Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
http://7news.cdn.7vodcloud.io
|
URL
|
initial url
|
 |
|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\0a9f6591-b981-4da6-a0c6-48631d9c0761.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\42b8f297-afbb-409b-8bbc-263a05a89a7f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\59a5c1b3-23ed-4dc9-8262-d26f67cef2fc.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8b39fb42-ac40-4336-88d2-79de0a1a39db.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8dade386-e055-4121-82a8-52d082ab1753.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.oldB (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old.* (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.oldJ (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old.d (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Sessione (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabs@. (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.oldg (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State1e (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences.r (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3032001
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\8978d707-6a67-4f32-add8-d7380b00d42b.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
StateTM (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\36960312-8e31-4ae0-be98-31ccfa181d43.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.old$
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old.. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.old.
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b18f4bc7-033e-412e-9b91-7b3f42745f2c.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c7d4e1ae-19fa-46b6-8ea3-058a7a83ffaf.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\cf34f05e-0256-4032-a72d-77fc09d6eb1e.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old6 (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old8 (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\a030d541-3faf-43ae-bd4f-1af3ee3b43d2.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\f1f22501-1cc4-40a6-88e0-73978af8d151.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\245a5371-ef18-47f8-baa4-785d7153e300.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\42f2957f-e68e-4057-8001-752e84049ca8.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\573f88f9-c0f1-4ab5-8ef9-51a734493364.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\8dfba44c-4bd5-496e-be74-14bde612e938.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\245a5371-ef18-47f8-baa4-785d7153e300.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_2079057866\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\8dfba44c-4bd5-496e-be74-14bde612e938.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5728_734720829\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
There are 185 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'http://7news.cdn.7vodcloud.io'
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1564,17392542265336455136,3443799518247237767,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1776 /prefetch:8
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://www.google.com
|
unknown
|
|
|
|
https://dns.google
|
unknown
|
|
|
|
https://ogs.google.com
|
unknown
|
|
|
|
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
|
|
|
https://play.google.com
|
unknown
|
|
|
|
https://accounts.google.com
|
unknown
|
|
|
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://www.google.com;
|
unknown
|
|
|
|
https://support.google.com/chromecast/answer/2998456
|
unknown
|
|
|
|
https://hangouts.google.com/
|
unknown
|
|
|
|
http://7news.cdn.7vodcloud.io/
|
13.32.14.64
|
|
|
|
https://clients2.googleusercontent.com
|
unknown
|
|
|
|
https://apis.google.com
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/report-to/IdentityListAccountsHttp/external
|
unknown
|
|
|
|
http://7news.cdn.7vodcloud.io//
|
unknown
|
|
|
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
http://7news.cdn.7vodcloud.io/
|
|
||
|
https://www.google.com/
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/report-to/downloads-lorry
|
unknown
|
|
|
|
https://feedback.googleusercontent.com
|
unknown
|
|
|
|
http://7news.cdn.7vodcloud.io/favicon.ico
|
13.32.14.64
|
|
|
|
https://clients2.google.com
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx
|
unknown
|
|
There are 13 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
accounts.google.com
|
216.58.205.77
|
|
|
|
7news.cdn.7vodcloud.io
|
13.32.14.64
|
|
|
|
clients.l.google.com
|
216.58.208.174
|
|
|
|
googlehosted.l.googleusercontent.com
|
216.58.208.129
|
|
|
|
clients2.googleusercontent.com
|
unknown
|
|
|
|
clients2.google.com
|
unknown
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
216.58.208.174
|
clients.l.google.com
|
United States
|
|
|
|
192.168.2.1
|
unknown
|
unknown
|
|
|
|
216.58.205.77
|
accounts.google.com
|
United States
|
|
|
|
239.255.255.250
|
unknown
|
Reserved
|
|
|
|
216.58.208.129
|
googlehosted.l.googleusercontent.com
|
United States
|
|
|
|
13.32.14.64
|
7news.cdn.7vodcloud.io
|
United States
|
|
|
|
127.0.0.1
|
unknown
|
unknown
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
ahfgeienlihckogmohjhadlkjgocpleb
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
kmendfapggjehodndflmmgagdbamhnfd
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
mfehgcgbbipciphmccgaenjidiccnmng
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
neajdppkdcdipfabeoofebfddakdcjhd
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
nkeimhogjdpnpccoofpliimaahmaaome
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
prefs.preference_reset_time
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
state
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
StatusCodes
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
StatusCodes
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
state
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
software_reporter.reporting
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
module_blacklist_cache_md5_digest
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
media.storage_id_salt
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
google.services.last_account_id
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
google.services.account_id
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
software_reporter.prompt_seed
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.last_triggered_for_homepage
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
default_search_provider_data.template_url_data
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
safebrowsing.incidents_sent
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
pinned_tabs
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
search_provider_overrides
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.last_triggered_for_default_search
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
prefs.preference_reset_time
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
google.services.last_username
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
session.startup_urls
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
session.restore_on_startup
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
software_reporter.prompt_version
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.last_triggered_for_startup_urls
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
settings_reset_prompt.prompt_wave
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
homepage
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
homepage_is_newtabpage
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
browser.show_home_button
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
user_experience_metrics.stability.exited_cleanly
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
lastrun
|
|
There are 32 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7FF5C3745000
|
unkown
|
page readonly
|
|
|
|
7FF5D1277000
|
unkown
|
page readonly
|
|
|
|
14DD7C00000
|
unkown
|
page readonly
|
|
|
|
7FF57E0B2000
|
unkown
|
page readonly
|
|
|
|
7FF54938E000
|
unkown
|
page readonly
|
|
|
|
1999084C000
|
unkown
|
page read and write
|
|
|
|
7FF5C36C2000
|
unkown
|
page readonly
|
|
|
|
7FF5B77EC000
|
unkown
|
page readonly
|
|
|
|
7FF5493F7000
|
unkown
|
page readonly
|
|
|
|
2BEE48D0000
|
unkown
|
page readonly
|
|
|
|
2D9CA43A000
|
unkown
|
page read and write
|
|
|
|
293C165A000
|
unkown
|
page read and write
|
|
|
|
22274670000
|
unkown
|
page read and write
|
|
|
|
2BEE9DB0000
|
unkown
|
page readonly
|
|
|
|
25007C3C000
|
unkown
|
page read and write
|
|
|
|
7FF5EB648000
|
unkown
|
page readonly
|
|
|
|
1F5567E000
|
unkown
|
page read and write
|
|
|
|
B100CFE000
|
unkown
|
page read and write
|
|
|
|
7FF5C3CCD000
|
unkown
|
page readonly
|
|
|
|
2BEE463D000
|
unkown
|
page read and write
|
|
|
|
C527CF7000
|
unkown
|
page read and write
|
|
|
|
7FF4FD232000
|
unkown
|
page readonly
|
|
|
|
2BEE4C60000
|
unkown
|
page readonly
|
|
|
|
203F2A30000
|
heap private
|
page read and write
|
|
|
|
7FF549368000
|
unkown
|
page readonly
|
|
|
|
2BEE4600000
|
unkown
|
page read and write
|
|
|
|
7FF5EACD4000
|
unkown
|
page readonly
|
|
|
|
26798000000
|
unkown
|
page readonly
|
|
|
|
22274677000
|
unkown
|
page read and write
|
|
|
|
65CFA7F000
|
unkown
|
page read and write
|
|
|
|
C5B367E000
|
unkown
|
page read and write
|
|
|
|
1999088F000
|
unkown
|
page read and write
|
|
|
|
7FF54939F000
|
unkown
|
page readonly
|
|
|
|
2BEE4713000
|
unkown
|
page read and write
|
|
|
|
7FF5C4C6F000
|
unkown
|
page readonly
|
|
|
|
46A0CFF000
|
unkown
|
page read and write
|
|
|
|
7FF5D14FE000
|
unkown
|
page readonly
|
|
|
|
7FF5C33A1000
|
unkown
|
page readonly
|
|
|
|
7FF5EB8A9000
|
unkown
|
page readonly
|
|
|
|
C5B37FE000
|
unkown
|
page read and write
|
|
|
|
7FF54917A000
|
unkown
|
page readonly
|
|
|
|
7FF5CCE3C000
|
unkown
|
page readonly
|
|
|
|
7FF4FD0BF000
|
unkown
|
page readonly
|
|
|
|
22275000000
|
unkown
|
page readonly
|
|
|
|
7FF5CCF19000
|
unkown
|
page readonly
|
|
|
|
1999086B000
|
unkown
|
page read and write
|
|
|
|
7FF5D152D000
|
unkown
|
page readonly
|
|
|
|
7FF5EB668000
|
unkown
|
page readonly
|
|
|
|
65CFD7F000
|
unkown
|
page read and write
|
|
|
|
C5B3AFF000
|
unkown
|
page read and write
|
|
|
|
B10071E000
|
unkown
|
page read and write
|
|
|
|
92B1F7C000
|
unkown
|
page read and write
|
|
|
|
26797EB9000
|
unkown
|
page read and write
|
|
|
|
7FF51BFAC000
|
unkown
|
page readonly
|
|
|
|
7FF51BFB5000
|
unkown
|
page readonly
|
|
|
|
14DD79E5000
|
heap private
|
page read and write
|
|
|
|
7FF5D0E08000
|
unkown
|
page readonly
|
|
|
|
2BEEA090000
|
unkown
|
page readonly
|
|
|
|
7FF5EB82C000
|
unkown
|
page readonly
|
|
|
|
2BEE4F02000
|
unkown
|
page read and write
|
|
|
|
7FF5CCD9A000
|
unkown
|
page readonly
|
|
|
|
1F555FE000
|
unkown
|
page read and write
|
|
|
|
19CC8A9A000
|
unkown
|
page read and write
|
|
|
|
7FF5C3D69000
|
unkown
|
page readonly
|
|
|
|
D0029F5000
|
unkown
|
page read and write
|
|
|
|
7FF5B7869000
|
unkown
|
page readonly
|
|
|
|
293C1A00000
|
unkown
|
page readonly
|
|
|
|
7FF5CCF05000
|
unkown
|
page readonly
|
|
|
|
234DC402000
|
unkown
|
page read and write
|
|
|
|
2BEE9C40000
|
unkown
|
page read and write
|
|
|
|
2778AFE000
|
unkown
|
page read and write
|
|
|
|
19990886000
|
unkown
|
page read and write
|
|
|
|
2BEE9D70000
|
unkown
|
page read and write
|
|
|
|
2BEE462A000
|
unkown
|
page read and write
|
|
|
|
65CF4FB000
|
unkown
|
page read and write
|
|
|
|
19990AD0000
|
unkown
|
page readonly
|
|
|
|
7FF5C351E000
|
unkown
|
page readonly
|
|
|
|
7FF57E135000
|
unkown
|
page readonly
|
|
|
|
19CC8A68000
|
unkown
|
page read and write
|
|
|
|
7FF57E1A1000
|
unkown
|
page readonly
|
|
|
|
7FF5B77CD000
|
unkown
|
page readonly
|
|
|
|
7FF5CCED8000
|
unkown
|
page readonly
|
|
|
|
7FF57DECA000
|
unkown
|
page readonly
|
|
|
|
26798602000
|
unkown
|
page read and write
|
|
|
|
19990902000
|
unkown
|
page read and write
|
|
|
|
92B1C7E000
|
unkown
|
page read and write
|
|
|
|
7FF51BFC2000
|
unkown
|
page readonly
|
|
|
|
7FF5D11DF000
|
unkown
|
page readonly
|
|
|
|
7FF5D15C9000
|
unkown
|
page readonly
|
|
|
|
65CF97D000
|
unkown
|
page read and write
|
|
|
|
7FF5C3CF5000
|
unkown
|
page readonly
|
|
|
|
7FF5D14B8000
|
unkown
|
page readonly
|
|
|
|
7FF5C338F000
|
unkown
|
page readonly
|
|
|
|
7FF5C4D29000
|
unkown
|
page readonly
|
|
|
|
293C1E02000
|
unkown
|
page read and write
|
|
|
|
7FF5CCED6000
|
unkown
|
page readonly
|
|
|
|
2BEE9D50000
|
unkown
|
page read and write
|
|
|
|
2BEE9AC0000
|
unkown
|
page readonly
|
|
|
|
19CC8B02000
|
unkown
|
page read and write
|
|
|
|
26798540000
|
unkown
|
page write copy
|
|
|
|
22274D60000
|
unkown
|
page readonly
|
|
|
|
7FF57E140000
|
unkown
|
page readonly
|
|
|
|
7FF5D1461000
|
unkown
|
page readonly
|
|
|
|
2BEE9E87000
|
unkown
|
page read and write
|
|
|
|
2227463D000
|
unkown
|
page read and write
|
|
|
|
234DBB70000
|
unkown
|
page readonly
|
|
|
|
7FF5C4CA6000
|
unkown
|
page readonly
|
|
|
|
7FF5C3AD0000
|
unkown
|
page readonly
|
|
|
|
65CF77C000
|
unkown
|
page read and write
|
|
|
|
26797ECA000
|
unkown
|
page read and write
|
|
|
|
7FF5EB735000
|
unkown
|
page readonly
|
|
|
|
7FF51C029000
|
unkown
|
page readonly
|
|
|
|
2D9CA600000
|
unkown
|
page readonly
|
|
|
|
7FF5C4B61000
|
unkown
|
page readonly
|
|
|
|
7FF5CCEFE000
|
unkown
|
page readonly
|
|
|
|
7FF51BF6F000
|
unkown
|
page readonly
|
|
|
|
7FF5C36B2000
|
unkown
|
page readonly
|
|
|
|
7FF5CCF60000
|
unkown
|
page readonly
|
|
|
|
293C1602000
|
unkown
|
page read and write
|
|
|
|
7FF57E01C000
|
unkown
|
page readonly
|
|
|
|
7FF5D1381000
|
unkown
|
page readonly
|
|
|
|
2BEE9D14000
|
unkown
|
page write copy
|
|
|
|
7FF5493D6000
|
unkown
|
page readonly
|
|
|
|
7FF5EB7DE000
|
unkown
|
page readonly
|
|
|
|
7FF5EB847000
|
unkown
|
page readonly
|
|
|
|
7FF51BF18000
|
unkown
|
page readonly
|
|
|
|
E5E157E000
|
unkown
|
page read and write
|
|
|
|
25007C6E000
|
unkown
|
page read and write
|
|
|
|
7FF51BF5E000
|
unkown
|
page readonly
|
|
|
|
7FF5D1505000
|
unkown
|
page readonly
|
|
|
|
2BEE9C10000
|
unkown
|
page read and write
|
|
|
|
C4AEF5E000
|
unkown
|
page read and write
|
|
|
|
7FF57DCB0000
|
unkown
|
page readonly
|
|
|
|
22274600000
|
unkown
|
page read and write
|
|
|
|
7FF549459000
|
unkown
|
page readonly
|
|
|
|
7FF5C3726000
|
unkown
|
page readonly
|
|
|
|
C4AEFDD000
|
unkown
|
page read and write
|
|
|
|
25007D00000
|
unkown
|
page read and write
|
|
|
|
7FF5EB60E000
|
unkown
|
page readonly
|
|
|
|
26798732000
|
unkown
|
page read and write
|
|
|
|
2BEE466F000
|
unkown
|
page read and write
|
|
|
|
65CF08B000
|
unkown
|
page read and write
|
|
|
|
C4AF77B000
|
unkown
|
page read and write
|
|
|
|
7FF5C4D29000
|
unkown
|
page readonly
|
|
|
|
B100BFB000
|
unkown
|
page read and write
|
|
|
|
2BEE9EAF000
|
unkown
|
page read and write
|
|
|
|
7FF51BDEA000
|
unkown
|
page readonly
|
|
|
|
7FF4FD339000
|
unkown
|
page readonly
|
|
|
|
2227462A000
|
unkown
|
page read and write
|
|
|
|
7FF5C3645000
|
unkown
|
page readonly
|
|
|
|
203F2B80000
|
unkown
|
page readonly
|
|
|
|
7FF5C3C07000
|
unkown
|
page readonly
|
|
|
|
D002BF7000
|
unkown
|
page read and write
|
|
|
|
2BEE9D70000
|
unkown
|
page readonly
|
|
|
|
7FF57E0DE000
|
unkown
|
page readonly
|
|
|
|
7FF4FC750000
|
unkown
|
page readonly
|
|
|
|
2BEE469C000
|
unkown
|
page read and write
|
|
|
|
7FF5C353F000
|
unkown
|
page readonly
|
|
|
|
7FF5B779E000
|
unkown
|
page readonly
|
|
|
|
7FF5D14A7000
|
unkown
|
page readonly
|
|
|
|
203F2C3D000
|
unkown
|
page read and write
|
|
|
|
2BEE9EB3000
|
unkown
|
page read and write
|
|
|
|
203F2BC0000
|
unkown
|
page read and write
|
|
|
|
2BEE9C40000
|
unkown
|
page read and write
|
|
|
|
19990866000
|
unkown
|
page read and write
|
|
|
|
2BEE56D0000
|
unkown
|
page readonly
|
|
|
|
7FF5D150F000
|
unkown
|
page readonly
|
|
|
|
26797D40000
|
heap private
|
page read and write
|
|
|
|
92B207E000
|
unkown
|
page read and write
|
|
|
|
2BEE5700000
|
unkown
|
page readonly
|
|
|
|
D0025FB000
|
unkown
|
page read and write
|
|
|
|
2D9CA240000
|
heap private
|
page read and write
|
|
|
|
7FF57E116000
|
unkown
|
page readonly
|
|
|
|
7FF5C3754000
|
unkown
|
page readonly
|
|
|
|
7FF4FCEF0000
|
unkown
|
page readonly
|
|
|
|
7FF5D1388000
|
unkown
|
page readonly
|
|
|
|
7FF5C4C36000
|
unkown
|
page readonly
|
|
|
|
203F2B90000
|
unkown
|
page read and write
|
|
|
|
7FF5CCEEA000
|
unkown
|
page readonly
|
|
|
|
2BEE9C1E000
|
unkown
|
page read and write
|
|
|
|
7FF57DF2F000
|
unkown
|
page readonly
|
|
|
|
7FF5D14C2000
|
unkown
|
page readonly
|
|
|
|
2BEE9C54000
|
unkown
|
page read and write
|
|
|
|
234DBC4B000
|
unkown
|
page read and write
|
|
|
|
234DBD00000
|
unkown
|
page read and write
|
|
|
|
203F2C55000
|
unkown
|
page read and write
|
|
|
|
7FF57E11C000
|
unkown
|
page readonly
|
|
|
|
7FF5CCF64000
|
unkown
|
page readonly
|
|
|
|
7FF4FD248000
|
unkown
|
page readonly
|
|
|
|
234DBC53000
|
unkown
|
page read and write
|
|
|
|
2D9CA390000
|
unkown
|
page readonly
|
|
|
|
7FF548873000
|
unkown
|
page readonly
|
|
|
|
7FF51BCF0000
|
unkown
|
page readonly
|
|
|
|
7FF4FD289000
|
unkown
|
page readonly
|
|
|
|
C5B337E000
|
unkown
|
page read and write
|
|
|
|
22274666000
|
unkown
|
page read and write
|
|
|
|
2D9CA990000
|
unkown
|
page readonly
|
|
|
|
7FF5D1555000
|
unkown
|
page readonly
|
|
|
|
2BEE56C0000
|
unkown
|
page readonly
|
|
|
|
19CC8A2A000
|
unkown
|
page read and write
|
|
|
|
26797DC0000
|
unkown
|
page readonly
|
|
|
|
7FF5EB840000
|
unkown
|
page readonly
|
|
|
|
19CC8A69000
|
unkown
|
page read and write
|
|
|
|
7FF5C37B0000
|
unkown
|
page readonly
|
|
|
|
1F5515C000
|
unkown
|
page read and write
|
|
|
|
7FF5D14D8000
|
unkown
|
page readonly
|
|
|
|
7FF4FD27F000
|
unkown
|
page readonly
|
|
|
|
2BEE5A60000
|
unkown
|
page read and write
|
|
|
|
7FF5C4C9C000
|
unkown
|
page readonly
|
|
|
|
7FF5EB7B8000
|
unkown
|
page readonly
|
|
|
|
2D9CA485000
|
unkown
|
page read and write
|
|
|
|
199907D0000
|
unkown
|
page readonly
|
|
|
|
7FF5D136A000
|
unkown
|
page readonly
|
|
|
|
2BEE4800000
|
unkown
|
page readonly
|
|
|
|
7FF4FD26E000
|
unkown
|
page readonly
|
|
|
|
2BEE4E02000
|
unkown
|
page read and write
|
|
|
|
7FF51BF14000
|
unkown
|
page readonly
|
|
|
|
25007C49000
|
unkown
|
page read and write
|
|
|
|
7FF4FD207000
|
unkown
|
page readonly
|
|
|
|
1F5587D000
|
unkown
|
page read and write
|
|
|
|
7FF4FD242000
|
unkown
|
page readonly
|
|
|
|
7FF5C481A000
|
unkown
|
page readonly
|
|
|
|
7FF5B7869000
|
unkown
|
page readonly
|
|
|
|
7FF5D14AC000
|
unkown
|
page readonly
|
|
|
|
2BEE9E3E000
|
unkown
|
page read and write
|
|
|
|
7FF5CCAD0000
|
unkown
|
page readonly
|
|
|
|
2BEE9E00000
|
unkown
|
page read and write
|
|
|
|
7FF5C4CAC000
|
unkown
|
page readonly
|
|
|
|
22274E02000
|
unkown
|
page read and write
|
|
|
|
65CFB7E000
|
unkown
|
page read and write
|
|
|
|
7FF5C4CC4000
|
unkown
|
page readonly
|
|
|
|
2D9CAC02000
|
unkown
|
page read and write
|
|
|
|
7FF5C416C000
|
unkown
|
page readonly
|
|
|
|
7FF51BF20000
|
unkown
|
page readonly
|
|
|
|
7FF57E1A9000
|
unkown
|
page readonly
|
|
|
|
46A0BF7000
|
unkown
|
page read and write
|
|
|
|
2D9CA429000
|
unkown
|
page read and write
|
|
|
|
7FF5CCF36000
|
unkown
|
page readonly
|
|
|
|
7FF51B45A000
|
unkown
|
page readonly
|
|
|
|
2BEE5101000
|
unkown
|
page read and write
|
|
|
|
7FF5C35DC000
|
unkown
|
page readonly
|
|
|
|
7FF51BDF9000
|
unkown
|
page readonly
|
|
|
|
7FF5D11D6000
|
unkown
|
page readonly
|
|
|
|
7FF57DFB3000
|
unkown
|
page readonly
|
|
|
|
7FF5493A9000
|
unkown
|
page readonly
|
|
|
|
234DBAA0000
|
unkown
|
page readonly
|
|
|
|
7FF57DFE7000
|
unkown
|
page readonly
|
|
|
|
2227465A000
|
unkown
|
page read and write
|
|
|
|
7FF5CCABA000
|
unkown
|
page readonly
|
|
|
|
2BEE9C34000
|
unkown
|
page read and write
|
|
|
|
2BEE45B0000
|
heap default
|
page read and write
|
|
|
|
234DBB80000
|
unkown
|
page readonly
|
|
|
|
7FF5D115E000
|
unkown
|
page readonly
|
|
|
|
7FF5C3CA5000
|
unkown
|
page readonly
|
|
|
|
7FF51BFC7000
|
unkown
|
page readonly
|
|
|
|
C5B3B7E000
|
unkown
|
page read and write
|
|
|
|
19990913000
|
unkown
|
page read and write
|
|
|
|
7FF5C4172000
|
unkown
|
page readonly
|
|
|
|
2BEE9DF0000
|
unkown
|
page readonly
|
|
|
|
7FF4FD2A6000
|
unkown
|
page readonly
|
|
|
|
7FF51C01E000
|
unkown
|
page readonly
|
|
|
|
2BEE4613000
|
unkown
|
page read and write
|
|
|
|
7FF5C371D000
|
unkown
|
page readonly
|
|
|
|
7FF5C3B3A000
|
unkown
|
page readonly
|
|
|
|
2D9CA400000
|
unkown
|
page read and write
|
|
|
|
22274D30000
|
unkown
|
page readonly
|
|
|
|
2BEE9AF0000
|
unkown
|
page read and write
|
|
|
|
293C1530000
|
unkown
|
page readonly
|
|
|
|
7FF5CCF46000
|
unkown
|
page readonly
|
|
|
|
19990846000
|
unkown
|
page read and write
|
|
|
|
C4AF47E000
|
unkown
|
page read and write
|
|
|
|
19CCA402000
|
unkown
|
page read and write
|
|
|
|
7FF5C37AE000
|
unkown
|
page readonly
|
|
|
|
7FF4FD32E000
|
unkown
|
page readonly
|
|
|
|
2D9CA455000
|
unkown
|
page read and write
|
|
|
|
7FF4FD2A1000
|
unkown
|
page readonly
|
|
|
|
234DBC4E000
|
unkown
|
page read and write
|
|
|
|
203F2BC0000
|
unkown
|
page read and write
|
|
|
|
2BEE9EB6000
|
unkown
|
page read and write
|
|
|
|
7FF5D1497000
|
unkown
|
page readonly
|
|
|
|
7FF5C4C96000
|
unkown
|
page readonly
|
|
|
|
2BEE4657000
|
unkown
|
page read and write
|
|
|
|
D002DFF000
|
unkown
|
page read and write
|
|
|
|
7FF57E0E5000
|
unkown
|
page readonly
|
|
|
|
7FF54937A000
|
unkown
|
page readonly
|
|
|
|
2BEE9E2C000
|
unkown
|
page read and write
|
|
|
|
2BEE468B000
|
unkown
|
page read and write
|
|
|
|
26797F13000
|
unkown
|
page read and write
|
|
|
|
26798460000
|
unkown
|
page readonly
|
|
|
|
26798530000
|
unkown
|
page readonly
|
|
|
|
7FF5D14EA000
|
unkown
|
page readonly
|
|
|
|
234DBC49000
|
unkown
|
page read and write
|
|
|
|
19990A00000
|
unkown
|
page readonly
|
|
|
|
26797E13000
|
unkown
|
page read and write
|
|
|
|
7FF5C4C20000
|
unkown
|
page readonly
|
|
|
|
7FF51BD90000
|
unkown
|
page readonly
|
|
|
|
25007A70000
|
heap default
|
page read and write
|
|
|
|
2BEE45C0000
|
unkown
|
page readonly
|
|
|
|
C4AFA7C000
|
unkown
|
page read and write
|
|
|
|
26798800000
|
unkown
|
page readonly
|
|
|
|
7FF51C021000
|
unkown
|
page readonly
|
|
|
|
7FF57DFE1000
|
unkown
|
page readonly
|
|
|
|
2BEE9D70000
|
unkown
|
page read and write
|
|
|
|
19990800000
|
unkown
|
page read and write
|
|
|
|
7FF51C029000
|
unkown
|
page readonly
|
|
|
|
7FF5C3558000
|
unkown
|
page readonly
|
|
|
|
25008260000
|
unkown
|
page readonly
|
|
|
|
19CCA3E0000
|
unkown
|
page read and write
|
|
|
|
C5B3D7D000
|
unkown
|
page read and write
|
|
|
|
234DBC55000
|
unkown
|
page read and write
|
|
|
|
7FF5C3C60000
|
unkown
|
page readonly
|
|
|
|
22274580000
|
heap private
|
page read and write
|
|
|
|
7FF5C4C5E000
|
unkown
|
page readonly
|
|
|
|
1F558FF000
|
unkown
|
page read and write
|
|
|
|
26797EC1000
|
unkown
|
page read and write
|
|
|
|
7FF57E0A2000
|
unkown
|
page readonly
|
|
|
|
B100DFF000
|
unkown
|
page read and write
|
|
|
|
19CCA6C0000
|
unkown
|
page readonly
|
|
|
|
7FF5C3C21000
|
unkown
|
page readonly
|
|
|
|
7FF5C3392000
|
unkown
|
page readonly
|
|
|
|
92B1E7D000
|
unkown
|
page read and write
|
|
|
|
7FF549366000
|
unkown
|
page readonly
|
|
|
|
7FF5D11FA000
|
unkown
|
page readonly
|
|
|
|
7FF5C4830000
|
unkown
|
page readonly
|
|
|
|
7FF5C3709000
|
unkown
|
page readonly
|
|
|
|
293C1BA0000
|
unkown
|
page readonly
|
|
|
|
19990900000
|
unkown
|
page read and write
|
|
|
|
203F2AA0000
|
unkown
|
page readonly
|
|
|
|
1999083C000
|
unkown
|
page read and write
|
|
|
|
46A0AFB000
|
unkown
|
page read and write
|
|
|
|
2BEE9CE4000
|
unkown
|
page readonly
|
|
|
|
203F2C5C000
|
unkown
|
page read and write
|
|
|
|
7FF5D1308000
|
unkown
|
page readonly
|
|
|
|
7FF4FD2D4000
|
unkown
|
page readonly
|
|
|
|
277887E000
|
unkown
|
page read and write
|
|
|
|
7FF5EB81C000
|
unkown
|
page readonly
|
|
|
|
7FF5D148B000
|
unkown
|
page readonly
|
|
|
|
C527DFF000
|
unkown
|
page read and write
|
|
|
|
14DD79C0000
|
unkown
|
page readonly
|
|
|
|
7FF5C38A1000
|
unkown
|
page readonly
|
|
|
|
7FF5EB835000
|
unkown
|
page readonly
|
|
|
|
19990863000
|
unkown
|
page read and write
|
|
|
|
234DBC13000
|
unkown
|
page read and write
|
|
|
|
2BEE4E00000
|
unkown
|
page read and write
|
|
|
|
7FF5C3CE6000
|
unkown
|
page readonly
|
|
|
|
7FF51BDC8000
|
unkown
|
page readonly
|
|
|
|
C52787C000
|
unkown
|
page read and write
|
|
|
|
19CC8A59000
|
unkown
|
page read and write
|
|
|
|
7FF5C3CEC000
|
unkown
|
page readonly
|
|
|
|
2D9CA2A0000
|
heap default
|
page read and write
|
|
|
|
2BEE9A80000
|
unkown
|
page read and write
|
|
|
|
2BEE56F0000
|
unkown
|
page readonly
|
|
|
|
7FF5D1105000
|
unkown
|
page readonly
|
|
|
|
7FF57E19E000
|
unkown
|
page readonly
|
|
|
|
7FF57DF6E000
|
unkown
|
page readonly
|
|
|
|
14DD7A63000
|
heap default
|
page read and write
|
|
|
|
E5E11BE000
|
unkown
|
page read and write
|
|
|
|
7FF5C3C62000
|
unkown
|
page readonly
|
|
|
|
7FF5CCF0F000
|
unkown
|
page readonly
|
|
|
|
65CFF7E000
|
unkown
|
page read and write
|
|
|
|
7FF5C36F5000
|
unkown
|
page readonly
|
|
|
|
7FF5C3CB9000
|
unkown
|
page readonly
|
|
|
|
7FF5C36EE000
|
unkown
|
page readonly
|
|
|
|
203F3260000
|
unkown
|
page read and write
|
|
|
|
7FF5C4B3D000
|
unkown
|
page readonly
|
|
|
|
7FF4FD230000
|
unkown
|
page readonly
|
|
|
|
7FF5CCAC0000
|
unkown
|
page readonly
|
|
|
|
19990868000
|
unkown
|
page read and write
|
|
|
|
234DBD08000
|
unkown
|
page read and write
|
|
|
|
7FF5D1567000
|
unkown
|
page readonly
|
|
|
|
7FF5CCF2D000
|
unkown
|
page readonly
|
|
|
|
7FF5493F4000
|
unkown
|
page readonly
|
|
|
|
7FF57E0CA000
|
unkown
|
page readonly
|
|
|
|
19CC88F0000
|
heap default
|
page read and write
|
|
|
|
203F3190000
|
unkown
|
page readonly
|
|
|
|
2BEE9EB3000
|
unkown
|
page read and write
|
|
|
|
7FF5D137C000
|
unkown
|
page readonly
|
|
|
|
7FF5D1564000
|
unkown
|
page readonly
|
|
|
|
7FF5C3C78000
|
unkown
|
page readonly
|
|
|
|
7FF5C4B33000
|
unkown
|
page readonly
|
|
|
|
7FF5B7861000
|
unkown
|
page readonly
|
|
|
|
2BEE5720000
|
unkown
|
page readonly
|
|
|
|
C5B3E7D000
|
unkown
|
page read and write
|
|
|
|
65CF57E000
|
unkown
|
page read and write
|
|
|
|
C5B2F6E000
|
unkown
|
page read and write
|
|
|
|
7FF5EB844000
|
unkown
|
page readonly
|
|
|
|
2BEE9C31000
|
unkown
|
page read and write
|
|
|
|
7FF51BF96000
|
unkown
|
page readonly
|
|
|
|
7FF5EB7B2000
|
unkown
|
page readonly
|
|
|
|
46A0EFE000
|
unkown
|
page read and write
|
|
|
|
7FF5B77D6000
|
unkown
|
page readonly
|
|
|
|
7FF5EB77A000
|
unkown
|
page readonly
|
|
|
|
E5E177E000
|
unkown
|
page read and write
|
|
|
|
65CFC7F000
|
unkown
|
page read and write
|
|
|
|
7FF51BD53000
|
unkown
|
page readonly
|
|
|
|
199907B0000
|
heap default
|
page read and write
|
|
|
|
19990864000
|
unkown
|
page read and write
|
|
|
|
7FF51BBCD000
|
unkown
|
page readonly
|
|
|
|
7FF5CCFC9000
|
unkown
|
page readonly
|
|
|
|
19CCA600000
|
unkown
|
page read and write
|
|
|
|
C5B3A7A000
|
unkown
|
page read and write
|
|
|
|
25007D08000
|
unkown
|
page read and write
|
|
|
|
7FF4FD275000
|
unkown
|
page readonly
|
|
|
|
293C14C0000
|
heap private
|
page read and write
|
|
|
|
D00287F000
|
unkown
|
page read and write
|
|
|
|
92B1B7F000
|
unkown
|
page read and write
|
|
|
|
234DBC2C000
|
unkown
|
page read and write
|
|
|
|
19CC8A58000
|
unkown
|
page read and write
|
|
|
|
7FF5B77DC000
|
unkown
|
page readonly
|
|
|
|
92B19FE000
|
unkown
|
page read and write
|
|
|
|
25007C13000
|
unkown
|
page read and write
|
|
|
|
2BEE9D20000
|
unkown
|
page read and write
|
|
|
|
19CCAA10000
|
unkown
|
page read and write
|
|
|
|
7FF5C362C000
|
unkown
|
page readonly
|
|
|
|
2BEE9D30000
|
unkown
|
page read and write
|
|
|
|
C527A75000
|
unkown
|
page read and write
|
|
|
|
1F5547E000
|
unkown
|
page read and write
|
|
|
|
293C1613000
|
unkown
|
page read and write
|
|
|
|
14DD7980000
|
unkown
|
page read and write
|
|
|
|
2BEEA000000
|
unkown
|
page readonly
|
|
|
|
2BEE9D70000
|
unkown
|
page read and write
|
|
|
|
19CC8A59000
|
unkown
|
page read and write
|
|
|
|
7FF5EB826000
|
unkown
|
page readonly
|
|
|
|
2D9CA380000
|
unkown
|
page readonly
|
|
|
|
7FF5CCFBE000
|
unkown
|
page readonly
|
|
|
|
222745F0000
|
unkown
|
page readonly
|
|
|
|
293C1C70000
|
unkown
|
page readonly
|
|
|
|
7FF5EB7B6000
|
unkown
|
page readonly
|
|
|
|
7FF5C4CC7000
|
unkown
|
page readonly
|
|
|
|
7FF57D5EC000
|
unkown
|
page readonly
|
|
|
|
7FF5C4C8D000
|
unkown
|
page readonly
|
|
|
|
222745E0000
|
heap default
|
page read and write
|
|
|
|
7FF5B7802000
|
unkown
|
page readonly
|
|
|
|
7FF5CCEC0000
|
unkown
|
page readonly
|
|
|
|
7FF4FCF04000
|
unkown
|
page readonly
|
|
|
|
203F2C02000
|
unkown
|
page read and write
|
|
|
|
2227466D000
|
unkown
|
page read and write
|
|
|
|
B10079E000
|
unkown
|
page read and write
|
|
|
|
7FF548C47000
|
unkown
|
page readonly
|
|
|
|
2BEE9C30000
|
unkown
|
page read and write
|
|
|
|
25007C47000
|
unkown
|
page read and write
|
|
|
|
C5B32F7000
|
unkown
|
page read and write
|
|
|
|
2BEE9EB4000
|
unkown
|
page read and write
|
|
|
|
7FF5CCF55000
|
unkown
|
page readonly
|
|
|
|
2BEE9D17000
|
unkown
|
page write copy
|
|
|
|
19990750000
|
heap private
|
page read and write
|
|
|
|
7FF5C369C000
|
unkown
|
page readonly
|
|
|
|
2BEE4725000
|
unkown
|
page read and write
|
|
|
|
92B217C000
|
unkown
|
page read and write
|
|
|
|
C5B357B000
|
unkown
|
page read and write
|
|
|
|
1F55AFE000
|
unkown
|
page read and write
|
|
|
|
7FF57DCA0000
|
unkown
|
page readonly
|
|
|
|
7FF5D12EB000
|
unkown
|
page readonly
|
|
|
|
7FF5EB557000
|
unkown
|
page readonly
|
|
|
|
27785FC000
|
unkown
|
page read and write
|
|
|
|
19990861000
|
unkown
|
page read and write
|
|
|
|
203F2C34000
|
unkown
|
page read and write
|
|
|
|
27788FE000
|
unkown
|
page read and write
|
|
|
|
C527BFB000
|
unkown
|
page read and write
|
|
|
|
7FF5D1546000
|
unkown
|
page readonly
|
|
|
|
7FF5C4AFA000
|
unkown
|
page readonly
|
|
|
|
22274613000
|
unkown
|
page read and write
|
|
|
|
7FF5D1477000
|
unkown
|
page readonly
|
|
|
|
19CC8A3D000
|
unkown
|
page read and write
|
|
|
|
7FF57E1A9000
|
unkown
|
page readonly
|
|
|
|
293C1640000
|
unkown
|
page read and write
|
|
|
|
2BEE5710000
|
unkown
|
page readonly
|
|
|
|
7FF5C3C17000
|
unkown
|
page readonly
|
|
|
|
7FF51BF22000
|
unkown
|
page readonly
|
|
|
|
2D9CA431000
|
unkown
|
page read and write
|
|
|
|
7FF5C4C22000
|
unkown
|
page readonly
|
|
|
|
7FF5C3D5E000
|
unkown
|
page readonly
|
|
|
|
7FF57E0EF000
|
unkown
|
page readonly
|
|
|
|
25007C00000
|
unkown
|
page read and write
|
|
|
|
7FF5D1560000
|
unkown
|
page readonly
|
|
|
|
2BEE9D40000
|
unkown
|
page read and write
|
|
|
|
7FF51BFA6000
|
unkown
|
page readonly
|
|
|
|
14DD79E0000
|
heap private
|
page read and write
|
|
|
|
7FF5D1157000
|
unkown
|
page readonly
|
|
|
|
293C1713000
|
unkown
|
page read and write
|
|
|
|
26797E29000
|
unkown
|
page read and write
|
|
|
|
1999085D000
|
unkown
|
page read and write
|
|
|
|
7FF5EB7CA000
|
unkown
|
page readonly
|
|
|
|
19990908000
|
unkown
|
page read and write
|
|
|
|
2BEE5A70000
|
unkown
|
page read and write
|
|
|
|
26797F02000
|
unkown
|
page read and write
|
|
|
|
7FF51BF36000
|
unkown
|
page readonly
|
|
|
|
19CC8A13000
|
unkown
|
page read and write
|
|
|
|
25007B70000
|
unkown
|
page read and write
|
|
|
|
7FF5EB8A9000
|
unkown
|
page readonly
|
|
|
|
E5E113E000
|
unkown
|
page read and write
|
|
|
|
19CC8A69000
|
unkown
|
page read and write
|
|
|
|
7FF5C3CD1000
|
unkown
|
page readonly
|
|
|
|
7FF5EB89E000
|
unkown
|
page readonly
|
|
|
|
65CF18D000
|
unkown
|
page read and write
|
|
|
|
7FF5C4C38000
|
unkown
|
page readonly
|
|
|
|
22274D40000
|
unkown
|
page read and write
|
|
|
|
26797DD0000
|
unkown
|
page read and write
|
|
|
|
7FF5B785E000
|
unkown
|
page readonly
|
|
|
|
D002AFB000
|
unkown
|
page read and write
|
|
|
|
19CC8A71000
|
unkown
|
page read and write
|
|
|
|
2BEE9C50000
|
unkown
|
page read and write
|
|
|
|
2BEEA070000
|
unkown
|
page readonly
|
|
|
|
25008600000
|
unkown
|
page readonly
|
|
|
|
7FF51BEB5000
|
unkown
|
page readonly
|
|
|
|
7FF57E0B6000
|
unkown
|
page readonly
|
|
|
|
7FF5EB4DB000
|
unkown
|
page readonly
|
|
|
|
234DBC29000
|
unkown
|
page read and write
|
|
|
|
293C1700000
|
unkown
|
page read and write
|
|
|
|
7FF5D0A06000
|
unkown
|
page readonly
|
|
|
|
C5B2FEE000
|
unkown
|
page read and write
|
|
|
|
7FF5C3750000
|
unkown
|
page readonly
|
|
|
|
7FF5C4C32000
|
unkown
|
page readonly
|
|
|
|
7FF5CCFC1000
|
unkown
|
page readonly
|
|
|
|
234DBA90000
|
heap default
|
page read and write
|
|
|
|
46A08FF000
|
unkown
|
page read and write
|
|
|
|
234DBC54000
|
unkown
|
page read and write
|
|
|
|
25007C85000
|
unkown
|
page read and write
|
|
|
|
22274800000
|
unkown
|
page readonly
|
|
|
|
26797DB0000
|
unkown
|
page readonly
|
|
|
|
7FF5C36DA000
|
unkown
|
page readonly
|
|
|
|
7FF5D1390000
|
unkown
|
page readonly
|
|
|
|
19CC8B13000
|
unkown
|
page read and write
|
|
|
|
19CC89E0000
|
unkown
|
page readonly
|
|
|
|
7FF5EB7EF000
|
unkown
|
page readonly
|
|
|
|
7FF548876000
|
unkown
|
page readonly
|
|
|
|
2BEE4E15000
|
unkown
|
page read and write
|
|
|
|
2BEE4550000
|
heap private
|
page read and write
|
|
|
|
7FF5EB565000
|
unkown
|
page readonly
|
|
|
|
C5278FE000
|
unkown
|
page read and write
|
|
|
|
7FF5C36BD000
|
unkown
|
page readonly
|
|
|
|
92B15FB000
|
unkown
|
page read and write
|
|
|
|
7FF5C331E000
|
unkown
|
page readonly
|
|
|
|
25007C4E000
|
unkown
|
page read and write
|
|
|
|
C4AF2FC000
|
unkown
|
page read and write
|
|
|
|
2BEE4F00000
|
unkown
|
page read and write
|
|
|
|
7FF5CCF4C000
|
unkown
|
page readonly
|
|
|
|
19CC8F90000
|
unkown
|
page readonly
|
|
|
|
2BEE45E0000
|
unkown
|
page read and write
|
|
|
|
2BEE9CE0000
|
unkown
|
page write copy
|
|
|
|
7FF5D14D2000
|
unkown
|
page readonly
|
|
|
|
7FF5C4C79000
|
unkown
|
page readonly
|
|
|
|
203F2D02000
|
unkown
|
page read and write
|
|
|
|
1F551DE000
|
unkown
|
page read and write
|
|
|
|
7FF5B7778000
|
unkown
|
page readonly
|
|
|
|
C5B3C7F000
|
unkown
|
page read and write
|
|
|
|
7FF5CCF67000
|
unkown
|
page readonly
|
|
|
|
25007A10000
|
heap private
|
page read and write
|
|
|
|
7FF5C372C000
|
unkown
|
page readonly
|
|
|
|
7FF51BF32000
|
unkown
|
page readonly
|
|
|
|
19CC8A4E000
|
unkown
|
page read and write
|
|
|
|
2BEE9CE0000
|
unkown
|
page read and write
|
|
|
|
7FF5EB7E5000
|
unkown
|
page readonly
|
|
|
|
7FF5CCF3C000
|
unkown
|
page readonly
|
|
|
|
C5B377B000
|
unkown
|
page read and write
|
|
|
|
2BEE5A63000
|
unkown
|
page read and write
|
|
|
|
293C1520000
|
heap default
|
page read and write
|
|
|
|
7FF5D1399000
|
unkown
|
page readonly
|
|
|
|
7FF5C3A97000
|
unkown
|
page readonly
|
|
|
|
234DBC3C000
|
unkown
|
page read and write
|
|
|
|
19990847000
|
unkown
|
page read and write
|
|
|
|
25007C8E000
|
unkown
|
page read and write
|
|
|
|
14DD7A3B000
|
heap default
|
page read and write
|
|
|
|
C5B397F000
|
unkown
|
page read and write
|
|
|
|
7FF5D14A3000
|
unkown
|
page readonly
|
|
|
|
26797E00000
|
unkown
|
page read and write
|
|
|
|
19991540000
|
unkown
|
page readonly
|
|
|
|
7FF51B448000
|
unkown
|
page readonly
|
|
|
|
2BEE4F13000
|
unkown
|
page read and write
|
|
|
|
7FF5C36A8000
|
unkown
|
page readonly
|
|
|
|
19CC89F0000
|
unkown
|
page read and write
|
|
|
|
7FF5D132E000
|
unkown
|
page readonly
|
|
|
|
7FF51BC8D000
|
unkown
|
page readonly
|
|
|
|
7FF5EB55E000
|
unkown
|
page readonly
|
|
|
|
7FF4FD2AC000
|
unkown
|
page readonly
|
|
|
|
7FF5D0DFC000
|
unkown
|
page readonly
|
|
|
|
C4AF6FD000
|
unkown
|
page read and write
|
|
|
|
2BEE45F0000
|
unkown
|
page read and write
|
|
|
|
27789FF000
|
unkown
|
page read and write
|
|
|
|
19CC8900000
|
unkown
|
page readonly
|
|
|
|
7FF5C33EE000
|
unkown
|
page readonly
|
|
|
|
234DBC70000
|
unkown
|
page read and write
|
|
|
|
26798700000
|
unkown
|
page read and write
|
|
|
|
2BEE56E0000
|
unkown
|
page readonly
|
|
|
|
7FF5C4D1E000
|
unkown
|
page readonly
|
|
|
|
C52797E000
|
unkown
|
page read and write
|
|
|
|
1999084B000
|
unkown
|
page read and write
|
|
|
|
25007C29000
|
unkown
|
page read and write
|
|
|
|
1F559FD000
|
unkown
|
page read and write
|
|
|
|
14DD7A58000
|
heap default
|
page read and write
|
|
|
|
22274602000
|
unkown
|
page read and write
|
|
|
|
19990829000
|
unkown
|
page read and write
|
|
|
|
203F2A90000
|
heap default
|
page read and write
|
|
|
|
2BEE4F18000
|
unkown
|
page read and write
|
|
|
|
7FF51BB30000
|
unkown
|
page readonly
|
|
|
|
19CCAA00000
|
unkown
|
page readonly
|
|
|
|
7FF51BB61000
|
unkown
|
page readonly
|
|
|
|
2BEE4F58000
|
unkown
|
page read and write
|
|
|
|
22274C60000
|
unkown
|
page readonly
|
|
|
|
203F2C2A000
|
unkown
|
page read and write
|
|
|
|
293C1800000
|
unkown
|
page readonly
|
|
|
|
2BEE46FD000
|
unkown
|
page read and write
|
|
|
|
7FF51B481000
|
unkown
|
page readonly
|
|
|
|
7FF5CCD4F000
|
unkown
|
page readonly
|
|
|
|
C5B347C000
|
unkown
|
page read and write
|
|
|
|
46A05FB000
|
unkown
|
page read and write
|
|
|
|
C5B3F7F000
|
unkown
|
page read and write
|
|
|
|
7FF51B85F000
|
unkown
|
page readonly
|
|
|
|
C4AF87D000
|
unkown
|
page read and write
|
|
|
|
25007B60000
|
unkown
|
page readonly
|
|
|
|
7FF5C3757000
|
unkown
|
page readonly
|
|
|
|
14DD7B30000
|
unkown
|
page readonly
|
|
|
|
2BEE9E56000
|
unkown
|
page read and write
|
|
|
|
7FF5C4B9C000
|
unkown
|
page readonly
|
|
|
|
C4AFB7F000
|
unkown
|
page read and write
|
|
|
|
7FF5D11CD000
|
unkown
|
page readonly
|
|
|
|
267980D0000
|
unkown
|
page readonly
|
|
|
|
C4AF57E000
|
unkown
|
page read and write
|
|
|
|
7FF5C37B9000
|
unkown
|
page readonly
|
|
|
|
2BEE9E63000
|
unkown
|
page read and write
|
|
|
|
7FF5493CC000
|
unkown
|
page readonly
|
|
|
|
293C1600000
|
unkown
|
page read and write
|
|
|
|
234DC260000
|
unkown
|
page readonly
|
|
|
|
7FF5C3637000
|
unkown
|
page readonly
|
|
|
|
7FF5493BD000
|
unkown
|
page readonly
|
|
|
|
234DBC88000
|
unkown
|
page read and write
|
|
|
|
2BEE9EB6000
|
unkown
|
page read and write
|
|
|
|
7FF51BF8D000
|
unkown
|
page readonly
|
|
|
|
199907E0000
|
unkown
|
page read and write
|
|
|
|
7FF5D1101000
|
unkown
|
page readonly
|
|
|
|
7FF5C4B18000
|
unkown
|
page readonly
|
|
|
|
2D9CA2B0000
|
unkown
|
page readonly
|
|
|
|
7FF5493C6000
|
unkown
|
page readonly
|
|
|
|
7FF5EB679000
|
unkown
|
page readonly
|
|
|
|
7FF5D1290000
|
unkown
|
page readonly
|
|
|
|
25007E00000
|
unkown
|
page readonly
|
|
|
|
92B187E000
|
unkown
|
page read and write
|
|
|
|
7FF5CCCEA000
|
unkown
|
page readonly
|
|
|
|
234DBC00000
|
unkown
|
page read and write
|
|
|
|
7FF5C3D07000
|
unkown
|
page readonly
|
|
|
|
7FF5C35C7000
|
unkown
|
page readonly
|
|
|
|
25007D02000
|
unkown
|
page read and write
|
|
|
|
7FF4FCF55000
|
unkown
|
page readonly
|
|
|
|
2BEE9B10000
|
unkown
|
page read and write
|
|
|
|
B100EFE000
|
unkown
|
page read and write
|
|
|
|
65CF67F000
|
unkown
|
page read and write
|
|
|
|
7FF4FD339000
|
unkown
|
page readonly
|
|
|
|
7FF5493F0000
|
unkown
|
page readonly
|
|
|
|
7FF5C3D69000
|
unkown
|
page readonly
|
|
|
|
7FF5D0DFF000
|
unkown
|
page readonly
|
|
|
|
14DD79A0000
|
unkown
|
page read and write
|
|
|
|
7FF5D12FC000
|
unkown
|
page readonly
|
|
|
|
7FF5D1198000
|
unkown
|
page readonly
|
|
|
|
7FF5EB7F9000
|
unkown
|
page readonly
|
|
|
|
7FF5C373C000
|
unkown
|
page readonly
|
|
|
|
C5B2EEB000
|
unkown
|
page read and write
|
|
|
|
19991200000
|
unkown
|
page readonly
|
|
|
|
7FF5C4B67000
|
unkown
|
page readonly
|
|
|
|
2BEE4679000
|
unkown
|
page read and write
|
|
|
|
203F2BC0000
|
unkown
|
page read and write
|
|
|
|
7FF57DC9A000
|
unkown
|
page readonly
|
|
|
|
2BEE4626000
|
unkown
|
page read and write
|
|
|
|
203F3402000
|
unkown
|
page read and write
|
|
|
|
7FF5D1435000
|
unkown
|
page readonly
|
|
|
|
19CCA3F0000
|
unkown
|
page readonly
|
|
|
|
C4AEEDB000
|
unkown
|
page read and write
|
|
|
|
E5E167E000
|
unkown
|
page read and write
|
|
|
|
7FF5C3938000
|
unkown
|
page readonly
|
|
|
|
7FF4FD331000
|
unkown
|
page readonly
|
|
|
|
E5E10BB000
|
unkown
|
page read and write
|
|
|
|
B10069C000
|
unkown
|
page read and write
|
|
|
|
2BEE46AD000
|
unkown
|
page read and write
|
|
|
|
222748D0000
|
unkown
|
page readonly
|
|
|
|
7FF5CCE07000
|
unkown
|
page readonly
|
|
|
|
199907C0000
|
unkown
|
page readonly
|
|
|
|
C527EFF000
|
unkown
|
page read and write
|
|
|
|
1F554FF000
|
unkown
|
page read and write
|
|
|
|
7FF5B77E6000
|
unkown
|
page readonly
|
|
|
|
7FF51BFC4000
|
unkown
|
page readonly
|
|
|
|
7FF5CCFC9000
|
unkown
|
page readonly
|
|
|
|
2BEE9A70000
|
unkown
|
page read and write
|
|
|
|
2BEE9C18000
|
unkown
|
page read and write
|
|
|
|
7FF5D14D6000
|
unkown
|
page readonly
|
|
|
|
7FF5C4820000
|
unkown
|
page readonly
|
|
|
|
7FF5D124C000
|
unkown
|
page readonly
|
|
|
|
7FF5C36C6000
|
unkown
|
page readonly
|
|
|
|
7FF5D1536000
|
unkown
|
page readonly
|
|
|
|
2BEE9E1E000
|
unkown
|
page read and write
|
|
|
|
293C1702000
|
unkown
|
page read and write
|
|
|
|
C5B387E000
|
unkown
|
page read and write
|
|
|
|
7FF5EB570000
|
unkown
|
page readonly
|
|
|
|
2D9CA426000
|
unkown
|
page read and write
|
|
|
|
2D9CA3A0000
|
unkown
|
page read and write
|
|
|
|
C4AF97F000
|
unkown
|
page read and write
|
|
|
|
7FF5491DF000
|
unkown
|
page readonly
|
|
|
|
65CFE7F000
|
unkown
|
page read and write
|
|
|
|
C527AFE000
|
unkown
|
page read and write
|
|
|
|
25007A80000
|
unkown
|
page readonly
|
|
|
|
1999085E000
|
unkown
|
page read and write
|
|
|
|
22274713000
|
unkown
|
page read and write
|
|
|
|
7FF5C357B000
|
unkown
|
page readonly
|
|
|
|
7FF5D1447000
|
unkown
|
page readonly
|
|
|
|
7FF51BCE5000
|
unkown
|
page readonly
|
|
|
|
2BEE4F59000
|
unkown
|
page read and write
|
|
|
|
19CC89D0000
|
unkown
|
page readonly
|
|
|
|
2BEE9E14000
|
unkown
|
page read and write
|
|
|
|
2BEE9D60000
|
unkown
|
page read and write
|
|
|
|
19CC8A02000
|
unkown
|
page read and write
|
|
|
|
293C1C80000
|
unkown
|
page read and write
|
|
|
|
7FF549395000
|
unkown
|
page readonly
|
|
|
|
7FF4FD2B6000
|
unkown
|
page readonly
|
|
|
|
7FF549451000
|
unkown
|
page readonly
|
|
|
|
7FF5C3CDC000
|
unkown
|
page readonly
|
|
|
|
7FF5C368A000
|
unkown
|
page readonly
|
|
|
|
7FF5B77A5000
|
unkown
|
page readonly
|
|
|
|
7FF4FD2BC000
|
unkown
|
page readonly
|
|
|
|
7FF5C3721000
|
unkown
|
page readonly
|
|
|
|
25008402000
|
unkown
|
page read and write
|
|
|
|
234DBE00000
|
unkown
|
page readonly
|
|
|
|
7FF51BC5A000
|
unkown
|
page readonly
|
|
|
|
203F2B70000
|
unkown
|
page readonly
|
|
|
|
7FF5C3C58000
|
unkown
|
page readonly
|
|
|
|
14DD7920000
|
unkown
|
page readonly
|
|
|
|
7FF57DF98000
|
unkown
|
page readonly
|
|
|
|
2BEE9C10000
|
unkown
|
page read and write
|
|
|
|
7FF4FD1FB000
|
unkown
|
page readonly
|
|
|
|
7FF5C4D21000
|
unkown
|
page readonly
|
|
|
|
92B1D7F000
|
unkown
|
page read and write
|
|
|
|
7FF5B77B9000
|
unkown
|
page readonly
|
|
|
|
2D9CA43C000
|
unkown
|
page read and write
|
|
|
|
7FF5C3CD6000
|
unkown
|
page readonly
|
|
|
|
7FF5EB798000
|
unkown
|
page readonly
|
|
|
|
7FF5C4C4A000
|
unkown
|
page readonly
|
|
|
|
19CCAA20000
|
unkown
|
page write copy
|
|
|
|
2778A7F000
|
unkown
|
page read and write
|
|
|
|
7FF5D15C0000
|
unkown
|
page readonly
|
|
|
|
7FF5C3C1A000
|
unkown
|
page readonly
|
|
|
|
7FF4FCEF3000
|
unkown
|
page readonly
|
|
|
|
7FF5D127E000
|
unkown
|
page readonly
|
|
|
|
7FF5C3CAF000
|
unkown
|
page readonly
|
|
|
|
7FF5D0A21000
|
unkown
|
page readonly
|
|
|
|
D0028FE000
|
unkown
|
page read and write
|
|
|
|
26797DA0000
|
heap default
|
page read and write
|
|
|
|
2BEE9DC0000
|
unkown
|
page readonly
|
|
|
|
19CCA3E0000
|
unkown
|
page read and write
|
|
|
|
7FF5CCED2000
|
unkown
|
page readonly
|
|
|
|
293C1629000
|
unkown
|
page read and write
|
|
|
|
7FF5D136E000
|
unkown
|
page readonly
|
|
|
|
26797E6F000
|
unkown
|
page read and write
|
|
|
|
7FF5D153C000
|
unkown
|
page readonly
|
|
|
|
7FF57E0B8000
|
unkown
|
page readonly
|
|
|
|
7FF5CCDDD000
|
unkown
|
page readonly
|
|
|
|
7FF5D1531000
|
unkown
|
page readonly
|
|
|
|
293C1679000
|
unkown
|
page read and write
|
|
|
|
7FF5CCD8E000
|
unkown
|
page readonly
|
|
|
|
7FF51BDAF000
|
unkown
|
page readonly
|
|
|
|
7FF5D1519000
|
unkown
|
page readonly
|
|
|
|
2BEE4674000
|
unkown
|
page read and write
|
|
|
|
7FF5C35D0000
|
unkown
|
page readonly
|
|
|
|
2BEE9D07000
|
unkown
|
page readonly
|
|
|
|
2BEE9EA8000
|
unkown
|
page read and write
|
|
|
|
2BEE9E4B000
|
unkown
|
page read and write
|
|
|
|
7FF57D5F2000
|
unkown
|
page readonly
|
|
|
|
203F2C00000
|
unkown
|
page read and write
|
|
|
|
1F5577F000
|
unkown
|
page read and write
|
|
|
|
7FF5C36B0000
|
unkown
|
page readonly
|
|
|
|
2BEE9E8C000
|
unkown
|
page read and write
|
|
|
|
7FF5493E5000
|
unkown
|
page readonly
|
|
|
|
7FF5C3736000
|
unkown
|
page readonly
|
|
|
|
7FF5C3C9E000
|
unkown
|
page readonly
|
|
|
|
E5E187F000
|
unkown
|
page read and write
|
|
|
|
19CC8B00000
|
unkown
|
page read and write
|
|
|
|
7FF54944E000
|
unkown
|
page readonly
|
|
|
|
2BEE9D04000
|
unkown
|
page readonly
|
|
|
|
7FF57DF7A000
|
unkown
|
page readonly
|
|
|
|
7FF5CCDB8000
|
unkown
|
page readonly
|
|
|
|
7FF5B77F5000
|
unkown
|
page readonly
|
|
|
|
7FF5C3406000
|
unkown
|
page readonly
|
|
|
|
1999086A000
|
unkown
|
page read and write
|
|
|
|
7FF57E10D000
|
unkown
|
page readonly
|
|
|
|
234DBA30000
|
heap private
|
page read and write
|
|
|
|
234DBB90000
|
unkown
|
page read and write
|
|
|
|
92B18FD000
|
unkown
|
page read and write
|
|
|
|
7FF51BD75000
|
unkown
|
page readonly
|
|
|
|
7FF5D15C9000
|
unkown
|
page readonly
|
|
|
|
7FF51BE37000
|
unkown
|
page readonly
|
|
|
|
7FF5EB7A0000
|
unkown
|
page readonly
|
|
|
|
234DBC56000
|
unkown
|
page read and write
|
|
|
|
203F2C13000
|
unkown
|
page read and write
|
|
|
|
7FF5EB816000
|
unkown
|
page readonly
|
|
|
|
7FF5C36C8000
|
unkown
|
page readonly
|
|
|
|
25007C53000
|
unkown
|
page read and write
|
|
|
|
C5B38FF000
|
unkown
|
page read and write
|
|
|
|
7FF51BF65000
|
unkown
|
page readonly
|
|
|
|
C4AF5FC000
|
unkown
|
page read and write
|
|
|
|
7FF5D0DB7000
|
unkown
|
page readonly
|
|
|
|
65CF10E000
|
unkown
|
page read and write
|
|
|
|
2BEE9D70000
|
unkown
|
page read and write
|
|
|
|
7FF51BF9C000
|
unkown
|
page readonly
|
|
|
|
46A087E000
|
unkown
|
page read and write
|
|
|
|
2D9CA413000
|
unkown
|
page read and write
|
|
|
|
7FF5C399E000
|
unkown
|
page readonly
|
|
|
|
7FF5D15BE000
|
unkown
|
page readonly
|
|
|
|
7FF5D09FB000
|
unkown
|
page readonly
|
|
|
|
7FF5C3D60000
|
unkown
|
page readonly
|
|
|
|
234DBD02000
|
unkown
|
page read and write
|
|
|
|
19CCA640000
|
unkown
|
page read and write
|
|
|
|
7FF5EB8A1000
|
unkown
|
page readonly
|
|
|
|
7FF5C3322000
|
unkown
|
page readonly
|
|
|
|
234DBC51000
|
unkown
|
page read and write
|
|
|
|
2BEE55E0000
|
unkown
|
page read and write
|
|
|
|
203F2E00000
|
unkown
|
page readonly
|
|
|
|
2BEE9B00000
|
unkown
|
page read and write
|
|
|
|
25007C4B000
|
unkown
|
page read and write
|
|
|
|
19CC8890000
|
heap private
|
page read and write
|
|
|
|
25007D13000
|
unkown
|
page read and write
|
|
|
|
7DFBA15E8000
|
unkown
|
page readonly
|
|
|
|
19CCA3B0000
|
unkown
|
page read and write
|
|
|
|
7FF4FD29D000
|
unkown
|
page readonly
|
|
|
|
1999082C000
|
unkown
|
page read and write
|
|
|
|
7FF57E12C000
|
unkown
|
page readonly
|
|
|
|
7FF5C4CC0000
|
unkown
|
page readonly
|
|
|
|
7FF5C34E4000
|
unkown
|
page readonly
|
|
|
|
7FF5C3C4C000
|
unkown
|
page readonly
|
|
|
|
7FF5D154C000
|
unkown
|
page readonly
|
|
|
|
7FF5C4A4A000
|
unkown
|
page readonly
|
|
|
|
2BEE4702000
|
unkown
|
page read and write
|
|
|
|
7FF5B777A000
|
unkown
|
page readonly
|
|
|
|
293C2000000
|
unkown
|
page readonly
|
|
|
|
7FF57DFBD000
|
unkown
|
page readonly
|
|
|
|
7FF57E126000
|
unkown
|
page readonly
|
|
|
|
7FF5C4C65000
|
unkown
|
page readonly
|
|
|
|
7FF5D1140000
|
unkown
|
page readonly
|
|
|
|
2BEE4F18000
|
unkown
|
page read and write
|
|
|
|
7FF5D14C0000
|
unkown
|
page readonly
|
|
|
|
7FF5EB7A2000
|
unkown
|
page readonly
|
|
|
|
2BEE5500000
|
unkown
|
page read and write
|
|
|
|
7FF5D143C000
|
unkown
|
page readonly
|
|
|
|
7FF5D1285000
|
unkown
|
page readonly
|
|
|
|
7FF5C38A5000
|
unkown
|
page readonly
|
|
|
|
7FF4FD2C5000
|
unkown
|
page readonly
|
|
|
|
7FF5C37B9000
|
unkown
|
page readonly
|
|
|
|
7FF5C3D04000
|
unkown
|
page readonly
|
|
|
|
7FF549350000
|
unkown
|
page readonly
|
|
|
|
19990813000
|
unkown
|
page read and write
|
|
|
|
7FF51BF79000
|
unkown
|
page readonly
|
|
|
|
7FF57E0F9000
|
unkown
|
page readonly
|
|
|
|
92B1A7E000
|
unkown
|
page read and write
|
|
|
|
7FF5EB478000
|
unkown
|
page readonly
|
|
|
|
7FF4FCEF7000
|
unkown
|
page readonly
|
|
|
|
25007C6A000
|
unkown
|
page read and write
|
|
|
|
2BEE9EA2000
|
unkown
|
page read and write
|
|
|
|
2BEE45D0000
|
unkown
|
page readonly
|
|
|
|
7FF549459000
|
unkown
|
page readonly
|
|
|
|
7FF5C4AEE000
|
unkown
|
page readonly
|
|
|
|
7FF5C4CB5000
|
unkown
|
page readonly
|
|
|
|
7FF5C36FF000
|
unkown
|
page readonly
|
|
|
|
7FF4FD2D7000
|
unkown
|
page readonly
|
|
|
|
234DC600000
|
unkown
|
page readonly
|
|
|
|
7FF5D1481000
|
unkown
|
page readonly
|
|
|
|
D002CFE000
|
unkown
|
page read and write
|
|
|
|
7FF5493DC000
|
unkown
|
page readonly
|
|
|
|
25007B50000
|
unkown
|
page readonly
|
|
|
|
14DD7A30000
|
heap default
|
page read and write
|
|
|
|
7FF5D11DC000
|
unkown
|
page readonly
|
|
|
|
2BEE4DE1000
|
unkown
|
page read and write
|
|
|
|
7FF51BF38000
|
unkown
|
page readonly
|
|
|
|
7FF57E147000
|
unkown
|
page readonly
|
|
|
|
7FF5C399B000
|
unkown
|
page readonly
|
|
|
|
46A0DFC000
|
unkown
|
page read and write
|
|
|
|
293C1635000
|
unkown
|
page read and write
|
|
|
|
7FF57E0A0000
|
unkown
|
page readonly
|
|
|
|
7FF5CCE01000
|
unkown
|
page readonly
|
|
|
|
7FF5EB78C000
|
unkown
|
page readonly
|
|
|
|
7FF57E144000
|
unkown
|
page readonly
|
|
|
|
26798B40000
|
unkown
|
page readonly
|
|
|
|
7FF51BB65000
|
unkown
|
page readonly
|
|
|
|
7FF5EB62F000
|
unkown
|
page readonly
|
|
|
|
2D9CA502000
|
unkown
|
page read and write
|
|
|
|
7FF5CCEC2000
|
unkown
|
page readonly
|
|
|
|
22274702000
|
unkown
|
page read and write
|
|
|
|
7FF5EB80D000
|
unkown
|
page readonly
|
|
|
|
26797E3E000
|
unkown
|
page read and write
|
|
|
|
19CC8A00000
|
unkown
|
page read and write
|
|
|
|
7FF5CCDD3000
|
unkown
|
page readonly
|
|
|
|
7FF5C3C76000
|
unkown
|
page readonly
|
|
|
|
19CC8C00000
|
unkown
|
page readonly
|
|
|
|
19CC8B18000
|
unkown
|
page read and write
|
|
|
|
2BEE4691000
|
unkown
|
page read and write
|
|
|
|
19CCA3E0000
|
unkown
|
page read and write
|
|
|
|
19991002000
|
unkown
|
page read and write
|
|
|
|
65CF87F000
|
unkown
|
page read and write
|
|
|
|
2BEEA060000
|
unkown
|
page read and write
|
|
|
|
7FF5C4AAF000
|
unkown
|
page readonly
|
|
|
|
7FF5D134F000
|
unkown
|
page readonly
|
|
|
|
234DBD13000
|
unkown
|
page read and write
|
|
|
|
7FF5C3C72000
|
unkown
|
page readonly
|
|
There are 887 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
http://7news.cdn.7vodcloud.io/
|
|