Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\6cfdf4a7-1031-4e46-9dd0-649aef1bd4c4.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\7d6aa709-23b7-40ef-b035-2d7702ef3d12.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\90c38b83-30a9-4b15-9634-fef5c4286c6b.tmp
|
SysEx File -
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\948e7145-2417-43e2-8490-3118ca2fc9c5.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2f9ea835-dcba-4211-a36f-1db082e4bfec.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3b8fc38c-5ceb-4cca-bd97-7e1c99a65ad3.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\922a11f9-19f6-4bc2-9bf1-e00c30b39267.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9e86895b-b6bc-42de-a66b-aa7c93a5fb00.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.oldNT (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.oldu (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.oldMP (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session/ (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabs (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State} (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.oldg" (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences\* (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\578f9794-db7b-453b-80f8-0c29669b16d6.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old.u
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
Statemp (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.olde/
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\d57743c3-a1c9-44d5-84b3-0cf8c886edfd.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old1 (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b19a99ee-a64c-4efb-ace6-ef69db876807.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b51dc84e-12e1-40d7-b198-8937dbe21e29.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c0a5b173-cf58-412d-8bb7-0c14c6a394d7.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old2 (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f58b8ef2-3418-44dd-bbd4-ebac78477d78.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f7dc66da-4f99-4e08-8c59-dc648fb07ded.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old8f (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local Staten (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\c3151494-7fe6-4a9c-80c0-6a7725edab60.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\fcbc46ad-0486-40fd-912d-e8a0e9a8fd54.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5556_1820918558\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5556_1820918558\_platform_specific\x86_64\pnacl_public_pnacl_json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5556_1820918558\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5556_1820918558\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5556_1820918558\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5556_1820918558\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=7511538a3a6a0b862c772eace49075ed1bbe2377,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5556_1820918558\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5556_1820918558\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5556_1820918558\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5556_1820918558\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5556_1820918558\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=309d6d3d463e6b1b0690f39eb226b1e4c469b2ce,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5556_1820918558\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_sz_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=4b15de4ab227d5e46213978b8518d53c53ce1db9,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5556_1820918558\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5556_1820918558\manifest.json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\7a40abfb-84bf-4647-9efe-cc2fb8c11100.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\b147224f-36a6-4f55-a93f-09452f7cb66c.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\iw\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\angular.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\background_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\cast_sender.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\feedback.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\feedback.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\feedback_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\material_css_min.css
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\mirroring_cast_streaming.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\mirroring_common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\mirroring_hangouts.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\CRX_INSTALL\mirroring_webrtc.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_771033432\b147224f-36a6-4f55-a93f-09452f7cb66c.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5556_868224929\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
There are 231 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://gregory-showerss-team.adalo.com/remittance?target=9e2on9raxpckciuzgy01rr1fo¶ms=%7B%7D'
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1576,18254110611425477497,11113356978766216449,131072
--lang=en-GB --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1784 /prefetch:8
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://gregory-showerss-team.adalo.com/remittance?target=9e2on9raxpckciuzgy01rr1fo¶ms=%7B%7D
|
 |
||
|
https://gazitanks.net/access-through/PDF/Content-Length:
|
unknown
|
|
|
|
https://gazitanks.net/access-through/PDF/Sign
|
unknown
|
|
|
|
https://gazitanks.net/access-through/PDF/
|
203.169.24.24
|
|
|
|
https://gazitanks.net/access-through/PDF/
|
|
||
|
https://gazitanks.net/access-through/PDF/images/bg.jpg
|
203.169.24.24
|
|
|
|
https://dancevida.com/cgi-sys/suspendedpage.cgi
|
50.87.150.0
|
|
|
|
https://apis.google.com/js/client.js
|
unknown
|
|
|
|
https://code.jquery.com/jquery-3.2.1.slim.min.js
|
unknown
|
|
|
|
https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css)M
|
unknown
|
|
|
|
https://runtime-assets.adalo.com/static/media/adalo-circle-logo.6684fe75.svg);background-repeat:no-r
|
unknown
|
|
|
|
https://previewer.adalo.com/e96999d7-8fe6-4dd1-8928-e5c14a2fdb1a/?source=pwa
|
unknown
|
|
|
|
https://crash.corp.google.com/samples?reportid=&q=
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/report-to/apps-themes
|
unknown
|
|
|
|
https://gazitanks.net/
|
unknown
|
|
|
|
https://gregory-showerss-team.adalo.com/APP_ICON
|
54.224.90.229
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
|
unknown
|
|
|
|
https://dancevida.com/css/app.css
|
50.87.150.0
|
|
|
|
https://component-marketplace.adalo.com/@protonapp/material-components/0.0.40/runtime-0.0.40.js
|
52.222.186.93
|
|
|
|
https://preprod-hangouts-googleapis.sandbox.google.com
|
unknown
|
|
|
|
https://www.google.com
|
unknown
|
|
|
|
https://analytics.adalo.com/events
|
18.205.222.128
|
|
|
|
https://use.fontawesome.com/releases/v5.6.1/css/all.css
|
unknown
|
|
|
|
https://hangouts.google.com/hangouts/_/logpref
|
unknown
|
|
|
|
https://runtime-assets.adalo.com/
|
unknown
|
|
|
|
https://component-registry.herokuapp.com/api/libraries?names=%255B%255D&orgId=311588
|
54.243.238.66
|
|
|
|
https://creativecommons.org/publicdomain/zero/1.0/.
|
unknown
|
|
|
|
https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
|
104.18.11.207
|
|
|
|
https://stackpath.bootstrapcdn.com/
|
unknown
|
|
|
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
|
|
|
https://github.com/madler/zlib/blob/master/zlib.h
|
unknown
|
|
|
|
https://www.google.com/tools/feedback
|
unknown
|
|
|
|
https://runtime-assets.adalo.com/static/js/2.5efce39a.chunk.js
|
52.222.186.17
|
|
|
|
https://dns.google
|
unknown
|
|
|
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
|
|
|
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
|
unknown
|
|
|
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://www.google.com;
|
unknown
|
|
|
|
https://a.nel.cloudflare.com/report/v3?s=oCyE7RZjwXaDfdAO01ylEqffgAYg%2BHQOzUZpUsuMUWXLZnI%2FVEJR9aJ
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/hosted-libraries-pushers
|
unknown
|
|
|
|
https://www.google.com/images/x2.gif
|
unknown
|
|
|
|
https://proton-resources-production.imgix.net/3c5009f067fb91121bf2f9f5732ba558667224c33b8929c7b28cd52f2061e5d2.png?orient=&auto=compress
|
151.101.114.208
|
|
|
|
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-GB&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
142.250.185.78
|
|
|
|
https://www.google.com/images/dot2.gif
|
unknown
|
|
|
|
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://aadcdn.msauth.net/ests/2.1/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.icoChIKBw1D83Y5G
|
unknown
|
|
|
|
http://tools.ietf.org/html/rfc1950
|
unknown
|
|
|
|
https://proton-resources-production.imgix.net/3c5009f067fb91121bf2f9f5732ba558667224c33b8929c7b28cd5
|
unknown
|
|
|
|
https://use.fontawesome.com/
|
unknown
|
|
|
|
https://docs.google.com
|
unknown
|
|
|
|
https://dancevida.com/
|
unknown
|
|
|
|
https://www.google.com/
|
unknown
|
|
|
|
https://feedback.googleusercontent.com
|
unknown
|
|
|
|
https://clients6.google.com
|
unknown
|
|
|
|
https://gregory-showerss-team.adalo.comahttps://gregory-showerss-team.adalo.com/remittance?target=9e
|
unknown
|
|
|
|
https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.jskf
|
unknown
|
|
|
|
https://www.google.com/images/cleardot.gif
|
unknown
|
|
|
|
https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css
|
104.18.11.207
|
|
|
|
https://play.google.com
|
unknown
|
|
|
|
https://adalo.global.ssl.fastly.net/apps/e96999d7-8fe6-4dd1-8928-e5c14a2fdb1a/icon?size=32&radius=7
|
151.101.1.194
|
|
|
|
https://csp.withgoogle.com/csp/apps-themesCross-Origin-Resource-Policy:
|
unknown
|
|
|
|
https://www.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://adalo.global.ssl.fastly.net/apps/e96999d7-8fe6-4dd1-8928-e5c14a2fdb1a/icon?size=512
|
unknown
|
|
|
|
https://proton-resources-production.imgix.net/default-app-icon.png?fit=crop&w=192&h=192
|
unknown
|
|
|
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://runtime-assets.adalo.com/static/js/main.1c884789.chunk.js
|
52.222.186.17
|
|
|
|
https://accounts.google.com/MergeSession
|
unknown
|
|
|
|
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
|
172.217.168.1
|
|
|
|
https://logincdn.msauth.net/16.000.28543.10/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
|
192.229.221.185
|
|
|
|
https://proton-resources-production.imgix.net/default-app-icon.png?fit=crop&w=512&h=512
|
unknown
|
|
|
|
https://hangouts.clients6.google.com
|
unknown
|
|
|
|
https://meet.google.com
|
unknown
|
|
|
|
https://gazitanks.net/access-through/PDFX
|
unknown
|
|
|
|
https://backend.adalo.com/apps/e96999d7-8fe6-4dd1-8928-e5c14a2fdb1a/manifest.json
|
54.196.16.164
|
|
|
|
https://accounts.google.com
|
unknown
|
|
|
|
https://clients2.google.com/cr/report
|
unknown
|
|
|
|
http://angularjs.org
|
unknown
|
|
|
|
https://a.nel.cloudflare.com/report/v3?s=sdWbPFC8Uic6%2Bim3cOHqBS2VL6CFigImHd3yg9XJ1zOu2Xm1Sw%2BzCKN
|
unknown
|
|
|
|
https://adalo.global.ssl.fastly.net/apps/e96999d7-8fe6-4dd1-8928-e5c14a2fdb1a/icon?size=180&radius=7
|
151.101.1.194
|
|
|
|
https://github.com/angular/material
|
unknown
|
|
|
|
https://apis.google.com
|
unknown
|
|
|
|
https://aadcdn.msauth.net/ests/2.1/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.icoh
|
unknown
|
|
|
|
https://adalo.global.ssl.fastly.net/app-search?host=gregory-showerss-team.adalo.com&path=remittance
|
151.101.1.194
|
|
|
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers
|
unknown
|
|
|
|
https://clients2.google.com
|
unknown
|
|
|
|
https://gazitanks.net/access-through/PDFSign
|
unknown
|
|
|
|
https://runtime-assets.adalo.com/static/css/main.f7ff269a.chunk.css
|
52.222.186.17
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
unknown
|
|
|
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
|
|
|
https://ogs.google.com
|
unknown
|
|
|
|
https://adalo.global.ssl.fastly.net/apps/e96999d7-8fe6-4dd1-8928-e5c14a2fdb1a
|
151.101.1.194
|
|
|
|
https://aadcdn.msauth.net/ests/2.1/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
|
unknown
|
|
|
|
https://gazitanks.net/access-through/PDF
|
203.169.24.24
|
|
|
|
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
172.217.168.45
|
|
|
|
https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
|
unknown
|
|
|
|
https://dancevida.com/cgi-sys/suspendedpage.cgiContent-Length:
|
unknown
|
|
|
|
https://hangouts.google.com/
|
unknown
|
|
|
|
https://runtime-assets.adalo.com/static/css/2.7b8e54fe.chunk.css
|
52.222.186.17
|
|
|
|
http://llvm.org/):
|
unknown
|
|
There are 90 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
gstaticadssl.l.google.com
|
142.250.203.99
|
|
|
|
stackpath.bootstrapcdn.com
|
104.18.11.207
|
|
|
|
dancevida.com
|
50.87.150.0
|
|
|
|
accounts.google.com
|
172.217.168.45
|
|
|
|
gazitanks.net
|
203.169.24.24
|
|
|
|
maxcdn.bootstrapcdn.com
|
104.18.11.207
|
|
|
|
adalo.global.ssl.fastly.net
|
151.101.1.194
|
|
|
|
pacific-magnolia-rwupwi94po2umzobbzglw72r.herokudns.com
|
54.196.16.164
|
|
|
|
dtjx7av1qq7m6.cloudfront.net
|
52.222.186.17
|
|
|
|
component-registry.herokuapp.com
|
54.243.238.66
|
|
|
|
d54jz4irtxh6o.cloudfront.net
|
52.222.186.93
|
|
|
|
endothelial-savannah-maxpjdw9pc11vtauc5dbf8ff.herokudns.com
|
18.205.222.128
|
|
|
|
cdnjs.cloudflare.com
|
104.16.19.94
|
|
|
|
hosting.adalo.com
|
54.224.90.229
|
|
|
|
cs1227.wpc.alphacdn.net
|
192.229.221.185
|
|
|
|
clients.l.google.com
|
142.250.185.78
|
|
|
|
dualstack.com.imgix.map.fastly.net
|
151.101.114.208
|
|
|
|
googlehosted.l.googleusercontent.com
|
172.217.168.1
|
|
|
|
logincdn.msauth.net
|
unknown
|
|
|
|
gregory-showerss-team.adalo.com
|
unknown
|
|
|
|
aadcdn.msauth.net
|
unknown
|
|
|
|
clients2.googleusercontent.com
|
unknown
|
|
|
|
use.fontawesome.com
|
unknown
|
|
|
|
clients2.google.com
|
unknown
|
|
|
|
runtime-assets.adalo.com
|
unknown
|
|
|
|
code.jquery.com
|
unknown
|
|
|
|
component-marketplace.adalo.com
|
unknown
|
|
|
|
proton-resources-production.imgix.net
|
unknown
|
|
|
|
analytics.adalo.com
|
unknown
|
|
|
|
backend.adalo.com
|
unknown
|
|
There are 20 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
142.250.185.78
|
clients.l.google.com
|
United States
|
|
|
|
54.243.238.66
|
component-registry.herokuapp.com
|
United States
|
|
|
|
192.168.2.1
|
unknown
|
unknown
|
|
|
|
18.205.222.128
|
endothelial-savannah-maxpjdw9pc11vtauc5dbf8ff.herokudns.com
|
United States
|
|
|
|
151.101.1.194
|
adalo.global.ssl.fastly.net
|
United States
|
|
|
|
172.217.168.45
|
accounts.google.com
|
United States
|
|
|
|
54.224.90.229
|
hosting.adalo.com
|
United States
|
|
|
|
54.196.16.164
|
pacific-magnolia-rwupwi94po2umzobbzglw72r.herokudns.com
|
United States
|
|
|
|
142.250.203.99
|
gstaticadssl.l.google.com
|
United States
|
|
|
|
203.169.24.24
|
gazitanks.net
|
Bangladesh
|
|
|
|
52.222.186.93
|
d54jz4irtxh6o.cloudfront.net
|
United States
|
|
|
|
151.101.114.208
|
dualstack.com.imgix.map.fastly.net
|
United States
|
|
|
|
172.217.168.1
|
googlehosted.l.googleusercontent.com
|
United States
|
|
|
|
104.18.11.207
|
stackpath.bootstrapcdn.com
|
United States
|
|
|
|
239.255.255.250
|
unknown
|
Reserved
|
|
|
|
192.229.221.185
|
cs1227.wpc.alphacdn.net
|
United States
|
|
|
|
52.222.186.17
|
dtjx7av1qq7m6.cloudfront.net
|
United States
|
|
|
|
127.0.0.1
|
unknown
|
unknown
|
|
|
|
50.87.150.0
|
dancevida.com
|
United States
|
|
|
|
104.16.19.94
|
cdnjs.cloudflare.com
|
United States
|
|
There are 10 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
|
There are 35 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
1FA97578000
|
unkown
|
page read and write
|
|
|
|
7FF54DFED000
|
unkown image
|
page readonly
|
|
|
|
123F348D000
|
unkown
|
page read and write
|
|
|
|
1FA96C47000
|
unkown
|
page read and write
|
|
|
|
1FA97A21000
|
unkown
|
page read and write
|
|
|
|
1FA9758F000
|
unkown
|
page read and write
|
|
|
|
1FA9754E000
|
unkown
|
page read and write
|
|
|
|
7FF515F1C000
|
unkown image
|
page readonly
|
|
|
|
123F3350000
|
unkown image
|
page readonly
|
|
|
|
7FF57D316000
|
unkown image
|
page readonly
|
|
|
|
7FF523BAA000
|
unkown image
|
page readonly
|
|
|
|
1FA97500000
|
unkown
|
page read and write
|
|
|
|
1FA96C5C000
|
unkown
|
page read and write
|
|
|
|
1FA96BF0000
|
unkown image
|
page readonly
|
|
|
|
7FF57D767000
|
unkown image
|
page readonly
|
|
|
|
7FF523A21000
|
unkown image
|
page readonly
|
|
|
|
1FA9759E000
|
unkown
|
page read and write
|
|
|
|
7FF538845000
|
unkown image
|
page readonly
|
|
|
|
7FF538C9C000
|
unkown image
|
page readonly
|
|
|
|
7FF57D325000
|
unkown image
|
page readonly
|
|
|
|
7DF563222000
|
unkown image
|
page readonly
|
|
|
|
7FF57D591000
|
unkown image
|
page readonly
|
|
|
|
7FF54E116000
|
unkown image
|
page readonly
|
|
|
|
1FA9757E000
|
unkown
|
page read and write
|
|
|
|
7FF57D64E000
|
unkown image
|
page readonly
|
|
|
|
64AC77000
|
stack
|
page read and write
|
|
|
|
7FF538CC4000
|
unkown image
|
page readonly
|
|
|
|
7FF515BC1000
|
unkown image
|
page readonly
|
|
|
|
7FF515DDF000
|
unkown image
|
page readonly
|
|
|
|
1EDBE5F0000
|
unkown
|
page read and write
|
|
|
|
7FF538CBA000
|
unkown image
|
page readonly
|
|
|
|
1FA975BF000
|
unkown
|
page read and write
|
|
|
|
A8198FE000
|
stack
|
page read and write
|
|
|
|
1FA9759B000
|
unkown
|
page read and write
|
|
|
|
64B2FE000
|
stack
|
page read and write
|
|
|
|
1FA975A6000
|
unkown
|
page read and write
|
|
|
|
1FA97A02000
|
unkown
|
page read and write
|
|
|
|
29856400000
|
unkown image
|
page readonly
|
|
|
|
1EDBE500000
|
unkown image
|
page readonly
|
|
|
|
123F8C11000
|
unkown
|
page read and write
|
|
|
|
123F88F0000
|
unkown
|
page read and write
|
|
|
|
1FA975BC000
|
unkown
|
page read and write
|
|
|
|
1E5825C0000
|
unkown
|
page read and write
|
|
|
|
29856100000
|
unkown
|
page read and write
|
|
|
|
7FF57D64B000
|
unkown image
|
page readonly
|
|
|
|
1F621313000
|
unkown
|
page read and write
|
|
|
|
1FA97B02000
|
unkown
|
page read and write
|
|
|
|
7DF563210000
|
unkown image
|
page readonly
|
|
|
|
7DF484160000
|
unkown image
|
page readonly
|
|
|
|
7DF563230000
|
unkown image
|
page readonly
|
|
|
|
7FF515B86000
|
unkown image
|
page readonly
|
|
|
|
1E58262A000
|
unkown
|
page read and write
|
|
|
|
1E582613000
|
unkown
|
page read and write
|
|
|
|
1E5827C0000
|
unkown
|
page read and write
|
|
|
|
1FA96B70000
|
unkown image
|
page read and write
|
|
|
|
64B27F000
|
stack
|
page read and write
|
|
|
|
7FF515DDA000
|
unkown image
|
page readonly
|
|
|
|
7FF538CA7000
|
unkown image
|
page readonly
|
|
|
|
123F8A40000
|
unkown
|
page read and write
|
|
|
|
1FA97573000
|
unkown
|
page read and write
|
|
|
|
1FA96D02000
|
unkown
|
page read and write
|
|
|
|
123F3A50000
|
unkown image
|
page readonly
|
|
|
|
1E582613000
|
unkown
|
page read and write
|
|
|
|
1FA97A02000
|
unkown
|
page read and write
|
|
|
|
1FA975BF000
|
unkown
|
page read and write
|
|
|
|
1FA9757A000
|
unkown
|
page read and write
|
|
|
|
1FA9756E000
|
unkown
|
page read and write
|
|
|
|
1EDBEB80000
|
unkown image
|
page readonly
|
|
|
|
1FA975AC000
|
unkown
|
page read and write
|
|
|
|
1EDBE3F0000
|
unkown image
|
page readonly
|
|
|
|
123F8C86000
|
unkown
|
page read and write
|
|
|
|
123F88E0000
|
unkown
|
page read and write
|
|
|
|
1E5825F0000
|
heap default
|
page read and write
|
|
|
|
7FF523B65000
|
unkown image
|
page readonly
|
|
|
|
29856580000
|
unkown image
|
page readonly
|
|
|
|
1E582560000
|
unkown image
|
page read and write
|
|
|
|
1F621200000
|
unkown
|
page read and write
|
|
|
|
64AB7E000
|
stack
|
page read and write
|
|
|
|
1FA975B4000
|
unkown
|
page read and write
|
|
|
|
1EDBEC02000
|
unkown
|
page read and write
|
|
|
|
7FF54D55D000
|
unkown image
|
page readonly
|
|
|
|
7FF516022000
|
unkown image
|
page readonly
|
|
|
|
7FF54E18A000
|
unkown image
|
page readonly
|
|
|
|
1FA97577000
|
unkown
|
page read and write
|
|
|
|
7DF52B0B0000
|
unkown image
|
page readonly
|
|
|
|
1FA96BB0000
|
unkown image
|
page readonly
|
|
|
|
7FF538D5A000
|
unkown image
|
page readonly
|
|
|
|
1FA9757C000
|
unkown
|
page read and write
|
|
|
|
957FFFA000
|
stack
|
page read and write
|
|
|
|
7FF57D6F0000
|
unkown image
|
page readonly
|
|
|
|
1FA96D08000
|
unkown
|
page read and write
|
|
|
|
7FF523AB3000
|
unkown image
|
page readonly
|
|
|
|
29855DD0000
|
unkown image
|
page read and write
|
|
|
|
7DF54DDE0000
|
unkown image
|
page readonly
|
|
|
|
298565A0000
|
unkown
|
page read and write
|
|
|
|
1FA97583000
|
unkown
|
page read and write
|
|
|
|
7FF571212000
|
unkown image
|
page readonly
|
|
|
|
123F3D9A000
|
unkown
|
page read and write
|
|
|
|
1FA975A3000
|
unkown
|
page read and write
|
|
|
|
7EDAF77000
|
stack
|
page read and write
|
|
|
|
1FA97589000
|
unkown
|
page read and write
|
|
|
|
7DF5862A2000
|
unkown image
|
page readonly
|
|
|
|
1FA97940000
|
unkown
|
page read and write
|
|
|
|
7FF523BA4000
|
unkown image
|
page readonly
|
|
|
|
7FF515BB1000
|
unkown image
|
page readonly
|
|
|
|
7FF515CF6000
|
unkown image
|
page readonly
|
|
|
|
7FF54D557000
|
unkown image
|
page readonly
|
|
|
|
7FF54E0AB000
|
unkown image
|
page readonly
|
|
|
|
7FF54E09E000
|
unkown image
|
page readonly
|
|
|
|
123F3C15000
|
unkown
|
page read and write
|
|
|
|
1E582631000
|
unkown
|
page read and write
|
|
|
|
7FF57D658000
|
unkown image
|
page readonly
|
|
|
|
7FF54DFF3000
|
unkown image
|
page readonly
|
|
|
|
7FF538127000
|
unkown image
|
page readonly
|
|
|
|
1FA97583000
|
unkown
|
page read and write
|
|
|
|
7FF57D310000
|
unkown image
|
page readonly
|
|
|
|
7FF571120000
|
unkown image
|
page readonly
|
|
|
|
1FA975AD000
|
unkown
|
page read and write
|
|
|
|
7FF57D550000
|
unkown image
|
page readonly
|
|
|
|
7FF523735000
|
unkown image
|
page readonly
|
|
|
|
123F8B40000
|
unkown
|
page read and write
|
|
|
|
7FF515BAA000
|
unkown image
|
page readonly
|
|
|
|
1FA9756F000
|
unkown
|
page read and write
|
|
|
|
1FA9756F000
|
unkown
|
page read and write
|
|
|
|
7FF54E08C000
|
unkown image
|
page readonly
|
|
|
|
1FA975DE000
|
unkown
|
page read and write
|
|
|
|
7FF57119D000
|
unkown image
|
page readonly
|
|
|
|
123F8AD0000
|
unkown
|
page read and write
|
|
|
|
1FA970D0000
|
unkown image
|
page readonly
|
|
|
|
1F621288000
|
unkown
|
page read and write
|
|
|
|
1FA97580000
|
unkown
|
page read and write
|
|
|
|
7DF586290000
|
unkown image
|
page readonly
|
|
|
|
1FA9758A000
|
unkown
|
page read and write
|
|
|
|
7FF515D08000
|
unkown image
|
page readonly
|
|
|
|
29856000000
|
unkown
|
page read and write
|
|
|
|
7FF538B6B000
|
unkown image
|
page readonly
|
|
|
|
957F67E000
|
stack
|
page read and write
|
|
|
|
7FF57D7AF000
|
unkown image
|
page readonly
|
|
|
|
1F621050000
|
unkown image
|
page readonly
|
|
|
|
7FF52301D000
|
unkown image
|
page readonly
|
|
|
|
1E582621000
|
unkown
|
page read and write
|
|
|
|
1FA975AC000
|
unkown
|
page read and write
|
|
|
|
123F43E0000
|
unkown
|
page read and write
|
|
|
|
1FA9759B000
|
unkown
|
page read and write
|
|
|
|
1FA97B02000
|
unkown
|
page read and write
|
|
|
|
7FF538D61000
|
unkown image
|
page readonly
|
|
|
|
1FA97340000
|
unkown
|
page read and write
|
|
|
|
1FA9759B000
|
unkown
|
page read and write
|
|
|
|
7FF538AC1000
|
unkown image
|
page readonly
|
|
|
|
1FA97580000
|
unkown
|
page read and write
|
|
|
|
1FA96BE0000
|
heap default
|
page read and write
|
|
|
|
7DF586292000
|
unkown image
|
page readonly
|
|
|
|
7FF54E119000
|
unkown image
|
page readonly
|
|
|
|
7FF51587E000
|
unkown image
|
page readonly
|
|
|
|
1E583FB0000
|
unkown image
|
page read and write
|
|
|
|
957FDFF000
|
stack
|
page read and write
|
|
|
|
7FF57D441000
|
unkown image
|
page readonly
|
|
|
|
64B17B000
|
stack
|
page read and write
|
|
|
|
7FF538C5A000
|
unkown image
|
page readonly
|
|
|
|
7DF54DDF0000
|
unkown image
|
page readonly
|
|
|
|
1FA97589000
|
unkown
|
page read and write
|
|
|
|
1FA96C55000
|
unkown
|
page read and write
|
|
|
|
1FA97A02000
|
unkown
|
page read and write
|
|
|
|
64B3FF000
|
stack
|
page read and write
|
|
|
|
1FA96CF1000
|
unkown
|
page read and write
|
|
|
|
1FA97514000
|
unkown
|
page read and write
|
|
|
|
7DF5928D0000
|
unkown image
|
page readonly
|
|
|
|
7FF57114F000
|
unkown image
|
page readonly
|
|
|
|
7DF5862B0000
|
unkown image
|
page readonly
|
|
|
|
7FF523BD9000
|
unkown image
|
page readonly
|
|
|
|
7FF515EE3000
|
unkown image
|
page readonly
|
|
|
|
1FA96ED0000
|
unkown image
|
page readonly
|
|
|
|
123F3A60000
|
unkown image
|
page readonly
|
|
|
|
7DF5928C0000
|
unkown image
|
page readonly
|
|
|
|
123F33B0000
|
unkown image
|
page readonly
|
|
|
|
123F8B10000
|
unkown
|
page read and write
|
|
|
|
7FF538D54000
|
unkown image
|
page readonly
|
|
|
|
7DF54DE00000
|
unkown image
|
page readonly
|
|
|
|
7FF515F9E000
|
unkown image
|
page readonly
|
|
|
|
1EDBE400000
|
unkown image
|
page readonly
|
|
|
|
7FF57D794000
|
unkown image
|
page readonly
|
|
|
|
7FF523C52000
|
unkown image
|
page readonly
|
|
|
|
7FF57D842000
|
unkown image
|
page readonly
|
|
|
|
1FA97578000
|
unkown
|
page read and write
|
|
|
|
1FA97577000
|
unkown
|
page read and write
|
|
|
|
7FF515F78000
|
unkown image
|
page readonly
|
|
|
|
1F621600000
|
unkown image
|
page readonly
|
|
|
|
2985607F000
|
unkown
|
page read and write
|
|
|
|
7FF523B5A000
|
unkown image
|
page readonly
|
|
|
|
7FF54DE20000
|
unkown image
|
page readonly
|
|
|
|
2985604D000
|
unkown
|
page read and write
|
|
|
|
7FF57D73C000
|
unkown image
|
page readonly
|
|
|
|
1FA9758B000
|
unkown
|
page read and write
|
|
|
|
7FF54E0A0000
|
unkown image
|
page readonly
|
|
|
|
123F3340000
|
heap private
|
page read and write
|
|
|
|
7FF516021000
|
unkown image
|
page readonly
|
|
|
|
A81967A000
|
unkown
|
page read and write
|
|
|
|
123F8870000
|
unkown
|
page read and write
|
|
|
|
7EDA9AE000
|
stack
|
page read and write
|
|
|
|
123F8A00000
|
unkown
|
page read and write
|
|
|
|
7FF538CD8000
|
unkown image
|
page readonly
|
|
|
|
7FF515C21000
|
unkown image
|
page readonly
|
|
|
|
1FA97590000
|
unkown
|
page read and write
|
|
|
|
1FA9757C000
|
unkown
|
page read and write
|
|
|
|
1FA975AC000
|
unkown
|
page read and write
|
|
|
|
123F8C85000
|
unkown
|
page read and write
|
|
|
|
1FA97950000
|
unkown image
|
page read and write
|
|
|
|
7FF57D584000
|
unkown image
|
page readonly
|
|
|
|
123F8C9B000
|
unkown
|
page read and write
|
|
|
|
123F34FD000
|
unkown
|
page read and write
|
|
|
|
123F44C0000
|
unkown image
|
page readonly
|
|
|
|
1FA96C00000
|
unkown
|
page read and write
|
|
|
|
29855DF0000
|
unkown image
|
page readonly
|
|
|
|
7DF5928D0000
|
unkown image
|
page readonly
|
|
|
|
1FA97580000
|
unkown
|
page read and write
|
|
|
|
1E582580000
|
unkown image
|
page readonly
|
|
|
|
1FA9754A000
|
unkown
|
page read and write
|
|
|
|
7FF54E108000
|
unkown image
|
page readonly
|
|
|
|
123F8C3D000
|
unkown
|
page read and write
|
|
|
|
7DF52B0B2000
|
unkown image
|
page readonly
|
|
|
|
123F4200000
|
unkown
|
page read and write
|
|
|
|
7FF5389F0000
|
unkown image
|
page readonly
|
|
|
|
7FF57D586000
|
unkown image
|
page readonly
|
|
|
|
7DF44BCB0000
|
unkown image
|
page readonly
|
|
|
|
1FA97571000
|
unkown
|
page read and write
|
|
|
|
7DF538CD2000
|
unkown image
|
page readonly
|
|
|
|
957FEF9000
|
stack
|
page read and write
|
|
|
|
123F33E0000
|
unkown image
|
page read and write
|
|
|
|
7FF57114C000
|
unkown image
|
page readonly
|
|
|
|
1E582630000
|
unkown
|
page read and write
|
|
|
|
1EDBE68B000
|
unkown
|
page read and write
|
|
|
|
1F62124C000
|
unkown
|
page read and write
|
|
|
|
7FF515D0F000
|
unkown image
|
page readonly
|
|
|
|
7DF54DDF2000
|
unkown image
|
page readonly
|
|
|
|
123F3413000
|
unkown
|
page read and write
|
|
|
|
1EDBE800000
|
unkown image
|
page readonly
|
|
|
|
1F62127A000
|
unkown
|
page read and write
|
|
|
|
7DF52B0B2000
|
unkown image
|
page readonly
|
|
|
|
1FA97583000
|
unkown
|
page read and write
|
|
|
|
7FF53812D000
|
unkown image
|
page readonly
|
|
|
|
7FF523B60000
|
unkown image
|
page readonly
|
|
|
|
123F3D18000
|
unkown
|
page read and write
|
|
|
|
64B57C000
|
stack
|
page read and write
|
|
|
|
1FA9759E000
|
unkown
|
page read and write
|
|
|
|
1FA97A6A000
|
unkown
|
page read and write
|
|
|
|
123F8A40000
|
unkown
|
page read and write
|
|
|
|
7FF571164000
|
unkown image
|
page readonly
|
|
|
|
1FA97A02000
|
unkown
|
page read and write
|
|
|
|
7FF57D4C7000
|
unkown image
|
page readonly
|
|
|
|
7FF538C87000
|
unkown image
|
page readonly
|
|
|
|
7FF54E00C000
|
unkown image
|
page readonly
|
|
|
|
64B1FF000
|
stack
|
page read and write
|
|
|
|
1FA97569000
|
unkown
|
page read and write
|
|
|
|
1E58262A000
|
unkown
|
page read and write
|
|
|
|
29855E20000
|
unkown image
|
page readonly
|
|
|
|
7FF515E7D000
|
unkown image
|
page readonly
|
|
|
|
123F38D0000
|
unkown image
|
page readonly
|
|
|
|
7EDA8AC000
|
unkown
|
page read and write
|
|
|
|
7FF57D631000
|
unkown image
|
page readonly
|
|
|
|
7FF57D755000
|
unkown image
|
page readonly
|
|
|
|
123F36D0000
|
unkown image
|
page readonly
|
|
|
|
1FA97584000
|
unkown
|
page read and write
|
|
|
|
7FF538C5C000
|
unkown image
|
page readonly
|
|
|
|
1FA97577000
|
unkown
|
page read and write
|
|
|
|
123F3513000
|
unkown
|
page read and write
|
|
|
|
7FF538B51000
|
unkown image
|
page readonly
|
|
|
|
1FA9757C000
|
unkown
|
page read and write
|
|
|
|
1FA9757C000
|
unkown
|
page read and write
|
|
|
|
7FF523B4C000
|
unkown image
|
page readonly
|
|
|
|
7DF5862A2000
|
unkown image
|
page readonly
|
|
|
|
7DF436BA0000
|
unkown image
|
page readonly
|
|
|
|
7FF54DC66000
|
unkown image
|
page readonly
|
|
|
|
7FF54DF81000
|
unkown image
|
page readonly
|
|
|
|
7FF523720000
|
unkown image
|
page readonly
|
|
|
|
1FA97402000
|
unkown
|
page read and write
|
|
|
|
7FF54E09A000
|
unkown image
|
page readonly
|
|
|
|
7FF57D71B000
|
unkown image
|
page readonly
|
|
|
|
64B37E000
|
stack
|
page read and write
|
|
|
|
7FF57118E000
|
unkown image
|
page readonly
|
|
|
|
7FF57D4D0000
|
unkown image
|
page readonly
|
|
|
|
7FF538D62000
|
unkown image
|
page readonly
|
|
|
|
1FA97B63000
|
unkown
|
page read and write
|
|
|
|
1E582602000
|
unkown
|
page read and write
|
|
|
|
7FF515DF1000
|
unkown image
|
page readonly
|
|
|
|
1FA96C48000
|
unkown
|
page read and write
|
|
|
|
7FF57D703000
|
unkown image
|
page readonly
|
|
|
|
7FF57D79A000
|
unkown image
|
page readonly
|
|
|
|
123F4860000
|
unkown
|
page read and write
|
|
|
|
29856070000
|
unkown
|
page read and write
|
|
|
|
123F88A0000
|
unkown
|
page read and write
|
|
|
|
123F4500000
|
unkown image
|
page readonly
|
|
|
|
7DF563222000
|
unkown image
|
page readonly
|
|
|
|
7FF523B8C000
|
unkown image
|
page readonly
|
|
|
|
957F7FC000
|
stack
|
page read and write
|
|
|
|
95000FD000
|
stack
|
page read and write
|
|
|
|
123F8B70000
|
unkown
|
page read and write
|
|
|
|
1FA9757C000
|
unkown
|
page read and write
|
|
|
|
7FF515FA9000
|
unkown image
|
page readonly
|
|
|
|
7FF54DF61000
|
unkown image
|
page readonly
|
|
|
|
7FF571158000
|
unkown image
|
page readonly
|
|
|
|
7FF57D611000
|
unkown image
|
page readonly
|
|
|
|
29856052000
|
unkown
|
page read and write
|
|
|
|
1FA975AC000
|
unkown
|
page read and write
|
|
|
|
123F8CA3000
|
unkown
|
page read and write
|
|
|
|
7DF538CE2000
|
unkown image
|
page readonly
|
|
|
|
7FF515DD5000
|
unkown image
|
page readonly
|
|
|
|
1FA9756D000
|
unkown
|
page read and write
|
|
|
|
1FA975A3000
|
unkown
|
page read and write
|
|
|
|
7FF57112B000
|
unkown image
|
page readonly
|
|
|
|
1FA97940000
|
unkown
|
page read and write
|
|
|
|
1FA96C4D000
|
unkown
|
page read and write
|
|
|
|
123F8C00000
|
unkown
|
page read and write
|
|
|
|
7FF57D77C000
|
unkown image
|
page readonly
|
|
|
|
A81977F000
|
stack
|
page read and write
|
|
|
|
1FA9757C000
|
unkown
|
page read and write
|
|
|
|
7FF515D71000
|
unkown image
|
page readonly
|
|
|
|
1FA96C5B000
|
unkown
|
page read and write
|
|
|
|
1FA97583000
|
unkown
|
page read and write
|
|
|
|
123F8860000
|
unkown
|
page read and write
|
|
|
|
1FA975AC000
|
unkown
|
page read and write
|
|
|
|
1FA97585000
|
unkown
|
page read and write
|
|
|
|
1FA975AC000
|
unkown
|
page read and write
|
|
|
|
1FA9757E000
|
unkown
|
page read and write
|
|
|
|
1FA975AC000
|
unkown
|
page read and write
|
|
|
|
7FF54E0B7000
|
unkown image
|
page readonly
|
|
|
|
7FF515A92000
|
unkown image
|
page readonly
|
|
|
|
1FA97591000
|
unkown
|
page read and write
|
|
|
|
1FA9757A000
|
unkown
|
page read and write
|
|
|
|
123F3429000
|
unkown
|
page read and write
|
|
|
|
1FA9759B000
|
unkown
|
page read and write
|
|
|
|
123F3BF3000
|
unkown
|
page read and write
|
|
|
|
1E582A00000
|
unkown image
|
page readonly
|
|
|
|
7FF523AC4000
|
unkown image
|
page readonly
|
|
|
|
123F3380000
|
unkown image
|
page readonly
|
|
|
|
7FF515F04000
|
unkown image
|
page readonly
|
|
|
|
1F62124B000
|
unkown
|
page read and write
|
|
|
|
957FA77000
|
stack
|
page read and write
|
|
|
|
7FF515DC2000
|
unkown image
|
page readonly
|
|
|
|
7FF57D74E000
|
unkown image
|
page readonly
|
|
|
|
1EDBE681000
|
unkown
|
page read and write
|
|
|
|
7FF523B5E000
|
unkown image
|
page readonly
|
|
|
|
1FA975B4000
|
unkown
|
page read and write
|
|
|
|
7DF428F70000
|
unkown image
|
page readonly
|
|
|
|
29856013000
|
unkown
|
page read and write
|
|
|
|
7FF515F2A000
|
unkown image
|
page readonly
|
|
|
|
123F3400000
|
unkown
|
page read and write
|
|
|
|
1EDBE3D0000
|
unkown image
|
page readonly
|
|
|
|
1FA97B00000
|
unkown
|
page read and write
|
|
|
|
7FF515C14000
|
unkown image
|
page readonly
|
|
|
|
1FA975C2000
|
unkown
|
page read and write
|
|
|
|
29855DE0000
|
heap private
|
page read and write
|
|
|
|
1E582621000
|
unkown
|
page read and write
|
|
|
|
1FA97578000
|
unkown
|
page read and write
|
|
|
|
123F3330000
|
unkown image
|
page read and write
|
|
|
|
123F4300000
|
unkown image
|
page read and write
|
|
|
|
7FF57D6A3000
|
unkown image
|
page readonly
|
|
|
|
1E582630000
|
unkown
|
page read and write
|
|
|
|
E0549FB000
|
stack
|
page read and write
|
|
|
|
1E58262A000
|
unkown
|
page read and write
|
|
|
|
F4F61DE000
|
stack
|
page read and write
|
|
|
|
7DF52B0B0000
|
unkown image
|
page readonly
|
|
|
|
1FA97590000
|
unkown
|
page read and write
|
|
|
|
1FA96CA5000
|
unkown
|
page read and write
|
|
|
|
7FF538C6A000
|
unkown image
|
page readonly
|
|
|
|
7DF52B0C0000
|
unkown image
|
page readonly
|
|
|
|
123F3474000
|
unkown
|
page read and write
|
|
|
|
1EDBEA00000
|
unkown image
|
page readonly
|
|
|
|
F4F697F000
|
stack
|
page read and write
|
|
|
|
1E582B90000
|
unkown image
|
page readonly
|
|
|
|
1FA9759B000
|
unkown
|
page read and write
|
|
|
|
7FF57D6F2000
|
unkown image
|
page readonly
|
|
|
|
7FF57D365000
|
unkown image
|
page readonly
|
|
|
|
7FF523A5E000
|
unkown image
|
page readonly
|
|
|
|
1EDBE702000
|
unkown
|
page read and write
|
|
|
|
1FA9759B000
|
unkown
|
page read and write
|
|
|
|
7DF586292000
|
unkown image
|
page readonly
|
|
|
|
7DF538CD0000
|
unkown image
|
page readonly
|
|
|
|
7FF538BC3000
|
unkown image
|
page readonly
|
|
|
|
1FA975CC000
|
unkown
|
page read and write
|
|
|
|
1F621213000
|
unkown
|
page read and write
|
|
|
|
957F97E000
|
stack
|
page read and write
|
|
|
|
123F8B50000
|
unkown
|
page read and write
|
|
|
|
7DF563220000
|
unkown image
|
page readonly
|
|
|
|
1FA97A02000
|
unkown
|
page read and write
|
|
|
|
1FA97576000
|
unkown
|
page read and write
|
|
|
|
123F8B60000
|
unkown
|
page read and write
|
|
|
|
957F8FA000
|
stack
|
page read and write
|
|
|
|
7FF538CE6000
|
unkown image
|
page readonly
|
|
|
|
1FA96B90000
|
unkown image
|
page readonly
|
|
|
|
123F8A44000
|
unkown
|
page read and write
|
|
|
|
123F44E0000
|
unkown image
|
page readonly
|
|
|
|
1E58262A000
|
unkown
|
page read and write
|
|
|
|
7FF523C51000
|
unkown image
|
page readonly
|
|
|
|
7FF515D1B000
|
unkown image
|
page readonly
|
|
|
|
7FF57D73A000
|
unkown image
|
page readonly
|
|
|
|
1FA97583000
|
unkown
|
page read and write
|
|
|
|
F4F687F000
|
stack
|
page read and write
|
|
|
|
123F343D000
|
unkown
|
page read and write
|
|
|
|
1FA9759E000
|
unkown
|
page read and write
|
|
|
|
1FA975A2000
|
unkown
|
page read and write
|
|
|
|
1F621180000
|
unkown image
|
page readonly
|
|
|
|
7FF515F8F000
|
unkown image
|
page readonly
|
|
|
|
7FF54E0CC000
|
unkown image
|
page readonly
|
|
|
|
7FF57D5A1000
|
unkown image
|
page readonly
|
|
|
|
7EDADFB000
|
stack
|
page read and write
|
|
|
|
E0548FB000
|
stack
|
page read and write
|
|
|
|
7FF538BBD000
|
unkown image
|
page readonly
|
|
|
|
7FF57D653000
|
unkown image
|
page readonly
|
|
|
|
1FA97592000
|
unkown
|
page read and write
|
|
|
|
1E582800000
|
unkown image
|
page readonly
|
|
|
|
7FF515F0F000
|
unkown image
|
page readonly
|
|
|
|
1FA96CBE000
|
unkown
|
page read and write
|
|
|
|
1FA9759E000
|
unkown
|
page read and write
|
|
|
|
F4F615C000
|
unkown
|
page read and write
|
|
|
|
7FF515D66000
|
unkown image
|
page readonly
|
|
|
|
123F8C2E000
|
unkown
|
page read and write
|
|
|
|
7FF515D2D000
|
unkown image
|
page readonly
|
|
|
|
7FF515CAF000
|
unkown image
|
page readonly
|
|
|
|
1F62127D000
|
unkown
|
page read and write
|
|
|
|
1FA96CF4000
|
unkown
|
page read and write
|
|
|
|
1F621030000
|
unkown image
|
page read and write
|
|
|
|
7FF515791000
|
unkown image
|
page readonly
|
|
|
|
123F3F80000
|
unkown
|
page read and write
|
|
|
|
2985608A000
|
unkown
|
page read and write
|
|
|
|
F4F667B000
|
stack
|
page read and write
|
|
|
|
29856029000
|
unkown
|
page read and write
|
|
|
|
1FA9757D000
|
unkown
|
page read and write
|
|
|
|
7FF523BDD000
|
unkown image
|
page readonly
|
|
|
|
1EDBE3B0000
|
unkown image
|
page read and write
|
|
|
|
123F8A0E000
|
unkown
|
page read and write
|
|
|
|
1FA9759B000
|
unkown
|
page read and write
|
|
|
|
7FF54E11D000
|
unkown image
|
page readonly
|
|
|
|
7FF57D7B8000
|
unkown image
|
page readonly
|
|
|
|
1EDBE650000
|
unkown
|
page read and write
|
|
|
|
1F621050000
|
unkown image
|
page readonly
|
|
|
|
957FB77000
|
stack
|
page read and write
|
|
|
|
7DF52B0A0000
|
unkown image
|
page readonly
|
|
|
|
7FF54DF9B000
|
unkown image
|
page readonly
|
|
|
|
7FF515D81000
|
unkown image
|
page readonly
|
|
|
|
1FA96C13000
|
unkown
|
page read and write
|
|
|
|
F4F6777000
|
stack
|
page read and write
|
|
|
|
123F9000000
|
unkown
|
page read and write
|
|
|
|
7DF563220000
|
unkown image
|
page readonly
|
|
|
|
1EDBE629000
|
unkown
|
page read and write
|
|
|
|
1FA97583000
|
unkown
|
page read and write
|
|
|
|
1E582607000
|
unkown
|
page read and write
|
|
|
|
1E582580000
|
unkown image
|
page readonly
|
|
|
|
7DF538CF0000
|
unkown image
|
page readonly
|
|
|
|
123F8A30000
|
unkown
|
page read and write
|
|
|
|
1E5825A0000
|
unkown image
|
page readonly
|
|
|
|
7FF570A73000
|
unkown image
|
page readonly
|
|
|
|
7FF57D367000
|
unkown image
|
page readonly
|
|
|
|
64AE7A000
|
stack
|
page read and write
|
|
|
|
1FA97250000
|
unkown image
|
page readonly
|
|
|
|
7DF52B0A2000
|
unkown image
|
page readonly
|
|
|
|
1F6210A0000
|
heap default
|
page read and write
|
|
|
|
1FA9758D000
|
unkown
|
page read and write
|
|
|
|
7FF54DC75000
|
unkown image
|
page readonly
|
|
|
|
7DF5862B0000
|
unkown image
|
page readonly
|
|
|
|
7FF57D69D000
|
unkown image
|
page readonly
|
|
|
|
7FF515F35000
|
unkown image
|
page readonly
|
|
|
|
1FA975A2000
|
unkown
|
page read and write
|
|
|
|
123F3BD1000
|
unkown
|
page read and write
|
|
|
|
7FF57D50B000
|
unkown image
|
page readonly
|
|
|
|
1FA97572000
|
unkown
|
page read and write
|
|
|
|
7FF54DF9E000
|
unkown image
|
page readonly
|
|
|
|
1EDBE63C000
|
unkown
|
page read and write
|
|
|
|
7FF57D6BC000
|
unkown image
|
page readonly
|
|
|
|
123F3458000
|
unkown
|
page read and write
|
|
|
|
123F346F000
|
unkown
|
page read and write
|
|
|
|
7FF523B77000
|
unkown image
|
page readonly
|
|
|
|
7DF52B0A0000
|
unkown image
|
page readonly
|
|
|
|
123F8880000
|
unkown
|
page read and write
|
|
|
|
123F8B60000
|
unkown
|
page read and write
|
|
|
|
64AF7E000
|
stack
|
page read and write
|
|
|
|
1E582611000
|
unkown
|
page read and write
|
|
|
|
1FA9759B000
|
unkown
|
page read and write
|
|
|
|
123F33D0000
|
unkown
|
page read and write
|
|
|
|
1FA9755B000
|
unkown
|
page read and write
|
|
|
|
7FF515C17000
|
unkown image
|
page readonly
|
|
|
|
7EDA92E000
|
stack
|
page read and write
|
|
|
|
7FF57CC07000
|
unkown image
|
page readonly
|
|
|
|
7FF538BD4000
|
unkown image
|
page readonly
|
|
|
|
7FF523BBF000
|
unkown image
|
page readonly
|
|
|
|
1FA96C57000
|
unkown
|
page read and write
|
|
|
|
1F62124D000
|
unkown
|
page read and write
|
|
|
|
1FA9758A000
|
unkown
|
page read and write
|
|
|
|
1E582630000
|
unkown
|
page read and write
|
|
|
|
7EDB07F000
|
stack
|
page read and write
|
|
|
|
1F621308000
|
unkown
|
page read and write
|
|
|
|
1FA96C4F000
|
unkown
|
page read and write
|
|
|
|
123F8C7C000
|
unkown
|
page read and write
|
|
|
|
29856048000
|
unkown
|
page read and write
|
|
|
|
7FF54E08A000
|
unkown image
|
page readonly
|
|
|
|
E054CFF000
|
stack
|
page read and write
|
|
|
|
1FA9757C000
|
unkown
|
page read and write
|
|
|
|
1FA97578000
|
unkown
|
page read and write
|
|
|
|
7FF523C44000
|
unkown image
|
page readonly
|
|
|
|
1FA97569000
|
unkown
|
page read and write
|
|
|
|
7FF57D5FA000
|
unkown image
|
page readonly
|
|
|
|
7FF515F98000
|
unkown image
|
page readonly
|
|
|
|
1EDBE64A000
|
unkown
|
page read and write
|
|
|
|
123F3C00000
|
unkown
|
page read and write
|
|
|
|
1FA97573000
|
unkown
|
page read and write
|
|
|
|
7FF515B47000
|
unkown image
|
page readonly
|
|
|
|
7DF5862A0000
|
unkown image
|
page readonly
|
|
|
|
29856108000
|
unkown
|
page read and write
|
|
|
|
1FA9757E000
|
unkown
|
page read and write
|
|
|
|
7FF538C70000
|
unkown image
|
page readonly
|
|
|
|
7FF515ED0000
|
unkown image
|
page readonly
|
|
|
|
1FA97578000
|
unkown
|
page read and write
|
|
|
|
1E582621000
|
unkown
|
page read and write
|
|
|
|
123F8A20000
|
unkown
|
page read and write
|
|
|
|
1EDBE671000
|
unkown
|
page read and write
|
|
|
|
7FF54E0D7000
|
unkown image
|
page readonly
|
|
|
|
123F8C87000
|
unkown
|
page read and write
|
|
|
|
A8196FE000
|
stack
|
page read and write
|
|
|
|
1FA96CB0000
|
unkown
|
page read and write
|
|
|
|
957FC7E000
|
stack
|
page read and write
|
|
|
|
1FA975AC000
|
unkown
|
page read and write
|
|
|
|
7DF5928C2000
|
unkown image
|
page readonly
|
|
|
|
123F3D18000
|
unkown
|
page read and write
|
|
|
|
1F621252000
|
unkown
|
page read and write
|
|
|
|
7FF523A41000
|
unkown image
|
page readonly
|
|
|
|
7DF538CD2000
|
unkown image
|
page readonly
|
|
|
|
7FF538CCF000
|
unkown image
|
page readonly
|
|
|
|
7FF538C7B000
|
unkown image
|
page readonly
|
|
|
|
123F44D0000
|
unkown image
|
page readonly
|
|
|
|
123F8A00000
|
unkown
|
page read and write
|
|
|
|
7DF5928C2000
|
unkown image
|
page readonly
|
|
|
|
7FF538CDE000
|
unkown image
|
page readonly
|
|
|
|
7FF54E0EA000
|
unkown image
|
page readonly
|
|
|
|
7FF571174000
|
unkown image
|
page readonly
|
|
|
|
7FF571199000
|
unkown image
|
page readonly
|
|
|
|
29855F20000
|
unkown image
|
page readonly
|
|
|
|
1FA96C53000
|
unkown
|
page read and write
|
|
|
|
7FF57D72F000
|
unkown image
|
page readonly
|
|
|
|
7FF523A5B000
|
unkown image
|
page readonly
|
|
|
|
1EDBE3D0000
|
unkown image
|
page readonly
|
|
|
|
1EDBE64D000
|
unkown
|
page read and write
|
|
|
|
7FF515F84000
|
unkown image
|
page readonly
|
|
|
|
123F8AF0000
|
unkown
|
page read and write
|
|
|
|
1FA97571000
|
unkown
|
page read and write
|
|
|
|
1F621040000
|
heap private
|
page read and write
|
|
|
|
1EDBE627000
|
unkown
|
page read and write
|
|
|
|
7FF57D77F000
|
unkown image
|
page readonly
|
|
|
|
7FF515F5F000
|
unkown image
|
page readonly
|
|
|
|
123F3D13000
|
unkown
|
page read and write
|
|
|
|
1FA9759B000
|
unkown
|
page read and write
|
|
|
|
7EDB17E000
|
stack
|
page read and write
|
|
|
|
7FF515D64000
|
unkown image
|
page readonly
|
|
|
|
1EDBE420000
|
heap default
|
page read and write
|
|
|
|
7DF5928E0000
|
unkown image
|
page readonly
|
|
|
|
123F9010000
|
unkown
|
page read and write
|
|
|
|
7DF4610E0000
|
unkown image
|
page readonly
|
|
|
|
7FF523B8F000
|
unkown image
|
page readonly
|
|
|
|
7FF515F47000
|
unkown image
|
page readonly
|
|
|
|
64B47F000
|
stack
|
page read and write
|
|
|
|
1F621A02000
|
unkown
|
page read and write
|
|
|
|
7FF5389E7000
|
unkown image
|
page readonly
|
|
|
|
1FA9758F000
|
unkown
|
page read and write
|
|
|
|
1FA9759B000
|
unkown
|
page read and write
|
|
|
|
1F6211A0000
|
unkown
|
page read and write
|
|
|
|
1FA9757D000
|
unkown
|
page read and write
|
|
|
|
1FA97576000
|
unkown
|
page read and write
|
|
|
|
1F621250000
|
unkown
|
page read and write
|
|
|
|
1FA97A00000
|
unkown
|
page read and write
|
|
|
|
123F8C4A000
|
unkown
|
page read and write
|
|
|
|
1FA975C2000
|
unkown
|
page read and write
|
|
|
|
7FF54E10E000
|
unkown image
|
page readonly
|
|
|
|
1FA97A02000
|
unkown
|
page read and write
|
|
|
|
7DF54DE00000
|
unkown image
|
page readonly
|
|
|
|
1EDBE600000
|
unkown
|
page read and write
|
|
|
|
1E582575000
|
heap private
|
page read and write
|
|
|
|
7DF54DDE2000
|
unkown image
|
page readonly
|
|
|
|
1FA9757A000
|
unkown
|
page read and write
|
|
|
|
1F621300000
|
unkown
|
page read and write
|
|
|
|
1F62123C000
|
unkown
|
page read and write
|
|
|
|
7FF57D724000
|
unkown image
|
page readonly
|
|
|
|
7DF586290000
|
unkown image
|
page readonly
|
|
|
|
1FA96C70000
|
unkown
|
page read and write
|
|
|
|
1FA9759B000
|
unkown
|
page read and write
|
|
|
|
7FF54E0A5000
|
unkown image
|
page readonly
|
|
|
|
123F8B30000
|
unkown
|
page read and write
|
|
|
|
7FF523B4A000
|
unkown image
|
page readonly
|
|
|
|
2985603C000
|
unkown
|
page read and write
|
|
|
|
1FA9757C000
|
unkown
|
page read and write
|
|
|
|
7FF54DEF1000
|
unkown image
|
page readonly
|
|
|
|
7DF54DDF0000
|
unkown image
|
page readonly
|
|
|
|
7FF57120A000
|
unkown image
|
page readonly
|
|
|
|
1E5825F7000
|
heap default
|
page read and write
|
|
|
|
1FA96C8A000
|
unkown
|
page read and write
|
|
|
|
7FF523A03000
|
unkown image
|
page readonly
|
|
|
|
7FF57D0A3000
|
unkown image
|
page readonly
|
|
|
|
7FF54E004000
|
unkown image
|
page readonly
|
|
|
|
7FF515704000
|
unkown image
|
page readonly
|
|
|
|
7FF57D7C6000
|
unkown image
|
page readonly
|
|
|
|
1FA97574000
|
unkown
|
page read and write
|
|
|
|
7FF54E191000
|
unkown image
|
page readonly
|
|
|
|
1FA9751D000
|
unkown
|
page read and write
|
|
|
|
1FA975AC000
|
unkown
|
page read and write
|
|
|
|
123F8B60000
|
unkown
|
page read and write
|
|
|
|
123F8A01000
|
unkown
|
page read and write
|
|
|
|
7FF57D22E000
|
unkown image
|
page readonly
|
|
|
|
1FA975BF000
|
unkown
|
page read and write
|
|
|
|
7DF563210000
|
unkown image
|
page readonly
|
|
|
|
7DF54DDF2000
|
unkown image
|
page readonly
|
|
|
|
123F3476000
|
unkown
|
page read and write
|
|
|
|
123F3456000
|
unkown
|
page read and write
|
|
|
|
7DF538CE0000
|
unkown image
|
page readonly
|
|
|
|
7FF515FA6000
|
unkown image
|
page readonly
|
|
|
|
7FF5156F4000
|
unkown image
|
page readonly
|
|
|
|
7FF57D7C9000
|
unkown image
|
page readonly
|
|
|
|
1FA9759B000
|
unkown
|
page read and write
|
|
|
|
7FF57D5F3000
|
unkown image
|
page readonly
|
|
|
|
123F33A0000
|
heap default
|
page read and write
|
|
|
|
1F621080000
|
unkown image
|
page readonly
|
|
|
|
7FF571125000
|
unkown image
|
page readonly
|
|
|
|
7FF57116A000
|
unkown image
|
page readonly
|
|
|
|
7EDAE7E000
|
stack
|
page read and write
|
|
|
|
123F8EC0000
|
unkown
|
page read and write
|
|
|
|
7FF57D71F000
|
unkown image
|
page readonly
|
|
|
|
7FF538830000
|
unkown image
|
page readonly
|
|
|
|
1FA96C52000
|
unkown
|
page read and write
|
|
|
|
1FA97A02000
|
unkown
|
page read and write
|
|
|
|
29856002000
|
unkown
|
page read and write
|
|
|
|
1FA96B80000
|
heap private
|
page read and write
|
|
|
|
7FF570E11000
|
unkown image
|
page readonly
|
|
|
|
E054AF7000
|
stack
|
page read and write
|
|
|
|
1EDBE613000
|
unkown
|
page read and write
|
|
|
|
7FF571188000
|
unkown image
|
page readonly
|
|
|
|
1FA975AD000
|
unkown
|
page read and write
|
|
|
|
7DF538CF0000
|
unkown image
|
page readonly
|
|
|
|
1FA97592000
|
unkown
|
page read and write
|
|
|
|
7FF515CEB000
|
unkown image
|
page readonly
|
|
|
|
29856047000
|
unkown
|
page read and write
|
|
|
|
7DF5928D2000
|
unkown image
|
page readonly
|
|
|
|
123F8C20000
|
unkown
|
page read and write
|
|
|
|
1FA97583000
|
unkown
|
page read and write
|
|
|
|
1E582621000
|
unkown
|
page read and write
|
|
|
|
7FF538B13000
|
unkown image
|
page readonly
|
|
|
|
1FA97568000
|
unkown
|
page read and write
|
|
|
|
1EDBE713000
|
unkown
|
page read and write
|
|
|
|
957F3BB000
|
unkown
|
page read and write
|
|
|
|
7FF515F3B000
|
unkown image
|
page readonly
|
|
|
|
A8197F9000
|
stack
|
page read and write
|
|
|
|
7DF490790000
|
unkown image
|
page readonly
|
|
|
|
123F44F0000
|
unkown image
|
page readonly
|
|
|
|
1FA97A6A000
|
unkown
|
page read and write
|
|
|
|
1FA97583000
|
unkown
|
page read and write
|
|
|
|
F4F647F000
|
stack
|
page read and write
|
|
|
|
7FF5156FF000
|
unkown image
|
page readonly
|
|
|
|
1FA96C29000
|
unkown
|
page read and write
|
|
|
|
7DF5928E0000
|
unkown image
|
page readonly
|
|
|
|
7FF538C6E000
|
unkown image
|
page readonly
|
|
|
|
7FF57117E000
|
unkown image
|
page readonly
|
|
|
|
1FA96CA6000
|
unkown
|
page read and write
|
|
|
|
1FA9758A000
|
unkown
|
page read and write
|
|
|
|
1FA9758A000
|
unkown
|
page read and write
|
|
|
|
1FA96D13000
|
unkown
|
page read and write
|
|
|
|
123F3BF0000
|
unkown
|
page read and write
|
|
|
|
1FA96C4B000
|
unkown
|
page read and write
|
|
|
|
7FF57CC0D000
|
unkown image
|
page readonly
|
|
|
|
1EDBE708000
|
unkown
|
page read and write
|
|
|
|
7FF54E0FF000
|
unkown image
|
page readonly
|
|
|
|
7FF515F1A000
|
unkown image
|
page readonly
|
|
|
|
7FF5239B1000
|
unkown image
|
page readonly
|
|
|
|
7FF54E184000
|
unkown image
|
page readonly
|
|
|
|
7FF515E9C000
|
unkown image
|
page readonly
|
|
|
|
7FF571211000
|
unkown image
|
page readonly
|
|
|
|
7FF54E0E4000
|
unkown image
|
page readonly
|
|
|
|
123F8B20000
|
unkown
|
page read and write
|
|
|
|
7DF538CE2000
|
unkown image
|
page readonly
|
|
|
|
1FA975BD000
|
unkown
|
page read and write
|
|
|
|
1FA97583000
|
unkown
|
page read and write
|
|
|
|
7DF52B0A2000
|
unkown image
|
page readonly
|
|
|
|
7FF515F5C000
|
unkown image
|
page readonly
|
|
|
|
1FA96CE1000
|
unkown
|
page read and write
|
|
|
|
1FA975CC000
|
unkown
|
page read and write
|
|
|
|
7FF54E0CF000
|
unkown image
|
page readonly
|
|
|
|
1FA97583000
|
unkown
|
page read and write
|
|
|
|
123F3350000
|
unkown image
|
page readonly
|
|
|
|
1FA96BC0000
|
unkown image
|
page readonly
|
|
|
|
7FF523B97000
|
unkown image
|
page readonly
|
|
|
|
7FF538CE9000
|
unkown image
|
page readonly
|
|
|
|
1FA97571000
|
unkown
|
page read and write
|
|
|
|
29856200000
|
unkown image
|
page readonly
|
|
|
|
1FA96C5A000
|
unkown
|
page read and write
|
|
|
|
7DF538CE0000
|
unkown image
|
page readonly
|
|
|
|
7DF563212000
|
unkown image
|
page readonly
|
|
|
|
7FF515EEF000
|
unkown image
|
page readonly
|
|
|
|
7FF515F67000
|
unkown image
|
page readonly
|
|
|
|
1FA96C3C000
|
unkown
|
page read and write
|
|
|
|
7DF5928C0000
|
unkown image
|
page readonly
|
|
|
|
1FA96C4C000
|
unkown
|
page read and write
|
|
|
|
123F4510000
|
unkown image
|
page readonly
|
|
|
|
7FF57D052000
|
unkown image
|
page readonly
|
|
|
|
7FF538836000
|
unkown image
|
page readonly
|
|
|
|
29855DF0000
|
unkown image
|
page readonly
|
|
|
|
7FF538BDC000
|
unkown image
|
page readonly
|
|
|
|
7FF51601A000
|
unkown image
|
page readonly
|
|
|
|
123F3D59000
|
unkown
|
page read and write
|
|
|
|
29856050000
|
unkown
|
page read and write
|
|
|
|
E05456F000
|
stack
|
page read and write
|
|
|
|
1E582619000
|
unkown
|
page read and write
|
|
|
|
7FF515832000
|
unkown image
|
page readonly
|
|
|
|
7FF515CDA000
|
unkown image
|
page readonly
|
|
|
|
123F34A0000
|
unkown
|
page read and write
|
|
|
|
E0545EF000
|
stack
|
page read and write
|
|
|
|
7FF54DC60000
|
unkown image
|
page readonly
|
|
|
|
64AA7B000
|
unkown
|
page read and write
|
|
|
|
64B07A000
|
stack
|
page read and write
|
|
|
|
7FF54E192000
|
unkown image
|
page readonly
|
|
|
|
123F8A04000
|
unkown
|
page read and write
|
|
|
|
123F8A08000
|
unkown
|
page read and write
|
|
|
|
1E5827F0000
|
unkown image
|
page readonly
|
|
|
|
1FA975CD000
|
unkown
|
page read and write
|
|
|
|
7FF5238D7000
|
unkown image
|
page readonly
|
|
|
|
7DF52B0C0000
|
unkown image
|
page readonly
|
|
|
|
1FA9759B000
|
unkown
|
page read and write
|
|
|
|
1FA96B90000
|
unkown image
|
page readonly
|
|
|
|
957FD78000
|
stack
|
page read and write
|
|
|
|
1FA9759E000
|
unkown
|
page read and write
|
|
|
|
123F8BF0000
|
unkown
|
page read and write
|
|
|
|
1FA975BD000
|
unkown
|
page read and write
|
|
|
|
1FA97578000
|
unkown
|
page read and write
|
|
|
|
7DF5862A0000
|
unkown image
|
page readonly
|
|
|
|
7FF570A77000
|
unkown image
|
page readonly
|
|
|
|
29855E10000
|
unkown image
|
page readonly
|
|
|
|
7FF538B6E000
|
unkown image
|
page readonly
|
|
|
|
1E58261A000
|
unkown
|
page read and write
|
|
|
|
29856102000
|
unkown
|
page read and write
|
|
|
|
7FF523BC8000
|
unkown image
|
page readonly
|
|
|
|
E054BFF000
|
stack
|
page read and write
|
|
|
|
7FF523BD6000
|
unkown image
|
page readonly
|
|
|
|
7FF538CB4000
|
unkown image
|
page readonly
|
|
|
|
1E582607000
|
unkown
|
page read and write
|
|
|
|
7FF523BB4000
|
unkown image
|
page readonly
|
|
|
|
123F3370000
|
unkown image
|
page readonly
|
|
|
|
1FA97548000
|
unkown
|
page read and write
|
|
|
|
123F8A21000
|
unkown
|
page read and write
|
|
|
|
1FA96CC5000
|
unkown
|
page read and write
|
|
|
|
1FA975AD000
|
unkown
|
page read and write
|
|
|
|
7DF538CD0000
|
unkown image
|
page readonly
|
|
|
|
123F8C63000
|
unkown
|
page read and write
|
|
|
|
7FF57D75B000
|
unkown image
|
page readonly
|
|
|
|
7FF57D83A000
|
unkown image
|
page readonly
|
|
|
|
A81997D000
|
stack
|
page read and write
|
|
|
|
7FF515D21000
|
unkown image
|
page readonly
|
|
|
|
7FF57D2C2000
|
unkown image
|
page readonly
|
|
|
|
7FF515EF3000
|
unkown image
|
page readonly
|
|
|
|
1F621070000
|
unkown image
|
page readonly
|
|
|
|
7FF57D6B4000
|
unkown image
|
page readonly
|
|
|
|
7FF516014000
|
unkown image
|
page readonly
|
|
|
|
64AD7B000
|
stack
|
page read and write
|
|
|
|
7FF523AAD000
|
unkown image
|
page readonly
|
|
|
|
957F6FE000
|
stack
|
page read and write
|
|
|
|
7FF515B45000
|
unkown image
|
page readonly
|
|
|
|
1FA97576000
|
unkown
|
page read and write
|
|
|
|
7DF5928D2000
|
unkown image
|
page readonly
|
|
|
|
1FA9759B000
|
unkown
|
page read and write
|
|
|
|
7FF538C75000
|
unkown image
|
page readonly
|
|
|
|
A81987A000
|
stack
|
page read and write
|
|
|
|
7FF523726000
|
unkown image
|
page readonly
|
|
|
|
1FA96C58000
|
unkown
|
page read and write
|
|
|
|
1EDBE655000
|
unkown
|
page read and write
|
|
|
|
1E582630000
|
unkown
|
page read and write
|
|
|
|
123F8A30000
|
unkown
|
page read and write
|
|
|
|
1FA96C50000
|
unkown
|
page read and write
|
|
|
|
7FF54DF43000
|
unkown image
|
page readonly
|
|
|
|
123F3D00000
|
unkown
|
page read and write
|
|
|
|
29856113000
|
unkown
|
page read and write
|
|
|
|
7FF57D787000
|
unkown image
|
page readonly
|
|
|
|
1E582570000
|
heap private
|
page read and write
|
|
|
|
1F621229000
|
unkown
|
page read and write
|
|
|
|
7FF57D750000
|
unkown image
|
page readonly
|
|
|
|
7FF515D2F000
|
unkown image
|
page readonly
|
|
|
|
1FA97940000
|
unkown
|
page read and write
|
|
|
|
123F8C99000
|
unkown
|
page read and write
|
|
|
|
7FF54E0F4000
|
unkown image
|
page readonly
|
|
|
|
7DF54DDE0000
|
unkown image
|
page readonly
|
|
|
|
1FA975AC000
|
unkown
|
page read and write
|
|
|
|
7FF57D7A4000
|
unkown image
|
page readonly
|
|
|
|
7FF515C1A000
|
unkown image
|
page readonly
|
|
|
|
7FF571204000
|
unkown image
|
page readonly
|
|
|
|
1EDBE3C0000
|
heap private
|
page read and write
|
|
|
|
123F3C02000
|
unkown
|
page read and write
|
|
|
|
1FA975BC000
|
unkown
|
page read and write
|
|
|
|
7FF5238E0000
|
unkown image
|
page readonly
|
|
|
|
7DF54DDE2000
|
unkown image
|
page readonly
|
|
|
|
29856602000
|
unkown
|
page read and write
|
|
|
|
1FA9759E000
|
unkown
|
page read and write
|
|
|
|
123F3D02000
|
unkown
|
page read and write
|
|
|
|
7FF515F2E000
|
unkown image
|
page readonly
|
|
|
|
123F8B60000
|
unkown
|
page read and write
|
|
|
|
7FF538CED000
|
unkown image
|
page readonly
|
|
|
|
7FF57D2BE000
|
unkown image
|
page readonly
|
|
|
|
7FF515E76000
|
unkown image
|
page readonly
|
|
|
|
1FA97569000
|
unkown
|
page read and write
|
|
|
|
7FF54DE17000
|
unkown image
|
page readonly
|
|
|
|
1FA97360000
|
unkown image
|
page readonly
|
|
|
|
7FF523BCE000
|
unkown image
|
page readonly
|
|
|
|
1F62124F000
|
unkown
|
page read and write
|
|
|
|
123F8A24000
|
unkown
|
page read and write
|
|
|
|
1FA96C54000
|
unkown
|
page read and write
|
|
|
|
1E582613000
|
unkown
|
page read and write
|
|
|
|
7FF523C4A000
|
unkown image
|
page readonly
|
|
|
|
7FF523B6B000
|
unkown image
|
page readonly
|
|
|
|
1F621270000
|
unkown
|
page read and write
|
|
|
|
1E582A10000
|
unkown image
|
page readonly
|
|
|
|
7DF563212000
|
unkown image
|
page readonly
|
|
|
|
7DF563230000
|
unkown image
|
page readonly
|
|
|
|
1FA97580000
|
unkown
|
page read and write
|
|
|
|
1EDBE700000
|
unkown
|
page read and write
|
|
|
|
7FF57D841000
|
unkown image
|
page readonly
|
|
|
|
1FA9757D000
|
unkown
|
page read and write
|
|
|
|
1FA96D16000
|
unkown
|
page read and write
|
|
|
|
123F3502000
|
unkown
|
page read and write
|
|
|
|
1F621400000
|
unkown image
|
page readonly
|
|
|
|
123F8B50000
|
unkown
|
page read and write
|
|
|
|
7FF57D7BE000
|
unkown image
|
page readonly
|
|
|
|
1FA9759D000
|
unkown
|
page read and write
|
|
|
|
1F621302000
|
unkown
|
page read and write
|
|
|
|
29855E40000
|
heap default
|
page read and write
|
|
|
|
123F3479000
|
unkown
|
page read and write
|
|
|
|
7FF538C9F000
|
unkown image
|
page readonly
|
|
|
|
1FA975D0000
|
unkown
|
page read and write
|
|
|
|
123F3492000
|
unkown
|
page read and write
|
|
|
|
7FF538B31000
|
unkown image
|
page readonly
|
|
|
|
7FF57D2B2000
|
unkown image
|
page readonly
|
|
|
|
1FA975AC000
|
unkown
|
page read and write
|
|
|
|
123F8C16000
|
unkown
|
page read and write
|
|
|
|
7FF57D0A7000
|
unkown image
|
page readonly
|
|
|
|
7FF515F74000
|
unkown image
|
page readonly
|
|
|
|
7FF57D516000
|
unkown image
|
page readonly
|
|
|
|
1FA96C84000
|
unkown
|
page read and write
|
|
|
|
7FF57D74A000
|
unkown image
|
page readonly
|
|
|
|
1FA9759B000
|
unkown
|
page read and write
|
|
|
|
7FF57D834000
|
unkown image
|
page readonly
|
|
|
|
1F621780000
|
unkown image
|
page readonly
|
|
|
|
1FA97A21000
|
unkown
|
page read and write
|
|
|
|
123F8900000
|
unkown
|
page read and write
|
|
|
|
1F621221000
|
unkown
|
page read and write
|
|
|
|
1FA97556000
|
unkown
|
page read and write
|
|
|
|
1FA97390000
|
unkown image
|
page write copy
|
|
|
|
E0544EC000
|
unkown
|
page read and write
|
|
|
|
7FF523ACC000
|
unkown image
|
page readonly
|
|
|
|
7FF515F30000
|
unkown image
|
page readonly
|
|
There are 838 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://gazitanks.net/access-through/PDF/
|
|
|
|
https://gregory-showerss-team.adalo.com/remittance?target=9e2on9raxpckciuzgy01rr1fo¶ms=%7B%7D
|
|