Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\1cb3df78-3045-4101-abe9-072358532f0a.tmp
|
SysEx File -
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\5e2a4ff0-8136-4e41-9416-a821b6805af5.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\808481ce-3724-41a2-b488-4853868f4640.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\88c3f159-9513-4e93-87f1-197dcee1b161.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3b9558c9-e0ab-4014-9f20-30a5a27d2e98.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\415dd08c-70e3-4c90-a41c-3d53efdd5afe.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\44a78662-1d0e-41c4-8874-a60e86f0a05b.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9edb7fe8-e61a-4527-b0e8-52514c32efad.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.oldp (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old.. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old.2 (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old.d (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Sessionm (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabson (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent Stated (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.oldlf (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences.t (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\615c5839-6ef7-491b-9d05-9152a1562d3a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old.
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old.c
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\3b125ee5-6999-449b-9cef-f8deacbff893.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old0,
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.oldgo
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.olde/
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.oldg (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.old0
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c41fc7d9-fdea-4777-808e-5733fc5671d6.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENTP (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\e5b57611-72ed-47f5-8a00-1c8b0cd97f22.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.oldd (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache\i (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\bd2b013d-7e64-44da-8d63-393415299945.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\db5ae9dc-38fe-42a4-907c-76ec7b12d771.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\01c95e71-cc52-44be-b472-e3abce0ae2c2.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1528271370\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\01c95e71-cc52-44be-b472-e3abce0ae2c2.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\iw\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\angular.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\background_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\cast_sender.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\feedback.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\feedback.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\feedback_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\material_css_min.css
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\mirroring_cast_streaming.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\mirroring_common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\mirroring_hangouts.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6660_1805575565\CRX_INSTALL\mirroring_webrtc.js
|
ASCII text, with very long lines
|
dropped
|
|
There are 210 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://shiny.documentx.workers.dev/index.html'
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1584,14757565461869508063,18229539668985602812,131072
--lang=en-GB --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1936 /prefetch:8
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://shiny.documentx.workers.dev/index.html
|
 |
||
|
https://shiny.documentx.workers.dev/index.htmln
|
unknown
|
|
|
|
https://shiny.documentx.workers.dev/index.html
|
|
||
|
https://shiny.documentx.workers.dev/index.html2
|
unknown
|
|
|
|
https://shiny.documentx.workers.dev/index.htmlSharing
|
unknown
|
|
|
|
https://shiny.documentx.workers.dev/index.html
|
172.67.192.125
|
|
|
|
https://a.nel.cloudflare.com/report/v3?s=aRt%2FKLhJAf5yNNajNbnucUjfeADtGz%2BeBY08GLsKShsptAvRAsSOGnu
|
unknown
|
|
|
|
https://apis.google.com/js/client.js
|
unknown
|
|
|
|
https://www.google.com/images/cleardot.gif
|
unknown
|
|
|
|
https://play.google.com
|
unknown
|
|
|
|
https://crash.corp.google.com/samples?reportid=&q=
|
unknown
|
|
|
|
https://www.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
|
unknown
|
|
|
|
https://accounts.google.com/MergeSession
|
unknown
|
|
|
|
https://preprod-hangouts-googleapis.sandbox.google.com
|
unknown
|
|
|
|
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
|
172.217.168.33
|
|
|
|
https://www.google.com
|
unknown
|
|
|
|
https://upload.wikimedia.org/wikipedia/commons/thumb/9/96/Microsoft_logo_%282012%29.svg/1200px-Microsoft_logo_%282012%29.svg.png
|
91.198.174.208
|
|
|
|
https://hangouts.clients6.google.com
|
unknown
|
|
|
|
https://meet.google.com
|
unknown
|
|
|
|
https://hangouts.google.com/hangouts/_/logpref
|
unknown
|
|
|
|
https://accounts.google.com
|
unknown
|
|
|
|
https://clients2.google.com/cr/report
|
unknown
|
|
|
|
https://upload.wikimedia.org/wikipedia/commons/thumb/9/96/Microsoft_logo_%282012%29.svg/1200px-Micro
|
unknown
|
|
|
|
http://angularjs.org
|
unknown
|
|
|
|
https://a.nel.cloudflare.com/report/v3?s=SW%2B%2BHV0%2FWyl7Ior2TKBNRZKiaOjJj8t8kk7caGqMpJXOYJ500ttr3QWH7%2BMpZXfV%2FsdoDrHWd81Al%2BdU63g51l9%2FI3p6rzsMjWEEOp5bxYBNTlCiLHddUj%2FiaCO6%2BH%2F4xNG9PRXQrLg4z4yXX94%3D
|
35.190.80.1
|
|
|
|
https://a.nel.cloudflare.com/report/v3?s=aRt%2FKLhJAf5yNNajNbnucUjfeADtGz%2BeBY08GLsKShsptAvRAsSOGnukyVacYpsTVf5TX16TzGIl7%2FvFlTd156mtcb2KKXsoJkux36AQHEY4d%2BNDXgoV13iwaSDiP3d4WNTD465JvAeuh5cAp90%3D
|
35.190.80.1
|
|
|
|
https://creativecommons.org/publicdomain/zero/1.0/.
|
unknown
|
|
|
|
https://github.com/angular/material
|
unknown
|
|
|
|
https://apis.google.com
|
unknown
|
|
|
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
|
|
|
https://shiny.documentx.workers.dev/_layouts/15/images/microsoft-logo.png
|
172.67.192.125
|
|
|
|
https://github.com/madler/zlib/blob/master/zlib.h
|
unknown
|
|
|
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers
|
unknown
|
|
|
|
https://clients2.google.com
|
unknown
|
|
|
|
https://shiny.documentx.workers.dev/_layouts/15/images/favicon.ico?rev=47Error
|
unknown
|
|
|
|
https://www.google.com/tools/feedback
|
unknown
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
unknown
|
|
|
|
https://dns.google
|
unknown
|
|
|
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
|
|
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
|
|
|
https://ogs.google.com
|
unknown
|
|
|
|
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
|
unknown
|
|
|
|
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
142.250.203.109
|
|
|
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://www.google.com;
|
unknown
|
|
|
|
https://hangouts.google.com/
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/hosted-libraries-pushers
|
unknown
|
|
|
|
https://www.google.com/images/x2.gif
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-GB&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
142.250.186.174
|
|
|
|
https://www.google.com/images/dot2.gif
|
unknown
|
|
|
|
https://meetings.clients6.google.com
|
unknown
|
|
|
|
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://bachelorstoolkit.com/shady.php
|
unknown
|
|
|
|
http://tools.ietf.org/html/rfc1950
|
unknown
|
|
|
|
https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c
|
unknown
|
|
|
|
https://shiny.documentx.workers.dev/_layouts/15/images/microsoft-logo.pngError
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/hosted-libraries-pushersCross-Origin-Resource-Policy:
|
unknown
|
|
|
|
https://support.google.com/chromecast/answer/2998456
|
unknown
|
|
|
|
https://clients2.googleusercontent.com
|
unknown
|
|
|
|
https://spoprod-a.akamaihd.net/files/fabric-cdn-prod_20210115.001/assets/item-types/32_2x/folder.png
|
unknown
|
|
|
|
https://spoprod-a.akamaihd.net
|
unknown
|
|
|
|
https://docs.google.com
|
unknown
|
|
|
|
https://www.google.com/
|
unknown
|
|
|
|
https://feedback.googleusercontent.com
|
unknown
|
|
|
|
https://shiny.documentx.workers.dev/_layouts/15/images/favicon.ico?rev=47
|
172.67.192.125
|
|
|
|
https://clients2.google.com/service/update2/crx
|
unknown
|
|
|
|
https://clients6.google.com
|
unknown
|
|
There are 60 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
a.nel.cloudflare.com
|
35.190.80.1
|
|
|
|
accounts.google.com
|
142.250.203.109
|
|
|
|
shiny.documentx.workers.dev
|
172.67.192.125
|
|
|
|
upload.wikimedia.org
|
91.198.174.208
|
|
|
|
clients.l.google.com
|
142.250.186.174
|
|
|
|
googlehosted.l.googleusercontent.com
|
172.217.168.33
|
|
|
|
clients2.googleusercontent.com
|
unknown
|
|
|
|
clients2.google.com
|
unknown
|
|
|
|
spoprod-a.akamaihd.net
|
unknown
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.168.2.1
|
unknown
|
unknown
|
|
|
|
142.250.186.174
|
clients.l.google.com
|
United States
|
|
|
|
91.198.174.208
|
upload.wikimedia.org
|
Netherlands
|
|
|
|
172.67.192.125
|
shiny.documentx.workers.dev
|
United States
|
|
|
|
239.255.255.250
|
unknown
|
Reserved
|
|
|
|
192.168.2.23
|
unknown
|
unknown
|
|
|
|
172.217.168.33
|
googlehosted.l.googleusercontent.com
|
United States
|
|
|
|
35.190.80.1
|
a.nel.cloudflare.com
|
United States
|
|
|
|
127.0.0.1
|
unknown
|
unknown
|
|
|
|
142.250.203.109
|
accounts.google.com
|
United States
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
|
There are 35 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7FF51C983000
|
unkown image
|
page readonly
|
|
|
|
8BC9AF7000
|
stack
|
page read and write
|
|
|
|
2A959F9A000
|
unkown
|
page read and write
|
|
|
|
63BE67F000
|
stack
|
page read and write
|
|
|
|
7FF53EB2E000
|
unkown image
|
page readonly
|
|
|
|
2A959F15000
|
unkown
|
page read and write
|
|
|
|
7FF5DE747000
|
unkown image
|
page readonly
|
|
|
|
7FF53ECA6000
|
unkown image
|
page readonly
|
|
|
|
7FF50ECD4000
|
unkown image
|
page readonly
|
|
|
|
2A959F9F000
|
unkown
|
page read and write
|
|
|
|
7FF50EC66000
|
unkown image
|
page readonly
|
|
|
|
2A959F60000
|
unkown
|
page read and write
|
|
|
|
D68277C000
|
stack
|
page read and write
|
|
|
|
1C340918000
|
unkown
|
page read and write
|
|
|
|
2A959F99000
|
unkown
|
page read and write
|
|
|
|
63BE57F000
|
stack
|
page read and write
|
|
|
|
2A959648000
|
unkown
|
page read and write
|
|
|
|
7FF54D47E000
|
unkown image
|
page readonly
|
|
|
|
7FF54D155000
|
unkown image
|
page readonly
|
|
|
|
12164500000
|
unkown
|
page read and write
|
|
|
|
7FF50EBA3000
|
unkown image
|
page readonly
|
|
|
|
1C3453F0000
|
unkown
|
page read and write
|
|
|
|
1D27EEE0000
|
unkown image
|
page readonly
|
|
|
|
2A959F6C000
|
unkown
|
page read and write
|
|
|
|
7FF50EC27000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE735000
|
unkown image
|
page readonly
|
|
|
|
7DF553DB2000
|
unkown image
|
page readonly
|
|
|
|
2A959F15000
|
unkown
|
page read and write
|
|
|
|
7DF553DC0000
|
unkown image
|
page readonly
|
|
|
|
2A959D50000
|
unkown
|
page read and write
|
|
|
|
2A959F80000
|
unkown
|
page read and write
|
|
|
|
2A959F61000
|
unkown
|
page read and write
|
|
|
|
8BC94CB000
|
unkown
|
page read and write
|
|
|
|
1C341030000
|
unkown image
|
page readonly
|
|
|
|
2A9594E0000
|
unkown image
|
page readonly
|
|
|
|
7FF53EA81000
|
unkown image
|
page readonly
|
|
|
|
1C340802000
|
unkown
|
page read and write
|
|
|
|
7FF50E496000
|
unkown image
|
page readonly
|
|
|
|
2A959F6B000
|
unkown
|
page read and write
|
|
|
|
7DF42FA70000
|
unkown image
|
page readonly
|
|
|
|
192C12D6000
|
unkown
|
page read and write
|
|
|
|
7FF5DE581000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE694000
|
unkown image
|
page readonly
|
|
|
|
2A959F17000
|
unkown
|
page read and write
|
|
|
|
7FF53EC3B000
|
unkown image
|
page readonly
|
|
|
|
2A959D60000
|
unkown image
|
page read and write
|
|
|
|
1E1FF400000
|
unkown
|
page read and write
|
|
|
|
1D27ED90000
|
unkown image
|
page read and write
|
|
|
|
2A959F9F000
|
unkown
|
page read and write
|
|
|
|
2A959F92000
|
unkown
|
page read and write
|
|
|
|
7FF5DE67D000
|
unkown image
|
page readonly
|
|
|
|
7DF562710000
|
unkown image
|
page readonly
|
|
|
|
7FF53EC30000
|
unkown image
|
page readonly
|
|
|
|
192C1480000
|
unkown image
|
page readonly
|
|
|
|
1E1FF320000
|
unkown image
|
page readonly
|
|
|
|
7FF54D5E8000
|
unkown image
|
page readonly
|
|
|
|
7FF50EBB3000
|
unkown image
|
page readonly
|
|
|
|
7FF50EC1F000
|
unkown image
|
page readonly
|
|
|
|
7FF54D2F7000
|
unkown image
|
page readonly
|
|
|
|
1C3455C4000
|
unkown
|
page read and write
|
|
|
|
2A959F86000
|
unkown
|
page read and write
|
|
|
|
1C3405A0000
|
unkown image
|
page readonly
|
|
|
|
2A959FA3000
|
unkown
|
page read and write
|
|
|
|
7FF505C25000
|
unkown image
|
page readonly
|
|
|
|
2A959AD0000
|
unkown image
|
page readonly
|
|
|
|
7FF50E8DA000
|
unkown image
|
page readonly
|
|
|
|
7FF51C933000
|
unkown image
|
page readonly
|
|
|
|
2A959F6D000
|
unkown
|
page read and write
|
|
|
|
1C340815000
|
unkown
|
page read and write
|
|
|
|
2A959F92000
|
unkown
|
page read and write
|
|
|
|
7FF50EC69000
|
unkown image
|
page readonly
|
|
|
|
2A9594D0000
|
heap private
|
page read and write
|
|
|
|
1216447E000
|
unkown
|
page read and write
|
|
|
|
7DF531BB2000
|
unkown image
|
page readonly
|
|
|
|
1D27F04C000
|
unkown
|
page read and write
|
|
|
|
1216444E000
|
unkown
|
page read and write
|
|
|
|
2A959FA3000
|
unkown
|
page read and write
|
|
|
|
7FF50EC58000
|
unkown image
|
page readonly
|
|
|
|
2A959F0C000
|
unkown
|
page read and write
|
|
|
|
7FF51CAA9000
|
unkown image
|
page readonly
|
|
|
|
1E1FF8D0000
|
unkown image
|
page readonly
|
|
|
|
7FF51C383000
|
unkown image
|
page readonly
|
|
|
|
1D27F057000
|
unkown
|
page read and write
|
|
|
|
1D27F071000
|
unkown
|
page read and write
|
|
|
|
7FF50E9C8000
|
unkown image
|
page readonly
|
|
|
|
1C3413E0000
|
unkown
|
page read and write
|
|
|
|
7DF5626F0000
|
unkown image
|
page readonly
|
|
|
|
192C12F1000
|
unkown
|
page read and write
|
|
|
|
1C3456E0000
|
unkown
|
page read and write
|
|
|
|
2A959D50000
|
unkown
|
page read and write
|
|
|
|
7FF50E8D4000
|
unkown image
|
page readonly
|
|
|
|
1C345588000
|
unkown
|
page read and write
|
|
|
|
7FF51C8D3000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE79E000
|
unkown image
|
page readonly
|
|
|
|
7FF505C74000
|
unkown image
|
page readonly
|
|
|
|
63BE37B000
|
stack
|
page read and write
|
|
|
|
7DF553DA2000
|
unkown image
|
page readonly
|
|
|
|
7FF54D585000
|
unkown image
|
page readonly
|
|
|
|
7FF54D5C4000
|
unkown image
|
page readonly
|
|
|
|
7FF51C5A2000
|
unkown image
|
page readonly
|
|
|
|
6C5F87B000
|
stack
|
page read and write
|
|
|
|
7FF54CCA6000
|
unkown image
|
page readonly
|
|
|
|
2A9596C4000
|
unkown
|
page read and write
|
|
|
|
D68267D000
|
stack
|
page read and write
|
|
|
|
7DF51AD92000
|
unkown image
|
page readonly
|
|
|
|
192C1730000
|
unkown image
|
page readonly
|
|
|
|
7DF562702000
|
unkown image
|
page readonly
|
|
|
|
7FF54D300000
|
unkown image
|
page readonly
|
|
|
|
1D27EFD0000
|
unkown
|
page read and write
|
|
|
|
1C340A01000
|
unkown
|
page read and write
|
|
|
|
1C33FEB0000
|
unkown image
|
page read and write
|
|
|
|
2A959F0E000
|
unkown
|
page read and write
|
|
|
|
2A959600000
|
unkown
|
page read and write
|
|
|
|
7FF53E9B0000
|
unkown image
|
page readonly
|
|
|
|
7DF5F38A2000
|
unkown image
|
page readonly
|
|
|
|
7FF51CA3B000
|
unkown image
|
page readonly
|
|
|
|
7FF53ECA9000
|
unkown image
|
page readonly
|
|
|
|
2A959FA4000
|
unkown
|
page read and write
|
|
|
|
7FF505C8E000
|
unkown image
|
page readonly
|
|
|
|
63BE477000
|
stack
|
page read and write
|
|
|
|
7FF50EC4F000
|
unkown image
|
page readonly
|
|
|
|
7DF523D62000
|
unkown image
|
page readonly
|
|
|
|
2A9596D5000
|
unkown
|
page read and write
|
|
|
|
7DF51ADA2000
|
unkown image
|
page readonly
|
|
|
|
2A959F99000
|
unkown
|
page read and write
|
|
|
|
2A959F9B000
|
unkown
|
page read and write
|
|
|
|
1D27F04B000
|
unkown
|
page read and write
|
|
|
|
2A9596A0000
|
unkown
|
page read and write
|
|
|
|
D682CFC000
|
stack
|
page read and write
|
|
|
|
7FF53EB9C000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE2F0000
|
unkown image
|
page readonly
|
|
|
|
1C34009D000
|
unkown
|
page read and write
|
|
|
|
6C5FB7E000
|
stack
|
page read and write
|
|
|
|
7FF53EC8F000
|
unkown image
|
page readonly
|
|
|
|
7FF50ECDA000
|
unkown image
|
page readonly
|
|
|
|
1C340790000
|
unkown image
|
page read and write
|
|
|
|
7FF51CA2E000
|
unkown image
|
page readonly
|
|
|
|
2A959708000
|
unkown
|
page read and write
|
|
|
|
7DF51AD90000
|
unkown image
|
page readonly
|
|
|
|
2A95A402000
|
unkown
|
page read and write
|
|
|
|
7FF505577000
|
unkown image
|
page readonly
|
|
|
|
2A95A502000
|
unkown
|
page read and write
|
|
|
|
7FF505C20000
|
unkown image
|
page readonly
|
|
|
|
7FF50EBF5000
|
unkown image
|
page readonly
|
|
|
|
7DF51AD92000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE3AB000
|
unkown image
|
page readonly
|
|
|
|
2A959F61000
|
unkown
|
page read and write
|
|
|
|
2A959FA3000
|
unkown
|
page read and write
|
|
|
|
2A959FC3000
|
unkown
|
page read and write
|
|
|
|
7FF54D57A000
|
unkown image
|
page readonly
|
|
|
|
2A959F6C000
|
unkown
|
page read and write
|
|
|
|
1C340092000
|
unkown
|
page read and write
|
|
|
|
D6829F7000
|
stack
|
page read and write
|
|
|
|
192C12E0000
|
unkown
|
page read and write
|
|
|
|
121642B0000
|
heap private
|
page read and write
|
|
|
|
2A959F6F000
|
unkown
|
page read and write
|
|
|
|
2A95964E000
|
unkown
|
page read and write
|
|
|
|
1D27F05A000
|
unkown
|
page read and write
|
|
|
|
7FF54D441000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE7A6000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE774000
|
unkown image
|
page readonly
|
|
|
|
192C1210000
|
unkown image
|
page readonly
|
|
|
|
D682D7F000
|
stack
|
page read and write
|
|
|
|
1E1FF340000
|
unkown image
|
page readonly
|
|
|
|
7FF50EB3D000
|
unkown image
|
page readonly
|
|
|
|
2A959F5F000
|
unkown
|
page read and write
|
|
|
|
7FF54D4D3000
|
unkown image
|
page readonly
|
|
|
|
7FF54D146000
|
unkown image
|
page readonly
|
|
|
|
7FF50EBDC000
|
unkown image
|
page readonly
|
|
|
|
7FF51CA67000
|
unkown image
|
page readonly
|
|
|
|
1C340029000
|
unkown
|
page read and write
|
|
|
|
D68307F000
|
stack
|
page read and write
|
|
|
|
7FF54D4CD000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE71C000
|
unkown image
|
page readonly
|
|
|
|
1C340027000
|
unkown
|
page read and write
|
|
|
|
1C341060000
|
unkown image
|
page readonly
|
|
|
|
2A95A402000
|
unkown
|
page read and write
|
|
|
|
1E1FF320000
|
unkown image
|
page readonly
|
|
|
|
1E1FF44C000
|
unkown
|
page read and write
|
|
|
|
7FF51C92B000
|
unkown image
|
page readonly
|
|
|
|
709F97E000
|
stack
|
page read and write
|
|
|
|
2A95A402000
|
unkown
|
page read and write
|
|
|
|
2A959FA3000
|
unkown
|
page read and write
|
|
|
|
2A9596A7000
|
unkown
|
page read and write
|
|
|
|
7FF53E7F0000
|
unkown image
|
page readonly
|
|
|
|
7FF53EC67000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE2F6000
|
unkown image
|
page readonly
|
|
|
|
7FF53ED22000
|
unkown image
|
page readonly
|
|
|
|
1C34580F000
|
unkown
|
page read and write
|
|
|
|
7FF51CA47000
|
unkown image
|
page readonly
|
|
|
|
1C340913000
|
unkown
|
page read and write
|
|
|
|
709F87F000
|
stack
|
page read and write
|
|
|
|
2A959F92000
|
unkown
|
page read and write
|
|
|
|
7FF50EC34000
|
unkown image
|
page readonly
|
|
|
|
2A959C50000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE821000
|
unkown image
|
page readonly
|
|
|
|
1D27F113000
|
unkown
|
page read and write
|
|
|
|
7FF50E44D000
|
unkown image
|
page readonly
|
|
|
|
1D27F050000
|
unkown
|
page read and write
|
|
|
|
2A95A53C000
|
unkown
|
page read and write
|
|
|
|
7FF505573000
|
unkown image
|
page readonly
|
|
|
|
2A959F78000
|
unkown
|
page read and write
|
|
|
|
1D27F052000
|
unkown
|
page read and write
|
|
|
|
7FF5058FA000
|
unkown image
|
page readonly
|
|
|
|
7FF505C7E000
|
unkown image
|
page readonly
|
|
|
|
1C340D00000
|
unkown
|
page read and write
|
|
|
|
7FF51C866000
|
unkown image
|
page readonly
|
|
|
|
7FF53EC1C000
|
unkown image
|
page readonly
|
|
|
|
7FF50EA9F000
|
unkown image
|
page readonly
|
|
|
|
7FF51C605000
|
unkown image
|
page readonly
|
|
|
|
1E1FF508000
|
unkown
|
page read and write
|
|
|
|
2A959F61000
|
unkown
|
page read and write
|
|
|
|
7FF50EC38000
|
unkown image
|
page readonly
|
|
|
|
7FF51C59E000
|
unkown image
|
page readonly
|
|
|
|
7DF5F38B0000
|
unkown image
|
page readonly
|
|
|
|
709F58A000
|
unkown
|
page read and write
|
|
|
|
12164448000
|
unkown
|
page read and write
|
|
|
|
7DF5F38B0000
|
unkown image
|
page readonly
|
|
|
|
2A959FC3000
|
unkown
|
page read and write
|
|
|
|
2A959F67000
|
unkown
|
page read and write
|
|
|
|
7FF51C7B0000
|
unkown image
|
page readonly
|
|
|
|
12164A70000
|
unkown
|
page read and write
|
|
|
|
7FF51CA74000
|
unkown image
|
page readonly
|
|
|
|
7FF54D58B000
|
unkown image
|
page readonly
|
|
|
|
192C1230000
|
unkown image
|
page readonly
|
|
|
|
7DF531BA2000
|
unkown image
|
page readonly
|
|
|
|
1C3456E0000
|
unkown
|
page read and write
|
|
|
|
1D27EDE0000
|
unkown image
|
page readonly
|
|
|
|
7DF421C30000
|
unkown image
|
page readonly
|
|
|
|
7FF505D04000
|
unkown image
|
page readonly
|
|
|
|
1D27F602000
|
unkown
|
page read and write
|
|
|
|
7FF54D597000
|
unkown image
|
page readonly
|
|
|
|
7DF531BB0000
|
unkown image
|
page readonly
|
|
|
|
12164980000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE4A7000
|
unkown image
|
page readonly
|
|
|
|
7FF54D5DF000
|
unkown image
|
page readonly
|
|
|
|
1C345690000
|
unkown
|
page read and write
|
|
|
|
2A959FA3000
|
unkown
|
page read and write
|
|
|
|
7DF5F38A2000
|
unkown image
|
page readonly
|
|
|
|
1216442A000
|
unkown
|
page read and write
|
|
|
|
2A959F1F000
|
unkown
|
page read and write
|
|
|
|
7FF50EA26000
|
unkown image
|
page readonly
|
|
|
|
7DF5F38B2000
|
unkown image
|
page readonly
|
|
|
|
8BC9BFF000
|
stack
|
page read and write
|
|
|
|
1C3407F0000
|
unkown
|
page read and write
|
|
|
|
7FF50EC5E000
|
unkown image
|
page readonly
|
|
|
|
1C345580000
|
unkown
|
page read and write
|
|
|
|
2A959650000
|
unkown
|
page read and write
|
|
|
|
7FF54D66A000
|
unkown image
|
page readonly
|
|
|
|
7FF505D0A000
|
unkown image
|
page readonly
|
|
|
|
7FF54D5CA000
|
unkown image
|
page readonly
|
|
|
|
7FF51CB22000
|
unkown image
|
page readonly
|
|
|
|
7FF51C92E000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE611000
|
unkown image
|
page readonly
|
|
|
|
2A959F65000
|
unkown
|
page read and write
|
|
|
|
7FF5DE767000
|
unkown image
|
page readonly
|
|
|
|
1C33FEF0000
|
unkown image
|
page readonly
|
|
|
|
7FF51CA5C000
|
unkown image
|
page readonly
|
|
|
|
7FF51C99C000
|
unkown image
|
page readonly
|
|
|
|
63BE07B000
|
unkown
|
page read and write
|
|
|
|
2A95A502000
|
unkown
|
page read and write
|
|
|
|
1C341040000
|
unkown image
|
page readonly
|
|
|
|
1C345867000
|
unkown
|
page read and write
|
|
|
|
7DF51ADA0000
|
unkown image
|
page readonly
|
|
|
|
1E1FF380000
|
unkown image
|
page readonly
|
|
|
|
2A959649000
|
unkown
|
page read and write
|
|
|
|
7FF54D5FD000
|
unkown image
|
page readonly
|
|
|
|
1C345861000
|
unkown
|
page read and write
|
|
|
|
2A959FA3000
|
unkown
|
page read and write
|
|
|
|
2A959FA1000
|
unkown
|
page read and write
|
|
|
|
1C34008B000
|
unkown
|
page read and write
|
|
|
|
7FF54D5F9000
|
unkown image
|
page readonly
|
|
|
|
2A9596E8000
|
unkown
|
page read and write
|
|
|
|
12164453000
|
unkown
|
page read and write
|
|
|
|
6C5F477000
|
stack
|
page read and write
|
|
|
|
7FF5DE78F000
|
unkown image
|
page readonly
|
|
|
|
2A95964D000
|
unkown
|
page read and write
|
|
|
|
1E1FF48D000
|
unkown
|
page read and write
|
|
|
|
7FF50EA31000
|
unkown image
|
page readonly
|
|
|
|
2A9596E6000
|
unkown
|
page read and write
|
|
|
|
D682BF9000
|
stack
|
page read and write
|
|
|
|
7FF51CA04000
|
unkown image
|
page readonly
|
|
|
|
2A959F6A000
|
unkown
|
page read and write
|
|
|
|
7FF50ECE1000
|
unkown image
|
page readonly
|
|
|
|
7FF50EA9A000
|
unkown image
|
page readonly
|
|
|
|
1E1FF44B000
|
unkown
|
page read and write
|
|
|
|
7FF51C871000
|
unkown image
|
page readonly
|
|
|
|
7DF553DB0000
|
unkown image
|
page readonly
|
|
|
|
2A9596BB000
|
unkown
|
page read and write
|
|
|
|
192C1490000
|
unkown image
|
page read and write
|
|
|
|
7FF51CB14000
|
unkown image
|
page readonly
|
|
|
|
7FF50E9B6000
|
unkown image
|
page readonly
|
|
|
|
1E1FF402000
|
unkown
|
page read and write
|
|
|
|
7FF51C9FF000
|
unkown image
|
page readonly
|
|
|
|
6C5FC7A000
|
stack
|
page read and write
|
|
|
|
7FF53EC74000
|
unkown image
|
page readonly
|
|
|
|
7FF50E9DB000
|
unkown image
|
page readonly
|
|
|
|
121642A0000
|
unkown image
|
page read and write
|
|
|
|
7FF50E99A000
|
unkown image
|
page readonly
|
|
|
|
7FF51C7F6000
|
unkown image
|
page readonly
|
|
|
|
1E1FF413000
|
unkown
|
page read and write
|
|
|
|
1D27F055000
|
unkown
|
page read and write
|
|
|
|
1C34558E000
|
unkown
|
page read and write
|
|
|
|
7FF5DE730000
|
unkown image
|
page readonly
|
|
|
|
1C340073000
|
unkown
|
page read and write
|
|
|
|
7FF51CA35000
|
unkown image
|
page readonly
|
|
|
|
1C3455C0000
|
unkown
|
page read and write
|
|
|
|
1E1FF451000
|
unkown
|
page read and write
|
|
|
|
7FF51C911000
|
unkown image
|
page readonly
|
|
|
|
7DF51ADA2000
|
unkown image
|
page readonly
|
|
|
|
1C345889000
|
unkown
|
page read and write
|
|
|
|
7FF53E7F6000
|
unkown image
|
page readonly
|
|
|
|
7FF54D56A000
|
unkown image
|
page readonly
|
|
|
|
1E1FFA50000
|
unkown image
|
page readonly
|
|
|
|
2A959F5B000
|
unkown
|
page read and write
|
|
|
|
2A959F92000
|
unkown
|
page read and write
|
|
|
|
121642C0000
|
unkown image
|
page readonly
|
|
|
|
1E1FF480000
|
unkown
|
page read and write
|
|
|
|
2A95A420000
|
unkown
|
page read and write
|
|
|
|
1C341070000
|
unkown image
|
page readonly
|
|
|
|
7FF54D664000
|
unkown image
|
page readonly
|
|
|
|
2A959FC7000
|
unkown
|
page read and write
|
|
|
|
7FF50E443000
|
unkown image
|
page readonly
|
|
|
|
1C34584A000
|
unkown
|
page read and write
|
|
|
|
7FF5DE75C000
|
unkown image
|
page readonly
|
|
|
|
2A9594E0000
|
unkown image
|
page readonly
|
|
|
|
7FF505C64000
|
unkown image
|
page readonly
|
|
|
|
7FF50EAB1000
|
unkown image
|
page readonly
|
|
|
|
192C1210000
|
unkown image
|
page readonly
|
|
|
|
2A959F8A000
|
unkown
|
page read and write
|
|
|
|
1C34582A000
|
unkown
|
page read and write
|
|
|
|
7FF51C9D2000
|
unkown image
|
page readonly
|
|
|
|
7FF54D5B7000
|
unkown image
|
page readonly
|
|
|
|
1C34581C000
|
unkown
|
page read and write
|
|
|
|
1C340800000
|
unkown
|
page read and write
|
|
|
|
1C3456E0000
|
unkown
|
page read and write
|
|
|
|
7FF50EA82000
|
unkown image
|
page readonly
|
|
|
|
1C340902000
|
unkown
|
page read and write
|
|
|
|
1E1FF429000
|
unkown
|
page read and write
|
|
|
|
7DF531BA0000
|
unkown image
|
page readonly
|
|
|
|
7DF553DB2000
|
unkown image
|
page readonly
|
|
|
|
2A959F0D000
|
unkown
|
page read and write
|
|
|
|
7FF51CA84000
|
unkown image
|
page readonly
|
|
|
|
7FF50EBEE000
|
unkown image
|
page readonly
|
|
|
|
7FF54D4E4000
|
unkown image
|
page readonly
|
|
|
|
192C12C3000
|
unkown
|
page read and write
|
|
|
|
7FF53EC7A000
|
unkown image
|
page readonly
|
|
|
|
192C1270000
|
unkown
|
page read and write
|
|
|
|
192C11F0000
|
unkown image
|
page read and write
|
|
|
|
7FF50EBC4000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE822000
|
unkown image
|
page readonly
|
|
|
|
7FF50E805000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE5D3000
|
unkown image
|
page readonly
|
|
|
|
2A959F60000
|
unkown
|
page read and write
|
|
|
|
2A95963C000
|
unkown
|
page read and write
|
|
|
|
2A959F99000
|
unkown
|
page read and write
|
|
|
|
1E1FF350000
|
unkown image
|
page readonly
|
|
|
|
1E1FF300000
|
unkown image
|
page read and write
|
|
|
|
6C5F67B000
|
stack
|
page read and write
|
|
|
|
7FF50EBCF000
|
unkown image
|
page readonly
|
|
|
|
7FF50EBDA000
|
unkown image
|
page readonly
|
|
|
|
2B12FB000
|
stack
|
page read and write
|
|
|
|
1D27EDD0000
|
unkown image
|
page readonly
|
|
|
|
1C345880000
|
unkown
|
page read and write
|
|
|
|
7FF5DE798000
|
unkown image
|
page readonly
|
|
|
|
7FF53ED14000
|
unkown image
|
page readonly
|
|
|
|
D682878000
|
stack
|
page read and write
|
|
|
|
2A959F69000
|
unkown
|
page read and write
|
|
|
|
7FF54D423000
|
unkown image
|
page readonly
|
|
|
|
192C1250000
|
unkown
|
page read and write
|
|
|
|
7FF5DE62B000
|
unkown image
|
page readonly
|
|
|
|
7DF418C60000
|
unkown image
|
page readonly
|
|
|
|
12164C02000
|
unkown
|
page read and write
|
|
|
|
2A95A402000
|
unkown
|
page read and write
|
|
|
|
2A959F49000
|
unkown
|
page read and write
|
|
|
|
7FF50E96F000
|
unkown image
|
page readonly
|
|
|
|
7FF51C9E3000
|
unkown image
|
page readonly
|
|
|
|
1C34006E000
|
unkown
|
page read and write
|
|
|
|
7FF53EB2B000
|
unkown image
|
page readonly
|
|
|
|
7DF523D70000
|
unkown image
|
page readonly
|
|
|
|
1216448A000
|
unkown
|
page read and write
|
|
|
|
2A959F64000
|
unkown
|
page read and write
|
|
|
|
2A95965A000
|
unkown
|
page read and write
|
|
|
|
1216446D000
|
unkown
|
page read and write
|
|
|
|
192C1520000
|
heap private
|
page read and write
|
|
|
|
2A9596F7000
|
unkown
|
page read and write
|
|
|
|
7FF505C6A000
|
unkown image
|
page readonly
|
|
|
|
192C12D7000
|
unkown
|
page read and write
|
|
|
|
2B13F7000
|
stack
|
page read and write
|
|
|
|
2A959F65000
|
unkown
|
page read and write
|
|
|
|
7DF523D72000
|
unkown image
|
page readonly
|
|
|
|
1D27EDB0000
|
unkown image
|
page readonly
|
|
|
|
1C341020000
|
unkown image
|
page readonly
|
|
|
|
2A959F99000
|
unkown
|
page read and write
|
|
|
|
2A95A403000
|
unkown
|
page read and write
|
|
|
|
7FF51C9D0000
|
unkown image
|
page readonly
|
|
|
|
2A959F60000
|
unkown
|
page read and write
|
|
|
|
7FF54D4EC000
|
unkown image
|
page readonly
|
|
|
|
1E1FF310000
|
heap private
|
page read and write
|
|
|
|
7FF53ED1A000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE75F000
|
unkown image
|
page readonly
|
|
|
|
6C5F9FF000
|
stack
|
page read and write
|
|
|
|
2A959FB4000
|
unkown
|
page read and write
|
|
|
|
2A959F9D000
|
unkown
|
page read and write
|
|
|
|
2B14FF000
|
stack
|
page read and write
|
|
|
|
1C340056000
|
unkown
|
page read and write
|
|
|
|
7FF5DE5F1000
|
unkown image
|
page readonly
|
|
|
|
1E1FF44D000
|
unkown
|
page read and write
|
|
|
|
7FF5DE683000
|
unkown image
|
page readonly
|
|
|
|
2A959F60000
|
unkown
|
page read and write
|
|
|
|
1C3456A0000
|
unkown
|
page read and write
|
|
|
|
2A959F78000
|
unkown
|
page read and write
|
|
|
|
12164800000
|
unkown image
|
page readonly
|
|
|
|
7FF54D56C000
|
unkown image
|
page readonly
|
|
|
|
8BC9CFD000
|
stack
|
page read and write
|
|
|
|
7FF50EBEA000
|
unkown image
|
page readonly
|
|
|
|
1216443C000
|
unkown
|
page read and write
|
|
|
|
7FF5DE69C000
|
unkown image
|
page readonly
|
|
|
|
1216444B000
|
unkown
|
page read and write
|
|
|
|
7FF54D672000
|
unkown image
|
page readonly
|
|
|
|
7DF553DB0000
|
unkown image
|
page readonly
|
|
|
|
6C5FCFE000
|
stack
|
page read and write
|
|
|
|
2A959F6A000
|
unkown
|
page read and write
|
|
|
|
7FF53EAD3000
|
unkown image
|
page readonly
|
|
|
|
2A959F92000
|
unkown
|
page read and write
|
|
|
|
7FF53EB83000
|
unkown image
|
page readonly
|
|
|
|
7FF51C994000
|
unkown image
|
page readonly
|
|
|
|
2A959F9A000
|
unkown
|
page read and write
|
|
|
|
2A959FA7000
|
unkown
|
page read and write
|
|
|
|
1C340000000
|
unkown
|
page read and write
|
|
|
|
7DF562700000
|
unkown image
|
page readonly
|
|
|
|
1C345581000
|
unkown
|
page read and write
|
|
|
|
1E1FF502000
|
unkown
|
page read and write
|
|
|
|
2A959FA3000
|
unkown
|
page read and write
|
|
|
|
7FF505D11000
|
unkown image
|
page readonly
|
|
|
|
2A959F9A000
|
unkown
|
page read and write
|
|
|
|
7DF523D70000
|
unkown image
|
page readonly
|
|
|
|
1E1FF6D0000
|
unkown image
|
page readonly
|
|
|
|
7FF50E807000
|
unkown image
|
page readonly
|
|
|
|
7FF50E752000
|
unkown image
|
page readonly
|
|
|
|
7FF50E9CF000
|
unkown image
|
page readonly
|
|
|
|
1C340680000
|
unkown
|
page read and write
|
|
|
|
7FF51CA0F000
|
unkown image
|
page readonly
|
|
|
|
7FF53EB94000
|
unkown image
|
page readonly
|
|
|
|
2A9596D0000
|
unkown
|
page read and write
|
|
|
|
7FF5DE73B000
|
unkown image
|
page readonly
|
|
|
|
7DF4F1770000
|
unkown image
|
page readonly
|
|
|
|
2B15FF000
|
stack
|
page read and write
|
|
|
|
7FF51C830000
|
unkown image
|
page readonly
|
|
|
|
7FF54D5AF000
|
unkown image
|
page readonly
|
|
|
|
1C33FF20000
|
heap default
|
page read and write
|
|
|
|
7DF5F38C0000
|
unkown image
|
page readonly
|
|
|
|
7DF523D80000
|
unkown image
|
page readonly
|
|
|
|
7DF51AD90000
|
unkown image
|
page readonly
|
|
|
|
1C33FF00000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE77A000
|
unkown image
|
page readonly
|
|
|
|
1C33FED0000
|
unkown image
|
page readonly
|
|
|
|
2A959659000
|
unkown
|
page read and write
|
|
|
|
2A959FC3000
|
unkown
|
page read and write
|
|
|
|
7FF50EB36000
|
unkown image
|
page readonly
|
|
|
|
2A959F6A000
|
unkown
|
page read and write
|
|
|
|
12164502000
|
unkown
|
page read and write
|
|
|
|
2A959F0A000
|
unkown
|
page read and write
|
|
|
|
2A959629000
|
unkown
|
page read and write
|
|
|
|
1E1FF3A0000
|
unkown
|
page read and write
|
|
|
|
2A95A59D000
|
unkown
|
page read and write
|
|
|
|
2A959F64000
|
unkown
|
page read and write
|
|
|
|
192C12D1000
|
unkown
|
page read and write
|
|
|
|
2A9598D0000
|
unkown image
|
page readonly
|
|
|
|
1C340E60000
|
unkown image
|
page read and write
|
|
|
|
2A959F99000
|
unkown
|
page read and write
|
|
|
|
2A959F88000
|
unkown
|
page read and write
|
|
|
|
2A959F92000
|
unkown
|
page read and write
|
|
|
|
7FF5DE7A9000
|
unkown image
|
page readonly
|
|
|
|
2B10FE000
|
stack
|
page read and write
|
|
|
|
2A959580000
|
unkown image
|
page readonly
|
|
|
|
7FF505C4C000
|
unkown image
|
page readonly
|
|
|
|
1D27F04F000
|
unkown
|
page read and write
|
|
|
|
2B11FB000
|
stack
|
page read and write
|
|
|
|
7FF53ECAD000
|
unkown image
|
page readonly
|
|
|
|
7FF54D47B000
|
unkown image
|
page readonly
|
|
|
|
1C345580000
|
unkown
|
page read and write
|
|
|
|
7FF51C5F6000
|
unkown image
|
page readonly
|
|
|
|
1C340078000
|
unkown
|
page read and write
|
|
|
|
2A959500000
|
unkown image
|
page readonly
|
|
|
|
7FF51C864000
|
unkown image
|
page readonly
|
|
|
|
192C12E0000
|
unkown
|
page read and write
|
|
|
|
1C340113000
|
unkown
|
page read and write
|
|
|
|
2A9595B0000
|
unkown image
|
page write copy
|
|
|
|
6C5F27B000
|
unkown
|
page read and write
|
|
|
|
7FF53EC5F000
|
unkown image
|
page readonly
|
|
|
|
1C340900000
|
unkown
|
page read and write
|
|
|
|
7FF50E9EF000
|
unkown image
|
page readonly
|
|
|
|
1C34009F000
|
unkown
|
page read and write
|
|
|
|
192C12B0000
|
heap default
|
page read and write
|
|
|
|
2A95964C000
|
unkown
|
page read and write
|
|
|
|
1C345470000
|
unkown
|
page read and write
|
|
|
|
2A959FC3000
|
unkown
|
page read and write
|
|
|
|
192C12C7000
|
unkown
|
page read and write
|
|
|
|
1D27F013000
|
unkown
|
page read and write
|
|
|
|
7DF531BC0000
|
unkown image
|
page readonly
|
|
|
|
12164513000
|
unkown
|
page read and write
|
|
|
|
2A959F6C000
|
unkown
|
page read and write
|
|
|
|
2A959D50000
|
unkown
|
page read and write
|
|
|
|
7DF553DA0000
|
unkown image
|
page readonly
|
|
|
|
1D27F059000
|
unkown
|
page read and write
|
|
|
|
1C345480000
|
unkown
|
page read and write
|
|
|
|
7FF50EBAF000
|
unkown image
|
page readonly
|
|
|
|
2A959716000
|
unkown
|
page read and write
|
|
|
|
7DF5626F2000
|
unkown image
|
page readonly
|
|
|
|
2A959F92000
|
unkown
|
page read and write
|
|
|
|
8BC954E000
|
stack
|
page read and write
|
|
|
|
2A959F5F000
|
unkown
|
page read and write
|
|
|
|
7FF5DE81A000
|
unkown image
|
page readonly
|
|
|
|
7FF50E881000
|
unkown image
|
page readonly
|
|
|
|
2A95A402000
|
unkown
|
page read and write
|
|
|
|
D682AFE000
|
stack
|
page read and write
|
|
|
|
7FF51CA30000
|
unkown image
|
page readonly
|
|
|
|
2A959FA3000
|
unkown
|
page read and write
|
|
|
|
7FF51CA9E000
|
unkown image
|
page readonly
|
|
|
|
2A959655000
|
unkown
|
page read and write
|
|
|
|
7FF53E9A7000
|
unkown image
|
page readonly
|
|
|
|
7FF51C387000
|
unkown image
|
page readonly
|
|
|
|
2A95A53C000
|
unkown
|
page read and write
|
|
|
|
1D27F047000
|
unkown
|
page read and write
|
|
|
|
1D27F07A000
|
unkown
|
page read and write
|
|
|
|
1D27EDA0000
|
heap private
|
page read and write
|
|
|
|
192C18B0000
|
unkown image
|
page readonly
|
|
|
|
1C340F40000
|
unkown
|
page read and write
|
|
|
|
7FF53ED21000
|
unkown image
|
page readonly
|
|
|
|
1D27F102000
|
unkown
|
page read and write
|
|
|
|
8BC99FB000
|
stack
|
page read and write
|
|
|
|
1E1FF500000
|
unkown
|
page read and write
|
|
|
|
7FF53EAF1000
|
unkown image
|
page readonly
|
|
|
|
1C34583D000
|
unkown
|
page read and write
|
|
|
|
2A959F74000
|
unkown
|
page read and write
|
|
|
|
192C12D0000
|
unkown
|
page read and write
|
|
|
|
1C345460000
|
unkown
|
page read and write
|
|
|
|
7DF51ADB0000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE305000
|
unkown image
|
page readonly
|
|
|
|
7DF523D60000
|
unkown image
|
page readonly
|
|
|
|
1C3455B0000
|
unkown
|
page read and write
|
|
|
|
2A959FA3000
|
unkown
|
page read and write
|
|
|
|
121642C0000
|
unkown image
|
page readonly
|
|
|
|
7FF505C9D000
|
unkown image
|
page readonly
|
|
|
|
2A959F15000
|
unkown
|
page read and write
|
|
|
|
1C341050000
|
unkown image
|
page readonly
|
|
|
|
1C3407F3000
|
unkown
|
page read and write
|
|
|
|
7FF5DE62E000
|
unkown image
|
page readonly
|
|
|
|
6C5FA7F000
|
stack
|
page read and write
|
|
|
|
1C3400B1000
|
unkown
|
page read and write
|
|
|
|
2A959F92000
|
unkown
|
page read and write
|
|
|
|
1C345583000
|
unkown
|
page read and write
|
|
|
|
192C12ED000
|
unkown
|
page read and write
|
|
|
|
2A959F4B000
|
unkown
|
page read and write
|
|
|
|
7DF531BB0000
|
unkown image
|
page readonly
|
|
|
|
1C3456E0000
|
unkown
|
page read and write
|
|
|
|
7FF50E488000
|
unkown image
|
page readonly
|
|
|
|
1E1FF471000
|
unkown
|
page read and write
|
|
|
|
7FF54D461000
|
unkown image
|
page readonly
|
|
|
|
1D27F400000
|
unkown image
|
page readonly
|
|
|
|
7FF53E356000
|
unkown image
|
page readonly
|
|
|
|
7FF53EC1A000
|
unkown image
|
page readonly
|
|
|
|
7FF505C4F000
|
unkown image
|
page readonly
|
|
|
|
2A959510000
|
unkown image
|
page readonly
|
|
|
|
7FF51C97D000
|
unkown image
|
page readonly
|
|
|
|
1C3456D0000
|
unkown
|
page read and write
|
|
|
|
7FF51C50E000
|
unkown image
|
page readonly
|
|
|
|
2A95A402000
|
unkown
|
page read and write
|
|
|
|
8BC95CF000
|
stack
|
page read and write
|
|
|
|
192C1530000
|
unkown image
|
page readonly
|
|
|
|
1E1FF44A000
|
unkown
|
page read and write
|
|
|
|
1C3453E0000
|
unkown
|
page read and write
|
|
|
|
1D27F580000
|
unkown image
|
page readonly
|
|
|
|
12164508000
|
unkown
|
page read and write
|
|
|
|
2A959540000
|
unkown image
|
page readonly
|
|
|
|
1C33FED0000
|
unkown image
|
page readonly
|
|
|
|
1D27F200000
|
unkown image
|
page readonly
|
|
|
|
1C345650000
|
unkown
|
page read and write
|
|
|
|
7DF5F38A0000
|
unkown image
|
page readonly
|
|
|
|
6C5FAFF000
|
stack
|
page read and write
|
|
|
|
1D27F088000
|
unkown
|
page read and write
|
|
|
|
1C3455A4000
|
unkown
|
page read and write
|
|
|
|
7FF50E8D7000
|
unkown image
|
page readonly
|
|
|
|
7DF51ADA0000
|
unkown image
|
page readonly
|
|
|
|
12164413000
|
unkown
|
page read and write
|
|
|
|
7FF50E9E1000
|
unkown image
|
page readonly
|
|
|
|
2A959F17000
|
unkown
|
page read and write
|
|
|
|
7FF50E846000
|
unkown image
|
page readonly
|
|
|
|
2A959713000
|
unkown
|
page read and write
|
|
|
|
1C340400000
|
unkown image
|
page readonly
|
|
|
|
7FF53EC84000
|
unkown image
|
page readonly
|
|
|
|
1E1FF370000
|
heap default
|
page read and write
|
|
|
|
7DF531BC0000
|
unkown image
|
page readonly
|
|
|
|
7FF53EB7D000
|
unkown image
|
page readonly
|
|
|
|
1E1FF43C000
|
unkown
|
page read and write
|
|
|
|
7DF562710000
|
unkown image
|
page readonly
|
|
|
|
1C3413C1000
|
unkown
|
page read and write
|
|
|
|
709FAFA000
|
stack
|
page read and write
|
|
|
|
1C340013000
|
unkown
|
page read and write
|
|
|
|
7FF50EA24000
|
unkown image
|
page readonly
|
|
|
|
1D27F090000
|
unkown
|
page read and write
|
|
|
|
1D27F108000
|
unkown
|
page read and write
|
|
|
|
7FF51CAA6000
|
unkown image
|
page readonly
|
|
|
|
2A959F99000
|
unkown
|
page read and write
|
|
|
|
7FF5DE71A000
|
unkown image
|
page readonly
|
|
|
|
7FF53EC35000
|
unkown image
|
page readonly
|
|
|
|
6C5F77E000
|
stack
|
page read and write
|
|
|
|
7FF50EBFB000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE814000
|
unkown image
|
page readonly
|
|
|
|
2A959702000
|
unkown
|
page read and write
|
|
|
|
2A959F00000
|
unkown
|
page read and write
|
|
|
|
192C12C8000
|
heap default
|
page read and write
|
|
|
|
1C3456B0000
|
unkown
|
page read and write
|
|
|
|
7FF51CA1A000
|
unkown image
|
page readonly
|
|
|
|
1D27F04D000
|
unkown
|
page read and write
|
|
|
|
12164400000
|
unkown
|
page read and write
|
|
|
|
2A959F92000
|
unkown
|
page read and write
|
|
|
|
1D27F100000
|
unkown
|
page read and write
|
|
|
|
2A959F66000
|
unkown
|
page read and write
|
|
|
|
192C1525000
|
heap private
|
page read and write
|
|
|
|
1D27F03C000
|
unkown
|
page read and write
|
|
|
|
7DF5F38A0000
|
unkown image
|
page readonly
|
|
|
|
2B107E000
|
stack
|
page read and write
|
|
|
|
2A95A400000
|
unkown
|
page read and write
|
|
|
|
7FF51C8DA000
|
unkown image
|
page readonly
|
|
|
|
1D27F046000
|
unkown
|
page read and write
|
|
|
|
2A959683000
|
unkown
|
page read and write
|
|
|
|
63BE17E000
|
stack
|
page read and write
|
|
|
|
7FF51C938000
|
unkown image
|
page readonly
|
|
|
|
2A959F8D000
|
unkown
|
page read and write
|
|
|
|
1216446A000
|
unkown
|
page read and write
|
|
|
|
7FF51C881000
|
unkown image
|
page readonly
|
|
|
|
2A9594C0000
|
unkown image
|
page read and write
|
|
|
|
D682E79000
|
stack
|
page read and write
|
|
|
|
7FF51C645000
|
unkown image
|
page readonly
|
|
|
|
7FF51C156000
|
unkown image
|
page readonly
|
|
|
|
7FF54D140000
|
unkown image
|
page readonly
|
|
|
|
7FF505C58000
|
unkown image
|
page readonly
|
|
|
|
1E1FF44E000
|
unkown
|
page read and write
|
|
|
|
192C12A0000
|
unkown image
|
page readonly
|
|
|
|
7FF54D5EE000
|
unkown image
|
page readonly
|
|
|
|
7FF50EC1C000
|
unkown image
|
page readonly
|
|
|
|
1D27EE00000
|
heap default
|
page read and write
|
|
|
|
7FF51CA7A000
|
unkown image
|
page readonly
|
|
|
|
7DF5F38C0000
|
unkown image
|
page readonly
|
|
|
|
7FF505C2B000
|
unkown image
|
page readonly
|
|
|
|
2A959F73000
|
unkown
|
page read and write
|
|
|
|
6C5F57B000
|
stack
|
page read and write
|
|
|
|
2A959F85000
|
unkown
|
page read and write
|
|
|
|
7FF54D57E000
|
unkown image
|
page readonly
|
|
|
|
1D27EDB0000
|
unkown image
|
page readonly
|
|
|
|
7FF50ECE2000
|
unkown image
|
page readonly
|
|
|
|
2A959613000
|
unkown
|
page read and write
|
|
|
|
1C34090C000
|
unkown
|
page read and write
|
|
|
|
1C33FEC0000
|
heap private
|
page read and write
|
|
|
|
7DF5626F0000
|
unkown image
|
page readonly
|
|
|
|
1E1FF450000
|
unkown
|
page read and write
|
|
|
|
1C3400FC000
|
unkown
|
page read and write
|
|
|
|
2A959F17000
|
unkown
|
page read and write
|
|
|
|
7FF53EC47000
|
unkown image
|
page readonly
|
|
|
|
7DF562702000
|
unkown image
|
page readonly
|
|
|
|
1C340076000
|
unkown
|
page read and write
|
|
|
|
2A959626000
|
unkown
|
page read and write
|
|
|
|
2A9596E6000
|
unkown
|
page read and write
|
|
|
|
7FF505D12000
|
unkown image
|
page readonly
|
|
|
|
1C3455B0000
|
unkown
|
page read and write
|
|
|
|
2A959656000
|
unkown
|
page read and write
|
|
|
|
2A9596E9000
|
unkown
|
page read and write
|
|
|
|
7FF53EC98000
|
unkown image
|
page readonly
|
|
|
|
2A959653000
|
unkown
|
page read and write
|
|
|
|
7FF5DE72E000
|
unkown image
|
page readonly
|
|
|
|
7DF523D72000
|
unkown image
|
page readonly
|
|
|
|
7FF505C88000
|
unkown image
|
page readonly
|
|
|
|
121642E0000
|
unkown image
|
page readonly
|
|
|
|
1C345811000
|
unkown
|
page read and write
|
|
|
|
D6823BE000
|
stack
|
page read and write
|
|
|
|
7FF50EC44000
|
unkown image
|
page readonly
|
|
|
|
7FF50EA95000
|
unkown image
|
page readonly
|
|
|
|
8BC98FB000
|
stack
|
page read and write
|
|
|
|
121643F0000
|
unkown image
|
page readonly
|
|
|
|
192C12ED000
|
unkown
|
page read and write
|
|
|
|
7DF523D60000
|
unkown image
|
page readonly
|
|
|
|
1C345800000
|
unkown
|
page read and write
|
|
|
|
7FF53EC2A000
|
unkown image
|
page readonly
|
|
|
|
192C12F0000
|
unkown
|
page read and write
|
|
|
|
2A959530000
|
heap default
|
page read and write
|
|
|
|
7FF51C5F0000
|
unkown image
|
page readonly
|
|
|
|
7FF51C7EB000
|
unkown image
|
page readonly
|
|
|
|
7DF553DA0000
|
unkown image
|
page readonly
|
|
|
|
7DF523D80000
|
unkown image
|
page readonly
|
|
|
|
7FF51CA98000
|
unkown image
|
page readonly
|
|
|
|
1E1FF513000
|
unkown
|
page read and write
|
|
|
|
192C12C2000
|
unkown
|
page read and write
|
|
|
|
1C34008D000
|
unkown
|
page read and write
|
|
|
|
7FF51CA8F000
|
unkown image
|
page readonly
|
|
|
|
2A95A59D000
|
unkown
|
page read and write
|
|
|
|
7FF51C647000
|
unkown image
|
page readonly
|
|
|
|
1C340200000
|
unkown image
|
page readonly
|
|
|
|
7DF531BB2000
|
unkown image
|
page readonly
|
|
|
|
709F9F9000
|
stack
|
page read and write
|
|
|
|
2A95A402000
|
unkown
|
page read and write
|
|
|
|
2A95964B000
|
unkown
|
page read and write
|
|
|
|
2A95A402000
|
unkown
|
page read and write
|
|
|
|
7FF51C7A7000
|
unkown image
|
page readonly
|
|
|
|
7DF451C70000
|
unkown image
|
page readonly
|
|
|
|
7FF50E8CA000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE784000
|
unkown image
|
page readonly
|
|
|
|
7FF54D5F6000
|
unkown image
|
page readonly
|
|
|
|
121642F0000
|
unkown image
|
page readonly
|
|
|
|
7DF4605C0000
|
unkown image
|
page readonly
|
|
|
|
7FF51CB21000
|
unkown image
|
page readonly
|
|
|
|
2A959F8C000
|
unkown
|
page read and write
|
|
|
|
7FF51CA1C000
|
unkown image
|
page readonly
|
|
|
|
2A959F97000
|
unkown
|
page read and write
|
|
|
|
7FF5DE7AD000
|
unkown image
|
page readonly
|
|
|
|
2A95A402000
|
unkown
|
page read and write
|
|
|
|
1C3456F0000
|
unkown
|
page read and write
|
|
|
|
7FF51CB1A000
|
unkown image
|
page readonly
|
|
|
|
7FF50E485000
|
unkown image
|
page readonly
|
|
|
|
7FF51C8F1000
|
unkown image
|
page readonly
|
|
|
|
2A959F92000
|
unkown
|
page read and write
|
|
|
|
7FF54D3D1000
|
unkown image
|
page readonly
|
|
|
|
63BE0FE000
|
stack
|
page read and write
|
|
|
|
7FF53EB11000
|
unkown image
|
page readonly
|
|
|
|
7DF523D62000
|
unkown image
|
page readonly
|
|
|
|
7FF50EB5C000
|
unkown image
|
page readonly
|
|
|
|
7DF553DC0000
|
unkown image
|
page readonly
|
|
|
|
7FF5DE72A000
|
unkown image
|
page readonly
|
|
|
|
12164310000
|
heap default
|
page read and write
|
|
|
|
1E1FF453000
|
unkown
|
page read and write
|
|
|
|
7FF51C592000
|
unkown image
|
page readonly
|
|
|
|
7FF50EB90000
|
unkown image
|
page readonly
|
|
|
|
2A959FC4000
|
unkown
|
page read and write
|
|
|
|
7DF553DA2000
|
unkown image
|
page readonly
|
|
|
|
2A959F63000
|
unkown
|
page read and write
|
|
|
|
2A959F92000
|
unkown
|
page read and write
|
|
|
|
7DF562700000
|
unkown image
|
page readonly
|
|
|
|
7FF53E805000
|
unkown image
|
page readonly
|
|
|
|
1C340590000
|
unkown image
|
page readonly
|
|
|
|
7FF50E9AB000
|
unkown image
|
page readonly
|
|
|
|
2A95A46A000
|
unkown
|
page read and write
|
|
|
|
1C3456C0000
|
unkown
|
page read and write
|
|
|
|
7FF51C70A000
|
unkown image
|
page readonly
|
|
|
|
2A959FB4000
|
unkown
|
page read and write
|
|
|
|
D6828FE000
|
stack
|
page read and write
|
|
|
|
2A9596CD000
|
unkown
|
page read and write
|
|
|
|
7DF5626F2000
|
unkown image
|
page readonly
|
|
|
|
D68233B000
|
unkown
|
page read and write
|
|
|
|
2A959651000
|
unkown
|
page read and write
|
|
|
|
1C345854000
|
unkown
|
page read and write
|
|
|
|
7DF51ADB0000
|
unkown image
|
page readonly
|
|
|
|
1C340102000
|
unkown
|
page read and write
|
|
|
|
7FF51CA2A000
|
unkown image
|
page readonly
|
|
|
|
1C3455A1000
|
unkown
|
page read and write
|
|
|
|
2A959670000
|
unkown
|
page read and write
|
|
|
|
2A95A46A000
|
unkown
|
page read and write
|
|
|
|
7FF53EC2E000
|
unkown image
|
page readonly
|
|
|
|
7FF53EC9E000
|
unkown image
|
page readonly
|
|
|
|
2A959FD5000
|
unkown
|
page read and write
|
|
|
|
12164600000
|
unkown image
|
page readonly
|
|
|
|
709FA7E000
|
stack
|
page read and write
|
|
|
|
2A959E02000
|
unkown
|
page read and write
|
|
|
|
709F8FF000
|
stack
|
page read and write
|
|
|
|
7FF54D671000
|
unkown image
|
page readonly
|
|
|
|
7FF51CA5F000
|
unkown image
|
page readonly
|
|
|
|
2A959F85000
|
unkown
|
page read and write
|
|
|
|
7FF50EBF0000
|
unkown image
|
page readonly
|
|
|
|
1C34003C000
|
unkown
|
page read and write
|
|
|
|
6C5F97F000
|
stack
|
page read and write
|
|
|
|
1D27F02A000
|
unkown
|
page read and write
|
|
|
|
1C340410000
|
unkown image
|
page readonly
|
|
|
|
7DF531BA0000
|
unkown image
|
page readonly
|
|
|
|
1D27F000000
|
unkown
|
page read and write
|
|
|
|
7FF54D5AC000
|
unkown image
|
page readonly
|
|
|
|
D682F78000
|
stack
|
page read and write
|
|
|
|
2A95A500000
|
unkown
|
page read and write
|
|
|
|
7FF50E9ED000
|
unkown image
|
page readonly
|
|
|
|
1C3455A0000
|
unkown
|
page read and write
|
|
|
|
1C3456D0000
|
unkown
|
page read and write
|
|
|
|
7FF51C9FB000
|
unkown image
|
page readonly
|
|
|
|
7FF54D580000
|
unkown image
|
page readonly
|
|
|
|
2B0D8B000
|
unkown
|
page read and write
|
|
|
|
2A959FA3000
|
unkown
|
page read and write
|
|
|
|
7FF54D5D4000
|
unkown image
|
page readonly
|
|
|
|
6C5FDFF000
|
stack
|
page read and write
|
|
|
|
2A959560000
|
unkown
|
page read and write
|
|
|
|
1E1FFC02000
|
unkown
|
page read and write
|
|
|
|
7FF50EA41000
|
unkown image
|
page readonly
|
|
|
|
7DF531BA2000
|
unkown image
|
page readonly
|
|
|
|
7FF53EC5C000
|
unkown image
|
page readonly
|
|
|
|
192C12ED000
|
unkown
|
page read and write
|
|
|
|
7FF505C99000
|
unkown image
|
page readonly
|
|
|
|
7DF5F38B2000
|
unkown image
|
page readonly
|
|
|
|
7FF50EC07000
|
unkown image
|
page readonly
|
|
|
|
192C12E0000
|
unkown
|
page read and write
|
|
|
|
2A959FA3000
|
unkown
|
page read and write
|
|
|
|
7FF50E53E000
|
unkown image
|
page readonly
|
|
There are 788 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://shiny.documentx.workers.dev/index.html
|
|