
|
|
7FF593A98000
|
unkown
|
page readonly
|
|
|
|
1EDC32BA000
|
unkown
|
page read and write
|
|
|
|
7FF53F24B000
|
unkown
|
page readonly
|
|
|
|
7FF50CC0B000
|
unkown
|
page readonly
|
|
|
|
7FF50C987000
|
unkown
|
page readonly
|
|
|
|
7FF4F98FF000
|
unkown
|
page readonly
|
|
|
|
7FF50CAC0000
|
unkown
|
page readonly
|
|
|
|
1EDC88C7000
|
unkown
|
page write copy
|
|
|
|
1FCD366A000
|
unkown
|
page read and write
|
|
|
|
2192E067000
|
unkown
|
page read and write
|
|
|
|
23D2D0F6000
|
unkown
|
page read and write
|
|
|
|
FB9430F000
|
unkown
|
page read and write
|
|
|
|
1EDC8910000
|
unkown
|
page read and write
|
|
|
|
1EDC323F000
|
unkown
|
page read and write
|
|
|
|
1000FE000
|
unkown
|
page read and write
|
|
|
|
1EDC3D81000
|
unkown
|
page read and write
|
|
|
|
AC684FB000
|
unkown
|
page read and write
|
|
|
|
7FF4F96CF000
|
unkown
|
page readonly
|
|
|
|
7FF5B16F3000
|
unkown
|
page readonly
|
|
|
|
1E851E70000
|
unkown
|
page read and write
|
|
|
|
1EDC3B02000
|
unkown
|
page read and write
|
|
|
|
AC67FF8000
|
unkown
|
page read and write
|
|
|
|
7FF4F9865000
|
unkown
|
page readonly
|
|
|
|
7FF5DDC0E000
|
unkown
|
page readonly
|
|
|
|
21252E00000
|
unkown
|
page readonly
|
|
|
|
29AAB713000
|
unkown
|
page read and write
|
|
|
|
7FF5378D9000
|
unkown
|
page readonly
|
|
|
|
7FF4F9835000
|
unkown
|
page readonly
|
|
|
|
7FF593CFD000
|
unkown
|
page readonly
|
|
|
|
7FF50BFDD000
|
unkown
|
page readonly
|
|
|
|
7FF50CAC7000
|
unkown
|
page readonly
|
|
|
|
7FF53F27F000
|
unkown
|
page readonly
|
|
|
|
7FF59AA7A000
|
unkown
|
page readonly
|
|
|
|
7FF4ED6E6000
|
unkown
|
page readonly
|
|
|
|
18BA0C47000
|
unkown
|
page read and write
|
|
|
|
1FCD3665000
|
unkown
|
page read and write
|
|
|
|
1E851D20000
|
heap private
|
page read and write
|
|
|
|
1EDC8930000
|
unkown
|
page read and write
|
|
|
|
1EDC88D0000
|
unkown
|
page read and write
|
|
|
|
29AABBA0000
|
unkown
|
page readonly
|
|
|
|
18BA0C7E000
|
unkown
|
page read and write
|
|
|
|
C78DF7E000
|
unkown
|
page read and write
|
|
|
|
1EDC3213000
|
unkown
|
page read and write
|
|
|
|
7FF55D7DE000
|
unkown
|
page readonly
|
|
|
|
7FF53829C000
|
unkown
|
page readonly
|
|
|
|
23D2D013000
|
unkown
|
page read and write
|
|
|
|
20A8AA3F000
|
unkown
|
page read and write
|
|
|
|
C78E07E000
|
unkown
|
page read and write
|
|
|
|
1EDC88A0000
|
unkown
|
page read and write
|
|
|
|
7FF538264000
|
unkown
|
page readonly
|
|
|
|
1E852370000
|
unkown
|
page readonly
|
|
|
|
1E607F9000
|
unkown
|
page read and write
|
|
|
|
7FF4ED659000
|
unkown
|
page readonly
|
|
|
|
7FF4F96BC000
|
unkown
|
page readonly
|
|
|
|
7FF5DDCED000
|
unkown
|
page readonly
|
|
|
|
1FCD3667000
|
unkown
|
page read and write
|
|
|
|
18BA0C02000
|
unkown
|
page read and write
|
|
|
|
18BA0C49000
|
unkown
|
page read and write
|
|
|
|
7FF5383A0000
|
unkown
|
page readonly
|
|
|
|
7FF4ED6D8000
|
unkown
|
page readonly
|
|
|
|
AC687FF000
|
unkown
|
page read and write
|
|
|
|
7FF593DED000
|
unkown
|
page readonly
|
|
|
|
1F8F7229000
|
unkown
|
page read and write
|
|
|
|
7FF4ED64D000
|
unkown
|
page readonly
|
|
|
|
7FF4F98B8000
|
unkown
|
page readonly
|
|
|
|
7FF551C9D000
|
unkown
|
page readonly
|
|
|
|
7FF4F9843000
|
unkown
|
page readonly
|
|
|
|
29AAC000000
|
unkown
|
page readonly
|
|
|
|
23D2EF00000
|
unkown
|
page read and write
|
|
|
|
7FF55DC7F000
|
unkown
|
page readonly
|
|
|
|
7FF5B176F000
|
unkown
|
page readonly
|
|
|
|
7FF59AA5D000
|
unkown
|
page readonly
|
|
|
|
7FF53F190000
|
unkown
|
page readonly
|
|
|
|
7FF5DDD4C000
|
unkown
|
page readonly
|
|
|
|
7FF4ECDCB000
|
unkown
|
page readonly
|
|
|
|
20A8A960000
|
unkown
|
page write copy
|
|
|
|
1EDC87F0000
|
unkown
|
page read and write
|
|
|
|
7FF50CBED000
|
unkown
|
page readonly
|
|
|
|
7FF5DDE24000
|
unkown
|
page readonly
|
|
|
|
7FF5DDDFF000
|
unkown
|
page readonly
|
|
|
|
C78D97B000
|
unkown
|
page read and write
|
|
|
|
7FF593D55000
|
unkown
|
page readonly
|
|
|
|
7FF50C07D000
|
unkown
|
page readonly
|
|
|
|
7FF551D54000
|
unkown
|
page readonly
|
|
|
|
7FF5B17AB000
|
unkown
|
page readonly
|
|
|
|
12AF1720000
|
heap default
|
page read and write
|
|
|
|
7FF538387000
|
unkown
|
page readonly
|
|
|
|
20A8AC00000
|
unkown
|
page readonly
|
|
|
|
7FF4F98E4000
|
unkown
|
page readonly
|
|
|
|
AC688FA000
|
unkown
|
page read and write
|
|
|
|
2192DFD0000
|
unkown
|
page readonly
|
|
|
|
18BA0C44000
|
unkown
|
page read and write
|
|
|
|
1F8F723C000
|
unkown
|
page read and write
|
|
|
|
7FF4ED62C000
|
unkown
|
page readonly
|
|
|
|
18BA0C84000
|
unkown
|
page read and write
|
|
|
|
FB9487A000
|
unkown
|
page read and write
|
|
|
|
7FF551D3B000
|
unkown
|
page readonly
|
|
|
|
1EDC8810000
|
unkown
|
page read and write
|
|
|
|
18BA0C5C000
|
unkown
|
page read and write
|
|
|
|
21253270000
|
unkown
|
page read and write
|
|
|
|
DDB307F000
|
unkown
|
page read and write
|
|
|
|
20A8A950000
|
heap default
|
page read and write
|
|
|
|
7FF55DAF4000
|
unkown
|
page readonly
|
|
|
|
7FF538220000
|
unkown
|
page readonly
|
|
|
|
2ADF95B0000
|
unkown
|
page readonly
|
|
|
|
7FF4F9607000
|
unkown
|
page readonly
|
|
|
|
7FF5384CF000
|
unkown
|
page readonly
|
|
|
|
23D2CFF0000
|
unkown
|
page read and write
|
|
|
|
1E851D25000
|
heap private
|
page read and write
|
|
|
|
7FF50C1B4000
|
unkown
|
page readonly
|
|
|
|
F7EF8AB000
|
unkown
|
page read and write
|
|
|
|
8264AFE000
|
unkown
|
page read and write
|
|
|
|
2192E05B000
|
unkown
|
page read and write
|
|
|
|
7FF551D2F000
|
unkown
|
page readonly
|
|
|
|
7FF538050000
|
unkown
|
page readonly
|
|
|
|
29AABCB0000
|
unkown
|
page readonly
|
|
|
|
7FF593DB6000
|
unkown
|
page readonly
|
|
|
|
7FF593D25000
|
unkown
|
page readonly
|
|
|
|
7FF538380000
|
unkown
|
page readonly
|
|
|
|
23D2F000000
|
unkown
|
page readonly
|
|
|
|
7FF59A7E3000
|
unkown
|
page readonly
|
|
|
|
7FF5DDE2E000
|
unkown
|
page readonly
|
|
|
|
7FF55DB73000
|
unkown
|
page readonly
|
|
|
|
7FF55DC5D000
|
unkown
|
page readonly
|
|
|
|
7FF5DDCF0000
|
unkown
|
page readonly
|
|
|
|
18BA0C45000
|
unkown
|
page read and write
|
|
|
|
7FF59AA65000
|
unkown
|
page readonly
|
|
|
|
7FF5381F1000
|
unkown
|
page readonly
|
|
|
|
7FF55DC7D000
|
unkown
|
page readonly
|
|
|
|
1EDC3B00000
|
unkown
|
page read and write
|
|
|
|
1FCD3713000
|
unkown
|
page read and write
|
|
|
|
7FF5384B4000
|
unkown
|
page readonly
|
|
|
|
7FF5B177B000
|
unkown
|
page readonly
|
|
|
|
7FF50CBF4000
|
unkown
|
page readonly
|
|
|
|
1FCD366A000
|
unkown
|
page read and write
|
|
|
|
1F8F7400000
|
unkown
|
page readonly
|
|
|
|
B57EA7E000
|
unkown
|
page read and write
|
|
|
|
23D2D0E2000
|
unkown
|
page read and write
|
|
|
|
2192E590000
|
unkown
|
page readonly
|
|
|
|
7FF59A943000
|
unkown
|
page readonly
|
|
|
|
AC681F9000
|
unkown
|
page read and write
|
|
|
|
7FF4ED5CA000
|
unkown
|
page readonly
|
|
|
|
2ADF94E0000
|
unkown
|
page readonly
|
|
|
|
2ADF9669000
|
unkown
|
page read and write
|
|
|
|
EBECA7B000
|
unkown
|
page read and write
|
|
|
|
1FCD3600000
|
unkown
|
page read and write
|
|
|
|
7FF4F98DD000
|
unkown
|
page readonly
|
|
|
|
1EDC8C10000
|
unkown
|
page readonly
|
|
|
|
FB946F9000
|
unkown
|
page read and write
|
|
|
|
7FF53804A000
|
unkown
|
page readonly
|
|
|
|
7FF537F7F000
|
unkown
|
page readonly
|
|
|
|
7FF5DDD2C000
|
unkown
|
page readonly
|
|
|
|
AC6877F000
|
unkown
|
page read and write
|
|
|
|
20A8C470000
|
unkown
|
page read and write
|
|
|
|
7FF593CE7000
|
unkown
|
page readonly
|
|
|
|
29AAB6BB000
|
unkown
|
page read and write
|
|
|
|
1007FF000
|
unkown
|
page read and write
|
|
|
|
7FF50CB20000
|
unkown
|
page readonly
|
|
|
|
DDB2D7D000
|
unkown
|
page read and write
|
|
|
|
7FF4F9692000
|
unkown
|
page readonly
|
|
|
|
1EDC88C4000
|
unkown
|
page write copy
|
|
|
|
7FF4F98EE000
|
unkown
|
page readonly
|
|
|
|
12AF1800000
|
unkown
|
page read and write
|
|
|
|
7FF55194D000
|
unkown
|
page readonly
|
|
|
|
7FF5B1776000
|
unkown
|
page readonly
|
|
|
|
29AAB800000
|
unkown
|
page readonly
|
|
|
|
1E851EEB000
|
heap default
|
page read and write
|
|
|
|
7FF4F984A000
|
unkown
|
page readonly
|
|
|
|
7FF59AA69000
|
unkown
|
page readonly
|
|
|
|
7FF538390000
|
unkown
|
page readonly
|
|
|
|
EBECC7F000
|
unkown
|
page read and write
|
|
|
|
7FF4F98FF000
|
unkown
|
page readonly
|
|
|
|
10017E000
|
unkown
|
page read and write
|
|
|
|
7FF4F97F7000
|
unkown
|
page readonly
|
|
|
|
1FCD5170000
|
unkown
|
page readonly
|
|
|
|
1E6077E000
|
unkown
|
page read and write
|
|
|
|
7FF538488000
|
unkown
|
page readonly
|
|
|
|
7FF4ED6F0000
|
unkown
|
page readonly
|
|
|
|
2192E041000
|
unkown
|
page read and write
|
|
|
|
7FF551D5E000
|
unkown
|
page readonly
|
|
|
|
2ADF9669000
|
unkown
|
page read and write
|
|
|
|
7FF50C18D000
|
unkown
|
page readonly
|
|
|
|
7FF53F26B000
|
unkown
|
page readonly
|
|
|
|
7FF50CB73000
|
unkown
|
page readonly
|
|
|
|
7FF53EFF7000
|
unkown
|
page readonly
|
|
|
|
21253402000
|
unkown
|
page read and write
|
|
|
|
7FF50C22A000
|
unkown
|
page readonly
|
|
|
|
212532B0000
|
unkown
|
page read and write
|
|
|
|
7FF5383B2000
|
unkown
|
page readonly
|
|
|
|
1EDC39A0000
|
unkown
|
page readonly
|
|
|
|
18BA0C46000
|
unkown
|
page read and write
|
|
|
|
23D2EF86000
|
unkown
|
page read and write
|
|
|
|
2192E000000
|
unkown
|
page read and write
|
|
|
|
7FF53EF87000
|
unkown
|
page readonly
|
|
|
|
23D2D055000
|
unkown
|
page read and write
|
|
|
|
C78E57D000
|
unkown
|
page read and write
|
|
|
|
7FF53F137000
|
unkown
|
page readonly
|
|
|
|
7FF551D6F000
|
unkown
|
page readonly
|
|
|
|
7FF50C90D000
|
unkown
|
page readonly
|
|
|
|
1EDC8630000
|
unkown
|
page read and write
|
|
|
|
1EDC8AB4000
|
unkown
|
page read and write
|
|
|
|
1EDC32FD000
|
unkown
|
page read and write
|
|
|
|
7FF53F130000
|
unkown
|
page readonly
|
|
|
|
20A8C570000
|
unkown
|
page readonly
|
|
|
|
FB9428B000
|
unkown
|
page read and write
|
|
|
|
21252C02000
|
unkown
|
page read and write
|
|
|
|
18BA0C00000
|
unkown
|
page read and write
|
|
|
|
2192DFF0000
|
unkown
|
page read and write
|
|
|
|
7FF5381CD000
|
unkown
|
page readonly
|
|
|
|
7FF55DBC3000
|
unkown
|
page readonly
|
|
|
|
7FF50BFE7000
|
unkown
|
page readonly
|
|
|
|
18BA0C5F000
|
unkown
|
page read and write
|
|
|
|
2ADF9669000
|
unkown
|
page read and write
|
|
|
|
7FF593D1D000
|
unkown
|
page readonly
|
|
|
|
1E6097A000
|
unkown
|
page read and write
|
|
|
|
12AF1813000
|
unkown
|
page read and write
|
|
|
|
7FF537FD6000
|
unkown
|
page readonly
|
|
|
|
7FF50C2DF000
|
unkown
|
page readonly
|
|
|
|
7FF59A8F3000
|
unkown
|
page readonly
|
|
|
|
29AABC80000
|
unkown
|
page read and write
|
|
|
|
C78E27B000
|
unkown
|
page read and write
|
|
|
|
7FF4F980C000
|
unkown
|
page readonly
|
|
|
|
23D2EF46000
|
unkown
|
page read and write
|
|
|
|
18BA0C7A000
|
unkown
|
page read and write
|
|
|
|
7FF50CB28000
|
unkown
|
page readonly
|
|
|
|
1EDC42C0000
|
unkown
|
page readonly
|
|
|
|
1FCD3613000
|
unkown
|
page read and write
|
|
|
|
7FF50BDC5000
|
unkown
|
page readonly
|
|
|
|
7FF55DBCA000
|
unkown
|
page readonly
|
|
|
|
FB9467A000
|
unkown
|
page read and write
|
|
|
|
4F0035E000
|
unkown
|
page read and write
|
|
|
|
1E851EA0000
|
unkown
|
page readonly
|
|
|
|
DD36BF9000
|
unkown
|
page read and write
|
|
|
|
1F8F7180000
|
heap private
|
page read and write
|
|
|
|
1EDC328B000
|
unkown
|
page read and write
|
|
|
|
1FCD366A000
|
unkown
|
page read and write
|
|
|
|
AC682FF000
|
unkown
|
page read and write
|
|
|
|
7FF5383A4000
|
unkown
|
page readonly
|
|
|
|
18BA0C4B000
|
unkown
|
page read and write
|
|
|
|
23D2D000000
|
unkown
|
page read and write
|
|
|
|
7FF5DDE3F000
|
unkown
|
page readonly
|
|
|
|
7FF59AAF6000
|
unkown
|
page readonly
|
|
|
|
7FF50C298000
|
unkown
|
page readonly
|
|
|
|
7FF55DA12000
|
unkown
|
page readonly
|
|
|
|
7FF593DBB000
|
unkown
|
page readonly
|
|
|
|
7FF4F9808000
|
unkown
|
page readonly
|
|
|
|
7FF5B16BC000
|
unkown
|
page readonly
|
|
|
|
7FF55DB54000
|
unkown
|
page readonly
|
|
|
|
18BA0BB0000
|
unkown
|
page read and write
|
|
|
|
7FF538035000
|
unkown
|
page readonly
|
|
|
|
AC680FA000
|
unkown
|
page read and write
|
|
|
|
1EDC4620000
|
unkown
|
page read and write
|
|
|
|
1EDC3860000
|
unkown
|
page readonly
|
|
|
|
18BA0C2D000
|
unkown
|
page read and write
|
|
|
|
7FF551D5B000
|
unkown
|
page readonly
|
|
|
|
F7F017F000
|
unkown
|
page read and write
|
|
|
|
1EDC8C60000
|
unkown
|
page write copy
|
|
|
|
2192E802000
|
unkown
|
page read and write
|
|
|
|
826497E000
|
unkown
|
page read and write
|
|
|
|
7FF5DDD22000
|
unkown
|
page readonly
|
|
|
|
20A8AB00000
|
unkown
|
page read and write
|
|
|
|
1EDC8980000
|
unkown
|
page readonly
|
|
|
|
1EDC8C30000
|
unkown
|
page readonly
|
|
|
|
7FF5384AD000
|
unkown
|
page readonly
|
|
|
|
7FF53F1C3000
|
unkown
|
page readonly
|
|
|
|
23D2D078000
|
unkown
|
page read and write
|
|
|
|
DD36D7E000
|
unkown
|
page read and write
|
|
|
|
7FF59AA95000
|
unkown
|
page readonly
|
|
|
|
7FF593DCD000
|
unkown
|
page readonly
|
|
|
|
18BA0A50000
|
heap private
|
page read and write
|
|
|
|
7FF55DC64000
|
unkown
|
page readonly
|
|
|
|
7FF5383C7000
|
unkown
|
page readonly
|
|
|
|
7FF5DDD6D000
|
unkown
|
page readonly
|
|
|
|
1E608FE000
|
unkown
|
page read and write
|
|
|
|
29AAB613000
|
unkown
|
page read and write
|
|
|
|
1EDC87D8000
|
unkown
|
page read and write
|
|
|
|
18BA0AC0000
|
unkown
|
page readonly
|
|
|
|
7FF5B17AF000
|
unkown
|
page readonly
|
|
|
|
1EDC4601000
|
unkown
|
page read and write
|
|
|
|
C78D9FE000
|
unkown
|
page read and write
|
|
|
|
2ADF9613000
|
unkown
|
page read and write
|
|
|
|
AC68AFD000
|
unkown
|
page read and write
|
|
|
|
23D2CE10000
|
unkown
|
page readonly
|
|
|
|
7FF593DA8000
|
unkown
|
page readonly
|
|
|
|
7FF50CC0F000
|
unkown
|
page readonly
|
|
|
|
7FF4ED403000
|
unkown
|
page readonly
|
|
|
|
7FF50CBE0000
|
unkown
|
page readonly
|
|
|
|
21252C00000
|
unkown
|
page read and write
|
|
|
|
7FF5B0B99000
|
unkown
|
page readonly
|
|
|
|
7FF5B16A7000
|
unkown
|
page readonly
|
|
|
|
12AF1C50000
|
unkown
|
page readonly
|
|
There are 1013 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://yolotats.com/Borrower/Borrower's-details.shtml
|
|