Automated Malware Analysis IOC Report for

Files

File Path

Type

Category

Malicious

C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\2b7d9405-7aef-4d6a-8533-c6544b4bbf81.tmp

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\47426093-9f8b-4646-ba03-71652ac29c40.tmp

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\59a0267e-353d-4e1a-9a30-12f70eae6cca.tmp

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\7afd7af0-2037-41a4-959e-3a893b0052fa.tmp

SysEx File -

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\7bee8e2b-6410-4440-8419-c161b9c12205.tmp

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1356690b-430e-4960-960a-97d4da660054.tmp

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\22e57a4f-4892-4383-a77f-2640fb1731a0.tmp

very short file (no magic)

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\38cedd01-5813-4312-8b51-9e00204b9da8.tmp

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5e843f98-8a61-4996-9c56-406ffd8845c9.tmp

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\63437ff3-465a-4360-befe-00a4b9a2bb5f.tmp

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6e064c20-c869-4e1b-82e4-dd7d02376593.tmp

UTF-8 Unicode text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7cf7a435-b217-4af8-a434-55b51033635f.tmp

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\937c4de0-6598-41a3-88fd-5c1fa348099e.tmp

UTF-8 Unicode text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9d9bc63e-4f81-469c-8231-16796c8bc453.tmp

UTF-8 Unicode text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old" (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old. (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\00a73600649a63ce_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\015b57ac47f993e0_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\02e6b87cf26c3f60_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\04e3f25e64ef23bc_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\07ba938e66011558_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\08c6b90a4dee433e_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0ba91aa6ae29d08a_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0d5e9c2ce70a08b7_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0f0886dc1df9f2c5_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\11e8b01695d846a4_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1330a39b3dde3fd5_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1aed6b6619289abf_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\226a3495a1d48b58_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2354abbff3a2b46a_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2e4b9f9c179079cb_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\304b8f8f5a9a7109_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\35da886f40383299_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\36d0235949f31082_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\37729ecc6986e9a4_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\394087d54370fce6_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\42517ad75deb63ed_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\44c49097cc205184_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\47b6abe61c9e2603_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\494544af254555d8_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4ad50f0b3691d694_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4c932a6077369a0e_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4e3a906930897002_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\528df7fa00e0aa0d_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\55c077073672c897_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5983721c06c847ef_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5a7d74a0f248aeed_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\639bcbdbc90e8679_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\644d7017e122e1ca_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6523977b58fe7121_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\677a9a2c6f84bb77_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6a9fad8381d66bfe_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7599370324cb669f_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\78076ae97804cb59_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7812293e5d091f0b_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\789f8ca882c51e35_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7b591f1b28f5c3c3_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\850d10ed47f5161b_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\85825358bdde0464_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8d858bba8e7cc695_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8dbf3e0616fc3365_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8eddab4197bc75ce_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8faec8b628066d9d_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9631402f09f54cad_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9b976e67b745f230_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9f5aed4e4f46c7af_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9f7e885e8c444e3d_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a15517d66cf9acef_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a22039cd92bba997_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a2964bd1e404c410_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a35f42e17cb0ecfc_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a3a599ec6a6536db_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a6942155eb9698ff_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a8448f8e0f201664_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\aa817b3c14a0e316_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ab4f59045e28d03f_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ac3dcbd7fa5d1a93_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ae02cf7e37a7bd4e_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ae3e7fe9104c1959_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\afa46b3c3136cf33_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b12d010a25b4c1d0_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c04cde203932c13d_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c04d129d37789be7_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c06cca6d9cb8adac_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c0c428a0b3cd83d1_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c0dce968f13388e6_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c0fe5a57f56fe483_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c1edc6da6ebfc6d9_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c2ea2693bfe47e62_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c45af8131a889d51_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c7de4b4d794d23f6_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c8dd83c2c31e1c37_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ce2c17b9c6edf534_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d3b37b1b026dc6fb_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d6595452d2846755_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\da4672e4a1c8360e_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\db4718e9c146cf75_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e25c8c9884a7ba3d_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e3e43ec7c331d0ef_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ec08776eb4299c6a_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f4ea5f9a65f388d8_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fee552a8b3b8076b_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index. (copy)

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies

SQLite 3.x database, last written using SQLite version 3032001

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old. (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_1\_metadata\computed_hashes.json

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons

SQLite 3.x database, last written using SQLite version 3032001

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old.3 (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old. (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History

SQLite 3.x database, last written using SQLite version 3032001

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.adobe.com_0.indexeddb.leveldb\000001.dbtmp

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.adobe.com_0.indexeddb.leveldb\000003.log

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.adobe.com_0.indexeddb.leveldb\CURRENT= (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.adobe.com_0.indexeddb.leveldb\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.adobe.com_0.indexeddb.leveldb\MANIFEST-000001

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Sessionlo (copy)

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabset (copy)

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log

big endian ispell hash file (?),

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor

SQLite 3.x database, last written using SQLite version 3032001

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State. (copy)

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.old (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences.. (copy)

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\QuotaManager

SQLite 3.x database, last written using SQLite version 3032001

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\QuotaManager-journal

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL

SQLite 3.x database, last written using SQLite version 3032001

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)

UTF-8 Unicode text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences.8 (copy)

UTF-8 Unicode text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\ac638186867a8621e9d2c135ae1c0f30318969e8\9d488202-37a2-42ad-8e38-46668ea7b85e\608d0ed97c2352d1_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\ac638186867a8621e9d2c135ae1c0f30318969e8\9d488202-37a2-42ad-8e38-46668ea7b85e\a875b431fe449611_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\ac638186867a8621e9d2c135ae1c0f30318969e8\9d488202-37a2-42ad-8e38-46668ea7b85e\c7191327f0fdf77c_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\ac638186867a8621e9d2c135ae1c0f30318969e8\9d488202-37a2-42ad-8e38-46668ea7b85e\index

ISO-8859 text, with no line terminators, with escape sequences

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\ac638186867a8621e9d2c135ae1c0f30318969e8\9d488202-37a2-42ad-8e38-46668ea7b85e\index-dir\temp-index

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\ac638186867a8621e9d2c135ae1c0f30318969e8\9d488202-37a2-42ad-8e38-46668ea7b85e\index-dir\the-real-index (copy)

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\ac638186867a8621e9d2c135ae1c0f30318969e8\9d488202-37a2-42ad-8e38-46668ea7b85e\index-dir\the-real-indexTM (copy)

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\ac638186867a8621e9d2c135ae1c0f30318969e8\index.txt D (copy)

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\ac638186867a8621e9d2c135ae1c0f30318969e8\index.txt. (copy)

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\ac638186867a8621e9d2c135ae1c0f30318969e8\index.txt.tmp

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\000001.dbtmp

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\000003.log

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\CURRENT (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\MANIFEST-000001

PGP\011Secret Key -

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\013888a1cda32b90_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\013888a1cda32b90_1

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\297ecea5cebb5dfe_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\297ecea5cebb5dfe_1

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_1

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\4cb013792b196a35_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\4cb013792b196a35_1

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\67a473248953641b_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\67a473248953641b_1

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\b6c28cea6ed9dfc1_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\b6c28cea6ed9dfc1_1

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\ba23d8ecda68de77_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\ba23d8ecda68de77_1

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\f1cdccba37924bda_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\f1cdccba37924bda_1

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\fa813c9ad67834ac_0

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index

ISO-8859 text, with no line terminators, with escape sequences

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\temp-index

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index (copy)

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-indexsa (copy)

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old. (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\539239cd-ec2c-4273-b91c-e6d258ed9097.tmp

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent State0 (copy)

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\9dae80c1-2071-4e0b-bbb0-5bf2217ef9bf.tmp

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old.. (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent StateTM (copy)

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old. (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.old (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.oldTM (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.old. (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity (copy)

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_nmmhkkegccagdldgiimedpiccmgmieda\Chrome Web Store Payments.ico.md5

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_nmmhkkegccagdldgiimedpiccmgmieda\Chrome Web Store Payments.icop (copy)

MS Windows icon resource - 13 icons, 8x8, 32 bits/pixel, 10x10, 32 bits/pixel

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_nmmhkkegccagdldgiimedpiccmgmieda\f27e3fd2-055c-409d-8265-aa19fab799e2.tmp

MS Windows icon resource - 13 icons, 8x8, 32 bits/pixel, 10x10, 32 bits/pixel

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old* (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004

MPEG-4 LOAS

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db

SQLite 3.x database, last written using SQLite version 3032001

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db-journal

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f0c433dc-06a5-4e70-a53a-7a968bfdd3f0.tmp

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f9e869e5-04e0-43f4-8d11-ec65581d761d.tmp

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\fd7e2917-abf7-4fd2-9b85-6c12e6a469e9.tmp

ASCII text, with very long lines, with no line terminators

modified

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\fdfcd115-31a7-41eb-a2f5-986cdff90aa5.tmp

UTF-8 Unicode text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old. (copy)

ASCII text

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version

ASCII text, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State. (copy)

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info CacheTM (copy)

SysEx File -

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cachel (copy)

data

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\27\9.30.0\Indexing in Progress

empty

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\27\scoped_dir3636_996091295\Ruleset Data

data

modified

C:\Users\user\AppData\Local\Google\Chrome\User Data\a2051257-ca6f-490f-98ea-aa5778c78045.tmp

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\a3ae3da5-2352-4004-ac99-746edd627377.tmp

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\b1510d0a-df30-4581-8fe3-ab92471c33b3.tmp

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\dcc0f33d-1ff1-4edc-ad8b-73edd66165f1.tmp

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\deae43c3-9e90-4951-9ff5-cb761ed360c7.tmp

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\e7c70870-feba-40fd-8d13-153cbdc74a16.tmp

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Google\Chrome\User Data\ef2f7770-b14f-4914-90ab-03b646f7031a.tmp

ASCII text, with very long lines, with no line terminators

dropped

C:\Users\user\AppData\Local\Temp\3636_444045657\manifest.fingerprint

ASCII text, with no line terminators

dropped

C:\Users\user\AppData\Local\Temp\3636_491549725\manifest.fingerprint

ASCII text, with no line terminators

dropped

C:\Users\user\AppData\Local\Temp\3636_722622107\manifest.fingerprint

ASCII text, with no line terminators

dropped

C:\Users\user\AppData\Local\Temp\3636_805398835\manifest.fingerprint

ASCII text, with no line terminators

dropped

C:\Users\user\AppData\Local\Temp\98ea2125-d713-4d7a-8c7c-d5b35227b280.tmp

very short file (no magic)

dropped

C:\Users\user\AppData\Local\Temp\9f3b5095-0a11-4ac9-b38e-ae2cf31c1708.tmp

very short file (no magic)

dropped

C:\Users\user\AppData\Local\Temp\b9ba6178-04f7-4a9d-b010-e03b2d121883.tmp

very short file (no magic)

dropped

C:\Users\user\AppData\Local\Temp\bad332b1-34ec-4bfc-bcc0-39317b35becf.tmp

Google Chrome extension, version 3

dropped

C:\Users\user\AppData\Local\Temp\be31c696-6461-44a2-8690-fb3b1f9f830f.tmp

Google Chrome extension, version 3

dropped

C:\Users\user\AppData\Local\Temp\browser-sslkeys.log

ASCII text

dropped

C:\Users\user\AppData\Local\Temp\da6aa451-3c59-4a04-80b0-304cbbc19ba5.tmp

Google Chrome extension, version 3

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\bg\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\ca\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\cs\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\da\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\de\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\el\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\en\messages.json

ASCII text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\en_GB\messages.json

ASCII text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\es\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\es_419\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\et\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\fi\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\fil\messages.json

ASCII text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\fr\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\hi\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\hr\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\hu\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\id\messages.json

ASCII text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\it\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\ja\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\ko\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\lt\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\lv\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\nb\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\nl\messages.json

ASCII text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\pl\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\pt_BR\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\pt_PT\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\ro\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\ru\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\sk\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\sl\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\sr\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\sv\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\th\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\tr\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\uk\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\vi\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\zh_CN\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\_locales\zh_TW\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\images\icon_128.png

PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\images\icon_16.png

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\CRX_INSTALL\manifest.json

ASCII text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_1316174353\bad332b1-34ec-4bfc-bcc0-39317b35becf.tmp

Google Chrome extension, version 3

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\am\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\ar\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\bg\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\bn\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\ca\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\cs\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\da\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\de\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\el\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\en\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\es\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\et\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\fa\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\fi\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\fil\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\fr\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\gu\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\hi\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\hr\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\hu\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\id\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\it\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\ja\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\kn\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\ko\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\lt\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\lv\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\ml\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\mr\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\ms\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\nb\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\nl\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\pl\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\pt\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\ro\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\ru\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\sk\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\sl\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\sr\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\sv\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\sw\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\ta\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\te\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\th\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\tr\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\uk\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\vi\messages.json

UTF-8 Unicode text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\zh\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\_locales\zh_TW\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\CRX_INSTALL\manifest.json

ASCII text, with very long lines, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_2068555053\da6aa451-3c59-4a04-80b0-304cbbc19ba5.tmp

Google Chrome extension, version 3

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\bg\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\ca\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\cs\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\da\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\de\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\el\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\en\messages.json

ASCII text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\en_GB\messages.json

ASCII text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\es\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\es_419\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\et\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\fi\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\fil\messages.json

ASCII text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\fr\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\hi\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\hr\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\hu\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\id\messages.json

ASCII text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\it\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\ja\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\ko\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\lt\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\lv\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\nb\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\nl\messages.json

ASCII text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\pl\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\pt_BR\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\pt_PT\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\ro\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\ru\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\sk\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\sl\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\sr\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\sv\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\th\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\tr\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\uk\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\vi\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\zh_CN\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\_locales\zh_TW\messages.json

UTF-8 Unicode text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\images\icon_128.png

PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\images\icon_16.png

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\CRX_INSTALL\manifest.json

ASCII text, with CRLF line terminators

dropped

C:\Users\user\AppData\Local\Temp\scoped_dir3636_97822361\be31c696-6461-44a2-8690-fb3b1f9f830f.tmp

Google Chrome extension, version 3

dropped

There are 397 hidden files, click here to show them.

Processes

Path

Cmdline

Malicious

C:\Program Files\Google\Chrome\Application\chrome.exe

'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://spark.adobe.com/page/4WTm5hB6jd6VX/'

Details

Is windows:	true
Is dropped:	false
PID:	3636
Target ID:	0
Parent PID:	2264
Name:	chrome.exe
Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Commandline:	'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://spark.adobe.com/page/4WTm5hB6jd6VX/'
Size:	2150896
MD5:	C139654B5C1438A95B321BB01AD63EF6
Time:	19:17:18
Date:	27/09/2021
Reason:	newprocess
Reputation:	low
Is admin:	true
Is elevated:	true
Modulebase:	0x7ff7c15e0000
Modulesize:	2199552
Wow64:	false

Signature Hits	Behavior Group	Mitre Attack
Spawns processes	System Summary	Process Injection

C:\Program Files\Google\Chrome\Application\chrome.exe

'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1628,14564879731351383447,5569332593134329760,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1728 /prefetch:8

Details

Is windows:	true
Is dropped:	false
PID:	5056
Target ID:	2
Parent PID:	3636
Name:	chrome.exe
Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Commandline:	'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1628,14564879731351383447,5569332593134329760,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1728 /prefetch:8
Size:	2150896
MD5:	C139654B5C1438A95B321BB01AD63EF6
Time:	19:17:19
Date:	27/09/2021
Reason:	newprocess
Reputation:	low
Is admin:	true
Is elevated:	true
Modulebase:	0x7ff7c15e0000
Modulesize:	2199552
Wow64:	false

Signature Hits	Behavior Group	Mitre Attack
Spawns processes	System Summary	Process Injection

URLs

Name

Malicious

https://spark.adobe.com/page/4WTm5hB6jd6VX/

https://blacktechworld.com/absolutelymortgages/1337_prv8/1337_prv8/Office365/PDF/Secure/

69.49.234.94

https://blacktechworld.com/absolutelymortgages/1337_prv8/1337_prv8/Office365/PDF/Secure/Share

unknown

https://blacktechworld.com/absolutelymortgages/1337_prv8/1337_prv8/Office365/PDF/Secure/css/hover.css

69.49.234.94

https://code.jquery.com/jquery-3.2.1.slim.min.jsaD

unknown

https://universal.iperceptions.com/iFrame.html

52.84.140.32

https://cdn.cookielaw.org/scripttemplates/6.9.0/assets/otPcCenter.json

104.16.149.64

https://code.jquery.com/jquery-3.2.1.slim.min.js

unknown

https://assets.adobedtm.com/launch-EN919758db9a654a17bac7d184b99c4820.min.js

unknown

https://a.nel.cloudflare.com/report/v3?s=qqtqcKORDzS4ngRqJpS6dZuVrtx4dCQMVigSVL3owLQqMeh6x3eZd%2BJlR

unknown

https://i.ibb.co/1Rvzzk8/gmail1.png

145.239.131.60

https://json-schema.org/draft/2019-09/vocab/

unknown

https://disq.us/?url=https%3A%2F%2Fblacktechworld.com%2Fabsolutelymortgages%2F1337_prv8%2F1337_prv8%2FOffice365%2FPDF%2FSecure&key=-MkqJoVWdZ-6SyvdC4hP7Q

151.101.128.64

https://cdnssl.clicktale.net/ss/4451/df7e164d-c711-4376-a4c8-8b364d648be0/9/uxa.js

unknown

https://page.adobespark-assets.com/runtime/1.22/typekit-load.gz.js

13.33.48.62

https://9212252.fls.doubleclick.net

unknown

https://cdn.cookielaw.org/scripttemplates/6.9.0/assets/otFlat.json

104.16.149.64

https://px.ads.linkedin.com/collect?

unknown

https://static.adobelogin.com/imslib/imslib.min.js

52.85.141.51

https://d9.flashtalking.com/lgc

34.252.163.14

https://s2.clicktale.net/

unknown

https://dpm.demdex.net/ibs:dpid=3047&dpuuid=99999999999999&

99.81.246.4

https://adobedc.demdex.net/ee/v1/interact?configId=275a1cc1-992e-4c14-b63a-c28ac0ccbf48&requestId=5e76e036-26b3-441c-9800-1cb978552938

13.36.218.177

https://googleads.g.doubleclick.net/pagead/viewthroughconversion/752015178/?random=1632795478949&cv=

unknown

https://support.google.com/chrome/answer/9658361

unknown

https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js

104.18.10.207

https://kit.fontawesome.com/585b051251.js

unknown

https://blacktechworld.com/w

unknown

https://cdnssl.clicktale.net/

unknown

https://blacktechworld.com/absolutelymortgages/1337_prv8/1337_prv8/Office365/PDF/SecureShare

unknown

https://use.typekit.net/af/3d913c/000000000000000000017709/26/

unknown

https://adobesparkpost.app.link/qtResize

unknown

https://prod.adobeccstatic.com/utilnav/8.2/utilitynav.css

unknown

https://assets.adobedtm.com/d4d114c60e50/f3fbfbe0e7ca/26013ad5259b/RC6f46e43fa6d44dbeb45cc5801ffded0

unknown

https://maxcdn.bootstrapcdn.com/

unknown

https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1

172.217.168.46

https://payments.google.com/payments/v4/js/integrator.js

unknown

https://match.prod.bidr.io/cookie-sync/demandbase

52.16.214.249

https://use.typekit.net/af/edcf1e/0000000000000000000158d9/26/

unknown

https://s.go-mpulse.net/boomerang/EHLGM-B6VHF-ZVPEW-5D8FX-L8P4H

unknown

https://page.adobespark-assets.com/runtime/1.22/images/spark_app_white@2x.svg

13.33.48.62

https://kit.fontawesome.com/

unknown

https://use.typekit.net/rbi5aua.js

unknown

https://assets.adobedtm.com/d4d114c60e50/f3fbfbe0e7ca/26013ad5259b/RC3459a37bb5364bcdb417b5671a49c7d

unknown

https://github.com/webpack-contrib/style-loader#insertat)

unknown

https://connect.facebook.net/signals/config/1772359959706965?v=2.9.46&r=stable

157.240.17.15

https://adobespark.zendesk.com/hc/en-us/articles/219243657

unknown

https://cdn.cookielaw.org/

unknown

https://tr.snapchat.com/p

35.186.226.184

https://use.typekit.net/onz5gap.jsaD

unknown

https://ims-na1.adobelogin.com/favicon.ico?cache_bust=dada3431f5138

52.50.233.198

https://cdnssl.clicktale.net/ss/4451/df7e164d-c711-4376-a4c8-8b364d648be0/9/pcc.jsaD

unknown

https://ims-na1.adobelogin.com

unknown

https://feedback.googleusercontent.com

unknown

https://js-agent.newrelic.com/nr-spa-1210.min.js

unknown

https://use.typekit.net/af/9951d2/0000000000000000000158d7/26/

unknown

https://cdn.cookielaw.org/scripttemplates/otSDKStub.js

104.16.149.64

https://dpm.demdex.net/id/rd?d_visid_ver=5.0.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=9E1005A551ED61CA0A490D45%40AdobeOrg&d_nsid=0&ts=1632795466115

99.81.246.4

http://braze.com

unknown

https://adobespark.zendesk.com/hc/en-us/articles/218956027

unknown

https://googleads.g.doubleclick.net/pagead/viewthroughconversion/951622910/?random=1632795476652&cv=

unknown

https://npms.io/search?q=ponyfill.

unknown

https://sc-static.net/scevent.min.js

13.33.48.120

https://clicktalecdn.sslcs.cdngc.net/

unknown

https://page.adobespark-assets.com/runtime/1.22/images/favicon.ico7DI

unknown

https://use.typekit.net/af/9d1933/00000000000000000001705b/26/

unknown

https://www.google.ch

unknown

https://disq.us/?url=https%3A%2F%2Fblacktechworld.com%2Fabsolutelymortgages%2F1337_prv8%2F1337_prv8%

unknown

https://servedby.flashtalking.com/

unknown

https://static.adobelogin.com/imslib/imslib.min.jsaD

unknown

https://page.adobespark-assets.com/runtime/1.22/images/favicon.ico

13.33.48.62

https://use.typekit.net/af/180c9d/00000000000000003b9b3f8a/27/

unknown

https://assets.adobedtm.com/d4d114c60e50/f3fbfbe0e7ca/26013ad5259b/RC1674e0ea4dce447aad8dad64d01bb27

unknown

https://use.typekit.net/rbi5aua.jsaD

unknown

https://blacktechworld.com/

unknown

https://9212252.fls.doubleclick.net/activityi;dc_pre=CMTOpLnUn_MCFeV_0wodibIOLg;src=9212252;type=inv

unknown

https://clicktale.pantherssl.com/

unknown

https://use.typekit.net/af/74fc30/0000000000000000000158d4/26/

unknown

https://page.adobespark-assets.com/runtime/1.22/runtime-prod.gz.js

13.33.48.62

https://cdnssl.clicktale.net/ss/4451/df7e164d-c711-4376-a4c8-8b364d648be0/9/ptc.js

unknown

https://apis.google.com

unknown

https://ims-na1.adobelogin.com/ims/userinfo/v1

unknown

https://9212252.fls.doubleclick.net/activityi;dc_pre=CPfErLbUn_MCFagK0wodI48EDA;src=9212252;type=inv

unknown

https://snap.licdn.com/li.lms-analytics/insight.min.jsaD

unknown

https://9212252.fls.doubleclick.net/activityi;dc_pre=CPfErLbUn_MCFagK0wodI48EDA;src=9212252;type=invmedia;cat=japan000;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=8478390455001.732?

https://use.typekit.net/af/d5d9b2/00000000000000000000ffd9/26/

unknown

https://code.jquery.com/jquery-3.1.1.min.js

unknown

https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard

172.217.168.13

https://fonts.adobespark.com/typekit-metrics

unknown

http://ct.contentsquare.net/pcc/

unknown

https://code.jquery.com/

unknown

https://googleads.g.doubleclick.net

unknown

https://universal.iperceptions.com

unknown

https://www.linkedin.com/li/rep

unknown

https://analytics.tiktok.com/i18n/pixel/identify.js

unknown

https://tr.snapchat.com/cm/i

unknown

https://use.typekit.net/af/fe9c8e/0000000000000000000158d8/26/

unknown

https://assets.adobedtm.com/d4d114c60e50/f3fbfbe0e7ca/26013ad5259b/RCd685f8c6c09c43808ebe3d73ec90e0e

unknown

https://prod.adobeccstatic.com/

unknown

https://dpm.demdex.net/ibs:dpid=3047&dpuuid=5018E8889AB42C&

99.81.246.4

https://adobe.tt.omtrdc.net/rest/v2/batchmbox?client=adobe&session=nI4ymRMJGtE0aueVi82Fe

34.249.52.209

There are 90 hidden URLs, click here to show them.

Domains

Name

Malicious

gstaticadssl.l.google.com

172.217.168.67

cutt.ly

104.22.1.232

dart.l.doubleclick.net

142.250.203.102

d1gs6rlbmzcurc.cloudfront.net

13.33.48.51

segments.company-target.com

52.84.140.95

tr.snapchat.com

35.186.226.184

tag.device9.com

34.252.163.14

dcs-edge-irl1-876252164.eu-west-1.elb.amazonaws.com

99.81.246.4

c-ct-eu.contentsquare.net

52.18.132.108

adservice.google.com

172.217.168.34

platform.twitter.map.fastly.net

199.232.136.157

i.ibb.co

145.239.131.60

spark.adobeprojectm.com

13.33.48.50

scontent.xx.fbcdn.net

157.240.17.15

t.co

104.244.42.197

cdnjs.cloudflare.com

104.16.19.94

adobe.com.ssl.d1.sc.omtrdc.net

15.188.95.229

api.demandbase.com

52.84.140.98

demdex.net.ssl.sc.omtrdc.net

13.36.218.177

www.google.com

172.217.168.36

adobe.tt.omtrdc.net

34.249.52.209

prod.adobeccstatic.com

52.84.140.102

blacktechworld.com

69.49.234.94

id.rlcdn.com

35.244.174.68

page.adobespark-assets.com

13.33.48.62

dd20fzx9mj46f.cloudfront.net

52.85.141.51

star-mini.c10r.facebook.com

157.240.17.35

match.prod.bidr.io

52.16.214.249

accounts.google.com

172.217.168.13

adobelogin-origin.prod.ims.adobejanus.com

52.50.233.198

s.twitter.com

104.244.42.131

services.prod.ims.adobejanus.com

54.154.197.223

pop-esv5.mix.linkedin.com

108.174.11.37

ethos51-prod-va6-k8s-pub2-0-dd4b5c1747f92a5e.elb.us-east-1.amazonaws.com

3.223.105.97

www-googletagmanager.l.google.com

172.217.168.40

sc-static.net

13.33.48.120

maxcdn.bootstrapcdn.com

104.18.10.207

disq.us

151.101.128.64

webrecorder-prod-1682395302.us-east-1.elb.amazonaws.com

44.195.248.99

googleads.g.doubleclick.net

172.217.168.2

api.company-target.com

52.84.140.121

clients.l.google.com

172.217.168.46

dq0hwjjeyor81.cloudfront.net

52.84.140.32

www.google.ch

216.58.215.227

googlehosted.l.googleusercontent.com

172.217.168.1

cdn.cookielaw.org

104.16.149.64

geolocation.onetrust.com

104.20.184.68

scripts.demandbase.com

52.84.140.41

static.ads-twitter.com

unknown

ka-f.fontawesome.com

unknown

ims-na1.adobelogin.com

unknown

api.iperceptions.com

unknown

pixel.everesttech.net

unknown

clients2.googleusercontent.com

unknown

clients2.google.com

unknown

adobedc.demdex.net

unknown

static.adobelogin.com

unknown

adobe.demdex.net

unknown

use.typekit.net

unknown

kit.fontawesome.com

unknown

assets.adobedtm.com

unknown

connect.facebook.net

unknown

px.ads.linkedin.com

unknown

p.typekit.net

unknown

c.clicktale.net

unknown

s.go-mpulse.net

unknown

code.jquery.com

unknown

pt.ispot.tv

unknown

ing-district.clicktale.net

unknown

cdnssl.clicktale.net

unknown

dpm.demdex.net

unknown

bam-cell.nr-data.net

unknown

servedby.flashtalking.com

unknown

www.facebook.com

unknown

bumper.adobeprojectm.com

unknown

www.linkedin.com

unknown

js-agent.newrelic.com

unknown

sd.iperceptions.com

unknown

lasteventf-tm.everesttech.net

unknown

universal.iperceptions.com

unknown

www.everestjs.net

unknown

analytics.twitter.com

unknown

snap.licdn.com

unknown

9212252.fls.doubleclick.net

unknown

d9.flashtalking.com

unknown

analytics.tiktok.com

unknown

c.go-mpulse.net

unknown

There are 77 hidden domains, click here to show them.

IPs

Domain

Country

Malicious

192.168.2.1

unknown

172.217.168.40

www-googletagmanager.l.google.com

United States

192.168.2.6

unknown

157.240.17.35

star-mini.c10r.facebook.com

United States

172.217.168.46

clients.l.google.com

United States

15.188.95.229

adobe.com.ssl.d1.sc.omtrdc.net

United States

104.20.184.68

geolocation.onetrust.com

United States

52.84.140.95

segments.company-target.com

United States

52.50.233.198

adobelogin-origin.prod.ims.adobejanus.com

United States

52.16.214.249

match.prod.bidr.io

United States

145.239.131.60

i.ibb.co

France

52.84.140.98

api.demandbase.com

United States

172.217.168.1

googlehosted.l.googleusercontent.com

United States

13.36.218.177

demdex.net.ssl.sc.omtrdc.net

United States

104.244.42.131

s.twitter.com

United States

172.217.168.2

googleads.g.doubleclick.net

United States

104.22.1.232

cutt.ly

United States

52.84.140.102

prod.adobeccstatic.com

United States

172.217.168.13

accounts.google.com

United States

239.255.255.250

unknown

Reserved

52.85.141.51

dd20fzx9mj46f.cloudfront.net

United States

35.244.174.68

id.rlcdn.com

United States

35.186.226.184

tr.snapchat.com

United States

127.0.0.1

unknown

108.174.11.37

pop-esv5.mix.linkedin.com

United States

13.33.48.120

sc-static.net

United States

104.18.10.207

maxcdn.bootstrapcdn.com

United States

13.33.48.62

page.adobespark-assets.com

United States

52.208.28.104

unknown

United States

3.223.105.97

ethos51-prod-va6-k8s-pub2-0-dd4b5c1747f92a5e.elb.us-east-1.amazonaws.com

United States

69.49.234.94

blacktechworld.com

United States

157.240.17.15

scontent.xx.fbcdn.net

United States

151.101.128.64

disq.us

United States

52.18.132.108

c-ct-eu.contentsquare.net

United States

54.154.197.223

services.prod.ims.adobejanus.com

United States

44.195.248.99

webrecorder-prod-1682395302.us-east-1.elb.amazonaws.com

United States

34.252.163.14

tag.device9.com

United States

13.33.48.50

spark.adobeprojectm.com

United States

34.249.52.209

adobe.tt.omtrdc.net

United States

142.250.203.102

dart.l.doubleclick.net

United States

13.33.48.51

d1gs6rlbmzcurc.cloudfront.net

United States

52.84.140.32

dq0hwjjeyor81.cloudfront.net

United States

104.244.42.197

t.co

United States

99.81.246.4

dcs-edge-irl1-876252164.eu-west-1.elb.amazonaws.com

United States

104.16.149.64

cdn.cookielaw.org

United States

52.84.140.121

api.company-target.com

United States

172.217.168.36

www.google.com

United States

52.84.140.41

scripts.demandbase.com

United States

104.16.19.94

cdnjs.cloudflare.com

United States

199.232.136.157

platform.twitter.map.fastly.net

United States

There are 40 hidden IPs, click here to show them.

Registry

Path

Value

Malicious

HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault

S-1-5-21-3853321935-2125563209-4053062332-1002

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings

ahfgeienlihckogmohjhadlkjgocpleb

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings

gdaefkejpgkiemlaofpalmlakkmbjdnl

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings

gfdkimpbcpahaombhbimeihdjnejgicl

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings

kmendfapggjehodndflmmgagdbamhnfd

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings

mfehgcgbbipciphmccgaenjidiccnmng

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings

mhjfbmdgcfjbbpaeojofohoefgiehjai

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings

neajdppkdcdipfabeoofebfddakdcjhd

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings

nkeimhogjdpnpccoofpliimaahmaaome

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings

nmmhkkegccagdldgiimedpiccmgmieda

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

prefs.preference_reset_time

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings

gfdkimpbcpahaombhbimeihdjnejgicl

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings

nmmhkkegccagdldgiimedpiccmgmieda

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings

pkedcjkdefgpdelpbcmbmeomcjbeemfm

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings

nmmhkkegccagdldgiimedpiccmgmieda

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings

nmmhkkegccagdldgiimedpiccmgmieda

HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon

state

HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty

StatusCodes

HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty

StatusCodes

HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon

state

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

software_reporter.reporting

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

module_blacklist_cache_md5_digest

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

media.storage_id_salt

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

google.services.last_account_id

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

google.services.account_id

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

software_reporter.prompt_seed

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

settings_reset_prompt.last_triggered_for_homepage

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

default_search_provider_data.template_url_data

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

safebrowsing.incidents_sent

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

pinned_tabs

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

search_provider_overrides

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

settings_reset_prompt.last_triggered_for_default_search

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

prefs.preference_reset_time

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

google.services.last_username

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

session.startup_urls

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

session.restore_on_startup

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

software_reporter.prompt_version

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

settings_reset_prompt.last_triggered_for_startup_urls

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

settings_reset_prompt.prompt_wave

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

homepage

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

homepage_is_newtabpage

HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default

browser.show_home_button

HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics

user_experience_metrics.stability.exited_cleanly

HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}

lastrun

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer

GlobalAssocChangedCounter

There are 35 hidden registries, click here to show them.

Memdumps

Base Address

Regiontype

Protect

Malicious

284D1F02000

unkown

page read and write

20D9B5D0000

heap default

page read and write

7FF56F1C6000

unkown image

page readonly

921D27E000

unkown

page read and write

284D1987000

unkown

page read and write

284D0E80000

unkown image

page readonly

2336582A000

unkown

page read and write

227DC4FF000

unkown

page read and write

7DF59CC42000

unkown image

page readonly

7FF54C063000

unkown image

page readonly

21FC8E29000

unkown

page read and write

7DF59CC52000

unkown image

page readonly

8C2177B000

unkown

page read and write

284D19A7000

unkown

page read and write

21FCE6A0000

unkown

page read and write

7FF5BBF6A000

unkown image

page readonly

233656D0000

unkown image

page readonly

284D19A3000

unkown

page read and write

7FF54B8AA000

unkown image

page readonly

7DF512BE2000

unkown image

page readonly

7FF513777000

unkown image

page readonly

7DF512BF0000

unkown image

page readonly

7FF592DE6000

unkown image

page readonly

FCF979E000

unkown

page read and write

21FC979A000

unkown

page read and write

7FF592E96000

unkown image

page readonly

284D197C000

unkown

page read and write

21FCE4F3000

unkown

page read and write

8C21DF8000

unkown

page read and write

1F2D7E4D000

unkown

page read and write

7FF54C104000

unkown image

page readonly

EC8B4AA000

unkown

page read and write

7DF512BE2000

unkown image

page readonly

7FF56F23D000

unkown image

page readonly

1F2D7F08000

unkown

page read and write

21FCE860000

unkown

page read and write

284D1962000

unkown

page read and write

21FCE52E000

unkown

page read and write

21FCE4B5000

unkown

page read and write

6C880FB000

unkown

page read and write

227DC420000

unkown

page read and write

7DF555F10000

unkown image

page readonly

23365889000

unkown

page read and write

21FCE4E0000

unkown

page read and write

7DF41B3E0000

unkown image

page readonly

7FF592DF9000

unkown image

page readonly

7DF5C5D40000

unkown image

page readonly

23365853000

unkown

page read and write

21FC9718000

unkown

page read and write

21FCE340000

unkown

page read and write

284D1E02000

unkown

page read and write

21FCE8D0000

unkown

page read and write

1F2D8602000

unkown

page read and write

7DF51D520000

unkown image

page readonly

21FCE52E000

unkown

page read and write

20D9BBA0000

unkown image

page readonly

21FCE34E000

unkown

page read and write

21FCE4DD000

unkown

page read and write

284D1113000

unkown

page read and write

284D197C000

unkown

page read and write

281587F000

unkown

page read and write

7FF592DBD000

unkown image

page readonly

1F2D7D20000

heap default

page read and write

7FF54C107000

unkown image

page readonly

227DC5D0000

unkown image

page readonly

FCF9DF7000

unkown

page read and write

1F2D7CF0000

unkown image

page readonly

21FC8CB0000

unkown image

page readonly

21FC9799000

unkown

page read and write

284D19A1000

unkown

page read and write

7FF51350A000

unkown image

page readonly

21FCE6A0000

unkown

page read and write

284D1962000

unkown

page read and write

20D9C410000

unkown

page read and write

7FF54C101000

unkown image

page readonly

7FF56F244000

unkown image

page readonly

7FF592D94000

unkown image

page readonly

7FF5BBED6000

unkown image

page readonly

21FC9718000

unkown

page read and write

21FC8E75000

unkown

page read and write

21FC8DE0000

unkown

page read and write

2336586A000

unkown

page read and write

21FC9718000

unkown

page read and write

7FF56F234000

unkown image

page readonly

284D197B000

unkown

page read and write

7DF51D530000

unkown image

page readonly

2336584D000

unkown

page read and write

7DF579020000

unkown image

page readonly

21FC8CE0000

heap default

page read and write

21FCE4EB000

unkown

page read and write

7FF592D55000

unkown image

page readonly

7FF56F19D000

unkown image

page readonly

284D1F02000

unkown

page read and write

7FF56F193000

unkown image

page readonly

21FCE52F000

unkown

page read and write

21FCE4ED000

unkown

page read and write

284D198C000

unkown

page read and write

7DF579032000

unkown image

page readonly

284D16D0000

unkown

page read and write

21FC8F02000

unkown

page read and write

284D197B000

unkown

page read and write

7FF592DD2000

unkown image

page readonly

7FF592BDE000

unkown image

page readonly

284D10EB000

unkown

page read and write

284D196F000

unkown

page read and write

21FC9799000

unkown

page read and write

7FF56F273000

unkown image

page readonly

7DF59CC60000

unkown image

page readonly

284D19A2000

unkown

page read and write

7DF59CC50000

unkown image

page readonly

284D19AF000

unkown

page read and write

284D195E000

unkown

page read and write

281577E000

unkown

page read and write

7FF54C146000

unkown image

page readonly

7FF592E54000

unkown image

page readonly

284D1E02000

unkown

page read and write

7DF555EF0000

unkown image

page readonly

2508C23C000

unkown

page read and write

7DF5C5D30000

unkown image

page readonly

6C883FE000

unkown

page read and write

233656A0000

unkown image

page readonly

284D1992000

unkown

page read and write

281537A000

unkown

page read and write

284D19BA000

unkown

page read and write

284D19B6000

unkown

page read and write

7FF56F047000

unkown image

page readonly

7DF5B8F20000

unkown image

page readonly

7FF513777000

unkown image

page readonly

21FC8E91000

unkown

page read and write

23365849000

unkown

page read and write

21FCE4F6000

unkown

page read and write

7FF56F1A6000

unkown image

page readonly

7FF592CB8000

unkown image

page readonly

233656A0000

unkown image

page readonly

284D1962000

unkown

page read and write

7FF54C076000

unkown image

page readonly

21FCE4F3000

unkown

page read and write

7FF56EEF1000

unkown image

page readonly

7DF555F10000

unkown image

page readonly

284D1E02000

unkown

page read and write

7DF555F02000

unkown image

page readonly

233657F0000

unkown

page read and write

227DC512000

unkown

page read and write

284D195D000

unkown

page read and write

21FC979B000

unkown

page read and write

7FF56EF42000

unkown image

page readonly

20D9B61F000

unkown

page read and write

BD9BFAB000

unkown

page read and write

7FF51372D000

unkown image

page readonly

7DF59CC42000

unkown image

page readonly

284D19D1000

unkown

page read and write

7FF56F18F000

unkown image

page readonly

7FF592A67000

unkown image

page readonly

227DC4F6000

unkown

page read and write

21FCE341000

unkown

page read and write

284D19A2000

unkown

page read and write

284D1108000

unkown

page read and write

21FC9759000

unkown

page read and write

21FCE4E0000

unkown

page read and write

284D19A1000

unkown

page read and write

23365900000

unkown

page read and write

284D1E03000

unkown

page read and write

284D19B1000

unkown

page read and write

284D197C000

unkown

page read and write

7FF54BF60000

unkown image

page readonly

284D1E02000

unkown

page read and write

284D196F000

unkown

page read and write

20D9B570000

unkown image

page readonly

7FF592E57000

unkown image

page readonly

21FC97DC000

unkown

page read and write

284D10BD000

unkown

page read and write

23365880000

unkown

page read and write

2508C180000

unkown image

page read and write

284D1F63000

unkown

page read and write

7DF579030000

unkown image

page readonly

284D1200000

unkown image

page readonly

284D19AC000

unkown

page read and write

7FF51368D000

unkown image

page readonly

EC8B9FC000

unkown

page read and write

8C21B78000

unkown

page read and write

7DF555F00000

unkown image

page readonly

284D10C4000

unkown

page read and write

7DF51D512000

unkown image

page readonly

284D19B0000

unkown

page read and write

1F2D7E71000

unkown

page read and write

284D19A1000

unkown

page read and write

7FF54BC07000

unkown image

page readonly

20D9B617000

unkown

page read and write

7FF592926000

unkown image

page readonly

284D19B0000

unkown

page read and write

20D9B985000

heap private

page read and write

284D10D6000

unkown

page read and write

1F2D8390000

unkown image

page readonly

7FF5133E1000

unkown image

page readonly

233656F0000

heap default

page read and write

20D9B510000

unkown image

page readonly

284D1071000

unkown

page read and write

7DF579030000

unkown image

page readonly

21FC8C70000

unkown image

page read and write

7DF59CC40000

unkown image

page readonly

20D9B550000

unkown

page read and write

227DC4F8000

unkown

page read and write

1F2D8210000

unkown image

page readonly

7FF54C12A000

unkown image

page readonly

284D1F02000

unkown

page read and write

21FCE551000

unkown

page read and write

6C87C9B000

unkown

page read and write

21FCE533000

unkown

page read and write

7DF5B8F22000

unkown image

page readonly

21FC9718000

unkown

page read and write

7DF51D522000

unkown image

page readonly

7DF59CC60000

unkown image

page readonly

20D9B930000

unkown

page read and write

7FF513227000

unkown image

page readonly

20D9C420000

unkown

page readonly

23365A00000

unkown image

page readonly

284D1053000

unkown

page read and write

7FF592CB5000

unkown image

page readonly

284D0FD0000

unkown image

page readonly

7FF56F1AA000

unkown image

page readonly

284D195D000

unkown

page read and write

7DF579032000

unkown image

page readonly

21FCE4F6000

unkown

page read and write

7FF54C143000

unkown image

page readonly

7FF5136C7000

unkown image

page readonly

284D1956000

unkown

page read and write

7FF56F1D7000

unkown image

page readonly

284D10B1000

unkown

page read and write

284D195D000

unkown

page read and write

284D19B1000

unkown

page read and write

7FF513772000

unkown image

page readonly

284D19A9000

unkown

page read and write

284D19A9000

unkown

page read and write

21FCE361000

unkown

page read and write

21FCE4E0000

unkown

page read and write

284D1979000

unkown

page read and write

284D103A000

unkown

page read and write

284D19AC000

unkown

page read and write

8C2167D000

unkown

page read and write

7FF592739000

unkown image

page readonly

21FC8E00000

unkown

page read and write

7FF56F090000

unkown image

page readonly

21FCE490000

unkown

page read and write

21FC979A000

unkown

page read and write

921CFAB000

unkown

page read and write

8C21FFC000

unkown

page read and write

21FCE4EB000

unkown

page read and write

21FCE34A000

unkown

page read and write

21FCE34B000

unkown

page read and write

21FCE345000

unkown

page read and write

6C87D1F000

unkown

page read and write

284D16D0000

unkown

page read and write

7DF555EF2000

unkown image

page readonly

921D8FF000

unkown

page read and write

21FCE4F3000

unkown

page read and write

284D19AC000

unkown

page read and write

FCF9FFF000

unkown

page read and write

21FCE4EB000

unkown

page read and write

21FC9759000

unkown

page read and write

20D9B980000

heap private

page read and write

284D197B000

unkown

page read and write

2814C8B000

unkown

page read and write

7FF592D57000

unkown image

page readonly

284D1988000

unkown

page read and write

21FCE6A0000

unkown

page read and write

1F2D7E6B000

unkown

page read and write

7DF579040000

unkown image

page readonly

8C2187B000

unkown

page read and write

21FC8F13000

unkown

page read and write

284D19A2000

unkown

page read and write

284D1990000

unkown

page read and write

284D19A4000

unkown

page read and write

7FF592C77000

unkown image

page readonly

7DF5B8F10000

unkown image

page readonly

284D0E90000

unkown image

page readonly

1F2D8200000

unkown image

page readonly

7FF592E93000

unkown image

page readonly

7FF5AF177000

unkown image

page readonly

8C21C77000

unkown

page read and write

7FF54C0A7000

unkown image

page readonly

284D19B0000

unkown

page read and write

284D197D000

unkown

page read and write

21FCE4E0000

unkown

page read and write

20D9C430000

unkown

page read and write

21FC8E9D000

unkown

page read and write

284D19AF000

unkown

page read and write

7DF49AB10000

unkown image

page readonly

284D104A000

unkown

page read and write

8C21CFF000

unkown

page read and write

23365680000

unkown image

page read and write

21FCE364000

unkown

page read and write

284D19B3000

unkown

page read and write

7FF51373B000

unkown image

page readonly

284D19AF000

unkown

page read and write

7FF51367F000

unkown image

page readonly

7FF56F287000

unkown image

page readonly

20D9C490000

unkown

page read and write

20D9C200000

unkown

page read and write

284D1971000

unkown

page read and write

7DF512BE0000

unkown image

page readonly

23365813000

unkown

page read and write

227DC511000

unkown

page read and write

28155FE000

unkown

page read and write

7DF5C5D30000

unkown image

page readonly

284D1963000

unkown

page read and write

20D9B4C0000

unkown image

page read and write

284D1E02000

unkown

page read and write

284D105B000

unkown

page read and write

20D9B4E0000

unkown image

page readonly

7FF54BF17000

unkown image

page readonly

1F2D7E13000

unkown

page read and write

284D19AA000

unkown

page read and write

1F2D7F13000

unkown

page read and write

21FC9759000

unkown

page read and write

7FF592C04000

unkown image

page readonly

284D1955000

unkown

page read and write

284D19B1000

unkown

page read and write

227DC4FF000

unkown

page read and write

21FC8C90000

unkown image

page readonly

284D1087000

unkown

page read and write

284D196A000

unkown

page read and write

7FF54C04F000

unkown image

page readonly

284D19AC000

unkown

page read and write

7FF54C157000

unkown image

page readonly

7FF592E7A000

unkown image

page readonly

7FF592CB0000

unkown image

page readonly

1F2D8480000

unkown

page read and write

7FF5BBF5B000

unkown image

page readonly

284D104E000

unkown

page read and write

21FCE380000

unkown

page read and write

284D1052000

unkown

page read and write

2814D0F000

unkown

page read and write

284D0EB0000

heap default

page read and write

227DC410000

heap private

page read and write

1F2D7E4F000

unkown

page read and write

2815B7C000

unkown

page read and write

21FC8EFD000

unkown

page read and write

1F2D7D00000

unkown image

page readonly

284D16E0000

unkown image

page read and write

284D197C000

unkown

page read and write

284D19AC000

unkown

page read and write

284D198B000

unkown

page read and write

7FF56E9DA000

unkown image

page readonly

21FCE4B5000

unkown

page read and write

7DF5C5D50000

unkown image

page readonly

21FCE4F6000

unkown

page read and write

7FF56F098000

unkown image

page readonly

21FC9759000

unkown

page read and write

7FF592E64000

unkown image

page readonly

7FF592E67000

unkown image

page readonly

8C21977000

unkown

page read and write

921D7FE000

unkown

page read and write

284D1802000

unkown

page read and write

284D197C000

unkown

page read and write

7DF51D520000

unkown image

page readonly

2508C6D0000

unkown image

page readonly

284D10AB000

unkown

page read and write

21FCE4F3000

unkown

page read and write

7FF56F247000

unkown image

page readonly

FCF9CFE000

unkown

page read and write

23365902000

unkown

page read and write

21FCE4EB000

unkown

page read and write

7FF592C4D000

unkown image

page readonly

7DF5C5D42000

unkown image

page readonly

21FC8C80000

heap private

page read and write

21FC9758000

unkown

page read and write

284D1050000

unkown

page read and write

7FF592BEB000

unkown image

page readonly

284D19AD000

unkown

page read and write

7FF54C06D000

unkown image

page readonly

2508C27A000

unkown

page read and write

21FCE51D000

unkown

page read and write

23365847000

unkown

page read and write

921D4FB000

unkown

page read and write

7FF54C09D000

unkown image

page readonly

284D1923000

unkown

page read and write

BD9C4FE000

unkown

page read and write

281547F000

unkown

page read and write

7FF592957000

unkown image

page readonly

28156FE000

unkown

page read and write

284D1982000

unkown

page read and write

28157FF000

unkown

page read and write

23366002000

unkown

page read and write

227DC460000

unkown image

page readonly

21FC97DB000

unkown

page read and write

7FF592C53000

unkown image

page readonly

20D9B61F000

unkown

page read and write

7FF513766000

unkown image

page readonly

EC8B879000

unkown

page read and write

284D1989000

unkown

page read and write

7FF51374A000

unkown image

page readonly

284D1E02000

unkown

page read and write

284D104F000

unkown

page read and write

7FF54BF65000

unkown image

page readonly

7FF54C096000

unkown image

page readonly

2336587E000

unkown

page read and write

8C21A7F000

unkown

page read and write

284D10A6000

unkown

page read and write

7FF56F1B2000

unkown image

page readonly

7FF54BF27000

unkown image

page readonly

7FF513734000

unkown image

page readonly

20D9BDA0000

unkown image

page readonly

7FF592923000

unkown image

page readonly

23365D80000

unkown image

page readonly

21FCE519000

unkown

page read and write

7FF56ED37000

unkown image

page readonly

2508C213000

unkown

page read and write

284D1055000

unkown

page read and write

7FF54C10D000

unkown image

page readonly

284D19C2000

unkown

page read and write

284D1972000

unkown

page read and write

281567F000

unkown

page read and write

1F2D7E8B000

unkown

page read and write

7FF592B7F000

unkown image

page readonly

7FF513763000

unkown image

page readonly

21FCE52E000

unkown

page read and write

7FF5BBEA5000

unkown image

page readonly

20D9C440000

unkown

page read and write

284D1102000

unkown

page read and write

284D1013000

unkown

page read and write

284D19A7000

unkown

page read and write

7FF5BB759000

unkown image

page readonly

20D9B4D0000

unkown

page read and write

21FCE4A0000

unkown

page read and write

284D19C2000

unkown

page read and write

2336584B000

unkown

page read and write

7DF59CC50000

unkown image

page readonly

1F2D7E3C000

unkown

page read and write

7DF512C00000

unkown image

page readonly

21FCE4F6000

unkown

page read and write

7FF54C05F000

unkown image

page readonly

284D19A7000

unkown

page read and write

1F2D7CC0000

heap private

page read and write

921D6FD000

unkown

page read and write

7DF512BF0000

unkown image

page readonly

1F2D7F02000

unkown

page read and write

21FC8E8D000

unkown

page read and write

7DF512C00000

unkown image

page readonly

7FF54C11B000

unkown image

page readonly

7FF592C3A000

unkown image

page readonly

1F2D7E6B000

unkown

page read and write

21FCE4B5000

unkown

page read and write

7FF592DCA000

unkown image

page readonly

20D9B5D7000

heap default

page read and write

284D1580000

unkown image

page readonly

7FF54C0A9000

unkown image

page readonly

7FF56F1CD000

unkown image

page readonly

284D1000000

unkown

page read and write

7DF555F02000

unkown image

page readonly

7FF56F24B000

unkown image

page readonly

7FF56ED31000

unkown image

page readonly

284D195E000

unkown

page read and write

20D9B642000

heap default

page read and write

7DF59CC40000

unkown image

page readonly

7FF56F095000

unkown image

page readonly

21FCE348000

unkown

page read and write

284D19AC000

unkown

page read and write

284D1977000

unkown

page read and write

7FF54B8A4000

unkown image

page readonly

7FF5136BD000

unkown image

page readonly

20D9B4E0000

unkown image

page readonly

EC8B5AF000

unkown

page read and write

281557B000

unkown

page read and write

284D19AB000

unkown

page read and write

7FF54BF46000

unkown image

page readonly

21FC9718000

unkown

page read and write

7FF5BBF86000

unkown image

page readonly

7DF555EF2000

unkown image

page readonly

7FF54C114000

unkown image

page readonly

23365908000

unkown

page read and write

7FF56F0C8000

unkown image

page readonly

7DF59CC52000

unkown image

page readonly

EC8B8FA000

unkown

page read and write

284D197C000

unkown

page read and write

21FCE341000

unkown

page read and write

284D19D1000

unkown

page read and write

284D1058000

unkown

page read and write

921D2FE000

unkown

page read and write

1F2D7CD0000

unkown image

page readonly

7FF5BBEE7000

unkown image

page readonly

21FC9759000

unkown

page read and write

21FC8E7A000

unkown

page read and write

21FC9758000

unkown

page read and write

7DF555F00000

unkown image

page readonly

7FF54BF98000

unkown image

page readonly

7FF54BE12000

unkown image

page readonly

7DF5C5D32000

unkown image

page readonly

7FF592DF7000

unkown image

page readonly

284D16D0000

unkown

page read and write

20D9B5C0000

unkown

page read and write

2508C860000

unkown image

page readonly

284D197C000

unkown

page read and write

284D197E000

unkown

page read and write

284D1998000

unkown

page read and write

23365850000

unkown

page read and write

7FF592669000

unkown image

page readonly

2508C190000

heap private

page read and write

227DC4DB000

heap default

page read and write

284D19A1000

unkown

page read and write

FCF9EFF000

unkown

page read and write

21FCE4DD000

unkown

page read and write

7FF5BBB57000

unkown image

page readonly

7FF51330B000

unkown image

page readonly

23365800000

unkown

page read and write

7FF56F057000

unkown image

page readonly

284D19B2000

unkown

page read and write

6C882F7000

unkown

page read and write

284D0F90000

unkown image

page readonly

233656C0000

unkown image

page readonly

7FF513671000

unkown image

page readonly

7FF592BB0000

unkown image

page readonly

7FF5BBF44000

unkown image

page readonly

7FF5135F5000

unkown image

page readonly

284D1977000

unkown

page read and write

7FF592C4F000

unkown image

page readonly

7DF579022000

unkown image

page readonly

284D19B0000

unkown

page read and write

7FF54BFD5000

unkown image

page readonly

284D19A1000

unkown

page read and write

284D1989000

unkown

page read and write

284D1917000

unkown

page read and write

21FCE4B5000

unkown

page read and write

284D1980000

unkown

page read and write

2508C4D0000

unkown image

page readonly

6C884FE000

unkown

page read and write

284D19A2000

unkown

page read and write

7DF512BE0000

unkown image

page readonly

6C87D9F000

unkown

page read and write

2508C300000

unkown

page read and write

7DF5B8F30000

unkown image

page readonly

284D1E02000

unkown

page read and write

1F2D7E53000

unkown

page read and write

7FF513566000

unkown image

page readonly

2508C308000

unkown

page read and write

7FF54C051000

unkown image

page readonly

7FF5BB756000

unkown image

page readonly

284D197C000

unkown

page read and write

20D9B61F000

unkown

page read and write

23365690000

heap private

page read and write

7DF476EF0000

unkown image

page readonly

2508CA02000

unkown

page read and write

227DC480000

unkown image

page read and write

7DF5C5D42000

unkown image

page readonly

8C2134B000

unkown

page read and write

284D19A9000

unkown

page read and write

7FF5136B6000

unkown image

page readonly

284D19AC000

unkown

page read and write

20D9B920000

unkown image

page readonly

20D9B940000

unkown

page read and write

284D197C000

unkown

page read and write

284D19A2000

unkown

page read and write

284D104B000

unkown

page read and write

20D9B530000

unkown

page read and write

2508C1F0000

heap default

page read and write

7FF592B11000

unkown image

page readonly

7DF453DC0000

unkown image

page readonly

7FF54BC01000

unkown image

page readonly

284D19A9000

unkown

page read and write

7FF54BF68000

unkown image

page readonly

284D0E40000

unkown image

page read and write

284D1E5D000

unkown

page read and write

284D197C000

unkown

page read and write

7DF51D530000

unkown image

page readonly

284D1E5D000

unkown

page read and write

7FF592735000

unkown image

page readonly

7FF56F17F000

unkown image

page readonly

20D9B500000

unkown image

page readonly

7FF56F076000

unkown image

page readonly

284D1056000

unkown

page read and write

21FCE519000

unkown

page read and write

7FF592EA7000

unkown image

page readonly

284D1660000

unkown image

page write copy

2508C249000

unkown

page read and write

284D19B0000

unkown

page read and write

227DC440000

unkown

page read and write

284D197B000

unkown

page read and write

284D19A1000

unkown

page read and write

7FF5135B8000

unkown image

page readonly

284D10E3000

unkown

page read and write

7FF592E51000

unkown image

page readonly

284D1962000

unkown

page read and write

7FF592EA2000

unkown image

page readonly

8C21EFA000

unkown

page read and write

7DF579022000

unkown image

page readonly

7FF592E5D000

unkown image

page readonly

28150F7000

unkown

page read and write

21FCE51B000

unkown

page read and write

284D19BA000

unkown

page read and write

284D19A2000

unkown

page read and write

284D19A8000

unkown

page read and write

7FF56E9D4000

unkown image

page readonly

7FF592B75000

unkown image

page readonly

284D1400000

unkown image

page readonly

1F2D7E51000

unkown

page read and write

21FCE51A000

unkown

page read and write

21FCE4ED000

unkown

page read and write

227DC2D0000

unkown image

page read and write

7FF5BBF47000

unkown image

page readonly

7DF579020000

unkown image

page readonly

7FF592C96000

unkown image

page readonly

21FCE519000

unkown

page read and write

7FF5925FA000

unkown image

page readonly

21FC9758000

unkown

page read and write

8C213CE000

unkown

page read and write

21FCE340000

unkown

page read and write

EC8B52E000

unkown

page read and write

7DF5C5D32000

unkown image

page readonly

284D1E02000

unkown

page read and write

284D19B4000

unkown

page read and write

284D19A9000

unkown

page read and write

7FF56F287000

unkown image

page readonly

EC8B97F000

unkown

page read and write

7FF56F237000

unkown image

page readonly

7FF5BBF97000

unkown image

page readonly

7FF513588000

unkown image

page readonly

7DF5C5D50000

unkown image

page readonly

284D19A2000

unkown

page read and write

284D1971000

unkown

page read and write

227DC4FF000

unkown

page read and write

284D0E60000

unkown image

page readonly

2815A7A000

unkown

page read and write

284D1F63000

unkown

page read and write

284D19A2000

unkown

page read and write

1F2D7CD0000

unkown image

page readonly

284D1039000

unkown

page read and write

7DF579040000

unkown image

page readonly

21FCE51A000

unkown

page read and write

23365C00000

unkown image

page readonly

21FC8E3D000

unkown

page read and write

7FF54C157000

unkown image

page readonly

7FF513221000

unkown image

page readonly

284D19A6000

unkown

page read and write

284D1992000

unkown

page read and write

284D10E6000

unkown

page read and write

23365913000

unkown

page read and write

7FF592A02000

unkown image

page readonly

284D1E02000

unkown

page read and write

2508C1A0000

unkown image

page readonly

284D197C000

unkown

page read and write

7FF5136C9000

unkown image

page readonly

20D9B7A0000

unkown image

page readonly

7FF592D84000

unkown image

page readonly

2508C1A0000

unkown image

page readonly

7FF592DAF000

unkown image

page readonly

227DC4E7000

heap default

page read and write

7DF5B8F12000

unkown image

page readonly

284D19A5000

unkown

page read and write

284D19A6000

unkown

page read and write

284D19A6000

unkown

page read and write

227DC415000

heap private

page read and write

21FCE340000

unkown

page read and write

227DC4D0000

heap default

page read and write

7FF5BBF54000

unkown image

page readonly

284D19A1000

unkown

page read and write

284D1E00000

unkown

page read and write

227DC470000

unkown image

page readonly

7FF54C07A000

unkown image

page readonly

281527B000

unkown

page read and write

284D1962000

unkown

page read and write

FCF971C000

unkown

page read and write

227DC7D0000

unkown image

page readonly

281597A000

unkown

page read and write

7FF592B62000

unkown image

page readonly

7DF51D510000

unkown image

page readonly

7FF513580000

unkown image

page readonly

BD9C479000

unkown

page read and write

7FF5BBF57000

unkown image

page readonly

7DF5C5D40000

unkown image

page readonly

7DF512BF2000

unkown image

page readonly

284D19B0000

unkown

page read and write

21FC979B000

unkown

page read and write

7FF513585000

unkown image

page readonly

2508C270000

unkown

page read and write

284D0FB0000

unkown

page read and write

7FF5BBF4D000

unkown image

page readonly

21FCE344000

unkown

page read and write

7FF54BEEA000

unkown image

page readonly

21FC8E70000

unkown

page read and write

284D1981000

unkown

page read and write

7FF5136A2000

unkown image

page readonly

7FF4EDCEB000

unkown image

page readonly

7FF56F105000

unkown image

page readonly

2508C302000

unkown

page read and write

284D19C2000

unkown

page read and write

2508C288000

unkown

page read and write

284D19A9000

unkown

page read and write

284D195D000

unkown

page read and write

7DF512BF2000

unkown image

page readonly

284D1E1D000

unkown

page read and write

7FF4EDCEB000

unkown image

page readonly

7FF56F181000

unkown image

page readonly

7FF592DA1000

unkown image

page readonly

7FF513727000

unkown image

page readonly

921D3FC000

unkown

page read and write

7FF592DED000

unkown image

page readonly

284D197B000

unkown

page read and write

7FF592D89000

unkown image

page readonly

1F2D7CB0000

unkown image

page read and write

284D104D000

unkown

page read and write

2508C24E000

unkown

page read and write

284D196A000

unkown

page read and write

21FC8C90000

unkown image

page readonly

7FF513683000

unkown image

page readonly

7FF54C152000

unkown image

page readonly

7DF555EF0000

unkown image

page readonly

7FF592BE0000

unkown image

page readonly

284D19A6000

unkown

page read and write

7FF5BBEE9000

unkown image

page readonly

FCF9A7E000

unkown

page read and write

7FF513721000

unkown image

page readonly

21FC8E58000

unkown

page read and write

21FC8CC0000

unkown image

page readonly

2508C1D0000

unkown image

page readonly

1F2D7F00000

unkown

page read and write

284D197B000

unkown

page read and write

2508C950000

unkown

page read and write

284D19BA000

unkown

page read and write

2508C229000

unkown

page read and write

7FF56F231000

unkown image

page readonly

1F2D8000000

unkown image

page readonly

7FF513724000

unkown image

page readonly

284D1919000

unkown

page read and write

7FF5BBF97000

unkown image

page readonly

284D103C000

unkown

page read and write

2508C200000

unkown

page read and write

284D1900000

unkown

page read and write

7DF51D512000

unkown image

page readonly

7FF513547000

unkown image

page readonly

21FCE4EB000

unkown

page read and write

7DF4C3C00000

unkown image

page readonly

21FCE384000

unkown

page read and write

7FF56F1D9000

unkown image

page readonly

284D19A6000

unkown

page read and write

284D1F00000

unkown

page read and write

7FF56F282000

unkown image

page readonly

21FCE52E000

unkown

page read and write

BD9C3F9000

unkown

page read and write

7FF508E47000

unkown image

page readonly

284D10E8000

unkown

page read and write

21FC8DF0000

unkown image

page read and write

1F2D7E4B000

unkown

page read and write

FCF9C7B000

unkown

page read and write

284D1968000

unkown

page read and write

21FC9718000

unkown

page read and write

7FF592D25000

unkown image

page readonly

21FC8DC0000

unkown image

page readonly

284D1971000

unkown

page read and write

284D19AB000

unkown

page read and write

6C881FB000

unkown

page read and write

1F2D7E80000

unkown

page read and write

7FF592951000

unkown image

page readonly

284D19CD000

unkown

page read and write

21FC8EBB000

unkown

page read and write

2508C254000

unkown

page read and write

2336583C000

unkown

page read and write

21FCE370000

unkown

page read and write

7FF592D68000

unkown image

page readonly

2508C6E0000

unkown image

page readonly

284D109F000

unkown

page read and write

21FCE52E000

unkown

page read and write

7FF5925F4000

unkown image

page readonly

7FF592CE8000

unkown image

page readonly

7DF51D522000

unkown image

page readonly

284D1116000

unkown

page read and write

20D9B989000

heap private

page read and write

233657D0000

unkown image

page readonly

1F2D7E24000

unkown

page read and write

7FF51369A000

unkown image

page readonly

284D195E000

unkown

page read and write

21FC8E77000

unkown

page read and write

227DC4E2000

unkown

page read and write

2508C313000

unkown

page read and write

7FF54BDC1000

unkown image

page readonly

7FF5BBEB6000

unkown image

page readonly

284D19AC000

unkown

page read and write

7FF51366F000

unkown image

page readonly

BD9C579000

unkown

page read and write

21FC9799000

unkown

page read and write

7FF592DB3000

unkown image

page readonly

284D197C000

unkown

page read and write

7FF54C082000

unkown image

page readonly

21FCE610000

unkown

page read and write

7FF56F25A000

unkown image

page readonly

7FF592D80000

unkown image

page readonly

BD9C5FC000

unkown

page read and write

284D195D000

unkown

page read and write

227DC950000

unkown image

page readonly

7FF5BBF41000

unkown image

page readonly

2815C7F000

unkown

page read and write

7FF592666000

unkown image

page readonly

7FF592D9F000

unkown image

page readonly

284D0E60000

unkown image

page readonly

21FC8E13000

unkown

page read and write

7FF592EA7000

unkown image

page readonly

7FF56F276000

unkown image

page readonly

921D5F7000

unkown

page read and write

7FF56F01A000

unkown image

page readonly

7FF5BBEA3000

unkown image

page readonly

227DC310000

unkown image

page readonly

1F2D7E00000

unkown

page read and write

227DC2F0000

unkown image

page readonly

7FF513537000

unkown image

page readonly

7DF410AB0000

unkown image

page readonly

227DC2F0000

unkown image

page readonly

21FC9718000

unkown

page read and write

7FF513696000

unkown image

page readonly

21FC9718000

unkown

page read and write

7DF51D510000

unkown image

page readonly

284D105C000

unkown

page read and write

7FF5BBF83000

unkown image

page readonly

7FF513737000

unkown image

page readonly

284D19A1000

unkown

page read and write

7FF5BBEDD000

unkown image

page readonly

7FF54C117000

unkown image

page readonly

7FF592C67000

unkown image

page readonly

284D0E50000

heap private

page read and write

20D9B990000

unkown

page read and write

21FCE530000

unkown

page read and write

284D197D000

unkown

page read and write

21FC8E8B000

unkown

page read and write

7FF5BBEAE000

unkown image

page readonly

2508C1C0000

unkown image

page readonly

284D1992000

unkown

page read and write

284D1029000

unkown

page read and write

7FF592DC6000

unkown image

page readonly

284D10F7000

unkown

page read and write

There are 816 hidden memdumps, click here to show them.

DOM / HTML

URL

Malicious

https://spark.adobe.com/page/4WTm5hB6jd6VX/

https://spark.adobe.com/page/4WTm5hB6jd6VX/?page-mode=static

https://blacktechworld.com/absolutelymortgages/1337_prv8/1337_prv8/Office365/PDF/Secure/

https://spark.adobe.com/page/4WTm5hB6jd6VX/images/ef2841c4-7219-4942-af30-73fd615482a8.jpg?asset_id=4a38d403-faa5-4acf-9c51-96364a044a29&img_etag=%2254149f4c8a6730544e57e0f99fa17c62%22&size=1024

https://www.adobe.com/express/?r=reader_page_logo

https://www.adobe.com/express/create/logo?r=reader_page_learnmore

https://servedby.flashtalking.com/container/13539;99030;10307;iframe/?ftXRef=&ftXValue=&ftXType=&ftXName=&ftXNumItems=&ftXCurrency=&U1=&U2=&U3=08078587664795059862382791699820668851&U4=adobe.com:express&U5=&U6=&U7=&U8=&U9=&U10=&U11=&U12=&U13=&U14=&U15=&U16=&U17=&U18=&U19=&U20=&ft_referrer=https%3A%2F%2Fwww.adobe.com%2Fexpress%2F&ns=&cb=270173.62329499674

https://spark.adobe.com/sp/login?r=reader_page_bumper_createyourown

https://9212252.fls.doubleclick.net/activityi;dc_pre=CMTOpLnUn_MCFeV_0wodibIOLg;src=9212252;type=invmedia;cat=japan000;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=3729889377215.3564?

https://servedby.flashtalking.com/container/13539;99030;10307;iframe/?ftXRef=&ftXValue=&ftXType=&ftXName=&ftXNumItems=&ftXCurrency=&U1=&U2=&U3=08078587664795059862382791699820668851&U4=adobe.com:express:create:logo&U5=&U6=&U7=&U8=&U9=&U10=&U11=&U12=&U13=&U14=&U15=&U16=&U17=&U18=&U19=&U20=&ft_referrer=https%3A%2F%2Fwww.adobe.com%2Fexpress%2Fcreate%2Flogo&ns=&cb=591997.527402732

https://spark.adobe.com/sp/login?r=reader_page_topbar_createyourown

There are 2 hidden doms, click here to show them.

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

IOC Report

Files

Processes

URLs

Domains

IPs

Registry

Memdumps

DOM / HTML