Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\334e3b54-21b5-43be-b646-d7452363df97.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\171152fa-921b-4f4a-8f15-c751ef5dbe65.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1db26ed2-2a22-4139-8e9b-4cc3551884fa.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\71b77b8f-f0b0-42ef-802d-5f0d329c470c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8430c2e1-ed8e-45a3-94e9-b21ed5ca1f9c.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.oldld (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old\. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.oldl (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\000001.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\CURRENTde (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.oldtm (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\MANIFEST-000001
|
PGP\011Secret Key -
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_pjqkh.ytimewornan.xyz_0.indexeddb.leveldb\000001.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_pjqkh.ytimewornan.xyz_0.indexeddb.leveldb\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_pjqkh.ytimewornan.xyz_0.indexeddb.leveldb\CURRENT
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_pjqkh.ytimewornan.xyz_0.indexeddb.leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_pjqkh.ytimewornan.xyz_0.indexeddb.leveldb\MANIFEST-000001
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session.i (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabsnd (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent StateK (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.oldP (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesAE (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesH. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferencesa (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\QuotaManager
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences.t (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure PreferencesMP (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\000001.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\CURRENT (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\MANIFEST-000001
|
PGP\011Secret Key -
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\4cb013792b196a35_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\4cb013792b196a35_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index
|
ISO-8859 text, with no line terminators, with escape sequences
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\temp-index
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.olde/
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\cb906797-f9ed-4538-8efd-42f0e2df3f49.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\8da93ffa-3c3f-4107-9b7b-a3d5ba8abef8.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.old.c
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old8d (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b9de65e2-b61a-47d9-bb87-d969c60668ef.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\bec50e61-f9b2-480b-a566-dbb08fe9727e.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c23e7eb0-bfbf-446d-971d-a1efaaccc4f9.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.oldC (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ecf0a112-6235-407a-bbd5-802b7cafed3d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old8f (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info CacheMP (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\bf773812-fb2b-48ae-8e30-94b2b49e6368.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\c17bdb11-bf6c-45c4-aebb-1f255221a391.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\f3f6b923-8360-43c4-bb82-7f553c6fb599.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5650e025-4b52-4379-8c52-7ccf34b2d7a6.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\9b9943b4-d88a-4a1a-a2f3-9babff23329a.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\a35b11de-0f31-4d33-99f6-f3af7cf79744.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\f84f7546-f928-40f6-9da8-bc54f96233d7.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\9b9943b4-d88a-4a1a-a2f3-9babff23329a.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1305811686\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\5650e025-4b52-4379-8c52-7ccf34b2d7a6.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\iw\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\sl\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\sr\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\sv\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\sw\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\ta\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\te\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\th\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\tr\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\uk\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\vi\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\zh\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_locales\zh_TW\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\angular.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\background_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\cast_sender.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\feedback.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\feedback.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\feedback_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\material_css_min.css
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\mirroring_cast_streaming.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\mirroring_common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\mirroring_hangouts.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6412_1733639273\CRX_INSTALL\mirroring_webrtc.js
|
ASCII text, with very long lines
|
dropped
|
|
There are 236 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://pjqkh.ytimewornan.xyz'
|
 |
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1592,15534381744756406703,17476867209242298863,131072
--lang=en-GB --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1924 /prefetch:8
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://pjqkh.ytimewornan.xyz
|
|
||
|
https://pjqkh.ytimewornan.xyz/
|
|
||
|
https://pjqkh.ytimewornan.xyz/Title
|
unknown
|
|
|
|
https://pjqkh.ytimewornan.xyz/service_worker.js?b1BJUEI0cnBhclpmfHJuTXJlciBaMn9jJldjZDUhDGlkZCMKaWQxJAtkZDYnVmN4Z3oNM3FldU18a2chCzMsZiQJfShodgl9fWJ1DX0raSZdfX4zdQtpeGh3XmVwMWBDcjonYENyLScnDiQhNTANNWcoOxVyZXJzX358cm4JMSUjJ0M2KDwxCnwvMS4cNRQ
|
44.196.246.79
|
|
|
|
https://pjqkh.ytimewornan.xyz/Title/
|
unknown
|
|
|
|
https://apis.google.com/js/client.js
|
unknown
|
|
|
|
https://www.google.com/images/cleardot.gif
|
unknown
|
|
|
|
https://encythan.online/WFhHWkojejQtFS0qK3hwejAzLjorYmh1OjIpLDJkISwuNy8vNzU0KzZ2PyMwdysiKDwxOyIFPTcq
|
unknown
|
|
|
|
https://play.google.com
|
unknown
|
|
|
|
https://crash.corp.google.com/samples?reportid=&q=
|
unknown
|
|
|
|
https://www.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://pjqkh.ytimewornan.xyz/0
|
unknown
|
|
|
|
https://pjqkh.ytimewornan.xyz/2
|
unknown
|
|
|
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
|
unknown
|
|
|
|
https://accounts.google.com/MergeSession
|
unknown
|
|
|
|
https://preprod-hangouts-googleapis.sandbox.google.com
|
unknown
|
|
|
|
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
|
216.58.215.225
|
|
|
|
https://www.google.com
|
unknown
|
|
|
|
https://pjqkh.ytimewornan.xyz/
|
44.196.246.79
|
|
|
|
https://hangouts.clients6.google.com
|
unknown
|
|
|
|
https://meet.google.com
|
unknown
|
|
|
|
https://hangouts.google.com/hangouts/_/logpref
|
unknown
|
|
|
|
https://accounts.google.com
|
unknown
|
|
|
|
https://clients2.google.com/cr/report
|
unknown
|
|
|
|
https://pjqkh.ytimewornan.xyz
|
unknown
|
|
|
|
http://angularjs.org
|
unknown
|
|
|
|
https://creativecommons.org/publicdomain/zero/1.0/.
|
unknown
|
|
|
|
https://github.com/angular/material
|
unknown
|
|
|
|
https://apis.google.com
|
unknown
|
|
|
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
|
|
|
https://github.com/madler/zlib/blob/master/zlib.h
|
unknown
|
|
|
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
|
|
|
https://clients2.google.com
|
unknown
|
|
|
|
https://www.google.com/tools/feedback
|
unknown
|
|
|
|
https://pjqkh.ytimewornan.xyz/service_worker.js
|
44.196.246.79
|
|
|
|
https://pjqkh.ytimewornan.xyz/#CC89067E-3743-4FDD-9EF0-17F518D25-V2
|
unknown
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
unknown
|
|
|
|
https://dns.google
|
unknown
|
|
|
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
|
|
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
|
|
|
https://ogs.google.com
|
unknown
|
|
|
|
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
|
unknown
|
|
|
|
https://pjqkh.ytimewornan.xyz/service_worker.js?b1BJUEI0cnBhclpmfHJuTXJlciBaMn9jJldjZDUhDGlkZCMKaWQx
|
unknown
|
|
|
|
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
172.217.168.45
|
|
|
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://www.google.com;
|
unknown
|
|
|
|
https://hangouts.google.com/
|
unknown
|
|
|
|
https://www.google.com/images/x2.gif
|
unknown
|
|
|
|
https://www.google.com/images/dot2.gif
|
unknown
|
|
|
|
https://meetings.clients6.google.com
|
unknown
|
|
|
|
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
http://tools.ietf.org/html/rfc1950
|
unknown
|
|
|
|
https://encythan.online/WFhHWkojejQtFS0qK3hwejAzLjorYmh1OjIpLDJkISwuNy8vNzU0KzZ2PyMwdysiKDwxOyIFPTcqLD84djI0eGZ6Kyo8aGJpa3g5NS5lYGhrdnN4ZnosJj0VMTxlYGhhaXdvfG16a3g5LToYMy5qen14KG06cWkuYGtqPyk7YWpuKz1hajssPGxqPC9ha3Ztcjo7f299eiU
|
44.198.9.0
|
|
|
|
https://kuwaiting.xyz/utx?tid=910565&top=pjqkh.ytimewornan.xyz&cb=22eiRgQjEUG4
|
13.224.193.92
|
|
|
|
https://support.google.com/chromecast/answer/2998456
|
unknown
|
|
|
|
https://dweatherbe.xyz/
|
44.195.137.121
|
|
|
|
https://clients2.googleusercontent.com
|
unknown
|
|
|
|
https://docs.google.com
|
unknown
|
|
|
|
https://www.google.com/
|
unknown
|
|
|
|
https://feedback.googleusercontent.com
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx
|
unknown
|
|
|
|
https://clients6.google.com
|
unknown
|
|
There are 53 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
dweatherbe.xyz
|
44.195.137.121
|
|
|
|
kuwaiting.xyz
|
13.224.193.92
|
|
|
|
pjqkh.ytimewornan.xyz
|
unknown
|
|
|
|
android.l.google.com
|
142.250.203.110
|
|
|
|
hotlightexpens.fun
|
44.196.246.79
|
|
|
|
accounts.google.com
|
172.217.168.45
|
|
|
|
clients.l.google.com
|
172.217.168.78
|
|
|
|
mobile-gtalk.l.google.com
|
173.194.69.188
|
|
|
|
googlehosted.l.googleusercontent.com
|
216.58.215.225
|
|
|
|
encythan.online
|
44.198.9.0
|
|
|
|
clients2.googleusercontent.com
|
unknown
|
|
|
|
clients2.google.com
|
unknown
|
|
There are 2 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
44.195.137.121
|
dweatherbe.xyz
|
United States
|
|
|
|
13.224.193.92
|
kuwaiting.xyz
|
United States
|
|
|
|
192.168.2.1
|
unknown
|
unknown
|
|
|
|
44.198.9.0
|
encythan.online
|
United States
|
|
|
|
216.58.215.225
|
googlehosted.l.googleusercontent.com
|
United States
|
|
|
|
142.250.203.110
|
android.l.google.com
|
United States
|
|
|
|
172.217.168.45
|
accounts.google.com
|
United States
|
|
|
|
173.194.69.188
|
mobile-gtalk.l.google.com
|
United States
|
|
|
|
239.255.255.250
|
unknown
|
Reserved
|
|
|
|
44.196.246.79
|
hotlightexpens.fun
|
United States
|
|
|
|
127.0.0.1
|
unknown
|
unknown
|
|
There are 1 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
|
There are 34 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7FF5E64D2000
|
unkown image
|
page readonly
|
|
|
|
7DF5FB7D0000
|
unkown image
|
page readonly
|
|
|
|
1E0AAF13000
|
unkown
|
page read and write
|
|
|
|
1E0AAF02000
|
unkown
|
page read and write
|
|
|
|
1866CEB0000
|
unkown
|
page read and write
|
|
|
|
1F3B5E10000
|
heap private
|
page read and write
|
|
|
|
7DF5E9F80000
|
unkown image
|
page readonly
|
|
|
|
7FF573D25000
|
unkown image
|
page readonly
|
|
|
|
7FF5E6327000
|
unkown image
|
page readonly
|
|
|
|
18668680000
|
unkown
|
page read and write
|
|
|
|
7FF5D4E44000
|
unkown image
|
page readonly
|
|
|
|
7FF5E6481000
|
unkown image
|
page readonly
|
|
|
|
2186546E000
|
unkown
|
page read and write
|
|
|
|
7FF57419A000
|
unkown image
|
page readonly
|
|
|
|
334A77F000
|
stack
|
page read and write
|
|
|
|
7DF5E9F90000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4C51000
|
unkown image
|
page readonly
|
|
|
|
7FF5E643F000
|
unkown image
|
page readonly
|
|
|
|
1E0AB200000
|
unkown image
|
page readonly
|
|
|
|
7DF5FB7B2000
|
unkown image
|
page readonly
|
|
|
|
1F3B6029000
|
unkown
|
page read and write
|
|
|
|
1F3B6050000
|
unkown
|
page read and write
|
|
|
|
334A4FF000
|
stack
|
page read and write
|
|
|
|
7DF5892D2000
|
unkown image
|
page readonly
|
|
|
|
7FF5741AF000
|
unkown image
|
page readonly
|
|
|
|
1F3B5F70000
|
unkown
|
page read and write
|
|
|
|
462B97C000
|
stack
|
page read and write
|
|
|
|
7FF5E6431000
|
unkown image
|
page readonly
|
|
|
|
7FF5E65E0000
|
unkown image
|
page readonly
|
|
|
|
7FF5E6640000
|
unkown image
|
page readonly
|
|
|
|
7FF57417C000
|
unkown image
|
page readonly
|
|
|
|
7FF544FD3000
|
unkown image
|
page readonly
|
|
|
|
7DF5FB7B0000
|
unkown image
|
page readonly
|
|
|
|
1866CFB0000
|
unkown
|
page read and write
|
|
|
|
186688A0000
|
unkown image
|
page readonly
|
|
|
|
7FF5E66B9000
|
unkown image
|
page readonly
|
|
|
|
7FF5E5ED5000
|
unkown image
|
page readonly
|
|
|
|
462B777000
|
stack
|
page read and write
|
|
|
|
7FF573D16000
|
unkown image
|
page readonly
|
|
|
|
1F3B6108000
|
unkown
|
page read and write
|
|
|
|
7FF5E63EA000
|
unkown image
|
page readonly
|
|
|
|
1866CC40000
|
unkown
|
page read and write
|
|
|
|
7FF574150000
|
unkown image
|
page readonly
|
|
|
|
CB866FB000
|
stack
|
page read and write
|
|
|
|
7FF5450F6000
|
unkown image
|
page readonly
|
|
|
|
7DF5E9F90000
|
unkown image
|
page readonly
|
|
|
|
334A6FB000
|
stack
|
page read and write
|
|
|
|
334A3FB000
|
stack
|
page read and write
|
|
|
|
1866CD80000
|
unkown
|
page read and write
|
|
|
|
1E0AAE13000
|
unkown
|
page read and write
|
|
|
|
7FF5D49D5000
|
unkown image
|
page readonly
|
|
|
|
7FF545080000
|
unkown image
|
page readonly
|
|
|
|
7FF5D49C6000
|
unkown image
|
page readonly
|
|
|
|
7FF5E61A2000
|
unkown image
|
page readonly
|
|
|
|
18668500000
|
unkown
|
page read and write
|
|
|
|
CB8677E000
|
stack
|
page read and write
|
|
|
|
7FF57409D000
|
unkown image
|
page readonly
|
|
|
|
21865400000
|
unkown
|
page read and write
|
|
|
|
7FF5E6501000
|
unkown image
|
page readonly
|
|
|
|
7FF5740B4000
|
unkown image
|
page readonly
|
|
|
|
7FF544FCD000
|
unkown image
|
page readonly
|
|
|
|
334A87E000
|
stack
|
page read and write
|
|
|
|
7FF5E658D000
|
unkown image
|
page readonly
|
|
|
|
7FF5E6684000
|
unkown image
|
page readonly
|
|
|
|
18668000000
|
unkown
|
page read and write
|
|
|
|
18667858000
|
unkown
|
page read and write
|
|
|
|
7FF5E662A000
|
unkown image
|
page readonly
|
|
|
|
1866D07B000
|
unkown
|
page read and write
|
|
|
|
7FF5E63FB000
|
unkown image
|
page readonly
|
|
|
|
7FF5E6603000
|
unkown image
|
page readonly
|
|
|
|
7DF55A1F2000
|
unkown image
|
page readonly
|
|
|
|
7FF5E6257000
|
unkown image
|
page readonly
|
|
|
|
7FF544FEC000
|
unkown image
|
page readonly
|
|
|
|
18667FF3000
|
unkown
|
page read and write
|
|
|
|
1E0AAE00000
|
unkown
|
page read and write
|
|
|
|
18667902000
|
unkown
|
page read and write
|
|
|
|
7DF5E9F82000
|
unkown image
|
page readonly
|
|
|
|
18668100000
|
unkown
|
page read and write
|
|
|
|
1F3B605A000
|
unkown
|
page read and write
|
|
|
|
18668002000
|
unkown
|
page read and write
|
|
|
|
7FF5D4D4D000
|
unkown image
|
page readonly
|
|
|
|
7FF5E64E5000
|
unkown image
|
page readonly
|
|
|
|
21865210000
|
heap default
|
page read and write
|
|
|
|
18667C00000
|
unkown image
|
page readonly
|
|
|
|
1866788B000
|
unkown
|
page read and write
|
|
|
|
186676A0000
|
heap private
|
page read and write
|
|
|
|
2186544B000
|
unkown
|
page read and write
|
|
|
|
1E0AAF08000
|
unkown
|
page read and write
|
|
|
|
1F3B6802000
|
unkown
|
page read and write
|
|
|
|
7FF5E672A000
|
unkown image
|
page readonly
|
|
|
|
1866CC60000
|
unkown
|
page read and write
|
|
|
|
7FF544C55000
|
unkown image
|
page readonly
|
|
|
|
18667690000
|
unkown image
|
page read and write
|
|
|
|
7FF574194000
|
unkown image
|
page readonly
|
|
|
|
1866D0A0000
|
unkown
|
page read and write
|
|
|
|
18668BF0000
|
unkown
|
page read and write
|
|
|
|
1F3B6200000
|
unkown image
|
page readonly
|
|
|
|
21865980000
|
unkown image
|
page readonly
|
|
|
|
BBE17FF000
|
stack
|
page read and write
|
|
|
|
7DF55A1F0000
|
unkown image
|
page readonly
|
|
|
|
7FF544F41000
|
unkown image
|
page readonly
|
|
|
|
1866CEC0000
|
unkown
|
page read and write
|
|
|
|
1F3B603C000
|
unkown
|
page read and write
|
|
|
|
21865413000
|
unkown
|
page read and write
|
|
|
|
1E0AAE88000
|
unkown
|
page read and write
|
|
|
|
7DF5892C2000
|
unkown image
|
page readonly
|
|
|
|
186676E0000
|
unkown image
|
page readonly
|
|
|
|
1F3B5F50000
|
unkown image
|
page readonly
|
|
|
|
186676B0000
|
unkown image
|
page readonly
|
|
|
|
1F3B5E00000
|
unkown image
|
page read and write
|
|
|
|
7FF5E65AC000
|
unkown image
|
page readonly
|
|
|
|
186678FC000
|
unkown
|
page read and write
|
|
|
|
7FF5E6677000
|
unkown image
|
page readonly
|
|
|
|
7FF54483B000
|
unkown image
|
page readonly
|
|
|
|
18667913000
|
unkown
|
page read and write
|
|
|
|
7FF5D4E2F000
|
unkown image
|
page readonly
|
|
|
|
218651B0000
|
heap private
|
page read and write
|
|
|
|
7FF5E62D1000
|
unkown image
|
page readonly
|
|
|
|
1866783D000
|
unkown
|
page read and write
|
|
|
|
7FF5E6694000
|
unkown image
|
page readonly
|
|
|
|
7DF55A210000
|
unkown image
|
page readonly
|
|
|
|
7FF5450AF000
|
unkown image
|
page readonly
|
|
|
|
1866D000000
|
unkown
|
page read and write
|
|
|
|
1F3B6000000
|
unkown
|
page read and write
|
|
|
|
7FF5741CD000
|
unkown image
|
page readonly
|
|
|
|
1F3B604C000
|
unkown
|
page read and write
|
|
|
|
18668850000
|
unkown image
|
page readonly
|
|
|
|
7FF5E6474000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4CA3000
|
unkown image
|
page readonly
|
|
|
|
7FF574155000
|
unkown image
|
page readonly
|
|
|
|
1F3B5E50000
|
unkown image
|
page readonly
|
|
|
|
BBE127E000
|
stack
|
page read and write
|
|
|
|
462B16B000
|
unkown
|
page read and write
|
|
|
|
7DF5892C2000
|
unkown image
|
page readonly
|
|
|
|
1866D03E000
|
unkown
|
page read and write
|
|
|
|
7FF5D4E54000
|
unkown image
|
page readonly
|
|
|
|
1F3B6046000
|
unkown
|
page read and write
|
|
|
|
18668770000
|
unkown
|
page read and write
|
|
|
|
7DF5FB7D0000
|
unkown image
|
page readonly
|
|
|
|
7FF5740A3000
|
unkown image
|
page readonly
|
|
|
|
2186545C000
|
unkown
|
page read and write
|
|
|
|
1E0AAE55000
|
unkown
|
page read and write
|
|
|
|
7FF5D45B5000
|
unkown image
|
page readonly
|
|
|
|
1F3B6052000
|
unkown
|
page read and write
|
|
|
|
7DF5892C0000
|
unkown image
|
page readonly
|
|
|
|
186678BA000
|
unkown
|
page read and write
|
|
|
|
3349DBB000
|
unkown
|
page read and write
|
|
|
|
1866CE90000
|
unkown
|
page read and write
|
|
|
|
1866CEC0000
|
unkown
|
page read and write
|
|
|
|
7FF5450AC000
|
unkown image
|
page readonly
|
|
|
|
7DF55A200000
|
unkown image
|
page readonly
|
|
|
|
1E0AB402000
|
unkown
|
page read and write
|
|
|
|
7FF5E6586000
|
unkown image
|
page readonly
|
|
|
|
7DF5E9F80000
|
unkown image
|
page readonly
|
|
|
|
1E0AABC0000
|
unkown image
|
page readonly
|
|
|
|
7DF55A202000
|
unkown image
|
page readonly
|
|
|
|
18668015000
|
unkown
|
page read and write
|
|
|
|
218651C0000
|
unkown image
|
page readonly
|
|
|
|
7DF5FB7C2000
|
unkown image
|
page readonly
|
|
|
|
7FF574187000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4B80000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4E68000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4D6C000
|
unkown image
|
page readonly
|
|
|
|
334A07F000
|
stack
|
page read and write
|
|
|
|
1866CC50000
|
unkown
|
page read and write
|
|
|
|
7DF4580C0000
|
unkown image
|
page readonly
|
|
|
|
7FF5E6324000
|
unkown image
|
page readonly
|
|
|
|
186678B2000
|
unkown
|
page read and write
|
|
|
|
7FF5D4E79000
|
unkown image
|
page readonly
|
|
|
|
18667892000
|
unkown
|
page read and write
|
|
|
|
CB8618B000
|
unkown
|
page read and write
|
|
|
|
186676B0000
|
unkown image
|
page readonly
|
|
|
|
7DF5892E0000
|
unkown image
|
page readonly
|
|
|
|
7DF5892C0000
|
unkown image
|
page readonly
|
|
|
|
7DF5FB7B0000
|
unkown image
|
page readonly
|
|
|
|
7DF5E9F72000
|
unkown image
|
page readonly
|
|
|
|
462B87E000
|
stack
|
page read and write
|
|
|
|
7FF57404B000
|
unkown image
|
page readonly
|
|
|
|
2186545C000
|
unkown
|
page read and write
|
|
|
|
7FF54506A000
|
unkown image
|
page readonly
|
|
|
|
7FF544F7E000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4CFB000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4E37000
|
unkown image
|
page readonly
|
|
|
|
7FF5450FD000
|
unkown image
|
page readonly
|
|
|
|
7DF5FB7C0000
|
unkown image
|
page readonly
|
|
|
|
7FF5741B8000
|
unkown image
|
page readonly
|
|
|
|
7FF54506C000
|
unkown image
|
page readonly
|
|
|
|
218651E0000
|
unkown image
|
page readonly
|
|
|
|
1F3B6102000
|
unkown
|
page read and write
|
|
|
|
18668660000
|
unkown
|
page read and write
|
|
|
|
7FF5D4DFA000
|
unkown image
|
page readonly
|
|
|
|
1866D08B000
|
unkown
|
page read and write
|
|
|
|
7DF5FB7C2000
|
unkown image
|
page readonly
|
|
|
|
7DF5FB7C0000
|
unkown image
|
page readonly
|
|
|
|
7FF574234000
|
unkown image
|
page readonly
|
|
|
|
7FF545085000
|
unkown image
|
page readonly
|
|
|
|
7FF5E6645000
|
unkown image
|
page readonly
|
|
|
|
218651C0000
|
unkown image
|
page readonly
|
|
|
|
1866CEC0000
|
unkown
|
page read and write
|
|
|
|
7FF5E666C000
|
unkown image
|
page readonly
|
|
|
|
7FF5E5F42000
|
unkown image
|
page readonly
|
|
|
|
1866CD60000
|
unkown
|
page read and write
|
|
|
|
BBE14FE000
|
stack
|
page read and write
|
|
|
|
18667870000
|
unkown
|
page read and write
|
|
|
|
1F3B6088000
|
unkown
|
page read and write
|
|
|
|
18667D80000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4E05000
|
unkown image
|
page readonly
|
|
|
|
7FF573FF3000
|
unkown image
|
page readonly
|
|
|
|
1866CD90000
|
unkown
|
page read and write
|
|
|
|
7DF5892D0000
|
unkown image
|
page readonly
|
|
|
|
1F3B5E20000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4E00000
|
unkown image
|
page readonly
|
|
|
|
7DF55A1F0000
|
unkown image
|
page readonly
|
|
|
|
21865464000
|
unkown
|
page read and write
|
|
|
|
21865447000
|
unkown
|
page read and write
|
|
|
|
7FF5450DF000
|
unkown image
|
page readonly
|
|
|
|
334AA7F000
|
stack
|
page read and write
|
|
|
|
18667889000
|
unkown
|
page read and write
|
|
|
|
21865513000
|
unkown
|
page read and write
|
|
|
|
7FF5741BE000
|
unkown image
|
page readonly
|
|
|
|
7FF5450EE000
|
unkown image
|
page readonly
|
|
|
|
1866D01E000
|
unkown
|
page read and write
|
|
|
|
7FF5450B7000
|
unkown image
|
page readonly
|
|
|
|
7DF4E7E40000
|
unkown image
|
page readonly
|
|
|
|
7FF574242000
|
unkown image
|
page readonly
|
|
|
|
462B1EF000
|
stack
|
page read and write
|
|
|
|
7DF5E9F70000
|
unkown image
|
page readonly
|
|
|
|
7FF5E6491000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4E6E000
|
unkown image
|
page readonly
|
|
|
|
1F3B604F000
|
unkown
|
page read and write
|
|
|
|
7FF5D4CE1000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4E76000
|
unkown image
|
page readonly
|
|
|
|
7FF5E6255000
|
unkown image
|
page readonly
|
|
|
|
7FF544F23000
|
unkown image
|
page readonly
|
|
|
|
18667813000
|
unkown
|
page read and write
|
|
|
|
7FF573EC7000
|
unkown image
|
page readonly
|
|
|
|
7DF55A210000
|
unkown image
|
page readonly
|
|
|
|
7DF5E9F72000
|
unkown image
|
page readonly
|
|
|
|
1F3B6400000
|
unkown image
|
page readonly
|
|
|
|
7DF55A202000
|
unkown image
|
page readonly
|
|
|
|
18667D90000
|
unkown image
|
page readonly
|
|
|
|
7FF54516A000
|
unkown image
|
page readonly
|
|
|
|
7FF57417F000
|
unkown image
|
page readonly
|
|
|
|
7FF5E65F3000
|
unkown image
|
page readonly
|
|
|
|
7FF5450CA000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4E0B000
|
unkown image
|
page readonly
|
|
|
|
1866CED0000
|
unkown
|
page read and write
|
|
|
|
7FF544F7B000
|
unkown image
|
page readonly
|
|
|
|
1E0AAE6C000
|
unkown
|
page read and write
|
|
|
|
7FF54507E000
|
unkown image
|
page readonly
|
|
|
|
7FF5E64EF000
|
unkown image
|
page readonly
|
|
|
|
7FF545171000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4E2C000
|
unkown image
|
page readonly
|
|
|
|
1E0AAE4F000
|
unkown
|
page read and write
|
|
|
|
1F3B6580000
|
unkown image
|
page readonly
|
|
|
|
1E0AABE0000
|
unkown image
|
page readonly
|
|
|
|
21865508000
|
unkown
|
page read and write
|
|
|
|
21865502000
|
unkown
|
page read and write
|
|
|
|
1E0AAF00000
|
unkown
|
page read and write
|
|
|
|
18668281000
|
unkown
|
page read and write
|
|
|
|
1866CEB0000
|
unkown
|
page read and write
|
|
|
|
7FF5D4EE4000
|
unkown image
|
page readonly
|
|
|
|
7FF5E6418000
|
unkown image
|
page readonly
|
|
|
|
18667800000
|
unkown
|
page read and write
|
|
|
|
CB86A7F000
|
stack
|
page read and write
|
|
|
|
186676D0000
|
unkown image
|
page readonly
|
|
|
|
7FF57413C000
|
unkown image
|
page readonly
|
|
|
|
7FF5E643D000
|
unkown image
|
page readonly
|
|
|
|
1866D061000
|
unkown
|
page read and write
|
|
|
|
1E0AADE0000
|
unkown
|
page read and write
|
|
|
|
7FF5E663A000
|
unkown image
|
page readonly
|
|
|
|
7FF54508B000
|
unkown image
|
page readonly
|
|
|
|
7FF57404E000
|
unkown image
|
page readonly
|
|
|
|
7FF57413A000
|
unkown image
|
page readonly
|
|
|
|
1E0AAE2A000
|
unkown
|
page read and write
|
|
|
|
1866CD84000
|
unkown
|
page read and write
|
|
|
|
7FF5E632A000
|
unkown image
|
page readonly
|
|
|
|
7FF5E6688000
|
unkown image
|
page readonly
|
|
|
|
334A97F000
|
stack
|
page read and write
|
|
|
|
7FF57423A000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4B77000
|
unkown image
|
page readonly
|
|
|
|
7FF5450E8000
|
unkown image
|
page readonly
|
|
|
|
1F3B5E40000
|
unkown image
|
page readonly
|
|
|
|
CB86877000
|
stack
|
page read and write
|
|
|
|
7FF5E6724000
|
unkown image
|
page readonly
|
|
|
|
18668201000
|
unkown
|
page read and write
|
|
|
|
7DF5E9F82000
|
unkown image
|
page readonly
|
|
|
|
7FF573D10000
|
unkown image
|
page readonly
|
|
|
|
7FF544C46000
|
unkown image
|
page readonly
|
|
|
|
218653E0000
|
unkown
|
page read and write
|
|
|
|
7FF544FE4000
|
unkown image
|
page readonly
|
|
|
|
1F3B607D000
|
unkown
|
page read and write
|
|
|
|
1866782A000
|
unkown
|
page read and write
|
|
|
|
7FF5E6330000
|
unkown image
|
page readonly
|
|
|
|
7DF5E9F70000
|
unkown image
|
page readonly
|
|
|
|
1E0AACF0000
|
unkown image
|
page readonly
|
|
|
|
1F3B606F000
|
unkown
|
page read and write
|
|
|
|
7FF5E5DF0000
|
unkown image
|
page readonly
|
|
|
|
1866CD68000
|
unkown
|
page read and write
|
|
|
|
334ACFC000
|
stack
|
page read and write
|
|
|
|
21865484000
|
unkown
|
page read and write
|
|
|
|
218651F0000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4DEA000
|
unkown image
|
page readonly
|
|
|
|
18667879000
|
unkown
|
page read and write
|
|
|
|
7DF5892D2000
|
unkown image
|
page readonly
|
|
|
|
18667875000
|
unkown
|
page read and write
|
|
|
|
334ABFD000
|
stack
|
page read and write
|
|
|
|
7FF5E666F000
|
unkown image
|
page readonly
|
|
|
|
BBE137B000
|
stack
|
page read and write
|
|
|
|
7FF5D4E17000
|
unkown image
|
page readonly
|
|
|
|
18668102000
|
unkown
|
page read and write
|
|
|
|
7FF5E64EA000
|
unkown image
|
page readonly
|
|
|
|
7FF573FA1000
|
unkown image
|
page readonly
|
|
|
|
2186544E000
|
unkown
|
page read and write
|
|
|
|
1866789D000
|
unkown
|
page read and write
|
|
|
|
7FF5E5DE5000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4CFE000
|
unkown image
|
page readonly
|
|
|
|
21865A02000
|
unkown
|
page read and write
|
|
|
|
218652F0000
|
unkown image
|
page readonly
|
|
|
|
1866CDA0000
|
unkown
|
page read and write
|
|
|
|
7FF5E662C000
|
unkown image
|
page readonly
|
|
|
|
1F3B604D000
|
unkown
|
page read and write
|
|
|
|
18668670000
|
unkown
|
page read and write
|
|
|
|
7FF5E669F000
|
unkown image
|
page readonly
|
|
|
|
7FF544835000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4EF1000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4D53000
|
unkown image
|
page readonly
|
|
|
|
462B67B000
|
stack
|
page read and write
|
|
|
|
1866CEA0000
|
unkown
|
page read and write
|
|
|
|
334A2FB000
|
stack
|
page read and write
|
|
|
|
7FF574167000
|
unkown image
|
page readonly
|
|
|
|
1E0AABF0000
|
unkown image
|
page readonly
|
|
|
|
1866CDA4000
|
unkown
|
page read and write
|
|
|
|
7FF573ED0000
|
unkown image
|
page readonly
|
|
|
|
7DF55A1F2000
|
unkown image
|
page readonly
|
|
|
|
1E0AAC10000
|
heap default
|
page read and write
|
|
|
|
2186543C000
|
unkown
|
page read and write
|
|
|
|
CB8697F000
|
stack
|
page read and write
|
|
|
|
7FF57415B000
|
unkown image
|
page readonly
|
|
|
|
7FF574031000
|
unkown image
|
page readonly
|
|
|
|
7FF5E6296000
|
unkown image
|
page readonly
|
|
|
|
BBE0FDE000
|
stack
|
page read and write
|
|
|
|
18668870000
|
unkown image
|
page readonly
|
|
|
|
1F3B6100000
|
unkown
|
page read and write
|
|
|
|
1866CD60000
|
unkown
|
page read and write
|
|
|
|
7FF545097000
|
unkown image
|
page readonly
|
|
|
|
334A1F7000
|
stack
|
page read and write
|
|
|
|
218651A0000
|
unkown image
|
page read and write
|
|
|
|
7FF5E6731000
|
unkown image
|
page readonly
|
|
|
|
1866CE80000
|
unkown
|
page read and write
|
|
|
|
1866CD90000
|
unkown
|
page read and write
|
|
|
|
7FF544C40000
|
unkown image
|
page readonly
|
|
|
|
1F3B6055000
|
unkown
|
page read and write
|
|
|
|
7DF5892E0000
|
unkown image
|
page readonly
|
|
|
|
21865500000
|
unkown
|
page read and write
|
|
|
|
7FF5450C4000
|
unkown image
|
page readonly
|
|
|
|
18668158000
|
unkown
|
page read and write
|
|
|
|
1E0AABA0000
|
unkown image
|
page read and write
|
|
|
|
7FF545164000
|
unkown image
|
page readonly
|
|
|
|
7FF5741C6000
|
unkown image
|
page readonly
|
|
|
|
7FF5E664B000
|
unkown image
|
page readonly
|
|
|
|
BBE147B000
|
stack
|
page read and write
|
|
|
|
7FF574241000
|
unkown image
|
page readonly
|
|
|
|
7FF5E661F000
|
unkown image
|
page readonly
|
|
|
|
7FF5D49C0000
|
unkown image
|
page readonly
|
|
|
|
1866D014000
|
unkown
|
page read and write
|
|
|
|
21865800000
|
unkown image
|
page readonly
|
|
|
|
7FF5E6614000
|
unkown image
|
page readonly
|
|
|
|
7FF5E63BF000
|
unkown image
|
page readonly
|
|
|
|
1F3B6057000
|
unkown
|
page read and write
|
|
|
|
7DF5892D0000
|
unkown image
|
page readonly
|
|
|
|
7FF5E66AE000
|
unkown image
|
page readonly
|
|
|
|
1F3B5E20000
|
unkown image
|
page readonly
|
|
|
|
7FF544CFE000
|
unkown image
|
page readonly
|
|
|
|
7DF5FB7B2000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4E7D000
|
unkown image
|
page readonly
|
|
|
|
1866D08D000
|
unkown
|
page read and write
|
|
|
|
7FF5E65FF000
|
unkown image
|
page readonly
|
|
|
|
7FF544DF7000
|
unkown image
|
page readonly
|
|
|
|
7DF4F9680000
|
unkown image
|
page readonly
|
|
|
|
18667A00000
|
unkown image
|
page readonly
|
|
|
|
21865600000
|
unkown image
|
page readonly
|
|
|
|
334A7FE000
|
stack
|
page read and write
|
|
|
|
7FF5D45BB000
|
unkown image
|
page readonly
|
|
|
|
334A9FE000
|
stack
|
page read and write
|
|
|
|
7FF574011000
|
unkown image
|
page readonly
|
|
|
|
334A5FA000
|
stack
|
page read and write
|
|
|
|
7FF545172000
|
unkown image
|
page readonly
|
|
|
|
7FF5450D4000
|
unkown image
|
page readonly
|
|
|
|
1866819A000
|
unkown
|
page read and write
|
|
|
|
21865478000
|
unkown
|
page read and write
|
|
|
|
18667700000
|
heap default
|
page read and write
|
|
|
|
1866CD61000
|
unkown
|
page read and write
|
|
|
|
1866CD6E000
|
unkown
|
page read and write
|
|
|
|
7FF5E5F8E000
|
unkown image
|
page readonly
|
|
|
|
18667FF0000
|
unkown
|
page read and write
|
|
|
|
BBE16FF000
|
stack
|
page read and write
|
|
|
|
BBE0F5C000
|
unkown
|
page read and write
|
|
|
|
1866CE70000
|
unkown
|
page read and write
|
|
|
|
7FF544F61000
|
unkown image
|
page readonly
|
|
|
|
7FF5E6435000
|
unkown image
|
page readonly
|
|
|
|
7FF57414E000
|
unkown image
|
page readonly
|
|
|
|
7FF54507A000
|
unkown image
|
page readonly
|
|
|
|
1E0AB000000
|
unkown image
|
page readonly
|
|
|
|
1F3B6113000
|
unkown
|
page read and write
|
|
|
|
7FF5E6657000
|
unkown image
|
page readonly
|
|
|
|
1866D04B000
|
unkown
|
page read and write
|
|
|
|
18668113000
|
unkown
|
page read and write
|
|
|
|
7FF5450F9000
|
unkown image
|
page readonly
|
|
|
|
1866CD81000
|
unkown
|
page read and write
|
|
|
|
7FF5E6732000
|
unkown image
|
page readonly
|
|
|
|
BBE15F7000
|
stack
|
page read and write
|
|
|
|
186677E0000
|
unkown image
|
page readonly
|
|
|
|
18668860000
|
unkown image
|
page readonly
|
|
|
|
1F3B6047000
|
unkown
|
page read and write
|
|
|
|
1E0AABC0000
|
unkown image
|
page readonly
|
|
|
|
1866CFD0000
|
unkown
|
page read and write
|
|
|
|
18667F70000
|
unkown image
|
page read and write
|
|
|
|
7FF5E66A8000
|
unkown image
|
page readonly
|
|
|
|
186678A0000
|
unkown
|
page read and write
|
|
|
|
2186542A000
|
unkown
|
page read and write
|
|
|
|
1F3B6013000
|
unkown
|
page read and write
|
|
|
|
7FF5D4EEA000
|
unkown image
|
page readonly
|
|
|
|
7FF5741C9000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4EF2000
|
unkown image
|
page readonly
|
|
|
|
18668118000
|
unkown
|
page read and write
|
|
|
|
7FF5D4E4A000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4DEC000
|
unkown image
|
page readonly
|
|
|
|
1E0AABB0000
|
heap private
|
page read and write
|
|
|
|
7DF55A200000
|
unkown image
|
page readonly
|
|
|
|
1E0AAE3C000
|
unkown
|
page read and write
|
|
|
|
1866CE30000
|
unkown
|
page read and write
|
|
|
|
1866D02B000
|
unkown
|
page read and write
|
|
|
|
7FF5E5DF5000
|
unkown image
|
page readonly
|
|
|
|
1F3B604B000
|
unkown
|
page read and write
|
|
|
|
1F3B5E70000
|
heap default
|
page read and write
|
|
|
|
7FF5E6476000
|
unkown image
|
page readonly
|
|
|
|
7FF5E642B000
|
unkown image
|
page readonly
|
|
|
|
7FF5740BC000
|
unkown image
|
page readonly
|
|
|
|
7FF544ED1000
|
unkown image
|
page readonly
|
|
|
|
21865464000
|
unkown
|
page read and write
|
|
|
|
CB8647E000
|
stack
|
page read and write
|
|
|
|
7FF5E663E000
|
unkown image
|
page readonly
|
|
|
|
7FF5741A4000
|
unkown image
|
page readonly
|
|
|
|
7FF5E6406000
|
unkown image
|
page readonly
|
|
|
|
18667FD1000
|
unkown
|
page read and write
|
|
|
|
7DF487190000
|
unkown image
|
page readonly
|
|
|
|
CB864FE000
|
stack
|
page read and write
|
|
|
|
7FF5E62C0000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4E5F000
|
unkown image
|
page readonly
|
|
|
|
7FF57414A000
|
unkown image
|
page readonly
|
|
|
|
1866CEC0000
|
unkown
|
page read and write
|
|
|
|
7FF5E641F000
|
unkown image
|
page readonly
|
|
|
|
1F3B6058000
|
unkown
|
page read and write
|
|
|
|
18667E60000
|
unkown
|
page read and write
|
|
|
|
18668890000
|
unkown image
|
page readonly
|
|
|
|
462B47F000
|
stack
|
page read and write
|
|
|
|
1F3B6091000
|
unkown
|
page read and write
|
|
|
|
1E0AAE7F000
|
unkown
|
page read and write
|
|
|
|
7FF5D4D64000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4CC1000
|
unkown image
|
page readonly
|
|
|
|
18668880000
|
unkown image
|
page readonly
|
|
|
|
462BA7F000
|
stack
|
page read and write
|
|
|
|
7FF5E66B6000
|
unkown image
|
page readonly
|
|
|
|
21865453000
|
unkown
|
page read and write
|
|
|
|
1E0AB380000
|
unkown image
|
page readonly
|
|
|
|
7FF5D4DFE000
|
unkown image
|
page readonly
|
|
|
|
1E0AAE70000
|
unkown
|
page read and write
|
|
|
|
18668690000
|
unkown image
|
page read and write
|
|
There are 459 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://pjqkh.ytimewornan.xyz/
|
|