Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
State Settlement Copy.html
|
HTML document, ASCII text, with very long lines, with no line terminators
|
initial sample
|
 |
|
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506
|
Microsoft Cabinet archive data, 61020 bytes, 1 file
|
dropped
|
 |
|
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\0f170acc-b214-4174-92e9-a021b6b88219.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\41cd8e1e-7801-4ad5-8bb6-d3a1a34785bb.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\524ea4ea-4207-493d-8413-391c1f1f839e.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\5499bc3a-26f9-42e2-84df-6d469c3b9a74.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\559bd103-ccc6-4aa6-8a21-42f3b274c751.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\62be780b-3d71-4f60-8729-6b3365eca50f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\6b25708d-04ba-42dd-98f7-8f2dc3a9a1b4.tmp
|
SysEx File -
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\832d61d9-f294-4c97-8c89-fd392eb1d0d5.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\94503948-46da-416a-92e3-236774035694.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\0c0cd476-7f88-4d8e-9f11-97b4dbacdd0c.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\0dea1217-f375-419e-a9f0-d7af70e84078.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2c6c9412-6857-4b0f-9d26-bdbb4fd08e3c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3b6fa8f7-1953-4b80-9832-d874ab92b853.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\46e4a9bc-020d-4421-b5a3-beeb71672d73.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\48ef3984-b0f3-4584-a9c9-7e8dab33827f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\49e77ac5-e9b9-40f2-a5df-feae6319074f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5eb9bf0d-0dd0-4b93-9520-e33dcdb68c7d.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8d879590-a5dc-43a2-81ef-44d1e74cbfac.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9b24538b-5041-4d08-892a-f53da32dfef7.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.oldp (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.oldld (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabsic (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State35 (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State61 (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent Statemp (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesED (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesRo (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesTM (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferencesa (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferenceso (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\4e22a8c8-c42a-4fbe-a5b6-2f7e75ea3527.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
StateTM (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old.,
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\4b36cb26-fbc3-43ea-8d7a-8dc1df58ddd0.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.oldt
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.olds
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a55005c2-44bb-4dd7-b605-bf9447383684.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ad25244f-45cf-4496-a8e7-c10f12793027.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\bb7a29b8-8969-482a-ae5b-87fd5e1b8c7d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d4980a65-0edc-4214-bc85-56d54faff713.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT., (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f63197f0-ed1d-46a9-be0a-87b28121c3b5.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ff9768f9-45ea-456c-93ad-4b7a197e8973.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.oldt. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache.H (copy)
|
SysEx File -
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\27\9.28.0\Indexing in Progress
|
empty
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\27\scoped_dir5784_1298699013\Ruleset
Data
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\eb2e726b-369d-497a-a3ef-3584dcd6320d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\ff7f9a0e-a0e5-4310-a46b-9c8abd1c2b68.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\20a9d137-2880-4b94-9c78-c0202613edc8.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5778be87-6c16-4074-a139-72cfe6239bad.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5784_1028090650\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5784_142391203\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\dd143264-5e19-4b94-9224-c819ef78782a.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\dd55306c-a3c9-4de3-a1a9-769cfea0d70f.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\20a9d137-2880-4b94-9c78-c0202613edc8.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_542587135\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5784_628967864\dd55306c-a3c9-4de3-a1a9-769cfea0d70f.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
There are 215 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'C:\Users\user\Desktop\State
Settlement Copy.html'
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1636,2459575167211995088,13394836041496998709,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1696 /prefetch:8
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
file:///C:/Users/user/Desktop/State%20Settlement%20Copy.html
|
|
||
|
https://www.google.com
|
unknown
|
|
|
|
https://dns.google
|
unknown
|
|
|
|
https://ogs.google.com
|
unknown
|
|
|
|
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
|
|
|
https://mazdel.com/wp-content/off.php
|
unknown
|
|
|
|
https://t4.ftcdn.net
|
unknown
|
|
|
|
https://a.nel.cloudflare.com/report/v3?s=fQUltQsVT%2Bc6VlTjJQLGrl7%2FFRzekZfgWOIaxObRNZyrEGl2%2Fs5hk
|
unknown
|
|
|
|
https://accounts.google.com
|
unknown
|
|
|
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://www.google.com;
|
unknown
|
|
|
|
https://support.google.com/chromecast/answer/2998456
|
unknown
|
|
|
|
https://hangouts.google.com/
|
unknown
|
|
|
|
https://letsteachtheworld.org
|
unknown
|
|
|
|
https://cdn.mosoah.com
|
unknown
|
|
|
|
https://clients2.googleusercontent.com
|
unknown
|
|
|
|
https://apis.google.com
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/report-to/IdentityListAccountsHttp/external
|
unknown
|
|
|
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://www.google.com/
|
unknown
|
|
|
|
https://feedback.googleusercontent.com
|
unknown
|
|
|
|
https://clients2.google.com
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx
|
unknown
|
|
There are 13 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
accounts.google.com
|
216.58.205.77
|
|
|
|
letsteachtheworld.org
|
185.151.30.153
|
|
|
|
freepnglogos.com
|
176.9.17.111
|
|
|
|
temperfield.com
|
31.14.15.249
|
|
|
|
clients.l.google.com
|
216.58.212.174
|
|
|
|
cdn.mosoah.com
|
172.67.75.3
|
|
|
|
googlehosted.l.googleusercontent.com
|
216.58.208.129
|
|
|
|
www.kindpng.com
|
70.36.99.230
|
|
|
|
clients2.googleusercontent.com
|
unknown
|
|
|
|
clients2.google.com
|
unknown
|
|
|
|
t4.ftcdn.net
|
unknown
|
|
|
|
www.freepnglogos.com
|
unknown
|
|
There are 2 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
172.67.75.3
|
cdn.mosoah.com
|
United States
|
|
|
|
192.168.2.1
|
unknown
|
unknown
|
|
|
|
31.14.15.249
|
temperfield.com
|
Romania
|
|
|
|
216.58.205.77
|
accounts.google.com
|
United States
|
|
|
|
70.36.99.230
|
www.kindpng.com
|
United States
|
|
|
|
192.168.2.3
|
unknown
|
unknown
|
|
|
|
185.151.30.153
|
letsteachtheworld.org
|
United Kingdom
|
|
|
|
239.255.255.250
|
unknown
|
Reserved
|
|
|
|
176.9.17.111
|
freepnglogos.com
|
Germany
|
|
|
|
216.58.208.129
|
googlehosted.l.googleusercontent.com
|
United States
|
|
|
|
216.58.212.174
|
clients.l.google.com
|
United States
|
|
|
|
127.0.0.1
|
unknown
|
unknown
|
|
There are 2 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
ahfgeienlihckogmohjhadlkjgocpleb
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
kmendfapggjehodndflmmgagdbamhnfd
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
mfehgcgbbipciphmccgaenjidiccnmng
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
neajdppkdcdipfabeoofebfddakdcjhd
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
nkeimhogjdpnpccoofpliimaahmaaome
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
prefs.preference_reset_time
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
state
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
StatusCodes
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
StatusCodes
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
state
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
software_reporter.reporting
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
module_blacklist_cache_md5_digest
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
media.storage_id_salt
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
google.services.last_account_id
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
google.services.account_id
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
software_reporter.prompt_seed
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.last_triggered_for_homepage
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
default_search_provider_data.template_url_data
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
safebrowsing.incidents_sent
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
pinned_tabs
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
search_provider_overrides
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.last_triggered_for_default_search
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
prefs.preference_reset_time
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
google.services.last_username
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
session.startup_urls
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
session.restore_on_startup
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
software_reporter.prompt_version
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.last_triggered_for_startup_urls
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.prompt_wave
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
homepage
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
homepage_is_newtabpage
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
browser.show_home_button
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
user_experience_metrics.stability.exited_cleanly
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
lastrun
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
Blob
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
Blob
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
Blob
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
Blob
|
|
There are 36 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
26F7E000000
|
unkown
|
page read and write
|
|
|
|
22487F60000
|
unkown
|
page readonly
|
|
|
|
7FF53E187000
|
unkown
|
page readonly
|
|
|
|
11687E60000
|
unkown
|
page readonly
|
|
|
|
E4BC9B000
|
unkown
|
page read and write
|
|
|
|
1B248855000
|
unkown
|
page read and write
|
|
|
|
20EC8640000
|
unkown
|
page read and write
|
|
|
|
7FF53B3B8000
|
unkown
|
page readonly
|
|
|
|
1E9816D0000
|
unkown
|
page readonly
|
|
|
|
7FF5BA843000
|
unkown
|
page readonly
|
|
|
|
7FF5526C3000
|
unkown
|
page readonly
|
|
|
|
E4BD9E000
|
unkown
|
page read and write
|
|
|
|
26F7DB70000
|
unkown
|
page readonly
|
|
|
|
7FF53B354000
|
unkown
|
page readonly
|
|
|
|
7FF53C485000
|
unkown
|
page readonly
|
|
|
|
7FF587DD7000
|
unkown
|
page readonly
|
|
|
|
22E0BC4C000
|
unkown
|
page read and write
|
|
|
|
7FF5BAB43000
|
unkown
|
page readonly
|
|
|
|
1F29A16F000
|
unkown
|
page read and write
|
|
|
|
7FF53E198000
|
unkown
|
page readonly
|
|
|
|
20EC8510000
|
unkown
|
page readonly
|
|
|
|
7FF587ED9000
|
unkown
|
page readonly
|
|
|
|
22E0BC52000
|
unkown
|
page read and write
|
|
|
|
170EC276000
|
unkown
|
page read and write
|
|
|
|
16210570000
|
unkown
|
page readonly
|
|
|
|
7FF592AAF000
|
unkown
|
page readonly
|
|
|
|
1F29A1A4000
|
unkown
|
page read and write
|
|
|
|
1F29A143000
|
unkown
|
page read and write
|
|
|
|
16210E02000
|
unkown
|
page read and write
|
|
|
|
7FF53E162000
|
unkown
|
page readonly
|
|
|
|
1F29A10A000
|
unkown
|
page read and write
|
|
|
|
7FF59228C000
|
unkown
|
page readonly
|
|
|
|
16210480000
|
heap default
|
page read and write
|
|
|
|
224880C0000
|
unkown
|
page readonly
|
|
|
|
7FF53C7FA000
|
unkown
|
page readonly
|
|
|
|
7FF587F84000
|
unkown
|
page readonly
|
|
|
|
7FF53B40D000
|
unkown
|
page readonly
|
|
|
|
1F29A166000
|
unkown
|
page read and write
|
|
|
|
7FF515DBB000
|
unkown
|
page readonly
|
|
|
|
7FF53DA1D000
|
unkown
|
page readonly
|
|
|
|
7FF515DBF000
|
unkown
|
page readonly
|
|
|
|
22E0C280000
|
unkown
|
page read and write
|
|
|
|
EB26277000
|
unkown
|
page read and write
|
|
|
|
26F7CB18000
|
unkown
|
page read and write
|
|
|
|
1F29A15F000
|
unkown
|
page read and write
|
|
|
|
7FF53E26E000
|
unkown
|
page readonly
|
|
|
|
11688200000
|
unkown
|
page readonly
|
|
|
|
1F2998DB000
|
unkown
|
page read and write
|
|
|
|
7FF587F05000
|
unkown
|
page readonly
|
|
|
|
11687902000
|
unkown
|
page read and write
|
|
|
|
170EC802000
|
unkown
|
page read and write
|
|
|
|
26F7CA02000
|
unkown
|
page read and write
|
|
|
|
1F29A1A4000
|
unkown
|
page read and write
|
|
|
|
7FF587EAC000
|
unkown
|
page readonly
|
|
|
|
7FF55277B000
|
unkown
|
page readonly
|
|
|
|
7FF592A29000
|
unkown
|
page readonly
|
|
|
|
1F299A00000
|
unkown
|
page readonly
|
|
|
|
EB26377000
|
unkown
|
page read and write
|
|
|
|
1F299F30000
|
unkown
|
page read and write
|
|
|
|
7FF53E158000
|
unkown
|
page readonly
|
|
|
|
1F29A11D000
|
unkown
|
page read and write
|
|
|
|
1F299908000
|
unkown
|
page read and write
|
|
|
|
7FF4ED607000
|
unkown
|
page readonly
|
|
|
|
1F29A15C000
|
unkown
|
page read and write
|
|
|
|
99D547A000
|
unkown
|
page read and write
|
|
|
|
7FF552738000
|
unkown
|
page readonly
|
|
|
|
7FF515ABD000
|
unkown
|
page readonly
|
|
|
|
7FF53E27F000
|
unkown
|
page readonly
|
|
|
|
1F299913000
|
unkown
|
page read and write
|
|
|
|
1F29A12D000
|
unkown
|
page read and write
|
|
|
|
1E981257000
|
unkown
|
page read and write
|
|
|
|
1168783C000
|
unkown
|
page read and write
|
|
|
|
7FF587F7D000
|
unkown
|
page readonly
|
|
|
|
7FF5C31F0000
|
unkown
|
page readonly
|
|
|
|
26F7D82E000
|
unkown
|
page read and write
|
|
|
|
7FF53DE0F000
|
unkown
|
page readonly
|
|
|
|
258879A0000
|
heap default
|
page read and write
|
|
|
|
7FF53E130000
|
unkown
|
page readonly
|
|
|
|
7FF53B201000
|
unkown
|
page readonly
|
|
|
|
26F7CB59000
|
unkown
|
page read and write
|
|
|
|
1F299E60000
|
unkown
|
page readonly
|
|
|
|
4610E7B000
|
unkown
|
page read and write
|
|
|
|
1F299F10000
|
unkown
|
page readonly
|
|
|
|
1F29A10D000
|
unkown
|
page read and write
|
|
|
|
7FF53E1CA000
|
unkown
|
page readonly
|
|
|
|
7FF552764000
|
unkown
|
page readonly
|
|
|
|
1F29A18C000
|
unkown
|
page read and write
|
|
|
|
7FF5526E5000
|
unkown
|
page readonly
|
|
|
|
26F7DC30000
|
unkown
|
page readonly
|
|
|
|
26F7D900000
|
unkown
|
page read and write
|
|
|
|
7FF5526B9000
|
unkown
|
page readonly
|
|
|
|
1168788A000
|
unkown
|
page read and write
|
|
|
|
7FF54F1FF000
|
unkown
|
page readonly
|
|
|
|
170EC268000
|
unkown
|
page read and write
|
|
|
|
1F299889000
|
unkown
|
page read and write
|
|
|
|
7FF4ED70F000
|
unkown
|
page readonly
|
|
|
|
1F29A1A2000
|
unkown
|
page read and write
|
|
|
|
1F29A15F000
|
unkown
|
page read and write
|
|
|
|
1B249002000
|
unkown
|
page read and write
|
|
|
|
7FF587F6B000
|
unkown
|
page readonly
|
|
|
|
1E981980000
|
unkown
|
page read and write
|
|
|
|
1B248AD0000
|
unkown
|
page readonly
|
|
|
|
1B24886B000
|
unkown
|
page read and write
|
|
|
|
7FF587EE3000
|
unkown
|
page readonly
|
|
|
|
1B248885000
|
unkown
|
page read and write
|
|
|
|
26F7DB00000
|
unkown
|
page read and write
|
|
|
|
1F29A15E000
|
unkown
|
page read and write
|
|
|
|
1E981190000
|
heap private
|
page read and write
|
|
|
|
7FF4ED70B000
|
unkown
|
page readonly
|
|
|
|
7FF5BACB5000
|
unkown
|
page readonly
|
|
|
|
25887B13000
|
unkown
|
page read and write
|
|
|
|
1E981980000
|
unkown
|
page read and write
|
|
|
|
1F29A121000
|
unkown
|
page read and write
|
|
|
|
26F7DC98000
|
unkown
|
page readonly
|
|
|
|
170EC302000
|
unkown
|
page read and write
|
|
|
|
7FF53C373000
|
unkown
|
page readonly
|
|
|
|
7FF587ED5000
|
unkown
|
page readonly
|
|
|
|
25887A4F000
|
unkown
|
page read and write
|
|
|
|
1F29A17E000
|
unkown
|
page read and write
|
|
|
|
20EC92C0000
|
unkown
|
page read and write
|
|
|
|
26F7DB60000
|
unkown
|
page readonly
|
|
|
|
26F7CD80000
|
unkown
|
page read and write
|
|
|
|
1F29A170000
|
unkown
|
page read and write
|
|
|
|
26F7D8B2000
|
unkown
|
page read and write
|
|
|
|
7FF53DD86000
|
unkown
|
page readonly
|
|
|
|
7FF5BABF4000
|
unkown
|
page readonly
|
|
|
|
26F7D800000
|
unkown
|
page read and write
|
|
|
|
1E981202000
|
unkown
|
page read and write
|
|
|
|
25887C00000
|
unkown
|
page readonly
|
|
|
|
65B2FFF000
|
unkown
|
page read and write
|
|
|
|
238C1FE000
|
unkown
|
page read and write
|
|
|
|
7FF5BAD7F000
|
unkown
|
page readonly
|
|
|
|
7FF592AEF000
|
unkown
|
page readonly
|
|
|
|
1B248846000
|
unkown
|
page read and write
|
|
|
|
26F7DB10000
|
unkown
|
page read and write
|
|
|
|
7FF5BAC8C000
|
unkown
|
page readonly
|
|
|
|
11687900000
|
unkown
|
page read and write
|
|
|
|
EB2647F000
|
unkown
|
page read and write
|
|
|
|
1F29A15E000
|
unkown
|
page read and write
|
|
|
|
E4BD1E000
|
unkown
|
page read and write
|
|
|
|
7FF5C2FC8000
|
unkown
|
page readonly
|
|
|
|
26F7E010000
|
unkown
|
page read and write
|
|
|
|
46112FF000
|
unkown
|
page read and write
|
|
|
|
7FF4ECF54000
|
unkown
|
page readonly
|
|
|
|
1F299EA0000
|
unkown
|
page readonly
|
|
|
|
26F7C860000
|
unkown
|
page readonly
|
|
|
|
7FF53B419000
|
unkown
|
page readonly
|
|
|
|
20EC8469000
|
heap default
|
page read and write
|
|
|
|
11687630000
|
heap private
|
page read and write
|
|
|
|
7FF53DE00000
|
unkown
|
page readonly
|
|
|
|
7FF53B445000
|
unkown
|
page readonly
|
|
|
|
7FF587F8B000
|
unkown
|
page readonly
|
|
|
|
26F7CA00000
|
unkown
|
page read and write
|
|
|
|
11687A00000
|
unkown
|
page readonly
|
|
|
|
7FF53DE4B000
|
unkown
|
page readonly
|
|
|
|
26F7C28D000
|
unkown
|
page read and write
|
|
|
|
7FF53C815000
|
unkown
|
page readonly
|
|
|
|
E4C377000
|
unkown
|
page read and write
|
|
|
|
7FF53E26B000
|
unkown
|
page readonly
|
|
|
|
22E0BC7D000
|
unkown
|
page read and write
|
|
|
|
1E981400000
|
unkown
|
page readonly
|
|
|
|
7FF552673000
|
unkown
|
page readonly
|
|
|
|
1F29A15C000
|
unkown
|
page read and write
|
|
|
|
65B267A000
|
unkown
|
page read and write
|
|
|
|
7FF53C7F3000
|
unkown
|
page readonly
|
|
|
|
7FF5BAD5D000
|
unkown
|
page readonly
|
|
|
|
7FF5C2761000
|
unkown
|
page readonly
|
|
|
|
7FF55275D000
|
unkown
|
page readonly
|
|
|
|
25887940000
|
heap private
|
page read and write
|
|
|
|
1F29A14A000
|
unkown
|
page read and write
|
|
|
|
7FF53E01A000
|
unkown
|
page readonly
|
|
|
|
20EC85E0000
|
unkown
|
page read and write
|
|
|
|
7FF5C3285000
|
unkown
|
page readonly
|
|
|
|
7FF5C3263000
|
unkown
|
page readonly
|
|
|
|
7FF592A25000
|
unkown
|
page readonly
|
|
|
|
11687850000
|
unkown
|
page read and write
|
|
|
|
7FF53E238000
|
unkown
|
page readonly
|
|
|
|
22E0C000000
|
unkown
|
page readonly
|
|
|
|
7FF54F56E000
|
unkown
|
page readonly
|
|
|
|
26F7C229000
|
unkown
|
page read and write
|
|
|
|
7FF53B3D7000
|
unkown
|
page readonly
|
|
|
|
7FF552687000
|
unkown
|
page readonly
|
|
|
|
7FF53B4DF000
|
unkown
|
page readonly
|
|
|
|
26F7D660000
|
unkown
|
page readonly
|
|
|
|
7FF53B4CE000
|
unkown
|
page readonly
|
|
|
|
26F7D620000
|
unkown
|
page read and write
|
|
|
|
7FF53C88D000
|
unkown
|
page readonly
|
|
|
|
7FF5BAD38000
|
unkown
|
page readonly
|
|
|
|
EB266FB000
|
unkown
|
page read and write
|
|
|
|
65B2AFD000
|
unkown
|
page read and write
|
|
|
|
26F7D815000
|
unkown
|
page read and write
|
|
|
|
25888202000
|
unkown
|
page read and write
|
|
|
|
7FF53C7E5000
|
unkown
|
page readonly
|
|
|
|
7FF53C7BC000
|
unkown
|
page readonly
|
|
|
|
26F7D910000
|
unkown
|
page read and write
|
|
|
|
7FF53C8AF000
|
unkown
|
page readonly
|
|
|
|
1B2486D0000
|
heap private
|
page read and write
|
|
|
|
7FF5525D5000
|
unkown
|
page readonly
|
|
|
|
1F29A18B000
|
unkown
|
page read and write
|
|
|
|
7FF515CB3000
|
unkown
|
page readonly
|
|
|
|
25888400000
|
unkown
|
page readonly
|
|
|
|
1B248878000
|
unkown
|
page read and write
|
|
|
|
26F7DB10000
|
unkown
|
page read and write
|
|
|
|
26F7D8C1000
|
unkown
|
page read and write
|
|
|
|
26F7D8E9000
|
unkown
|
page read and write
|
|
|
|
7FF515DA4000
|
unkown
|
page readonly
|
|
|
|
7FF4ED6D6000
|
unkown
|
page readonly
|
|
|
|
1F29A165000
|
unkown
|
page read and write
|
|
|
|
7FF53C7A3000
|
unkown
|
page readonly
|
|
|
|
461147D000
|
unkown
|
page read and write
|
|
|
|
7FF53B3F8000
|
unkown
|
page readonly
|
|
|
|
22E0BC4D000
|
unkown
|
page read and write
|
|
|
|
7FF515DAE000
|
unkown
|
page readonly
|
|
|
|
7FF515AA3000
|
unkown
|
page readonly
|
|
|
|
7FF515CB7000
|
unkown
|
page readonly
|
|
|
|
7FF53C880000
|
unkown
|
page readonly
|
|
|
|
7FF552249000
|
unkown
|
page readonly
|
|
|
|
7FF587F70000
|
unkown
|
page readonly
|
|
|
|
7FF587839000
|
unkown
|
page readonly
|
|
|
|
1E981221000
|
unkown
|
page read and write
|
|
|
|
25887A02000
|
unkown
|
page read and write
|
|
|
|
7FF5C3255000
|
unkown
|
page readonly
|
|
|
|
65B247B000
|
unkown
|
page read and write
|
|
|
|
7FF54F57F000
|
unkown
|
page readonly
|
|
|
|
7FF5C32DF000
|
unkown
|
page readonly
|
|
|
|
7FF5C322D000
|
unkown
|
page readonly
|
|
|
|
11687913000
|
unkown
|
page read and write
|
|
|
|
1F29A186000
|
unkown
|
page read and write
|
|
|
|
11687847000
|
unkown
|
page read and write
|
|
|
|
1F29A13D000
|
unkown
|
page read and write
|
|
|
|
C8889F7000
|
unkown
|
page read and write
|
|
|
|
7FF53B193000
|
unkown
|
page readonly
|
|
|
|
20D5D7F000
|
unkown
|
page read and write
|
|
|
|
7FF5C3018000
|
unkown
|
page readonly
|
|
|
|
26F7C180000
|
unkown
|
page read and write
|
|
|
|
1F29A15F000
|
unkown
|
page read and write
|
|
|
|
22487FF6000
|
unkown
|
page read and write
|
|
|
|
7FF592AEB000
|
unkown
|
page readonly
|
|
|
|
7FF5929FC000
|
unkown
|
page readonly
|
|
|
|
1E981229000
|
unkown
|
page read and write
|
|
|
|
20EC8418000
|
heap default
|
page read and write
|
|
|
|
1B24886C000
|
unkown
|
page read and write
|
|
|
|
1F29A184000
|
unkown
|
page read and write
|
|
|
|
22E0BAC0000
|
heap private
|
page read and write
|
|
|
|
7FF515CED000
|
unkown
|
page readonly
|
|
|
|
E4C57F000
|
unkown
|
page read and write
|
|
|
|
7FF5BA858000
|
unkown
|
page readonly
|
|
|
|
1E981950000
|
unkown
|
page read and write
|
|
|
|
1B24883E000
|
unkown
|
page read and write
|
|
|
|
7FF53B164000
|
unkown
|
page readonly
|
|
|
|
26F7C313000
|
unkown
|
page read and write
|
|
|
|
7FF54F54B000
|
unkown
|
page readonly
|
|
|
|
7FF53B4DB000
|
unkown
|
page readonly
|
|
|
|
22487F10000
|
heap private
|
page read and write
|
|
|
|
1F299F50000
|
unkown
|
page readonly
|
|
|
|
1F29A15F000
|
unkown
|
page read and write
|
|
|
|
22E0BD00000
|
unkown
|
page read and write
|
|
|
|
22E0BC2A000
|
unkown
|
page read and write
|
|
|
|
7B9A9BE000
|
unkown
|
page read and write
|
|
|
|
DA53B7E000
|
unkown
|
page read and write
|
|
|
|
26F7D8DC000
|
unkown
|
page read and write
|
|
|
|
26F7C1F0000
|
unkown
|
page read and write
|
|
|
|
1F29A1A4000
|
unkown
|
page read and write
|
|
|
|
1F29A186000
|
unkown
|
page read and write
|
|
|
|
26F7DB20000
|
unkown
|
page read and write
|
|
|
|
7FF53E173000
|
unkown
|
page readonly
|
|
|
|
7FF515CF5000
|
unkown
|
page readonly
|
|
|
|
11687790000
|
unkown
|
page read and write
|
|
|
|
20EC86B9000
|
heap private
|
page read and write
|
|
|
|
20EC8410000
|
heap default
|
page read and write
|
|
|
|
26F7D821000
|
unkown
|
page read and write
|
|
|
|
7FF53DF0A000
|
unkown
|
page readonly
|
|
|
|
7FF5BACC3000
|
unkown
|
page readonly
|
|
|
|
162105B0000
|
unkown
|
page readonly
|
|
|
|
7FF53B390000
|
unkown
|
page readonly
|
|
|
|
1F29A133000
|
unkown
|
page read and write
|
|
|
|
25887A29000
|
unkown
|
page read and write
|
|
|
|
7FF5C330B000
|
unkown
|
page readonly
|
|
|
|
7FF4ED532000
|
unkown
|
page readonly
|
|
|
|
7FF53C67E000
|
unkown
|
page readonly
|
|
|
|
7FF4ED65A000
|
unkown
|
page readonly
|
|
|
|
7FF54F4CA000
|
unkown
|
page readonly
|
|
|
|
7FF53DDFA000
|
unkown
|
page readonly
|
|
|
|
7FF4ED4AD000
|
unkown
|
page readonly
|
|
|
|
1F29984A000
|
unkown
|
page read and write
|
|
|
|
1F29A131000
|
unkown
|
page read and write
|
|
|
|
22E0C600000
|
unkown
|
page readonly
|
|
|
|
26F7D7D1000
|
unkown
|
page read and write
|
|
|
|
7FF53B415000
|
unkown
|
page readonly
|
|
|
|
1F29A178000
|
unkown
|
page read and write
|
|
|
|
20EC8D30000
|
unkown
|
page readonly
|
|
|
|
170EC130000
|
unkown
|
page readonly
|
|
|
|
1B248840000
|
unkown
|
page read and write
|
|
|
|
7FF53DAC6000
|
unkown
|
page readonly
|
|
|
|
16210580000
|
unkown
|
page read and write
|
|
|
|
7FF515CA2000
|
unkown
|
page readonly
|
|
|
|
1F29A161000
|
unkown
|
page read and write
|
|
|
|
7FF53C379000
|
unkown
|
page readonly
|
|
|
|
7FF53B2CE000
|
unkown
|
page readonly
|
|
|
|
7FF5877E9000
|
unkown
|
page readonly
|
|
|
|
26F7C200000
|
unkown
|
page read and write
|
|
|
|
1F2998F8000
|
unkown
|
page read and write
|
|
|
|
20D5B7E000
|
unkown
|
page read and write
|
|
|
|
26F7DAF0000
|
unkown
|
page read and write
|
|
|
|
170EC400000
|
unkown
|
page readonly
|
|
|
|
1F29A63C000
|
unkown
|
page read and write
|
|
|
|
7FF515CD8000
|
unkown
|
page readonly
|
|
|
|
7FF53B27D000
|
unkown
|
page readonly
|
|
|
|
1F29A169000
|
unkown
|
page read and write
|
|
|
|
7FF5526B5000
|
unkown
|
page readonly
|
|
|
|
7FF515D90000
|
unkown
|
page readonly
|
|
|
|
16210F00000
|
unkown
|
page read and write
|
|
|
|
170EC213000
|
unkown
|
page read and write
|
|
|
|
26F7D7B8000
|
unkown
|
page read and write
|
|
|
|
7FF592A3A000
|
unkown
|
page readonly
|
|
|
|
7FF4ED63D000
|
unkown
|
page readonly
|
|
|
|
238C37F000
|
unkown
|
page read and write
|
|
|
|
26F7C990000
|
unkown
|
page readonly
|
|
|
|
25887A4C000
|
unkown
|
page read and write
|
|
|
|
1F2997F0000
|
unkown
|
page readonly
|
|
|
|
22487FE7000
|
unkown
|
page read and write
|
|
|
|
26F7DC70000
|
unkown
|
page readonly
|
|
|
|
26F7D7B1000
|
unkown
|
page read and write
|
|
|
|
7FF53A93C000
|
unkown
|
page readonly
|
|
|
|
EB25E7E000
|
unkown
|
page read and write
|
|
|
|
7FF53E1B5000
|
unkown
|
page readonly
|
|
|
|
22487F20000
|
unkown
|
page read and write
|
|
|
|
7FF53E25D000
|
unkown
|
page readonly
|
|
|
|
1B248844000
|
unkown
|
page read and write
|
|
|
|
26F7C2FF000
|
unkown
|
page read and write
|
|
|
|
7FF55276B000
|
unkown
|
page readonly
|
|
|
|
170EC202000
|
unkown
|
page read and write
|
|
|
|
7FF5C331F000
|
unkown
|
page readonly
|
|
|
|
7FF4ED45A000
|
unkown
|
page readonly
|
|
|
|
7FF592AB6000
|
unkown
|
page readonly
|
|
|
|
7FF587824000
|
unkown
|
page readonly
|
|
|
|
170EC25B000
|
unkown
|
page read and write
|
|
|
|
65B2DFF000
|
unkown
|
page read and write
|
|
|
|
7FF4ED5E4000
|
unkown
|
page readonly
|
|
|
|
7FF54F4E3000
|
unkown
|
page readonly
|
|
|
|
26F7C27B000
|
unkown
|
page read and write
|
|
|
|
7FF53E27F000
|
unkown
|
page readonly
|
|
|
|
7FF4ED675000
|
unkown
|
page readonly
|
|
|
|
20EC845A000
|
unkown
|
page read and write
|
|
|
|
22487FD1000
|
unkown
|
page read and write
|
|
|
|
7FF5C330E000
|
unkown
|
page readonly
|
|
|
|
20D587E000
|
unkown
|
page read and write
|
|
|
|
7FF515CC8000
|
unkown
|
page readonly
|
|
|
|
1F29A156000
|
unkown
|
page read and write
|
|
|
|
7FF53E246000
|
unkown
|
page readonly
|
|
|
|
26F7DB10000
|
unkown
|
page read and write
|
|
|
|
22E0BC50000
|
unkown
|
page read and write
|
|
|
|
16210643000
|
unkown
|
page read and write
|
|
|
|
7FF552258000
|
unkown
|
page readonly
|
|
|
|
7FF53DA22000
|
unkown
|
page readonly
|
|
|
|
26F7D8C1000
|
unkown
|
page read and write
|
|
|
|
7FF53E0CF000
|
unkown
|
page readonly
|
|
|
|
26F7DC74000
|
unkown
|
page read and write
|
|
|
|
16210B90000
|
unkown
|
page readonly
|
|
|
|
7FF4ED645000
|
unkown
|
page readonly
|
|
|
|
C8883AE000
|
unkown
|
page read and write
|
|
|
|
1F299813000
|
unkown
|
page read and write
|
|
|
|
1F29A15F000
|
unkown
|
page read and write
|
|
|
|
1F29A113000
|
unkown
|
page read and write
|
|
|
|
7FF4ED4A2000
|
unkown
|
page readonly
|
|
|
|
7FF4ED26A000
|
unkown
|
page readonly
|
|
|
|
170EBFE0000
|
heap private
|
page read and write
|
|
|
|
7FF587F5F000
|
unkown
|
page readonly
|
|
|
|
170EC790000
|
unkown
|
page readonly
|
|
|
|
7FF53E12D000
|
unkown
|
page readonly
|
|
|
|
1B24884B000
|
unkown
|
page read and write
|
|
|
|
170EC7C0000
|
unkown
|
page readonly
|
|
|
|
26F7DC5C000
|
unkown
|
page read and write
|
|
|
|
7FF4ED6DB000
|
unkown
|
page readonly
|
|
|
|
7FF53B335000
|
unkown
|
page readonly
|
|
|
|
1F29A16B000
|
unkown
|
page read and write
|
|
|
|
1F29A147000
|
unkown
|
page read and write
|
|
|
|
DA53D7E000
|
unkown
|
page read and write
|
|
|
|
26F7CB58000
|
unkown
|
page read and write
|
|
|
|
7FF515D03000
|
unkown
|
page readonly
|
|
|
|
1F29A186000
|
unkown
|
page read and write
|
|
|
|
1F29A145000
|
unkown
|
page read and write
|
|
|
|
7FF515215000
|
unkown
|
page readonly
|
|
|
|
26F7D1E0000
|
unkown
|
page read and write
|
|
|
|
7FF592AEF000
|
unkown
|
page readonly
|
|
|
|
20EC9070000
|
unkown
|
page read and write
|
|
|
|
16210560000
|
unkown
|
page readonly
|
|
|
|
20D558B000
|
unkown
|
page read and write
|
|
|
|
7FF53AFB8000
|
unkown
|
page readonly
|
|
|
|
7FF53C69E000
|
unkown
|
page readonly
|
|
|
|
20EC8472000
|
heap default
|
page read and write
|
|
|
|
20EC8423000
|
heap default
|
page read and write
|
|
|
|
116876A0000
|
unkown
|
page readonly
|
|
|
|
22487F15000
|
heap private
|
page read and write
|
|
|
|
7FF4ED6CF000
|
unkown
|
page readonly
|
|
|
|
7FF5C3259000
|
unkown
|
page readonly
|
|
|
|
1F299F40000
|
unkown
|
page read and write
|
|
|
|
26F7CB18000
|
unkown
|
page read and write
|
|
|
|
7FF53C64D000
|
unkown
|
page readonly
|
|
|
|
EB2607E000
|
unkown
|
page read and write
|
|
|
|
26F7D7B0000
|
unkown
|
page read and write
|
|
|
|
1F29A200000
|
unkown
|
page readonly
|
|
|
|
22E0C940000
|
unkown
|
page readonly
|
|
|
|
7FF53B4B0000
|
unkown
|
page readonly
|
|
|
|
7FF54F546000
|
unkown
|
page readonly
|
|
|
|
22487FEF000
|
unkown
|
page read and write
|
|
|
|
7FF55274B000
|
unkown
|
page readonly
|
|
|
|
22487FE6000
|
unkown
|
page read and write
|
|
|
|
46117FF000
|
unkown
|
page read and write
|
|
|
|
7FF53B4CB000
|
unkown
|
page readonly
|
|
|
|
16210629000
|
unkown
|
page read and write
|
|
|
|
1B248902000
|
unkown
|
page read and write
|
|
|
|
22487F70000
|
unkown
|
page readonly
|
|
|
|
1F29A16E000
|
unkown
|
page read and write
|
|
|
|
20EC92F0000
|
unkown
|
page read and write
|
|
|
|
25887B02000
|
unkown
|
page read and write
|
|
|
|
1F29A141000
|
unkown
|
page read and write
|
|
|
|
26F7D7D4000
|
unkown
|
page read and write
|
|
|
|
1F29A160000
|
unkown
|
page read and write
|
|
|
|
99D55FF000
|
unkown
|
page read and write
|
|
|
|
1F29A13E000
|
unkown
|
page read and write
|
|
|
|
7FF592AD4000
|
unkown
|
page readonly
|
|
|
|
20EC8650000
|
unkown
|
page read and write
|
|
|
|
20EC92E0000
|
unkown
|
page read and write
|
|
|
|
99D5179000
|
unkown
|
page read and write
|
|
|
|
1F29A15E000
|
unkown
|
page read and write
|
|
|
|
26F7DAE0000
|
unkown
|
page read and write
|
|
|
|
1F299F30000
|
unkown
|
page read and write
|
|
|
|
7FF515DBF000
|
unkown
|
page readonly
|
|
|
|
1F29984B000
|
unkown
|
page read and write
|
|
|
|
1F29A800000
|
unkown
|
page readonly
|
|
|
|
1F29A156000
|
unkown
|
page read and write
|
|
|
|
1F2998EE000
|
unkown
|
page read and write
|
|
|
|
7B9AD79000
|
unkown
|
page read and write
|
|
|
|
26F7DC84000
|
unkown
|
page write copy
|
|
|
|
7FF59288D000
|
unkown
|
page readonly
|
|
|
|
EB265FE000
|
unkown
|
page read and write
|
|
|
|
7FF4ED51D000
|
unkown
|
page readonly
|
|
|
|
1F2998AC000
|
unkown
|
page read and write
|
|
|
|
1B24887B000
|
unkown
|
page read and write
|
|
|
|
1F29A14B000
|
unkown
|
page read and write
|
|
|
|
26F7C2A2000
|
unkown
|
page read and write
|
|
|
|
7FF587F58000
|
unkown
|
page readonly
|
|
|
|
26F7C150000
|
heap default
|
page read and write
|
|
|
|
7FF53B168000
|
unkown
|
page readonly
|
|
|
|
25887A3C000
|
unkown
|
page read and write
|
|
|
|
1F29A16B000
|
unkown
|
page read and write
|
|
|
|
26F7DC00000
|
unkown
|
page read and write
|
|
|
|
1B24883A000
|
unkown
|
page read and write
|
|
|
|
7B9ADFF000
|
unkown
|
page read and write
|
|
|
|
7FF592ADE000
|
unkown
|
page readonly
|
|
|
|
26F7D8B3000
|
unkown
|
page read and write
|
|
|
|
26F7D861000
|
unkown
|
page read and write
|
|
|
|
26F7C9E0000
|
unkown
|
page readonly
|
|
|
|
1F29983C000
|
unkown
|
page read and write
|
|
|
|
1F29A602000
|
unkown
|
page read and write
|
|
|
|
16210800000
|
unkown
|
page readonly
|
|
|
|
162106CA000
|
unkown
|
page read and write
|
|
|
|
7FF53E137000
|
unkown
|
page readonly
|
|
|
|
1F29A700000
|
unkown
|
page read and write
|
|
|
|
7FF5BAD64000
|
unkown
|
page readonly
|
|
|
|
7FF515CAC000
|
unkown
|
page readonly
|
|
|
|
1F2998B1000
|
unkown
|
page read and write
|
|
|
|
1B24888C000
|
unkown
|
page read and write
|
|
|
|
25887A4A000
|
unkown
|
page read and write
|
|
|
|
7FF54F4C3000
|
unkown
|
page readonly
|
|
|
|
7FF53B1E7000
|
unkown
|
page readonly
|
|
|
|
26F7D84E000
|
unkown
|
page read and write
|
|
|
|
7FF53B19B000
|
unkown
|
page readonly
|
|
|
|
C88832B000
|
unkown
|
page read and write
|
|
|
|
7FF53B2F3000
|
unkown
|
page readonly
|
|
|
|
7FF552543000
|
unkown
|
page readonly
|
|
|
|
7FF515A4A000
|
unkown
|
page readonly
|
|
|
|
1F29A602000
|
unkown
|
page read and write
|
|
|
|
7FF53AFA3000
|
unkown
|
page readonly
|
|
|
|
7FF552746000
|
unkown
|
page readonly
|
|
|
|
7FF5525CF000
|
unkown
|
page readonly
|
|
|
|
26F7D8E1000
|
unkown
|
page read and write
|
|
|
|
7FF592A55000
|
unkown
|
page readonly
|
|
|
|
7FF55256E000
|
unkown
|
page readonly
|
|
|
|
7FF5BACCA000
|
unkown
|
page readonly
|
|
|
|
22487E30000
|
unkown
|
page readonly
|
|
|
|
26F7CB59000
|
unkown
|
page read and write
|
|
|
|
7FF53AFA9000
|
unkown
|
page readonly
|
|
|
|
7FF5BAB93000
|
unkown
|
page readonly
|
|
|
|
1E981213000
|
unkown
|
page read and write
|
|
|
|
7FF53DF63000
|
unkown
|
page readonly
|
|
|
|
7FF53E0B7000
|
unkown
|
page readonly
|
|
|
|
16210600000
|
unkown
|
page read and write
|
|
|
|
7FF4ED26E000
|
unkown
|
page readonly
|
|
|
|
7FF515B7C000
|
unkown
|
page readonly
|
|
|
|
7FF51521A000
|
unkown
|
page readonly
|
|
|
|
238C0FD000
|
unkown
|
page read and write
|
|
|
|
7FF53B397000
|
unkown
|
page readonly
|
|
|
|
7FF53B32F000
|
unkown
|
page readonly
|
|
|
|
1F29984E000
|
unkown
|
page read and write
|
|
|
|
1F29A197000
|
unkown
|
page read and write
|
|
|
|
7FF53DF6A000
|
unkown
|
page readonly
|
|
|
|
7FF54F550000
|
unkown
|
page readonly
|
|
|
|
26F7D8B5000
|
unkown
|
page read and write
|
|
|
|
1B248850000
|
unkown
|
page read and write
|
|
|
|
7FF4ED3E8000
|
unkown
|
page readonly
|
|
|
|
170EC050000
|
unkown
|
page readonly
|
|
|
|
7FF53C86F000
|
unkown
|
page readonly
|
|
|
|
7FF55251D000
|
unkown
|
page readonly
|
|
|
|
7FF53AF8F000
|
unkown
|
page readonly
|
|
|
|
7FF54F538000
|
unkown
|
page readonly
|
|
|
|
7FF53B3CC000
|
unkown
|
page readonly
|
|
|
|
99D4E7B000
|
unkown
|
page read and write
|
|
|
|
1B248A00000
|
unkown
|
page readonly
|
|
|
|
1B248853000
|
unkown
|
page read and write
|
|
|
|
1B24884D000
|
unkown
|
page read and write
|
|
|
|
7FF53E27B000
|
unkown
|
page readonly
|
|
|
|
26F7C170000
|
unkown
|
page readonly
|
|
|
|
7FF515D7F000
|
unkown
|
page readonly
|
|
|
|
7FF53B203000
|
unkown
|
page readonly
|
|
|
|
26F7C0F0000
|
heap private
|
page read and write
|
|
|
|
7FF53B3C2000
|
unkown
|
page readonly
|
|
|
|
DA53EFD000
|
unkown
|
page read and write
|
|
|
|
1B24886E000
|
unkown
|
page read and write
|
|
|
|
1F29A128000
|
unkown
|
page read and write
|
|
|
|
26F7D841000
|
unkown
|
page read and write
|
|
|
|
46118FF000
|
unkown
|
page read and write
|
|
|
|
7FF587F66000
|
unkown
|
page readonly
|
|
|
|
7FF53B423000
|
unkown
|
page readonly
|
|
|
|
7FF53B4AB000
|
unkown
|
page readonly
|
|
|
|
7FF515B86000
|
unkown
|
page readonly
|
|
|
|
26F7DA87000
|
unkown
|
page readonly
|
|
|
|
25887B00000
|
unkown
|
page read and write
|
|
|
|
7FF5C331F000
|
unkown
|
page readonly
|
|
|
|
1E981A02000
|
unkown
|
page read and write
|
|
|
|
99D537E000
|
unkown
|
page read and write
|
|
|
|
1F29A169000
|
unkown
|
page read and write
|
|
|
|
1F29A16C000
|
unkown
|
page read and write
|
|
|
|
1F2998ED000
|
unkown
|
page read and write
|
|
|
|
7FF515B5D000
|
unkown
|
page readonly
|
|
|
|
1F29A702000
|
unkown
|
page read and write
|
|
|
|
1F29A1A2000
|
unkown
|
page read and write
|
|
|
|
22487FCB000
|
heap default
|
page read and write
|
|
|
|
7FF57BC4E000
|
unkown
|
page readonly
|
|
|
|
7FF551BDC000
|
unkown
|
page readonly
|
|
|
|
7FF587719000
|
unkown
|
page readonly
|
|
|
|
7B9AC7F000
|
unkown
|
page read and write
|
|
|
|
238C2FA000
|
unkown
|
page read and write
|
|
|
|
26F7D7BE000
|
unkown
|
page read and write
|
|
|
|
7FF515DAB000
|
unkown
|
page readonly
|
|
|
|
1F29A602000
|
unkown
|
page read and write
|
|
|
|
1B24882A000
|
unkown
|
page read and write
|
|
|
|
16210713000
|
unkown
|
page read and write
|
|
|
|
1B248849000
|
unkown
|
page read and write
|
|
|
|
26F7D650000
|
unkown
|
page read and write
|
|
|
|
20EC8C60000
|
unkown
|
page readonly
|
|
|
|
7FF53B49F000
|
unkown
|
page readonly
|
|
|
|
26F7DB10000
|
unkown
|
page readonly
|
|
|
|
26F7D8BE000
|
unkown
|
page read and write
|
|
|
|
7FF4ED628000
|
unkown
|
page readonly
|
|
|
|
1F29A145000
|
unkown
|
page read and write
|
|
|
|
7FF53B1DD000
|
unkown
|
page readonly
|
|
|
|
22487FD7000
|
heap default
|
page read and write
|
|
|
|
7FF592AC0000
|
unkown
|
page readonly
|
|
|
|
170EC22A000
|
unkown
|
page read and write
|
|
|
|
C888AFE000
|
unkown
|
page read and write
|
|
|
|
1F29984F000
|
unkown
|
page read and write
|
|
|
|
20EC9080000
|
unkown
|
page read and write
|
|
|
|
7FF552593000
|
unkown
|
page readonly
|
|
|
|
26F7CD01000
|
unkown
|
page read and write
|
|
|
|
26F7C271000
|
unkown
|
page read and write
|
|
|
|
7FF4ED526000
|
unkown
|
page readonly
|
|
|
|
22E0BC70000
|
unkown
|
page read and write
|
|
|
|
7FF53E150000
|
unkown
|
page readonly
|
|
|
|
7FF55268C000
|
unkown
|
page readonly
|
|
|
|
170EC200000
|
unkown
|
page read and write
|
|
|
|
7FF53D6EC000
|
unkown
|
page readonly
|
|
|
|
26F7C4D0000
|
unkown
|
page readonly
|
|
|
|
7FF552698000
|
unkown
|
page readonly
|
|
|
|
26F7C1F3000
|
unkown
|
page read and write
|
|
|
|
7FF5C32EB000
|
unkown
|
page readonly
|
|
|
|
7FF53E23F000
|
unkown
|
page readonly
|
|
|
|
26F7D8C3000
|
unkown
|
page read and write
|
|
|
|
CF5C77B000
|
unkown
|
page read and write
|
|
|
|
170EC120000
|
unkown
|
page readonly
|
|
|
|
1F29A145000
|
unkown
|
page read and write
|
|
|
|
7FF4ED605000
|
unkown
|
page readonly
|
|
|
|
7FF5C3227000
|
unkown
|
page readonly
|
|
|
|
26F7C297000
|
unkown
|
page read and write
|
|
|
|
26F7C190000
|
unkown
|
page read and write
|
|
|
|
7FF53C7DD000
|
unkown
|
page readonly
|
|
|
|
1F29A149000
|
unkown
|
page read and write
|
|
|
|
99D5C7F000
|
unkown
|
page read and write
|
|
|
|
7FF587DAD000
|
unkown
|
page readonly
|
|
|
|
7FF4ED5FC000
|
unkown
|
page readonly
|
|
|
|
7FF515AC7000
|
unkown
|
page readonly
|
|
|
|
1F29A11B000
|
unkown
|
page read and write
|
|
|
|
7FF515D0A000
|
unkown
|
page readonly
|
|
|
|
26F7D8DF000
|
unkown
|
page read and write
|
|
|
|
26F7CB9D000
|
unkown
|
page read and write
|
|
|
|
7FF53B2AE000
|
unkown
|
page readonly
|
|
|
|
16210CB0000
|
unkown
|
page readonly
|
|
|
|
7FF53B3EC000
|
unkown
|
page readonly
|
|
|
|
7FF5C32E6000
|
unkown
|
page readonly
|
|
|
|
7FF53DDB1000
|
unkown
|
page readonly
|
|
|
|
7FF53E140000
|
unkown
|
page readonly
|
|
|
|
1B248848000
|
unkown
|
page read and write
|
|
|
|
26F7DAA4000
|
unkown
|
page readonly
|
|
|
|
25887A13000
|
unkown
|
page read and write
|
|
|
|
238C47D000
|
unkown
|
page read and write
|
|
|
|
1E98123C000
|
unkown
|
page read and write
|
|
|
|
DA53AFC000
|
unkown
|
page read and write
|
|
|
|
7FF5927A3000
|
unkown
|
page readonly
|
|
|
|
1F29A171000
|
unkown
|
page read and write
|
|
|
|
CF5C7FF000
|
unkown
|
page read and write
|
|
|
|
7FF5BAD7B000
|
unkown
|
page readonly
|
|
|
|
26F7CBDD000
|
unkown
|
page read and write
|
|
|
|
7FF53B1D3000
|
unkown
|
page readonly
|
|
|
|
7FF53C6FF000
|
unkown
|
page readonly
|
|
|
|
7FF53DDF4000
|
unkown
|
page readonly
|
|
|
|
25887CD0000
|
unkown
|
page readonly
|
|
|
|
E4C27B000
|
unkown
|
page read and write
|
|
|
|
1F29A11B000
|
unkown
|
page read and write
|
|
|
|
1F29A145000
|
unkown
|
page read and write
|
|
|
|
1B248813000
|
unkown
|
page read and write
|
|
|
|
1F29A602000
|
unkown
|
page read and write
|
|
|
|
1F29A189000
|
unkown
|
page read and write
|
|
|
|
7FF5C326A000
|
unkown
|
page readonly
|
|
|
|
CF5C47C000
|
unkown
|
page read and write
|
|
|
|
22E0BD13000
|
unkown
|
page read and write
|
|
|
|
26F7D2C0000
|
unkown
|
page readonly
|
|
|
|
65B30FF000
|
unkown
|
page read and write
|
|
|
|
11687829000
|
unkown
|
page read and write
|
|
|
|
11688002000
|
unkown
|
page read and write
|
|
|
|
26F7C160000
|
unkown
|
page readonly
|
|
|
|
7FF53C894000
|
unkown
|
page readonly
|
|
|
|
7FF5BAB4E000
|
unkown
|
page readonly
|
|
|
|
7FF54F53F000
|
unkown
|
page readonly
|
|
|
|
258879D0000
|
unkown
|
page read and write
|
|
|
|
22487FC0000
|
heap default
|
page read and write
|
|
|
|
7FF4ED584000
|
unkown
|
page readonly
|
|
|
|
11687870000
|
unkown
|
page read and write
|
|
|
|
7FF4ED70D000
|
unkown
|
page readonly
|
|
|
|
26F7CB9A000
|
unkown
|
page read and write
|
|
|
|
7FF53C673000
|
unkown
|
page readonly
|
|
|
|
7FF4ED6FB000
|
unkown
|
page readonly
|
|
|
|
22E0BE00000
|
unkown
|
page readonly
|
|
|
|
65B2BFD000
|
unkown
|
page read and write
|
|
|
|
26F7D7F4000
|
unkown
|
page read and write
|
|
|
|
11687813000
|
unkown
|
page read and write
|
|
|
|
26F7D8E9000
|
unkown
|
page read and write
|
|
|
|
7FF53DFA3000
|
unkown
|
page readonly
|
|
|
|
7FF53E0F4000
|
unkown
|
page readonly
|
|
|
|
1F29A14C000
|
unkown
|
page read and write
|
|
|
|
11687908000
|
unkown
|
page read and write
|
|
|
|
26F7D7E0000
|
unkown
|
page read and write
|
|
|
|
7FF5BAD7F000
|
unkown
|
page readonly
|
|
|
|
25887A51000
|
unkown
|
page read and write
|
|
|
|
7FF53B4C4000
|
unkown
|
page readonly
|
|
|
|
1F29A16C000
|
unkown
|
page read and write
|
|
|
|
7FF53C7E9000
|
unkown
|
page readonly
|
|
|
|
22E0C270000
|
unkown
|
page readonly
|
|
|
|
CF5C4FE000
|
unkown
|
page read and write
|
|
|
|
7FF515C3E000
|
unkown
|
page readonly
|
|
|
|
7FF53E1E5000
|
unkown
|
page readonly
|
|
|
|
22E0BB30000
|
unkown
|
page readonly
|
|
|
|
7FF515D78000
|
unkown
|
page readonly
|
|
|
|
7FF5BAC98000
|
unkown
|
page readonly
|
|
|
|
16210613000
|
unkown
|
page read and write
|
|
|
|
26F7DC50000
|
unkown
|
page read and write
|
|
|
|
7FF4ED58E000
|
unkown
|
page readonly
|
|
|
|
1F29A69B000
|
unkown
|
page read and write
|
|
|
|
26F7D8BE000
|
unkown
|
page read and write
|
|
|
|
22E0C402000
|
unkown
|
page read and write
|
|
|
|
20EC9340000
|
unkown
|
page read and write
|
|
|
|
7FF53C724000
|
unkown
|
page readonly
|
|
|
|
7FF5BAD6E000
|
unkown
|
page readonly
|
|
|
|
99D527A000
|
unkown
|
page read and write
|
|
|
|
1F299720000
|
unkown
|
page readonly
|
|
|
|
7FF53C8AF000
|
unkown
|
page readonly
|
|
|
|
7FF53B4BD000
|
unkown
|
page readonly
|
|
|
|
1F29A15B000
|
unkown
|
page read and write
|
|
|
|
26F7D81C000
|
unkown
|
page read and write
|
|
|
|
26F7DBF0000
|
unkown
|
page readonly
|
|
|
|
1B248760000
|
unkown
|
page read and write
|
|
|
|
7FF53B2ED000
|
unkown
|
page readonly
|
|
|
|
1F29A1A0000
|
unkown
|
page read and write
|
|
|
|
26F7CB18000
|
unkown
|
page read and write
|
|
|
|
20EC8484000
|
heap default
|
page read and write
|
|
|
|
7FF53B1F3000
|
unkown
|
page readonly
|
|
|
|
1F29A161000
|
unkown
|
page read and write
|
|
|
|
7FF587776000
|
unkown
|
page readonly
|
|
|
|
7B9A93A000
|
unkown
|
page read and write
|
|
|
|
7FF53D6E2000
|
unkown
|
page readonly
|
|
|
|
16211000000
|
unkown
|
page readonly
|
|
|
|
11687780000
|
unkown
|
page readonly
|
|
|
|
22E0BC00000
|
unkown
|
page read and write
|
|
|
|
1F29A163000
|
unkown
|
page read and write
|
|
|
|
1B248852000
|
unkown
|
page read and write
|
|
|
|
7FF5C30BD000
|
unkown
|
page readonly
|
|
|
|
C888775000
|
unkown
|
page read and write
|
|
|
|
1B248838000
|
unkown
|
page read and write
|
|
|
|
7FF5C32FD000
|
unkown
|
page readonly
|
|
|
|
7FF53B2A3000
|
unkown
|
page readonly
|
|
|
|
7FF54F23B000
|
unkown
|
page readonly
|
|
|
|
26F7CB18000
|
unkown
|
page read and write
|
|
|
|
46111FF000
|
unkown
|
page read and write
|
|
|
|
7FF54F55D000
|
unkown
|
page readonly
|
|
|
|
1F29A187000
|
unkown
|
page read and write
|
|
|
|
7FF5C31E0000
|
unkown
|
page readonly
|
|
|
|
1F29A17C000
|
unkown
|
page read and write
|
|
|
|
1F29A164000
|
unkown
|
page read and write
|
|
|
|
7FF5BAB1D000
|
unkown
|
page readonly
|
|
|
|
65B2CFE000
|
unkown
|
page read and write
|
|
|
|
20D5C7E000
|
unkown
|
page read and write
|
|
|
|
26F7D8E5000
|
unkown
|
page read and write
|
|
|
|
26F7C9A0000
|
unkown
|
page readonly
|
|
|
|
7FF4ED6F4000
|
unkown
|
page readonly
|
|
|
|
CF5C9FF000
|
unkown
|
page read and write
|
|
|
|
46116FF000
|
unkown
|
page read and write
|
|
|
|
11687800000
|
unkown
|
page read and write
|
|
|
|
1F29A17E000
|
unkown
|
page read and write
|
|
|
|
258879C0000
|
unkown
|
page readonly
|
|
|
|
7FF53C7C8000
|
unkown
|
page readonly
|
|
|
|
7FF53E1B9000
|
unkown
|
page readonly
|
|
|
|
1F29A1A2000
|
unkown
|
page read and write
|
|
|
|
26F7D8E9000
|
unkown
|
page read and write
|
|
|
|
7FF552355000
|
unkown
|
page readonly
|
|
|
|
26F7CB59000
|
unkown
|
page read and write
|
|
|
|
7FF5C32F0000
|
unkown
|
page readonly
|
|
|
|
7FF5BAD4B000
|
unkown
|
page readonly
|
|
|
|
1F299800000
|
unkown
|
page read and write
|
|
|
|
7FF55254E000
|
unkown
|
page readonly
|
|
|
|
26F7D7B0000
|
unkown
|
page read and write
|
|
|
|
7FF53B3E7000
|
unkown
|
page readonly
|
|
|
|
7FF5BAC77000
|
unkown
|
page readonly
|
|
|
|
26F7D000000
|
unkown
|
page read and write
|
|
|
|
C88887B000
|
unkown
|
page read and write
|
|
|
|
1F2996B0000
|
heap private
|
page read and write
|
|
|
|
1E981940000
|
unkown
|
page readonly
|
|
|
|
7FF53C705000
|
unkown
|
page readonly
|
|
|
|
7FF53B347000
|
unkown
|
page readonly
|
|
|
|
22E0BC13000
|
unkown
|
page read and write
|
|
|
|
1F29A155000
|
unkown
|
page read and write
|
|
|
|
1168784A000
|
unkown
|
page read and write
|
|
|
|
DA5387C000
|
unkown
|
page read and write
|
|
|
|
7FF53B4DD000
|
unkown
|
page readonly
|
|
|
|
7FF552433000
|
unkown
|
page readonly
|
|
|
|
7FF53C89B000
|
unkown
|
page readonly
|
|
|
|
7B9ACFE000
|
unkown
|
page read and write
|
|
|
|
1F29A156000
|
unkown
|
page read and write
|
|
|
|
7FF53DF3F000
|
unkown
|
page readonly
|
|
|
|
22E0BC8A000
|
unkown
|
page read and write
|
|
|
|
26F7C273000
|
unkown
|
page read and write
|
|
|
|
26F7D7BB000
|
unkown
|
page read and write
|
|
|
|
25887B08000
|
unkown
|
page read and write
|
|
|
|
1F299E70000
|
unkown
|
page read and write
|
|
|
|
238C07B000
|
unkown
|
page read and write
|
|
|
|
26F7DC4A000
|
unkown
|
page write copy
|
|
|
|
7FF53C7B7000
|
unkown
|
page readonly
|
|
|
|
99D58FE000
|
unkown
|
page read and write
|
|
|
|
170EC313000
|
unkown
|
page read and write
|
|
|
|
7FF5BAC73000
|
unkown
|
page readonly
|
|
|
|
1F299871000
|
unkown
|
page read and write
|
|
|
|
7FF53E24B000
|
unkown
|
page readonly
|
|
|
|
7FF592316000
|
unkown
|
page readonly
|
|
|
|
26F7DAA0000
|
unkown
|
page read and write
|
|
|
|
25887A8C000
|
unkown
|
page read and write
|
|
|
|
7B9AE7C000
|
unkown
|
page read and write
|
|
|
|
7FF587DC9000
|
unkown
|
page readonly
|
|
|
|
1F29A602000
|
unkown
|
page read and write
|
|
|
|
7FF587EA4000
|
unkown
|
page readonly
|
|
|
|
7FF587D2A000
|
unkown
|
page readonly
|
|
|
|
7FF592ADB000
|
unkown
|
page readonly
|
|
|
|
26F7D8C9000
|
unkown
|
page read and write
|
|
|
|
1E981C00000
|
unkown
|
page read and write
|
|
|
|
CF5CAFF000
|
unkown
|
page read and write
|
|
|
|
1F2998A0000
|
unkown
|
page read and write
|
|
|
|
26F7C302000
|
unkown
|
page read and write
|
|
|
|
20EC8462000
|
unkown
|
page read and write
|
|
|
|
1F29A17D000
|
unkown
|
page read and write
|
|
|
|
CF5C8F7000
|
unkown
|
page read and write
|
|
|
|
7FF592653000
|
unkown
|
page readonly
|
|
|
|
7FF5526AD000
|
unkown
|
page readonly
|
|
|
|
7FF53DD2F000
|
unkown
|
page readonly
|
|
|
|
7FF5BACE5000
|
unkown
|
page readonly
|
|
|
|
1F29A15C000
|
unkown
|
page read and write
|
|
|
|
20EC8380000
|
unkown
|
page read and write
|
|
|
|
20EC8461000
|
unkown
|
page read and write
|
|
|
|
46114FB000
|
unkown
|
page read and write
|
|
|
|
11687855000
|
unkown
|
page read and write
|
|
|
|
26F7D8E1000
|
unkown
|
page read and write
|
|
|
|
1B248730000
|
heap default
|
page read and write
|
|
|
|
26F7D8B2000
|
unkown
|
page read and write
|
|
|
|
7FF53B1F0000
|
unkown
|
page readonly
|
|
|
|
22E0BD08000
|
unkown
|
page read and write
|
|
|
|
26F7D7E0000
|
unkown
|
page read and write
|
|
|
|
1168788D000
|
unkown
|
page read and write
|
|
|
|
7FF5C3203000
|
unkown
|
page readonly
|
|
|
|
1F29A16A000
|
unkown
|
page read and write
|
|
|
|
7FF53E04C000
|
unkown
|
page readonly
|
|
|
|
7FF53E16C000
|
unkown
|
page readonly
|
|
|
|
7FF4ED6FE000
|
unkown
|
page readonly
|
|
|
|
7FF53B38D000
|
unkown
|
page readonly
|
|
|
|
26F7DAA0000
|
unkown
|
page read and write
|
|
|
|
26F7D8BE000
|
unkown
|
page read and write
|
|
|
|
26F7D8E5000
|
unkown
|
page read and write
|
|
|
|
1F29A63C000
|
unkown
|
page read and write
|
|
|
|
7FF53E033000
|
unkown
|
page readonly
|
|
|
|
7FF552677000
|
unkown
|
page readonly
|
|
|
|
26F7DC10000
|
unkown
|
page readonly
|
|
|
|
1F29A1AF000
|
unkown
|
page read and write
|
|
|
|
26F7C9B0000
|
unkown
|
page readonly
|
|
|
|
7FF515C94000
|
unkown
|
page readonly
|
|
|
|
170ECA00000
|
unkown
|
page readonly
|
|
|
|
7FF57BC4E000
|
unkown
|
page readonly
|
|
|
|
26F7D7D0000
|
unkown
|
page read and write
|
|
|
|
7FF53E154000
|
unkown
|
page readonly
|
|
|
|
1F29A1A0000
|
unkown
|
page read and write
|
|
|
|
1F29A1C4000
|
unkown
|
page read and write
|
|
|
|
11687770000
|
unkown
|
page readonly
|
|
|
|
11687802000
|
unkown
|
page read and write
|
|
|
|
1F29984C000
|
unkown
|
page read and write
|
|
|
|
7FF53DF78000
|
unkown
|
page readonly
|
|
|
|
1B248830000
|
unkown
|
page read and write
|
|
|
|
26F7D8B2000
|
unkown
|
page read and write
|
|
|
|
26F7D8B4000
|
unkown
|
page read and write
|
|
|
|
1F29A15F000
|
unkown
|
page read and write
|
|
|
|
7FF53B293000
|
unkown
|
page readonly
|
|
|
|
7FF53C87B000
|
unkown
|
page readonly
|
|
|
|
7FF53DF6C000
|
unkown
|
page readonly
|
|
|
|
99D567E000
|
unkown
|
page read and write
|
|
|
|
1B248842000
|
unkown
|
page read and write
|
|
|
|
65B2EFE000
|
unkown
|
page read and write
|
|
|
|
7FF53DF87000
|
unkown
|
page readonly
|
|
|
|
258879B0000
|
unkown
|
page readonly
|
|
|
|
20EC86C0000
|
unkown
|
page read and write
|
|
|
|
26F7D8E5000
|
unkown
|
page read and write
|
|
|
|
7FF54F57F000
|
unkown
|
page readonly
|
|
|
|
7FF53C89E000
|
unkown
|
page readonly
|
|
|
|
26F7D7F0000
|
unkown
|
page read and write
|
|
|
|
1F29A17D000
|
unkown
|
page read and write
|
|
|
|
EB25EFF000
|
unkown
|
page read and write
|
|
|
|
1F29A100000
|
unkown
|
page read and write
|
|
|
|
1F29A119000
|
unkown
|
page read and write
|
|
|
|
46115FC000
|
unkown
|
page read and write
|
|
|
|
26F7C292000
|
unkown
|
page read and write
|
|
|
|
7FF53B3D3000
|
unkown
|
page readonly
|
|
|
|
1168784F000
|
unkown
|
page read and write
|
|
|
|
99D557B000
|
unkown
|
page read and write
|
|
|
|
26F7C258000
|
unkown
|
page read and write
|
|
|
|
1F29A12F000
|
unkown
|
page read and write
|
|
|
|
22487FEF000
|
unkown
|
page read and write
|
|
|
|
7FF53C388000
|
unkown
|
page readonly
|
|
|
|
7FF4ED5F2000
|
unkown
|
page readonly
|
|
|
|
7FF55277F000
|
unkown
|
page readonly
|
|
|
|
1F2998C5000
|
unkown
|
page read and write
|
|
|
|
20EC8461000
|
unkown
|
page read and write
|
|
|
|
1B248750000
|
unkown
|
page readonly
|
|
|
|
1B248800000
|
unkown
|
page read and write
|
|
|
|
7FF4ED603000
|
unkown
|
page readonly
|
|
|
|
1E9811F0000
|
heap default
|
page read and write
|
|
|
|
7FF5BACB9000
|
unkown
|
page readonly
|
|
|
|
7FF53B4DF000
|
unkown
|
page readonly
|
|
|
|
1621066F000
|
unkown
|
page read and write
|
|
|
|
1F29A69B000
|
unkown
|
page read and write
|
|
|
|
26F7D7B7000
|
unkown
|
page read and write
|
|
|
|
7FF53C8AB000
|
unkown
|
page readonly
|
|
|
|
26F7D8BE000
|
unkown
|
page read and write
|
|
|
|
26F7D601000
|
unkown
|
page read and write
|
|
|
|
7FF587ECD000
|
unkown
|
page readonly
|
|
|
|
1F29A17E000
|
unkown
|
page read and write
|
|
|
|
7FF53DE07000
|
unkown
|
page readonly
|
|
|
|
1F29A173000
|
unkown
|
page read and write
|
|
|
|
1F299F30000
|
unkown
|
page readonly
|
|
|
|
7FF53DFA1000
|
unkown
|
page readonly
|
|
|
|
16210702000
|
unkown
|
page read and write
|
|
|
|
16210C60000
|
unkown
|
page write copy
|
|
|
|
170EC289000
|
unkown
|
page read and write
|
|
|
|
1F29A654000
|
unkown
|
page read and write
|
|
|
|
26F7C213000
|
unkown
|
page read and write
|
|
|
|
22E0BC4B000
|
unkown
|
page read and write
|
|
|
|
461107B000
|
unkown
|
page read and write
|
|
|
|
E4C0F5000
|
unkown
|
page read and write
|
|
|
|
1F29A14A000
|
unkown
|
page read and write
|
|
|
|
16210F12000
|
unkown
|
page read and write
|
|
|
|
26F7CA15000
|
unkown
|
page read and write
|
|
|
|
22E0BC3C000
|
unkown
|
page read and write
|
|
|
|
7FF552243000
|
unkown
|
page readonly
|
|
|
|
7FF515D25000
|
unkown
|
page readonly
|
|
|
|
25887A6F000
|
unkown
|
page read and write
|
|
|
|
7FF4ED70F000
|
unkown
|
page readonly
|
|
|
|
7FF54F564000
|
unkown
|
page readonly
|
|
|
|
7FF53C876000
|
unkown
|
page readonly
|
|
|
|
1F299882000
|
unkown
|
page read and write
|
|
|
|
11687690000
|
heap default
|
page read and write
|
|
|
|
99D587F000
|
unkown
|
page read and write
|
|
|
|
1B248740000
|
unkown
|
page readonly
|
|
|
|
1F299EC0000
|
unkown
|
page write copy
|
|
|
|
238C17D000
|
unkown
|
page read and write
|
|
|
|
1F29A1A9000
|
unkown
|
page read and write
|
|
|
|
7FF515D8B000
|
unkown
|
page readonly
|
|
|
|
26F7CB18000
|
unkown
|
page read and write
|
|
|
|
7FF55276E000
|
unkown
|
page readonly
|
|
|
|
DA53DFE000
|
unkown
|
page read and write
|
|
|
|
7FF515B8F000
|
unkown
|
page readonly
|
|
|
|
26F7C9F0000
|
unkown
|
page read and write
|
|
|
|
1F29A173000
|
unkown
|
page read and write
|
|
|
|
20EC83E0000
|
unkown
|
page read and write
|
|
|
|
22E0BB20000
|
heap default
|
page read and write
|
|
|
|
7FF4ED6DE000
|
unkown
|
page readonly
|
|
|
|
7FF5BAD46000
|
unkown
|
page readonly
|
|
|
|
99D597E000
|
unkown
|
page read and write
|
|
|
|
7FF53E177000
|
unkown
|
page readonly
|
|
|
|
CF5C57F000
|
unkown
|
page read and write
|
|
|
|
1F29A15C000
|
unkown
|
page read and write
|
|
|
|
16210667000
|
unkown
|
page read and write
|
|
|
|
7FF4ED6ED000
|
unkown
|
page readonly
|
|
|
|
26F7D8B2000
|
unkown
|
page read and write
|
|
|
|
1F299902000
|
unkown
|
page read and write
|
|
|
|
1F29A600000
|
unkown
|
page read and write
|
|
|
|
26F7D8C1000
|
unkown
|
page read and write
|
|
|
|
7FF592A33000
|
unkown
|
page readonly
|
|
|
|
25888740000
|
unkown
|
page readonly
|
|
|
|
7FF53DF7D000
|
unkown
|
page readonly
|
|
|
|
7FF515CCC000
|
unkown
|
page readonly
|
|
|
|
7FF54F4E5000
|
unkown
|
page readonly
|
|
|
|
238C279000
|
unkown
|
page read and write
|
|
|
|
1F299F30000
|
unkown
|
page read and write
|
|
|
|
7FF53BD0C000
|
unkown
|
page readonly
|
|
|
|
1F2998C1000
|
unkown
|
page read and write
|
|
|
|
7FF5526CA000
|
unkown
|
page readonly
|
|
|
|
7FF53C563000
|
unkown
|
page readonly
|
|
|
|
7FF5929E7000
|
unkown
|
page readonly
|
|
|
|
99D577F000
|
unkown
|
page read and write
|
|
|
|
22E0BD02000
|
unkown
|
page read and write
|
|
|
|
26F00000000
|
unkown
|
page read and write
|
|
|
|
7FF5C32D8000
|
unkown
|
page readonly
|
|
|
|
EB26178000
|
unkown
|
page read and write
|
|
|
|
20D58FE000
|
unkown
|
page read and write
|
|
|
|
162106B9000
|
unkown
|
page read and write
|
|
|
|
26F7C400000
|
unkown
|
page readonly
|
|
|
|
26F7D8DF000
|
unkown
|
page read and write
|
|
|
|
7FF53DF3B000
|
unkown
|
page readonly
|
|
|
|
1B248866000
|
unkown
|
page read and write
|
|
|
|
E4C17E000
|
unkown
|
page read and write
|
|
|
|
20EC92D0000
|
unkown
|
page readonly
|
|
|
|
1F29A187000
|
unkown
|
page read and write
|
|
|
|
26F7D6B0000
|
unkown
|
page read and write
|
|
|
|
7FF54F48D000
|
unkown
|
page readonly
|
|
|
|
7FF53B498000
|
unkown
|
page readonly
|
|
|
|
20EC8600000
|
unkown
|
page readonly
|
|
|
|
22487FEF000
|
unkown
|
page read and write
|
|
|
|
1F299710000
|
heap default
|
page read and write
|
|
|
|
26F7DC87000
|
unkown
|
page write copy
|
|
|
|
1E9814D0000
|
unkown
|
page readonly
|
|
|
|
1F29A15B000
|
unkown
|
page read and write
|
|
|
|
26F7D8E7000
|
unkown
|
page read and write
|
|
|
|
1E981980000
|
unkown
|
page read and write
|
|
|
|
26F7CB9D000
|
unkown
|
page read and write
|
|
|
|
EB2657A000
|
unkown
|
page read and write
|
|
|
|
99D5A7C000
|
unkown
|
page read and write
|
|
|
|
7FF4ED617000
|
unkown
|
page readonly
|
|
|
|
7FF53E24E000
|
unkown
|
page readonly
|
|
|
|
7FF5BABD5000
|
unkown
|
page readonly
|
|
|
|
1F29A1C6000
|
unkown
|
page read and write
|
|
|
|
1E981870000
|
unkown
|
page readonly
|
|
|
|
7FF53DE24000
|
unkown
|
page readonly
|
|
|
|
7FF53E264000
|
unkown
|
page readonly
|
|
|
|
1F29A16E000
|
unkown
|
page read and write
|
|
|
|
26F7CB00000
|
unkown
|
page read and write
|
|
|
|
7FF5BAB6E000
|
unkown
|
page readonly
|
|
|
|
1F29A002000
|
unkown
|
page read and write
|
|
|
|
1F29A136000
|
unkown
|
page read and write
|
|
|
|
16210420000
|
heap private
|
page read and write
|
|
|
|
26F7D8B3000
|
unkown
|
page read and write
|
|
|
|
26F7D8E9000
|
unkown
|
page read and write
|
|
|
|
1F2998EB000
|
unkown
|
page read and write
|
|
|
|
7FF53DAA6000
|
unkown
|
page readonly
|
|
|
|
461137C000
|
unkown
|
page read and write
|
|
|
|
7FF515D9D000
|
unkown
|
page readonly
|
|
|
|
26F7D690000
|
unkown
|
page read and write
|
|
|
|
7FF53E1C3000
|
unkown
|
page readonly
|
|
|
|
7FF53E038000
|
unkown
|
page readonly
|
|
|
|
7FF5BAA33000
|
unkown
|
page readonly
|
|
|
|
25887A00000
|
unkown
|
page read and write
|
|
|
|
26F7C278000
|
unkown
|
page read and write
|
|
|
|
26F7D630000
|
unkown
|
page read and write
|
|
|
|
7FF5C331D000
|
unkown
|
page readonly
|
|
|
|
1E981302000
|
unkown
|
page read and write
|
|
|
|
C888BFC000
|
unkown
|
page read and write
|
|
|
|
7FF58776F000
|
unkown
|
page readonly
|
|
|
|
7FF515DBD000
|
unkown
|
page readonly
|
|
|
|
7FF53B1D1000
|
unkown
|
page readonly
|
|
|
|
7FF53DF71000
|
unkown
|
page readonly
|
|
|
|
20EC88D0000
|
unkown
|
page readonly
|
|
|
|
1F2998D6000
|
unkown
|
page read and write
|
|
|
|
1B24887F000
|
unkown
|
page read and write
|
|
|
|
7FF4ED1BF000
|
unkown
|
page readonly
|
|
|
|
7FF53B230000
|
unkown
|
page readonly
|
|
|
|
22E0BC4F000
|
unkown
|
page read and write
|
|
|
|
7FF5BA849000
|
unkown
|
page readonly
|
|
|
|
7FF54F4B5000
|
unkown
|
page readonly
|
|
|
|
7FF515B52000
|
unkown
|
page readonly
|
|
|
|
7FF587F9F000
|
unkown
|
page readonly
|
|
|
|
1F29A17E000
|
unkown
|
page read and write
|
|
|
|
7FF5BAD50000
|
unkown
|
page readonly
|
|
|
|
C88867F000
|
unkown
|
page read and write
|
|
|
|
1F29A155000
|
unkown
|
page read and write
|
|
|
|
DA53C7E000
|
unkown
|
page read and write
|
|
|
|
7FF5BABCF000
|
unkown
|
page readonly
|
|
|
|
1F2998BE000
|
unkown
|
page read and write
|
|
|
|
7FF552750000
|
unkown
|
page readonly
|
|
|
|
26F7D8AA000
|
unkown
|
page read and write
|
|
|
|
170EC040000
|
heap default
|
page read and write
|
|
|
|
1F29A167000
|
unkown
|
page read and write
|
|
|
|
1F2998E4000
|
unkown
|
page read and write
|
|
|
|
26F7DB50000
|
unkown
|
page readonly
|
|
|
|
7FF4ED649000
|
unkown
|
page readonly
|
|
|
|
26F7DAC0000
|
unkown
|
page read and write
|
|
|
|
7FF53B42A000
|
unkown
|
page readonly
|
|
|
|
1F29A19F000
|
unkown
|
page read and write
|
|
|
|
1E981200000
|
unkown
|
page read and write
|
|
|
|
7FF5BA955000
|
unkown
|
page readonly
|
|
|
|
7FF5525F4000
|
unkown
|
page readonly
|
|
|
|
26F7D100000
|
unkown
|
page read and write
|
|
|
|
7FF587771000
|
unkown
|
page readonly
|
|
|
|
7FF53C7A7000
|
unkown
|
page readonly
|
|
|
|
1F29A168000
|
unkown
|
page read and write
|
|
|
|
1F29A13D000
|
unkown
|
page read and write
|
|
|
|
20EC8400000
|
unkown
|
page readonly
|
|
|
|
170EC7A0000
|
unkown
|
page read and write
|
|
|
|
7FF515D86000
|
unkown
|
page readonly
|
|
|
|
7FF5BA1DC000
|
unkown
|
page readonly
|
|
|
|
65B28FC000
|
unkown
|
page read and write
|
|
|
|
7FF4ED653000
|
unkown
|
page readonly
|
|
|
|
26F7D8B6000
|
unkown
|
page read and write
|
|
|
|
7FF53E01D000
|
unkown
|
page readonly
|
|
|
|
1F2998DB000
|
unkown
|
page read and write
|
|
|
|
7FF5C3217000
|
unkown
|
page readonly
|
|
|
|
1F29A16E000
|
unkown
|
page read and write
|
|
|
|
65B27FE000
|
unkown
|
page read and write
|
|
|
|
22487FF7000
|
unkown
|
page read and write
|
|
|
|
1F29A188000
|
unkown
|
page read and write
|
|
|
|
16210490000
|
unkown
|
page readonly
|
|
|
|
7FF5BAD3F000
|
unkown
|
page readonly
|
|
|
|
1F2998C1000
|
unkown
|
page read and write
|
|
|
|
7FF53DFD0000
|
unkown
|
page readonly
|
|
|
|
7FF592AA8000
|
unkown
|
page readonly
|
|
|
|
E4C47E000
|
unkown
|
page read and write
|
|
|
|
7FF53DF73000
|
unkown
|
page readonly
|
|
|
|
26F7C9C0000
|
unkown
|
page readonly
|
|
|
|
26F7D8DF000
|
unkown
|
page read and write
|
|
|
|
26F7CB13000
|
unkown
|
page read and write
|
|
|
|
1B248847000
|
unkown
|
page read and write
|
|
|
|
1F29A1C6000
|
unkown
|
page read and write
|
|
|
|
1F29A17C000
|
unkown
|
page read and write
|
|
|
|
7FF587F9F000
|
unkown
|
page readonly
|
|
|
|
1F29A171000
|
unkown
|
page read and write
|
|
|
|
7FF55273F000
|
unkown
|
page readonly
|
|
|
|
26F7DC48000
|
unkown
|
page read and write
|
|
|
|
7FF5C276E000
|
unkown
|
page readonly
|
|
|
|
7FF4ED6C8000
|
unkown
|
page readonly
|
|
|
|
1F29A15D000
|
unkown
|
page read and write
|
|
|
|
26F7C241000
|
unkown
|
page read and write
|
|
|
|
7FF5C2FD6000
|
unkown
|
page readonly
|
|
|
|
1F299F20000
|
unkown
|
page readonly
|
|
|
|
C8888FF000
|
unkown
|
page read and write
|
|
|
|
7FF4ED61C000
|
unkown
|
page readonly
|
|
|
|
26F7C290000
|
unkown
|
page read and write
|
|
|
|
238C3F9000
|
unkown
|
page read and write
|
|
|
|
26F7DA84000
|
unkown
|
page readonly
|
|
|
|
20EC86B5000
|
heap private
|
page read and write
|
|
|
|
7FF54F4B9000
|
unkown
|
page readonly
|
|
|
|
7FF5C324D000
|
unkown
|
page readonly
|
|
|
|
26F7DC67000
|
unkown
|
page write copy
|
|
|
|
DA5407E000
|
unkown
|
page read and write
|
|
|
|
CF5C675000
|
unkown
|
page read and write
|
|
|
|
7FF53E1AD000
|
unkown
|
page readonly
|
|
|
|
26F7D6A0000
|
unkown
|
page read and write
|
|
|
|
1F299850000
|
unkown
|
page read and write
|
|
|
|
7FF53B4A6000
|
unkown
|
page readonly
|
|
|
|
7FF5C3304000
|
unkown
|
page readonly
|
|
|
|
1F29A150000
|
unkown
|
page read and write
|
|
|
|
1F2998A7000
|
unkown
|
page read and write
|
|
|
|
20D5A7E000
|
unkown
|
page read and write
|
|
|
|
1F29A602000
|
unkown
|
page read and write
|
|
|
|
26F7C2B6000
|
unkown
|
page read and write
|
|
|
|
7FF53E27D000
|
unkown
|
page readonly
|
|
|
|
26F7DC64000
|
unkown
|
page write copy
|
|
|
|
1F29A149000
|
unkown
|
page read and write
|
|
|
|
7FF53E014000
|
unkown
|
page readonly
|
|
|
|
7FF55277F000
|
unkown
|
page readonly
|
|
|
|
26F7DA80000
|
unkown
|
page read and write
|
|
|
|
99D5077000
|
unkown
|
page read and write
|
|
|
|
1F29A13B000
|
unkown
|
page read and write
|
|
|
|
7FF592A08000
|
unkown
|
page readonly
|
|
|
|
EB25BAB000
|
unkown
|
page read and write
|
|
|
|
7FF53E18C000
|
unkown
|
page readonly
|
|
|
|
7FF5BACAD000
|
unkown
|
page readonly
|
|
|
|
170EC240000
|
unkown
|
page read and write
|
|
|
|
7FF4ED3D6000
|
unkown
|
page readonly
|
|
|
|
7FF592A1D000
|
unkown
|
page readonly
|
|
|
|
22487F40000
|
unkown
|
page read and write
|
|
|
|
1F29A169000
|
unkown
|
page read and write
|
|
|
|
7FF592ABB000
|
unkown
|
page readonly
|
|
|
|
7FF54F4AD000
|
unkown
|
page readonly
|
|
|
|
7FF5BAC87000
|
unkown
|
page readonly
|
|
|
|
7FF53B298000
|
unkown
|
page readonly
|
|
|
|
7FF54F56B000
|
unkown
|
page readonly
|
|
|
|
7FF587F8E000
|
unkown
|
page readonly
|
|
|
|
20EC86B0000
|
heap private
|
page read and write
|
|
|
|
7FF53B011000
|
unkown
|
page readonly
|
|
|
|
7FF53B084000
|
unkown
|
page readonly
|
|
|
|
26F7DAD0000
|
unkown
|
page read and write
|
|
|
|
26F7D7B4000
|
unkown
|
page read and write
|
|
|
|
1B24887C000
|
unkown
|
page read and write
|
|
|
|
7FF591F43000
|
unkown
|
page readonly
|
|
|
|
7FF53C6C3000
|
unkown
|
page readonly
|
|
|
|
99D56FE000
|
unkown
|
page read and write
|
|
|
|
7FF53DE2E000
|
unkown
|
page readonly
|
|
|
|
1F299829000
|
unkown
|
page read and write
|
|
|
|
7FF5BAD6B000
|
unkown
|
page readonly
|
|
|
|
7FF515CF9000
|
unkown
|
page readonly
|
|
|
|
7FF53B15F000
|
unkown
|
page readonly
|
|
|
|
7FF53C868000
|
unkown
|
page readonly
|
|
|
|
26F7C9D0000
|
unkown
|
page readonly
|
|
|
|
1B248868000
|
unkown
|
page read and write
|
|
|
|
1F29A16D000
|
unkown
|
page read and write
|
|
There are 1115 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
file:///C:/Users/user/Desktop/State%20Settlement%20Copy.html
|
|