Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
ATT06605.HTM
|
HTML document, ASCII text, with very long lines, with no line terminators
|
initial sample
|
 |
|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\08e62fb2-76f9-4dc1-b916-7250a78982dd.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\7a1396a3-5a75-4a7c-9e89-9d4b6ee31674.tmp
|
SysEx File -
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\7a4d22be-76d0-46d9-8852-20865621494e.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\8e0c4f1c-49dd-4c01-8aee-fab85bab571d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\9ab2440d-328d-4c08-a4be-a43aae1190be.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\9f653353-c0d7-4095-9a9b-d160b8fcfbaf.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3242f1a4-c36f-4aa2-a04e-6531ca4eae43.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3a7c776a-af21-445b-9458-7c079ceb4f0d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\41d2e9cd-5e48-4647-801e-25037a88812c.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\764effa1-b3e4-4098-a9bf-929741268d73.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7eedff16-54cf-4dd7-ae90-71b9c9901623.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\917d1e30-c255-469e-8ef4-1a7e00cfcb20.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.oldB (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session. (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabsnd (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old@ (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State0d (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State5 (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.oldrt (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesTM (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferencesl (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State.o (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\e51dbe61-c490-4755-95f1-93767d441355.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\3757c1ef-6f4e-4818-ba54-d7e372fa630d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
State. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.oldon
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old.. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity.r (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a10930d0-2807-4cc3-92f2-80eb96187837.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c3ce17d2-317d-4224-9549-1af0a0c4e510.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d2bb047d-3d94-43ee-b720-35dec5aba91c.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old2 (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f3b15353-c649-4aba-a3ab-5b0336426b24.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\27\9.28.0\Indexing in Progress
|
empty
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\27\scoped_dir5336_1175290754\Ruleset
Data
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\a573d23c-3b4e-488e-9816-d1c60269b2d8.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\a8da1819-c061-4bff-a69a-19bc725b6a1a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\ab8cd7da-2799-4abc-a92d-9718b4d566ac.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\afa2777a-2948-4b49-81db-635514926a5b.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\bbdbec2e-ed86-4adc-9a47-39c91a2ae53f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\c818ee2f-0872-405a-8c0f-a49e38cd6f19.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\ed590f06-5009-4339-9c2e-0a473726192c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\20d8d1d1-2bd6-4054-af19-1b3793404ca0.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4414cd8b-5d98-4e09-ad9a-0319e5105664.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5336_1072334375\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5336_1745766951\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5336_2076406359\manifest.fingerprint
|
ASCII text, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Temp\5336_681452011\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5336_691865356\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5336_965153860\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\b54b53d1-cceb-4025-a48e-7cbb8d7a8ce1.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\fe2a74f4-7879-4e5a-bf8d-6903b9b5d0ca.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\20d8d1d1-2bd6-4054-af19-1b3793404ca0.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_160588119\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5336_770057210\b54b53d1-cceb-4025-a48e-7cbb8d7a8ce1.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
There are 212 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'C:\Users\user\Desktop\ATT06605.HTM'
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1552,3719280320360043116,9917769885225381896,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1684 /prefetch:8
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
file:///C:/Users/user/Desktop/ATT06605.HTM#YWNjb3VudGluZ0Bicm1zb25saW5lLmNvbQ==
|
|
||
|
https://dns.google
|
unknown
|
|
|
|
https://ogs.google.com
|
unknown
|
|
|
|
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
|
|
|
https://j-dime.co.jp
|
unknown
|
|
|
|
https://play.google.com
|
unknown
|
|
|
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://www.google.com;
|
unknown
|
|
|
|
https://hangouts.google.com/
|
unknown
|
|
|
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://a.nel.cloudflare.com/report/v3?s=RuqO1r%2BC%2Bf01v762ukDr%2B%2FX28KDS8XevRxAu86T9KYEWSRvWYwo
|
unknown
|
|
|
|
https://j-dime.co.jp/web/mx/favicon.ico
|
unknown
|
|
|
|
https://www.google.com
|
unknown
|
|
|
|
https://nadine-julitz.de
|
unknown
|
|
|
|
https://accounts.google.com
|
unknown
|
|
|
|
https://support.google.com/chromecast/answer/2998456
|
unknown
|
|
|
|
https://cdnjs.cloudflare.com
|
unknown
|
|
|
|
https://clients2.googleusercontent.com
|
unknown
|
|
|
|
https://apis.google.com
|
unknown
|
|
|
|
https://aadcdn.msauth.net
|
unknown
|
|
|
|
https://www.google.com/
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/report-to/downloads-lorry
|
unknown
|
|
|
|
https://feedback.googleusercontent.com
|
unknown
|
|
|
|
https://clients2.google.com
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx
|
unknown
|
|
There are 15 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
nadine-julitz.de
|
62.108.32.123
|
|
|
|
accounts.google.com
|
216.58.205.77
|
|
|
|
j-dime.co.jp
|
157.112.176.23
|
|
|
|
cdnjs.cloudflare.com
|
104.16.18.94
|
|
|
|
clients.l.google.com
|
216.58.208.174
|
|
|
|
googlehosted.l.googleusercontent.com
|
216.58.208.129
|
|
|
|
clients2.googleusercontent.com
|
unknown
|
|
|
|
clients2.google.com
|
unknown
|
|
|
|
aadcdn.msauth.net
|
unknown
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
216.58.208.174
|
clients.l.google.com
|
United States
|
|
|
|
192.168.2.1
|
unknown
|
unknown
|
|
|
|
157.112.176.23
|
j-dime.co.jp
|
Japan
|
|
|
|
62.108.32.123
|
nadine-julitz.de
|
Germany
|
|
|
|
216.58.205.77
|
accounts.google.com
|
United States
|
|
|
|
239.255.255.250
|
unknown
|
Reserved
|
|
|
|
216.58.208.129
|
googlehosted.l.googleusercontent.com
|
United States
|
|
|
|
104.16.18.94
|
cdnjs.cloudflare.com
|
United States
|
|
|
|
127.0.0.1
|
unknown
|
unknown
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
ahfgeienlihckogmohjhadlkjgocpleb
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
kmendfapggjehodndflmmgagdbamhnfd
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
mfehgcgbbipciphmccgaenjidiccnmng
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
neajdppkdcdipfabeoofebfddakdcjhd
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
nkeimhogjdpnpccoofpliimaahmaaome
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
prefs.preference_reset_time
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
state
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
StatusCodes
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
StatusCodes
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
state
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
software_reporter.reporting
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
module_blacklist_cache_md5_digest
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
media.storage_id_salt
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
google.services.last_account_id
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
google.services.account_id
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
software_reporter.prompt_seed
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.last_triggered_for_homepage
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
default_search_provider_data.template_url_data
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
safebrowsing.incidents_sent
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
pinned_tabs
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
search_provider_overrides
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.last_triggered_for_default_search
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
prefs.preference_reset_time
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
google.services.last_username
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
session.startup_urls
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
session.restore_on_startup
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
software_reporter.prompt_version
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.last_triggered_for_startup_urls
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.prompt_wave
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
homepage
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
homepage_is_newtabpage
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
browser.show_home_button
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
user_experience_metrics.stability.exited_cleanly
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
lastrun
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
Blob
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
Blob
|
|
There are 34 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7FF59E87C000
|
unkown
|
page readonly
|
|
|
|
83CE0FE000
|
unkown
|
page read and write
|
|
|
|
11F516D0000
|
unkown
|
page readonly
|
|
|
|
7FF4F3BB6000
|
unkown
|
page readonly
|
|
|
|
7FF5624B8000
|
unkown
|
page readonly
|
|
|
|
1FD958DF000
|
unkown
|
page read and write
|
|
|
|
1FD96EE2000
|
unkown
|
page read and write
|
|
|
|
1FD96EE3000
|
unkown
|
page read and write
|
|
|
|
7FF4F3B56000
|
unkown
|
page readonly
|
|
|
|
7FF5301DC000
|
unkown
|
page readonly
|
|
|
|
7B07DFC000
|
unkown
|
page read and write
|
|
|
|
7FF59E976000
|
unkown
|
page readonly
|
|
|
|
7FF530365000
|
unkown
|
page readonly
|
|
|
|
7FF582F56000
|
unkown
|
page readonly
|
|
|
|
1FD96118000
|
unkown
|
page read and write
|
|
|
|
7FF56252C000
|
unkown
|
page readonly
|
|
|
|
7FF5D874F000
|
unkown
|
page readonly
|
|
|
|
25F5CA00000
|
unkown
|
page readonly
|
|
|
|
1FD96E65000
|
unkown
|
page read and write
|
|
|
|
7B081FD000
|
unkown
|
page read and write
|
|
|
|
14BD4A40000
|
unkown
|
page read and write
|
|
|
|
25F5D540000
|
unkown
|
page readonly
|
|
|
|
1FD96C01000
|
unkown
|
page read and write
|
|
|
|
1FD96EE2000
|
unkown
|
page read and write
|
|
|
|
1FD96DD0000
|
unkown
|
page read and write
|
|
|
|
25F5D002000
|
unkown
|
page read and write
|
|
|
|
1FD9589F000
|
unkown
|
page read and write
|
|
|
|
14BD4A61000
|
unkown
|
page read and write
|
|
|
|
48104FE000
|
unkown
|
page read and write
|
|
|
|
271C75C0000
|
unkown
|
page read and write
|
|
|
|
1FD968C0000
|
unkown
|
page readonly
|
|
|
|
7FF5D8861000
|
unkown
|
page readonly
|
|
|
|
7FF5376F5000
|
unkown
|
page readonly
|
|
|
|
143E37C000
|
unkown
|
page read and write
|
|
|
|
7FF4F3B8F000
|
unkown
|
page readonly
|
|
|
|
7FF5624EF000
|
unkown
|
page readonly
|
|
|
|
1A9D5C60000
|
unkown
|
page read and write
|
|
|
|
7FF538969000
|
unkown
|
page readonly
|
|
|
|
7B0797B000
|
unkown
|
page read and write
|
|
|
|
7FF57465A000
|
unkown
|
page readonly
|
|
|
|
1C2E9261000
|
unkown
|
page read and write
|
|
|
|
7FF54E09E000
|
unkown
|
page readonly
|
|
|
|
22CAD47B000
|
unkown
|
page read and write
|
|
|
|
7FF4F2AA5000
|
unkown
|
page readonly
|
|
|
|
7FF4F2B00000
|
unkown
|
page readonly
|
|
|
|
7FF530429000
|
unkown
|
page readonly
|
|
|
|
1C90D802000
|
unkown
|
page read and write
|
|
|
|
14BD4A29000
|
unkown
|
page read and write
|
|
|
|
7FF5748C5000
|
unkown
|
page readonly
|
|
|
|
7FF5300F0000
|
unkown
|
page readonly
|
|
|
|
7FF5824B9000
|
unkown
|
page readonly
|
|
|
|
7FF53030C000
|
unkown
|
page readonly
|
|
|
|
7FF562498000
|
unkown
|
page readonly
|
|
|
|
1BE459D0000
|
unkown
|
page read and write
|
|
|
|
7FF52FC0C000
|
unkown
|
page readonly
|
|
|
|
14BD4A39000
|
unkown
|
page read and write
|
|
|
|
7FF57FCB8000
|
unkown
|
page readonly
|
|
|
|
1FD96380000
|
unkown
|
page read and write
|
|
|
|
1FD96C30000
|
unkown
|
page read and write
|
|
|
|
83CE2FD000
|
unkown
|
page read and write
|
|
|
|
1BE46306000
|
unkown
|
page read and write
|
|
|
|
1C2E94D0000
|
unkown
|
page readonly
|
|
|
|
1FD9B0E0000
|
unkown
|
page read and write
|
|
|
|
7FF5D811C000
|
unkown
|
page readonly
|
|
|
|
1A9D6000000
|
unkown
|
page readonly
|
|
|
|
7FF582FE0000
|
unkown
|
page readonly
|
|
|
|
1A9D5500000
|
heap default
|
page read and write
|
|
|
|
7FF5381B9000
|
unkown
|
page readonly
|
|
|
|
1BE460F0000
|
unkown
|
page read and write
|
|
|
|
7FF5381BE000
|
unkown
|
page readonly
|
|
|
|
7FF52F8AB000
|
unkown
|
page readonly
|
|
|
|
1C2E9268000
|
unkown
|
page read and write
|
|
|
|
22CAD450000
|
unkown
|
page read and write
|
|
|
|
14BD4A3D000
|
unkown
|
page read and write
|
|
|
|
7FF56248C000
|
unkown
|
page readonly
|
|
|
|
1FD96EA0000
|
unkown
|
page read and write
|
|
|
|
1BE4637F000
|
unkown
|
page read and write
|
|
|
|
14BD4A7A000
|
unkown
|
page read and write
|
|
|
|
11F51D00000
|
unkown
|
page read and write
|
|
|
|
1BE45A00000
|
unkown
|
page read and write
|
|
|
|
7FF4F2AAF000
|
unkown
|
page readonly
|
|
|
|
11F51B30000
|
unkown
|
page readonly
|
|
|
|
1C2E925F000
|
unkown
|
page read and write
|
|
|
|
1FD96DDC000
|
unkown
|
page read and write
|
|
|
|
7FF5D890F000
|
unkown
|
page readonly
|
|
|
|
7FF54E0A5000
|
unkown
|
page readonly
|
|
|
|
7FF536BD3000
|
unkown
|
page readonly
|
|
|
|
14BD4A4F000
|
unkown
|
page read and write
|
|
|
|
7FF4F3B6A000
|
unkown
|
page readonly
|
|
|
|
271C78D0000
|
unkown
|
page readonly
|
|
|
|
7FF57FCF9000
|
unkown
|
page readonly
|
|
|
|
1A9D5800000
|
unkown
|
page readonly
|
|
|
|
1BE46381000
|
unkown
|
page read and write
|
|
|
|
1C2E9265000
|
unkown
|
page read and write
|
|
|
|
7FF5D87D7000
|
unkown
|
page readonly
|
|
|
|
7FF52FF61000
|
unkown
|
page readonly
|
|
|
|
1FD96DD4000
|
unkown
|
page read and write
|
|
|
|
1FD9B2D8000
|
unkown
|
page readonly
|
|
|
|
7FF5746FE000
|
unkown
|
page readonly
|
|
|
|
7FF5D88D6000
|
unkown
|
page readonly
|
|
|
|
1C2E9260000
|
unkown
|
page read and write
|
|
|
|
7FF57FC41000
|
unkown
|
page readonly
|
|
|
|
1BE460E0000
|
unkown
|
page readonly
|
|
|
|
48101FB000
|
unkown
|
page read and write
|
|
|
|
1FD9B100000
|
unkown
|
page read and write
|
|
|
|
7FF5382A6000
|
unkown
|
page readonly
|
|
|
|
11F51513000
|
unkown
|
page read and write
|
|
|
|
EB95FFB000
|
unkown
|
page read and write
|
|
|
|
7FF538955000
|
unkown
|
page readonly
|
|
|
|
1FD96108000
|
unkown
|
page read and write
|
|
|
|
7FF53002D000
|
unkown
|
page readonly
|
|
|
|
7FF4F2ADC000
|
unkown
|
page readonly
|
|
|
|
22CAD513000
|
unkown
|
page read and write
|
|
|
|
BFAB7D000
|
unkown
|
page read and write
|
|
|
|
7FF53894E000
|
unkown
|
page readonly
|
|
|
|
7FF538843000
|
unkown
|
page readonly
|
|
|
|
14BD4A50000
|
unkown
|
page read and write
|
|
|
|
7FF4F39AE000
|
unkown
|
page readonly
|
|
|
|
7FF4F22C5000
|
unkown
|
page readonly
|
|
|
|
7FF53762B000
|
unkown
|
page readonly
|
|
|
|
22CAD3C0000
|
unkown
|
page readonly
|
|
|
|
7FF574743000
|
unkown
|
page readonly
|
|
|
|
7FF4F3B38000
|
unkown
|
page readonly
|
|
|
|
14BD5002000
|
unkown
|
page read and write
|
|
|
|
1FD9B150000
|
unkown
|
page read and write
|
|
|
|
7FF59E995000
|
unkown
|
page readonly
|
|
|
|
1FD9B000000
|
unkown
|
page read and write
|
|
|
|
1BE459F0000
|
unkown
|
page readonly
|
|
|
|
1FD9B277000
|
unkown
|
page write copy
|
|
|
|
271C7580000
|
unkown
|
page readonly
|
|
|
|
1FD96159000
|
unkown
|
page read and write
|
|
|
|
D82B0FD000
|
unkown
|
page read and write
|
|
|
|
7FF5D8877000
|
unkown
|
page readonly
|
|
|
|
1BE460F0000
|
unkown
|
page read and write
|
|
|
|
EB9647B000
|
unkown
|
page read and write
|
|
|
|
143E07F000
|
unkown
|
page read and write
|
|
|
|
7FF53897D000
|
unkown
|
page readonly
|
|
|
|
7FF5D8801000
|
unkown
|
page readonly
|
|
|
|
14BD4A4B000
|
unkown
|
page read and write
|
|
|
|
1A9D55F0000
|
unkown
|
page readonly
|
|
|
|
7FF4F3B42000
|
unkown
|
page readonly
|
|
|
|
1FD9B260000
|
unkown
|
page read and write
|
|
|
|
71EF67B000
|
unkown
|
page read and write
|
|
|
|
7FF5746BF000
|
unkown
|
page readonly
|
|
|
|
7FF4F3C49000
|
unkown
|
page readonly
|
|
|
|
1FD96118000
|
unkown
|
page read and write
|
|
|
|
22CAD600000
|
unkown
|
page readonly
|
|
|
|
7FF56230E000
|
unkown
|
page readonly
|
|
|
|
1FD95760000
|
heap default
|
page read and write
|
|
|
|
7FF58303E000
|
unkown
|
page readonly
|
|
|
|
1FD9619D000
|
unkown
|
page read and write
|
|
|
|
BFB2FE000
|
unkown
|
page read and write
|
|
|
|
1FD96EC6000
|
unkown
|
page read and write
|
|
|
|
7FF4F297D000
|
unkown
|
page readonly
|
|
|
|
7FF562178000
|
unkown
|
page readonly
|
|
|
|
7FF57FACA000
|
unkown
|
page readonly
|
|
|
|
24597650000
|
unkown
|
page readonly
|
|
|
|
14BD4A44000
|
unkown
|
page read and write
|
|
|
|
1FD9B2B4000
|
unkown
|
page readonly
|
|
|
|
7FF57470A000
|
unkown
|
page readonly
|
|
|
|
7FF537769000
|
unkown
|
page readonly
|
|
|
|
7FF57FD47000
|
unkown
|
page readonly
|
|
|
|
EB96579000
|
unkown
|
page read and write
|
|
|
|
7FF538297000
|
unkown
|
page readonly
|
|
|
|
7FF5D893C000
|
unkown
|
page readonly
|
|
|
|
7FF5747AC000
|
unkown
|
page readonly
|
|
|
|
BFA71B000
|
unkown
|
page read and write
|
|
|
|
7FF5D8501000
|
unkown
|
page readonly
|
|
|
|
1FD96118000
|
unkown
|
page read and write
|
|
|
|
7FF54E169000
|
unkown
|
page readonly
|
|
|
|
7FF5D8955000
|
unkown
|
page readonly
|
|
|
|
AF6CAFB000
|
unkown
|
page read and write
|
|
|
|
7FF5303C7000
|
unkown
|
page readonly
|
|
|
|
271C765C000
|
unkown
|
page read and write
|
|
|
|
7FF5D88AC000
|
unkown
|
page readonly
|
|
|
|
7FF57FD44000
|
unkown
|
page readonly
|
|
|
|
D82A57E000
|
unkown
|
page read and write
|
|
|
|
22CAD44C000
|
unkown
|
page read and write
|
|
|
|
25F5C7D0000
|
heap default
|
page read and write
|
|
|
|
7FF562540000
|
unkown
|
page readonly
|
|
|
|
22CAD449000
|
unkown
|
page read and write
|
|
|
|
7FF5D88B8000
|
unkown
|
page readonly
|
|
|
|
7FF5D89C9000
|
unkown
|
page readonly
|
|
|
|
1FD96ED9000
|
unkown
|
page read and write
|
|
|
|
7FF4F2B5E000
|
unkown
|
page readonly
|
|
|
|
1C2E9200000
|
unkown
|
page read and write
|
|
|
|
1FD95FC0000
|
unkown
|
page readonly
|
|
|
|
7FF53892A000
|
unkown
|
page readonly
|
|
|
|
7FF57FCB2000
|
unkown
|
page readonly
|
|
|
|
7FF57474D000
|
unkown
|
page readonly
|
|
|
|
7FF4F3A0B000
|
unkown
|
page readonly
|
|
|
|
1FD95FE0000
|
unkown
|
page readonly
|
|
|
|
1A9D5655000
|
unkown
|
page read and write
|
|
|
|
1C90D6C0000
|
heap private
|
page read and write
|
|
|
|
BFAE7F000
|
unkown
|
page read and write
|
|
|
|
11F51E00000
|
unkown
|
page readonly
|
|
|
|
7FF561A20000
|
unkown
|
page readonly
|
|
|
|
1FD96DD7000
|
unkown
|
page read and write
|
|
|
|
1A9D5700000
|
unkown
|
page read and write
|
|
|
|
1C2E923C000
|
unkown
|
page read and write
|
|
|
|
D82AAF9000
|
unkown
|
page read and write
|
|
|
|
14BD4A2E000
|
unkown
|
page read and write
|
|
|
|
1FD9B0A0000
|
unkown
|
page read and write
|
|
|
|
11F514C0000
|
unkown
|
page read and write
|
|
|
|
D82AE7F000
|
unkown
|
page read and write
|
|
|
|
7FF5D86FC000
|
unkown
|
page readonly
|
|
|
|
7FF57FCCA000
|
unkown
|
page readonly
|
|
|
|
7FF57FCE5000
|
unkown
|
page readonly
|
|
|
|
1FD95770000
|
unkown
|
page readonly
|
|
|
|
7FF59E94F000
|
unkown
|
page readonly
|
|
|
|
EB9637E000
|
unkown
|
page read and write
|
|
|
|
71EFCFF000
|
unkown
|
page read and write
|
|
|
|
7FF5D87B8000
|
unkown
|
page readonly
|
|
|
|
1BE46366000
|
unkown
|
page read and write
|
|
|
|
271C7600000
|
unkown
|
page read and write
|
|
|
|
14BD47B0000
|
heap private
|
page read and write
|
|
|
|
14BD4A46000
|
unkown
|
page read and write
|
|
|
|
14BD4A7D000
|
unkown
|
page read and write
|
|
|
|
1FD9619D000
|
unkown
|
page read and write
|
|
|
|
1DD221E2000
|
heap default
|
page read and write
|
|
|
|
1BE4633D000
|
unkown
|
page read and write
|
|
|
|
7FF52FFF8000
|
unkown
|
page readonly
|
|
|
|
1FD958EC000
|
unkown
|
page read and write
|
|
|
|
1C90D85A000
|
unkown
|
page read and write
|
|
|
|
1A9D5CB0000
|
unkown
|
page readonly
|
|
|
|
7FF59E500000
|
unkown
|
page readonly
|
|
|
|
1FD9B180000
|
unkown
|
page readonly
|
|
|
|
1DD221BE000
|
heap default
|
page read and write
|
|
|
|
7FF59E8A1000
|
unkown
|
page readonly
|
|
|
|
143E47D000
|
unkown
|
page read and write
|
|
|
|
271C8000000
|
unkown
|
page read and write
|
|
|
|
7FF582F40000
|
unkown
|
page readonly
|
|
|
|
7FF5D8967000
|
unkown
|
page readonly
|
|
|
|
7FF5D8960000
|
unkown
|
page readonly
|
|
|
|
7FF57FCDE000
|
unkown
|
page readonly
|
|
|
|
1FD9B021000
|
unkown
|
page read and write
|
|
|
|
7FF5303C4000
|
unkown
|
page readonly
|
|
|
|
22CADE00000
|
unkown
|
page readonly
|
|
|
|
7FF59E7F8000
|
unkown
|
page readonly
|
|
|
|
271C75C0000
|
unkown
|
page read and write
|
|
|
|
22CAD3B0000
|
unkown
|
page readonly
|
|
|
|
1FD95881000
|
unkown
|
page read and write
|
|
|
|
1FD95AD0000
|
unkown
|
page readonly
|
|
|
|
14BD4A62000
|
unkown
|
page read and write
|
|
|
|
7FF54E0F5000
|
unkown
|
page readonly
|
|
|
|
1FD958A4000
|
unkown
|
page read and write
|
|
|
|
7FF5624CA000
|
unkown
|
page readonly
|
|
|
|
1FD96EAC000
|
unkown
|
page read and write
|
|
|
|
7FF59E986000
|
unkown
|
page readonly
|
|
|
|
7FF5D89C1000
|
unkown
|
page readonly
|
|
|
|
7FF5301F0000
|
unkown
|
page readonly
|
|
|
|
1C90D902000
|
unkown
|
page read and write
|
|
|
|
7FF574842000
|
unkown
|
page readonly
|
|
|
|
7FF5624A0000
|
unkown
|
page readonly
|
|
|
|
7FF53015C000
|
unkown
|
page readonly
|
|
|
|
1FD96EE2000
|
unkown
|
page read and write
|
|
|
|
7FF57FB98000
|
unkown
|
page readonly
|
|
|
|
11F51C02000
|
unkown
|
page read and write
|
|
|
|
1FD9B2B0000
|
unkown
|
page read and write
|
|
|
|
1FD95A00000
|
unkown
|
page readonly
|
|
|
|
BFB1FE000
|
unkown
|
page read and write
|
|
|
|
22CAD3D0000
|
unkown
|
page read and write
|
|
|
|
14BD4A13000
|
unkown
|
page read and write
|
|
|
|
1FD9B090000
|
unkown
|
page readonly
|
|
|
|
25F5C770000
|
heap private
|
page read and write
|
|
|
|
7FF530307000
|
unkown
|
page readonly
|
|
|
|
1C2E91B0000
|
unkown
|
page readonly
|
|
|
|
7FF59E847000
|
unkown
|
page readonly
|
|
|
|
D82B1FE000
|
unkown
|
page read and write
|
|
|
|
22CAD270000
|
heap private
|
page read and write
|
|
|
|
1FD95780000
|
unkown
|
page readonly
|
|
|
|
7FF5D8685000
|
unkown
|
page readonly
|
|
|
|
7FF53003C000
|
unkown
|
page readonly
|
|
|
|
7FF562544000
|
unkown
|
page readonly
|
|
|
|
7FF5376AF000
|
unkown
|
page readonly
|
|
|
|
11F51600000
|
unkown
|
page readonly
|
|
|
|
1BE45A13000
|
unkown
|
page read and write
|
|
|
|
7FF538986000
|
unkown
|
page readonly
|
|
|
|
1C90D720000
|
heap default
|
page read and write
|
|
|
|
7FF574430000
|
unkown
|
page readonly
|
|
|
|
7FF57FBE1000
|
unkown
|
page readonly
|
|
|
|
7FF582FB6000
|
unkown
|
page readonly
|
|
|
|
271C7602000
|
unkown
|
page read and write
|
|
|
|
1BE459C0000
|
unkown
|
page readonly
|
|
|
|
22CAD44A000
|
unkown
|
page read and write
|
|
|
|
7FF5381B7000
|
unkown
|
page readonly
|
|
|
|
1A9D5600000
|
unkown
|
page read and write
|
|
|
|
1FD9B2E0000
|
unkown
|
page read and write
|
|
|
|
7FF57489D000
|
unkown
|
page readonly
|
|
|
|
7FF4F2670000
|
unkown
|
page readonly
|
|
|
|
7FF562348000
|
unkown
|
page readonly
|
|
|
|
14BD4820000
|
unkown
|
page readonly
|
|
|
|
1BE45ACF000
|
unkown
|
page read and write
|
|
|
|
1FD96DD1000
|
unkown
|
page read and write
|
|
|
|
D82AC7F000
|
unkown
|
page read and write
|
|
|
|
7FF57FDA9000
|
unkown
|
page readonly
|
|
|
|
289C37E000
|
unkown
|
page read and write
|
|
|
|
7FF4F22CB000
|
unkown
|
page readonly
|
|
|
|
1BE45ABF000
|
unkown
|
page read and write
|
|
|
|
1A9D5666000
|
unkown
|
page read and write
|
|
|
|
7FF57492E000
|
unkown
|
page readonly
|
|
|
|
7FF57FD9E000
|
unkown
|
page readonly
|
|
|
|
11F51487000
|
unkown
|
page read and write
|
|
|
|
7FF530168000
|
unkown
|
page readonly
|
|
|
|
7FF52912C000
|
unkown
|
page readonly
|
|
|
|
24597D00000
|
unkown
|
page read and write
|
|
|
|
7FF562368000
|
unkown
|
page readonly
|
|
|
|
11F51340000
|
heap private
|
page read and write
|
|
|
|
7FF5301E1000
|
unkown
|
page readonly
|
|
|
|
25F5C83C000
|
unkown
|
page read and write
|
|
|
|
7FF538174000
|
unkown
|
page readonly
|
|
|
|
1DD22070000
|
unkown
|
page readonly
|
|
|
|
289C67F000
|
unkown
|
page read and write
|
|
|
|
7FF4F3A6C000
|
unkown
|
page readonly
|
|
|
|
7FF5D864C000
|
unkown
|
page readonly
|
|
|
|
1FD96EE8000
|
unkown
|
page read and write
|
|
|
|
7FF5625A1000
|
unkown
|
page readonly
|
|
|
|
7FF53014B000
|
unkown
|
page readonly
|
|
|
|
25F5C855000
|
unkown
|
page read and write
|
|
|
|
7FF57FDA9000
|
unkown
|
page readonly
|
|
|
|
7FF5387B3000
|
unkown
|
page readonly
|
|
|
|
1FD96EC6000
|
unkown
|
page read and write
|
|
|
|
25F5CAD0000
|
unkown
|
page readonly
|
|
|
|
1FD96E47000
|
unkown
|
page read and write
|
|
|
|
7FF530318000
|
unkown
|
page readonly
|
|
|
|
7FF53038D000
|
unkown
|
page readonly
|
|
|
|
7FF5D89BE000
|
unkown
|
page readonly
|
|
|
|
24596E95000
|
unkown
|
page read and write
|
|
|
|
7FF59E81D000
|
unkown
|
page readonly
|
|
|
|
1FD967E0000
|
unkown
|
page read and write
|
|
|
|
7FF5624B2000
|
unkown
|
page readonly
|
|
|
|
BFAFFF000
|
unkown
|
page read and write
|
|
|
|
AF6D37D000
|
unkown
|
page read and write
|
|
|
|
1FD9B200000
|
unkown
|
page readonly
|
|
|
|
7FF59E916000
|
unkown
|
page readonly
|
|
|
|
D82ACFF000
|
unkown
|
page read and write
|
|
|
|
25F5C908000
|
unkown
|
page read and write
|
|
|
|
14BD4A30000
|
unkown
|
page read and write
|
|
|
|
7FF53005B000
|
unkown
|
page readonly
|
|
|
|
24596F50000
|
unkown
|
page readonly
|
|
|
|
14BD4A79000
|
unkown
|
page read and write
|
|
|
|
1FD9B000000
|
unkown
|
page read and write
|
|
|
|
7FF53864F000
|
unkown
|
page readonly
|
|
|
|
1C90DC00000
|
unkown
|
page readonly
|
|
|
|
1BE45A88000
|
unkown
|
page read and write
|
|
|
|
7FF4F2B04000
|
unkown
|
page readonly
|
|
|
|
24597070000
|
unkown
|
page read and write
|
|
|
|
25F5C822000
|
unkown
|
page read and write
|
|
|
|
7B07E7E000
|
unkown
|
page read and write
|
|
|
|
1C90D730000
|
unkown
|
page readonly
|
|
|
|
7FF5D88C2000
|
unkown
|
page readonly
|
|
|
|
7FF56250D000
|
unkown
|
page readonly
|
|
|
|
1C90E002000
|
unkown
|
page read and write
|
|
|
|
7FF574728000
|
unkown
|
page readonly
|
|
|
|
14BD4A83000
|
unkown
|
page read and write
|
|
|
|
22CAD2D0000
|
heap default
|
page read and write
|
|
|
|
1FD96EC6000
|
unkown
|
page read and write
|
|
|
|
1FD96DD6000
|
unkown
|
page read and write
|
|
|
|
1DD22160000
|
unkown
|
page read and write
|
|
|
|
55A767E000
|
unkown
|
page read and write
|
|
|
|
1FD96EAF000
|
unkown
|
page read and write
|
|
|
|
1FD95858000
|
unkown
|
page read and write
|
|
|
|
7FF59E7DA000
|
unkown
|
page readonly
|
|
|
|
1C2E9255000
|
unkown
|
page read and write
|
|
|
|
7FF538A0E000
|
unkown
|
page readonly
|
|
|
|
7FF5748D0000
|
unkown
|
page readonly
|
|
|
|
7FF54E0B9000
|
unkown
|
page readonly
|
|
|
|
7FF530429000
|
unkown
|
page readonly
|
|
|
|
7FF561A1B000
|
unkown
|
page readonly
|
|
|
|
14BD4A74000
|
unkown
|
page read and write
|
|
|
|
1FD96DF0000
|
unkown
|
page read and write
|
|
|
|
1BE45AB1000
|
unkown
|
page read and write
|
|
|
|
1C2E925B000
|
unkown
|
page read and write
|
|
|
|
1FD9B004000
|
unkown
|
page read and write
|
|
|
|
7FF574830000
|
unkown
|
page readonly
|
|
|
|
1BE458E0000
|
unkown
|
page readonly
|
|
|
|
7FF582F8F000
|
unkown
|
page readonly
|
|
|
|
271C7629000
|
unkown
|
page read and write
|
|
|
|
7FF57FD40000
|
unkown
|
page readonly
|
|
|
|
1C2E9313000
|
unkown
|
page read and write
|
|
|
|
271C763D000
|
unkown
|
page read and write
|
|
|
|
7FF530061000
|
unkown
|
page readonly
|
|
|
|
7FF4F2958000
|
unkown
|
page readonly
|
|
|
|
7FF56225E000
|
unkown
|
page readonly
|
|
|
|
7FF5748D7000
|
unkown
|
page readonly
|
|
|
|
271C7590000
|
unkown
|
page read and write
|
|
|
|
1FD96CC0000
|
unkown
|
page read and write
|
|
|
|
7FF537672000
|
unkown
|
page readonly
|
|
|
|
1A9D563C000
|
unkown
|
page read and write
|
|
|
|
AA858FF000
|
unkown
|
page read and write
|
|
|
|
7FF5624F9000
|
unkown
|
page readonly
|
|
|
|
7FF4F2B61000
|
unkown
|
page readonly
|
|
|
|
7FF4F265A000
|
unkown
|
page readonly
|
|
|
|
55A75F9000
|
unkown
|
page read and write
|
|
|
|
245970A5000
|
heap private
|
page read and write
|
|
|
|
7FF5D8781000
|
unkown
|
page readonly
|
|
|
|
1A9D5629000
|
unkown
|
page read and write
|
|
|
|
7FF57486E000
|
unkown
|
page readonly
|
|
|
|
7FF574939000
|
unkown
|
page readonly
|
|
|
|
7FF53018E000
|
unkown
|
page readonly
|
|
|
|
7FF574846000
|
unkown
|
page readonly
|
|
|
|
1BE45AC6000
|
unkown
|
page read and write
|
|
|
|
1C2E91A0000
|
heap default
|
page read and write
|
|
|
|
7FF4F387E000
|
unkown
|
page readonly
|
|
|
|
7FF582FE7000
|
unkown
|
page readonly
|
|
|
|
7FF5827F3000
|
unkown
|
page readonly
|
|
|
|
7FF4F3B1A000
|
unkown
|
page readonly
|
|
|
|
1FD9B024000
|
unkown
|
page read and write
|
|
|
|
7FF4F2ACD000
|
unkown
|
page readonly
|
|
|
|
1FD96118000
|
unkown
|
page read and write
|
|
|
|
7FF53041E000
|
unkown
|
page readonly
|
|
|
|
7FF53036F000
|
unkown
|
page readonly
|
|
|
|
1FD96EC0000
|
unkown
|
page read and write
|
|
|
|
1FD96100000
|
unkown
|
page read and write
|
|
|
|
AA857F7000
|
unkown
|
page read and write
|
|
|
|
143DC7C000
|
unkown
|
page read and write
|
|
|
|
1FD96700000
|
unkown
|
page read and write
|
|
|
|
7FF4F37B2000
|
unkown
|
page readonly
|
|
|
|
25F5C86C000
|
unkown
|
page read and write
|
|
|
|
7FF57F8B0000
|
unkown
|
page readonly
|
|
|
|
1FD96DD0000
|
unkown
|
page read and write
|
|
|
|
7FF537678000
|
unkown
|
page readonly
|
|
|
|
7FF5D892D000
|
unkown
|
page readonly
|
|
|
|
7FF562516000
|
unkown
|
page readonly
|
|
|
|
1FD9B150000
|
unkown
|
page readonly
|
|
|
|
7FF583049000
|
unkown
|
page readonly
|
|
|
|
BFA79E000
|
unkown
|
page read and write
|
|
|
|
7FF54E07A000
|
unkown
|
page readonly
|
|
|
|
7FF4F3BCC000
|
unkown
|
page readonly
|
|
|
|
1DD221A0000
|
unkown
|
page readonly
|
|
|
|
1FD96118000
|
unkown
|
page read and write
|
|
|
|
7FF582FCC000
|
unkown
|
page readonly
|
|
|
|
14BD4A60000
|
unkown
|
page read and write
|
|
|
|
1FD9B150000
|
unkown
|
page read and write
|
|
|
|
11F5143E000
|
unkown
|
page read and write
|
|
|
|
7FF5301CB000
|
unkown
|
page readonly
|
|
|
|
D82A9FE000
|
unkown
|
page read and write
|
|
|
|
1FD96DD0000
|
unkown
|
page read and write
|
|
|
|
7FF530379000
|
unkown
|
page readonly
|
|
|
|
24597D60000
|
unkown
|
page read and write
|
|
|
|
7FF5D872E000
|
unkown
|
page readonly
|
|
|
|
7FF537704000
|
unkown
|
page readonly
|
|
|
|
14BD49D0000
|
unkown
|
page readonly
|
|
|
|
1FD9619D000
|
unkown
|
page read and write
|
|
|
|
7FF538A11000
|
unkown
|
page readonly
|
|
|
|
1FD9619D000
|
unkown
|
page read and write
|
|
|
|
1BE45ADC000
|
unkown
|
page read and write
|
|
|
|
7FF5301AF000
|
unkown
|
page readonly
|
|
|
|
7FF530336000
|
unkown
|
page readonly
|
|
|
|
7FF5D894C000
|
unkown
|
page readonly
|
|
|
|
7FF4F39E8000
|
unkown
|
page readonly
|
|
|
|
7FF582FBC000
|
unkown
|
page readonly
|
|
|
|
7FF54E161000
|
unkown
|
page readonly
|
|
|
|
1BE459B0000
|
unkown
|
page readonly
|
|
|
|
1BE46383000
|
unkown
|
page read and write
|
|
|
|
7FF59EA01000
|
unkown
|
page readonly
|
|
|
|
7FF54E0D6000
|
unkown
|
page readonly
|
|
|
|
22CAD427000
|
unkown
|
page read and write
|
|
|
|
7FF574771000
|
unkown
|
page readonly
|
|
|
|
14BD4A68000
|
unkown
|
page read and write
|
|
|
|
7FF537662000
|
unkown
|
page readonly
|
|
|
|
7FF4F3B52000
|
unkown
|
page readonly
|
|
|
|
83CE275000
|
unkown
|
page read and write
|
|
|
|
7FF57F89A000
|
unkown
|
page readonly
|
|
|
|
1BE46110000
|
unkown
|
page readonly
|
|
|
|
55A74FF000
|
unkown
|
page read and write
|
|
|
|
7FF4F3B2C000
|
unkown
|
page readonly
|
|
|
|
EB965FE000
|
unkown
|
page read and write
|
|
|
|
1FD9B310000
|
unkown
|
page read and write
|
|
|
|
14BD4A3A000
|
unkown
|
page read and write
|
|
|
|
7FF59E9A4000
|
unkown
|
page readonly
|
|
|
|
1A9D5670000
|
unkown
|
page read and write
|
|
|
|
7FF574777000
|
unkown
|
page readonly
|
|
|
|
1C90DEA0000
|
unkown
|
page readonly
|
|
|
|
1C90D867000
|
unkown
|
page read and write
|
|
|
|
480FE7B000
|
unkown
|
page read and write
|
|
|
|
55A747E000
|
unkown
|
page read and write
|
|
|
|
7FF4F3BE7000
|
unkown
|
page readonly
|
|
|
|
7FF4F2AEC000
|
unkown
|
page readonly
|
|
|
|
1C2E925A000
|
unkown
|
page read and write
|
|
|
|
24596DA0000
|
unkown
|
page read and write
|
|
|
|
EB962FE000
|
unkown
|
page read and write
|
|
|
|
D82A7FA000
|
unkown
|
page read and write
|
|
|
|
7FF5303C0000
|
unkown
|
page readonly
|
|
|
|
14BD4810000
|
heap default
|
page read and write
|
|
|
|
7FF574939000
|
unkown
|
page readonly
|
|
|
|
7FF53029C000
|
unkown
|
page readonly
|
|
|
|
1FD96EC6000
|
unkown
|
page read and write
|
|
|
|
7FF530036000
|
unkown
|
page readonly
|
|
|
|
BFB0FC000
|
unkown
|
page read and write
|
|
|
|
14BD4A64000
|
unkown
|
page read and write
|
|
|
|
22CAD413000
|
unkown
|
page read and write
|
|
|
|
22CAD2E0000
|
unkown
|
page readonly
|
|
|
|
289BE9B000
|
unkown
|
page read and write
|
|
|
|
1FD95FF3000
|
unkown
|
page read and write
|
|
|
|
1BE46202000
|
unkown
|
page read and write
|
|
|
|
AA8547E000
|
unkown
|
page read and write
|
|
|
|
24597AB0000
|
unkown
|
page read and write
|
|
|
|
1FD9619D000
|
unkown
|
page read and write
|
|
|
|
7FF562526000
|
unkown
|
page readonly
|
|
|
|
7FF54E078000
|
unkown
|
page readonly
|
|
|
|
7FF5D88FE000
|
unkown
|
page readonly
|
|
|
|
289BF1E000
|
unkown
|
page read and write
|
|
|
|
7FF562379000
|
unkown
|
page readonly
|
|
|
|
289C57E000
|
unkown
|
page read and write
|
|
|
|
1C2E91D0000
|
unkown
|
page read and write
|
|
|
|
1FD9B210000
|
unkown
|
page read and write
|
|
|
|
1FD9C000000
|
unkown
|
page read and write
|
|
|
|
7FF5D8807000
|
unkown
|
page readonly
|
|
|
|
7FF4F2A72000
|
unkown
|
page readonly
|
|
|
|
1FD95FB0000
|
unkown
|
page readonly
|
|
|
|
1FD96F02000
|
unkown
|
page read and write
|
|
|
|
245970B0000
|
unkown
|
page read and write
|
|
|
|
14BD4A6C000
|
unkown
|
page read and write
|
|
|
|
7FF57FB7A000
|
unkown
|
page readonly
|
|
|
|
7FF562270000
|
unkown
|
page readonly
|
|
|
|
25F5C7E0000
|
unkown
|
page readonly
|
|
|
|
7FF52FF65000
|
unkown
|
page readonly
|
|
|
|
1FD96118000
|
unkown
|
page read and write
|
|
|
|
1A9D5613000
|
unkown
|
page read and write
|
|
|
|
1C2E9263000
|
unkown
|
page read and write
|
|
|
|
24597CC0000
|
unkown
|
page read and write
|
|
|
|
1BE460F0000
|
unkown
|
page read and write
|
|
|
|
7FF59E7CE000
|
unkown
|
page readonly
|
|
|
|
7FF4F2B69000
|
unkown
|
page readonly
|
|
|
|
1C90DA00000
|
unkown
|
page readonly
|
|
|
|
1C2E9300000
|
unkown
|
page read and write
|
|
|
|
1BE45A29000
|
unkown
|
page read and write
|
|
|
|
24597720000
|
unkown
|
page readonly
|
|
|
|
1FD96C63000
|
unkown
|
page read and write
|
|
|
|
289BF9E000
|
unkown
|
page read and write
|
|
|
|
25F5C813000
|
unkown
|
page read and write
|
|
|
|
1FD96EC8000
|
unkown
|
page read and write
|
|
|
|
7FF530338000
|
unkown
|
page readonly
|
|
|
|
7FF5302D7000
|
unkown
|
page readonly
|
|
|
|
EB9667F000
|
unkown
|
page read and write
|
|
|
|
7FF5D8690000
|
unkown
|
page readonly
|
|
|
|
25F5C850000
|
unkown
|
page read and write
|
|
|
|
1BE45F90000
|
unkown
|
page readonly
|
|
|
|
143E17F000
|
unkown
|
page read and write
|
|
|
|
1A9D55E0000
|
unkown
|
page readonly
|
|
|
|
7FF5D8622000
|
unkown
|
page readonly
|
|
|
|
11F514B9000
|
unkown
|
page read and write
|
|
|
|
1C90D877000
|
unkown
|
page read and write
|
|
|
|
AA8567B000
|
unkown
|
page read and write
|
|
|
|
7FF5624E5000
|
unkown
|
page readonly
|
|
|
|
1BE460D0000
|
unkown
|
page readonly
|
|
|
|
7FF4F37AE000
|
unkown
|
page readonly
|
|
|
|
24596E00000
|
unkown
|
page read and write
|
|
|
|
1FD96DD1000
|
unkown
|
page read and write
|
|
|
|
D82AFFA000
|
unkown
|
page read and write
|
|
|
|
7FF4F2A8A000
|
unkown
|
page readonly
|
|
|
|
7FF582F99000
|
unkown
|
page readonly
|
|
|
|
7FF52FFBE000
|
unkown
|
page readonly
|
|
|
|
1FD96EE4000
|
unkown
|
page read and write
|
|
|
|
7FF53769E000
|
unkown
|
page readonly
|
|
|
|
11F51413000
|
unkown
|
page read and write
|
|
|
|
1BE45ADA000
|
unkown
|
page read and write
|
|
|
|
1FD9B110000
|
unkown
|
page read and write
|
|
|
|
1C90D913000
|
unkown
|
page read and write
|
|
|
|
D82A8FA000
|
unkown
|
page read and write
|
|
|
|
1BE46335000
|
unkown
|
page read and write
|
|
|
|
25F5C84D000
|
unkown
|
page read and write
|
|
|
|
7FF56251C000
|
unkown
|
page readonly
|
|
|
|
25F5CF30000
|
unkown
|
page read and write
|
|
|
|
7FF537637000
|
unkown
|
page readonly
|
|
|
|
7FF530396000
|
unkown
|
page readonly
|
|
|
|
22CAD488000
|
unkown
|
page read and write
|
|
|
|
71EF875000
|
unkown
|
page read and write
|
|
|
|
7FF5302C1000
|
unkown
|
page readonly
|
|
|
|
1FD95700000
|
heap private
|
page read and write
|
|
|
|
25F5C849000
|
unkown
|
page read and write
|
|
|
|
22CAD46D000
|
unkown
|
page read and write
|
|
|
|
7FF5D84C0000
|
unkown
|
page readonly
|
|
|
|
7FF57FCA0000
|
unkown
|
page readonly
|
|
|
|
1FD95790000
|
unkown
|
page read and write
|
|
|
|
7FF5302F7000
|
unkown
|
page readonly
|
|
|
|
1FD9B220000
|
unkown
|
page readonly
|
|
|
|
7FF5624B6000
|
unkown
|
page readonly
|
|
|
|
1BE46367000
|
unkown
|
page read and write
|
|
|
|
1FD96118000
|
unkown
|
page read and write
|
|
|
|
1FD9B0F0000
|
unkown
|
page read and write
|
|
|
|
7FF530332000
|
unkown
|
page readonly
|
|
|
|
1FD96EBA000
|
unkown
|
page read and write
|
|
|
|
7FF5748D4000
|
unkown
|
page readonly
|
|
|
|
7FF5D8881000
|
unkown
|
page readonly
|
|
|
|
48100FE000
|
unkown
|
page read and write
|
|
|
|
7FF5D877C000
|
unkown
|
page readonly
|
|
|
|
1C2E925D000
|
unkown
|
page read and write
|
|
|
|
7FF5D8708000
|
unkown
|
page readonly
|
|
|
|
7FF5300E5000
|
unkown
|
page readonly
|
|
|
|
7FF5D883C000
|
unkown
|
page readonly
|
|
|
|
1FD96DDF000
|
unkown
|
page read and write
|
|
|
|
AF6D77F000
|
unkown
|
page read and write
|
|
|
|
14BD4C00000
|
unkown
|
page readonly
|
|
|
|
1BE4633F000
|
unkown
|
page read and write
|
|
|
|
7FF54D953000
|
unkown
|
page readonly
|
|
|
|
24596E20000
|
unkown
|
page read and write
|
|
|
|
7FF538928000
|
unkown
|
page readonly
|
|
|
|
AA856FE000
|
unkown
|
page read and write
|
|
|
|
1FD9B274000
|
unkown
|
page write copy
|
|
|
|
7FF4F2B69000
|
unkown
|
page readonly
|
|
|
|
1BE45870000
|
heap private
|
page read and write
|
|
|
|
1FD96C70000
|
unkown
|
page readonly
|
|
|
|
7FF4F3BC6000
|
unkown
|
page readonly
|
|
|
|
7FF52FFC8000
|
unkown
|
page readonly
|
|
|
|
AF6CEFB000
|
unkown
|
page read and write
|
|
|
|
7FF57485A000
|
unkown
|
page readonly
|
|
|
|
1A9D5708000
|
unkown
|
page read and write
|
|
|
|
7FF53888C000
|
unkown
|
page readonly
|
|
|
|
7FF54E0E6000
|
unkown
|
page readonly
|
|
|
|
1FD96C20000
|
unkown
|
page read and write
|
|
|
|
14BD4A63000
|
unkown
|
page read and write
|
|
|
|
1BE45B13000
|
unkown
|
page read and write
|
|
|
|
AF6D87F000
|
unkown
|
page read and write
|
|
|
|
7FF562535000
|
unkown
|
page readonly
|
|
|
|
7FF4F3C49000
|
unkown
|
page readonly
|
|
|
|
7FF530391000
|
unkown
|
page readonly
|
|
|
|
22CAD508000
|
unkown
|
page read and write
|
|
|
|
7FF5D8905000
|
unkown
|
page readonly
|
|
|
|
7FF57FC1C000
|
unkown
|
page readonly
|
|
|
|
48102F7000
|
unkown
|
page read and write
|
|
|
|
7FF538926000
|
unkown
|
page readonly
|
|
|
|
7FF52FFA0000
|
unkown
|
page readonly
|
|
|
|
271C7E02000
|
unkown
|
page read and write
|
|
|
|
1FD9619D000
|
unkown
|
page read and write
|
|
|
|
7FF5D88A7000
|
unkown
|
page readonly
|
|
|
|
7FF5748B6000
|
unkown
|
page readonly
|
|
|
|
7FF57FCA2000
|
unkown
|
page readonly
|
|
|
|
BFAD77000
|
unkown
|
page read and write
|
|
|
|
271C7800000
|
unkown
|
page readonly
|
|
|
|
7FF59E9A0000
|
unkown
|
page readonly
|
|
|
|
14BD4A42000
|
unkown
|
page read and write
|
|
|
|
7FF59E97C000
|
unkown
|
page readonly
|
|
|
|
7FF59E912000
|
unkown
|
page readonly
|
|
|
|
1DD22190000
|
unkown
|
page readonly
|
|
|
|
7FF4F2A9E000
|
unkown
|
page readonly
|
|
|
|
71EFBFE000
|
unkown
|
page read and write
|
|
|
|
AF6D17F000
|
unkown
|
page read and write
|
|
|
|
7FF59E900000
|
unkown
|
page readonly
|
|
|
|
1FD9B284000
|
unkown
|
page readonly
|
|
|
|
1FD95E60000
|
unkown
|
page readonly
|
|
|
|
55A71FA000
|
unkown
|
page read and write
|
|
|
|
7FF5389A5000
|
unkown
|
page readonly
|
|
|
|
7FF574931000
|
unkown
|
page readonly
|
|
|
|
7FF4F3BE0000
|
unkown
|
page readonly
|
|
|
|
1C90DE80000
|
unkown
|
page read and write
|
|
|
|
1FD9B2A0000
|
unkown
|
page readonly
|
|
|
|
7FF5376E6000
|
unkown
|
page readonly
|
|
|
|
7FF57FD16000
|
unkown
|
page readonly
|
|
|
|
7FF53898C000
|
unkown
|
page readonly
|
|
|
|
1FD96EBE000
|
unkown
|
page read and write
|
|
|
|
1FD96000000
|
unkown
|
page read and write
|
|
|
|
7B07F7E000
|
unkown
|
page read and write
|
|
|
|
25F5C902000
|
unkown
|
page read and write
|
|
|
|
24596E58000
|
heap default
|
page read and write
|
|
|
|
7FF5300AC000
|
unkown
|
page readonly
|
|
|
|
7FF4F3AD5000
|
unkown
|
page readonly
|
|
|
|
7FF57F8A0000
|
unkown
|
page readonly
|
|
|
|
7B07CFF000
|
unkown
|
page read and write
|
|
|
|
7FF5D81B0000
|
unkown
|
page readonly
|
|
|
|
7FF4F2973000
|
unkown
|
page readonly
|
|
|
|
1FD96EC6000
|
unkown
|
page read and write
|
|
|
|
1BE46375000
|
unkown
|
page read and write
|
|
|
|
71EF6FE000
|
unkown
|
page read and write
|
|
|
|
71EFB7F000
|
unkown
|
page read and write
|
|
|
|
7FF562257000
|
unkown
|
page readonly
|
|
|
|
22CAD44E000
|
unkown
|
page read and write
|
|
|
|
1FD9B0D0000
|
unkown
|
page read and write
|
|
|
|
7FF5376CD000
|
unkown
|
page readonly
|
|
|
|
1FD9B2C0000
|
unkown
|
page read and write
|
|
|
|
7FF537385000
|
unkown
|
page readonly
|
|
|
|
7FF4F381F000
|
unkown
|
page readonly
|
|
|
|
AF6D07B000
|
unkown
|
page read and write
|
|
|
|
7FF5374EF000
|
unkown
|
page readonly
|
|
|
|
1C2E9213000
|
unkown
|
page read and write
|
|
|
|
7FF582FD5000
|
unkown
|
page readonly
|
|
|
|
7FF574440000
|
unkown
|
page readonly
|
|
|
|
25F5C913000
|
unkown
|
page read and write
|
|
|
|
7FF582D6A000
|
unkown
|
page readonly
|
|
|
|
7FF4F39CF000
|
unkown
|
page readonly
|
|
|
|
7FF538A19000
|
unkown
|
page readonly
|
|
|
|
1BE4636E000
|
unkown
|
page read and write
|
|
|
|
1BE46300000
|
unkown
|
page read and write
|
|
|
|
271C7702000
|
unkown
|
page read and write
|
|
|
|
83CE17F000
|
unkown
|
page read and write
|
|
|
|
7FF59E4FA000
|
unkown
|
page readonly
|
|
|
|
1BE463CC000
|
unkown
|
page read and write
|
|
|
|
1BE45AA6000
|
unkown
|
page read and write
|
|
|
|
1C90D840000
|
unkown
|
page read and write
|
|
|
|
7FF5D84D0000
|
unkown
|
page readonly
|
|
|
|
1FD9619D000
|
unkown
|
page read and write
|
|
|
|
1A9D5713000
|
unkown
|
page read and write
|
|
|
|
7FF5D86DF000
|
unkown
|
page readonly
|
|
|
|
1BE46400000
|
unkown
|
page readonly
|
|
|
|
1FD95800000
|
unkown
|
page read and write
|
|
|
|
1FD96C40000
|
unkown
|
page read and write
|
|
|
|
7FF582F85000
|
unkown
|
page readonly
|
|
|
|
7FF54E0EC000
|
unkown
|
page readonly
|
|
|
|
1FD95902000
|
unkown
|
page read and write
|
|
|
|
7FF57FD1C000
|
unkown
|
page readonly
|
|
|
|
1DD22340000
|
heap private
|
page read and write
|
|
|
|
271C7570000
|
unkown
|
page readonly
|
|
|
|
AA859FE000
|
unkown
|
page read and write
|
|
|
|
7FF57487F000
|
unkown
|
page readonly
|
|
|
|
83CE6FF000
|
unkown
|
page read and write
|
|
|
|
7FF5303B5000
|
unkown
|
page readonly
|
|
|
|
7FF5625A9000
|
unkown
|
page readonly
|
|
|
|
7FF4F2AB9000
|
unkown
|
page readonly
|
|
|
|
7FF59E510000
|
unkown
|
page readonly
|
|
|
|
7FF54D950000
|
unkown
|
page readonly
|
|
|
|
1FD9B000000
|
unkown
|
page read and write
|
|
|
|
1C90D800000
|
unkown
|
page read and write
|
|
|
|
1FD9B008000
|
unkown
|
page read and write
|
|
|
|
14BD4A7B000
|
unkown
|
page read and write
|
|
|
|
7FF582DCF000
|
unkown
|
page readonly
|
|
|
|
7FF530303000
|
unkown
|
page readonly
|
|
|
|
7FF5D84BA000
|
unkown
|
page readonly
|
|
|
|
7FF4F293A000
|
unkown
|
page readonly
|
|
|
|
7FF5D8439000
|
unkown
|
page readonly
|
|
|
|
24596EB9000
|
heap default
|
page read and write
|
|
|
|
1BE45A82000
|
unkown
|
page read and write
|
|
|
|
143E77E000
|
unkown
|
page read and write
|
|
|
|
7FF562435000
|
unkown
|
page readonly
|
|
|
|
1FD96EC6000
|
unkown
|
page read and write
|
|
|
|
1FD95913000
|
unkown
|
page read and write
|
|
|
|
7FF4F2B07000
|
unkown
|
page readonly
|
|
|
|
7FF530320000
|
unkown
|
page readonly
|
|
|
|
14BD4A4E000
|
unkown
|
page read and write
|
|
|
|
7FF59E902000
|
unkown
|
page readonly
|
|
|
|
1A9D5602000
|
unkown
|
page read and write
|
|
|
|
1FD96CA0000
|
unkown
|
page read and write
|
|
|
|
24597080000
|
unkown
|
page read and write
|
|
|
|
7FF5302EB000
|
unkown
|
page readonly
|
|
|
|
1FD96118000
|
unkown
|
page read and write
|
|
|
|
7FF538827000
|
unkown
|
page readonly
|
|
|
|
7FF5376DC000
|
unkown
|
page readonly
|
|
|
|
7FF59E841000
|
unkown
|
page readonly
|
|
|
|
14BD4A77000
|
unkown
|
page read and write
|
|
|
|
1C2E9F40000
|
unkown
|
page readonly
|
|
|
|
11F51D32000
|
unkown
|
page read and write
|
|
|
|
7FF52F8A0000
|
unkown
|
page readonly
|
|
|
|
1C2E9308000
|
unkown
|
page read and write
|
|
|
|
1C2E9A02000
|
unkown
|
page read and write
|
|
|
|
7FF537334000
|
unkown
|
page readonly
|
|
|
|
1FD9B2F0000
|
unkown
|
page readonly
|
|
|
|
7FF537327000
|
unkown
|
page readonly
|
|
|
|
22CAD43C000
|
unkown
|
page read and write
|
|
|
|
24596E9C000
|
unkown
|
page read and write
|
|
|
|
7FF5D88EA000
|
unkown
|
page readonly
|
|
|
|
7FF5D85FB000
|
unkown
|
page readonly
|
|
|
|
7FF5D86E3000
|
unkown
|
page readonly
|
|
|
|
11F5146B000
|
unkown
|
page read and write
|
|
|
|
7FF57FD35000
|
unkown
|
page readonly
|
|
|
|
14BD4A47000
|
unkown
|
page read and write
|
|
|
|
1FD958D0000
|
unkown
|
page read and write
|
|
|
|
7FF562547000
|
unkown
|
page readonly
|
|
|
|
7FF53035E000
|
unkown
|
page readonly
|
|
|
|
7FF5D81B3000
|
unkown
|
page readonly
|
|
|
|
1C2E9140000
|
heap private
|
page read and write
|
|
|
|
1FD96159000
|
unkown
|
page read and write
|
|
|
|
7FF59E72A000
|
unkown
|
page readonly
|
|
|
|
480FF7E000
|
unkown
|
page read and write
|
|
|
|
11F51502000
|
unkown
|
page read and write
|
|
|
|
D82A677000
|
unkown
|
page read and write
|
|
|
|
22CAD429000
|
unkown
|
page read and write
|
|
|
|
7FF57FD0D000
|
unkown
|
page readonly
|
|
|
|
1A9D5702000
|
unkown
|
page read and write
|
|
|
|
1DD226E0000
|
unkown
|
page readonly
|
|
|
|
AA851AE000
|
unkown
|
page read and write
|
|
|
|
7FF57442A000
|
unkown
|
page readonly
|
|
|
|
7FF59EA09000
|
unkown
|
page readonly
|
|
|
|
24596E40000
|
unkown
|
page readonly
|
|
|
|
14BD4A75000
|
unkown
|
page read and write
|
|
|
|
7FF54E0AF000
|
unkown
|
page readonly
|
|
|
|
1FD96EC6000
|
unkown
|
page read and write
|
|
|
|
7FF59E92A000
|
unkown
|
page readonly
|
|
|
|
7FF4F29A1000
|
unkown
|
page readonly
|
|
|
|
14BD4A7E000
|
unkown
|
page read and write
|
|
|
|
1C2E926A000
|
unkown
|
page read and write
|
|
|
|
7FF4F29A7000
|
unkown
|
page readonly
|
|
|
|
7FF583041000
|
unkown
|
page readonly
|
|
|
|
1FD95FA0000
|
unkown
|
page readonly
|
|
|
|
7FF530295000
|
unkown
|
page readonly
|
|
|
|
7FF4F2A01000
|
unkown
|
page readonly
|
|
|
|
D82AD7F000
|
unkown
|
page read and write
|
|
|
|
7FF582D73000
|
unkown
|
page readonly
|
|
|
|
24597020000
|
unkown
|
page readonly
|
|
|
|
7FF582FE4000
|
unkown
|
page readonly
|
|
|
|
1FD9B150000
|
unkown
|
page read and write
|
|
|
|
7FF5624A2000
|
unkown
|
page readonly
|
|
|
|
7FF5748AC000
|
unkown
|
page readonly
|
|
|
|
7FF582F6A000
|
unkown
|
page readonly
|
|
|
|
7FF5303AC000
|
unkown
|
page readonly
|
|
|
|
480FEFE000
|
unkown
|
page read and write
|
|
|
|
1FD96159000
|
unkown
|
page read and write
|
|
|
|
1BE46367000
|
unkown
|
page read and write
|
|
|
|
7FF537761000
|
unkown
|
page readonly
|
|
|
|
7FF57FB6E000
|
unkown
|
page readonly
|
|
|
|
14BD48F0000
|
unkown
|
page readonly
|
|
|
|
7FF57FDA1000
|
unkown
|
page readonly
|
|
|
|
71EF97B000
|
unkown
|
page read and write
|
|
|
|
7FF5D8919000
|
unkown
|
page readonly
|
|
|
|
7FF5827EE000
|
unkown
|
page readonly
|
|
|
|
7FF4F28EF000
|
unkown
|
page readonly
|
|
|
|
7FF57FCB6000
|
unkown
|
page readonly
|
|
|
|
1BE4631F000
|
unkown
|
page read and write
|
|
|
|
7FF5D8116000
|
unkown
|
page readonly
|
|
|
|
1C90D813000
|
unkown
|
page read and write
|
|
|
|
1FD9B2C0000
|
unkown
|
page read and write
|
|
|
|
7FF59E98C000
|
unkown
|
page readonly
|
|
|
|
7FF4F3A60000
|
unkown
|
page readonly
|
|
|
|
1FD958AF000
|
unkown
|
page read and write
|
|
|
|
7FF56232F000
|
unkown
|
page readonly
|
|
|
|
1DD22345000
|
heap private
|
page read and write
|
|
|
|
D82ADFF000
|
unkown
|
page read and write
|
|
|
|
7FF53899C000
|
unkown
|
page readonly
|
|
|
|
7FF5D843D000
|
unkown
|
page readonly
|
|
|
|
1FD96EC6000
|
unkown
|
page read and write
|
|
|
|
7FF4F3AC7000
|
unkown
|
page readonly
|
|
|
|
24597CF0000
|
unkown
|
page readonly
|
|
|
|
1C2E91C0000
|
unkown
|
page readonly
|
|
|
|
7FF4F3BAD000
|
unkown
|
page readonly
|
|
|
|
1BE45A6F000
|
unkown
|
page read and write
|
|
|
|
1BE45A3C000
|
unkown
|
page read and write
|
|
|
|
14BD4A00000
|
unkown
|
page read and write
|
|
|
|
7FF5747D1000
|
unkown
|
page readonly
|
|
|
|
7FF530420000
|
unkown
|
page readonly
|
|
|
|
1FD96DD5000
|
unkown
|
page read and write
|
|
|
|
22CADC02000
|
unkown
|
page read and write
|
|
|
|
1A9D5666000
|
unkown
|
page read and write
|
|
|
|
7FF5301E8000
|
unkown
|
page readonly
|
|
|
|
143E1FC000
|
unkown
|
page read and write
|
|
|
|
7FF5D8964000
|
unkown
|
page readonly
|
|
|
|
7FF59E959000
|
unkown
|
page readonly
|
|
|
|
143DE7C000
|
unkown
|
page read and write
|
|
|
|
7FF54E0DC000
|
unkown
|
page readonly
|
|
|
|
14BD49E0000
|
unkown
|
page read and write
|
|
|
|
14BD4A48000
|
unkown
|
page read and write
|
|
|
|
1FD96CB0000
|
unkown
|
page read and write
|
|
|
|
14BD4A41000
|
unkown
|
page read and write
|
|
|
|
7FF4F3B4D000
|
unkown
|
page readonly
|
|
|
|
1C90D829000
|
unkown
|
page read and write
|
|
|
|
7FF4F3B58000
|
unkown
|
page readonly
|
|
|
|
83CE3FB000
|
unkown
|
page read and write
|
|
|
|
1BE463CC000
|
unkown
|
page read and write
|
|
|
|
83CE5FE000
|
unkown
|
page read and write
|
|
|
|
24596E9C000
|
unkown
|
page read and write
|
|
|
|
7FF4F3B99000
|
unkown
|
page readonly
|
|
|
|
245972C0000
|
unkown
|
page readonly
|
|
|
|
1C90DE70000
|
unkown
|
page readonly
|
|
|
|
7FF5D88D2000
|
unkown
|
page readonly
|
|
|
|
7FF57FBBD000
|
unkown
|
page readonly
|
|
|
|
1FD9C010000
|
unkown
|
page read and write
|
|
|
|
245970A9000
|
heap private
|
page read and write
|
|
|
|
1FD96600000
|
unkown
|
page read and write
|
|
|
|
7B0807D000
|
unkown
|
page read and write
|
|
|
|
7FF54E102000
|
unkown
|
page readonly
|
|
|
|
25F5C7F0000
|
unkown
|
page readonly
|
|
|
|
7FF4F3B40000
|
unkown
|
page readonly
|
|
|
|
7FF4F2660000
|
unkown
|
page readonly
|
|
|
|
7FF5748BC000
|
unkown
|
page readonly
|
|
|
|
245970A0000
|
heap private
|
page read and write
|
|
|
|
1FD96EE2000
|
unkown
|
page read and write
|
|
|
|
143E67C000
|
unkown
|
page read and write
|
|
|
|
AF6D67F000
|
unkown
|
page read and write
|
|
|
|
11F5142A000
|
unkown
|
page read and write
|
|
|
|
7FF5376D1000
|
unkown
|
page readonly
|
|
|
|
14BD4A2D000
|
unkown
|
page read and write
|
|
|
|
7FF4F2AD6000
|
unkown
|
page readonly
|
|
|
|
7FF538885000
|
unkown
|
page readonly
|
|
|
|
7FF4F3ABC000
|
unkown
|
page readonly
|
|
|
|
1FD9B090000
|
unkown
|
page read and write
|
|
|
|
24597060000
|
unkown
|
page read and write
|
|
|
|
24597CE0000
|
unkown
|
page read and write
|
|
|
|
271C7560000
|
heap default
|
page read and write
|
|
|
|
7FF583049000
|
unkown
|
page readonly
|
|
|
|
1FD9619D000
|
unkown
|
page read and write
|
|
|
|
7FF56247A000
|
unkown
|
page readonly
|
|
|
|
143E57E000
|
unkown
|
page read and write
|
|
|
|
7FF4F2A78000
|
unkown
|
page readonly
|
|
|
|
7FF538996000
|
unkown
|
page readonly
|
|
|
|
7FF59E813000
|
unkown
|
page readonly
|
|
|
|
11F513D0000
|
unkown
|
page read and write
|
|
|
|
7FF538A19000
|
unkown
|
page readonly
|
|
|
|
7FF4F3B7E000
|
unkown
|
page readonly
|
|
|
|
7FF4F2A60000
|
unkown
|
page readonly
|
|
|
|
7FF4F3B85000
|
unkown
|
page readonly
|
|
|
|
1FD96DD0000
|
unkown
|
page read and write
|
|
|
|
1FD9B287000
|
unkown
|
page readonly
|
|
|
|
11F513C0000
|
unkown
|
page readonly
|
|
|
|
1FD9B00E000
|
unkown
|
page read and write
|
|
|
|
AF6D47F000
|
unkown
|
page read and write
|
|
|
|
1FD96DF0000
|
unkown
|
page read and write
|
|
|
|
289C47E000
|
unkown
|
page read and write
|
|
|
|
83CE4F7000
|
unkown
|
page read and write
|
|
|
|
7FF5382A1000
|
unkown
|
page readonly
|
|
|
|
14BD4A56000
|
unkown
|
page read and write
|
|
|
|
7FF5D879A000
|
unkown
|
page readonly
|
|
|
|
1C2E9224000
|
unkown
|
page read and write
|
|
|
|
7FF5D88C0000
|
unkown
|
page readonly
|
|
|
|
1C2E9285000
|
unkown
|
page read and write
|
|
|
|
7FF5302E1000
|
unkown
|
page readonly
|
|
|
|
7FF4F3831000
|
unkown
|
page readonly
|
|
|
|
7FF53775E000
|
unkown
|
page readonly
|
|
|
|
1C90DDA0000
|
unkown
|
page readonly
|
|
|
|
1FD9B0B0000
|
unkown
|
page readonly
|
|
|
|
1FD957A0000
|
unkown
|
page read and write
|
|
|
|
1BE45AF7000
|
unkown
|
page read and write
|
|
|
|
1C2E9C00000
|
unkown
|
page readonly
|
|
|
|
1FD96EE1000
|
unkown
|
page read and write
|
|
|
|
7FF574848000
|
unkown
|
page readonly
|
|
|
|
11F51B40000
|
unkown
|
page write copy
|
|
|
|
1BE46319000
|
unkown
|
page read and write
|
|
|
|
7B080FE000
|
unkown
|
page read and write
|
|
|
|
7FF537323000
|
unkown
|
page readonly
|
|
|
|
1FD9B170000
|
unkown
|
page readonly
|
|
|
|
7FF59E918000
|
unkown
|
page readonly
|
|
|
|
1A9D568A000
|
unkown
|
page read and write
|
|
|
|
7FF59E9FE000
|
unkown
|
page readonly
|
|
|
|
1FD958CB000
|
unkown
|
page read and write
|
|
|
|
7FF5D87D3000
|
unkown
|
page readonly
|
|
|
|
25F5C900000
|
unkown
|
page read and write
|
|
|
|
7FF5300DE000
|
unkown
|
page readonly
|
|
|
|
7FF4F288A000
|
unkown
|
page readonly
|
|
|
|
1FD96EE2000
|
unkown
|
page read and write
|
|
|
|
1FD9619A000
|
unkown
|
page read and write
|
|
|
|
14BD4A02000
|
unkown
|
page read and write
|
|
|
|
4810075000
|
unkown
|
page read and write
|
|
|
|
1BE45A9F000
|
unkown
|
page read and write
|
|
|
|
22CAD453000
|
unkown
|
page read and write
|
|
|
|
1C90E200000
|
unkown
|
page readonly
|
|
|
|
1FD9B260000
|
unkown
|
page read and write
|
|
|
|
11F51400000
|
unkown
|
page read and write
|
|
|
|
7FF54E15E000
|
unkown
|
page readonly
|
|
|
|
1FD96DC0000
|
unkown
|
page read and write
|
|
|
|
1FD9B240000
|
unkown
|
page readonly
|
|
|
|
7FF5376A5000
|
unkown
|
page readonly
|
|
|
|
7FF53003F000
|
unkown
|
page readonly
|
|
|
|
71EF77E000
|
unkown
|
page read and write
|
|
|
|
7FF4F3C40000
|
unkown
|
page readonly
|
|
|
|
7FF5376D6000
|
unkown
|
page readonly
|
|
|
|
14BD4A45000
|
unkown
|
page read and write
|
|
|
|
7FF52912C000
|
unkown
|
page readonly
|
|
|
|
1FD95FD0000
|
unkown
|
page readonly
|
|
|
|
7FF57FD2C000
|
unkown
|
page readonly
|
|
|
|
48103FF000
|
unkown
|
page read and write
|
|
|
|
BFAC7B000
|
unkown
|
page read and write
|
|
|
|
1FD95F90000
|
unkown
|
page readonly
|
|
|
|
1FD96113000
|
unkown
|
page read and write
|
|
|
|
1FD96002000
|
unkown
|
page read and write
|
|
|
|
1BE458D0000
|
heap default
|
page read and write
|
|
|
|
1FD96C60000
|
unkown
|
page read and write
|
|
|
|
AA8512C000
|
unkown
|
page read and write
|
|
|
|
1FD95841000
|
unkown
|
page read and write
|
|
|
|
1BE45B02000
|
unkown
|
page read and write
|
|
|
|
1FD96E58000
|
unkown
|
page read and write
|
|
|
|
7FF57FB2F000
|
unkown
|
page readonly
|
|
|
|
7FF5303A6000
|
unkown
|
page readonly
|
|
|
|
7FF5D887A000
|
unkown
|
page readonly
|
|
|
|
7FF52FFB7000
|
unkown
|
page readonly
|
|
|
|
1FD9B320000
|
unkown
|
page read and write
|
|
|
|
1BE46356000
|
unkown
|
page read and write
|
|
|
|
7FF57FBE7000
|
unkown
|
page readonly
|
|
|
|
7FF5D8936000
|
unkown
|
page readonly
|
|
|
|
7FF4F3BBC000
|
unkown
|
page readonly
|
|
|
|
EB9627F000
|
unkown
|
page read and write
|
|
|
|
7FF5621DB000
|
unkown
|
page readonly
|
|
|
|
1FD9B2F4000
|
unkown
|
page readonly
|
|
|
|
7FF530322000
|
unkown
|
page readonly
|
|
|
|
7FF537320000
|
unkown
|
page readonly
|
|
|
|
7FF5376B9000
|
unkown
|
page readonly
|
|
|
|
271C75C0000
|
unkown
|
page read and write
|
|
|
|
1FD9589A000
|
unkown
|
page read and write
|
|
|
|
7FF57FCEF000
|
unkown
|
page readonly
|
|
|
|
7FF4F3976000
|
unkown
|
page readonly
|
|
|
|
7FF4F292E000
|
unkown
|
page readonly
|
|
|
|
7FF582FAD000
|
unkown
|
page readonly
|
|
|
|
7FF5D86EA000
|
unkown
|
page readonly
|
|
|
|
7FF4F29DC000
|
unkown
|
page readonly
|
|
|
|
7FF537660000
|
unkown
|
page readonly
|
|
|
|
1FD9B0B4000
|
unkown
|
page read and write
|
|
|
|
1FD96DDB000
|
unkown
|
page read and write
|
|
|
|
1FD9B268000
|
unkown
|
page read and write
|
|
|
|
7FF57F5C8000
|
unkown
|
page readonly
|
|
|
|
1DD221B7000
|
heap default
|
page read and write
|
|
|
|
1FD9B2A4000
|
unkown
|
page readonly
|
|
|
|
271C7500000
|
heap private
|
page read and write
|
|
|
|
AA85575000
|
unkown
|
page read and write
|
|
|
|
7FF4F3BB1000
|
unkown
|
page readonly
|
|
|
|
EB964FF000
|
unkown
|
page read and write
|
|
|
|
7FF5624DE000
|
unkown
|
page readonly
|
|
|
|
7FF574832000
|
unkown
|
page readonly
|
|
|
|
7FF5D878E000
|
unkown
|
page readonly
|
|
|
|
24597D10000
|
unkown
|
page read and write
|
|
|
|
1DD221B0000
|
heap default
|
page read and write
|
|
|
|
1BE45AAB000
|
unkown
|
page read and write
|
|
|
|
7FF54DD9B000
|
unkown
|
page readonly
|
|
|
|
7FF59E96D000
|
unkown
|
page readonly
|
|
|
|
EB963F9000
|
unkown
|
page read and write
|
|
|
|
7FF5376EC000
|
unkown
|
page readonly
|
|
|
|
7FF4F3BE4000
|
unkown
|
page readonly
|
|
|
|
7FF4F2A62000
|
unkown
|
page readonly
|
|
|
|
22CAD456000
|
unkown
|
page read and write
|
|
|
|
1FD9B094000
|
unkown
|
page readonly
|
|
|
|
1FD96DDB000
|
unkown
|
page read and write
|
|
|
|
1A9D564F000
|
unkown
|
page read and write
|
|
|
|
1C2E9400000
|
unkown
|
page readonly
|
|
|
|
7FF5D85DC000
|
unkown
|
page readonly
|
|
|
|
1FD95813000
|
unkown
|
page read and write
|
|
|
|
25F5C82A000
|
unkown
|
page read and write
|
|
|
|
7FF53816C000
|
unkown
|
page readonly
|
|
|
|
7FF562265000
|
unkown
|
page readonly
|
|
|
|
25F5C884000
|
unkown
|
page read and write
|
|
|
|
1DD22140000
|
unkown
|
page read and write
|
|
|
|
7FF54E0CD000
|
unkown
|
page readonly
|
|
|
|
1FD9619D000
|
unkown
|
page read and write
|
|
|
|
7FF4F2AE6000
|
unkown
|
page readonly
|
|
|
|
11F51A60000
|
unkown
|
page readonly
|
|
|
|
1FD96015000
|
unkown
|
page read and write
|
|
|
|
1FD97000000
|
unkown
|
page read and write
|
|
|
|
1BE45C00000
|
unkown
|
page readonly
|
|
|
|
1FD9619D000
|
unkown
|
page read and write
|
|
|
|
14BD4A49000
|
unkown
|
page read and write
|
|
|
|
1FD96DC0000
|
unkown
|
page read and write
|
|
|
|
14BD4B02000
|
unkown
|
page read and write
|
|
|
|
7FF582FC6000
|
unkown
|
page readonly
|
|
|
|
7FF5D89C9000
|
unkown
|
page readonly
|
|
|
|
7FF5302A7000
|
unkown
|
page readonly
|
|
|
|
7FF574889000
|
unkown
|
page readonly
|
|
|
|
7FF5300D7000
|
unkown
|
page readonly
|
|
|
|
7FF537707000
|
unkown
|
page readonly
|
|
|
|
7FF4F2A76000
|
unkown
|
page readonly
|
|
|
|
1FD95829000
|
unkown
|
page read and write
|
|
|
|
1BE4632C000
|
unkown
|
page read and write
|
|
|
|
7FF4F3C3E000
|
unkown
|
page readonly
|
|
|
|
1A9D5E02000
|
unkown
|
page read and write
|
|
|
|
BFAF77000
|
unkown
|
page read and write
|
|
|
|
83CE07B000
|
unkown
|
page read and write
|
|
|
|
25F5C800000
|
unkown
|
page read and write
|
|
|
|
1BE463A8000
|
unkown
|
page read and write
|
|
|
|
1BE46381000
|
unkown
|
page read and write
|
|
|
|
25F5D200000
|
unkown
|
page readonly
|
|
|
|
7FF4F3A57000
|
unkown
|
page readonly
|
|
|
|
1C90D875000
|
unkown
|
page read and write
|
|
|
|
BFAA7D000
|
unkown
|
page read and write
|
|
|
|
1BE46100000
|
unkown
|
page read and write
|
|
|
|
71EFA77000
|
unkown
|
page read and write
|
|
|
|
11F513B0000
|
unkown
|
page readonly
|
|
|
|
7FF4F3896000
|
unkown
|
page readonly
|
|
|
|
1FD9588A000
|
unkown
|
page read and write
|
|
|
|
7FF59E945000
|
unkown
|
page readonly
|
|
|
|
1BE46080000
|
unkown
|
page write copy
|
|
|
|
D82AEFF000
|
unkown
|
page read and write
|
|
|
|
11F513A0000
|
heap default
|
page read and write
|
|
|
|
24596E50000
|
heap default
|
page read and write
|
|
|
|
7FF582F58000
|
unkown
|
page readonly
|
|
|
|
7FF5D85DF000
|
unkown
|
page readonly
|
|
|
|
7FF56259E000
|
unkown
|
page readonly
|
|
|
|
24596E9C000
|
unkown
|
page read and write
|
|
|
|
22CAD502000
|
unkown
|
page read and write
|
|
|
|
7FF59E78F000
|
unkown
|
page readonly
|
|
|
|
1FD9B0C0000
|
unkown
|
page read and write
|
|
|
|
1FD96F00000
|
unkown
|
page read and write
|
|
|
|
7FF59E9A7000
|
unkown
|
page readonly
|
|
|
|
7FF54E169000
|
unkown
|
page readonly
|
|
|
|
7FF5625A9000
|
unkown
|
page readonly
|
|
|
|
1A9D5510000
|
unkown
|
page readonly
|
|
|
|
7FF537769000
|
unkown
|
page readonly
|
|
|
|
22CADA80000
|
unkown
|
page readonly
|
|
|
|
1FD9589D000
|
unkown
|
page read and write
|
|
|
|
11F52140000
|
unkown
|
page readonly
|
|
|
|
271C7C60000
|
unkown
|
page readonly
|
|
|
|
7FF582F7E000
|
unkown
|
page readonly
|
|
|
|
1BE46314000
|
unkown
|
page read and write
|
|
|
|
7FF4F2AF5000
|
unkown
|
page readonly
|
|
|
|
7FF5D88D8000
|
unkown
|
page readonly
|
|
|
|
7FF59E93E000
|
unkown
|
page readonly
|
|
|
|
11F514CA000
|
unkown
|
page read and write
|
|
|
|
7FF57FD26000
|
unkown
|
page readonly
|
|
|
|
1C2E9302000
|
unkown
|
page read and write
|
|
|
|
7FF5301F9000
|
unkown
|
page readonly
|
|
|
|
1FD96118000
|
unkown
|
page read and write
|
|
|
|
1C2E925C000
|
unkown
|
page read and write
|
|
|
|
143E2FC000
|
unkown
|
page read and write
|
|
|
|
7FF59EA09000
|
unkown
|
page readonly
|
|
|
|
7FF53034A000
|
unkown
|
page readonly
|
|
|
|
D82A47B000
|
unkown
|
page read and write
|
|
|
|
1FD96EE4000
|
unkown
|
page read and write
|
|
|
|
1FD96159000
|
unkown
|
page read and write
|
|
|
|
D82ABFB000
|
unkown
|
page read and write
|
|
|
|
22CAD400000
|
unkown
|
page read and write
|
|
|
|
14BD4A65000
|
unkown
|
page read and write
|
|
|
|
7FF57FBB3000
|
unkown
|
page readonly
|
|
|
|
1DD22350000
|
unkown
|
page readonly
|
|
|
|
55A757E000
|
unkown
|
page read and write
|
|
|
|
22CAD500000
|
unkown
|
page read and write
|
|
|
|
AF6D57F000
|
unkown
|
page read and write
|
|
|
|
7FF53039C000
|
unkown
|
page readonly
|
|
|
|
7FF4F3BD5000
|
unkown
|
page readonly
|
|
|
|
7FF5D88A3000
|
unkown
|
page readonly
|
|
|
|
1FD96E00000
|
unkown
|
page read and write
|
|
|
|
271C7613000
|
unkown
|
page read and write
|
|
|
|
1FD95FF0000
|
unkown
|
page read and write
|
|
|
|
7FF5D8946000
|
unkown
|
page readonly
|
|
|
|
1FD95887000
|
unkown
|
page read and write
|
|
|
|
1FD96300000
|
unkown
|
page read and write
|
|
|
|
1A9D54A0000
|
heap private
|
page read and write
|
|
|
|
7FF5748A6000
|
unkown
|
page readonly
|
|
|
|
1FD9B160000
|
unkown
|
page readonly
|
|
|
|
1BE460F0000
|
unkown
|
page readonly
|
|
|
|
1FD9B250000
|
unkown
|
page read and write
|
|
|
|
7FF4F3822000
|
unkown
|
page readonly
|
|
|
|
7FF574875000
|
unkown
|
page readonly
|
|
There are 1104 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
file:///C:/Users/user/Desktop/ATT06605.HTM#YWNjb3VudGluZ0Bicm1zb25saW5lLmNvbQ==
|
|