Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
89764583937678458745989.html
|
HTML document, ASCII text, with very long lines, with no line terminators
|
initial sample
|
 |
|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\064837b6-d455-47ad-9955-e6f64ee2e410.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\5cf9a4a4-d443-49cd-b039-55475bd0be88.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\67abc555-a16d-4df1-b8a0-51aeec34c442.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\711513fd-09f7-455b-b501-ac8048d97fb0.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\7d0b5a8b-df00-44fb-906e-4ee4e29bed5e.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\17e2d494-9a92-4162-9d53-d8f94074e09b.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1a4d5705-580f-40fb-8033-6f07809c6512.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\275214c8-ba04-4aa9-8938-85a15fc1d64b.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2fb22d0d-dc9c-4f57-8de3-314774f23355.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\337233c1-6157-46ad-b150-79521a12cd6f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\36a97ab8-936d-4e36-8c42-711c9b088190.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6815d48b-2cce-4c65-bcfa-bab5a45753b2.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3
|
dBase III DBT, next free block index 3238316739, block length 1024
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.oldg (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Sessiont (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabsli (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.oldMP (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State90 (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent Statef7 (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.old.@ (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferencese\ (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State.. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\fd88b026-9368-487e-bbef-7df52dc8a991.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
Statemp (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.olde/
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\be25c33a-eae9-4914-a1ed-f42b24c44181.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old.. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.oldn.
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a7640544-0694-4d81-b2b0-7232346531f7.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT0 (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old92 (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.oldt (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local Staten (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local States (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
SysEx File -
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache\p (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\b06d3a91-8216-4557-b574-c43230207eab.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\b31684e9-aa97-460b-b086-cae017b6e52f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\df1dbb6b-38b1-4669-b32b-1e76c86d2d13.tmp
|
SysEx File -
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\678a20c7-f13a-4995-84a9-a830815233fb.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\7144_1313748584\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\7144_1313748584\download_file_types.pb
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\7144_1313748584\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\7144_1313748584\manifest.json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\7144_549389674\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\7144_549389674\manifest.fingerprint
|
ASCII text, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Temp\7144_549389674\manifest.json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\7144_549389674\ssl_error_assistant.pb
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\7144_633366516\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\7144_633366516\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\7144_633366516\manifest.json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\7144_671442545\LICENSE
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\7144_671442545\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\7144_671442545\crl-set
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\7144_671442545\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\7144_671442545\manifest.json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\e61bbdd0-dff8-43e8-abbc-df0e451056d1.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\678a20c7-f13a-4995-84a9-a830815233fb.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\iw\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\angular.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\background_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\cast_sender.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\feedback.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\feedback.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\feedback_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\material_css_min.css
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\mirroring_cast_streaming.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\mirroring_common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\mirroring_hangouts.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1031101416\CRX_INSTALL\mirroring_webrtc.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
There are 236 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'C:\Users\user\Desktop\89764583937678458745989.html'
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1292,17089754194450806749,10367526075416180370,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1908 /prefetch:8
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
file:///C:/Users/user/Desktop/89764583937678458745989.html
|
|
||
|
https://apis.google.com/js/client.js
|
unknown
|
|
|
|
https://www.google.com/images/cleardot.gif
|
unknown
|
|
|
|
https://play.google.com
|
unknown
|
|
|
|
https://crash.corp.google.com/samples?reportid=&q=
|
unknown
|
|
|
|
https://www.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://aadcdn.msftauth.net/ests/2.1/content/images/arrow_left_a9cc2824ef3517b6c4160dcf8ff7d410.svg
|
152.199.23.37
|
|
|
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
|
unknown
|
|
|
|
https://accounts.google.com/MergeSession
|
unknown
|
|
|
|
https://preprod-hangouts-googleapis.sandbox.google.com
|
unknown
|
|
|
|
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
|
216.58.212.161
|
|
|
|
https://www.google.com
|
unknown
|
|
|
|
https://hangouts.clients6.google.com
|
unknown
|
|
|
|
https://meet.google.com
|
unknown
|
|
|
|
https://hangouts.google.com/hangouts/_/logpref
|
unknown
|
|
|
|
https://accounts.google.com
|
unknown
|
|
|
|
https://clients2.google.com/cr/report
|
unknown
|
|
|
|
http://angularjs.org
|
unknown
|
|
|
|
https://aadcdn.msftauth.net/ests/2.1/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.
|
unknown
|
|
|
|
https://creativecommons.org/publicdomain/zero/1.0/.
|
unknown
|
|
|
|
https://github.com/angular/material
|
unknown
|
|
|
|
https://apis.google.com
|
unknown
|
|
|
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
|
|
|
https://github.com/madler/zlib/blob/master/zlib.h
|
unknown
|
|
|
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
|
|
|
https://clients2.google.com
|
unknown
|
|
|
|
https://aadcdn.msftauth.net/ests/2.1/content/images/applogos/53_8b36337037cff88c3df203bb73d58e41.png
|
152.199.23.37
|
|
|
|
https://www.google.com/tools/feedback
|
unknown
|
|
|
|
https://i.stack.imgur.com/vzbuQ.jpg
|
151.101.112.193
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
unknown
|
|
|
|
https://dns.google
|
unknown
|
|
|
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
|
|
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
|
|
|
https://ogs.google.com
|
unknown
|
|
|
|
https://aadcdn.msftauth.net/ests/2.1/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
|
152.199.23.37
|
|
|
|
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
|
|
|
https://aadcdn.msftauth.net/ests/2.1/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
|
152.199.23.37
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
142.250.74.206
|
|
|
|
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
216.58.212.141
|
|
|
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://www.google.com;
|
unknown
|
|
|
|
https://hangouts.google.com/
|
unknown
|
|
|
|
https://bdrelectro.lu/soon/images/dsw/do.php
|
unknown
|
|
|
|
https://i.stack.imgur.com/vzbuQ.jpg9
|
unknown
|
|
|
|
https://www.google.com/images/x2.gif
|
unknown
|
|
|
|
https://www.google.com/images/dot2.gif
|
unknown
|
|
|
|
https://meetings.clients6.google.com
|
unknown
|
|
|
|
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
http://tools.ietf.org/html/rfc1950
|
unknown
|
|
|
|
https://support.google.com/chromecast/answer/2998456
|
unknown
|
|
|
|
https://clients2.googleusercontent.com
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/report-to/IdentityListAccountsHttp/external
|
unknown
|
|
|
|
https://docs.google.com
|
unknown
|
|
|
|
https://www.google.com/
|
unknown
|
|
|
|
https://feedback.googleusercontent.com
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx
|
unknown
|
|
|
|
https://clients6.google.com
|
unknown
|
|
There are 49 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
cs1100.wpc.omegacdn.net
|
152.199.23.37
|
|
|
|
accounts.google.com
|
216.58.212.141
|
|
|
|
clients.l.google.com
|
142.250.74.206
|
|
|
|
googlehosted.l.googleusercontent.com
|
216.58.212.161
|
|
|
|
ipv4.imgur.map.fastly.net
|
151.101.112.193
|
|
|
|
clients2.googleusercontent.com
|
unknown
|
|
|
|
i.stack.imgur.com
|
unknown
|
|
|
|
clients2.google.com
|
unknown
|
|
|
|
aadcdn.msftauth.nnoet
|
unknown
|
|
|
|
aadcdn.msftauth.net
|
unknown
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.168.2.1
|
unknown
|
unknown
|
|
|
|
142.250.74.206
|
clients.l.google.com
|
United States
|
|
|
|
239.255.255.250
|
unknown
|
Reserved
|
|
|
|
216.58.212.161
|
googlehosted.l.googleusercontent.com
|
United States
|
|
|
|
152.199.23.37
|
cs1100.wpc.omegacdn.net
|
United States
|
|
|
|
216.58.212.141
|
accounts.google.com
|
United States
|
|
|
|
151.101.112.193
|
ipv4.imgur.map.fastly.net
|
United States
|
|
|
|
127.0.0.1
|
unknown
|
unknown
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
|
|
|
\Device\HarddiskVolume4\Users\user\AppData\Local\Temp\scoped_dir7144_1823947815\CRX_INSTALL\_locales\de\messages.json
|
mfehgcgbbipciphmccgaenjidiccnmng
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
|
There are 36 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7FF559B01000
|
unkown image
|
page readonly
|
|
|
|
7DF5B9450000
|
unkown image
|
page readonly
|
|
|
|
195585A1000
|
unkown
|
page read and write
|
|
|
|
125C1902000
|
unkown
|
page read and write
|
|
|
|
7DF5774E0000
|
unkown image
|
page readonly
|
|
|
|
7FF5378CB000
|
unkown image
|
page readonly
|
|
|
|
7FF5AB05E000
|
unkown image
|
page readonly
|
|
|
|
ADD80FF000
|
stack
|
page read and write
|
|
|
|
2754F020000
|
unkown image
|
page readonly
|
|
|
|
7FF5939FD000
|
unkown image
|
page readonly
|
|
|
|
7DF5774F0000
|
unkown image
|
page readonly
|
|
|
|
292FFF06000
|
unkown
|
page read and write
|
|
|
|
21214161000
|
unkown
|
page read and write
|
|
|
|
7DF5678E2000
|
unkown image
|
page readonly
|
|
|
|
18768400000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC65000
|
unkown image
|
page readonly
|
|
|
|
19558593000
|
unkown
|
page read and write
|
|
|
|
7FF5A01E1000
|
unkown image
|
page readonly
|
|
|
|
125C1710000
|
unkown image
|
page readonly
|
|
|
|
7FF5AAF1C000
|
unkown image
|
page readonly
|
|
|
|
21214250000
|
unkown image
|
page readonly
|
|
|
|
7FF5AB6E6000
|
unkown image
|
page readonly
|
|
|
|
18768455000
|
unkown
|
page read and write
|
|
|
|
195585A1000
|
unkown
|
page read and write
|
|
|
|
7FF5AB7BA000
|
unkown image
|
page readonly
|
|
|
|
19558592000
|
unkown
|
page read and write
|
|
|
|
7FF569871000
|
unkown image
|
page readonly
|
|
|
|
52E5B77000
|
stack
|
page read and write
|
|
|
|
7FF5DA802000
|
unkown image
|
page readonly
|
|
|
|
125C1848000
|
unkown
|
page read and write
|
|
|
|
12BED402000
|
unkown
|
page read and write
|
|
|
|
7FF5AAFD1000
|
unkown image
|
page readonly
|
|
|
|
125C16E0000
|
unkown image
|
page readonly
|
|
|
|
7FF593A3B000
|
unkown image
|
page readonly
|
|
|
|
125C183D000
|
unkown
|
page read and write
|
|
|
|
7DF5E8C50000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAF17000
|
unkown image
|
page readonly
|
|
|
|
7DF5774E0000
|
unkown image
|
page readonly
|
|
|
|
7FF5AAF23000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAFCA000
|
unkown image
|
page readonly
|
|
|
|
19557C4E000
|
unkown
|
page read and write
|
|
|
|
201A17F000
|
stack
|
page read and write
|
|
|
|
7FF59395C000
|
unkown image
|
page readonly
|
|
|
|
292FFDF0000
|
unkown image
|
page readonly
|
|
|
|
7FF53793B000
|
unkown image
|
page readonly
|
|
|
|
1955855C000
|
unkown
|
page read and write
|
|
|
|
7FF593332000
|
unkown image
|
page readonly
|
|
|
|
19557B80000
|
unkown image
|
page readonly
|
|
|
|
324AFF000
|
stack
|
page read and write
|
|
|
|
7DF5774E2000
|
unkown image
|
page readonly
|
|
|
|
7DF5A1752000
|
unkown image
|
page readonly
|
|
|
|
7FF56977F000
|
unkown image
|
page readonly
|
|
|
|
125C1889000
|
unkown
|
page read and write
|
|
|
|
7DF5E8C52000
|
unkown image
|
page readonly
|
|
|
|
7DF567900000
|
unkown image
|
page readonly
|
|
|
|
7FF5AB71B000
|
unkown image
|
page readonly
|
|
|
|
125C17B0000
|
unkown
|
page read and write
|
|
|
|
335C67F000
|
stack
|
page read and write
|
|
|
|
3F592FF000
|
stack
|
page read and write
|
|
|
|
18768513000
|
unkown
|
page read and write
|
|
|
|
7DF5B9430000
|
unkown image
|
page readonly
|
|
|
|
7FF593657000
|
unkown image
|
page readonly
|
|
|
|
7FF5379F3000
|
unkown image
|
page readonly
|
|
|
|
292FFF0D000
|
unkown
|
page read and write
|
|
|
|
19558578000
|
unkown
|
page read and write
|
|
|
|
195580D0000
|
unkown image
|
page readonly
|
|
|
|
12BECC4D000
|
unkown
|
page read and write
|
|
|
|
7FF537A03000
|
unkown image
|
page readonly
|
|
|
|
7FF569790000
|
unkown image
|
page readonly
|
|
|
|
7FF5AAFDE000
|
unkown image
|
page readonly
|
|
|
|
125C3270000
|
unkown
|
page read and write
|
|
|
|
7FF593A6A000
|
unkown image
|
page readonly
|
|
|
|
19557B30000
|
unkown image
|
page read and write
|
|
|
|
19557ED0000
|
unkown image
|
page readonly
|
|
|
|
19558A6A000
|
unkown
|
page read and write
|
|
|
|
7FF59FF6B000
|
unkown image
|
page readonly
|
|
|
|
1876847C000
|
unkown
|
page read and write
|
|
|
|
195585AA000
|
unkown
|
page read and write
|
|
|
|
2754F150000
|
unkown image
|
page readonly
|
|
|
|
292FFF0E000
|
unkown
|
page read and write
|
|
|
|
7FF5379ED000
|
unkown image
|
page readonly
|
|
|
|
7FF56979E000
|
unkown image
|
page readonly
|
|
|
|
29280AF0000
|
unkown
|
page read and write
|
|
|
|
195585A1000
|
unkown
|
page read and write
|
|
|
|
19557C88000
|
unkown
|
page read and write
|
|
|
|
18768380000
|
unkown
|
page read and write
|
|
|
|
212145E0000
|
unkown image
|
page readonly
|
|
|
|
7FF5A0007000
|
unkown image
|
page readonly
|
|
|
|
19558598000
|
unkown
|
page read and write
|
|
|
|
292FFEC8000
|
heap default
|
page read and write
|
|
|
|
7FF537656000
|
unkown image
|
page readonly
|
|
|
|
2754F256000
|
unkown
|
page read and write
|
|
|
|
7FF5AB722000
|
unkown image
|
page readonly
|
|
|
|
2754F000000
|
unkown image
|
page read and write
|
|
|
|
292FFED0000
|
heap default
|
page read and write
|
|
|
|
52E551E000
|
stack
|
page read and write
|
|
|
|
7FF59FFDB000
|
unkown image
|
page readonly
|
|
|
|
7FF559761000
|
unkown image
|
page readonly
|
|
|
|
7FF5AB6D6000
|
unkown image
|
page readonly
|
|
|
|
125C1730000
|
heap default
|
page read and write
|
|
|
|
195585C5000
|
unkown
|
page read and write
|
|
|
|
335C1FA000
|
stack
|
page read and write
|
|
|
|
7FF559851000
|
unkown image
|
page readonly
|
|
|
|
3247FF000
|
stack
|
page read and write
|
|
|
|
7FF5DAFB9000
|
unkown image
|
page readonly
|
|
|
|
7FF5697CE000
|
unkown image
|
page readonly
|
|
|
|
19557C56000
|
unkown
|
page read and write
|
|
|
|
7FF559BD3000
|
unkown image
|
page readonly
|
|
|
|
125C1802000
|
unkown
|
page read and write
|
|
|
|
125C1E50000
|
unkown image
|
page readonly
|
|
|
|
125C1858000
|
unkown
|
page read and write
|
|
|
|
7FF593A4E000
|
unkown image
|
page readonly
|
|
|
|
7FF59FF76000
|
unkown image
|
page readonly
|
|
|
|
7DF5ADE50000
|
unkown image
|
page readonly
|
|
|
|
7FF569783000
|
unkown image
|
page readonly
|
|
|
|
1955858D000
|
unkown
|
page read and write
|
|
|
|
1955858A000
|
unkown
|
page read and write
|
|
|
|
7FF559BB7000
|
unkown image
|
page readonly
|
|
|
|
7FF537A2B000
|
unkown image
|
page readonly
|
|
|
|
7FF537ACA000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAD66000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAEF3000
|
unkown image
|
page readonly
|
|
|
|
7DF5ADE52000
|
unkown image
|
page readonly
|
|
|
|
12BECC77000
|
unkown
|
page read and write
|
|
|
|
7FF593AC9000
|
unkown image
|
page readonly
|
|
|
|
3F5927F000
|
stack
|
page read and write
|
|
|
|
2754F300000
|
unkown
|
page read and write
|
|
|
|
1955858D000
|
unkown
|
page read and write
|
|
|
|
7FF5DA3D6000
|
unkown image
|
page readonly
|
|
|
|
292FFE00000
|
unkown image
|
page readonly
|
|
|
|
18768250000
|
unkown image
|
page readonly
|
|
|
|
2754F213000
|
unkown
|
page read and write
|
|
|
|
7DF5774D0000
|
unkown image
|
page readonly
|
|
|
|
125C1813000
|
unkown
|
page read and write
|
|
|
|
7FF59FE94000
|
unkown image
|
page readonly
|
|
|
|
7FF593876000
|
unkown image
|
page readonly
|
|
|
|
7DF5A1770000
|
unkown image
|
page readonly
|
|
|
|
32477B000
|
stack
|
page read and write
|
|
|
|
19558500000
|
unkown
|
page read and write
|
|
|
|
195583C0000
|
unkown
|
page read and write
|
|
|
|
335C2F7000
|
stack
|
page read and write
|
|
|
|
7FF537ADA000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAF5D000
|
unkown image
|
page readonly
|
|
|
|
7DF5774D2000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAF5A000
|
unkown image
|
page readonly
|
|
|
|
29280DB0000
|
unkown
|
page readonly
|
|
|
|
7FF59FEC2000
|
unkown image
|
page readonly
|
|
|
|
7FF593971000
|
unkown image
|
page readonly
|
|
|
|
195585A1000
|
unkown
|
page read and write
|
|
|
|
292804F0000
|
unkown image
|
page readonly
|
|
|
|
7DF5678E2000
|
unkown image
|
page readonly
|
|
|
|
7DF5A1760000
|
unkown image
|
page readonly
|
|
|
|
292FFE40000
|
unkown
|
page read and write
|
|
|
|
21213FF0000
|
unkown image
|
page readonly
|
|
|
|
19558B02000
|
unkown
|
page read and write
|
|
|
|
19558595000
|
unkown
|
page read and write
|
|
|
|
18768210000
|
unkown image
|
page read and write
|
|
|
|
125C1847000
|
unkown
|
page read and write
|
|
|
|
7FF537AE1000
|
unkown image
|
page readonly
|
|
|
|
7FF593A67000
|
unkown image
|
page readonly
|
|
|
|
195585A1000
|
unkown
|
page read and write
|
|
|
|
BE404F9000
|
stack
|
page read and write
|
|
|
|
12BECC29000
|
unkown
|
page read and write
|
|
|
|
7DF5ADE50000
|
unkown image
|
page readonly
|
|
|
|
7FF5A00E7000
|
unkown image
|
page readonly
|
|
|
|
125C3402000
|
unkown
|
page read and write
|
|
|
|
52E5A7E000
|
stack
|
page read and write
|
|
|
|
12BED350000
|
unkown
|
page read and write
|
|
|
|
7FF59F8F5000
|
unkown image
|
page readonly
|
|
|
|
7DF443610000
|
unkown image
|
page readonly
|
|
|
|
2754F400000
|
unkown image
|
page readonly
|
|
|
|
7FF559BF7000
|
unkown image
|
page readonly
|
|
|
|
12BECC4B000
|
unkown
|
page read and write
|
|
|
|
2754F24E000
|
unkown
|
page read and write
|
|
|
|
201A27E000
|
stack
|
page read and write
|
|
|
|
7FF593659000
|
unkown image
|
page readonly
|
|
|
|
7FF5DADCB000
|
unkown image
|
page readonly
|
|
|
|
19558592000
|
unkown
|
page read and write
|
|
|
|
292FFE20000
|
unkown
|
page read and write
|
|
|
|
125C1857000
|
unkown
|
page read and write
|
|
|
|
7FF5A01C9000
|
unkown image
|
page readonly
|
|
|
|
7DF567900000
|
unkown image
|
page readonly
|
|
|
|
7FF593A27000
|
unkown image
|
page readonly
|
|
|
|
7FF5375C7000
|
unkown image
|
page readonly
|
|
|
|
125C1780000
|
unkown
|
page read and write
|
|
|
|
7FF59FD57000
|
unkown image
|
page readonly
|
|
|
|
7FF559A50000
|
unkown image
|
page readonly
|
|
|
|
7FF5938DB000
|
unkown image
|
page readonly
|
|
|
|
7FF5A016A000
|
unkown image
|
page readonly
|
|
|
|
1955856B000
|
unkown
|
page read and write
|
|
|
|
7DF5E8C42000
|
unkown image
|
page readonly
|
|
|
|
195585A1000
|
unkown
|
page read and write
|
|
|
|
7FF5A01D4000
|
unkown image
|
page readonly
|
|
|
|
7FF559A06000
|
unkown image
|
page readonly
|
|
|
|
19558587000
|
unkown
|
page read and write
|
|
|
|
7FF5A00F9000
|
unkown image
|
page readonly
|
|
|
|
7FF569440000
|
unkown image
|
page readonly
|
|
|
|
195585AA000
|
unkown
|
page read and write
|
|
|
|
2754F313000
|
unkown
|
page read and write
|
|
|
|
19558A02000
|
unkown
|
page read and write
|
|
|
|
18768458000
|
unkown
|
page read and write
|
|
|
|
18768466000
|
unkown
|
page read and write
|
|
|
|
7FF5DAE35000
|
unkown image
|
page readonly
|
|
|
|
ADD798E000
|
stack
|
page read and write
|
|
|
|
7FF559C71000
|
unkown image
|
page readonly
|
|
|
|
7FF5938FF000
|
unkown image
|
page readonly
|
|
|
|
125C1700000
|
unkown image
|
page readonly
|
|
|
|
19558A02000
|
unkown
|
page read and write
|
|
|
|
195585A5000
|
unkown
|
page read and write
|
|
|
|
7FF537A00000
|
unkown image
|
page readonly
|
|
|
|
19557C4B000
|
unkown
|
page read and write
|
|
|
|
7FF559BA3000
|
unkown image
|
page readonly
|
|
|
|
335C07E000
|
stack
|
page read and write
|
|
|
|
12BECD13000
|
unkown
|
page read and write
|
|
|
|
125C16C0000
|
unkown image
|
page read and write
|
|
|
|
19558A02000
|
unkown
|
page read and write
|
|
|
|
19557B50000
|
unkown image
|
page readonly
|
|
|
|
7FF5938BD000
|
unkown image
|
page readonly
|
|
|
|
7FF5697ED000
|
unkown image
|
page readonly
|
|
|
|
7FF5378B0000
|
unkown image
|
page readonly
|
|
|
|
7FF593841000
|
unkown image
|
page readonly
|
|
|
|
7DFA44EDD000
|
unkown image
|
page readonly
|
|
|
|
7FF593457000
|
unkown image
|
page readonly
|
|
|
|
125C1AD0000
|
unkown image
|
page readonly
|
|
|
|
125C186E000
|
unkown
|
page read and write
|
|
|
|
18768220000
|
heap private
|
page read and write
|
|
|
|
7FF5378EF000
|
unkown image
|
page readonly
|
|
|
|
12BECC00000
|
unkown
|
page read and write
|
|
|
|
7FF5DADEF000
|
unkown image
|
page readonly
|
|
|
|
7DF5678E0000
|
unkown image
|
page readonly
|
|
|
|
7FF5A0110000
|
unkown image
|
page readonly
|
|
|
|
7DF5678F2000
|
unkown image
|
page readonly
|
|
|
|
7FF59FD59000
|
unkown image
|
page readonly
|
|
|
|
7DF5E8C52000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAEEF000
|
unkown image
|
page readonly
|
|
|
|
7FF59F9B8000
|
unkown image
|
page readonly
|
|
|
|
12BECC50000
|
unkown
|
page read and write
|
|
|
|
7FF5939B2000
|
unkown image
|
page readonly
|
|
|
|
19558A02000
|
unkown
|
page read and write
|
|
|
|
7FF5A0117000
|
unkown image
|
page readonly
|
|
|
|
125C1E60000
|
unkown image
|
page readonly
|
|
|
|
7DF5ADE60000
|
unkown image
|
page readonly
|
|
|
|
292FFF07000
|
unkown
|
page read and write
|
|
|
|
7DF5E8C42000
|
unkown image
|
page readonly
|
|
|
|
7FF5A0167000
|
unkown image
|
page readonly
|
|
|
|
195585D7000
|
unkown
|
page read and write
|
|
|
|
195583C0000
|
unkown
|
page read and write
|
|
|
|
7FF537866000
|
unkown image
|
page readonly
|
|
|
|
7FF5937FB000
|
unkown image
|
page readonly
|
|
|
|
7FF59FDBC000
|
unkown image
|
page readonly
|
|
|
|
29280690000
|
unkown image
|
page readonly
|
|
|
|
19558B00000
|
unkown
|
page read and write
|
|
|
|
19557CEA000
|
unkown
|
page read and write
|
|
|
|
7FF5DA3D0000
|
unkown image
|
page readonly
|
|
|
|
19558350000
|
unkown image
|
page write copy
|
|
|
|
19558A02000
|
unkown
|
page read and write
|
|
|
|
29280DD0000
|
unkown
|
page read and write
|
|
|
|
7FF5DAF07000
|
unkown image
|
page readonly
|
|
|
|
335C3FA000
|
stack
|
page read and write
|
|
|
|
12BECC55000
|
unkown
|
page read and write
|
|
|
|
18768260000
|
unkown image
|
page readonly
|
|
|
|
7FF5375C1000
|
unkown image
|
page readonly
|
|
|
|
7FF5AB74D000
|
unkown image
|
page readonly
|
|
|
|
7FF5938C0000
|
unkown image
|
page readonly
|
|
|
|
12BED260000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAAC7000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAE65000
|
unkown image
|
page readonly
|
|
|
|
7FF5AB6DF000
|
unkown image
|
page readonly
|
|
|
|
19558585000
|
unkown
|
page read and write
|
|
|
|
7FF5A011E000
|
unkown image
|
page readonly
|
|
|
|
7FF569854000
|
unkown image
|
page readonly
|
|
|
|
29280B60000
|
unkown
|
page read and write
|
|
|
|
292800D0000
|
unkown
|
page read and write
|
|
|
|
19558585000
|
unkown
|
page read and write
|
|
|
|
1955858C000
|
unkown
|
page read and write
|
|
|
|
125C17F0000
|
unkown
|
page read and write
|
|
|
|
7FF59399F000
|
unkown image
|
page readonly
|
|
|
|
18768230000
|
unkown image
|
page readonly
|
|
|
|
7FF559BA0000
|
unkown image
|
page readonly
|
|
|
|
7FF593A10000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAED7000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAFD1000
|
unkown image
|
page readonly
|
|
|
|
7FF5AB6F3000
|
unkown image
|
page readonly
|
|
|
|
125C16E0000
|
unkown image
|
page readonly
|
|
|
|
1955858B000
|
unkown
|
page read and write
|
|
|
|
2754F050000
|
unkown image
|
page readonly
|
|
|
|
7FF559B89000
|
unkown image
|
page readonly
|
|
|
|
195585A5000
|
unkown
|
page read and write
|
|
|
|
7FF537AB9000
|
unkown image
|
page readonly
|
|
|
|
7FF5A0142000
|
unkown image
|
page readonly
|
|
|
|
19557C50000
|
unkown
|
page read and write
|
|
|
|
7FF5DAFE1000
|
unkown image
|
page readonly
|
|
|
|
7FF5938A5000
|
unkown image
|
page readonly
|
|
|
|
7DF5E8C40000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAE61000
|
unkown image
|
page readonly
|
|
|
|
21213FD0000
|
unkown image
|
page readonly
|
|
|
|
21214176000
|
unkown
|
page read and write
|
|
|
|
18768360000
|
unkown image
|
page readonly
|
|
|
|
7FF5A00DF000
|
unkown image
|
page readonly
|
|
|
|
7FF5A006C000
|
unkown image
|
page readonly
|
|
|
|
7DF5B9432000
|
unkown image
|
page readonly
|
|
|
|
19558B63000
|
unkown
|
page read and write
|
|
|
|
7DF5A1762000
|
unkown image
|
page readonly
|
|
|
|
BE402FF000
|
stack
|
page read and write
|
|
|
|
7FF559C59000
|
unkown image
|
page readonly
|
|
|
|
12BECD02000
|
unkown
|
page read and write
|
|
|
|
2754F020000
|
unkown image
|
page readonly
|
|
|
|
7FF59FF8F000
|
unkown image
|
page readonly
|
|
|
|
7FF5AB7B4000
|
unkown image
|
page readonly
|
|
|
|
52E5D7E000
|
stack
|
page read and write
|
|
|
|
19558581000
|
unkown
|
page read and write
|
|
|
|
7DF5774F0000
|
unkown image
|
page readonly
|
|
|
|
29280AE0000
|
unkown
|
page read and write
|
|
|
|
7FF59345B000
|
unkown image
|
page readonly
|
|
|
|
19558570000
|
unkown
|
page read and write
|
|
|
|
7FF5379D7000
|
unkown image
|
page readonly
|
|
|
|
12BECBD0000
|
unkown image
|
page readonly
|
|
|
|
7FF569786000
|
unkown image
|
page readonly
|
|
|
|
7FF5A014E000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAF3E000
|
unkown image
|
page readonly
|
|
|
|
19557CA7000
|
unkown
|
page read and write
|
|
|
|
7DF545742000
|
unkown image
|
page readonly
|
|
|
|
7FF559C6A000
|
unkown image
|
page readonly
|
|
|
|
29280E20000
|
unkown
|
page read and write
|
|
|
|
7FF5DAE3B000
|
unkown image
|
page readonly
|
|
|
|
3F58FEF000
|
stack
|
page read and write
|
|
|
|
7FF593272000
|
unkown image
|
page readonly
|
|
|
|
7DF5E8C60000
|
unkown image
|
page readonly
|
|
|
|
1955858B000
|
unkown
|
page read and write
|
|
|
|
195583D0000
|
unkown image
|
page read and write
|
|
|
|
7FF56977D000
|
unkown image
|
page readonly
|
|
|
|
21213FB0000
|
unkown image
|
page read and write
|
|
|
|
7FF559A8F000
|
unkown image
|
page readonly
|
|
|
|
19557D08000
|
unkown
|
page read and write
|
|
|
|
7FF5A01F1000
|
unkown image
|
page readonly
|
|
|
|
7FF5A00FD000
|
unkown image
|
page readonly
|
|
|
|
7FF5939E7000
|
unkown image
|
page readonly
|
|
|
|
19558570000
|
unkown
|
page read and write
|
|
|
|
7FF593A43000
|
unkown image
|
page readonly
|
|
|
|
2754F780000
|
unkown image
|
page readonly
|
|
|
|
19557C4A000
|
unkown
|
page read and write
|
|
|
|
7FF559C81000
|
unkown image
|
page readonly
|
|
|
|
7FF5939FF000
|
unkown image
|
page readonly
|
|
|
|
12BECB80000
|
unkown image
|
page read and write
|
|
|
|
125C17F0000
|
unkown
|
page read and write
|
|
|
|
52E559E000
|
stack
|
page read and write
|
|
|
|
19557CC7000
|
unkown
|
page read and write
|
|
|
|
7FF593AF1000
|
unkown image
|
page readonly
|
|
|
|
7FF5937C2000
|
unkown image
|
page readonly
|
|
|
|
7FF593ADA000
|
unkown image
|
page readonly
|
|
|
|
201A57F000
|
stack
|
page read and write
|
|
|
|
7DF5B9432000
|
unkown image
|
page readonly
|
|
|
|
1955858B000
|
unkown
|
page read and write
|
|
|
|
12BECB90000
|
heap private
|
page read and write
|
|
|
|
7FF5690AE000
|
unkown image
|
page readonly
|
|
|
|
29280DC0000
|
unkown
|
page read and write
|
|
|
|
19558581000
|
unkown
|
page read and write
|
|
|
|
7FF593945000
|
unkown image
|
page readonly
|
|
|
|
7DF4753A0000
|
unkown image
|
page readonly
|
|
|
|
7DF5B9430000
|
unkown image
|
page readonly
|
|
|
|
7DF545740000
|
unkown image
|
page readonly
|
|
|
|
7FF593A6D000
|
unkown image
|
page readonly
|
|
|
|
195585A1000
|
unkown
|
page read and write
|
|
|
|
7FF559BA7000
|
unkown image
|
page readonly
|
|
|
|
12BECC49000
|
unkown
|
page read and write
|
|
|
|
2754F251000
|
unkown
|
page read and write
|
|
|
|
2754F27F000
|
unkown
|
page read and write
|
|
|
|
19557CC0000
|
unkown
|
page read and write
|
|
|
|
7FF56986A000
|
unkown image
|
page readonly
|
|
|
|
1876842A000
|
unkown
|
page read and write
|
|
|
|
292FFE95000
|
heap private
|
page read and write
|
|
|
|
19557C3C000
|
unkown
|
page read and write
|
|
|
|
7FF537A33000
|
unkown image
|
page readonly
|
|
|
|
2121417F000
|
unkown
|
page read and write
|
|
|
|
12BECBA0000
|
unkown image
|
page readonly
|
|
|
|
7FF59F9E9000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAD91000
|
unkown image
|
page readonly
|
|
|
|
3F59379000
|
stack
|
page read and write
|
|
|
|
7FF537965000
|
unkown image
|
page readonly
|
|
|
|
7FF569865000
|
unkown image
|
page readonly
|
|
|
|
7FF537A5A000
|
unkown image
|
page readonly
|
|
|
|
19557CA7000
|
unkown
|
page read and write
|
|
|
|
7DF5E8C40000
|
unkown image
|
page readonly
|
|
|
|
ADD7C7E000
|
stack
|
page read and write
|
|
|
|
1955859A000
|
unkown
|
page read and write
|
|
|
|
335C4FF000
|
stack
|
page read and write
|
|
|
|
7FF5697EA000
|
unkown image
|
page readonly
|
|
|
|
19558599000
|
unkown
|
page read and write
|
|
|
|
7FF559BFA000
|
unkown image
|
page readonly
|
|
|
|
12BECD08000
|
unkown
|
page read and write
|
|
|
|
7FF5DAF03000
|
unkown image
|
page readonly
|
|
|
|
7FF559ADB000
|
unkown image
|
page readonly
|
|
|
|
7DF545740000
|
unkown image
|
page readonly
|
|
|
|
212140E0000
|
unkown
|
page read and write
|
|
|
|
7FF5DAF57000
|
unkown image
|
page readonly
|
|
|
|
19558518000
|
unkown
|
page read and write
|
|
|
|
7FF5DAFB2000
|
unkown image
|
page readonly
|
|
|
|
7FF559905000
|
unkown image
|
page readonly
|
|
|
|
18768500000
|
unkown
|
page read and write
|
|
|
|
7DF5A1752000
|
unkown image
|
page readonly
|
|
|
|
19557BF0000
|
unkown image
|
page readonly
|
|
|
|
12BECBC0000
|
unkown image
|
page readonly
|
|
|
|
7FF559C64000
|
unkown image
|
page readonly
|
|
|
|
7DF5678E0000
|
unkown image
|
page readonly
|
|
|
|
2754F040000
|
unkown image
|
page readonly
|
|
|
|
19558585000
|
unkown
|
page read and write
|
|
|
|
2754F289000
|
unkown
|
page read and write
|
|
|
|
7DF5ADE62000
|
unkown image
|
page readonly
|
|
|
|
29280B50000
|
unkown
|
page read and write
|
|
|
|
2019AEB000
|
unkown
|
page read and write
|
|
|
|
19558B63000
|
unkown
|
page read and write
|
|
|
|
7FF593902000
|
unkown image
|
page readonly
|
|
|
|
19557C58000
|
unkown
|
page read and write
|
|
|
|
19558A02000
|
unkown
|
page read and write
|
|
|
|
7FF5AB74A000
|
unkown image
|
page readonly
|
|
|
|
3248F7000
|
stack
|
page read and write
|
|
|
|
195583C0000
|
unkown
|
page read and write
|
|
|
|
19557C13000
|
unkown
|
page read and write
|
|
|
|
19557B50000
|
unkown image
|
page readonly
|
|
|
|
292FFDD0000
|
unkown image
|
page readonly
|
|
|
|
18768C02000
|
unkown
|
page read and write
|
|
|
|
7FF5AB7D1000
|
unkown image
|
page readonly
|
|
|
|
BE3FFDB000
|
unkown
|
page read and write
|
|
|
|
21214460000
|
unkown image
|
page readonly
|
|
|
|
7DF5B9440000
|
unkown image
|
page readonly
|
|
|
|
19557B70000
|
unkown image
|
page readonly
|
|
|
|
7DF5E8C50000
|
unkown image
|
page readonly
|
|
|
|
2754F200000
|
unkown
|
page read and write
|
|
|
|
7FF537891000
|
unkown image
|
page readonly
|
|
|
|
125C1858000
|
unkown
|
page read and write
|
|
|
|
7FF5A01C2000
|
unkown image
|
page readonly
|
|
|
|
125C17F0000
|
unkown
|
page read and write
|
|
|
|
7DF4E6B10000
|
unkown image
|
page readonly
|
|
|
|
12BECC3C000
|
unkown
|
page read and write
|
|
|
|
19558587000
|
unkown
|
page read and write
|
|
|
|
7FF59332E000
|
unkown image
|
page readonly
|
|
|
|
12BED0E0000
|
unkown image
|
page readonly
|
|
|
|
21214177000
|
unkown
|
page read and write
|
|
|
|
1876843C000
|
unkown
|
page read and write
|
|
|
|
7DF545752000
|
unkown image
|
page readonly
|
|
|
|
BE40379000
|
stack
|
page read and write
|
|
|
|
7DF49F620000
|
unkown image
|
page readonly
|
|
|
|
125C1913000
|
unkown
|
page read and write
|
|
|
|
7DF5A1762000
|
unkown image
|
page readonly
|
|
|
|
7DF5A1770000
|
unkown image
|
page readonly
|
|
|
|
335BFFC000
|
stack
|
page read and write
|
|
|
|
7FF56985A000
|
unkown image
|
page readonly
|
|
|
|
19557C29000
|
unkown
|
page read and write
|
|
|
|
21214125000
|
heap private
|
page read and write
|
|
|
|
7FF569842000
|
unkown image
|
page readonly
|
|
|
|
125C1918000
|
unkown
|
page read and write
|
|
|
|
125C182A000
|
unkown
|
page read and write
|
|
|
|
7FF5A01F1000
|
unkown image
|
page readonly
|
|
|
|
195585C2000
|
unkown
|
page read and write
|
|
|
|
7FF5A016D000
|
unkown image
|
page readonly
|
|
|
|
7FF559AEC000
|
unkown image
|
page readonly
|
|
|
|
7FF5938A9000
|
unkown image
|
page readonly
|
|
|
|
19558591000
|
unkown
|
page read and write
|
|
|
|
7FF5AB7A2000
|
unkown image
|
page readonly
|
|
|
|
BE403FF000
|
stack
|
page read and write
|
|
|
|
7FF5A0113000
|
unkown image
|
page readonly
|
|
|
|
7FF569861000
|
unkown image
|
page readonly
|
|
|
|
7FF5379EF000
|
unkown image
|
page readonly
|
|
|
|
19558A02000
|
unkown
|
page read and write
|
|
|
|
2754F600000
|
unkown image
|
page readonly
|
|
|
|
7FF5DADAD000
|
unkown image
|
page readonly
|
|
|
|
7FF5AB7A9000
|
unkown image
|
page readonly
|
|
|
|
19558587000
|
unkown
|
page read and write
|
|
|
|
7DF5A1750000
|
unkown image
|
page readonly
|
|
|
|
125C3310000
|
unkown image
|
page write copy
|
|
|
|
7DF5B9450000
|
unkown image
|
page readonly
|
|
|
|
19557D13000
|
unkown
|
page read and write
|
|
|
|
19558522000
|
unkown
|
page read and write
|
|
|
|
195585C5000
|
unkown
|
page read and write
|
|
|
|
125C1800000
|
unkown
|
page read and write
|
|
|
|
7FF593A13000
|
unkown image
|
page readonly
|
|
|
|
7FF5697C3000
|
unkown image
|
page readonly
|
|
|
|
21214166000
|
heap default
|
page read and write
|
|
|
|
19558A02000
|
unkown
|
page read and write
|
|
|
|
21213FD0000
|
unkown image
|
page readonly
|
|
|
|
12BECBA0000
|
unkown image
|
page readonly
|
|
|
|
19557C48000
|
unkown
|
page read and write
|
|
|
|
18768980000
|
unkown image
|
page readonly
|
|
|
|
7FF559A4D000
|
unkown image
|
page readonly
|
|
|
|
7FF593907000
|
unkown image
|
page readonly
|
|
|
|
7FF5A01EA000
|
unkown image
|
page readonly
|
|
|
|
19557C7C000
|
unkown
|
page read and write
|
|
|
|
7FF5DAF2B000
|
unkown image
|
page readonly
|
|
|
|
7FF59F987000
|
unkown image
|
page readonly
|
|
|
|
7DF5ADE60000
|
unkown image
|
page readonly
|
|
|
|
19557C4D000
|
unkown
|
page read and write
|
|
|
|
19557C54000
|
unkown
|
page read and write
|
|
|
|
335C77C000
|
stack
|
page read and write
|
|
|
|
7DF5678F0000
|
unkown image
|
page readonly
|
|
|
|
7FF59FD43000
|
unkown image
|
page readonly
|
|
|
|
7DF5B9442000
|
unkown image
|
page readonly
|
|
|
|
292FFF0D000
|
unkown
|
page read and write
|
|
|
|
18768508000
|
unkown
|
page read and write
|
|
|
|
19558402000
|
unkown
|
page read and write
|
|
|
|
125C1CD0000
|
unkown image
|
page readonly
|
|
|
|
19558550000
|
unkown
|
page read and write
|
|
|
|
7FF537AE1000
|
unkown image
|
page readonly
|
|
|
|
3F58F6A000
|
unkown
|
page read and write
|
|
|
|
2754F23C000
|
unkown
|
page read and write
|
|
|
|
335BEFE000
|
stack
|
page read and write
|
|
|
|
19557CED000
|
unkown
|
page read and write
|
|
|
|
ADD7FF7000
|
stack
|
page read and write
|
|
|
|
7FF5DAF0E000
|
unkown image
|
page readonly
|
|
|
|
7FF5936C7000
|
unkown image
|
page readonly
|
|
|
|
3F593FE000
|
stack
|
page read and write
|
|
|
|
7FF59394B000
|
unkown image
|
page readonly
|
|
|
|
7FF569849000
|
unkown image
|
page readonly
|
|
|
|
2121417F000
|
unkown
|
page read and write
|
|
|
|
7FF537AB2000
|
unkown image
|
page readonly
|
|
|
|
7FF593AC2000
|
unkown image
|
page readonly
|
|
|
|
7FF593AE1000
|
unkown image
|
page readonly
|
|
|
|
29280DA0000
|
unkown
|
page read and write
|
|
|
|
21214150000
|
heap default
|
page read and write
|
|
|
|
7FF5939CE000
|
unkown image
|
page readonly
|
|
|
|
7FF53794C000
|
unkown image
|
page readonly
|
|
|
|
7FF5690B2000
|
unkown image
|
page readonly
|
|
|
|
7FF559BDE000
|
unkown image
|
page readonly
|
|
|
|
7FF559402000
|
unkown image
|
page readonly
|
|
|
|
2019EFC000
|
stack
|
page read and write
|
|
|
|
12BECC70000
|
unkown
|
page read and write
|
|
|
|
125C1900000
|
unkown
|
page read and write
|
|
|
|
7DF5E8C60000
|
unkown image
|
page readonly
|
|
|
|
19557C7D000
|
unkown
|
page read and write
|
|
|
|
7FF537A5D000
|
unkown image
|
page readonly
|
|
|
|
32447B000
|
unkown
|
page read and write
|
|
|
|
7FF537AC4000
|
unkown image
|
page readonly
|
|
|
|
21214140000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAAC1000
|
unkown image
|
page readonly
|
|
|
|
7FF559BFD000
|
unkown image
|
page readonly
|
|
|
|
19557CFD000
|
unkown
|
page read and write
|
|
|
|
ADD7EFE000
|
stack
|
page read and write
|
|
|
|
7FF559BAE000
|
unkown image
|
page readonly
|
|
|
|
1955855C000
|
unkown
|
page read and write
|
|
|
|
7DF4ABD20000
|
unkown image
|
page readonly
|
|
|
|
7DF5A1750000
|
unkown image
|
page readonly
|
|
|
|
7FF5AB7C1000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAFC4000
|
unkown image
|
page readonly
|
|
|
|
19558599000
|
unkown
|
page read and write
|
|
|
|
3249FF000
|
stack
|
page read and write
|
|
|
|
7FF5AB63C000
|
unkown image
|
page readonly
|
|
|
|
19558593000
|
unkown
|
page read and write
|
|
|
|
7DF5774E2000
|
unkown image
|
page readonly
|
|
|
|
12BECD00000
|
unkown
|
page read and write
|
|
|
|
292FFDD0000
|
unkown image
|
page readonly
|
|
|
|
3F5947D000
|
stack
|
page read and write
|
|
|
|
7FF559A31000
|
unkown image
|
page readonly
|
|
|
|
7FF5AB7D1000
|
unkown image
|
page readonly
|
|
|
|
7DF5B9440000
|
unkown image
|
page readonly
|
|
|
|
335C5F7000
|
stack
|
page read and write
|
|
|
|
7FF5AB6DD000
|
unkown image
|
page readonly
|
|
|
|
18768230000
|
unkown image
|
page readonly
|
|
|
|
19558570000
|
unkown
|
page read and write
|
|
|
|
21214450000
|
unkown image
|
page readonly
|
|
|
|
335BE7C000
|
unkown
|
page read and write
|
|
|
|
125C1881000
|
unkown
|
page read and write
|
|
|
|
292800E0000
|
unkown
|
page read and write
|
|
|
|
7FF537765000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAF00000
|
unkown image
|
page readonly
|
|
|
|
19558599000
|
unkown
|
page read and write
|
|
|
|
2754F010000
|
heap private
|
page read and write
|
|
|
|
7FF59F8B0000
|
unkown image
|
page readonly
|
|
|
|
7FF5939DE000
|
unkown image
|
page readonly
|
|
|
|
19557C51000
|
unkown
|
page read and write
|
|
|
|
7DF5A1760000
|
unkown image
|
page readonly
|
|
|
|
19557C57000
|
unkown
|
page read and write
|
|
|
|
7FF5A01DA000
|
unkown image
|
page readonly
|
|
|
|
ADD7D7B000
|
stack
|
page read and write
|
|
|
|
1876845B000
|
unkown
|
page read and write
|
|
|
|
7FF593855000
|
unkown image
|
page readonly
|
|
|
|
2754F270000
|
unkown
|
page read and write
|
|
|
|
7FF593834000
|
unkown image
|
page readonly
|
|
|
|
195585C5000
|
unkown
|
page read and write
|
|
|
|
7FF559B93000
|
unkown image
|
page readonly
|
|
|
|
7FF5697BB000
|
unkown image
|
page readonly
|
|
|
|
1955851A000
|
unkown
|
page read and write
|
|
|
|
19557BB0000
|
unkown image
|
page readonly
|
|
|
|
19557C47000
|
unkown
|
page read and write
|
|
|
|
19558A00000
|
unkown
|
page read and write
|
|
|
|
7DF4657B0000
|
unkown image
|
page readonly
|
|
|
|
3244FE000
|
stack
|
page read and write
|
|
|
|
2754F170000
|
unkown
|
page read and write
|
|
|
|
2754F308000
|
unkown
|
page read and write
|
|
|
|
125C1760000
|
unkown
|
page read and write
|
|
|
|
29280680000
|
unkown image
|
page readonly
|
|
|
|
292FFEC0000
|
heap default
|
page read and write
|
|
|
|
7FF59346C000
|
unkown image
|
page readonly
|
|
|
|
BE4027F000
|
stack
|
page read and write
|
|
|
|
7FF59F8F0000
|
unkown image
|
page readonly
|
|
|
|
7FF537A57000
|
unkown image
|
page readonly
|
|
|
|
7DF545750000
|
unkown image
|
page readonly
|
|
|
|
7FF559B8F000
|
unkown image
|
page readonly
|
|
|
|
195585A1000
|
unkown
|
page read and write
|
|
|
|
7FF5379E9000
|
unkown image
|
page readonly
|
|
|
|
195585B6000
|
unkown
|
page read and write
|
|
|
|
7FF5AB059000
|
unkown image
|
page readonly
|
|
|
|
7FF59FB4D000
|
unkown image
|
page readonly
|
|
|
|
12BECC81000
|
unkown
|
page read and write
|
|
|
|
7FF59FEB7000
|
unkown image
|
page readonly
|
|
|
|
195585AA000
|
unkown
|
page read and write
|
|
|
|
7DF5774D2000
|
unkown image
|
page readonly
|
|
|
|
7DF545760000
|
unkown image
|
page readonly
|
|
|
|
7FF559C81000
|
unkown image
|
page readonly
|
|
|
|
7FF559BCB000
|
unkown image
|
page readonly
|
|
|
|
7FF593A03000
|
unkown image
|
page readonly
|
|
|
|
18768487000
|
unkown
|
page read and write
|
|
|
|
7FF5939CA000
|
unkown image
|
page readonly
|
|
|
|
21214100000
|
unkown
|
page read and write
|
|
|
|
7FF593AEA000
|
unkown image
|
page readonly
|
|
|
|
2754FA02000
|
unkown
|
page read and write
|
|
|
|
19558A6A000
|
unkown
|
page read and write
|
|
|
|
195585A5000
|
unkown
|
page read and write
|
|
|
|
7DF545742000
|
unkown image
|
page readonly
|
|
|
|
7FF5A00DB000
|
unkown image
|
page readonly
|
|
|
|
19557BD0000
|
unkown
|
page read and write
|
|
|
|
29280500000
|
unkown image
|
page readonly
|
|
|
|
7FF5937B7000
|
unkown image
|
page readonly
|
|
|
|
7FF59FFA3000
|
unkown image
|
page readonly
|
|
|
|
18768461000
|
unkown
|
page read and write
|
|
|
|
19557D02000
|
unkown
|
page read and write
|
|
|
|
292FFE99000
|
heap private
|
page read and write
|
|
|
|
292FFDB0000
|
unkown image
|
page read and write
|
|
|
|
19557C49000
|
unkown
|
page read and write
|
|
|
|
19557C00000
|
unkown
|
page read and write
|
|
|
|
12BED0D0000
|
unkown image
|
page readonly
|
|
|
|
201A47D000
|
stack
|
page read and write
|
|
|
|
7FF5935D7000
|
unkown image
|
page readonly
|
|
|
|
19558A02000
|
unkown
|
page read and write
|
|
|
|
2121417F000
|
unkown
|
page read and write
|
|
|
|
7DF4B7300000
|
unkown image
|
page readonly
|
|
|
|
19557B40000
|
heap private
|
page read and write
|
|
|
|
7FF559B8D000
|
unkown image
|
page readonly
|
|
|
|
1876845E000
|
unkown
|
page read and write
|
|
|
|
18768280000
|
heap default
|
page read and write
|
|
|
|
292802F0000
|
unkown image
|
page readonly
|
|
|
|
7FF5939F9000
|
unkown image
|
page readonly
|
|
|
|
7FF5378AD000
|
unkown image
|
page readonly
|
|
|
|
125C1848000
|
unkown
|
page read and write
|
|
|
|
7FF593775000
|
unkown image
|
page readonly
|
|
|
|
2754F229000
|
unkown
|
page read and write
|
|
|
|
7FF559AD5000
|
unkown image
|
page readonly
|
|
|
|
7FF5A013B000
|
unkown image
|
page readonly
|
|
|
|
7FF593A1E000
|
unkown image
|
page readonly
|
|
|
|
19558589000
|
unkown
|
page read and write
|
|
|
|
7FF537A17000
|
unkown image
|
page readonly
|
|
|
|
7FF5AB7CA000
|
unkown image
|
page readonly
|
|
|
|
7FF5A01E5000
|
unkown image
|
page readonly
|
|
|
|
ADD81FF000
|
stack
|
page read and write
|
|
|
|
12BECED0000
|
unkown image
|
page readonly
|
|
|
|
335C979000
|
stack
|
page read and write
|
|
|
|
7FF5AAF1E000
|
unkown image
|
page readonly
|
|
|
|
19557D16000
|
unkown
|
page read and write
|
|
|
|
7FF5A0002000
|
unkown image
|
page readonly
|
|
|
|
ADD7E7B000
|
stack
|
page read and write
|
|
|
|
7FF5AB6E3000
|
unkown image
|
page readonly
|
|
|
|
19558250000
|
unkown image
|
page readonly
|
|
|
|
7FF593AF0000
|
unkown image
|
page readonly
|
|
|
|
7FF569797000
|
unkown image
|
page readonly
|
|
|
|
7FF5AB5E7000
|
unkown image
|
page readonly
|
|
|
|
12BECC13000
|
unkown
|
page read and write
|
|
|
|
7FF593A17000
|
unkown image
|
page readonly
|
|
|
|
7FF5976E1000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAE4C000
|
unkown image
|
page readonly
|
|
|
|
52E5C7F000
|
stack
|
page read and write
|
|
|
|
201A37C000
|
stack
|
page read and write
|
|
|
|
125C1740000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAF33000
|
unkown image
|
page readonly
|
|
|
|
7FF559C52000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAEE9000
|
unkown image
|
page readonly
|
|
|
|
7DF5B9442000
|
unkown image
|
page readonly
|
|
|
|
7FF5936C4000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAEED000
|
unkown image
|
page readonly
|
|
|
|
12BECBF0000
|
heap default
|
page read and write
|
|
|
|
18768413000
|
unkown
|
page read and write
|
|
|
|
7FF5AB7C5000
|
unkown image
|
page readonly
|
|
|
|
7FF593AD4000
|
unkown image
|
page readonly
|
|
|
|
19558585000
|
unkown
|
page read and write
|
|
|
|
19557C70000
|
unkown
|
page read and write
|
|
|
|
7FF5976E1000
|
unkown image
|
page readonly
|
|
|
|
7FF537961000
|
unkown image
|
page readonly
|
|
|
|
7FF537262000
|
unkown image
|
page readonly
|
|
|
|
7FF559767000
|
unkown image
|
page readonly
|
|
|
|
32457E000
|
stack
|
page read and write
|
|
|
|
125C1862000
|
unkown
|
page read and write
|
|
|
|
7FF5AB5E2000
|
unkown image
|
page readonly
|
|
|
|
7FF537A07000
|
unkown image
|
page readonly
|
|
|
|
19557CEE000
|
unkown
|
page read and write
|
|
|
|
19557CE4000
|
unkown
|
page read and write
|
|
|
|
52E59FB000
|
stack
|
page read and write
|
|
|
|
19557BA0000
|
heap default
|
page read and write
|
|
|
|
7DF5774D0000
|
unkown image
|
page readonly
|
|
|
|
7FF59384F000
|
unkown image
|
page readonly
|
|
|
|
7FF5DADB0000
|
unkown image
|
page readonly
|
|
|
|
2754F302000
|
unkown
|
page read and write
|
|
|
|
125C16D0000
|
heap private
|
page read and write
|
|
|
|
7DF545752000
|
unkown image
|
page readonly
|
|
|
|
7DF545750000
|
unkown image
|
page readonly
|
|
|
|
7FF5939A1000
|
unkown image
|
page readonly
|
|
|
|
19558B02000
|
unkown
|
page read and write
|
|
|
|
19558A02000
|
unkown
|
page read and write
|
|
|
|
7FF537A0E000
|
unkown image
|
page readonly
|
|
|
|
7FF5938A1000
|
unkown image
|
page readonly
|
|
|
|
7FF5936C0000
|
unkown image
|
page readonly
|
|
|
|
19557C53000
|
unkown
|
page read and write
|
|
|
|
7FF5AB6F0000
|
unkown image
|
page readonly
|
|
|
|
18768800000
|
unkown image
|
page readonly
|
|
|
|
21214120000
|
heap private
|
page read and write
|
|
|
|
ADD790B000
|
unkown
|
page read and write
|
|
|
|
7DF5ADE70000
|
unkown image
|
page readonly
|
|
|
|
7FF559B77000
|
unkown image
|
page readonly
|
|
|
|
2754F24B000
|
unkown
|
page read and write
|
|
|
|
7FF569793000
|
unkown image
|
page readonly
|
|
|
|
7FF593836000
|
unkown image
|
page readonly
|
|
|
|
335C878000
|
stack
|
page read and write
|
|
|
|
7FF537935000
|
unkown image
|
page readonly
|
|
|
|
7DF5ADE70000
|
unkown image
|
page readonly
|
|
|
|
7FF559B05000
|
unkown image
|
page readonly
|
|
|
|
2754F070000
|
heap default
|
page read and write
|
|
|
|
7DF5ADE62000
|
unkown image
|
page readonly
|
|
|
|
7FF5A0103000
|
unkown image
|
page readonly
|
|
|
|
19558599000
|
unkown
|
page read and write
|
|
|
|
7FF559A6B000
|
unkown image
|
page readonly
|
|
|
|
7FF559C7A000
|
unkown image
|
page readonly
|
|
|
|
201A67C000
|
stack
|
page read and write
|
|
|
|
7FF537AD1000
|
unkown image
|
page readonly
|
|
|
|
7FF5939D3000
|
unkown image
|
page readonly
|
|
|
|
335C0FE000
|
stack
|
page read and write
|
|
|
|
195585A1000
|
unkown
|
page read and write
|
|
|
|
18768502000
|
unkown
|
page read and write
|
|
|
|
7FF5AB56A000
|
unkown image
|
page readonly
|
|
|
|
7DF5678F0000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAFDA000
|
unkown image
|
page readonly
|
|
|
|
195585A2000
|
unkown
|
page read and write
|
|
|
|
18768600000
|
unkown image
|
page readonly
|
|
|
|
7FF537A3E000
|
unkown image
|
page readonly
|
|
|
|
52E549C000
|
unkown
|
page read and write
|
|
|
|
292FFE90000
|
heap private
|
page read and write
|
|
|
|
19557CB1000
|
unkown
|
page read and write
|
|
|
|
7FF5935D1000
|
unkown image
|
page readonly
|
|
|
|
7DF545760000
|
unkown image
|
page readonly
|
|
|
|
7FF5A00FF000
|
unkown image
|
page readonly
|
|
|
|
7FF59FFAC000
|
unkown image
|
page readonly
|
|
|
|
201A07F000
|
stack
|
page read and write
|
|
|
|
7FF593975000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAFE1000
|
unkown image
|
page readonly
|
|
|
|
7FF5AB72E000
|
unkown image
|
page readonly
|
|
|
|
7FF5AAF14000
|
unkown image
|
page readonly
|
|
|
|
7DF5ADE52000
|
unkown image
|
page readonly
|
|
|
|
BE4047F000
|
stack
|
page read and write
|
|
|
|
7FF59F8AE000
|
unkown image
|
page readonly
|
|
|
|
7DF5678F2000
|
unkown image
|
page readonly
|
|
|
|
7FF569871000
|
unkown image
|
page readonly
|
|
There are 746 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
file:///C:/Users/user/Desktop/89764583937678458745989.html
|
|