Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\0e0b7440-c325-4afb-9b1e-55ddee683303.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\11986a1f-08a6-4d99-8169-46f927368c98.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\11fb2ed8-daae-4e65-9649-8bcb503e754f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\145328ba-5c9e-49e6-b9eb-aa344c04ff19.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\1470442f-a39b-450c-badb-dc1b4bcd3c47.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\7b999d0a-52d8-45d8-a704-a97f31bf2499.tmp
|
SysEx File -
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\0d4c97a2-b42c-4c7a-955f-31c7efada717.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\18af33e8-9488-4f35-9d47-f9a074ad159e.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1cb16da4-8ad2-4816-9fd3-63188424cc06.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1d815c67-81d2-4835-b6f5-2c49399518ea.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\320bbfd6-1949-4902-a0f4-130fda468379.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\86275b48-473a-4b76-aea4-ea68b9c71e03.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\35c0ec9fefd0fd98_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\51baab93c7728d76_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6897bb6d8ce1ed75_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\81becac078ce66fd_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9c2581ec287b8e26_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ae15d450f18bc512_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\de3a06406574ae0d_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index0\ (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old.. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session.e (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabsnd (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.olds. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent Statemp (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesFE (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure PreferencesTM (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.oldTM (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old_o (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\2cef5409-4771-43af-a4ac-19691ff13de5.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old..
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
StateTM (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.oldg
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
StateTM (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.oldE
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.old.
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\a2042573-490e-4bbf-ae10-f7572c5d78fb.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.oldHR (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.olds
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b5f065c0-f0a3-4e7c-8ccd-9c3c48d17f60.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d7d12b12-068f-4a1b-bb6f-46860af6acf0.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f4de26e1-67ad-4cb9-a351-8bd3b54d6956.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State* (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StateO (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache6 (copy)
|
SysEx File -
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cacheu (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\356b9ed0-365a-4cf4-a1ca-6d79f963f3d0.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\84f92a58-20f1-4fa3-affc-6c7e96b5502d.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\edf042f7-ef33-46a1-94eb-f9dc6d96a766.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\fea40df0-33de-41dd-9078-55af9cb44409.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\84f92a58-20f1-4fa3-affc-6c7e96b5502d.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_1014629539\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5612_205558103\fea40df0-33de-41dd-9078-55af9cb44409.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
There are 207 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://linkprotect.cudasvc.com/url?a=http%3a%2f%2fatlanticcomfort.dorik.io%2f&c=E,1,CGwy269fqEdis4zLq70Us0gFSsYJjbjhi_GiMYHnlRZj_HSpD7ZJLkeDvqcLZY5oWUGF9CTkD2PCF1bkYutrdhOa3W8aURgdCoy4cmWPO-hoLkJ4ulrHbA,,&typo=1'
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1644,5668093974603794416,12791446233085768486,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1700 /prefetch:8
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://linkprotect.cudasvc.com/url?a=http%3a%2f%2fatlanticcomfort.dorik.io%2f&c=E,1,CGwy269fqEdis4zLq70Us0gFSsYJjbjhi_GiMYHnlRZj_HSpD7ZJLkeDvqcLZY5oWUGF9CTkD2PCF1bkYutrdhOa3W8aURgdCoy4cmWPO-hoLkJ4ulrHbA,,&typo=1
|
 |
||
|
https://stamvifordsgct.top/pakl/adobe2020/images/8.jpg
|
104.21.55.161
|
|
|
|
https://stamvifordsgct.top/pakl/adobe2020/Share
|
unknown
|
|
|
|
https://stamvifordsgct.top/pakl/adobe2020/images/gmail.png
|
104.21.55.161
|
|
|
|
https://atlanticcomfort.dorik.io/
|
174.138.116.26
|
|
|
|
https://atlanticcomfort.dorik.io/favicon.ico
|
174.138.116.26
|
|
|
|
https://stamvifordsgct.top/pakl/adobe2020/images/other1.png
|
104.21.55.161
|
|
|
|
https://stamvifordsgct.top/pakl/adobe2020/css/hover.css
|
104.21.55.161
|
|
|
|
https://stamvifordsgct.top/pakl/adobe2020/images/outlook1.png
|
104.21.55.161
|
|
|
|
https://stamvifordsgct.top/pakl/adobe2020/
|
104.21.55.161
|
|
|
|
https://atlanticcomfort.dorik.io/
|
|
||
|
https://atlanticcomfort.dorik.io/2:
|
unknown
|
|
|
|
https://stamvifordsgct.top/pakl/adobe2020/images/adobe.jpg
|
104.21.55.161
|
|
|
|
https://stamvifordsgct.top/pakl/adobe2020/
|
|
||
|
https://atlanticcomfort.dorik.io//
|
unknown
|
|
|
|
https://stamvifordsgct.top/pakl/adobe2020/images/office3651.png
|
104.21.55.161
|
|
|
|
https://atlanticcomfort.dorik.io/2
|
unknown
|
|
|
|
https://stamvifordsgct.top/N
|
unknown
|
|
|
|
https://code.jquery.com/jquery-3.2.1.slim.min.js
|
unknown
|
|
|
|
https://a.nel.cloudflare.com/report/v3?s=rOO74hXaiUSbFTfGwaO0fj52yEFs%2FXglquF6DAxjQyovD%2BqGGW5fPEY
|
unknown
|
|
|
|
https://cdn.dorik.com/6144cea3898d820011339fe9/6151e5833eb7a900117248ca/images/Invoice_FIle_1-(37).pdf_5ujctja8.png
|
89.187.169.47
|
|
|
|
https://stamvifordsgct.top/?;
|
unknown
|
|
|
|
http://shopget24.com/images/sampledata/hack-run.png
|
104.219.248.46
|
|
|
|
https://cdn.dorik.com/6151e5833eb7a900117248ca/css/index.css?v=55f53aa0b8edb906abe58e9ac6229f170dfd6988
|
89.187.169.47
|
|
|
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://shopget24.com/images/sampledata/hack-run.png
|
104.219.248.46
|
|
|
|
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
|
172.217.168.1
|
|
|
|
https://a.nel.cloudflare.com/report/v3?s=pYDsI99IUtRF07SVp%2BwSymWX3y50IssY6pygHLP4DVNnbcpVqUMXHP7hz
|
unknown
|
|
|
|
https://www.google.com
|
unknown
|
|
|
|
http://stamvifordsgct.top/
|
unknown
|
|
|
|
https://stamvifordsgct.top/pakl/adobe2020Share
|
unknown
|
|
|
|
http://atlanticcomfort.dorik.io/
|
174.138.116.26
|
|
|
|
https://accounts.google.com
|
unknown
|
|
|
|
https://ka-f.fontawesome.com/
|
unknown
|
|
|
|
https://apis.google.com
|
unknown
|
|
|
|
https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
|
104.18.11.207
|
|
|
|
https://kit.fontawesome.com/585b051251.js
|
unknown
|
|
|
|
https://linkprotect.cudasvc.com/url?a=http%3a%2f%2fatlanticcomfort.dorik.io%2f&c=E,1,CGwy269fqEdis4zLq70Us0gFSsYJjbjhi_GiMYHnlRZj_HSpD7ZJLkeDvqcLZY5oWUGF9CTkD2PCF1bkYutrdhOa3W8aURgdCoy4cmWPO-hoLkJ4ulrHbA,,&typo=1
|
18.185.67.239
|
|
|
|
https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers
|
unknown
|
|
|
|
https://clients2.google.com
|
unknown
|
|
|
|
https://dns.google
|
unknown
|
|
|
|
https://ogs.google.com
|
unknown
|
|
|
|
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
|
|
|
https://linkprotect.cudasvc.com/url?a=http%3a%2f%2fatlanticcomfort.dorik.io%2f&c=E
|
unknown
|
|
|
|
https://maxcdn.bootstrapcdn.com/
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
172.217.168.46
|
|
|
|
https://code.jquery.com/jquery-3.1.1.min.js
|
unknown
|
|
|
|
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
172.217.168.13
|
|
|
|
http://stamvifordsgct.top/pakl/adobe2020/Share
|
unknown
|
|
|
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://www.google.com;
|
unknown
|
|
|
|
https://code.jquery.com/
|
unknown
|
|
|
|
https://hangouts.google.com/
|
unknown
|
|
|
|
http://atlanticcomfort.dorik.io//
|
unknown
|
|
|
|
https://kit.fontawesome.com/
|
unknown
|
|
|
|
https://a.nel.cloudflare.com/report/v3?s=pYDsI99IUtRF07SVp%2BwSymWX3y50IssY6pygHLP4DVNnbcpVqUMXHP7hzlrufOfDYod2dOcPvxl%2BK5EYbZibUDR4%2BxAr2H3TFBYso2ml4U4SvSGQPAJxnY6sGrbGlydMp4Mfqhs%3D
|
35.190.80.1
|
|
|
|
http://atlanticcomfort.dorik.io/2
|
unknown
|
|
|
|
https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
|
104.18.11.207
|
|
|
|
https://stamvifordsgct.top/
|
unknown
|
|
|
|
https://stamvifordsgct.top/i
|
unknown
|
|
|
|
http://stamvifordsgct.top/pakl/adobe2020/
|
104.21.55.161
|
|
|
|
https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
|
104.16.19.94
|
|
|
|
https://stamvifordsgct.top/favicon.ico
|
104.21.55.161
|
|
|
|
https://stamvifordsgct.top/pakl/adobe2020
|
104.21.55.161
|
|
|
|
https://support.google.com/chromecast/answer/2998456
|
unknown
|
|
|
|
https://a.nel.cloudflare.com/report/v3?s=LkP6T0BlHuQyrnuyqwGiWWxtT4i6ZblEyopW3Oo97x5uN95JQEm2gMK%2Bg
|
unknown
|
|
|
|
https://clients2.googleusercontent.com
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/report-to/IdentityListAccountsHttp/external
|
unknown
|
|
|
|
http://atlanticcomfort.dorik.io/2:
|
unknown
|
|
|
|
https://www.google.com/
|
unknown
|
|
|
|
https://feedback.googleusercontent.com
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx
|
unknown
|
|
There are 61 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
gstaticadssl.l.google.com
|
172.217.168.67
|
|
|
|
a.nel.cloudflare.com
|
35.190.80.1
|
|
|
|
accounts.google.com
|
172.217.168.13
|
|
|
|
atlanticcomfort.dorik.io
|
174.138.116.26
|
|
|
|
cdnjs.cloudflare.com
|
104.16.19.94
|
|
|
|
maxcdn.bootstrapcdn.com
|
104.18.11.207
|
|
|
|
stamvifordsgct.top
|
104.21.55.161
|
|
|
|
clients.l.google.com
|
172.217.168.46
|
|
|
|
linkprotect.cudasvc.com
|
18.185.67.239
|
|
|
|
dorikcdn.b-cdn.net
|
89.187.169.47
|
|
|
|
shopget24.com
|
104.219.248.46
|
|
|
|
googlehosted.l.googleusercontent.com
|
172.217.168.1
|
|
|
|
ka-f.fontawesome.com
|
unknown
|
|
|
|
kit.fontawesome.com
|
unknown
|
|
|
|
cdn.dorik.com
|
unknown
|
|
|
|
clients2.googleusercontent.com
|
unknown
|
|
|
|
shopget24.org
|
unknown
|
|
|
|
clients2.google.com
|
unknown
|
|
|
|
code.jquery.com
|
unknown
|
|
There are 9 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.168.2.1
|
unknown
|
unknown
|
|
|
|
104.219.248.46
|
shopget24.com
|
United States
|
|
|
|
192.168.2.3
|
unknown
|
unknown
|
|
|
|
89.187.169.47
|
dorikcdn.b-cdn.net
|
Czech Republic
|
|
|
|
172.217.168.46
|
clients.l.google.com
|
United States
|
|
|
|
174.138.116.26
|
atlanticcomfort.dorik.io
|
United States
|
|
|
|
35.190.80.1
|
a.nel.cloudflare.com
|
United States
|
|
|
|
18.185.67.239
|
linkprotect.cudasvc.com
|
United States
|
|
|
|
104.21.55.161
|
stamvifordsgct.top
|
United States
|
|
|
|
172.217.168.1
|
googlehosted.l.googleusercontent.com
|
United States
|
|
|
|
172.217.168.13
|
accounts.google.com
|
United States
|
|
|
|
104.18.11.207
|
maxcdn.bootstrapcdn.com
|
United States
|
|
|
|
239.255.255.250
|
unknown
|
Reserved
|
|
|
|
127.0.0.1
|
unknown
|
unknown
|
|
|
|
104.16.19.94
|
cdnjs.cloudflare.com
|
United States
|
|
There are 5 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
|
There are 32 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
2134A7C0000
|
unkown image
|
page readonly
|
|
|
|
7FF553087000
|
unkown image
|
page readonly
|
|
|
|
7FF5E73C9000
|
unkown image
|
page readonly
|
|
|
|
2134A7E0000
|
unkown image
|
page readonly
|
|
|
|
7FF56A125000
|
unkown image
|
page readonly
|
|
|
|
7FF56A053000
|
unkown image
|
page readonly
|
|
|
|
2134B196000
|
unkown
|
page read and write
|
|
|
|
2134B196000
|
unkown
|
page read and write
|
|
|
|
7FF553594000
|
unkown image
|
page readonly
|
|
|
|
2134B540000
|
unkown image
|
page write copy
|
|
|
|
2134AA54000
|
unkown
|
page read and write
|
|
|
|
7FF56A293000
|
unkown image
|
page readonly
|
|
|
|
2134B174000
|
unkown
|
page read and write
|
|
|
|
14092A3C000
|
unkown
|
page read and write
|
|
|
|
7FF5A809D000
|
unkown image
|
page readonly
|
|
|
|
7FF569F75000
|
unkown image
|
page readonly
|
|
|
|
F483FFF000
|
unkown
|
page read and write
|
|
|
|
2134B187000
|
unkown
|
page read and write
|
|
|
|
2134B1A0000
|
unkown
|
page read and write
|
|
|
|
7DF55D372000
|
unkown image
|
page readonly
|
|
|
|
7DF574040000
|
unkown image
|
page readonly
|
|
|
|
2134B600000
|
unkown
|
page read and write
|
|
|
|
7DF55D380000
|
unkown image
|
page readonly
|
|
|
|
7FF56A184000
|
unkown image
|
page readonly
|
|
|
|
7FF5A8005000
|
unkown image
|
page readonly
|
|
|
|
21F13E20000
|
unkown image
|
page readonly
|
|
|
|
2D205D90000
|
heap default
|
page read and write
|
|
|
|
2134B1B1000
|
unkown
|
page read and write
|
|
|
|
2134B602000
|
unkown
|
page read and write
|
|
|
|
2134B179000
|
unkown
|
page read and write
|
|
|
|
7DF5F1210000
|
unkown image
|
page readonly
|
|
|
|
7DF5B1F32000
|
unkown image
|
page readonly
|
|
|
|
21F14000000
|
unkown
|
page read and write
|
|
|
|
F483C7B000
|
unkown
|
page read and write
|
|
|
|
18111BC0000
|
unkown image
|
page readonly
|
|
|
|
7FF59B69F000
|
unkown image
|
page readonly
|
|
|
|
7FF56A0B8000
|
unkown image
|
page readonly
|
|
|
|
B9C487A000
|
unkown
|
page read and write
|
|
|
|
2134B183000
|
unkown
|
page read and write
|
|
|
|
7FF5A815A000
|
unkown image
|
page readonly
|
|
|
|
7FF5534FA000
|
unkown image
|
page readonly
|
|
|
|
7FF553253000
|
unkown image
|
page readonly
|
|
|
|
2134A810000
|
heap default
|
page read and write
|
|
|
|
7FF5534DF000
|
unkown image
|
page readonly
|
|
|
|
B9C497F000
|
unkown
|
page read and write
|
|
|
|
7FF569D57000
|
unkown image
|
page readonly
|
|
|
|
7FF59B251000
|
unkown image
|
page readonly
|
|
|
|
7FF5E73B6000
|
unkown image
|
page readonly
|
|
|
|
7FF5529E9000
|
unkown image
|
page readonly
|
|
|
|
2D205E5A000
|
unkown
|
page read and write
|
|
|
|
1811193F000
|
heap default
|
page read and write
|
|
|
|
7FF5A807F000
|
unkown image
|
page readonly
|
|
|
|
2134B602000
|
unkown
|
page read and write
|
|
|
|
7FF56A1F9000
|
unkown image
|
page readonly
|
|
|
|
18111922000
|
unkown
|
page read and write
|
|
|
|
7FF553581000
|
unkown image
|
page readonly
|
|
|
|
2134B1C6000
|
unkown
|
page read and write
|
|
|
|
7FF56A0B5000
|
unkown image
|
page readonly
|
|
|
|
21F13E10000
|
heap private
|
page read and write
|
|
|
|
7FF59B6C6000
|
unkown image
|
page readonly
|
|
|
|
7FF5E7477000
|
unkown image
|
page readonly
|
|
|
|
B9C467F000
|
unkown
|
page read and write
|
|
|
|
2134B1A2000
|
unkown
|
page read and write
|
|
|
|
2134B1B2000
|
unkown
|
page read and write
|
|
|
|
2134AB13000
|
unkown
|
page read and write
|
|
|
|
1085D7B000
|
unkown
|
page read and write
|
|
|
|
7DF5F1220000
|
unkown image
|
page readonly
|
|
|
|
2134B1C0000
|
unkown
|
page read and write
|
|
|
|
2D205F00000
|
unkown
|
page read and write
|
|
|
|
7FF569E02000
|
unkown image
|
page readonly
|
|
|
|
2134B1A2000
|
unkown
|
page read and write
|
|
|
|
7FF56A180000
|
unkown image
|
page readonly
|
|
|
|
7FF569D51000
|
unkown image
|
page readonly
|
|
|
|
7DF5B1F22000
|
unkown image
|
page readonly
|
|
|
|
140929E0000
|
unkown
|
page read and write
|
|
|
|
7FF56A067000
|
unkown image
|
page readonly
|
|
|
|
2134AAB3000
|
unkown
|
page read and write
|
|
|
|
2134B1A4000
|
unkown
|
page read and write
|
|
|
|
7FF5E7466000
|
unkown image
|
page readonly
|
|
|
|
2134AA8B000
|
unkown
|
page read and write
|
|
|
|
7FF56A0B0000
|
unkown image
|
page readonly
|
|
|
|
7FF569FEB000
|
unkown image
|
page readonly
|
|
|
|
2134B1A4000
|
unkown
|
page read and write
|
|
|
|
18111DC0000
|
unkown image
|
page readonly
|
|
|
|
312A47E000
|
unkown
|
page read and write
|
|
|
|
2134B1B6000
|
unkown
|
page read and write
|
|
|
|
2D205E64000
|
unkown
|
page read and write
|
|
|
|
B9C4B79000
|
unkown
|
page read and write
|
|
|
|
2134B1B1000
|
unkown
|
page read and write
|
|
|
|
7FF5A8187000
|
unkown image
|
page readonly
|
|
|
|
2134AA53000
|
unkown
|
page read and write
|
|
|
|
7FF5534F6000
|
unkown image
|
page readonly
|
|
|
|
2134AFF0000
|
unkown image
|
page read and write
|
|
|
|
140928F0000
|
unkown image
|
page readonly
|
|
|
|
7FF569F23000
|
unkown image
|
page readonly
|
|
|
|
2134B1AD000
|
unkown
|
page read and write
|
|
|
|
2134B002000
|
unkown
|
page read and write
|
|
|
|
7DF55D390000
|
unkown image
|
page readonly
|
|
|
|
21F13E50000
|
unkown image
|
page readonly
|
|
|
|
7DF5A5542000
|
unkown image
|
page readonly
|
|
|
|
21F14113000
|
unkown
|
page read and write
|
|
|
|
7FF5535C6000
|
unkown image
|
page readonly
|
|
|
|
7DF574050000
|
unkown image
|
page readonly
|
|
|
|
2134B189000
|
unkown
|
page read and write
|
|
|
|
2D205DC0000
|
unkown
|
page read and write
|
|
|
|
2D205F08000
|
unkown
|
page read and write
|
|
|
|
21F13F70000
|
unkown
|
page read and write
|
|
|
|
14092A8E000
|
unkown
|
page read and write
|
|
|
|
7FF5A8176000
|
unkown image
|
page readonly
|
|
|
|
2134A7B0000
|
heap private
|
page read and write
|
|
|
|
7DF55D370000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7FC8000
|
unkown image
|
page readonly
|
|
|
|
2134B17D000
|
unkown
|
page read and write
|
|
|
|
2134B181000
|
unkown
|
page read and write
|
|
|
|
2134B19E000
|
unkown
|
page read and write
|
|
|
|
2D205E13000
|
unkown
|
page read and write
|
|
|
|
2D205D30000
|
heap private
|
page read and write
|
|
|
|
2134AA55000
|
unkown
|
page read and write
|
|
|
|
2134B1A3000
|
unkown
|
page read and write
|
|
|
|
312A7F7000
|
unkown
|
page read and write
|
|
|
|
21F14013000
|
unkown
|
page read and write
|
|
|
|
7FF56A03A000
|
unkown image
|
page readonly
|
|
|
|
F483CFE000
|
unkown
|
page read and write
|
|
|
|
2134AA51000
|
unkown
|
page read and write
|
|
|
|
312A5FB000
|
unkown
|
page read and write
|
|
|
|
7FF569FDE000
|
unkown image
|
page readonly
|
|
|
|
7FF59B767000
|
unkown image
|
page readonly
|
|
|
|
7DF55D390000
|
unkown image
|
page readonly
|
|
|
|
18111A20000
|
unkown image
|
page readonly
|
|
|
|
10861FF000
|
unkown
|
page read and write
|
|
|
|
2134B190000
|
unkown
|
page read and write
|
|
|
|
7FF553584000
|
unkown image
|
page readonly
|
|
|
|
2134AFE0000
|
unkown
|
page read and write
|
|
|
|
1085AFD000
|
unkown
|
page read and write
|
|
|
|
7DF574052000
|
unkown image
|
page readonly
|
|
|
|
2134B18B000
|
unkown
|
page read and write
|
|
|
|
B9C4A78000
|
unkown
|
page read and write
|
|
|
|
2134B602000
|
unkown
|
page read and write
|
|
|
|
7FF569F11000
|
unkown image
|
page readonly
|
|
|
|
21F14580000
|
unkown image
|
page readonly
|
|
|
|
7FF59B75D000
|
unkown image
|
page readonly
|
|
|
|
2134A8F0000
|
unkown image
|
page readonly
|
|
|
|
2134B1A4000
|
unkown
|
page read and write
|
|
|
|
7DF5F1230000
|
unkown image
|
page readonly
|
|
|
|
18111F40000
|
unkown image
|
page readonly
|
|
|
|
7FF5533E8000
|
unkown image
|
page readonly
|
|
|
|
2134B602000
|
unkown
|
page read and write
|
|
|
|
1811191B000
|
heap default
|
page read and write
|
|
|
|
2134B194000
|
unkown
|
page read and write
|
|
|
|
2134AA4B000
|
unkown
|
page read and write
|
|
|
|
7FF553527000
|
unkown image
|
page readonly
|
|
|
|
2D205E8D000
|
unkown
|
page read and write
|
|
|
|
1811193C000
|
heap default
|
page read and write
|
|
|
|
21F13F50000
|
unkown image
|
page readonly
|
|
|
|
2134B602000
|
unkown
|
page read and write
|
|
|
|
2134B1A2000
|
unkown
|
page read and write
|
|
|
|
2134B190000
|
unkown
|
page read and write
|
|
|
|
7DF55D380000
|
unkown image
|
page readonly
|
|
|
|
7DF5A5552000
|
unkown image
|
page readonly
|
|
|
|
2134AC00000
|
unkown image
|
page readonly
|
|
|
|
7FF56A1B3000
|
unkown image
|
page readonly
|
|
|
|
7FF5A8093000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7F95000
|
unkown image
|
page readonly
|
|
|
|
7FF56A0E8000
|
unkown image
|
page readonly
|
|
|
|
7FF56A155000
|
unkown image
|
page readonly
|
|
|
|
2134A7F0000
|
unkown image
|
page readonly
|
|
|
|
2134B189000
|
unkown
|
page read and write
|
|
|
|
2134B187000
|
unkown
|
page read and write
|
|
|
|
2134B178000
|
unkown
|
page read and write
|
|
|
|
7DF5F1212000
|
unkown image
|
page readonly
|
|
|
|
2134B602000
|
unkown
|
page read and write
|
|
|
|
7FF59B6A1000
|
unkown image
|
page readonly
|
|
|
|
7FF5E7383000
|
unkown image
|
page readonly
|
|
|
|
7FF5E6C4B000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7599000
|
unkown image
|
page readonly
|
|
|
|
7FF59B6F9000
|
unkown image
|
page readonly
|
|
|
|
7FF5A8147000
|
unkown image
|
page readonly
|
|
|
|
2134B182000
|
unkown
|
page read and write
|
|
|
|
2134AF80000
|
unkown image
|
page readonly
|
|
|
|
2134B1B5000
|
unkown
|
page read and write
|
|
|
|
2134B19E000
|
unkown
|
page read and write
|
|
|
|
3EA707F000
|
unkown
|
page read and write
|
|
|
|
7DF574050000
|
unkown image
|
page readonly
|
|
|
|
2134AAF1000
|
unkown
|
page read and write
|
|
|
|
2D205E5C000
|
unkown
|
page read and write
|
|
|
|
7DF55D372000
|
unkown image
|
page readonly
|
|
|
|
2134AAE7000
|
unkown
|
page read and write
|
|
|
|
2D2060D0000
|
unkown image
|
page readonly
|
|
|
|
7DF5B1F40000
|
unkown image
|
page readonly
|
|
|
|
2134B603000
|
unkown
|
page read and write
|
|
|
|
7FF553597000
|
unkown image
|
page readonly
|
|
|
|
B9C3FDE000
|
unkown
|
page read and write
|
|
|
|
140927C0000
|
unkown image
|
page readonly
|
|
|
|
1085FFF000
|
unkown
|
page read and write
|
|
|
|
7FF56A27A000
|
unkown image
|
page readonly
|
|
|
|
7DF5A5550000
|
unkown image
|
page readonly
|
|
|
|
2134B187000
|
unkown
|
page read and write
|
|
|
|
7DF55D382000
|
unkown image
|
page readonly
|
|
|
|
7FF56A2A2000
|
unkown image
|
page readonly
|
|
|
|
14092B02000
|
unkown
|
page read and write
|
|
|
|
2134B177000
|
unkown
|
page read and write
|
|
|
|
7FF5A813D000
|
unkown image
|
page readonly
|
|
|
|
2134AA4D000
|
unkown
|
page read and write
|
|
|
|
7FF59B6D2000
|
unkown image
|
page readonly
|
|
|
|
2134AFE0000
|
unkown
|
page read and write
|
|
|
|
2134AA56000
|
unkown
|
page read and write
|
|
|
|
2D205D40000
|
unkown image
|
page readonly
|
|
|
|
7FF59B577000
|
unkown image
|
page readonly
|
|
|
|
7FF59B596000
|
unkown image
|
page readonly
|
|
|
|
7FF5535D2000
|
unkown image
|
page readonly
|
|
|
|
7FF56A1CA000
|
unkown image
|
page readonly
|
|
|
|
2134B18D000
|
unkown
|
page read and write
|
|
|
|
14092A60000
|
unkown
|
page read and write
|
|
|
|
7FF569B39000
|
unkown image
|
page readonly
|
|
|
|
21F13E00000
|
unkown image
|
page read and write
|
|
|
|
2134B1A1000
|
unkown
|
page read and write
|
|
|
|
2134B1B6000
|
unkown
|
page read and write
|
|
|
|
7FF5E7427000
|
unkown image
|
page readonly
|
|
|
|
2134AA29000
|
unkown
|
page read and write
|
|
|
|
2134B184000
|
unkown
|
page read and write
|
|
|
|
7FF59B5E8000
|
unkown image
|
page readonly
|
|
|
|
21F13E40000
|
unkown image
|
page readonly
|
|
|
|
2134B172000
|
unkown
|
page read and write
|
|
|
|
7DF5F1212000
|
unkown image
|
page readonly
|
|
|
|
1085B7E000
|
unkown
|
page read and write
|
|
|
|
21F14100000
|
unkown
|
page read and write
|
|
|
|
7FF5A814B000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7DF1000
|
unkown image
|
page readonly
|
|
|
|
2134B1A6000
|
unkown
|
page read and write
|
|
|
|
2134B602000
|
unkown
|
page read and write
|
|
|
|
7FF5535D7000
|
unkown image
|
page readonly
|
|
|
|
21F14076000
|
unkown
|
page read and write
|
|
|
|
7FF5A7F98000
|
unkown image
|
page readonly
|
|
|
|
2134B61A000
|
unkown
|
page read and write
|
|
|
|
2134B1C8000
|
unkown
|
page read and write
|
|
|
|
7FF5A80C6000
|
unkown image
|
page readonly
|
|
|
|
2134AB08000
|
unkown
|
page read and write
|
|
|
|
21F1404D000
|
unkown
|
page read and write
|
|
|
|
2134AF90000
|
unkown image
|
page readonly
|
|
|
|
2134B184000
|
unkown
|
page read and write
|
|
|
|
7FF59B6CA000
|
unkown image
|
page readonly
|
|
|
|
2134B1A6000
|
unkown
|
page read and write
|
|
|
|
7DF5A5560000
|
unkown image
|
page readonly
|
|
|
|
2134AA4C000
|
unkown
|
page read and write
|
|
|
|
21F14200000
|
unkown image
|
page readonly
|
|
|
|
2134B18B000
|
unkown
|
page read and write
|
|
|
|
2134B175000
|
unkown
|
page read and write
|
|
|
|
21F14400000
|
unkown image
|
page readonly
|
|
|
|
2D205E77000
|
unkown
|
page read and write
|
|
|
|
2134B190000
|
unkown
|
page read and write
|
|
|
|
7FF59B625000
|
unkown image
|
page readonly
|
|
|
|
7FF5E744A000
|
unkown image
|
page readonly
|
|
|
|
F4837AE000
|
unkown
|
page read and write
|
|
|
|
3EA70FF000
|
unkown
|
page read and write
|
|
|
|
2134B182000
|
unkown
|
page read and write
|
|
|
|
2134B602000
|
unkown
|
page read and write
|
|
|
|
2134B195000
|
unkown
|
page read and write
|
|
|
|
7FF5E73C7000
|
unkown image
|
page readonly
|
|
|
|
7FF5534CF000
|
unkown image
|
page readonly
|
|
|
|
2134AAA9000
|
unkown
|
page read and write
|
|
|
|
2134B61E000
|
unkown
|
page read and write
|
|
|
|
2134B1A6000
|
unkown
|
page read and write
|
|
|
|
181118E0000
|
unkown
|
page read and write
|
|
|
|
2134B18D000
|
unkown
|
page read and write
|
|
|
|
2134B15D000
|
unkown
|
page read and write
|
|
|
|
140927B0000
|
heap private
|
page read and write
|
|
|
|
2134B1A8000
|
unkown
|
page read and write
|
|
|
|
14092F80000
|
unkown image
|
page readonly
|
|
|
|
2D205E2D000
|
unkown
|
page read and write
|
|
|
|
14092810000
|
heap default
|
page read and write
|
|
|
|
14092A53000
|
unkown
|
page read and write
|
|
|
|
7DF5F1222000
|
unkown image
|
page readonly
|
|
|
|
7FF56A264000
|
unkown image
|
page readonly
|
|
|
|
7DF4A3410000
|
unkown image
|
page readonly
|
|
|
|
7FF59B751000
|
unkown image
|
page readonly
|
|
|
|
7FF56A1C6000
|
unkown image
|
page readonly
|
|
|
|
7FF5A8173000
|
unkown image
|
page readonly
|
|
|
|
2134B191000
|
unkown
|
page read and write
|
|
|
|
2134B1A3000
|
unkown
|
page read and write
|
|
|
|
7FF56A157000
|
unkown image
|
page readonly
|
|
|
|
18111950000
|
unkown
|
page read and write
|
|
|
|
7FF5A7F1A000
|
unkown image
|
page readonly
|
|
|
|
18111937000
|
unkown
|
page read and write
|
|
|
|
140927E0000
|
unkown image
|
page readonly
|
|
|
|
2D2062D0000
|
unkown image
|
page readonly
|
|
|
|
2D205E6E000
|
unkown
|
page read and write
|
|
|
|
7DF5B1F30000
|
unkown image
|
page readonly
|
|
|
|
7DF45B240000
|
unkown image
|
page readonly
|
|
|
|
7FF569D23000
|
unkown image
|
page readonly
|
|
|
|
21F13E20000
|
unkown image
|
page readonly
|
|
|
|
7FF56A1D2000
|
unkown image
|
page readonly
|
|
|
|
7FF59B257000
|
unkown image
|
page readonly
|
|
|
|
2134AA4E000
|
unkown
|
page read and write
|
|
|
|
2134B1B5000
|
unkown
|
page read and write
|
|
|
|
7FF553502000
|
unkown image
|
page readonly
|
|
|
|
2134B196000
|
unkown
|
page read and write
|
|
|
|
7FF56A077000
|
unkown image
|
page readonly
|
|
|
|
7FF5E7396000
|
unkown image
|
page readonly
|
|
|
|
18111790000
|
unkown image
|
page read and write
|
|
|
|
2134B179000
|
unkown
|
page read and write
|
|
|
|
2134B194000
|
unkown
|
page read and write
|
|
|
|
2134B180000
|
unkown
|
page read and write
|
|
|
|
7FF553397000
|
unkown image
|
page readonly
|
|
|
|
7FF5A80AA000
|
unkown image
|
page readonly
|
|
|
|
14092A66000
|
unkown
|
page read and write
|
|
|
|
F483EFF000
|
unkown
|
page read and write
|
|
|
|
2D205E83000
|
unkown
|
page read and write
|
|
|
|
2D205E00000
|
unkown
|
page read and write
|
|
|
|
312A6FB000
|
unkown
|
page read and write
|
|
|
|
7FF56A168000
|
unkown image
|
page readonly
|
|
|
|
7FF5A8134000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7C37000
|
unkown image
|
page readonly
|
|
|
|
7FF59B5B0000
|
unkown image
|
page readonly
|
|
|
|
312A9FD000
|
unkown
|
page read and write
|
|
|
|
312A4FD000
|
unkown
|
page read and write
|
|
|
|
7DF55D382000
|
unkown image
|
page readonly
|
|
|
|
7FF59B6BD000
|
unkown image
|
page readonly
|
|
|
|
2134B116000
|
unkown
|
page read and write
|
|
|
|
2134B18D000
|
unkown
|
page read and write
|
|
|
|
7DF574060000
|
unkown image
|
page readonly
|
|
|
|
2134AA13000
|
unkown
|
page read and write
|
|
|
|
2134B619000
|
unkown
|
page read and write
|
|
|
|
2134B149000
|
unkown
|
page read and write
|
|
|
|
2134B100000
|
unkown
|
page read and write
|
|
|
|
7DF5A5540000
|
unkown image
|
page readonly
|
|
|
|
2134B184000
|
unkown
|
page read and write
|
|
|
|
7DF5F1220000
|
unkown image
|
page readonly
|
|
|
|
2134B178000
|
unkown
|
page read and write
|
|
|
|
7FF5535D7000
|
unkown image
|
page readonly
|
|
|
|
2134B194000
|
unkown
|
page read and write
|
|
|
|
7DF5A5540000
|
unkown image
|
page readonly
|
|
|
|
1085EF7000
|
unkown
|
page read and write
|
|
|
|
2134AAC1000
|
unkown
|
page read and write
|
|
|
|
2134B17E000
|
unkown
|
page read and write
|
|
|
|
7FF5A808F000
|
unkown image
|
page readonly
|
|
|
|
7FF5A8137000
|
unkown image
|
page readonly
|
|
|
|
7FF56A296000
|
unkown image
|
page readonly
|
|
|
|
2134B614000
|
unkown
|
page read and write
|
|
|
|
2134B1A5000
|
unkown
|
page read and write
|
|
|
|
7FF56A2A7000
|
unkown image
|
page readonly
|
|
|
|
7FF59B6ED000
|
unkown image
|
page readonly
|
|
|
|
2D205E58000
|
unkown
|
page read and write
|
|
|
|
7FF59B796000
|
unkown image
|
page readonly
|
|
|
|
2134A7C0000
|
unkown image
|
page readonly
|
|
|
|
2134B1A1000
|
unkown
|
page read and write
|
|
|
|
2134B619000
|
unkown
|
page read and write
|
|
|
|
7FF59B6E6000
|
unkown image
|
page readonly
|
|
|
|
2134AAC8000
|
unkown
|
page read and write
|
|
|
|
7FF56A251000
|
unkown image
|
page readonly
|
|
|
|
2D205F02000
|
unkown
|
page read and write
|
|
|
|
2134B184000
|
unkown
|
page read and write
|
|
|
|
7FF569D26000
|
unkown image
|
page readonly
|
|
|
|
7FF59B754000
|
unkown image
|
page readonly
|
|
|
|
2D205E29000
|
unkown
|
page read and write
|
|
|
|
18111927000
|
heap default
|
page read and write
|
|
|
|
7FF56A04F000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7F57000
|
unkown image
|
page readonly
|
|
|
|
F483DF7000
|
unkown
|
page read and write
|
|
|
|
2134B191000
|
unkown
|
page read and write
|
|
|
|
7FF55359B000
|
unkown image
|
page readonly
|
|
|
|
2134B1A2000
|
unkown
|
page read and write
|
|
|
|
7FF553529000
|
unkown image
|
page readonly
|
|
|
|
2134AAFB000
|
unkown
|
page read and write
|
|
|
|
2D205F13000
|
unkown
|
page read and write
|
|
|
|
2134B18F000
|
unkown
|
page read and write
|
|
|
|
1085DFF000
|
unkown
|
page read and write
|
|
|
|
3EA7179000
|
unkown
|
page read and write
|
|
|
|
B9C4778000
|
unkown
|
page read and write
|
|
|
|
7DF574052000
|
unkown image
|
page readonly
|
|
|
|
7FF5A80B2000
|
unkown image
|
page readonly
|
|
|
|
2134AA58000
|
unkown
|
page read and write
|
|
|
|
7FF5A7E03000
|
unkown image
|
page readonly
|
|
|
|
2D205E5F000
|
unkown
|
page read and write
|
|
|
|
7FF59B77A000
|
unkown image
|
page readonly
|
|
|
|
7DF5F1222000
|
unkown image
|
page readonly
|
|
|
|
7DF471F10000
|
unkown image
|
page readonly
|
|
|
|
2134B18A000
|
unkown
|
page read and write
|
|
|
|
B9C4577000
|
unkown
|
page read and write
|
|
|
|
14092E00000
|
unkown image
|
page readonly
|
|
|
|
7FF5E73BD000
|
unkown image
|
page readonly
|
|
|
|
7DF55D370000
|
unkown image
|
page readonly
|
|
|
|
7FF56A1BD000
|
unkown image
|
page readonly
|
|
|
|
2134B1D5000
|
unkown
|
page read and write
|
|
|
|
7DF5B1F20000
|
unkown image
|
page readonly
|
|
|
|
140927F0000
|
unkown image
|
page readonly
|
|
|
|
2134B180000
|
unkown
|
page read and write
|
|
|
|
2D205E6E000
|
unkown
|
page read and write
|
|
|
|
7FF5A8182000
|
unkown image
|
page readonly
|
|
|
|
14092A02000
|
unkown
|
page read and write
|
|
|
|
2134B1C4000
|
unkown
|
page read and write
|
|
|
|
7FF59B411000
|
unkown image
|
page readonly
|
|
|
|
14092A90000
|
unkown
|
page read and write
|
|
|
|
7FF5A80D9000
|
unkown image
|
page readonly
|
|
|
|
2134AB02000
|
unkown
|
page read and write
|
|
|
|
2134B602000
|
unkown
|
page read and write
|
|
|
|
21F14102000
|
unkown
|
page read and write
|
|
|
|
7FF5E7477000
|
unkown image
|
page readonly
|
|
|
|
7FF5E7434000
|
unkown image
|
page readonly
|
|
|
|
2134B110000
|
unkown
|
page read and write
|
|
|
|
7FF56A1AF000
|
unkown image
|
page readonly
|
|
|
|
7FF5E70F3000
|
unkown image
|
page readonly
|
|
|
|
14092A29000
|
unkown
|
page read and write
|
|
|
|
7DF5B1F40000
|
unkown image
|
page readonly
|
|
|
|
2134B18F000
|
unkown
|
page read and write
|
|
|
|
2134B602000
|
unkown
|
page read and write
|
|
|
|
10860FF000
|
unkown
|
page read and write
|
|
|
|
181117B0000
|
unkown image
|
page readonly
|
|
|
|
181117B0000
|
unkown image
|
page readonly
|
|
|
|
14092C00000
|
unkown image
|
page readonly
|
|
|
|
7FF56A257000
|
unkown image
|
page readonly
|
|
|
|
2134B184000
|
unkown
|
page read and write
|
|
|
|
2134B1A4000
|
unkown
|
page read and write
|
|
|
|
7FF5E742D000
|
unkown image
|
page readonly
|
|
|
|
2134AE00000
|
unkown image
|
page readonly
|
|
|
|
7FF5E7421000
|
unkown image
|
page readonly
|
|
|
|
7FF5533C6000
|
unkown image
|
page readonly
|
|
|
|
7FF5534D1000
|
unkown image
|
page readonly
|
|
|
|
3EA727D000
|
unkown
|
page read and write
|
|
|
|
2134B602000
|
unkown
|
page read and write
|
|
|
|
2134A9E0000
|
unkown
|
page read and write
|
|
|
|
2134B178000
|
unkown
|
page read and write
|
|
|
|
7FF5533A7000
|
unkown image
|
page readonly
|
|
|
|
7FF5A8144000
|
unkown image
|
page readonly
|
|
|
|
312A8FE000
|
unkown
|
page read and write
|
|
|
|
2134B180000
|
unkown
|
page read and write
|
|
|
|
2134B1A4000
|
unkown
|
page read and write
|
|
|
|
7DF5F1210000
|
unkown image
|
page readonly
|
|
|
|
2134AB16000
|
unkown
|
page read and write
|
|
|
|
2134B190000
|
unkown
|
page read and write
|
|
|
|
21F14082000
|
unkown
|
page read and write
|
|
|
|
21F14108000
|
unkown
|
page read and write
|
|
|
|
2134B17E000
|
unkown
|
page read and write
|
|
|
|
7FF56A04D000
|
unkown image
|
page readonly
|
|
|
|
7FF5E7385000
|
unkown image
|
page readonly
|
|
|
|
2134B189000
|
unkown
|
page read and write
|
|
|
|
3EA71FE000
|
unkown
|
page read and write
|
|
|
|
7FF553418000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7C31000
|
unkown image
|
page readonly
|
|
|
|
14092A00000
|
unkown
|
page read and write
|
|
|
|
2134B193000
|
unkown
|
page read and write
|
|
|
|
7FF56A267000
|
unkown image
|
page readonly
|
|
|
|
7FF569B35000
|
unkown image
|
page readonly
|
|
|
|
7FF5533E5000
|
unkown image
|
page readonly
|
|
|
|
2134B194000
|
unkown
|
page read and write
|
|
|
|
21F1403C000
|
unkown
|
page read and write
|
|
|
|
21F13E70000
|
heap default
|
page read and write
|
|
|
|
7FF553516000
|
unkown image
|
page readonly
|
|
|
|
7FF59B793000
|
unkown image
|
page readonly
|
|
|
|
7FF5535AA000
|
unkown image
|
page readonly
|
|
|
|
2134B1A4000
|
unkown
|
page read and write
|
|
|
|
7FF5534E3000
|
unkown image
|
page readonly
|
|
|
|
7FF569FE0000
|
unkown image
|
page readonly
|
|
|
|
7FF569F7F000
|
unkown image
|
page readonly
|
|
|
|
7FF59B6B3000
|
unkown image
|
page readonly
|
|
|
|
7FF5E738E000
|
unkown image
|
page readonly
|
|
|
|
2134B18F000
|
unkown
|
page read and write
|
|
|
|
2134B162000
|
unkown
|
page read and write
|
|
|
|
2D205D60000
|
unkown image
|
page readonly
|
|
|
|
7FF5E7463000
|
unkown image
|
page readonly
|
|
|
|
2134B663000
|
unkown
|
page read and write
|
|
|
|
2D206602000
|
unkown
|
page read and write
|
|
|
|
18111938000
|
heap default
|
page read and write
|
|
|
|
7FF5A8187000
|
unkown image
|
page readonly
|
|
|
|
3EA6D4A000
|
unkown
|
page read and write
|
|
|
|
7FF59B7A7000
|
unkown image
|
page readonly
|
|
|
|
14092A13000
|
unkown
|
page read and write
|
|
|
|
21F14802000
|
unkown
|
page read and write
|
|
|
|
7FF59B423000
|
unkown image
|
page readonly
|
|
|
|
7FF5529E3000
|
unkown image
|
page readonly
|
|
|
|
140927C0000
|
unkown image
|
page readonly
|
|
|
|
2D205E54000
|
unkown
|
page read and write
|
|
|
|
7FF553081000
|
unkown image
|
page readonly
|
|
|
|
7FF5696B3000
|
unkown image
|
page readonly
|
|
|
|
7FF5A80D7000
|
unkown image
|
page readonly
|
|
|
|
7DF5A5550000
|
unkown image
|
page readonly
|
|
|
|
2D206450000
|
unkown image
|
page readonly
|
|
|
|
7DF5B1F20000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7F90000
|
unkown image
|
page readonly
|
|
|
|
1811193C000
|
unkown
|
page read and write
|
|
|
|
2D205D40000
|
unkown image
|
page readonly
|
|
|
|
181117D0000
|
unkown image
|
page readonly
|
|
|
|
3EA6DCF000
|
unkown
|
page read and write
|
|
|
|
7FF5533E0000
|
unkown image
|
page readonly
|
|
|
|
18111BB5000
|
heap private
|
page read and write
|
|
|
|
1811193C000
|
unkown
|
page read and write
|
|
|
|
7FF59B5B8000
|
unkown image
|
page readonly
|
|
|
|
1811193F000
|
unkown
|
page read and write
|
|
|
|
1811194F000
|
unkown
|
page read and write
|
|
|
|
7DF5A5560000
|
unkown image
|
page readonly
|
|
|
|
7FF553241000
|
unkown image
|
page readonly
|
|
|
|
B9C437B000
|
unkown
|
page read and write
|
|
|
|
2134B1B1000
|
unkown
|
page read and write
|
|
|
|
7FF5E7437000
|
unkown image
|
page readonly
|
|
|
|
7DF5B1F32000
|
unkown image
|
page readonly
|
|
|
|
7FF56A254000
|
unkown image
|
page readonly
|
|
|
|
2134B1A3000
|
unkown
|
page read and write
|
|
|
|
312AAFF000
|
unkown
|
page read and write
|
|
|
|
1085A7C000
|
unkown
|
page read and write
|
|
|
|
2134B112000
|
unkown
|
page read and write
|
|
|
|
7FF59B76B000
|
unkown image
|
page readonly
|
|
|
|
7FF59B6F7000
|
unkown image
|
page readonly
|
|
|
|
7FF569A7B000
|
unkown image
|
page readonly
|
|
|
|
2134AA50000
|
unkown
|
page read and write
|
|
|
|
7FF59B7A7000
|
unkown image
|
page readonly
|
|
|
|
7FF56A189000
|
unkown image
|
page readonly
|
|
|
|
2134B61E000
|
unkown
|
page read and write
|
|
|
|
21F1402A000
|
unkown
|
page read and write
|
|
|
|
2134AADE000
|
unkown
|
page read and write
|
|
|
|
2134B195000
|
unkown
|
page read and write
|
|
|
|
7FF56A004000
|
unkown image
|
page readonly
|
|
|
|
2134B19E000
|
unkown
|
page read and write
|
|
|
|
7FF59B6AF000
|
unkown image
|
page readonly
|
|
|
|
2134AA3C000
|
unkown
|
page read and write
|
|
|
|
7FF55358D000
|
unkown image
|
page readonly
|
|
|
|
7DF5B1F22000
|
unkown image
|
page readonly
|
|
|
|
F48372B000
|
unkown
|
page read and write
|
|
|
|
7DF4EF0E0000
|
unkown image
|
page readonly
|
|
|
|
18111A30000
|
unkown image
|
page read and write
|
|
|
|
18111BB0000
|
heap private
|
page read and write
|
|
|
|
2134A7A0000
|
unkown image
|
page read and write
|
|
|
|
7FF5A80A6000
|
unkown image
|
page readonly
|
|
|
|
181118C0000
|
unkown
|
page read and write
|
|
|
|
B9C48FE000
|
unkown
|
page read and write
|
|
|
|
7FF56A1ED000
|
unkown image
|
page readonly
|
|
|
|
2D205E3C000
|
unkown
|
page read and write
|
|
|
|
2134B602000
|
unkown
|
page read and write
|
|
|
|
2134B18B000
|
unkown
|
page read and write
|
|
|
|
14093002000
|
unkown
|
page read and write
|
|
|
|
7DF574042000
|
unkown image
|
page readonly
|
|
|
|
2134AAA8000
|
unkown
|
page read and write
|
|
|
|
2134AA00000
|
unkown
|
page read and write
|
|
|
|
2134B1C0000
|
unkown
|
page read and write
|
|
|
|
2134B1B3000
|
unkown
|
page read and write
|
|
|
|
7FF59B53A000
|
unkown image
|
page readonly
|
|
|
|
2134B17C000
|
unkown
|
page read and write
|
|
|
|
7FF5A7F76000
|
unkown image
|
page readonly
|
|
|
|
7FF56A2A7000
|
unkown image
|
page readonly
|
|
|
|
2134B1D5000
|
unkown
|
page read and write
|
|
|
|
7FF59B567000
|
unkown image
|
page readonly
|
|
|
|
7DF574060000
|
unkown image
|
page readonly
|
|
|
|
7FF59B5B5000
|
unkown image
|
page readonly
|
|
|
|
7FF55351D000
|
unkown image
|
page readonly
|
|
|
|
7FF5A80CD000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7593000
|
unkown image
|
page readonly
|
|
|
|
7FF5A8081000
|
unkown image
|
page readonly
|
|
|
|
7DF4AFDF0000
|
unkown image
|
page readonly
|
|
|
|
7FF5534ED000
|
unkown image
|
page readonly
|
|
|
|
7FF55336A000
|
unkown image
|
page readonly
|
|
|
|
18111910000
|
heap default
|
page read and write
|
|
|
|
7FF59B7A2000
|
unkown image
|
page readonly
|
|
|
|
7FF56A19F000
|
unkown image
|
page readonly
|
|
|
|
2134B189000
|
unkown
|
page read and write
|
|
|
|
7FF56A1F7000
|
unkown image
|
page readonly
|
|
|
|
B9C4477000
|
unkown
|
page read and write
|
|
|
|
2134B186000
|
unkown
|
page read and write
|
|
|
|
21F14070000
|
unkown
|
page read and write
|
|
|
|
7DF5A5552000
|
unkown image
|
page readonly
|
|
|
|
2134B181000
|
unkown
|
page read and write
|
|
|
|
7FF5696B9000
|
unkown image
|
page readonly
|
|
|
|
2134B18D000
|
unkown
|
page read and write
|
|
|
|
2134B65D000
|
unkown
|
page read and write
|
|
|
|
7FF5535C3000
|
unkown image
|
page readonly
|
|
|
|
2134B1BC000
|
unkown
|
page read and write
|
|
|
|
B9C427E000
|
unkown
|
page read and write
|
|
|
|
2D205D70000
|
unkown image
|
page readonly
|
|
|
|
2134B18F000
|
unkown
|
page read and write
|
|
|
|
2D205DA0000
|
unkown image
|
page readonly
|
|
|
|
7FF56A1A1000
|
unkown image
|
page readonly
|
|
|
|
14092B00000
|
unkown
|
page read and write
|
|
|
|
7DF5A5542000
|
unkown image
|
page readonly
|
|
|
|
2134B14D000
|
unkown
|
page read and write
|
|
|
|
2134B602000
|
unkown
|
page read and write
|
|
|
|
7FF569FB6000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7F47000
|
unkown image
|
page readonly
|
|
|
|
2134AA84000
|
unkown
|
page read and write
|
|
|
|
7FF56A1E6000
|
unkown image
|
page readonly
|
|
|
|
F483A7E000
|
unkown
|
page read and write
|
|
|
|
7DF574042000
|
unkown image
|
page readonly
|
|
|
|
2134B603000
|
unkown
|
page read and write
|
|
|
|
7FF59B764000
|
unkown image
|
page readonly
|
|
|
|
7DF574040000
|
unkown image
|
page readonly
|
|
|
|
21F14053000
|
unkown
|
page read and write
|
|
|
|
2134B187000
|
unkown
|
page read and write
|
|
|
|
7FF553587000
|
unkown image
|
page readonly
|
|
|
|
7FF569FB0000
|
unkown image
|
page readonly
|
|
|
|
2134AA5B000
|
unkown
|
page read and write
|
|
|
|
7FF5E743B000
|
unkown image
|
page readonly
|
|
|
|
7FF59ABB9000
|
unkown image
|
page readonly
|
|
|
|
18111A10000
|
unkown image
|
page readonly
|
|
|
|
7FF56A194000
|
unkown image
|
page readonly
|
|
|
|
2134AA71000
|
unkown
|
page read and write
|
|
|
|
2134B18F000
|
unkown
|
page read and write
|
|
|
|
7FF5E7424000
|
unkown image
|
page readonly
|
|
|
|
140927A0000
|
unkown image
|
page read and write
|
|
|
|
2134AA59000
|
unkown
|
page read and write
|
|
|
|
7FF56A096000
|
unkown image
|
page readonly
|
|
|
|
312A1FB000
|
unkown
|
page read and write
|
|
|
|
7FF56A25D000
|
unkown image
|
page readonly
|
|
|
|
7DF5B1F30000
|
unkown image
|
page readonly
|
|
|
|
7FF5A8131000
|
unkown image
|
page readonly
|
|
|
|
7FF553455000
|
unkown image
|
page readonly
|
|
|
|
2134B602000
|
unkown
|
page read and write
|
|
|
|
14092B08000
|
unkown
|
page read and write
|
|
|
|
B9C3F5B000
|
unkown
|
page read and write
|
|
|
|
2134AFE0000
|
unkown
|
page read and write
|
|
|
|
1811193F000
|
unkown
|
page read and write
|
|
|
|
2134B1AF000
|
unkown
|
page read and write
|
|
|
|
2134B18F000
|
unkown
|
page read and write
|
|
|
|
14092A4B000
|
unkown
|
page read and write
|
|
|
|
2134B1A2000
|
unkown
|
page read and write
|
|
|
|
2D205D20000
|
unkown image
|
page read and write
|
|
|
|
7DF5F1230000
|
unkown image
|
page readonly
|
|
|
|
14092B13000
|
unkown
|
page read and write
|
|
|
|
7FF59B757000
|
unkown image
|
page readonly
|
|
There are 604 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://stamvifordsgct.top/pakl/adobe2020/
|
|
|
|
https://atlanticcomfort.dorik.io/
|
|