Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\1f0d5f95-d96e-47fb-9eee-751e45ba4b85.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\22e19acd-3170-4572-a8a1-0721bdded551.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\35ab2c62-b0bf-4872-a8ab-9c2107d68d58.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\56796f95-7c33-4ec2-8de6-ea1e127a6d7a.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\69e2b7c9-4d8c-4177-a4d7-378d16809b23.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\6c9175e5-db26-4ba6-ab5d-b53eba0bc189.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3e51e616-c64c-4935-8c9a-b0823bfa91e2.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\46826242-4d9b-43f8-b18f-d9c733bd18b0.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\80c274e5-85f8-42c9-bc4a-d44b968f47fc.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8fe405e3-9334-46a1-8a07-5ef2c7198ff4.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\990108db-418d-40b3-9ab7-126b2bc91a85.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.atlassian.com_0.indexeddb.leveldb\000001.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.atlassian.com_0.indexeddb.leveldb\CURRENT
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.atlassian.com_0.indexeddb.leveldb\MANIFEST-000001
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000004.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State.. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State75 (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesL (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferencesm (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences7 (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\40b66be9-35cd-4ad6-9ab6-669a4e085c7f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\5c5831dc-c898-45de-bd8a-33464a231574.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State7f (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\3e1adf5a-10fa-4898-aa9d-04ff5234da99.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b50a4ad7-42ba-4833-b5c6-51aa20007283.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c57b9a72-31a4-4e57-ab9c-654ae96cc744.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENTMP (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\e8358643-669b-4874-b8b7-3a7b04a1727f.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ea032bef-9c29-484b-bd9f-f0c1d4a4fb98.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f1a30738-4ffc-4b3c-bac2-5d34e716647e.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f46683bd-8ed6-49be-ad55-df1507e63c57.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f8db037d-2993-4f15-b0bf-435d8ae2ebb5.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\fb9546d5-ba83-402c-b749-4bf63875488d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local Statel (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache.7 (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cachero (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\27\scoped_dir3212_2020003175\Ruleset
Data
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\c4d67247-41ae-452c-90cc-45c2b39ce342.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\d80684d9-0e2f-4c1c-999a-fd01222f413e.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_122078107\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_122078107\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_122078107\manifest.json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_1614450587\Filtering Rules
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_1614450587\LICENSE.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_1614450587\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_1614450587\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_1614450587\manifest.json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_1826751422\LICENSE
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_1826751422\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_1826751422\crl-set
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_1826751422\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_1826751422\manifest.json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_2067475749\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_2067475749\_platform_specific\x86_64\pnacl_public_pnacl_json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_2067475749\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_2067475749\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_2067475749\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_2067475749\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=7511538a3a6a0b862c772eace49075ed1bbe2377,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_2067475749\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_2067475749\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_2067475749\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_2067475749\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_2067475749\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=309d6d3d463e6b1b0690f39eb226b1e4c469b2ce,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_2067475749\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_sz_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=4b15de4ab227d5e46213978b8518d53c53ce1db9,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_2067475749\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\3212_2067475749\manifest.json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\7ea04feb-9187-4211-835c-bf698fef281c.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\7ea04feb-9187-4211-835c-bf698fef281c.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\iw\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\angular.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\background_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\cast_sender.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\feedback.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\feedback.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\feedback_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\material_css_min.css
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\mirroring_cast_streaming.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\mirroring_common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\mirroring_hangouts.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_1596502370\CRX_INSTALL\mirroring_webrtc.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir3212_826179315\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
There are 197 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://stg-clientrelations.equalityhealth.com/secure/ChangeUserPassword!default.jspa?username=n.martinez@chcfl.org'
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1572,18266022950293399891,13773735986418769558,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1936 /prefetch:8
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://stg-clientrelations.equalityhealth.com/secure/ChangeUserPassword!default.jspa?username=n.martinez@chcfl.org
|
|
||
|
https://stg-clientrelations.equalityhealth.com/secure/ChangeUserPassword!default.jspa?username=n.martinez@chcfl.org
|
 |
||
|
https://stg-clientrelations.equalityhealth.com/secure/ForgotLoginDetails.jspa
|
|
||
|
https://stg-clientrelations.equalityhealth.com/login.jsp?os_destination=%2Fsecure%2FChangeUserPassword%21default.jspa%3Fusername%3Dn.martinez%40chcfl.org
|
|
||
|
https://stg-clientrelations.equalityhealth.com/secure/ContactAdministrators!default.jspa
|
|
||
|
https://stg-clientrelations.equalityhealth.com/login.jsp?permissionViolation=true&os_destination=https%3A%2F%2Fstg-clientrelations.equalityhealth.com%2Fsecure%2FChangeUserPassword!default.jspa
|
|
||
|
https://stg-clientrelations.equalityhealth.com/secure/ChangeUserPassword!default.jspa?username=n.martinez@chcfl.org#main
|
|
||
|
https://stg-clientrelations.equalityhealth.com/login.jsp?permissionViolation=true&os_destination=%2Fsecure%2FAboutPage.jspa%2Fsecure%2FAboutPage.jspa&page_caps=&user_role=
|
|
||
|
https://stg-clientrelations.equalityhealth.com/login.jsp
|
|
||
|
https://stats.g.doubleclick.net
|
unknown
|
|
|
|
https://apis.google.com/js/client.js
|
unknown
|
|
|
|
https://crash.corp.google.com/samples?reportid=&q=
|
unknown
|
|
|
|
https://www.atlassian.com_oeu1635202071179r0.6121722167079615$$1096093$$tracker_optimizely
|
unknown
|
|
|
|
https://easylist.to/)
|
unknown
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
|
unknown
|
|
|
|
https://preprod-hangouts-googleapis.sandbox.google.com
|
unknown
|
|
|
|
https://www.google.com
|
unknown
|
|
|
|
https://www.google.fr
|
unknown
|
|
|
|
https://confluence.atlassian.com_oeu1635202071179r0.6121722167079615$$10828395850$$layer_map
|
unknown
|
|
|
|
https://confluence.atlassian.com_oeu1635202071179r0.6121722167079615$$10828395850$$layer_states
|
unknown
|
|
|
|
https://confluence.atlassian.com_pending_events
|
unknown
|
|
|
|
https://hangouts.google.com/hangouts/_/logpref
|
unknown
|
|
|
|
https://confluence.atlassian.com
|
unknown
|
|
|
|
https://api-private.atlassian.com/gasv3/api/v1/t
|
unknown
|
|
|
|
https://creativecommons.org/publicdomain/zero/1.0/.
|
unknown
|
|
|
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
|
|
|
https://api-private.atlassian.com/gasv3/api/v1/p
|
unknown
|
|
|
|
https://confluence.atlassian.com_oeu1635202071179r0.6121722167079615$$10828395850$$variation_map
|
unknown
|
|
|
|
https://github.com/madler/zlib/blob/master/zlib.h
|
unknown
|
|
|
|
https://www.google.com/tools/feedback
|
unknown
|
|
|
|
https://dns.google
|
unknown
|
|
|
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
|
|
|
https://www.atlassian.com/software/jira
|
unknown
|
|
|
|
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
|
unknown
|
|
|
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://stg-clientrelations.equalityhealth.com/login.jsp?permissionViolation=true&os_destination=htt
|
unknown
|
|
|
|
https://www.google.com;
|
unknown
|
|
|
|
https://www.atlassian.com_oeu1635202071179r0.6121722167079615$$1096093$$event_queue
|
unknown
|
|
|
|
https://www.atlassian.com
|
unknown
|
|
|
|
https://a1096093.cdn.optimizely.com
|
unknown
|
|
|
|
https://www.google.com/images/x2.gif
|
unknown
|
|
|
|
https://www.google.com/images/dot2.gif
|
unknown
|
|
|
|
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://www.atlassian.com_oeu1635202071179r0.6121722167079615$$1096093$$variation_map.
|
unknown
|
|
|
|
http://tools.ietf.org/html/rfc1950
|
unknown
|
|
|
|
https://www.atlassian.com/
|
|
||
|
https://www.atlassian.com_oeu1635202071179r0.6121722167079615$$1096093$$layer_states
|
unknown
|
|
|
|
https://docs.google.com
|
unknown
|
|
|
|
https://www.google.com/
|
unknown
|
|
|
|
https://feedback.googleusercontent.com
|
unknown
|
|
|
|
https://clients6.google.com
|
unknown
|
|
|
|
https://adservice.google.com/ddm/fls/i/dc_pre=CLL9wuvZ5fMCFQ6IUQodFzAGxA;src=5406241;type=global;cat=wac-v0;ord=1;num=5568152833281;gtm=2wgak0;auiddc=1421621436.1635202105;u1=%25223990f44e-5736-4d68-93d7-11d32e9d67b2%2522;~oref=https%3A%2F%2Fwww.atlassian.com%2F
|
|
||
|
https://www.google.com/images/cleardot.gif
|
unknown
|
|
|
|
https://confluence.atlassian.com_oeu1635202071179r0.6121722167079615$$10828395850$$visitor_profile
|
unknown
|
|
|
|
https://www.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://www.atlassian.com/software/jira
|
|
||
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://www.atlassian.com_oeu1635202071179r0.6121722167079615$$1096093$$layer_map
|
unknown
|
|
|
|
https://5406241.fls.doubleclick.net/activityi;dc_pre=CLL9wuvZ5fMCFQ6IUQodFzAGxA;src=5406241;type=global;cat=wac-v0;ord=1;num=5568152833281;gtm=2wgak0;auiddc=1421621436.1635202105;u1=%25223990f44e-5736-4d68-93d7-11d32e9d67b2%2522;~oref=https%3A%2F%2Fwww.atlassian.com%2F?
|
|
||
|
https://accounts.google.com/MergeSession
|
unknown
|
|
|
|
https://creativecommons.org/compatiblelicenses
|
unknown
|
|
|
|
https://github.com/easylist)
|
unknown
|
|
|
|
https://stg-clientrelations.equalityhealth.com
|
unknown
|
|
|
|
https://creativecommons.org/.
|
unknown
|
|
|
|
https://confluence.atlassian.com_oeu1635202071179r0.6121722167079615$$10828395850$$tracker_optimizel
|
unknown
|
|
|
|
https://hangouts.clients6.google.com
|
unknown
|
|
|
|
https://meet.google.com
|
unknown
|
|
|
|
https://accounts.google.com
|
unknown
|
|
|
|
https://clients2.google.com/cr/report
|
unknown
|
|
|
|
http://angularjs.org
|
unknown
|
|
|
|
https://www.atlassian.com_oeu1635202071179r0.6121722167079615$$1096093$$events
|
unknown
|
|
|
|
https://github.com/angular/material
|
unknown
|
|
|
|
https://apis.google.com
|
unknown
|
|
|
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
|
|
|
https://clients2.google.com
|
unknown
|
|
|
|
http://www.atlassian.com/
|
185.166.143.5
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
unknown
|
|
|
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
|
|
|
https://ogs.google.com
|
unknown
|
|
|
|
https://confluence.atlassian.com/jiracoreserver0819/jira-core-server-8-19-documentation-1086414660.html
|
|
||
|
https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
|
unknown
|
|
|
|
https://confluence.atlassian.com/jiracoreserver0819/jira-core-server-8-19-documentation-1086414660.h
|
unknown
|
|
|
|
https://hangouts.google.com/
|
unknown
|
|
|
|
http://llvm.org/):
|
unknown
|
|
|
|
https://meetings.clients6.google.com
|
unknown
|
|
|
|
https://stg-clientrelations.equalityhealth.com/secure/ChangeUserPassword
|
unknown
|
|
|
|
https://www.atlassian.com/
|
unknown
|
|
|
|
https://code.google.com/p/nativeclient/issues/entry%s:
|
unknown
|
|
|
|
https://code.google.com/p/nativeclient/issues/entry
|
unknown
|
|
|
|
https://www.atlassian.com_oeu1635202071179r0.6121722167079615$$1096093$$visitor_profile
|
unknown
|
|
|
|
https://support.google.com/chromecast/answer/2998456
|
unknown
|
|
|
|
https://clients2.googleusercontent.com
|
unknown
|
|
|
|
https://www.atlassian.com_pending_events
|
unknown
|
|
|
|
https://confluence.atlassian.com_oeu1635202071179r0.6121722167079615$$10828395850$$session_stateZ
|
unknown
|
|
|
|
https://chromium.googlesource.com/a/native_client/pnacl-clang.git
|
unknown
|
|
|
|
https://www.atlassian.com_oeu1635202071179r0.6121722167079615$$1096093$$session_stateZ
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx
|
unknown
|
|
There are 87 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
collector-pxvryik386.px-cloud.net
|
35.186.220.184
|
|
|
|
segments.company-target.com
|
54.192.66.96
|
|
|
|
platform.twitter.map.fastly.net
|
199.232.136.157
|
|
|
|
t.co
|
104.244.42.5
|
|
|
|
dnyjdqemy55m3.cloudfront.net
|
216.137.37.113
|
|
|
|
api.demandbase.com
|
216.137.37.71
|
|
|
|
594-atc-127.mktoresp.com
|
192.28.144.124
|
|
|
|
www.google.com
|
142.250.203.100
|
|
|
|
api.segment.io
|
54.70.105.250
|
|
|
|
pixel.pointmediatracker.com
|
54.192.66.98
|
|
|
|
polyfill.io
|
151.101.1.26
|
|
|
|
id.rlcdn.com
|
35.244.174.68
|
|
|
|
global.stargate.cse.ss-inf.net
|
18.184.99.132
|
|
|
|
star-mini.c10r.facebook.com
|
157.240.9.35
|
|
|
|
match.prod.bidr.io
|
52.49.53.128
|
|
|
|
stats.l.doubleclick.net
|
173.194.79.155
|
|
|
|
s.twitter.com
|
104.244.42.131
|
|
|
|
dualstack.reddit.map.fastly.net
|
151.101.1.140
|
|
|
|
youtube-ui.l.google.com
|
142.250.186.174
|
|
|
|
googleads.g.doubleclick.net
|
142.250.203.98
|
|
|
|
reddit.map.fastly.net
|
151.101.1.140
|
|
|
|
s2-cloudinary-pin-sni.map.fastly.net
|
151.101.2.92
|
|
|
|
d1jsfcerjrfe3w.cloudfront.net
|
54.192.66.87
|
|
|
|
clients.l.google.com
|
142.250.186.174
|
|
|
|
googlehosted.l.googleusercontent.com
|
172.217.168.33
|
|
|
|
cdn.cookielaw.org
|
104.16.148.64
|
|
|
|
perimeterx2.map.fastly.net
|
151.101.1.40
|
|
|
|
dart.l.doubleclick.net
|
172.217.168.38
|
|
|
|
cdn.evgnet.com
|
151.101.64.114
|
|
|
|
docs.atlassian.com
|
185.166.143.0
|
|
|
|
pop-eda6.mix.linkedin.com
|
108.174.11.69
|
|
|
|
events.launchdarkly.com
|
54.209.55.173
|
|
|
|
prod-tracking-web-alb-482381516.us-east-1.elb.amazonaws.com
|
35.172.51.134
|
|
|
|
client-error-log-962704628.us-east-1.elb.amazonaws.com
|
3.224.118.21
|
|
|
|
d1jpmzxkzfzfaz.cloudfront.net
|
216.137.37.2
|
|
|
|
c-ct-eu.contentsquare.net
|
52.30.94.8
|
|
|
|
adservice.google.com
|
172.217.168.66
|
|
|
|
scontent.xx.fbcdn.net
|
157.240.17.15
|
|
|
|
dn1f1hmdujj40.cloudfront.net
|
13.33.93.218
|
|
|
|
p.adsymptotic.com
|
104.18.102.194
|
|
|
|
www.google.fr
|
172.217.168.67
|
|
|
|
dc61fd7f-0769-521a-b271-bd73d5e7f644.prd.edge-inf.net
|
185.166.143.5
|
|
|
|
d3lzof3wnsn9tm.cloudfront.net
|
54.192.66.67
|
|
|
|
pagead46.l.doubleclick.net
|
142.250.203.98
|
|
|
|
accounts.google.com
|
142.250.203.109
|
|
|
|
www-google-analytics.l.google.com
|
142.250.203.110
|
|
|
|
p13nlog-1106815646.us-east-1.elb.amazonaws.com
|
34.197.14.190
|
|
|
|
www-googletagmanager.l.google.com
|
142.250.186.72
|
|
|
|
d3bdzitctqoj2j.cloudfront.net
|
54.192.66.54
|
|
|
|
cs41.wac.edgecastcdn.net
|
93.184.220.66
|
|
|
|
webrecorder-prod-1682395302.us-east-1.elb.amazonaws.com
|
23.23.73.109
|
|
|
|
api.company-target.com
|
54.192.66.24
|
|
|
|
fp2c5c.wac.kappacdn.net
|
152.195.15.58
|
|
|
|
global.event.prod.bidr.io
|
52.211.108.19
|
|
|
|
geolocation.onetrust.com
|
104.20.184.68
|
|
|
|
scripts.demandbase.com
|
54.192.66.106
|
|
|
|
stg-clientrelations.equalityhealth.com
|
76.9.179.216
|
|
|
|
metal.prod.atl-paas.net
|
unknown
|
|
|
|
alb.reddit.com
|
unknown
|
|
|
|
static.ads-twitter.com
|
unknown
|
|
|
|
www.atlassian.com
|
unknown
|
|
|
|
a1096093.cdn.optimizely.com
|
unknown
|
|
|
|
errors.client.optimizely.com
|
unknown
|
|
|
|
atl-global.atlassian.com
|
unknown
|
|
|
|
cdn-mr.contentful.com
|
unknown
|
|
|
|
stats.g.doubleclick.net
|
unknown
|
|
|
|
clients2.googleusercontent.com
|
unknown
|
|
|
|
clients2.google.com
|
unknown
|
|
|
|
www.youtube.com
|
unknown
|
|
|
|
platform.twitter.com
|
unknown
|
|
|
|
wac-cdn.atlassian.com
|
unknown
|
|
|
|
logx.optimizely.com
|
unknown
|
|
|
|
www.redditstatic.com
|
unknown
|
|
|
|
web-analytics.engagio.com
|
unknown
|
|
|
|
wac-cdn-2.atlassian.com
|
unknown
|
|
|
|
connect.facebook.net
|
unknown
|
|
|
|
px.ads.linkedin.com
|
unknown
|
|
|
|
munchkin.marketo.net
|
unknown
|
|
|
|
cdn.optimizely.com
|
unknown
|
|
|
|
api.atlassian.com
|
unknown
|
|
|
|
5406241.fls.doubleclick.net
|
unknown
|
|
|
|
cnv.event.prod.bidr.io
|
unknown
|
|
|
|
c.clicktale.net
|
unknown
|
|
|
|
api-private.atlassian.com
|
unknown
|
|
|
|
cdn.bizibly.com
|
unknown
|
|
|
|
confluence.atlassian.com
|
unknown
|
|
|
|
code.jquery.com
|
unknown
|
|
|
|
tapi.optimizely.com
|
unknown
|
|
|
|
ing-district.clicktale.net
|
unknown
|
|
|
|
cdn.bizible.com
|
unknown
|
|
|
|
cdnssl.clicktale.net
|
unknown
|
|
|
|
www.facebook.com
|
unknown
|
|
|
|
app.launchdarkly.com
|
unknown
|
|
|
|
www.linkedin.com
|
unknown
|
|
|
|
xxid.atl-paas.net
|
unknown
|
|
|
|
analytics.twitter.com
|
unknown
|
|
|
|
adservice.google.fr
|
unknown
|
|
|
|
client.px-cloud.net
|
unknown
|
|
|
|
snap.licdn.com
|
unknown
|
|
There are 89 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.28.144.124
|
594-atc-127.mktoresp.com
|
United States
|
|
|
|
192.168.2.1
|
unknown
|
unknown
|
|
|
|
23.23.73.109
|
webrecorder-prod-1682395302.us-east-1.elb.amazonaws.com
|
United States
|
|
|
|
54.192.66.67
|
d3lzof3wnsn9tm.cloudfront.net
|
United States
|
|
|
|
104.16.148.64
|
cdn.cookielaw.org
|
United States
|
|
|
|
104.20.184.68
|
geolocation.onetrust.com
|
United States
|
|
|
|
142.250.186.72
|
www-googletagmanager.l.google.com
|
United States
|
|
|
|
35.186.220.184
|
collector-pxvryik386.px-cloud.net
|
United States
|
|
|
|
35.172.51.134
|
prod-tracking-web-alb-482381516.us-east-1.elb.amazonaws.com
|
United States
|
|
|
|
151.101.1.40
|
perimeterx2.map.fastly.net
|
United States
|
|
|
|
151.101.2.92
|
s2-cloudinary-pin-sni.map.fastly.net
|
United States
|
|
|
|
54.192.66.54
|
d3bdzitctqoj2j.cloudfront.net
|
United States
|
|
|
|
54.192.66.96
|
segments.company-target.com
|
United States
|
|
|
|
54.209.55.173
|
events.launchdarkly.com
|
United States
|
|
|
|
216.137.37.71
|
api.demandbase.com
|
United States
|
|
|
|
216.137.37.113
|
dnyjdqemy55m3.cloudfront.net
|
United States
|
|
|
|
239.255.255.250
|
unknown
|
Reserved
|
|
|
|
54.70.105.250
|
api.segment.io
|
United States
|
|
|
|
127.0.0.1
|
unknown
|
unknown
|
|
|
|
13.33.93.218
|
dn1f1hmdujj40.cloudfront.net
|
United States
|
|
|
|
151.101.64.114
|
cdn.evgnet.com
|
United States
|
|
|
|
142.250.186.174
|
youtube-ui.l.google.com
|
United States
|
|
|
|
54.192.66.87
|
d1jsfcerjrfe3w.cloudfront.net
|
United States
|
|
|
|
76.9.179.216
|
stg-clientrelations.equalityhealth.com
|
United States
|
|
|
|
34.197.14.190
|
p13nlog-1106815646.us-east-1.elb.amazonaws.com
|
United States
|
|
|
|
157.240.17.15
|
scontent.xx.fbcdn.net
|
United States
|
|
|
|
172.217.168.67
|
www.google.fr
|
United States
|
|
|
|
185.166.143.5
|
dc61fd7f-0769-521a-b271-bd73d5e7f644.prd.edge-inf.net
|
Germany
|
|
|
|
185.166.143.0
|
docs.atlassian.com
|
Germany
|
|
|
|
142.250.203.109
|
accounts.google.com
|
United States
|
|
|
|
18.184.99.132
|
global.stargate.cse.ss-inf.net
|
United States
|
|
|
|
18.184.99.133
|
unknown
|
United States
|
|
|
|
142.250.203.100
|
www.google.com
|
United States
|
|
|
|
151.101.1.26
|
polyfill.io
|
United States
|
|
|
|
216.137.37.2
|
d1jpmzxkzfzfaz.cloudfront.net
|
United States
|
|
|
|
172.217.168.33
|
googlehosted.l.googleusercontent.com
|
United States
|
|
|
|
173.194.79.155
|
stats.l.doubleclick.net
|
United States
|
|
|
|
192.168.2.255
|
unknown
|
unknown
|
|
There are 28 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Speech\Voices
|
DefaultTokenId
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
|
There are 34 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
1FD04F40000
|
heap default
|
page read and write
|
|
|
|
7FF546074000
|
unkown image
|
page readonly
|
|
|
|
1CC90ED0000
|
unkown image
|
page readonly
|
|
|
|
7FF54FFDB000
|
unkown image
|
page readonly
|
|
|
|
7FF595383000
|
unkown image
|
page readonly
|
|
|
|
7DF55D940000
|
unkown image
|
page readonly
|
|
|
|
7FF595525000
|
unkown image
|
page readonly
|
|
|
|
7FF5954BE000
|
unkown image
|
page readonly
|
|
|
|
7DF5AAFC0000
|
unkown image
|
page readonly
|
|
|
|
7FF5956CF000
|
unkown image
|
page readonly
|
|
|
|
1CC91202000
|
unkown
|
page read and write
|
|
|
|
43C456E000
|
stack
|
page read and write
|
|
|
|
20863655000
|
unkown
|
page read and write
|
|
|
|
7FF5454D9000
|
unkown image
|
page readonly
|
|
|
|
1F0CC130000
|
unkown image
|
page readonly
|
|
|
|
208635B0000
|
heap default
|
page read and write
|
|
|
|
1CC90A50000
|
unkown
|
page read and write
|
|
|
|
7FF595193000
|
unkown image
|
page readonly
|
|
|
|
2086365A000
|
unkown
|
page read and write
|
|
|
|
7DF55B9A0000
|
unkown image
|
page readonly
|
|
|
|
7FF54604F000
|
unkown image
|
page readonly
|
|
|
|
7FF5C5BAB000
|
unkown image
|
page readonly
|
|
|
|
2086364F000
|
unkown
|
page read and write
|
|
|
|
7FF545FF5000
|
unkown image
|
page readonly
|
|
|
|
7DF565902000
|
unkown image
|
page readonly
|
|
|
|
85061ED000
|
stack
|
page read and write
|
|
|
|
20863560000
|
unkown image
|
page readonly
|
|
|
|
7FF5C5ADD000
|
unkown image
|
page readonly
|
|
|
|
7DF55B982000
|
unkown image
|
page readonly
|
|
|
|
85065FE000
|
stack
|
page read and write
|
|
|
|
7FF5C5B94000
|
unkown image
|
page readonly
|
|
|
|
1EF69C8E000
|
unkown
|
page read and write
|
|
|
|
1EF69C80000
|
unkown
|
page read and write
|
|
|
|
7FF54FFD6000
|
unkown image
|
page readonly
|
|
|
|
7DF55B980000
|
unkown image
|
page readonly
|
|
|
|
1CC90B00000
|
unkown
|
page read and write
|
|
|
|
1FD0506D000
|
unkown
|
page read and write
|
|
|
|
7DF565910000
|
unkown image
|
page readonly
|
|
|
|
7FF5956BE000
|
unkown image
|
page readonly
|
|
|
|
1CC90950000
|
unkown image
|
page read and write
|
|
|
|
7FF59561A000
|
unkown image
|
page readonly
|
|
|
|
7FF54FF03000
|
unkown image
|
page readonly
|
|
|
|
1EF69CC4000
|
unkown
|
page read and write
|
|
|
|
1EF69C81000
|
unkown
|
page read and write
|
|
|
|
7FF546060000
|
unkown image
|
page readonly
|
|
|
|
1CC90A00000
|
unkown
|
page read and write
|
|
|
|
7DF5DB4A2000
|
unkown image
|
page readonly
|
|
|
|
7FF538E4F000
|
unkown image
|
page readonly
|
|
|
|
1FD04F10000
|
unkown image
|
page readonly
|
|
|
|
1FD05102000
|
unkown
|
page read and write
|
|
|
|
7FF54FF45000
|
unkown image
|
page readonly
|
|
|
|
1F0CC110000
|
unkown image
|
page read and write
|
|
|
|
1FD05031000
|
unkown
|
page read and write
|
|
|
|
7FF5954E3000
|
unkown image
|
page readonly
|
|
|
|
1CC90A55000
|
unkown
|
page read and write
|
|
|
|
20863590000
|
unkown image
|
page readonly
|
|
|
|
1CC90990000
|
unkown image
|
page readonly
|
|
|
|
7DF54E760000
|
unkown image
|
page readonly
|
|
|
|
1CC909F0000
|
unkown
|
page read and write
|
|
|
|
7FF545E53000
|
unkown image
|
page readonly
|
|
|
|
20863700000
|
unkown
|
page read and write
|
|
|
|
7DF55D942000
|
unkown image
|
page readonly
|
|
|
|
7FF54804F000
|
unkown image
|
page readonly
|
|
|
|
20863E02000
|
unkown
|
page read and write
|
|
|
|
2086364D000
|
unkown
|
page read and write
|
|
|
|
7FF595613000
|
unkown image
|
page readonly
|
|
|
|
20863550000
|
heap private
|
page read and write
|
|
|
|
1FD05069000
|
unkown
|
page read and write
|
|
|
|
7FF545E2D000
|
unkown image
|
page readonly
|
|
|
|
1F0CC850000
|
unkown image
|
page readonly
|
|
|
|
7DF5EF1B0000
|
unkown image
|
page readonly
|
|
|
|
7FF594EDF000
|
unkown image
|
page readonly
|
|
|
|
850616B000
|
unkown
|
page read and write
|
|
|
|
7FF594B13000
|
unkown image
|
page readonly
|
|
|
|
7DF5EF1A2000
|
unkown image
|
page readonly
|
|
|
|
850647E000
|
stack
|
page read and write
|
|
|
|
7FF5C5BAF000
|
unkown image
|
page readonly
|
|
|
|
7FF5454D3000
|
unkown image
|
page readonly
|
|
|
|
1FD05062000
|
unkown
|
page read and write
|
|
|
|
7FF595544000
|
unkown image
|
page readonly
|
|
|
|
1CC90A3C000
|
unkown
|
page read and write
|
|
|
|
1FD05042000
|
unkown
|
page read and write
|
|
|
|
7DF4637D0000
|
unkown image
|
page readonly
|
|
|
|
1CC90A7D000
|
unkown
|
page read and write
|
|
|
|
7FF5955C7000
|
unkown image
|
page readonly
|
|
|
|
7FF54FFFB000
|
unkown image
|
page readonly
|
|
|
|
7FF5955C3000
|
unkown image
|
page readonly
|
|
|
|
1CC90A8E000
|
unkown
|
page read and write
|
|
|
|
7FF55000F000
|
unkown image
|
page readonly
|
|
|
|
1CC90A02000
|
unkown
|
page read and write
|
|
|
|
1F0CC4D0000
|
unkown image
|
page readonly
|
|
|
|
7DF587C20000
|
unkown image
|
page readonly
|
|
|
|
208638D0000
|
unkown image
|
page readonly
|
|
|
|
8D5D99E000
|
stack
|
page read and write
|
|
|
|
7DF5AAFE0000
|
unkown image
|
page readonly
|
|
|
|
7FF595199000
|
unkown image
|
page readonly
|
|
|
|
20863708000
|
unkown
|
page read and write
|
|
|
|
1EF64F18000
|
unkown
|
page read and write
|
|
|
|
7DF5EF1A0000
|
unkown image
|
page readonly
|
|
|
|
43C497F000
|
stack
|
page read and write
|
|
|
|
8D5DFFF000
|
stack
|
page read and write
|
|
|
|
1FD05045000
|
unkown
|
page read and write
|
|
|
|
1EF69D50000
|
unkown
|
page read and write
|
|
|
|
7FF59A9CF000
|
unkown image
|
page readonly
|
|
|
|
20863600000
|
unkown
|
page read and write
|
|
|
|
7FF595609000
|
unkown image
|
page readonly
|
|
|
|
1CC90970000
|
unkown image
|
page readonly
|
|
|
|
20863684000
|
unkown
|
page read and write
|
|
|
|
7FF595635000
|
unkown image
|
page readonly
|
|
|
|
1F0CC213000
|
unkown
|
page read and write
|
|
|
|
7DF5AAFC0000
|
unkown image
|
page readonly
|
|
|
|
1CC90B13000
|
unkown
|
page read and write
|
|
|
|
7DF508C02000
|
unkown image
|
page readonly
|
|
|
|
1F0CC22A000
|
unkown
|
page read and write
|
|
|
|
7FF54FE65000
|
unkown image
|
page readonly
|
|
|
|
96F6AFF000
|
stack
|
page read and write
|
|
|
|
1EF69CA4000
|
unkown
|
page read and write
|
|
|
|
7DF4D9370000
|
unkown image
|
page readonly
|
|
|
|
7FF595605000
|
unkown image
|
page readonly
|
|
|
|
85067F7000
|
stack
|
page read and write
|
|
|
|
8D5DDFE000
|
stack
|
page read and write
|
|
|
|
1FD05077000
|
unkown
|
page read and write
|
|
|
|
7FF54FDFE000
|
unkown image
|
page readonly
|
|
|
|
1EF69CB0000
|
unkown
|
page read and write
|
|
|
|
7DF5B02D2000
|
unkown image
|
page readonly
|
|
|
|
7FF5C5863000
|
unkown image
|
page readonly
|
|
|
|
7FF545B53000
|
unkown image
|
page readonly
|
|
|
|
7DF55B992000
|
unkown image
|
page readonly
|
|
|
|
7DF54E740000
|
unkown image
|
page readonly
|
|
|
|
1FD05650000
|
unkown image
|
page readonly
|
|
|
|
7DF55B9A0000
|
unkown image
|
page readonly
|
|
|
|
1FD0507B000
|
unkown
|
page read and write
|
|
|
|
7FF54F426000
|
unkown image
|
page readonly
|
|
|
|
1FD04ED0000
|
unkown image
|
page read and write
|
|
|
|
7FF54FAE8000
|
unkown image
|
page readonly
|
|
|
|
7FF54606D000
|
unkown image
|
page readonly
|
|
|
|
7FF545B59000
|
unkown image
|
page readonly
|
|
|
|
96F6BFD000
|
stack
|
page read and write
|
|
|
|
1EF645D0000
|
unkown image
|
page readonly
|
|
|
|
7DF5DB4B0000
|
unkown image
|
page readonly
|
|
|
|
7FF54FF49000
|
unkown image
|
page readonly
|
|
|
|
7FF54FE84000
|
unkown image
|
page readonly
|
|
|
|
7FF545E5E000
|
unkown image
|
page readonly
|
|
|
|
1CC909A0000
|
unkown image
|
page readonly
|
|
|
|
7FF54FF53000
|
unkown image
|
page readonly
|
|
|
|
7FF5C5B9B000
|
unkown image
|
page readonly
|
|
|
|
1EF64F59000
|
unkown
|
page read and write
|
|
|
|
1EF69C88000
|
unkown
|
page read and write
|
|
|
|
7DF565910000
|
unkown image
|
page readonly
|
|
|
|
20863560000
|
unkown image
|
page readonly
|
|
|
|
7FF54FFCF000
|
unkown image
|
page readonly
|
|
|
|
7FF545EA3000
|
unkown image
|
page readonly
|
|
|
|
43C48FC000
|
stack
|
page read and write
|
|
|
|
7FF5C5B6F000
|
unkown image
|
page readonly
|
|
|
|
7FF545D43000
|
unkown image
|
page readonly
|
|
|
|
1EF69F02000
|
unkown
|
page read and write
|
|
|
|
277E4850000
|
unkown image
|
page readonly
|
|
|
|
7FF54FFFE000
|
unkown image
|
page readonly
|
|
|
|
7DF587C12000
|
unkown image
|
page readonly
|
|
|
|
20863682000
|
unkown
|
page read and write
|
|
|
|
7FF54608F000
|
unkown image
|
page readonly
|
|
|
|
7DF55B990000
|
unkown image
|
page readonly
|
|
|
|
1F0CC190000
|
unkown image
|
page readonly
|
|
|
|
1FD05046000
|
unkown
|
page read and write
|
|
|
|
7FF5C5B7B000
|
unkown image
|
page readonly
|
|
|
|
1F0CC24A000
|
unkown
|
page read and write
|
|
|
|
7FF54FF75000
|
unkown image
|
page readonly
|
|
|
|
1FD04EE0000
|
heap private
|
page read and write
|
|
|
|
1F0CC24D000
|
unkown
|
page read and write
|
|
|
|
1FD052D0000
|
unkown image
|
page readonly
|
|
|
|
1F0CC308000
|
unkown
|
page read and write
|
|
|
|
1CC91050000
|
unkown image
|
page readonly
|
|
|
|
1FD05013000
|
unkown
|
page read and write
|
|
|
|
7FF54608B000
|
unkown image
|
page readonly
|
|
|
|
7FF5C5B76000
|
unkown image
|
page readonly
|
|
|
|
7DF4A8E90000
|
unkown image
|
page readonly
|
|
|
|
7FF54FDAD000
|
unkown image
|
page readonly
|
|
|
|
1F0CC270000
|
unkown
|
page read and write
|
|
|
|
1FD05061000
|
unkown
|
page read and write
|
|
|
|
7DF55B990000
|
unkown image
|
page readonly
|
|
|
|
7FF5C5B68000
|
unkown image
|
page readonly
|
|
|
|
1CC90970000
|
unkown image
|
page readonly
|
|
|
|
20863658000
|
unkown
|
page read and write
|
|
|
|
1FD05049000
|
unkown
|
page read and write
|
|
|
|
7FF54608F000
|
unkown image
|
page readonly
|
|
|
|
1FD0505F000
|
unkown
|
page read and write
|
|
|
|
7FF545FC9000
|
unkown image
|
page readonly
|
|
|
|
7FF5956CB000
|
unkown image
|
page readonly
|
|
|
|
1FD0503A000
|
unkown
|
page read and write
|
|
|
|
7DF5DB4C0000
|
unkown image
|
page readonly
|
|
|
|
7FF54FDD3000
|
unkown image
|
page readonly
|
|
|
|
7FF55000F000
|
unkown image
|
page readonly
|
|
|
|
1FD05031000
|
unkown
|
page read and write
|
|
|
|
7DF5DB4A2000
|
unkown image
|
page readonly
|
|
|
|
1F0CC313000
|
unkown
|
page read and write
|
|
|
|
7DF5B02E0000
|
unkown image
|
page readonly
|
|
|
|
7FF545FDA000
|
unkown image
|
page readonly
|
|
|
|
85068FF000
|
stack
|
page read and write
|
|
|
|
7FF5C5BAF000
|
unkown image
|
page readonly
|
|
|
|
1CC909D0000
|
unkown image
|
page readonly
|
|
|
|
20863713000
|
unkown
|
page read and write
|
|
|
|
7FF54607B000
|
unkown image
|
page readonly
|
|
|
|
1FD0507E000
|
unkown
|
page read and write
|
|
|
|
7FF545BF3000
|
unkown image
|
page readonly
|
|
|
|
1FD0507A000
|
unkown
|
page read and write
|
|
|
|
7DF5DB4B0000
|
unkown image
|
page readonly
|
|
|
|
7FF54FF1C000
|
unkown image
|
page readonly
|
|
|
|
1FD0502E000
|
unkown
|
page read and write
|
|
|
|
1F0CC6D0000
|
unkown image
|
page readonly
|
|
|
|
1EF64F18000
|
unkown
|
page read and write
|
|
|
|
1F0CC130000
|
unkown image
|
page readonly
|
|
|
|
7FF5955E8000
|
unkown image
|
page readonly
|
|
|
|
7FF59551F000
|
unkown image
|
page readonly
|
|
|
|
7DF587C00000
|
unkown image
|
page readonly
|
|
|
|
7FF54FCC3000
|
unkown image
|
page readonly
|
|
|
|
1EF69DE0000
|
unkown
|
page read and write
|
|
|
|
1FD05047000
|
unkown
|
page read and write
|
|
|
|
1EF64F18000
|
unkown
|
page read and write
|
|
|
|
7FF5C5AFA000
|
unkown image
|
page readonly
|
|
|
|
7FF54FFF4000
|
unkown image
|
page readonly
|
|
|
|
7DF565900000
|
unkown image
|
page readonly
|
|
|
|
7FF54FFC8000
|
unkown image
|
page readonly
|
|
|
|
1EF64F59000
|
unkown
|
page read and write
|
|
|
|
7FF4F32FF000
|
unkown image
|
page readonly
|
|
|
|
7DF5DB4A0000
|
unkown image
|
page readonly
|
|
|
|
7FF54607E000
|
unkown image
|
page readonly
|
|
|
|
7FF545FA8000
|
unkown image
|
page readonly
|
|
|
|
7DF5DB4A0000
|
unkown image
|
page readonly
|
|
|
|
7DF5AAFE0000
|
unkown image
|
page readonly
|
|
|
|
1FD05029000
|
unkown
|
page read and write
|
|
|
|
7FF5955D7000
|
unkown image
|
page readonly
|
|
|
|
7FF5C5B15000
|
unkown image
|
page readonly
|
|
|
|
1FD04F70000
|
unkown
|
page read and write
|
|
|
|
7DF508C00000
|
unkown image
|
page readonly
|
|
|
|
1EF69CC0000
|
unkown
|
page read and write
|
|
|
|
1CC90B02000
|
unkown
|
page read and write
|
|
|
|
1CC90A4B000
|
unkown
|
page read and write
|
|
|
|
1F0CC254000
|
unkown
|
page read and write
|
|
|
|
7FF54605B000
|
unkown image
|
page readonly
|
|
|
|
20863702000
|
unkown
|
page read and write
|
|
|
|
7FF5C5AC8000
|
unkown image
|
page readonly
|
|
|
|
7DF55B982000
|
unkown image
|
page readonly
|
|
|
|
7FF545B68000
|
unkown image
|
page readonly
|
|
|
|
20863646000
|
unkown
|
page read and write
|
|
|
|
7FF5C5AE9000
|
unkown image
|
page readonly
|
|
|
|
1FD05802000
|
unkown
|
page read and write
|
|
|
|
7DF5AAFC2000
|
unkown image
|
page readonly
|
|
|
|
1FD054D0000
|
unkown image
|
page readonly
|
|
|
|
7FF5956CF000
|
unkown image
|
page readonly
|
|
|
|
7FF546056000
|
unkown image
|
page readonly
|
|
|
|
1CC90A4D000
|
unkown
|
page read and write
|
|
|
|
1CC90A71000
|
unkown
|
page read and write
|
|
|
|
7FF5C4FBA000
|
unkown image
|
page readonly
|
|
|
|
1F0CC202000
|
unkown
|
page read and write
|
|
|
|
20863C50000
|
unkown image
|
page readonly
|
|
|
|
1FD0503D000
|
unkown
|
page read and write
|
|
|
|
7FF5956BB000
|
unkown image
|
page readonly
|
|
|
|
1FD04EF0000
|
unkown image
|
page readonly
|
|
|
|
1CC90A13000
|
unkown
|
page read and write
|
|
|
|
1CC909C0000
|
heap default
|
page read and write
|
|
|
|
7DF5AAFC2000
|
unkown image
|
page readonly
|
|
|
|
7FF5D98AF000
|
unkown image
|
page readonly
|
|
|
|
7FF545F83000
|
unkown image
|
page readonly
|
|
|
|
8D5D89B000
|
unkown
|
page read and write
|
|
|
|
7DF587C02000
|
unkown image
|
page readonly
|
|
|
|
1EF6B010000
|
unkown
|
page read and write
|
|
|
|
7FF5C5ABC000
|
unkown image
|
page readonly
|
|
|
|
7FF5C5AE5000
|
unkown image
|
page readonly
|
|
|
|
7DF55D952000
|
unkown image
|
page readonly
|
|
|
|
7FF55000B000
|
unkown image
|
page readonly
|
|
|
|
7DF5B02C0000
|
unkown image
|
page readonly
|
|
|
|
7FF545F97000
|
unkown image
|
page readonly
|
|
|
|
7DF565920000
|
unkown image
|
page readonly
|
|
|
|
1F0CC27B000
|
unkown
|
page read and write
|
|
|
|
1EF69DD0000
|
unkown
|
page read and write
|
|
|
|
7FF54FAD9000
|
unkown image
|
page readonly
|
|
|
|
15489850000
|
unkown image
|
page readonly
|
|
|
|
1CC90A8A000
|
unkown
|
page read and write
|
|
|
|
1F0CC23C000
|
unkown
|
page read and write
|
|
|
|
96F667E000
|
stack
|
page read and write
|
|
|
|
1EF64F59000
|
unkown
|
page read and write
|
|
|
|
1CC90A49000
|
unkown
|
page read and write
|
|
|
|
1CC90A29000
|
unkown
|
page read and write
|
|
|
|
1C278830000
|
unkown image
|
page readonly
|
|
|
|
7FF595688000
|
unkown image
|
page readonly
|
|
|
|
1F0CC300000
|
unkown
|
page read and write
|
|
|
|
7FF5C5B9E000
|
unkown image
|
page readonly
|
|
|
|
7FF59549E000
|
unkown image
|
page readonly
|
|
|
|
7FF545FC5000
|
unkown image
|
page readonly
|
|
|
|
7FF57230F000
|
unkown image
|
page readonly
|
|
|
|
7FF54FF07000
|
unkown image
|
page readonly
|
|
|
|
7DF565902000
|
unkown image
|
page readonly
|
|
|
|
7FF54FF28000
|
unkown image
|
page readonly
|
|
|
|
7DF5AAFD2000
|
unkown image
|
page readonly
|
|
|
|
7DF5B02C2000
|
unkown image
|
page readonly
|
|
|
|
7DF508BF2000
|
unkown image
|
page readonly
|
|
|
|
1FD0502D000
|
unkown
|
page read and write
|
|
|
|
7FF54F81F000
|
unkown image
|
page readonly
|
|
|
|
7FF5956B4000
|
unkown image
|
page readonly
|
|
|
|
1EF69F08000
|
unkown
|
page read and write
|
|
|
|
208635C0000
|
unkown image
|
page readonly
|
|
|
|
7DF54E742000
|
unkown image
|
page readonly
|
|
|
|
43C4C7F000
|
stack
|
page read and write
|
|
|
|
1FD05039000
|
unkown
|
page read and write
|
|
|
|
8D5D91E000
|
stack
|
page read and write
|
|
|
|
43C45EE000
|
stack
|
page read and write
|
|
|
|
1EF69CA1000
|
unkown
|
page read and write
|
|
|
|
2086366E000
|
unkown
|
page read and write
|
|
|
|
2086364C000
|
unkown
|
page read and write
|
|
|
|
20863AD0000
|
unkown image
|
page readonly
|
|
|
|
7FF59568F000
|
unkown image
|
page readonly
|
|
|
|
20863676000
|
unkown
|
page read and write
|
|
|
|
7FF5956A0000
|
unkown image
|
page readonly
|
|
|
|
43C4A7B000
|
stack
|
page read and write
|
|
|
|
7DF508C10000
|
unkown image
|
page readonly
|
|
|
|
1F0CC180000
|
heap default
|
page read and write
|
|
|
|
43C44EC000
|
unkown
|
page read and write
|
|
|
|
7DF5B02D0000
|
unkown image
|
page readonly
|
|
|
|
1FD05084000
|
unkown
|
page read and write
|
|
|
|
1F0CC288000
|
unkown
|
page read and write
|
|
|
|
7FF545F87000
|
unkown image
|
page readonly
|
|
|
|
7FF59569B000
|
unkown image
|
page readonly
|
|
|
|
7FF5955DC000
|
unkown image
|
page readonly
|
|
|
|
7FF54FE23000
|
unkown image
|
page readonly
|
|
|
|
1EF69DE0000
|
unkown
|
page read and write
|
|
|
|
1FD05030000
|
unkown
|
page read and write
|
|
|
|
7DF5DB4B2000
|
unkown image
|
page readonly
|
|
|
|
7FF5C5B80000
|
unkown image
|
page readonly
|
|
|
|
96F69F7000
|
stack
|
page read and write
|
|
|
|
208635E0000
|
unkown
|
page read and write
|
|
|
|
7FF54FAD3000
|
unkown image
|
page readonly
|
|
|
|
7DF508BF0000
|
unkown image
|
page readonly
|
|
|
|
1C2789B0000
|
unkown
|
page read and write
|
|
|
|
7DF565900000
|
unkown image
|
page readonly
|
|
|
|
1F0CC160000
|
unkown image
|
page readonly
|
|
|
|
1CC90960000
|
heap private
|
page read and write
|
|
|
|
7DF55D960000
|
unkown image
|
page readonly
|
|
|
|
7FF5951A8000
|
unkown image
|
page readonly
|
|
|
|
7DF5AAFD2000
|
unkown image
|
page readonly
|
|
|
|
20863659000
|
unkown
|
page read and write
|
|
|
|
20863651000
|
unkown
|
page read and write
|
|
|
|
43C4D7E000
|
stack
|
page read and write
|
|
|
|
7DF5DB4B2000
|
unkown image
|
page readonly
|
|
|
|
7FF545FD3000
|
unkown image
|
page readonly
|
|
|
|
1FD0504B000
|
unkown
|
page read and write
|
|
|
|
1F0CC24F000
|
unkown
|
page read and write
|
|
|
|
1EF69EFB000
|
unkown
|
page read and write
|
|
|
|
1EF69EFD000
|
unkown
|
page read and write
|
|
|
|
7FF595696000
|
unkown image
|
page readonly
|
|
|
|
7FF54FE5F000
|
unkown image
|
page readonly
|
|
|
|
1F0CC200000
|
unkown
|
page read and write
|
|
|
|
7FF545F9C000
|
unkown image
|
page readonly
|
|
|
|
1D717BC0000
|
unkown image
|
page readonly
|
|
|
|
20863629000
|
unkown
|
page read and write
|
|
|
|
7DF54E752000
|
unkown image
|
page readonly
|
|
|
|
96F687B000
|
stack
|
page read and write
|
|
|
|
7DF565912000
|
unkown image
|
page readonly
|
|
|
|
7DF5AAFD0000
|
unkown image
|
page readonly
|
|
|
|
7DF55B980000
|
unkown image
|
page readonly
|
|
|
|
7DF55D950000
|
unkown image
|
page readonly
|
|
|
|
7FF545F04000
|
unkown image
|
page readonly
|
|
|
|
1EF69EFB000
|
unkown
|
page read and write
|
|
|
|
1FD04F20000
|
unkown image
|
page readonly
|
|
|
|
2147A700000
|
unkown image
|
page readonly
|
|
|
|
7FF5956AD000
|
unkown image
|
page readonly
|
|
|
|
1FD04EF0000
|
unkown image
|
page readonly
|
|
|
|
1FD05066000
|
unkown
|
page read and write
|
|
|
|
1F0CCA02000
|
unkown
|
page read and write
|
|
|
|
7FF54FFED000
|
unkown image
|
page readonly
|
|
|
|
1FD0506B000
|
unkown
|
page read and write
|
|
|
|
85066FB000
|
stack
|
page read and write
|
|
|
|
7FF5C594D000
|
unkown image
|
page readonly
|
|
|
|
1C2789B0000
|
unkown
|
page read and write
|
|
|
|
7DF565920000
|
unkown image
|
page readonly
|
|
|
|
7DF5EF1B2000
|
unkown image
|
page readonly
|
|
|
|
7DF5DB4C0000
|
unkown image
|
page readonly
|
|
|
|
7FF5C5AF3000
|
unkown image
|
page readonly
|
|
|
|
1F0CC150000
|
unkown image
|
page readonly
|
|
|
|
43C4B77000
|
stack
|
page read and write
|
|
|
|
1FD05000000
|
unkown
|
page read and write
|
|
|
|
2086363C000
|
unkown
|
page read and write
|
|
|
|
96F68FF000
|
stack
|
page read and write
|
|
|
|
7DF54E750000
|
unkown image
|
page readonly
|
|
|
|
1CC90B08000
|
unkown
|
page read and write
|
|
|
|
20863657000
|
unkown
|
page read and write
|
|
|
|
1FD05040000
|
unkown
|
page read and write
|
|
|
|
7FF54FFE0000
|
unkown image
|
page readonly
|
|
|
|
20863678000
|
unkown
|
page read and write
|
|
|
|
7FF54FF5A000
|
unkown image
|
page readonly
|
|
|
|
85069FF000
|
stack
|
page read and write
|
|
|
|
1FD0504E000
|
unkown
|
page read and write
|
|
|
|
7FF545EE5000
|
unkown image
|
page readonly
|
|
|
|
7DF565912000
|
unkown image
|
page readonly
|
|
|
|
850657C000
|
stack
|
page read and write
|
|
|
|
20863580000
|
unkown image
|
page readonly
|
|
|
|
1F0CC1B0000
|
unkown
|
page read and write
|
|
|
|
1EF69EFF000
|
unkown
|
page read and write
|
|
|
|
96F639E000
|
stack
|
page read and write
|
|
|
|
7FF545EDF000
|
unkown image
|
page readonly
|
|
|
|
7FF59546D000
|
unkown image
|
page readonly
|
|
|
|
15489A60000
|
unkown
|
page read and write
|
|
|
|
20863540000
|
unkown image
|
page read and write
|
|
|
|
20863613000
|
unkown
|
page read and write
|
|
|
|
8D5DEFF000
|
stack
|
page read and write
|
|
|
|
96F631B000
|
unkown
|
page read and write
|
|
|
|
1CC90CD0000
|
unkown image
|
page readonly
|
|
|
|
7FF594B19000
|
unkown image
|
page readonly
|
|
|
|
7FF5955FD000
|
unkown image
|
page readonly
|
|
|
|
1EF69DE0000
|
unkown
|
page read and write
|
|
|
|
7DF5AAFD0000
|
unkown image
|
page readonly
|
|
|
|
7FF54FDDE000
|
unkown image
|
page readonly
|
|
|
|
7FF595493000
|
unkown image
|
page readonly
|
|
|
|
7DF55B992000
|
unkown image
|
page readonly
|
|
|
|
7DF459850000
|
unkown image
|
page readonly
|
|
|
|
1FD0504D000
|
unkown
|
page read and write
|
|
|
|
1C2789B0000
|
unkown
|
page read and write
|
|
|
|
7DF587C10000
|
unkown image
|
page readonly
|
|
|
|
1CC90A2C000
|
unkown
|
page read and write
|
|
|
|
1FD04F50000
|
unkown image
|
page readonly
|
|
|
|
20863653000
|
unkown
|
page read and write
|
|
|
|
7FF546048000
|
unkown image
|
page readonly
|
|
|
|
7FF545FBD000
|
unkown image
|
page readonly
|
|
|
|
1EF69DE0000
|
unkown
|
page read and write
|
|
|
|
1FD05064000
|
unkown
|
page read and write
|
|
|
|
20863650000
|
unkown
|
page read and write
|
|
|
|
7FF545E7E000
|
unkown image
|
page readonly
|
|
|
|
7FF54FF3D000
|
unkown image
|
page readonly
|
|
|
|
1EF69C80000
|
unkown
|
page read and write
|
|
|
|
7FF54FF17000
|
unkown image
|
page readonly
|
|
|
|
1F0CC302000
|
unkown
|
page read and write
|
|
|
|
7FF5C5AA7000
|
unkown image
|
page readonly
|
|
|
|
1F0CC120000
|
heap private
|
page read and write
|
|
|
|
7DF5EF1C0000
|
unkown image
|
page readonly
|
|
There are 423 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://stg-clientrelations.equalityhealth.com/secure/ChangeUserPassword!default.jspa?username=n.martinez@chcfl.org
|
|
|
|
https://stg-clientrelations.equalityhealth.com/login.jsp?permissionViolation=true&os_destination=https%3A%2F%2Fstg-clientrelations.equalityhealth.com%2Fsecure%2FChangeUserPassword!default.jspa
|
|
|
|
https://stg-clientrelations.equalityhealth.com/login.jsp?os_destination=%2Fsecure%2FChangeUserPassword%21default.jspa%3Fusername%3Dn.martinez%40chcfl.org
|
|
|
|
https://stg-clientrelations.equalityhealth.com/secure/ChangeUserPassword!default.jspa?username=n.martinez@chcfl.org#main
|
|
|
|
https://stg-clientrelations.equalityhealth.com/login.jsp?os_destination=%2Fsecure%2FChangeUserPassword%21default.jspa%3Fusername%3Dn.martinez%40chcfl.org
|
|
|
|
https://stg-clientrelations.equalityhealth.com/login.jsp
|
|
|
|
https://confluence.atlassian.com/jiracoreserver0819/jira-core-server-8-19-documentation-1086414660.html
|
|
|
|
https://stg-clientrelations.equalityhealth.com/secure/ForgotLoginDetails.jspa
|
|
|
|
https://www.atlassian.com/software/jira
|
|
|
|
https://stg-clientrelations.equalityhealth.com/login.jsp?permissionViolation=true&os_destination=%2Fsecure%2FAboutPage.jspa%2Fsecure%2FAboutPage.jspa&page_caps=&user_role=
|
|
|
|
https://stg-clientrelations.equalityhealth.com/secure/ContactAdministrators!default.jspa
|
|
|
|
https://stg-clientrelations.equalityhealth.com/login.jsp?permissionViolation=true&os_destination=%2Fsecure%2FAboutPage.jspa%2Fsecure%2FAboutPage.jspa&page_caps=&user_role=
|
|
|
|
https://www.atlassian.com/
|
|
|
|
https://5406241.fls.doubleclick.net/activityi;dc_pre=CLL9wuvZ5fMCFQ6IUQodFzAGxA;src=5406241;type=global;cat=wac-v0;ord=1;num=5568152833281;gtm=2wgak0;auiddc=1421621436.1635202105;u1=%25223990f44e-5736-4d68-93d7-11d32e9d67b2%2522;~oref=https%3A%2F%2Fwww.atlassian.com%2F?
|
|
|
|
https://adservice.google.com/ddm/fls/i/dc_pre=CLL9wuvZ5fMCFQ6IUQodFzAGxA;src=5406241;type=global;cat=wac-v0;ord=1;num=5568152833281;gtm=2wgak0;auiddc=1421621436.1635202105;u1=%25223990f44e-5736-4d68-93d7-11d32e9d67b2%2522;~oref=https%3A%2F%2Fwww.atlassian.com%2F
|
|
There are 5 hidden doms, click here to show them.