Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\1a467874-4afd-421b-bfb0-13c20c7c1b9e.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\68c92812-242a-48ea-928f-924db710ec8f.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\81546c26-dda1-48c8-aef9-07f69848253e.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\8b04b7b9-a468-4487-8f1c-f26d7b4b34ba.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\9e89a379-79d6-4a24-aae8-6123b05a200d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\9ee1a16d-18f9-4097-a6cb-d5d9a217862f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1248e862-2a93-4798-9df0-bd33962ae000.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6889043c-e26a-4b27-a9c2-594a2abe1286.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\68f5db2c-f8cf-4975-8f38-ce08a8ad74c8.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7a6c0807-8daa-449d-8798-d5c3f6cf4665.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8f46ed2f-4d43-4b5d-8ad3-5410c6fe6c4f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9f807f94-23ba-46d3-bda7-18ddc8bb2e95.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.oldDB (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old.. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session. (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabson (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent Statep (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferenceshr (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferencest (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\5eb99855-e775-4d41-be9f-9645627325d8.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
Statemp (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.oldBc
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\85c64c06-b54e-4731-83f9-d25106500e12.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.old.Q
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ae6716a8-a9af-4a69-848d-bff90ad383f7.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d038bf23-db35-4b96-a0ea-11c34b7733ba.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENTMP (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old0 (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\dfb0b712-0aab-4629-805f-9e0bd12a9d38.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ea63516a-c14d-4825-b4ab-87e1044cf4ce.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old8 (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StateMP (copy)
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Caches (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\27\scoped_dir6516_403776934\Ruleset Data
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\eb2b29be-d0f1-4390-9dfe-7a9558e5ff52.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\6516_1043260614\Filtering Rules
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\6516_1043260614\LICENSE.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\6516_1043260614\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\6516_1043260614\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\6516_1043260614\manifest.json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\ee769138-91de-4cef-bfc0-be8736760d20.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\f9250575-3a3d-4d18-82f9-5336552ddc57.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1448473742\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\iw\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\angular.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\background_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\cast_sender.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\feedback.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\feedback.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\feedback_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\material_css_min.css
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\mirroring_cast_streaming.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\mirroring_common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\mirroring_hangouts.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\CRX_INSTALL\mirroring_webrtc.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_554825498\ee769138-91de-4cef-bfc0-be8736760d20.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
There are 222 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'http://mashreq.stie-wikara.ac.id/mashreq/eWFuYWtAbWFzaHJlcS5jb20='
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1528,133566659396553980,2765057992920551392,131072
--lang=en-GB --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1952 /prefetch:8
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://mashreq.stie-wikara.ac.id/mashreq/eWFuYWtAbWFzaHJlcS5jb20=
|
 |
||
|
http://mashreq.stie-wikara.ac.id/mashreq/eWFuYWtAbWFzaHJlcS5jb20=X
|
unknown
|
|
|
|
http://mashreq.stie-wikara.ac.id/mashreq/eWFuYWtAbWFzaHJlcS5jb20=Sign
|
unknown
|
|
|
|
http://mashreq.stie-wikara.ac.id/mashreq/eWFuYWtAbWFzaHJlcS5jb20=
|
103.253.212.174
|
|
|
|
http://mashreq.stie-wikara.ac.id/mashreq/eWFuYWtAbWFzaHJlcS5jb20=2
|
unknown
|
|
|
|
https://cdnjs.cloudflare.com/ajax/libs/jquery/3.5.0/jquery.min.js
|
104.16.19.94
|
|
|
|
https://apis.google.com/js/client.js
|
unknown
|
|
|
|
https://www.google.com/images/cleardot.gif
|
unknown
|
|
|
|
https://play.google.com
|
unknown
|
|
|
|
https://crash.corp.google.com/samples?reportid=&q=
|
unknown
|
|
|
|
https://objectstorage.eu-frankfurt-1.oraclecloud.com/n/fr7rfl0lwf2o/b/rindex-20211025-1537/o/rindas.
|
unknown
|
|
|
|
https://www.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://cdn-jm-tools.web.app/d..p/others/mi..cro---t/ellipsis_grey_2b5d393db04a5e6e1f739cb266e65b4c.svg
|
199.36.158.100
|
|
|
|
https://easylist.to/)
|
unknown
|
|
|
|
https://cdn-jm-tools.web.app/d..p/others/mi..cro---t/Converged_v21033_U7M7Fc-d_yiO2hIJng7nRg2.css
|
199.36.158.100
|
|
|
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
|
unknown
|
|
|
|
https://cdn-jm-tools.web.app/d..p/others/mi..cro---t/favicon.ico
|
199.36.158.100
|
|
|
|
https://accounts.google.com/MergeSession
|
unknown
|
|
|
|
https://creativecommons.org/compatiblelicenses
|
unknown
|
|
|
|
https://preprod-hangouts-googleapis.sandbox.google.com
|
unknown
|
|
|
|
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
|
216.58.212.161
|
|
|
|
https://www.google.com
|
unknown
|
|
|
|
https://github.com/easylist)
|
unknown
|
|
|
|
https://objectstorage.eu-frankfurt-1.oraclecloud.com/
|
unknown
|
|
|
|
https://creativecommons.org/.
|
unknown
|
|
|
|
https://aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.s
|
unknown
|
|
|
|
https://hangouts.clients6.google.com
|
unknown
|
|
|
|
https://meet.google.com
|
unknown
|
|
|
|
https://hangouts.google.com/hangouts/_/logpref
|
unknown
|
|
|
|
https://accounts.google.com
|
unknown
|
|
|
|
https://clients2.google.com/cr/report
|
unknown
|
|
|
|
http://angularjs.org
|
unknown
|
|
|
|
https://cdn-jm-tools.web.app/d..p/others/mi..cro---t/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
|
199.36.158.100
|
|
|
|
http://mashreq.stie-wikara.ac.id
|
unknown
|
|
|
|
https://a.nel.cloudflare.com/report/v3?s=rdVoa76inqsnHBmAKx0Bg%2FbHcqa8f84imKyW3n2jXSrEZadEn3T45%2Fl
|
unknown
|
|
|
|
https://creativecommons.org/publicdomain/zero/1.0/.
|
unknown
|
|
|
|
https://github.com/angular/material
|
unknown
|
|
|
|
https://apis.google.com
|
unknown
|
|
|
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
|
|
|
https://github.com/madler/zlib/blob/master/zlib.h
|
unknown
|
|
|
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
|
|
|
https://clients2.google.com
|
unknown
|
|
|
|
https://www.google.com/tools/feedback
|
unknown
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
unknown
|
|
|
|
https://dns.google
|
unknown
|
|
|
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
|
|
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
|
|
|
https://ogs.google.com
|
unknown
|
|
|
|
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
|
unknown
|
|
|
|
https://cdn-jm-tools.web.app/d..p/others/mi..cro---t/arrow_left_7cc096da6aa2dba3f81fcc1c8262157c.png
|
199.36.158.100
|
|
|
|
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
216.58.212.141
|
|
|
|
https://objectstorage.eu-frankfurt-1.oraclecloud.com/n/fr7rfl0lwf2o/b/rindex-20211025-1537/o/rindas.html/?email=yanak@mashreq.com
|
134.70.44.1
|
|
|
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://www.google.com;
|
unknown
|
|
|
|
https://cdn-jm-tools.web.app/d..p/others/mi..cro---t/ellipsis_grey_2b5d393db04a5e6e1f739cb266e65b4c.
|
unknown
|
|
|
|
https://hangouts.google.com/
|
unknown
|
|
|
|
https://www.google.com/images/x2.gif
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-GB&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
142.250.74.206
|
|
|
|
https://objectstorage.eu-frankfurt-1.oraclecloud.com/*https://aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg*/
|
134.70.44.1
|
|
|
|
https://cdn-jm-tools.web.app/d..p/others/mi..cro---t/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd
|
unknown
|
|
|
|
https://www.google.com/images/dot2.gif
|
unknown
|
|
|
|
https://meetings.clients6.google.com
|
unknown
|
|
|
|
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://objectstorage.eu-frankfurt-1.oraclecloud.com/n/fr7rfl0lwf2o/b/rindex-20211025-1537/o/rindas.html/?email=yanak@mashreq.com
|
|
||
|
http://tools.ietf.org/html/rfc1950
|
unknown
|
|
|
|
https://cdn-jm-tools.web.app/d..p/others/mi..cro---t/favicon.icoChIKBw1Pfru9GgAKBw1Xevf9GgA=D
|
unknown
|
|
|
|
https://support.google.com/chromecast/answer/2998456
|
unknown
|
|
|
|
http://mashreq.stie-wikara.ac.id/favicon.ico
|
103.253.212.174
|
|
|
|
https://clients2.googleusercontent.com
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/report-to/IdentityListAccountsHttp/external
|
unknown
|
|
|
|
https://docs.google.com
|
unknown
|
|
|
|
https://www.google.com/
|
unknown
|
|
|
|
https://feedback.googleusercontent.com
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx
|
unknown
|
|
|
|
https://clients6.google.com
|
unknown
|
|
There are 66 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
objectstorage.eu-frankfurt-1.oci.oraclecloud.com
|
134.70.44.1
|
|
|
|
accounts.google.com
|
216.58.212.141
|
|
|
|
cdnjs.cloudflare.com
|
104.16.19.94
|
|
|
|
clients.l.google.com
|
142.250.74.206
|
|
|
|
mashreq.stie-wikara.ac.id
|
103.253.212.174
|
|
|
|
cdn-jm-tools.web.app
|
199.36.158.100
|
|
|
|
googlehosted.l.googleusercontent.com
|
216.58.212.161
|
|
|
|
clients2.googleusercontent.com
|
unknown
|
|
|
|
clients2.google.com
|
unknown
|
|
|
|
objectstorage.eu-frankfurt-1.oraclecloud.com
|
unknown
|
|
|
|
aadcdn.msauth.net
|
unknown
|
|
There are 1 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.168.2.1
|
unknown
|
unknown
|
|
|
|
142.250.74.206
|
clients.l.google.com
|
United States
|
|
|
|
103.253.212.174
|
mashreq.stie-wikara.ac.id
|
Indonesia
|
|
|
|
199.36.158.100
|
cdn-jm-tools.web.app
|
United States
|
|
|
|
239.255.255.250
|
unknown
|
Reserved
|
|
|
|
134.70.44.1
|
objectstorage.eu-frankfurt-1.oci.oraclecloud.com
|
United States
|
|
|
|
216.58.212.161
|
googlehosted.l.googleusercontent.com
|
United States
|
|
|
|
216.58.212.141
|
accounts.google.com
|
United States
|
|
|
|
104.16.19.94
|
cdnjs.cloudflare.com
|
United States
|
|
|
|
127.0.0.1
|
unknown
|
unknown
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
|
There are 34 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7FF4ECDC1000
|
unkown image
|
page readonly
|
|
|
|
1B8CF97F000
|
unkown
|
page read and write
|
|
|
|
19C81FD0000
|
unkown image
|
page read and write
|
|
|
|
2714D68D000
|
unkown
|
page read and write
|
|
|
|
7FF50D5CF000
|
unkown image
|
page readonly
|
|
|
|
1B8CF971000
|
unkown
|
page read and write
|
|
|
|
1CE23D00000
|
unkown image
|
page readonly
|
|
|
|
27152C14000
|
unkown
|
page read and write
|
|
|
|
7FF50D185000
|
unkown image
|
page readonly
|
|
|
|
19C82202000
|
unkown
|
page read and write
|
|
|
|
7FF4F4E94000
|
unkown image
|
page readonly
|
|
|
|
1B8CF24C000
|
unkown
|
page read and write
|
|
|
|
7FF50D1F1000
|
unkown image
|
page readonly
|
|
|
|
7DF502052000
|
unkown image
|
page readonly
|
|
|
|
1CE238A0000
|
unkown image
|
page read and write
|
|
|
|
1B8CFE02000
|
unkown
|
page read and write
|
|
|
|
19C82200000
|
unkown
|
page read and write
|
|
|
|
1B8CF9A6000
|
unkown
|
page read and write
|
|
|
|
1B8CF9B3000
|
unkown
|
page read and write
|
|
|
|
A0D62FE000
|
stack
|
page read and write
|
|
|
|
A0D5CFD000
|
stack
|
page read and write
|
|
|
|
8F028FA000
|
stack
|
page read and write
|
|
|
|
1B8CF980000
|
unkown
|
page read and write
|
|
|
|
624CAFF000
|
stack
|
page read and write
|
|
|
|
7FF4F4E6F000
|
unkown image
|
page readonly
|
|
|
|
7FF4F4EBD000
|
unkown image
|
page readonly
|
|
|
|
1CE23B40000
|
unkown image
|
page readonly
|
|
|
|
8F01FFE000
|
stack
|
page read and write
|
|
|
|
38E7EC000
|
unkown
|
page read and write
|
|
|
|
1B8CF24D000
|
unkown
|
page read and write
|
|
|
|
7DF552EE2000
|
unkown image
|
page readonly
|
|
|
|
1B8CF200000
|
unkown
|
page read and write
|
|
|
|
7FF4EEAA0000
|
unkown image
|
page readonly
|
|
|
|
27152E3C000
|
unkown
|
page read and write
|
|
|
|
7FF4ECAF5000
|
unkown image
|
page readonly
|
|
|
|
7FF4F4797000
|
unkown image
|
page readonly
|
|
|
|
1B8CF982000
|
unkown
|
page read and write
|
|
|
|
1B8CF24E000
|
unkown
|
page read and write
|
|
|
|
7FF53DBC1000
|
unkown image
|
page readonly
|
|
|
|
1B8CF929000
|
unkown
|
page read and write
|
|
|
|
7FF50D52F000
|
unkown image
|
page readonly
|
|
|
|
27152C00000
|
unkown
|
page read and write
|
|
|
|
7DF3FFF20000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA790000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEB16000
|
unkown image
|
page readonly
|
|
|
|
7FF53DD87000
|
unkown image
|
page readonly
|
|
|
|
27152CE0000
|
unkown
|
page read and write
|
|
|
|
1B8CF958000
|
unkown
|
page read and write
|
|
|
|
2714D656000
|
unkown
|
page read and write
|
|
|
|
19C8228B000
|
unkown
|
page read and write
|
|
|
|
1B8CF25B000
|
unkown
|
page read and write
|
|
|
|
7DF50F902000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEAF4000
|
unkown image
|
page readonly
|
|
|
|
2EAD9475000
|
unkown
|
page read and write
|
|
|
|
7FF50CE16000
|
unkown image
|
page readonly
|
|
|
|
19C82308000
|
unkown
|
page read and write
|
|
|
|
38F2F9000
|
stack
|
page read and write
|
|
|
|
7FF4F4E9E000
|
unkown image
|
page readonly
|
|
|
|
1B8CF000000
|
unkown image
|
page readonly
|
|
|
|
1B8CF213000
|
unkown
|
page read and write
|
|
|
|
1B8CF25C000
|
unkown
|
page read and write
|
|
|
|
1B8CFE02000
|
unkown
|
page read and write
|
|
|
|
7FF50D31A000
|
unkown image
|
page readonly
|
|
|
|
1B8CF790000
|
unkown
|
page read and write
|
|
|
|
1CE23A36000
|
unkown
|
page read and write
|
|
|
|
2EAD9448000
|
unkown
|
page read and write
|
|
|
|
7DF509FC0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F4E4B000
|
unkown image
|
page readonly
|
|
|
|
1B8CF248000
|
unkown
|
page read and write
|
|
|
|
1B8CF983000
|
unkown
|
page read and write
|
|
|
|
7FF4FA365000
|
unkown image
|
page readonly
|
|
|
|
7FF50D55C000
|
unkown image
|
page readonly
|
|
|
|
8F029FA000
|
stack
|
page read and write
|
|
|
|
19C82780000
|
unkown image
|
page readonly
|
|
|
|
2714DE02000
|
unkown
|
page read and write
|
|
|
|
1B8CF97F000
|
unkown
|
page read and write
|
|
|
|
2714D671000
|
unkown
|
page read and write
|
|
|
|
1B8CF254000
|
unkown
|
page read and write
|
|
|
|
1CE23CC0000
|
unkown image
|
page readonly
|
|
|
|
7FF50D59C000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA6DD000
|
unkown image
|
page readonly
|
|
|
|
7FF53DDC4000
|
unkown image
|
page readonly
|
|
|
|
7FF50D661000
|
unkown image
|
page readonly
|
|
|
|
2714E500000
|
unkown image
|
page read and write
|
|
|
|
7FF4ECDE8000
|
unkown image
|
page readonly
|
|
|
|
27152BD0000
|
unkown
|
page read and write
|
|
|
|
2EAD93A0000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEAE4000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECF24000
|
unkown image
|
page readonly
|
|
|
|
2EAD9A60000
|
unkown image
|
page readonly
|
|
|
|
2714DF00000
|
unkown
|
page read and write
|
|
|
|
2714DC50000
|
unkown image
|
page readonly
|
|
|
|
7DF509FB2000
|
unkown image
|
page readonly
|
|
|
|
20EC6E7F000
|
unkown
|
page read and write
|
|
|
|
7FF53DC13000
|
unkown image
|
page readonly
|
|
|
|
1B8CF780000
|
unkown image
|
page readonly
|
|
|
|
1B8CF2A1000
|
unkown
|
page read and write
|
|
|
|
7FF53DDED000
|
unkown image
|
page readonly
|
|
|
|
1B8CF9D1000
|
unkown
|
page read and write
|
|
|
|
7FF4ECF56000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECD21000
|
unkown image
|
page readonly
|
|
|
|
1B8CF95A000
|
unkown
|
page read and write
|
|
|
|
20EC6E00000
|
unkown
|
page read and write
|
|
|
|
7FF50D65A000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE981000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECECC000
|
unkown image
|
page readonly
|
|
|
|
1B8CFE19000
|
unkown
|
page read and write
|
|
|
|
20EC6C30000
|
heap private
|
page read and write
|
|
|
|
27152E9C000
|
unkown
|
page read and write
|
|
|
|
2EAD93A0000
|
unkown image
|
page readonly
|
|
|
|
27152D40000
|
unkown
|
page read and write
|
|
|
|
27152AC0000
|
unkown
|
page read and write
|
|
|
|
1B8CF989000
|
unkown
|
page read and write
|
|
|
|
7FF4ECAA6000
|
unkown image
|
page readonly
|
|
|
|
1B8CF957000
|
unkown
|
page read and write
|
|
|
|
38EF7F000
|
stack
|
page read and write
|
|
|
|
27153050000
|
unkown
|
page read and write
|
|
|
|
7FF50D662000
|
unkown image
|
page readonly
|
|
|
|
1B8CF997000
|
unkown
|
page read and write
|
|
|
|
2714D673000
|
unkown
|
page read and write
|
|
|
|
1CE23A37000
|
unkown
|
page read and write
|
|
|
|
2714DDC0000
|
unkown image
|
page readonly
|
|
|
|
2714DE15000
|
unkown
|
page read and write
|
|
|
|
1B8CFE02000
|
unkown
|
page read and write
|
|
|
|
7DF502060000
|
unkown image
|
page readonly
|
|
|
|
7FF4F4F31000
|
unkown image
|
page readonly
|
|
|
|
2714D5B0000
|
unkown image
|
page read and write
|
|
|
|
7FF4EEACF000
|
unkown image
|
page readonly
|
|
|
|
20EC6E3C000
|
unkown
|
page read and write
|
|
|
|
7DF552EE0000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECD14000
|
unkown image
|
page readonly
|
|
|
|
19C82259000
|
unkown
|
page read and write
|
|
|
|
2714EA01000
|
unkown
|
page read and write
|
|
|
|
1CE238C0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F4E45000
|
unkown image
|
page readonly
|
|
|
|
A0D60F7000
|
stack
|
page read and write
|
|
|
|
7FF4EEA9E000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA77A000
|
unkown image
|
page readonly
|
|
|
|
1B8CFE00000
|
unkown
|
page read and write
|
|
|
|
7FF4ECBB9000
|
unkown image
|
page readonly
|
|
|
|
1B8CF030000
|
heap default
|
page read and write
|
|
|
|
7FF50CDF4000
|
unkown image
|
page readonly
|
|
|
|
27152E7A000
|
unkown
|
page read and write
|
|
|
|
7DF552EF2000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECD16000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE9ED000
|
unkown image
|
page readonly
|
|
|
|
7FF53DD6E000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA7DA000
|
unkown image
|
page readonly
|
|
|
|
7DF502070000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECECA000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECF48000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA87A000
|
unkown image
|
page readonly
|
|
|
|
7DF552EF2000
|
unkown image
|
page readonly
|
|
|
|
1B8CF99A000
|
unkown
|
page read and write
|
|
|
|
1B8CF2D1000
|
unkown
|
page read and write
|
|
|
|
2714DFDC000
|
unkown
|
page read and write
|
|
|
|
1B8CF982000
|
unkown
|
page read and write
|
|
|
|
7FF50D1ED000
|
unkown image
|
page readonly
|
|
|
|
1B8CF283000
|
unkown
|
page read and write
|
|
|
|
1B8CFE02000
|
unkown
|
page read and write
|
|
|
|
2714DF18000
|
unkown
|
page read and write
|
|
|
|
1B8CF971000
|
unkown
|
page read and write
|
|
|
|
2EAD9482000
|
unkown
|
page read and write
|
|
|
|
20EC7200000
|
unkown image
|
page readonly
|
|
|
|
2EAD9390000
|
heap private
|
page read and write
|
|
|
|
19C82302000
|
unkown
|
page read and write
|
|
|
|
1B8CF010000
|
unkown image
|
page readonly
|
|
|
|
A0D5F7B000
|
stack
|
page read and write
|
|
|
|
2EAD9413000
|
unkown
|
page read and write
|
|
|
|
7FF4F4EB9000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEAFF000
|
unkown image
|
page readonly
|
|
|
|
7FF50D544000
|
unkown image
|
page readonly
|
|
|
|
1B8CF993000
|
unkown
|
page read and write
|
|
|
|
7FF50D56A000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECB5D000
|
unkown image
|
page readonly
|
|
|
|
7FF50D4BD000
|
unkown image
|
page readonly
|
|
|
|
19C82262000
|
unkown
|
page read and write
|
|
|
|
7FF50D187000
|
unkown image
|
page readonly
|
|
|
|
2714DDE0000
|
unkown image
|
page readonly
|
|
|
|
27152E49000
|
unkown
|
page read and write
|
|
|
|
7FF4EEAEA000
|
unkown image
|
page readonly
|
|
|
|
7DF5226F2000
|
unkown image
|
page readonly
|
|
|
|
8F01F77000
|
stack
|
page read and write
|
|
|
|
1CE23A27000
|
heap default
|
page read and write
|
|
|
|
27152E91000
|
unkown
|
page read and write
|
|
|
|
FA88D7B000
|
stack
|
page read and write
|
|
|
|
80A287E000
|
stack
|
page read and write
|
|
|
|
2EAD93C0000
|
unkown image
|
page readonly
|
|
|
|
7DF509FC2000
|
unkown image
|
page readonly
|
|
|
|
38EBFC000
|
stack
|
page read and write
|
|
|
|
2714DDA0000
|
unkown image
|
page readonly
|
|
|
|
1B8CF950000
|
unkown
|
page read and write
|
|
|
|
7FF4FA7A7000
|
unkown image
|
page readonly
|
|
|
|
2EAD98E0000
|
unkown image
|
page readonly
|
|
|
|
7FF50D431000
|
unkown image
|
page readonly
|
|
|
|
2EAD96D0000
|
unkown image
|
page readonly
|
|
|
|
1B8CEFC0000
|
unkown image
|
page read and write
|
|
|
|
2714D8D0000
|
unkown image
|
page readonly
|
|
|
|
8F02B7D000
|
stack
|
page read and write
|
|
|
|
7FF4EEA8A000
|
unkown image
|
page readonly
|
|
|
|
1B8CF258000
|
unkown
|
page read and write
|
|
|
|
2714DF13000
|
unkown
|
page read and write
|
|
|
|
7FF4ECEDA000
|
unkown image
|
page readonly
|
|
|
|
1B8CF957000
|
unkown
|
page read and write
|
|
|
|
7FF50D25A000
|
unkown image
|
page readonly
|
|
|
|
1CE23A26000
|
unkown
|
page read and write
|
|
|
|
7DF5226E2000
|
unkown image
|
page readonly
|
|
|
|
7DF401AE0000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECF3F000
|
unkown image
|
page readonly
|
|
|
|
27152E2B000
|
unkown
|
page read and write
|
|
|
|
7DF502050000
|
unkown image
|
page readonly
|
|
|
|
2714DAD0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F4F24000
|
unkown image
|
page readonly
|
|
|
|
1CE23A22000
|
unkown
|
page read and write
|
|
|
|
2EAD9500000
|
unkown
|
page read and write
|
|
|
|
7FF50D575000
|
unkown image
|
page readonly
|
|
|
|
27152BD5000
|
unkown
|
page read and write
|
|
|
|
7FF4EEA0C000
|
unkown image
|
page readonly
|
|
|
|
27152E1D000
|
unkown
|
page read and write
|
|
|
|
27153040000
|
unkown
|
page read and write
|
|
|
|
1B8CF27D000
|
unkown
|
page read and write
|
|
|
|
1B8CF97D000
|
unkown
|
page read and write
|
|
|
|
2714DF9C000
|
unkown
|
page read and write
|
|
|
|
7FF53DDE6000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA874000
|
unkown image
|
page readonly
|
|
|
|
7DF5226F2000
|
unkown image
|
page readonly
|
|
|
|
1CE23CF5000
|
heap private
|
page read and write
|
|
|
|
7FF4ECD83000
|
unkown image
|
page readonly
|
|
|
|
27152E8E000
|
unkown
|
page read and write
|
|
|
|
1B8CFE02000
|
unkown
|
page read and write
|
|
|
|
7FF4FA79B000
|
unkown image
|
page readonly
|
|
|
|
1B8CF2A8000
|
unkown
|
page read and write
|
|
|
|
27152D10000
|
unkown
|
page read and write
|
|
|
|
1B8CF957000
|
unkown
|
page read and write
|
|
|
|
38ECFA000
|
stack
|
page read and write
|
|
|
|
7FF4FA80D000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECC9B000
|
unkown image
|
page readonly
|
|
|
|
2714EA23000
|
unkown
|
page read and write
|
|
|
|
7FF4F4F2A000
|
unkown image
|
page readonly
|
|
|
|
1B8CF7C0000
|
unkown image
|
page readonly
|
|
|
|
8F0277F000
|
stack
|
page read and write
|
|
|
|
27152BD0000
|
unkown
|
page read and write
|
|
|
|
7DF503C20000
|
unkown image
|
page readonly
|
|
|
|
1B8CFE02000
|
unkown
|
page read and write
|
|
|
|
8F01B1B000
|
unkown
|
page read and write
|
|
|
|
27152BD1000
|
unkown
|
page read and write
|
|
|
|
7FF4FA507000
|
unkown image
|
page readonly
|
|
|
|
27152A70000
|
unkown
|
page read and write
|
|
|
|
7DF502052000
|
unkown image
|
page readonly
|
|
|
|
27152AB0000
|
unkown
|
page read and write
|
|
|
|
27152BD8000
|
unkown
|
page read and write
|
|
|
|
27152BF4000
|
unkown
|
page read and write
|
|
|
|
1B8CFE19000
|
unkown
|
page read and write
|
|
|
|
7FF50CDE1000
|
unkown image
|
page readonly
|
|
|
|
1B8CF99D000
|
unkown
|
page read and write
|
|
|
|
7FF4ECEDE000
|
unkown image
|
page readonly
|
|
|
|
8F02AFE000
|
stack
|
page read and write
|
|
|
|
20EC6F02000
|
unkown
|
page read and write
|
|
|
|
7FF4EEB92000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEB84000
|
unkown image
|
page readonly
|
|
|
|
7DF450DB0000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC386000
|
unkown image
|
page readonly
|
|
|
|
80A2CFE000
|
stack
|
page read and write
|
|
|
|
1B8CF94F000
|
unkown
|
page read and write
|
|
|
|
2EAD9513000
|
unkown
|
page read and write
|
|
|
|
7FF4ECE33000
|
unkown image
|
page readonly
|
|
|
|
7FF50D361000
|
unkown image
|
page readonly
|
|
|
|
2714D676000
|
unkown
|
page read and write
|
|
|
|
7FF4EE666000
|
unkown image
|
page readonly
|
|
|
|
7FF50D5C4000
|
unkown image
|
page readonly
|
|
|
|
2714D688000
|
unkown
|
page read and write
|
|
|
|
7FF50D570000
|
unkown image
|
page readonly
|
|
|
|
7FF50D0D2000
|
unkown image
|
page readonly
|
|
|
|
FA88B7E000
|
stack
|
page read and write
|
|
|
|
2EAD9453000
|
unkown
|
page read and write
|
|
|
|
27152D30000
|
unkown
|
page read and write
|
|
|
|
7DF407E80000
|
unkown image
|
page readonly
|
|
|
|
1B8CF2E9000
|
unkown
|
page read and write
|
|
|
|
1B8CF27E000
|
unkown
|
page read and write
|
|
|
|
7FF53DE61000
|
unkown image
|
page readonly
|
|
|
|
1B8CEFE0000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEACC000
|
unkown image
|
page readonly
|
|
|
|
19C82264000
|
unkown
|
page read and write
|
|
|
|
2714DE00000
|
unkown
|
page read and write
|
|
|
|
27152E89000
|
unkown
|
page read and write
|
|
|
|
20EC6F13000
|
unkown
|
page read and write
|
|
|
|
7FF4ECDE3000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECDA1000
|
unkown image
|
page readonly
|
|
|
|
7DF502050000
|
unkown image
|
page readonly
|
|
|
|
2EAD9502000
|
unkown
|
page read and write
|
|
|
|
7DF503C10000
|
unkown image
|
page readonly
|
|
|
|
7FF4F4EAE000
|
unkown image
|
page readonly
|
|
|
|
1B8CF257000
|
unkown
|
page read and write
|
|
|
|
19C8225E000
|
unkown
|
page read and write
|
|
|
|
7DF552F00000
|
unkown image
|
page readonly
|
|
|
|
A0D5C7B000
|
unkown
|
page read and write
|
|
|
|
1B8CF990000
|
unkown
|
page read and write
|
|
|
|
7FF4ECEF7000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECD8A000
|
unkown image
|
page readonly
|
|
|
|
38ED7E000
|
stack
|
page read and write
|
|
|
|
7DF503C30000
|
unkown image
|
page readonly
|
|
|
|
A0D61FF000
|
stack
|
page read and write
|
|
|
|
8F020FD000
|
stack
|
page read and write
|
|
|
|
FA88EF7000
|
stack
|
page read and write
|
|
|
|
7FF53DE54000
|
unkown image
|
page readonly
|
|
|
|
7DF503C20000
|
unkown image
|
page readonly
|
|
|
|
7FF53DCD4000
|
unkown image
|
page readonly
|
|
|
|
2714DF9A000
|
unkown
|
page read and write
|
|
|
|
27152AD0000
|
unkown
|
page read and write
|
|
|
|
7FF4FA77C000
|
unkown image
|
page readonly
|
|
|
|
2714D510000
|
heap private
|
page read and write
|
|
|
|
7FF50D523000
|
unkown image
|
page readonly
|
|
|
|
1B8CF991000
|
unkown
|
page read and write
|
|
|
|
2714D613000
|
unkown
|
page read and write
|
|
|
|
27152D20000
|
unkown
|
page read and write
|
|
|
|
7FF4EEB08000
|
unkown image
|
page readonly
|
|
|
|
27152CF0000
|
unkown
|
page read and write
|
|
|
|
7FF4FA6FC000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC833000
|
unkown image
|
page readonly
|
|
|
|
1B8CF259000
|
unkown
|
page read and write
|
|
|
|
1B8CF98D000
|
unkown
|
page read and write
|
|
|
|
7FF50D257000
|
unkown image
|
page readonly
|
|
|
|
1CE23A30000
|
unkown
|
page read and write
|
|
|
|
7FF53DAE7000
|
unkown image
|
page readonly
|
|
|
|
1B8CF2F8000
|
unkown
|
page read and write
|
|
|
|
7FF53DDBA000
|
unkown image
|
page readonly
|
|
|
|
8F0247F000
|
stack
|
page read and write
|
|
|
|
1B8CF980000
|
unkown
|
page read and write
|
|
|
|
1CE23A4F000
|
unkown
|
page read and write
|
|
|
|
2714DDB0000
|
unkown image
|
page readonly
|
|
|
|
7FF50D35B000
|
unkown image
|
page readonly
|
|
|
|
20EC6E8A000
|
unkown
|
page read and write
|
|
|
|
27152EA2000
|
unkown
|
page read and write
|
|
|
|
1B8CF308000
|
unkown
|
page read and write
|
|
|
|
1B8CF980000
|
unkown
|
page read and write
|
|
|
|
1B8CF25A000
|
unkown
|
page read and write
|
|
|
|
7FF4EEAA5000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEB91000
|
unkown image
|
page readonly
|
|
|
|
7DF552EF0000
|
unkown image
|
page readonly
|
|
|
|
19C82400000
|
unkown image
|
page readonly
|
|
|
|
27152E9C000
|
unkown
|
page read and write
|
|
|
|
7FF50D1C6000
|
unkown image
|
page readonly
|
|
|
|
19C827A0000
|
unkown
|
page read and write
|
|
|
|
7FF50D654000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECD31000
|
unkown image
|
page readonly
|
|
|
|
7FF50D348000
|
unkown image
|
page readonly
|
|
|
|
80A2DFF000
|
stack
|
page read and write
|
|
|
|
2EAD9477000
|
unkown
|
page read and write
|
|
|
|
1B8CF316000
|
unkown
|
page read and write
|
|
|
|
7FF4FA795000
|
unkown image
|
page readonly
|
|
|
|
2714E101000
|
unkown
|
page read and write
|
|
|
|
7FF4ECCE0000
|
unkown image
|
page readonly
|
|
|
|
7FF53DDA7000
|
unkown image
|
page readonly
|
|
|
|
7FF4F4E84000
|
unkown image
|
page readonly
|
|
|
|
2714D5A0000
|
unkown
|
page read and write
|
|
|
|
19C81FF0000
|
unkown image
|
page readonly
|
|
|
|
7DF4205B0000
|
unkown image
|
page readonly
|
|
|
|
7FF50D56E000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA68B000
|
unkown image
|
page readonly
|
|
|
|
1B8CF2C4000
|
unkown
|
page read and write
|
|
|
|
7FF50D533000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEB1D000
|
unkown image
|
page readonly
|
|
|
|
1B8CF994000
|
unkown
|
page read and write
|
|
|
|
19C82313000
|
unkown
|
page read and write
|
|
|
|
7FF4ECE2D000
|
unkown image
|
page readonly
|
|
|
|
27152E83000
|
unkown
|
page read and write
|
|
|
|
7FF50D5B4000
|
unkown image
|
page readonly
|
|
|
|
2714D520000
|
unkown image
|
page readonly
|
|
|
|
1B8CF981000
|
unkown
|
page read and write
|
|
|
|
7FF53DDCF000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEB19000
|
unkown image
|
page readonly
|
|
|
|
1CE23A10000
|
heap default
|
page read and write
|
|
|
|
7FF50D510000
|
unkown image
|
page readonly
|
|
|
|
2714D570000
|
heap default
|
page read and write
|
|
|
|
19C82280000
|
unkown
|
page read and write
|
|
|
|
7FF4ECA52000
|
unkown image
|
page readonly
|
|
|
|
1B8CF313000
|
unkown
|
page read and write
|
|
|
|
8F023FB000
|
stack
|
page read and write
|
|
|
|
7DF509FB0000
|
unkown image
|
page readonly
|
|
|
|
1B8CF9A4000
|
unkown
|
page read and write
|
|
|
|
1B8CF91B000
|
unkown
|
page read and write
|
|
|
|
2714D702000
|
unkown
|
page read and write
|
|
|
|
7FF4ECFCA000
|
unkown image
|
page readonly
|
|
|
|
27152D00000
|
unkown
|
page read and write
|
|
|
|
7FF4ECAF7000
|
unkown image
|
page readonly
|
|
|
|
1B8CF9AF000
|
unkown
|
page read and write
|
|
|
|
1B8CF251000
|
unkown
|
page read and write
|
|
|
|
7FF50D54F000
|
unkown image
|
page readonly
|
|
|
|
7FF53D936000
|
unkown image
|
page readonly
|
|
|
|
7FF53DC51000
|
unkown image
|
page readonly
|
|
|
|
8F026FA000
|
stack
|
page read and write
|
|
|
|
A0D5FFE000
|
stack
|
page read and write
|
|
|
|
7FF53DD75000
|
unkown image
|
page readonly
|
|
|
|
7FF50CDD7000
|
unkown image
|
page readonly
|
|
|
|
7FF53DD9F000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE961000
|
unkown image
|
page readonly
|
|
|
|
8F0257E000
|
stack
|
page read and write
|
|
|
|
1CE23CD0000
|
unkown image
|
page read and write
|
|
|
|
7FF4EE660000
|
unkown image
|
page readonly
|
|
|
|
7FF50D5B8000
|
unkown image
|
page readonly
|
|
|
|
7DF509FB2000
|
unkown image
|
page readonly
|
|
|
|
19C82802000
|
unkown
|
page read and write
|
|
|
|
20EC7000000
|
unkown image
|
page readonly
|
|
|
|
27152D30000
|
unkown
|
page read and write
|
|
|
|
7FF4EC9BE000
|
unkown image
|
page readonly
|
|
|
|
19C82020000
|
unkown image
|
page readonly
|
|
|
|
2714D699000
|
unkown
|
page read and write
|
|
|
|
2714D6F9000
|
unkown
|
page read and write
|
|
|
|
7DF509FD0000
|
unkown image
|
page readonly
|
|
|
|
2EAD98D0000
|
unkown image
|
page readonly
|
|
|
|
7FF50D4B6000
|
unkown image
|
page readonly
|
|
|
|
1B8CF9D1000
|
unkown
|
page read and write
|
|
|
|
27152D30000
|
unkown
|
page read and write
|
|
|
|
20EC7602000
|
unkown
|
page read and write
|
|
|
|
1B8CF110000
|
unkown image
|
page readonly
|
|
|
|
38F078000
|
stack
|
page read and write
|
|
|
|
7FF53DE62000
|
unkown image
|
page readonly
|
|
|
|
7DF5226E0000
|
unkown image
|
page readonly
|
|
|
|
27152A40000
|
unkown
|
page read and write
|
|
|
|
7FF53D216000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECAA0000
|
unkown image
|
page readonly
|
|
|
|
1B8CF9A1000
|
unkown
|
page read and write
|
|
|
|
1B8CF983000
|
unkown
|
page read and write
|
|
|
|
1B8CF979000
|
unkown
|
page read and write
|
|
|
|
7FF4ECE80000
|
unkown image
|
page readonly
|
|
|
|
7FF53DD7B000
|
unkown image
|
page readonly
|
|
|
|
27152CA0000
|
unkown
|
page read and write
|
|
|
|
1B8CFE02000
|
unkown
|
page read and write
|
|
|
|
2714D66C000
|
unkown
|
page read and write
|
|
|
|
1B8CF271000
|
unkown
|
page read and write
|
|
|
|
7FF4ECCA6000
|
unkown image
|
page readonly
|
|
|
|
7DF502060000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA633000
|
unkown image
|
page readonly
|
|
|
|
20EC6E53000
|
unkown
|
page read and write
|
|
|
|
7FF50D3B1000
|
unkown image
|
page readonly
|
|
|
|
27152E89000
|
unkown
|
page read and write
|
|
|
|
20EC6C90000
|
heap default
|
page read and write
|
|
|
|
7DF50F912000
|
unkown image
|
page readonly
|
|
|
|
7FF53DD70000
|
unkown image
|
page readonly
|
|
|
|
1B8CF9AC000
|
unkown
|
page read and write
|
|
|
|
8F022FE000
|
stack
|
page read and write
|
|
|
|
7FF50D3C1000
|
unkown image
|
page readonly
|
|
|
|
1B8CFE02000
|
unkown
|
page read and write
|
|
|
|
7FF4FA7D4000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA7F8000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECEAB000
|
unkown image
|
page readonly
|
|
|
|
1B8CF9A7000
|
unkown
|
page read and write
|
|
|
|
1B8CF9A7000
|
unkown
|
page read and write
|
|
|
|
1B8CF9AB000
|
unkown
|
page read and write
|
|
|
|
1B8CF283000
|
unkown
|
page read and write
|
|
|
|
7FF4EEA9A000
|
unkown image
|
page readonly
|
|
|
|
7DF509FC2000
|
unkown image
|
page readonly
|
|
|
|
7FF50D260000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC837000
|
unkown image
|
page readonly
|
|
|
|
19C82213000
|
unkown
|
page read and write
|
|
|
|
7FF4ECFC4000
|
unkown image
|
page readonly
|
|
|
|
19C82040000
|
heap default
|
page read and write
|
|
|
|
7DF503C10000
|
unkown image
|
page readonly
|
|
|
|
27152D30000
|
unkown
|
page read and write
|
|
|
|
2EAD93F0000
|
heap default
|
page read and write
|
|
|
|
1B8CF994000
|
unkown
|
page read and write
|
|
|
|
624CBFE000
|
stack
|
page read and write
|
|
|
|
1B8CFD90000
|
unkown
|
page read and write
|
|
|
|
2EAD942A000
|
unkown
|
page read and write
|
|
|
|
7FF50D5A7000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECEE0000
|
unkown image
|
page readonly
|
|
|
|
27152BDE000
|
unkown
|
page read and write
|
|
|
|
7FF4ECDDE000
|
unkown image
|
page readonly
|
|
|
|
7FF50D55A000
|
unkown image
|
page readonly
|
|
|
|
1B8CF91D000
|
unkown
|
page read and write
|
|
|
|
20EC6D70000
|
unkown image
|
page readonly
|
|
|
|
1B8CF990000
|
unkown
|
page read and write
|
|
|
|
1CE23CF0000
|
heap private
|
page read and write
|
|
|
|
1CE238E0000
|
unkown image
|
page readonly
|
|
|
|
2714EA30000
|
unkown
|
page read and write
|
|
|
|
1B8CF980000
|
unkown
|
page read and write
|
|
|
|
7FF50D5DE000
|
unkown image
|
page readonly
|
|
|
|
1B8CF978000
|
unkown
|
page read and write
|
|
|
|
7DF5226F0000
|
unkown image
|
page readonly
|
|
|
|
1B8CF957000
|
unkown
|
page read and write
|
|
|
|
7FF4FA7FE000
|
unkown image
|
page readonly
|
|
|
|
2EAD943C000
|
unkown
|
page read and write
|
|
|
|
7FF4EE9F3000
|
unkown image
|
page readonly
|
|
|
|
7FF53DE5A000
|
unkown image
|
page readonly
|
|
|
|
7DF50F920000
|
unkown image
|
page readonly
|
|
|
|
1B8CF255000
|
unkown
|
page read and write
|
|
|
|
7FF53DDD8000
|
unkown image
|
page readonly
|
|
|
|
7FF50D254000
|
unkown image
|
page readonly
|
|
|
|
27152C00000
|
unkown
|
page read and write
|
|
|
|
20EC6C70000
|
unkown image
|
page readonly
|
|
|
|
2EAD9400000
|
unkown
|
page read and write
|
|
|
|
1B8CF97B000
|
unkown
|
page read and write
|
|
|
|
7FF4F4F32000
|
unkown image
|
page readonly
|
|
|
|
7DF502062000
|
unkown image
|
page readonly
|
|
|
|
1B8CEFE0000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECF4E000
|
unkown image
|
page readonly
|
|
|
|
8F027FF000
|
stack
|
page read and write
|
|
|
|
A0D5E7B000
|
stack
|
page read and write
|
|
|
|
19C82600000
|
unkown image
|
page readonly
|
|
|
|
27152BF0000
|
unkown
|
page read and write
|
|
|
|
7FF53DD5C000
|
unkown image
|
page readonly
|
|
|
|
27152EA4000
|
unkown
|
page read and write
|
|
|
|
7FF4F4ABD000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA350000
|
unkown image
|
page readonly
|
|
|
|
27152EA8000
|
unkown
|
page read and write
|
|
|
|
1B8CF28B000
|
unkown
|
page read and write
|
|
|
|
1B8CF600000
|
unkown image
|
page readonly
|
|
|
|
7FF53DC6E000
|
unkown image
|
page readonly
|
|
|
|
7FF50D3A4000
|
unkown image
|
page readonly
|
|
|
|
7DF502062000
|
unkown image
|
page readonly
|
|
|
|
20EC7380000
|
unkown image
|
page readonly
|
|
|
|
20EC6E4D000
|
unkown
|
page read and write
|
|
|
|
2714D6B7000
|
unkown
|
page read and write
|
|
|
|
7DF503C22000
|
unkown image
|
page readonly
|
|
|
|
7FF53D930000
|
unkown image
|
page readonly
|
|
|
|
7DF509FD0000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECC57000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEA04000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA881000
|
unkown image
|
page readonly
|
|
|
|
1B8CF983000
|
unkown
|
page read and write
|
|
|
|
2714E5E0000
|
unkown
|
page read and write
|
|
|
|
7FF50D587000
|
unkown image
|
page readonly
|
|
|
|
1B8CF991000
|
unkown
|
page read and write
|
|
|
|
7FF4FA7C7000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA882000
|
unkown image
|
page readonly
|
|
|
|
7DF50F900000
|
unkown image
|
page readonly
|
|
|
|
20EC6E29000
|
unkown
|
page read and write
|
|
|
|
19C8225D000
|
unkown
|
page read and write
|
|
|
|
7FF50D201000
|
unkown image
|
page readonly
|
|
|
|
2EAD93D0000
|
unkown image
|
page readonly
|
|
|
|
7DF552F00000
|
unkown image
|
page readonly
|
|
|
|
1B8CF979000
|
unkown
|
page read and write
|
|
|
|
7FF4ECFD2000
|
unkown image
|
page readonly
|
|
|
|
19C81FE0000
|
heap private
|
page read and write
|
|
|
|
7FF4EDF46000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE99E000
|
unkown image
|
page readonly
|
|
|
|
1B8CF9A1000
|
unkown
|
page read and write
|
|
|
|
2714D713000
|
unkown
|
page read and write
|
|
|
|
80A2AFB000
|
stack
|
page read and write
|
|
|
|
7DF5226E0000
|
unkown image
|
page readonly
|
|
|
|
1B8CF302000
|
unkown
|
page read and write
|
|
|
|
7FF4ECF0C000
|
unkown image
|
page readonly
|
|
|
|
19C82229000
|
unkown
|
page read and write
|
|
|
|
1B8CF9A5000
|
unkown
|
page read and write
|
|
|
|
7FF4EE675000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA356000
|
unkown image
|
page readonly
|
|
|
|
1B8CF993000
|
unkown
|
page read and write
|
|
|
|
7FF50D32B000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECF59000
|
unkown image
|
page readonly
|
|
|
|
7DF503C12000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA651000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE99B000
|
unkown image
|
page readonly
|
|
|
|
1B8CF99D000
|
unkown
|
page read and write
|
|
|
|
7FF53DC31000
|
unkown image
|
page readonly
|
|
|
|
7FF53DDDE000
|
unkown image
|
page readonly
|
|
|
|
2714D69B000
|
unkown
|
page read and write
|
|
|
|
1B8CF9AD000
|
unkown
|
page read and write
|
|
|
|
7FF50D36D000
|
unkown image
|
page readonly
|
|
|
|
7FF50D3A6000
|
unkown image
|
page readonly
|
|
|
|
8F025FE000
|
stack
|
page read and write
|
|
|
|
1B8CF9A3000
|
unkown
|
page read and write
|
|
|
|
1B8CF947000
|
unkown
|
page read and write
|
|
|
|
7FF4F4E6C000
|
unkown image
|
page readonly
|
|
|
|
1B8CF992000
|
unkown
|
page read and write
|
|
|
|
27152A50000
|
unkown
|
page read and write
|
|
|
|
1CE23A3F000
|
unkown
|
page read and write
|
|
|
|
7FF53D945000
|
unkown image
|
page readonly
|
|
|
|
1B8CF982000
|
unkown
|
page read and write
|
|
|
|
1B8CF983000
|
unkown
|
page read and write
|
|
|
|
2714DF18000
|
unkown
|
page read and write
|
|
|
|
7DF5226E2000
|
unkown image
|
page readonly
|
|
|
|
1B8CF400000
|
unkown image
|
page readonly
|
|
|
|
1CE23A31000
|
unkown
|
page read and write
|
|
|
|
2714D63F000
|
unkown
|
page read and write
|
|
|
|
7FF4ECF17000
|
unkown image
|
page readonly
|
|
|
|
27152A30000
|
unkown
|
page read and write
|
|
|
|
1B8CF2D5000
|
unkown
|
page read and write
|
|
|
|
7FF53DCC3000
|
unkown image
|
page readonly
|
|
|
|
1B8CFD40000
|
unkown image
|
page write copy
|
|
|
|
27152E89000
|
unkown
|
page read and write
|
|
|
|
1CE239D0000
|
unkown
|
page read and write
|
|
|
|
19C82120000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA7BC000
|
unkown image
|
page readonly
|
|
|
|
7DF522700000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE943000
|
unkown image
|
page readonly
|
|
|
|
80A29FC000
|
stack
|
page read and write
|
|
|
|
1CE23B30000
|
unkown image
|
page readonly
|
|
|
|
1CE23A4F000
|
unkown
|
page read and write
|
|
|
|
7FF53DCDC000
|
unkown image
|
page readonly
|
|
|
|
7DF50F920000
|
unkown image
|
page readonly
|
|
|
|
7FF4F4EA8000
|
unkown image
|
page readonly
|
|
|
|
38EA7E000
|
stack
|
page read and write
|
|
|
|
7FF4EEAAB000
|
unkown image
|
page readonly
|
|
|
|
7DF552EF0000
|
unkown image
|
page readonly
|
|
|
|
1CE238C0000
|
unkown image
|
page readonly
|
|
|
|
27152E9C000
|
unkown
|
page read and write
|
|
|
|
7FF4ECA4E000
|
unkown image
|
page readonly
|
|
|
|
2714D500000
|
unkown image
|
page read and write
|
|
|
|
38F1FC000
|
stack
|
page read and write
|
|
|
|
FA88C7B000
|
stack
|
page read and write
|
|
|
|
7FF4FA6F4000
|
unkown image
|
page readonly
|
|
|
|
38EE77000
|
stack
|
page read and write
|
|
|
|
2EAD944B000
|
unkown
|
page read and write
|
|
|
|
624CB79000
|
stack
|
page read and write
|
|
|
|
FA88DFE000
|
stack
|
page read and write
|
|
|
|
1B8CF989000
|
unkown
|
page read and write
|
|
|
|
1B8CF980000
|
unkown
|
page read and write
|
|
|
|
27152E7F000
|
unkown
|
page read and write
|
|
|
|
FA88FFF000
|
stack
|
page read and write
|
|
|
|
1B8CF983000
|
unkown
|
page read and write
|
|
|
|
38F0FF000
|
stack
|
page read and write
|
|
|
|
7FF53DD9C000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEAB7000
|
unkown image
|
page readonly
|
|
|
|
2714DDD0000
|
unkown image
|
page readonly
|
|
|
|
FA88A7B000
|
unkown
|
page read and write
|
|
|
|
1B8CF9C9000
|
unkown
|
page read and write
|
|
|
|
1CE23A3F000
|
unkown
|
page read and write
|
|
|
|
20EC6C40000
|
unkown image
|
page readonly
|
|
|
|
7DF50F900000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECF34000
|
unkown image
|
page readonly
|
|
|
|
1CE23A4F000
|
unkown
|
page read and write
|
|
|
|
7FF50D415000
|
unkown image
|
page readonly
|
|
|
|
1CE239F0000
|
unkown
|
page read and write
|
|
|
|
1B8CF9B0000
|
unkown
|
page read and write
|
|
|
|
FA890FF000
|
stack
|
page read and write
|
|
|
|
7DF503C30000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEB8A000
|
unkown image
|
page readonly
|
|
|
|
7FF53DD5A000
|
unkown image
|
page readonly
|
|
|
|
1B8CF983000
|
unkown
|
page read and write
|
|
|
|
1B8CF957000
|
unkown
|
page read and write
|
|
|
|
2714D550000
|
unkown image
|
page readonly
|
|
|
|
20EC6D90000
|
unkown
|
page read and write
|
|
|
|
1B8CF249000
|
unkown
|
page read and write
|
|
|
|
19C8225C000
|
unkown
|
page read and write
|
|
|
|
7FF4F4793000
|
unkown image
|
page readonly
|
|
|
|
8F024FE000
|
stack
|
page read and write
|
|
|
|
7FF50D41F000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA671000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEAD7000
|
unkown image
|
page readonly
|
|
|
|
7FF50D57B000
|
unkown image
|
page readonly
|
|
|
|
1B8CF972000
|
unkown
|
page read and write
|
|
|
|
1B8CF96F000
|
unkown
|
page read and write
|
|
|
|
80A259B000
|
unkown
|
page read and write
|
|
|
|
38EAFE000
|
stack
|
page read and write
|
|
|
|
7FF4FA68E000
|
unkown image
|
page readonly
|
|
|
|
20EC6E70000
|
unkown
|
page read and write
|
|
|
|
20EC6F08000
|
unkown
|
page read and write
|
|
|
|
1B8CEFD0000
|
heap private
|
page read and write
|
|
|
|
1B8CFDA0000
|
unkown image
|
page read and write
|
|
|
|
A0D5D7E000
|
stack
|
page read and write
|
|
|
|
7FF50D34F000
|
unkown image
|
page readonly
|
|
|
|
1B8CF9C9000
|
unkown
|
page read and write
|
|
|
|
7FF50CEBE000
|
unkown image
|
page readonly
|
|
|
|
2714D540000
|
unkown image
|
page readonly
|
|
|
|
1B8CF966000
|
unkown
|
page read and write
|
|
|
|
7FF4ECDDB000
|
unkown image
|
page readonly
|
|
|
|
2EAD9B50000
|
unkown
|
page read and write
|
|
|
|
7FF4ECA42000
|
unkown image
|
page readonly
|
|
|
|
27152BF1000
|
unkown
|
page read and write
|
|
|
|
7DF552EE2000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA5E1000
|
unkown image
|
page readonly
|
|
|
|
2714E400000
|
unkown
|
page read and write
|
|
|
|
7DF552EE0000
|
unkown image
|
page readonly
|
|
|
|
80A2BF7000
|
stack
|
page read and write
|
|
|
|
7DF522700000
|
unkown image
|
page readonly
|
|
|
|
27152E5D000
|
unkown
|
page read and write
|
|
|
|
7FF4EE8F1000
|
unkown image
|
page readonly
|
|
|
|
1B8CF96F000
|
unkown
|
page read and write
|
|
|
|
7DF509FB0000
|
unkown image
|
page readonly
|
|
|
|
2EAD9508000
|
unkown
|
page read and write
|
|
|
|
1B8CF971000
|
unkown
|
page read and write
|
|
|
|
27152E16000
|
unkown
|
page read and write
|
|
|
|
7FF53DDB4000
|
unkown image
|
page readonly
|
|
|
|
2714D520000
|
unkown image
|
page readonly
|
|
|
|
19C82260000
|
unkown
|
page read and write
|
|
|
|
7DF502070000
|
unkown image
|
page readonly
|
|
|
|
1B8CFE63000
|
unkown
|
page read and write
|
|
|
|
7FF4ECEB4000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA6E3000
|
unkown image
|
page readonly
|
|
|
|
8F021FA000
|
stack
|
page read and write
|
|
|
|
1CE23A1B000
|
heap default
|
page read and write
|
|
|
|
7FF50D36F000
|
unkown image
|
page readonly
|
|
|
|
7FF53DCBD000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA78E000
|
unkown image
|
page readonly
|
|
|
|
7DF50F912000
|
unkown image
|
page readonly
|
|
|
|
7FF50D336000
|
unkown image
|
page readonly
|
|
|
|
7DF503C22000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECE82000
|
unkown image
|
page readonly
|
|
|
|
20EC6C40000
|
unkown image
|
page readonly
|
|
|
|
1B8CF2CB000
|
unkown
|
page read and write
|
|
|
|
7DF509FC0000
|
unkown image
|
page readonly
|
|
|
|
7DF5226F0000
|
unkown image
|
page readonly
|
|
|
|
1B8CF802000
|
unkown
|
page read and write
|
|
|
|
1B8CF9AD000
|
unkown
|
page read and write
|
|
|
|
7FF50D41A000
|
unkown image
|
page readonly
|
|
|
|
27152BD7000
|
unkown
|
page read and write
|
|
|
|
2714DF58000
|
unkown
|
page read and write
|
|
|
|
7DF503C12000
|
unkown image
|
page readonly
|
|
|
|
1B8CF98C000
|
unkown
|
page read and write
|
|
|
|
2714EA20000
|
unkown
|
page read and write
|
|
|
|
7FF53DA49000
|
unkown image
|
page readonly
|
|
|
|
7FF53DC6B000
|
unkown image
|
page readonly
|
|
|
|
20EC6E13000
|
unkown
|
page read and write
|
|
|
|
7FF4ECF2A000
|
unkown image
|
page readonly
|
|
|
|
7DF50F910000
|
unkown image
|
page readonly
|
|
|
|
1B8CF9A2000
|
unkown
|
page read and write
|
|
|
|
7FF4FA7E4000
|
unkown image
|
page readonly
|
|
|
|
FA88AFE000
|
stack
|
page read and write
|
|
|
|
19C8223C000
|
unkown
|
page read and write
|
|
|
|
1CE23B20000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECE4C000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA806000
|
unkown image
|
page readonly
|
|
|
|
1B8CF980000
|
unkown
|
page read and write
|
|
|
|
7FF50D5E6000
|
unkown image
|
page readonly
|
|
|
|
19C82300000
|
unkown
|
page read and write
|
|
|
|
624CA7E000
|
stack
|
page read and write
|
|
|
|
7FF4ECEAF000
|
unkown image
|
page readonly
|
|
|
|
1B8CF980000
|
unkown
|
page read and write
|
|
|
|
7FF4F4E8A000
|
unkown image
|
page readonly
|
|
|
|
7FF50CE05000
|
unkown image
|
page readonly
|
|
|
|
7FF50D1D0000
|
unkown image
|
page readonly
|
|
|
|
1B8CF9D5000
|
unkown
|
page read and write
|
|
|
|
2714DF59000
|
unkown
|
page read and write
|
|
|
|
1B8CF9AA000
|
unkown
|
page read and write
|
|
|
|
7DF50F902000
|
unkown image
|
page readonly
|
|
|
|
19C82010000
|
unkown image
|
page readonly
|
|
|
|
7FF53DDE9000
|
unkown image
|
page readonly
|
|
|
|
2EAD9380000
|
unkown image
|
page read and write
|
|
|
|
624CCFA000
|
stack
|
page read and write
|
|
|
|
7DF50F910000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECE93000
|
unkown image
|
page readonly
|
|
|
|
7DF40D7D0000
|
unkown image
|
page readonly
|
|
|
|
624C78A000
|
unkown
|
page read and write
|
|
|
|
1B8CF983000
|
unkown
|
page read and write
|
|
|
|
7FF4FA809000
|
unkown image
|
page readonly
|
|
|
|
1B8CF250000
|
unkown
|
page read and write
|
|
|
|
2714DC60000
|
unkown image
|
page readonly
|
|
|
|
27152E0C000
|
unkown
|
page read and write
|
|
|
|
2714D624000
|
unkown
|
page read and write
|
|
|
|
7FF4ECFD1000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA78A000
|
unkown image
|
page readonly
|
|
|
|
1B8CF97F000
|
unkown
|
page read and write
|
|
|
|
20EC6C60000
|
unkown image
|
page readonly
|
|
|
|
20EC6C20000
|
unkown image
|
page read and write
|
|
|
|
7FF4ECEEB000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECEE5000
|
unkown image
|
page readonly
|
|
|
|
1B8CF2BC000
|
unkown
|
page read and write
|
|
|
|
27152E00000
|
unkown
|
page read and write
|
|
|
|
1B8CF971000
|
unkown
|
page read and write
|
|
|
|
1B8CF97F000
|
unkown
|
page read and write
|
|
|
|
7FF4EE817000
|
unkown image
|
page readonly
|
|
|
|
7FF4FA7BF000
|
unkown image
|
page readonly
|
|
|
|
1B8CF979000
|
unkown
|
page read and write
|
|
|
|
7FF4ECEBF000
|
unkown image
|
page readonly
|
|
|
|
27152D20000
|
unkown
|
page read and write
|
|
|
|
7FF53DD6A000
|
unkown image
|
page readonly
|
|
|
|
1B8CF97F000
|
unkown
|
page read and write
|
|
|
|
2EAD9470000
|
unkown
|
page read and write
|
|
|
|
20EC6F00000
|
unkown
|
page read and write
|
|
|
|
2714D600000
|
unkown
|
page read and write
|
|
|
|
7FF4ECAB5000
|
unkown image
|
page readonly
|
|
|
|
80A28FE000
|
stack
|
page read and write
|
|
|
|
7FF4FA7EF000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECE44000
|
unkown image
|
page readonly
|
|
|
|
1B8CF979000
|
unkown
|
page read and write
|
|
|
|
7FF50D59F000
|
unkown image
|
page readonly
|
|
|
|
1B8CF94F000
|
unkown
|
page read and write
|
|
|
|
7FF4EEA8C000
|
unkown image
|
page readonly
|
|
|
|
7FF4F4E78000
|
unkown image
|
page readonly
|
|
|
|
7FF50D2E6000
|
unkown image
|
page readonly
|
|
|
|
1B8CF900000
|
unkown
|
page read and write
|
|
|
|
1B8CF23C000
|
unkown
|
page read and write
|
|
|
|
7FF4F4E40000
|
unkown image
|
page readonly
|
|
|
|
1B8CFD90000
|
unkown
|
page read and write
|
|
|
|
1B8CF2E6000
|
unkown
|
page read and write
|
|
|
|
19C81FF0000
|
unkown image
|
page readonly
|
|
|
|
7FF50D5D8000
|
unkown image
|
page readonly
|
|
|
|
7FF4ECF0F000
|
unkown image
|
page readonly
|
|
|
|
7FF50D5E9000
|
unkown image
|
page readonly
|
|
|
|
2EAD944E000
|
unkown
|
page read and write
|
|
|
|
2714D580000
|
unkown image
|
page readonly
|
|
|
|
27152C10000
|
unkown
|
page read and write
|
|
|
|
1B8CFD90000
|
unkown
|
page read and write
|
|
|
|
1CE23A4F000
|
unkown
|
page read and write
|
|
|
|
624CC7E000
|
stack
|
page read and write
|
|
|
|
7FF50D4DC000
|
unkown image
|
page readonly
|
|
|
|
7FF50D402000
|
unkown image
|
page readonly
|
|
|
|
1B8CF229000
|
unkown
|
page read and write
|
|
|
|
1B8CF952000
|
unkown
|
page read and write
|
|
|
|
1B8CFE6A000
|
unkown
|
page read and write
|
|
|
|
2714DDF0000
|
unkown image
|
page readonly
|
|
|
|
2EAD9C02000
|
unkown
|
page read and write
|
|
|
|
1CE23A4F000
|
unkown
|
page read and write
|
|
|
|
7FF4EEB0E000
|
unkown image
|
page readonly
|
|
There are 784 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://objectstorage.eu-frankfurt-1.oraclecloud.com/n/fr7rfl0lwf2o/b/rindex-20211025-1537/o/rindas.html/?email=yanak@mashreq.com
|
|