Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\18770709-3244-4422-8aa2-5f7668e39e89.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1a6679f9-999a-421a-b1be-c2c671f83cf0.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3eb75264-b84c-4761-b3c1-4592d3a2d427.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3f7bdb50-ad68-4f97-aa2d-e42221422497.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\50a35b71-01ad-47f1-89a9-775535c10238.tmp
|
very short file (no magic)
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.oldB\ (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.oldrt (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
modified
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old. (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.oldTM (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old4K (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old.. (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session (copy)
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabs (copy)
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old00 (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.oldTx (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences.J (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences.t (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences.. (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\0e5aefda-b0a3-493f-be7f-364bdd1719e4.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old.
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.oldSs
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.oldH
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.oldoy
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.oldr4
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\cd4dbc11-4849-4bf7-933e-040d908f280c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old.. (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\bf809d39-9801-4815-a8a6-73838b26f9e2.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\debcf175-df68-4a89-8351-c2575f5fbbe5.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\1118c0da-7a5f-423f-bd3e-fc23b3e39274.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\2808d074-217f-4db7-9e5c-25e3b291b76a.tmp
|
very short file (no magic)
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\645a0131-cdaa-4cd1-bad1-a61c2a67e74b.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\a6a92ce2-52b0-44bd-885f-402528a041c0.tmp
|
very short file (no magic)
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\aeecb0ca-1b40-48df-98bd-5415aabb80cc.tmp
|
very short file (no magic)
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\d1479937-7e6b-4b4e-abbf-ef4ee4c9e29c.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\645a0131-cdaa-4cd1-bad1-a61c2a67e74b.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_145524689\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\1118c0da-7a5f-423f-bd3e-fc23b3e39274.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1586611507\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
modified
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir4708_1985740391\d1479937-7e6b-4b4e-abbf-ef4ee4c9e29c.tmp
|
Google Chrome extension, version 3
|
dropped
|
There are 214 hidden files, click here to show them.
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'http://easycurrency.significanceapps.com'
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1596,8436714472180034263,9209500831669161852,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1268 /prefetch:8
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
http://easycurrency.significanceapps.com
|
|||
https://www.google.com
|
unknown
|
||
https://dns.google
|
unknown
|
||
https://ogs.google.com
|
unknown
|
||
http://easycurrency.significanceapps.com/5
|
unknown
|
||
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
||
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
172.217.168.46
|
||
https://accounts.google.com
|
unknown
|
||
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
172.217.168.13
|
||
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
||
https://www.google.com;
|
unknown
|
||
https://support.google.com/chromecast/answer/2998456
|
unknown
|
||
http://easycurrency.significanceapps.com/
|
52.19.238.216
|
||
https://hangouts.google.com/
|
unknown
|
||
https://clients2.googleusercontent.com
|
unknown
|
||
https://apis.google.com
|
unknown
|
||
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
||
https://www.google.com/
|
unknown
|
||
https://feedback.googleusercontent.com
|
unknown
|
||
https://clients2.google.com
|
unknown
|
||
https://clients2.google.com/service/update2/crx
|
unknown
|
||
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
|
172.217.168.1
|
There are 11 hidden URLs, click here to show them.
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
accounts.google.com
|
172.217.168.13
|
||
easycurrency.significanceapps.com
|
52.19.238.216
|
||
clients.l.google.com
|
172.217.168.46
|
||
googlehosted.l.googleusercontent.com
|
172.217.168.1
|
||
clients2.googleusercontent.com
|
unknown
|
||
clients2.google.com
|
unknown
|
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
192.168.2.1
|
unknown
|
unknown
|
||
172.217.168.1
|
googlehosted.l.googleusercontent.com
|
United States
|
||
172.217.168.46
|
clients.l.google.com
|
United States
|
||
172.217.168.13
|
accounts.google.com
|
United States
|
||
239.255.255.250
|
unknown
|
Reserved
|
||
52.19.238.216
|
easycurrency.significanceapps.com
|
United States
|
||
127.0.0.1
|
unknown
|
unknown
|
Registry
Path
|
Value
|
Malicious
|
|
---|---|---|---|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
||
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
There are 29 hidden registries, click here to show them.
Memdumps
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
---|---|---|---|---|
7FF5439BC000
|
unkown image
|
page readonly
|
||
7FF557250000
|
unkown image
|
page readonly
|
||
7FF5571F3000
|
unkown image
|
page readonly
|
||
7DF456680000
|
unkown image
|
page readonly
|
||
1210C700000
|
unkown
|
page read and write
|
||
7FF5027A1000
|
unkown image
|
page readonly
|
||
7DF503CB2000
|
unkown image
|
page readonly
|
||
7DF5314C0000
|
unkown image
|
page readonly
|
||
7FF557346000
|
unkown image
|
page readonly
|
||
7FF5D0630000
|
unkown image
|
page readonly
|
||
2B0BEE3D000
|
unkown
|
page read and write
|
||
2B0BEE6C000
|
unkown
|
page read and write
|
||
7DF503CB0000
|
unkown image
|
page readonly
|
||
7FF5D0680000
|
unkown image
|
page readonly
|
||
7DF5FB852000
|
unkown image
|
page readonly
|
||
EC8A99E000
|
unkown
|
page read and write
|
||
1DF3864B000
|
unkown
|
page read and write
|
||
7DF4CFAD0000
|
unkown image
|
page readonly
|
||
199DA3C0000
|
unkown image
|
page readonly
|
||
1DF3868C000
|
unkown
|
page read and write
|
||
7DF5314C2000
|
unkown image
|
page readonly
|
||
1210BEBE000
|
unkown
|
page read and write
|
||
2BDFC89F000
|
unkown
|
page read and write
|
||
7FF5027CC000
|
unkown image
|
page readonly
|
||
7FF52FE3F000
|
unkown image
|
page readonly
|
||
7FF5438C0000
|
unkown image
|
page readonly
|
||
1FF03255000
|
unkown
|
page read and write
|
||
7FF5D0625000
|
unkown image
|
page readonly
|
||
7DF50D802000
|
unkown image
|
page readonly
|
||
7FF55C998000
|
unkown image
|
page readonly
|
||
1210BDB0000
|
unkown
|
page read and write
|
||
7DF55E132000
|
unkown image
|
page readonly
|
||
2BDFC8A7000
|
unkown
|
page read and write
|
||
2BDFC7F0000
|
unkown image
|
page readonly
|
||
745EFC000
|
unkown
|
page read and write
|
||
7FF50276B000
|
unkown image
|
page readonly
|
||
7FF5D071B000
|
unkown image
|
page readonly
|
||
7DF50D800000
|
unkown image
|
page readonly
|
||
2BDFE0D0000
|
unkown
|
page read and write
|
||
1FF03950000
|
unkown
|
page read and write
|
||
EC8B47F000
|
unkown
|
page read and write
|
||
1F559520000
|
unkown image
|
page readonly
|
||
7FF50C32C000
|
unkown image
|
page readonly
|
||
B4C6DEC000
|
unkown
|
page read and write
|
||
7FF5D04DF000
|
unkown image
|
page readonly
|
||
7FF55CBE8000
|
unkown image
|
page readonly
|
||
7FF55CAC1000
|
unkown image
|
page readonly
|
||
1DF3A202000
|
unkown
|
page read and write
|
||
2BDFDED0000
|
unkown
|
page read and write
|
||
2BDFC8FE000
|
unkown
|
page read and write
|
||
7FF5FA341000
|
unkown image
|
page readonly
|
||
7DF42D9F0000
|
unkown image
|
page readonly
|
||
7FF5D035E000
|
unkown image
|
page readonly
|
||
2BDFDEE7000
|
unkown
|
page read and write
|
||
1DF385B0000
|
unkown image
|
page readonly
|
||
7DF442CF0000
|
unkown image
|
page readonly
|
||
7DF42F390000
|
unkown image
|
page readonly
|
||
2B0BEF02000
|
unkown
|
page read and write
|
||
199DA3C0000
|
unkown image
|
page readonly
|
||
1F559C60000
|
unkown image
|
page readonly
|
||
7FF5D0512000
|
unkown image
|
page readonly
|
||
7FF52FFA1000
|
unkown image
|
page readonly
|
||
1FF0326C000
|
unkown
|
page read and write
|
||
7FF52E5E8000
|
unkown image
|
page readonly
|
||
7FF557275000
|
unkown image
|
page readonly
|
||
EC8B5FB000
|
unkown
|
page read and write
|
||
7FF5D06F1000
|
unkown image
|
page readonly
|
||
199DA3A0000
|
unkown image
|
page read and write
|
||
E2F01FE000
|
unkown
|
page read and write
|
||
BB4C1FE000
|
unkown
|
page read and write
|
||
7FF5D0736000
|
unkown image
|
page readonly
|
||
7FF52E642000
|
unkown image
|
page readonly
|
||
7FF5439D3000
|
unkown image
|
page readonly
|
||
1210BE13000
|
unkown
|
page read and write
|
||
1DF38640000
|
unkown
|
page read and write
|
||
7DF5587D0000
|
unkown image
|
page readonly
|
||
7FF52E235000
|
unkown image
|
page readonly
|
||
2BDFDE5F000
|
unkown
|
page read and write
|
||
1DF3865B000
|
unkown
|
page read and write
|
||
FE2F7E000
|
unkown
|
page read and write
|
||
7FF52FE45000
|
unkown image
|
page readonly
|
||
7FF5D072C000
|
unkown image
|
page readonly
|
||
1F55963F000
|
unkown
|
page read and write
|
||
1F0337E000
|
unkown
|
page read and write
|
||
1F559C50000
|
unkown image
|
page readonly
|
||
1D89A5B0000
|
unkown image
|
page readonly
|
||
7FF5D0308000
|
unkown image
|
page readonly
|
||
2BDFD830000
|
unkown image
|
page readonly
|
||
7DF503CC2000
|
unkown image
|
page readonly
|
||
7DF401B80000
|
unkown image
|
page readonly
|
||
1DF385A0000
|
unkown image
|
page readonly
|
||
745A7C000
|
unkown
|
page read and write
|
||
2B0BEE42000
|
unkown
|
page read and write
|
||
7FF52E63B000
|
unkown image
|
page readonly
|
||
24666402000
|
unkown
|
page read and write
|
||
1F559580000
|
unkown image
|
page readonly
|
||
2B0BEE39000
|
unkown
|
page read and write
|
||
7DF5D1C02000
|
unkown image
|
page readonly
|
||
2B0BEE62000
|
unkown
|
page read and write
|
||
FE32F7000
|
unkown
|
page read and write
|
||
199DA713000
|
unkown
|
page read and write
|
||
745B7C000
|
unkown
|
page read and write
|
||
199DA700000
|
unkown
|
page read and write
|
||
1210C2D0000
|
unkown image
|
page readonly
|
||
7FF5D0796000
|
unkown image
|
page readonly
|
||
1210BEDF000
|
unkown
|
page read and write
|
||
7FF5D0729000
|
unkown image
|
page readonly
|
||
7FF52E4EA000
|
unkown image
|
page readonly
|
||
2B0BF450000
|
unkown image
|
page readonly
|
||
7DF50D820000
|
unkown image
|
page readonly
|
||
7DF5314D2000
|
unkown image
|
page readonly
|
||
7DF40B6D0000
|
unkown image
|
page readonly
|
||
7FF55C63C000
|
unkown image
|
page readonly
|
||
7FF55C18C000
|
unkown image
|
page readonly
|
||
7DF503CC2000
|
unkown image
|
page readonly
|
||
7DF5D1C12000
|
unkown image
|
page readonly
|
||
1D89A902000
|
unkown
|
page read and write
|
||
7FF5FA403000
|
unkown image
|
page readonly
|
||
7FF5CFF9F000
|
unkown image
|
page readonly
|
||
1FF03289000
|
unkown
|
page read and write
|
||
7DF4F9720000
|
unkown image
|
page readonly
|
||
7FF5D04C1000
|
unkown image
|
page readonly
|
||
1F5595A0000
|
unkown
|
page read and write
|
||
2BDFDD94000
|
unkown
|
page read and write
|
||
7FF5FA339000
|
unkown image
|
page readonly
|
||
1DF38667000
|
unkown
|
page read and write
|
||
2BDFD660000
|
unkown image
|
page read and write
|
||
7FF54394C000
|
unkown image
|
page readonly
|
||
2BDFDD90000
|
unkown
|
page read and write
|
||
7FF52E465000
|
unkown image
|
page readonly
|
||
24666390000
|
unkown image
|
page readonly
|
||
2BDFE0B0000
|
unkown
|
page read and write
|
||
2BDFE120000
|
unkown
|
page read and write
|
||
1210BE6E000
|
unkown
|
page read and write
|
||
1D89AD90000
|
unkown
|
page read and write
|
||
7FF5CFC92000
|
unkown image
|
page readonly
|
||
2BDFDEC0000
|
unkown
|
page read and write
|
||
7FF5FA331000
|
unkown image
|
page readonly
|
||
1F559520000
|
unkown image
|
page readonly
|
||
2BDFCF80000
|
unkown image
|
page read and write
|
||
7FF55CC25000
|
unkown image
|
page readonly
|
||
1210BF02000
|
unkown
|
page read and write
|
||
1DF3869D000
|
unkown
|
page read and write
|
||
7FF543942000
|
unkown image
|
page readonly
|
||
1FF03213000
|
unkown
|
page read and write
|
||
2BDFDD7E000
|
unkown
|
page read and write
|
||
2BDFD118000
|
unkown
|
page read and write
|
||
7FF5CFF11000
|
unkown image
|
page readonly
|
||
7FF5D06BB000
|
unkown image
|
page readonly
|
||
1DF3A1B0000
|
unkown image
|
page read and write
|
||
7FF50C2C5000
|
unkown image
|
page readonly
|
||
1DF3872C000
|
unkown
|
page read and write
|
||
7FF5D04BE000
|
unkown image
|
page readonly
|
||
1F5598D0000
|
unkown image
|
page readonly
|
||
2B0BEE45000
|
unkown
|
page read and write
|
||
2BDFC856000
|
unkown
|
page read and write
|
||
2B0BEE61000
|
unkown
|
page read and write
|
||
7FF55CC4C000
|
unkown image
|
page readonly
|
||
7DF544E22000
|
unkown image
|
page readonly
|
||
1FF0324E000
|
unkown
|
page read and write
|
||
7FF5FA30F000
|
unkown image
|
page readonly
|
||
1F035FB000
|
unkown
|
page read and write
|
||
7FF5D0565000
|
unkown image
|
page readonly
|
||
7FF55CA9D000
|
unkown image
|
page readonly
|
||
1DF3A070000
|
unkown
|
page read and write
|
||
7FF5D06AB000
|
unkown image
|
page readonly
|
||
7DF544E32000
|
unkown image
|
page readonly
|
||
24666455000
|
unkown
|
page read and write
|
||
7FF52FEEC000
|
unkown image
|
page readonly
|
||
FE33FE000
|
unkown
|
page read and write
|
||
BB4C8FF000
|
unkown
|
page read and write
|
||
7DF55E130000
|
unkown image
|
page readonly
|
||
7FF5438E5000
|
unkown image
|
page readonly
|
||
1210BE44000
|
unkown
|
page read and write
|
||
EC8B3FF000
|
unkown
|
page read and write
|
||
7DF5314D0000
|
unkown image
|
page readonly
|
||
2BDFE120000
|
unkown
|
page read and write
|
||
2B0BED40000
|
unkown image
|
page readonly
|
||
1F559E02000
|
unkown
|
page read and write
|
||
2B0BEE7C000
|
unkown
|
page read and write
|
||
7FF5438B5000
|
unkown image
|
page readonly
|
||
7FF5FA324000
|
unkown image
|
page readonly
|
||
7FF52FF94000
|
unkown image
|
page readonly
|
||
BB4C5FD000
|
unkown
|
page read and write
|
||
7FF5572F4000
|
unkown image
|
page readonly
|
||
7FF50B864000
|
unkown image
|
page readonly
|
||
7DF503CB0000
|
unkown image
|
page readonly
|
||
7FF557234000
|
unkown image
|
page readonly
|
||
7DF503CC0000
|
unkown image
|
page readonly
|
||
2BDFCD80000
|
unkown image
|
page readonly
|
||
B4C707E000
|
unkown
|
page read and write
|
||
1DF3A180000
|
unkown
|
page read and write
|
||
1210BF13000
|
unkown
|
page read and write
|
||
24666470000
|
unkown
|
page read and write
|
||
7FF5FA386000
|
unkown image
|
page readonly
|
||
47CAFE000
|
unkown
|
page read and write
|
||
1DF3A0C0000
|
unkown
|
page read and write
|
||
BB4C4FD000
|
unkown
|
page read and write
|
||
7FF52E6BC000
|
unkown image
|
page readonly
|
||
1F559700000
|
unkown
|
page read and write
|
||
7FF52E6D3000
|
unkown image
|
page readonly
|
||
2BDFDD70000
|
unkown
|
page read and write
|
||
2B0BED30000
|
heap private
|
page read and write
|
||
1F559570000
|
heap default
|
page read and write
|
||
7FF55C414000
|
unkown image
|
page readonly
|
||
7FF50262F000
|
unkown image
|
page readonly
|
||
7FF501CF5000
|
unkown image
|
page readonly
|
||
745BFB000
|
unkown
|
page read and write
|
||
1F0327B000
|
unkown
|
page read and write
|
||
2B0BED70000
|
unkown image
|
page readonly
|
||
7FF557363000
|
unkown image
|
page readonly
|
||
7FF5D031B000
|
unkown image
|
page readonly
|
||
7DF5D1C12000
|
unkown image
|
page readonly
|
||
2BDFDE98000
|
unkown
|
page read and write
|
||
199DA5E0000
|
unkown
|
page read and write
|
||
E5701FE000
|
unkown
|
page read and write
|
||
B4C737F000
|
unkown
|
page read and write
|
||
24666476000
|
unkown
|
page read and write
|
||
7FF52FCF8000
|
unkown image
|
page readonly
|
||
7FF557278000
|
unkown image
|
page readonly
|
||
7FF50C0CB000
|
unkown image
|
page readonly
|
||
1FF031A0000
|
unkown image
|
page readonly
|
||
7FF557284000
|
unkown image
|
page readonly
|
||
7FF52FFA9000
|
unkown image
|
page readonly
|
||
47C87B000
|
unkown
|
page read and write
|
||
24666459000
|
unkown
|
page read and write
|
||
47D07E000
|
unkown
|
page read and write
|
||
74539E000
|
unkown
|
page read and write
|
||
E5706F7000
|
unkown
|
page read and write
|
||
2B0BEE30000
|
unkown
|
page read and write
|
||
E2F04FF000
|
unkown
|
page read and write
|
||
2BDFD118000
|
unkown
|
page read and write
|
||
7FF52E5DC000
|
unkown image
|
page readonly
|
||
2BDFC6C0000
|
unkown image
|
page readonly
|
||
7FF5D07A5000
|
unkown image
|
page readonly
|
||
E2EFD1C000
|
unkown
|
page read and write
|
||
7FF5572A1000
|
unkown image
|
page readonly
|
||
7FF50269A000
|
unkown image
|
page readonly
|
||
7FF52E5F4000
|
unkown image
|
page readonly
|
||
7FF52DB94000
|
unkown image
|
page readonly
|
||
24666413000
|
unkown
|
page read and write
|
||
199DA63C000
|
unkown
|
page read and write
|
||
2B0BEE75000
|
unkown
|
page read and write
|
||
1D89A853000
|
unkown
|
page read and write
|
||
1210BE00000
|
unkown
|
page read and write
|
||
BB4BDCE000
|
unkown
|
page read and write
|
||
1F559602000
|
unkown
|
page read and write
|
||
1210C732000
|
unkown
|
page read and write
|
||
7DF52FB20000
|
unkown image
|
page readonly
|
||
7DF5FB860000
|
unkown image
|
page readonly
|
||
7FF52FFEC000
|
unkown image
|
page readonly
|
||
2BDFDEDE000
|
unkown
|
page read and write
|
||
24666466000
|
unkown
|
page read and write
|
||
199DA68B000
|
unkown
|
page read and write
|
||
7FF502863000
|
unkown image
|
page readonly
|
||
7DF5587B0000
|
unkown image
|
page readonly
|
||
BB4C0FB000
|
unkown
|
page read and write
|
||
7FF502780000
|
unkown image
|
page readonly
|
||
7FF50236C000
|
unkown image
|
page readonly
|
||
7FF52FE61000
|
unkown image
|
page readonly
|
||
7FF55CBBD000
|
unkown image
|
page readonly
|
||
7FF55C973000
|
unkown image
|
page readonly
|
||
2B0BEE2D000
|
unkown
|
page read and write
|
||
1D89A6E0000
|
unkown image
|
page readonly
|
||
1DF38C60000
|
unkown image
|
page readonly
|
||
1F559540000
|
unkown image
|
page readonly
|
||
7DF5587C2000
|
unkown image
|
page readonly
|
||
7FF5D0690000
|
unkown image
|
page readonly
|
||
2B0BEE29000
|
unkown
|
page read and write
|
||
7FF5D079C000
|
unkown image
|
page readonly
|
||
1D89B000000
|
unkown
|
page read and write
|
||
7FF502784000
|
unkown image
|
page readonly
|
||
7FF5025C2000
|
unkown image
|
page readonly
|
||
2B0BEE59000
|
unkown
|
page read and write
|
||
2B0BEE49000
|
unkown
|
page read and write
|
||
1D89A6F0000
|
unkown image
|
page readonly
|
||
7FF55CC01000
|
unkown image
|
page readonly
|
||
7FF50C2AC000
|
unkown image
|
page readonly
|
||
1FF0329C000
|
unkown
|
page read and write
|
||
199DA4F0000
|
unkown image
|
page readonly
|
||
7FF543949000
|
unkown image
|
page readonly
|
||
7FF55CC49000
|
unkown image
|
page readonly
|
||
7FF5026A0000
|
unkown image
|
page readonly
|
||
7DF5D1C20000
|
unkown image
|
page readonly
|
||
24666C02000
|
unkown
|
page read and write
|
||
7FF50C2BF000
|
unkown image
|
page readonly
|
||
7FF50C2E1000
|
unkown image
|
page readonly
|
||
E5704FC000
|
unkown
|
page read and write
|
||
2B0BEE50000
|
unkown
|
page read and write
|
||
7DF50D812000
|
unkown image
|
page readonly
|
||
7FF5CFC88000
|
unkown image
|
page readonly
|
||
1F55966A000
|
unkown
|
page read and write
|
||
1210BD30000
|
unkown image
|
page readonly
|
||
1FF031F0000
|
heap default
|
page read and write
|
||
7FF50C296000
|
unkown image
|
page readonly
|
||
2BDFC871000
|
unkown
|
page read and write
|
||
1D89A5B0000
|
unkown image
|
page readonly
|
||
7FF5D055B000
|
unkown image
|
page readonly
|
||
7DF5587D0000
|
unkown image
|
page readonly
|
||
7FF5438F0000
|
unkown image
|
page readonly
|
||
1FF03860000
|
unkown image
|
page readonly
|
||
7FF52FE19000
|
unkown image
|
page readonly
|
||
7DF503CD0000
|
unkown image
|
page readonly
|
||
199DA3E0000
|
unkown image
|
page readonly
|
||
7FF52E231000
|
unkown image
|
page readonly
|
||
7FF542E97000
|
unkown image
|
page readonly
|
||
B4C70FD000
|
unkown
|
page read and write
|
||
E2F02FE000
|
unkown
|
page read and write
|
||
7FF50C3B3000
|
unkown image
|
page readonly
|
||
7FF5027B5000
|
unkown image
|
page readonly
|
||
2BDFDEA7000
|
unkown
|
page read and write
|
||
1D89A825000
|
unkown
|
page read and write
|
||
7FF5D06E1000
|
unkown image
|
page readonly
|
||
1DF38700000
|
unkown
|
page read and write
|
||
7DF52FB30000
|
unkown image
|
page readonly
|
||
7FF557363000
|
unkown image
|
page readonly
|
||
1FF03250000
|
unkown
|
page read and write
|
||
7FF5D049D000
|
unkown image
|
page readonly
|
||
7FF55725C000
|
unkown image
|
page readonly
|
||
7FF50C322000
|
unkown image
|
page readonly
|
||
7DF5587B2000
|
unkown image
|
page readonly
|
||
2BDFC88F000
|
unkown
|
page read and write
|
||
2BDFF000000
|
unkown
|
page read and write
|
||
2B0BEE48000
|
unkown
|
page read and write
|
||
1DF388D0000
|
unkown image
|
page readonly
|
||
2BDFDEE5000
|
unkown
|
page read and write
|
||
7DF544E30000
|
unkown image
|
page readonly
|
||
7DF55E140000
|
unkown image
|
page readonly
|
||
7FF5D05C0000
|
unkown image
|
page readonly
|
||
7DF5587C2000
|
unkown image
|
page readonly
|
||
7DF5587B2000
|
unkown image
|
page readonly
|
||
24666502000
|
unkown
|
page read and write
|
||
7FF55C19F000
|
unkown image
|
page readonly
|
||
7DF52FB30000
|
unkown image
|
page readonly
|
||
7FF5026DC000
|
unkown image
|
page readonly
|
||
7FF54359D000
|
unkown image
|
page readonly
|
||
1210BD50000
|
unkown image
|
page readonly
|
||
7FF50C336000
|
unkown image
|
page readonly
|
||
7FF55CC56000
|
unkown image
|
page readonly
|
||
7DF5314C2000
|
unkown image
|
page readonly
|
||
199DA410000
|
heap default
|
page read and write
|
||
7FF5572B5000
|
unkown image
|
page readonly
|
||
FE31FE000
|
unkown
|
page read and write
|
||
7FF52E625000
|
unkown image
|
page readonly
|
||
2BDFCD90000
|
unkown image
|
page readonly
|
||
1DF38570000
|
heap private
|
page read and write
|
||
1FF031D0000
|
unkown image
|
page readonly
|
||
1FF031C0000
|
unkown image
|
page readonly
|
||
2B0BF602000
|
unkown
|
page read and write
|
||
7FF5D06BF000
|
unkown image
|
page readonly
|
||
74531B000
|
unkown
|
page read and write
|
||
7FF557291000
|
unkown image
|
page readonly
|
||
7FF50C069000
|
unkown image
|
page readonly
|
||
2BDFDC70000
|
unkown
|
page read and write
|
||
7DF5587C0000
|
unkown image
|
page readonly
|
||
1D89AD90000
|
unkown
|
page read and write
|
||
7DF5314E0000
|
unkown image
|
page readonly
|
||
7FF52E3AA000
|
unkown image
|
page readonly
|
||
7FF502863000
|
unkown image
|
page readonly
|
||
7FF543539000
|
unkown image
|
page readonly
|
||
7FF52FF7B000
|
unkown image
|
page readonly
|
||
24666513000
|
unkown
|
page read and write
|
||
2BDFC813000
|
unkown
|
page read and write
|
||
7FF5438DC000
|
unkown image
|
page readonly
|
||
7458FF000
|
unkown
|
page read and write
|
||
7FF502778000
|
unkown image
|
page readonly
|
||
7DF5FB870000
|
unkown image
|
page readonly
|
||
7FF5D04E5000
|
unkown image
|
page readonly
|
||
2BDFDDA0000
|
unkown
|
page read and write
|
||
7DF5D1C00000
|
unkown image
|
page readonly
|
||
7FF55CAEA000
|
unkown image
|
page readonly
|
||
BB4CBFE000
|
unkown
|
page read and write
|
||
2BDFD870000
|
unkown image
|
page readonly
|
||
7FF5D0674000
|
unkown image
|
page readonly
|
||
2BDFCC00000
|
unkown image
|
page readonly
|
||
7DF5D1C10000
|
unkown image
|
page readonly
|
||
7FF50C305000
|
unkown image
|
page readonly
|
||
7DF5FB850000
|
unkown image
|
page readonly
|
||
2B0BEE7B000
|
unkown
|
page read and write
|
||
7FF5D0722000
|
unkown image
|
page readonly
|
||
2B0BEE78000
|
unkown
|
page read and write
|
||
7FF5572E6000
|
unkown image
|
page readonly
|
||
7FF543528000
|
unkown image
|
page readonly
|
||
7FF55C4BF000
|
unkown image
|
page readonly
|
||
7FF52FFC5000
|
unkown image
|
page readonly
|
||
7FF50C274000
|
unkown image
|
page readonly
|
||
7FF5027F4000
|
unkown image
|
page readonly
|
||
1210BD10000
|
unkown image
|
page read and write
|
||
2BDFD740000
|
unkown
|
page read and write
|
||
2B0BF0D0000
|
unkown image
|
page readonly
|
||
7FF5D057D000
|
unkown image
|
page readonly
|
||
7FF55C83B000
|
unkown image
|
page readonly
|
||
24666360000
|
unkown image
|
page readonly
|
||
2B0BEDC0000
|
unkown
|
page read and write
|
||
7FF5FA3F6000
|
unkown image
|
page readonly
|
||
7FF5F9B4E000
|
unkown image
|
page readonly
|
||
1FF03300000
|
unkown
|
page read and write
|
||
7DF52FB40000
|
unkown image
|
page readonly
|
||
7FF543870000
|
unkown image
|
page readonly
|
||
7FF5439D3000
|
unkown image
|
page readonly
|
||
7FF55CBE5000
|
unkown image
|
page readonly
|
||
7FF52FE3D000
|
unkown image
|
page readonly
|
||
745FFE000
|
unkown
|
page read and write
|
||
1F55967B000
|
unkown
|
page read and write
|
||
7FF543883000
|
unkown image
|
page readonly
|
||
7FF52E54C000
|
unkown image
|
page readonly
|
||
7FF5D0324000
|
unkown image
|
page readonly
|
||
2BDFE0C0000
|
unkown
|
page read and write
|
||
7DF5FB850000
|
unkown image
|
page readonly
|
||
1F559500000
|
unkown image
|
page read and write
|
||
2BDFE0A0000
|
unkown
|
page read and write
|
||
7FF52E5B5000
|
unkown image
|
page readonly
|
||
1FF031A0000
|
unkown image
|
page readonly
|
||
24666A60000
|
unkown image
|
page readonly
|
||
1FF03180000
|
unkown image
|
page read and write
|
||
7FF55CC42000
|
unkown image
|
page readonly
|
||
7FF530004000
|
unkown image
|
page readonly
|
||
1DF38580000
|
unkown image
|
page readonly
|
||
7FF543925000
|
unkown image
|
page readonly
|
||
1FF03302000
|
unkown
|
page read and write
|
||
7FF502651000
|
unkown image
|
page readonly
|
||
2BDFDEFB000
|
unkown
|
page read and write
|
||
1DF38580000
|
unkown image
|
page readonly
|
||
7FF52FFB1000
|
unkown image
|
page readonly
|
||
7FF5D0705000
|
unkown image
|
page readonly
|
||
2BDFDEFA000
|
unkown
|
page read and write
|
||
1DF385D0000
|
heap default
|
page read and write
|
||
E57097F000
|
unkown
|
page read and write
|
||
199DA64C000
|
unkown
|
page read and write
|
||
7FF52E649000
|
unkown image
|
page readonly
|
||
7FF5FA088000
|
unkown image
|
page readonly
|
||
7FF55681E000
|
unkown image
|
page readonly
|
||
7FF5438F4000
|
unkown image
|
page readonly
|
||
7FF50C331000
|
unkown image
|
page readonly
|
||
7FF5FA389000
|
unkown image
|
page readonly
|
||
1DF3A180000
|
unkown
|
page read and write
|
||
24666A50000
|
unkown image
|
page readonly
|
||
7459FE000
|
unkown
|
page read and write
|
||
7FF52FB7C000
|
unkown image
|
page readonly
|
||
1210BE66000
|
unkown
|
page read and write
|
||
1210BEE2000
|
unkown
|
page read and write
|
||
2BDFDBD0000
|
unkown
|
page read and write
|
||
47CFFE000
|
unkown
|
page read and write
|
||
7DF503CD0000
|
unkown image
|
page readonly
|
||
7FF55CCB6000
|
unkown image
|
page readonly
|
||
7FF52FDD2000
|
unkown image
|
page readonly
|
||
2BDFDE4D000
|
unkown
|
page read and write
|
||
2BDFDF00000
|
unkown
|
page read and write
|
||
7FF5572D9000
|
unkown image
|
page readonly
|
||
199DAC02000
|
unkown
|
page read and write
|
||
7FF50C31C000
|
unkown image
|
page readonly
|
||
7FF5438CC000
|
unkown image
|
page readonly
|
||
7FF5F98BA000
|
unkown image
|
page readonly
|
||
7FF543951000
|
unkown image
|
page readonly
|
||
7FF52E601000
|
unkown image
|
page readonly
|
||
7FF52FFDC000
|
unkown image
|
page readonly
|
||
7DFCDAFD2000
|
unkown image
|
page readonly
|
||
1FF036D0000
|
unkown image
|
page readonly
|
||
7FF55C839000
|
unkown image
|
page readonly
|
||
7FF55CC3C000
|
unkown image
|
page readonly
|
||
1F037FF000
|
unkown
|
page read and write
|
||
246666D0000
|
unkown image
|
page readonly
|
||
2BDFC83E000
|
unkown
|
page read and write
|
||
1D89AD90000
|
unkown
|
page read and write
|
||
1DF38662000
|
unkown
|
page read and write
|
||
7FF55CCBC000
|
unkown image
|
page readonly
|
||
7DF45BFF0000
|
unkown image
|
page readonly
|
||
7FF557245000
|
unkown image
|
page readonly
|
||
2BDFDC60000
|
unkown
|
page read and write
|
||
EC8AEFA000
|
unkown
|
page read and write
|
||
7FF5FA372000
|
unkown image
|
page readonly
|
||
745DFF000
|
unkown
|
page read and write
|
||
2B0BEE85000
|
unkown
|
page read and write
|
||
1F559600000
|
unkown
|
page read and write
|
||
1DF3A180000
|
unkown
|
page read and write
|
||
EC8ADFD000
|
unkown
|
page read and write
|
||
7DF5D1C00000
|
unkown image
|
page readonly
|
||
7DF5D1C10000
|
unkown image
|
page readonly
|
||
7DF544E40000
|
unkown image
|
page readonly
|
||
7FF5FA320000
|
unkown image
|
page readonly
|
||
1FF0327D000
|
unkown
|
page read and write
|
||
7FF52FEB0000
|
unkown image
|
page readonly
|
||
47CDFF000
|
unkown
|
page read and write
|
||
EC8B1FB000
|
unkown
|
page read and write
|
||
E5700FB000
|
unkown
|
page read and write
|
||
2BDFDE0E000
|
unkown
|
page read and write
|
||
7FF557115000
|
unkown image
|
page readonly
|
||
E57077F000
|
unkown
|
page read and write
|
||
2B0BED60000
|
unkown image
|
page readonly
|
||
47C97E000
|
unkown
|
page read and write
|
||
7FF52E5CB000
|
unkown image
|
page readonly
|
||
24666441000
|
unkown
|
page read and write
|
||
199DAB80000
|
unkown image
|
page readonly
|
||
2BDFDDB4000
|
unkown
|
page read and write
|
||
7FF5D0319000
|
unkown image
|
page readonly
|
||
7FF52E3BC000
|
unkown image
|
page readonly
|
||
7FF5FA315000
|
unkown image
|
page readonly
|
||
246668D0000
|
unkown image
|
page readonly
|
||
7FF52E4E5000
|
unkown image
|
page readonly
|
||
1F559550000
|
unkown image
|
page readonly
|
||
7FF557355000
|
unkown image
|
page readonly
|
||
EC8A89B000
|
unkown
|
page read and write
|
||
7FF5570C2000
|
unkown image
|
page readonly
|
||
2BDFDF04000
|
unkown
|
page read and write
|
||
7FF5572D2000
|
unkown image
|
page readonly
|
||
2B0BEE44000
|
unkown
|
page read and write
|
||
2BDFD100000
|
unkown
|
page read and write
|
||
2BDFC800000
|
unkown
|
page read and write
|
||
7FF530056000
|
unkown image
|
page readonly
|
||
7FF52F7B7000
|
unkown image
|
page readonly
|
||
7FF50C2D4000
|
unkown image
|
page readonly
|
||
B4C767D000
|
unkown
|
page read and write
|
||
2BDFCFE1000
|
unkown
|
page read and write
|
||
7FF55CA3A000
|
unkown image
|
page readonly
|
||
2BDFC893000
|
unkown
|
page read and write
|
||
7FF5D06E9000
|
unkown image
|
page readonly
|
||
1F032FE000
|
unkown
|
page read and write
|
||
BB4C7FE000
|
unkown
|
page read and write
|
||
1DF38729000
|
unkown
|
page read and write
|
||
BB4C6FE000
|
unkown
|
page read and write
|
||
1FF03229000
|
unkown
|
page read and write
|
||
EC8B27E000
|
unkown
|
page read and write
|
||
7FF5FA394000
|
unkown image
|
page readonly
|
||
1F559628000
|
unkown
|
page read and write
|
||
47CC7F000
|
unkown
|
page read and write
|
||
7FF55726F000
|
unkown image
|
page readonly
|
||
7FF5D06D4000
|
unkown image
|
page readonly
|
||
2B0BED90000
|
heap default
|
page read and write
|
||
B4C777C000
|
unkown
|
page read and write
|
||
7FF530073000
|
unkown image
|
page readonly
|
||
7FF5FA37C000
|
unkown image
|
page readonly
|
||
2B0BEE4B000
|
unkown
|
page read and write
|
||
2B0BEE6A000
|
unkown
|
page read and write
|
||
2BDFDE2C000
|
unkown
|
page read and write
|
||
EC8A91E000
|
unkown
|
page read and write
|
||
FE2EFE000
|
unkown
|
page read and write
|
||
7FF52E664000
|
unkown image
|
page readonly
|
||
2BDFDC50000
|
unkown
|
page read and write
|
||
1D89A813000
|
unkown
|
page read and write
|
||
7FF543901000
|
unkown image
|
page readonly
|
||
2B0BEE40000
|
unkown
|
page read and write
|
||
1DF385E0000
|
unkown image
|
page readonly
|
||
1D89A5E0000
|
unkown image
|
page readonly
|
||
7FF55726B000
|
unkown image
|
page readonly
|
||
7DF55E120000
|
unkown image
|
page readonly
|
||
2BDFDD91000
|
unkown
|
page read and write
|
||
7FF55CBCC000
|
unkown image
|
page readonly
|
||
E57017D000
|
unkown
|
page read and write
|
||
7FF50C2BB000
|
unkown image
|
page readonly
|
||
2BDFDD78000
|
unkown
|
page read and write
|
||
7FF55CBF0000
|
unkown image
|
page readonly
|
||
199DA708000
|
unkown
|
page read and write
|
||
1210BD80000
|
heap default
|
page read and write
|
||
199DA3F0000
|
unkown image
|
page readonly
|
||
7FF52E5A4000
|
unkown image
|
page readonly
|
||
1210BEC5000
|
unkown
|
page read and write
|
||
7DF5587B0000
|
unkown image
|
page readonly
|
||
1DF3A100000
|
unkown
|
page read and write
|
||
7DF55E120000
|
unkown image
|
page readonly
|
||
7FF5439B6000
|
unkown image
|
page readonly
|
||
2BDFC879000
|
unkown
|
page read and write
|
||
7FF5D062C000
|
unkown image
|
page readonly
|
||
199DA66B000
|
unkown
|
page read and write
|
||
7FF556824000
|
unkown image
|
page readonly
|
||
EC8B37F000
|
unkown
|
page read and write
|
||
1F559625000
|
unkown
|
page read and write
|
||
7FF5570F5000
|
unkown image
|
page readonly
|
||
7FF54393B000
|
unkown image
|
page readonly
|
||
1D89A5A0000
|
heap private
|
page read and write
|
||
7DF52FB20000
|
unkown image
|
page readonly
|
||
2BDFD850000
|
unkown image
|
page readonly
|
||
7FF55CCD3000
|
unkown image
|
page readonly
|
||
EC8B6FD000
|
unkown
|
page read and write
|
||
7FF530066000
|
unkown image
|
page readonly
|
||
E57087F000
|
unkown
|
page read and write
|
||
EC8AFFF000
|
unkown
|
page read and write
|
||
1DF3864A000
|
unkown
|
page read and write
|
||
7DF50D810000
|
unkown image
|
page readonly
|
||
FE2E7B000
|
unkown
|
page read and write
|
||
7FF5D05A1000
|
unkown image
|
page readonly
|
||
2BDFC6A0000
|
unkown image
|
page read and write
|
||
7FF52E6C5000
|
unkown image
|
page readonly
|
||
7FF50C2C8000
|
unkown image
|
page readonly
|
||
B4C747E000
|
unkown
|
page read and write
|
||
199DA67F000
|
unkown
|
page read and write
|
||
1F559613000
|
unkown
|
page read and write
|
||
7FF5D06C5000
|
unkown image
|
page readonly
|
||
7DF5314E0000
|
unkown image
|
page readonly
|
||
745CFD000
|
unkown
|
page read and write
|
||
7FF5D0661000
|
unkown image
|
page readonly
|
||
7FF543881000
|
unkown image
|
page readonly
|
||
1210BD20000
|
heap private
|
page read and write
|
||
7FF50C39C000
|
unkown image
|
page readonly
|
||
2B0BEE76000
|
unkown
|
page read and write
|
||
7DF544E22000
|
unkown image
|
page readonly
|
||
1FF03308000
|
unkown
|
page read and write
|
||
7FF557054000
|
unkown image
|
page readonly
|
||
2BDFC87B000
|
unkown
|
page read and write
|
||
7FF52FB76000
|
unkown image
|
page readonly
|
||
7FF55C828000
|
unkown image
|
page readonly
|
||
EC8B2FF000
|
unkown
|
page read and write
|
||
7FF502609000
|
unkown image
|
page readonly
|
||
7FF50C065000
|
unkown image
|
page readonly
|
||
199DA702000
|
unkown
|
page read and write
|
||
7DF50D812000
|
unkown image
|
page readonly
|
||
1FF0323C000
|
unkown
|
page read and write
|
||
BB4BD4D000
|
unkown
|
page read and write
|
||
7DF5FB862000
|
unkown image
|
page readonly
|
||
199DA629000
|
unkown
|
page read and write
|
||
2BDFD002000
|
unkown
|
page read and write
|
||
7FF52E563000
|
unkown image
|
page readonly
|
||
7FF5D0346000
|
unkown image
|
page readonly
|
||
B4C787E000
|
unkown
|
page read and write
|
||
7FF50C2D0000
|
unkown image
|
page readonly
|
||
2BDFDE00000
|
unkown
|
page read and write
|
||
7FF5D06D0000
|
unkown image
|
page readonly
|
||
BB4C9FE000
|
unkown
|
page read and write
|
||
1F034FE000
|
unkown
|
page read and write
|
||
EC8B4FF000
|
unkown
|
page read and write
|
||
7FF54353B000
|
unkown image
|
page readonly
|
||
1210C460000
|
unkown image
|
page readonly
|
||
2BDFDDE0000
|
unkown
|
page read and write
|
||
2B0BEE60000
|
unkown
|
page read and write
|
||
1F559666000
|
unkown
|
page read and write
|
||
24666380000
|
unkown image
|
page readonly
|
||
7FF52E609000
|
unkown image
|
page readonly
|
||
2B0BEE47000
|
unkown
|
page read and write
|
||
7FF52E5DF000
|
unkown image
|
page readonly
|
||
7FF55C429000
|
unkown image
|
page readonly
|
||
7FF52E29D000
|
unkown image
|
page readonly
|
||
7FF5D0548000
|
unkown image
|
page readonly
|
||
7DF52FB22000
|
unkown image
|
page readonly
|
||
24666400000
|
unkown
|
page read and write
|
||
7FF55CBDF000
|
unkown image
|
page readonly
|
||
2B0BED40000
|
unkown image
|
page readonly
|
||
FE34FF000
|
unkown
|
page read and write
|
||
7FF55CA32000
|
unkown image
|
page readonly
|
||
2BDFD000000
|
unkown
|
page read and write
|
||
246663B0000
|
heap default
|
page read and write
|
||
2BDFDDB0000
|
unkown
|
page read and write
|
||
7FF5D037D000
|
unkown image
|
page readonly
|
||
7FF52FFE9000
|
unkown image
|
page readonly
|
||
7DF5FB852000
|
unkown image
|
page readonly
|
||
1D89A858000
|
unkown
|
page read and write
|
||
2B0BEE41000
|
unkown
|
page read and write
|
||
7DF503CB2000
|
unkown image
|
page readonly
|
||
199DA613000
|
unkown
|
page read and write
|
||
2BDFCE70000
|
unkown
|
page read and write
|
||
2B0BEE00000
|
unkown
|
page read and write
|
||
7FF502366000
|
unkown image
|
page readonly
|
||
7DF55E122000
|
unkown image
|
page readonly
|
||
2BDFDEAF000
|
unkown
|
page read and write
|
||
1210BE64000
|
unkown
|
page read and write
|
||
7FF5D0560000
|
unkown image
|
page readonly
|
||
7FF50C112000
|
unkown image
|
page readonly
|
||
2BDFC913000
|
unkown
|
page read and write
|
||
2B0BEE4F000
|
unkown
|
page read and write
|
||
2B0BED20000
|
unkown image
|
page read and write
|
||
24666429000
|
unkown
|
page read and write
|
||
7DF50D802000
|
unkown image
|
page readonly
|
||
E2EFD9E000
|
unkown
|
page read and write
|
||
7FF5D054B000
|
unkown image
|
page readonly
|
||
1D89AD80000
|
unkown image
|
page readonly
|
||
2BDFD102000
|
unkown
|
page read and write
|
||
1FF03313000
|
unkown
|
page read and write
|
||
7FF557029000
|
unkown image
|
page readonly
|
||
7FF50C3A5000
|
unkown image
|
page readonly
|
||
7FF55C41E000
|
unkown image
|
page readonly
|
||
7DF52FB40000
|
unkown image
|
page readonly
|
||
199DA600000
|
unkown
|
page read and write
|
||
7FF5D04A4000
|
unkown image
|
page readonly
|
||
7FF50C329000
|
unkown image
|
page readonly
|
||
7FF5027E6000
|
unkown image
|
page readonly
|
||
7FF52E5F0000
|
unkown image
|
page readonly
|
||
1210C530000
|
unkown image
|
page write copy
|
||
7FF55C8AA000
|
unkown image
|
page readonly
|
||
7FF5439C5000
|
unkown image
|
page readonly
|
||
7FF52FF6C000
|
unkown image
|
page readonly
|
||
7DF544E20000
|
unkown image
|
page readonly
|
||
E5705FB000
|
unkown
|
page read and write
|
||
2BDFDF02000
|
unkown
|
page read and write
|
||
1DF3868D000
|
unkown
|
page read and write
|
||
7FF55704D000
|
unkown image
|
page readonly
|
||
1DF38560000
|
unkown image
|
page read and write
|
||
74567D000
|
unkown
|
page read and write
|
||
1210BE29000
|
unkown
|
page read and write
|
||
7DF5314C0000
|
unkown image
|
page readonly
|
||
7FF52FEAA000
|
unkown image
|
page readonly
|
||
2B0BEE6E000
|
unkown
|
page read and write
|
||
7FF55702F000
|
unkown image
|
page readonly
|
||
7DF544E20000
|
unkown image
|
page readonly
|
||
2BDFD113000
|
unkown
|
page read and write
|
||
7FF50262D000
|
unkown image
|
page readonly
|
||
E2F007E000
|
unkown
|
page read and write
|
||
2BDFD201000
|
unkown
|
page read and write
|
||
1210BECF000
|
unkown
|
page read and write
|
||
7FF52E5C9000
|
unkown image
|
page readonly
|
||
7FF5FA3E6000
|
unkown image
|
page readonly
|
||
199DA3B0000
|
heap private
|
page read and write
|
||
2BDFC829000
|
unkown
|
page read and write
|
||
1210BD60000
|
unkown image
|
page readonly
|
||
1DF38713000
|
unkown
|
page read and write
|
||
7FF5D0695000
|
unkown image
|
page readonly
|
||
1DF38702000
|
unkown
|
page read and write
|
||
7FF55CA65000
|
unkown image
|
page readonly
|
||
7FF5FA379000
|
unkown image
|
page readonly
|
||
1D89AC00000
|
unkown image
|
page readonly
|
||
2BDFDD70000
|
unkown
|
page read and write
|
||
BB4C2FD000
|
unkown
|
page read and write
|
||
246663C0000
|
unkown image
|
page readonly
|
||
74577C000
|
unkown
|
page read and write
|
||
7FF55CB63000
|
unkown image
|
page readonly
|
||
1210C602000
|
unkown
|
page read and write
|
||
1D89A7D0000
|
unkown
|
page read and write
|
||
2BDFC8BC000
|
unkown
|
page read and write
|
||
2BDFE120000
|
unkown
|
page read and write
|
||
7FF50C396000
|
unkown image
|
page readonly
|
||
7DF5FB870000
|
unkown image
|
page readonly
|
||
7FF52FF7F000
|
unkown image
|
page readonly
|
||
7FF557299000
|
unkown image
|
page readonly
|
||
1FF03200000
|
unkown
|
page read and write
|
||
7DF55E130000
|
unkown image
|
page readonly
|
||
1DF38613000
|
unkown
|
page read and write
|
||
B4C797E000
|
unkown
|
page read and write
|
||
1D89A600000
|
heap default
|
page read and write
|
||
1DF38C50000
|
unkown image
|
page readonly
|
||
7FF5438E8000
|
unkown image
|
page readonly
|
||
BB4CAFF000
|
unkown
|
page read and write
|
||
7FF502856000
|
unkown image
|
page readonly
|
||
7FF543956000
|
unkown image
|
page readonly
|
||
7FF543699000
|
unkown image
|
page readonly
|
||
2BDFD860000
|
unkown image
|
page readonly
|
||
1D89A802000
|
unkown
|
page read and write
|
||
199DA800000
|
unkown image
|
page readonly
|
||
7DF544E32000
|
unkown image
|
page readonly
|
||
2B0BEE2E000
|
unkown
|
page read and write
|
||
7FF55CAE5000
|
unkown image
|
page readonly
|
||
7DF5FB862000
|
unkown image
|
page readonly
|
||
2BD80000000
|
unkown
|
page read and write
|
||
1210BE8B000
|
unkown
|
page read and write
|
||
7DF55E140000
|
unkown image
|
page readonly
|
||
7FF5D047F000
|
unkown image
|
page readonly
|
||
7FF52E432000
|
unkown image
|
page readonly
|
||
EC8B7FE000
|
unkown
|
page read and write
|
||
1FF0324A000
|
unkown
|
page read and write
|
||
199DAA00000
|
unkown image
|
page readonly
|
||
7FF52FFE2000
|
unkown image
|
page readonly
|
||
7FF52E656000
|
unkown image
|
page readonly
|
||
7FF55CBDC000
|
unkown image
|
page readonly
|
||
FE317B000
|
unkown
|
page read and write
|
||
2BDFDEF1000
|
unkown
|
page read and write
|
||
2B0BEDA0000
|
unkown image
|
page readonly
|
||
1DF3A740000
|
unkown image
|
page write copy
|
||
1FF03190000
|
heap private
|
page read and write
|
||
2BDFC88D000
|
unkown
|
page read and write
|
||
7FF5027DC000
|
unkown image
|
page readonly
|
||
7FF52FF90000
|
unkown image
|
page readonly
|
||
1DF3A090000
|
unkown
|
page read and write
|
||
7FF5D068C000
|
unkown image
|
page readonly
|
||
7FF54373A000
|
unkown image
|
page readonly
|
||
24666340000
|
unkown image
|
page read and write
|
||
7DF55E132000
|
unkown image
|
page readonly
|
||
7FF50C280000
|
unkown image
|
page readonly
|
||
1FF034D0000
|
unkown image
|
page readonly
|
||
2BDFDBE0000
|
unkown
|
page read and write
|
||
7FF5027D2000
|
unkown image
|
page readonly
|
||
7FF502846000
|
unkown image
|
page readonly
|
||
EC8ACF7000
|
unkown
|
page read and write
|
||
7FF55CBF4000
|
unkown image
|
page readonly
|
||
7FF52FF85000
|
unkown image
|
page readonly
|
||
1210C450000
|
unkown image
|
page readonly
|
||
1DF3865A000
|
unkown
|
page read and write
|
||
47CEFD000
|
unkown
|
page read and write
|
||
24666360000
|
unkown image
|
page readonly
|
||
2BDFC6B0000
|
heap private
|
page read and write
|
||
7FF50C2C1000
|
unkown image
|
page readonly
|
||
1D89A800000
|
unkown
|
page read and write
|
||
7FF55C1A3000
|
unkown image
|
page readonly
|
||
E2F03FF000
|
unkown
|
page read and write
|
||
7FF5FA403000
|
unkown image
|
page readonly
|
||
7FF5D0478000
|
unkown image
|
page readonly
|
||
7FF52E49E000
|
unkown image
|
page readonly
|
||
7FF5FA355000
|
unkown image
|
page readonly
|
||
7FF5D06C8000
|
unkown image
|
page readonly
|
||
7DF5587C0000
|
unkown image
|
page readonly
|
||
2BDFDDA0000
|
unkown
|
page read and write
|
||
7FF50276F000
|
unkown image
|
page readonly
|
||
2BDFD820000
|
unkown image
|
page readonly
|
||
7FF502635000
|
unkown image
|
page readonly
|
||
7FF5FA162000
|
unkown image
|
page readonly
|
||
7FF52E5C0000
|
unkown image
|
page readonly
|
||
7FF5D07B3000
|
unkown image
|
page readonly
|
||
1F559652000
|
unkown
|
page read and write
|
||
24666350000
|
heap private
|
page read and write
|
||
1210C0D0000
|
unkown image
|
page readonly
|
||
7FF55CCD3000
|
unkown image
|
page readonly
|
||
7FF5D0744000
|
unkown image
|
page readonly
|
||
7FF5027D9000
|
unkown image
|
page readonly
|
||
1F036FF000
|
unkown
|
page read and write
|
||
7DF544E30000
|
unkown image
|
page readonly
|
||
1F559713000
|
unkown
|
page read and write
|
||
1210BD90000
|
unkown image
|
page readonly
|
||
7DF503CC0000
|
unkown image
|
page readonly
|
||
2BDFD015000
|
unkown
|
page read and write
|
||
47C8FE000
|
unkown
|
page read and write
|
||
1FF032A0000
|
unkown
|
page read and write
|
||
7FF5CFEF5000
|
unkown image
|
page readonly
|
||
2BDFC6F0000
|
unkown image
|
page readonly
|
||
2B0BEE13000
|
unkown
|
page read and write
|
||
7DF52FB32000
|
unkown image
|
page readonly
|
||
2BDFCA00000
|
unkown image
|
page readonly
|
||
7FF557151000
|
unkown image
|
page readonly
|
||
7FF54379D000
|
unkown image
|
page readonly
|
||
1F559510000
|
heap private
|
page read and write
|
||
7FF5D04AF000
|
unkown image
|
page readonly
|
||
7DF5314D0000
|
unkown image
|
page readonly
|
||
2BDFDEE9000
|
unkown
|
page read and write
|
||
7DF5314D2000
|
unkown image
|
page readonly
|
||
1DF38677000
|
unkown
|
page read and write
|
||
1D89A5D0000
|
unkown image
|
page readonly
|
||
1D89AE02000
|
unkown
|
page read and write
|
||
7FF55CCC6000
|
unkown image
|
page readonly
|
||
7DF5D1C02000
|
unkown image
|
page readonly
|
||
7FF557280000
|
unkown image
|
page readonly
|
||
7FF502799000
|
unkown image
|
page readonly
|
||
7FF502775000
|
unkown image
|
page readonly
|
||
1F559AD0000
|
unkown image
|
page readonly
|
||
199DA64F000
|
unkown
|
page read and write
|
||
2BDFC876000
|
unkown
|
page read and write
|
||
7FF52E5E5000
|
unkown image
|
page readonly
|
||
2BDFD840000
|
unkown image
|
page readonly
|
||
2B0BEE46000
|
unkown
|
page read and write
|
||
1DF3862A000
|
unkown
|
page read and write
|
||
7FF5FA318000
|
unkown image
|
page readonly
|
||
7FF5572DC000
|
unkown image
|
page readonly
|
||
7DF5D1C20000
|
unkown image
|
page readonly
|
||
7FF55CBC1000
|
unkown image
|
page readonly
|
||
1F559702000
|
unkown
|
page read and write
|
||
7DF50D810000
|
unkown image
|
page readonly
|
||
1D89A590000
|
unkown image
|
page read and write
|
||
B4C71FC000
|
unkown
|
page read and write
|
||
EC8B0FA000
|
unkown
|
page read and write
|
||
B4C727E000
|
unkown
|
page read and write
|
||
7FF5D06A0000
|
unkown image
|
page readonly
|
||
7FF52E6B6000
|
unkown image
|
page readonly
|
||
2BDFC710000
|
heap default
|
page read and write
|
||
7DF50D820000
|
unkown image
|
page readonly
|
||
7FF5572CC000
|
unkown image
|
page readonly
|
||
7FF50C3B3000
|
unkown image
|
page readonly
|
||
7FF502791000
|
unkown image
|
page readonly
|
||
1D89A83D000
|
unkown
|
page read and write
|
||
7FF52E64C000
|
unkown image
|
page readonly
|
||
BB4BCCB000
|
unkown
|
page read and write
|
||
2B0BEE7F000
|
unkown
|
page read and write
|
||
7FF52FFF6000
|
unkown image
|
page readonly
|
||
47CD7D000
|
unkown
|
page read and write
|
||
2B0BEE4E000
|
unkown
|
page read and write
|
||
2B0BEE3A000
|
unkown
|
page read and write
|
||
199DA654000
|
unkown
|
page read and write
|
||
47CB7E000
|
unkown
|
page read and write
|
||
1210BD30000
|
unkown image
|
page readonly
|
||
2BDFDE40000
|
unkown
|
page read and write
|
||
2BDFDEF1000
|
unkown
|
page read and write
|
||
7FF52E6D3000
|
unkown image
|
page readonly
|
||
7FF5D0684000
|
unkown image
|
page readonly
|
||
2BDFC902000
|
unkown
|
page read and write
|
||
7FF55C875000
|
unkown image
|
page readonly
|
||
7FF52E611000
|
unkown image
|
page readonly
|
||
7FF5D04C8000
|
unkown image
|
page readonly
|
||
1FF03A02000
|
unkown
|
page read and write
|
||
1D89AA00000
|
unkown image
|
page readonly
|
||
199DA649000
|
unkown
|
page read and write
|
||
7DF52FB32000
|
unkown image
|
page readonly
|
||
7FF501FA7000
|
unkown image
|
page readonly
|
||
B4C757E000
|
unkown
|
page read and write
|
||
7FF50275C000
|
unkown image
|
page readonly
|
||
7FF5FA36C000
|
unkown image
|
page readonly
|
||
7DF55E122000
|
unkown image
|
page readonly
|
||
FE307B000
|
unkown
|
page read and write
|
||
1DF38600000
|
unkown
|
page read and write
|
||
7DF50D800000
|
unkown image
|
page readonly
|
||
7FF5024E8000
|
unkown image
|
page readonly
|
||
2B0BF2D0000
|
unkown image
|
page readonly
|
||
7DF5FB860000
|
unkown image
|
page readonly
|
||
246663E0000
|
unkown
|
page read and write
|
||
7DF544E40000
|
unkown image
|
page readonly
|
||
2BDFDE1F000
|
unkown
|
page read and write
|
||
1F038FF000
|
unkown
|
page read and write
|
||
1D89A829000
|
unkown
|
page read and write
|
||
1FF036E0000
|
unkown image
|
page readonly
|
||
7FF5D03A9000
|
unkown image
|
page readonly
|
||
7FF52FF88000
|
unkown image
|
page readonly
|
||
7FF5D07B3000
|
unkown image
|
page readonly
|
||
1DF38AD0000
|
unkown image
|
page readonly
|
||
7FF5438DF000
|
unkown image
|
page readonly
|
||
2BDFC6E0000
|
unkown image
|
page readonly
|
||
2B0BEE67000
|
unkown
|
page read and write
|
||
2BDFC6C0000
|
unkown image
|
page readonly
|
||
7DF52FB22000
|
unkown image
|
page readonly
|
||
7FF530073000
|
unkown image
|
page readonly
|
||
7FF5D03A3000
|
unkown image
|
page readonly
|
||
7FF55C99F000
|
unkown image
|
page readonly
|
||
BB4C3FE000
|
unkown
|
page read and write
|
There are 893 hidden memdumps, click here to show them.