Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\377068b1-4a81-491f-8942-d52e7eda433c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\3d2d75e2-6980-43ba-9a5f-fee6d39e4911.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\4cee6421-532c-4532-af6b-1843969569d1.tmp
|
SysEx File -
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\91ee236a-df2b-454d-8e04-16aa4fced6b9.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\0d4e8847-18e3-4810-a083-78317cf24bec.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\362da74d-c31d-445e-aecb-c28fa5c3da14.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\4ac166a0-336c-4409-b257-855d17799641.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7844f58e-9993-4a40-8342-95e34240580b.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7fa60618-5c03-4c80-bc62-21af1df43236.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8e227d8a-5168-4c07-aea2-b5c748a65f16.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\96b693d2-22d4-4ed4-8ae9-106eb6cc3be7.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.oldNT (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.oldDB (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.olds (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.oldal (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_1vp6c.codesandbox.io_0.indexeddb.leveldb\000001.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_1vp6c.codesandbox.io_0.indexeddb.leveldb\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_1vp6c.codesandbox.io_0.indexeddb.leveldb\000005.ldb
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_1vp6c.codesandbox.io_0.indexeddb.leveldb\CURRENT
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_1vp6c.codesandbox.io_0.indexeddb.leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_1vp6c.codesandbox.io_0.indexeddb.leveldb\MANIFEST-000001
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabs (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\QuotaManager
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences.t (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferencesex (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\05af9727776343498e67cc0cc49fe0e0c42475a2\4f0f7d8d-1c32-46ca-a067-e1444a72bda8\0773e3d60561d23a_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\05af9727776343498e67cc0cc49fe0e0c42475a2\4f0f7d8d-1c32-46ca-a067-e1444a72bda8\index
|
ISO-8859 text, with no line terminators, with escape sequences
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\05af9727776343498e67cc0cc49fe0e0c42475a2\4f0f7d8d-1c32-46ca-a067-e1444a72bda8\index-dir\temp-index
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\05af9727776343498e67cc0cc49fe0e0c42475a2\4f0f7d8d-1c32-46ca-a067-e1444a72bda8\index-dir\the-real-indexni
(copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\05af9727776343498e67cc0cc49fe0e0c42475a2\b274232f-bfe2-4821-bc34-d51bc59629ad\index
|
ISO-8859 text, with no line terminators, with escape sequences
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\05af9727776343498e67cc0cc49fe0e0c42475a2\b274232f-bfe2-4821-bc34-d51bc59629ad\index-dir\temp-index
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\05af9727776343498e67cc0cc49fe0e0c42475a2\b274232f-bfe2-4821-bc34-d51bc59629ad\index-dir\the-real-index
(copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\05af9727776343498e67cc0cc49fe0e0c42475a2\eb2e6712-1296-403e-b7e7-960fd6bc8e67\index
|
ISO-8859 text, with no line terminators, with escape sequences
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\05af9727776343498e67cc0cc49fe0e0c42475a2\eb2e6712-1296-403e-b7e7-960fd6bc8e67\index-dir\temp-index
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\05af9727776343498e67cc0cc49fe0e0c42475a2\eb2e6712-1296-403e-b7e7-960fd6bc8e67\index-dir\the-real-index.
(copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\05af9727776343498e67cc0cc49fe0e0c42475a2\index.txt
(copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\05af9727776343498e67cc0cc49fe0e0c42475a2\index.txt.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\05af9727776343498e67cc0cc49fe0e0c42475a2\index.txtEg
(copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\05af9727776343498e67cc0cc49fe0e0c42475a2\index.txtEq
(copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\05af9727776343498e67cc0cc49fe0e0c42475a2\index.txtMP
(copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\000001.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\CURRENT (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\MANIFEST-000001
|
PGP\011Secret Key -
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index
|
ISO-8859 text, with no line terminators, with escape sequences
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\temp-index
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-indexEN (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\2a736aec-79f2-4d5d-b3cc-0fa1faf534fd.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State.. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.oldDr
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\9468a676-e047-44a7-9d41-7352e70c6233.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.oldMP
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
State.. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.olde/
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old.. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.old0
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a545faca-dfd6-464d-a8eb-fc6cb42825c8.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c38a4186-c9e1-4f69-89af-54b4a9cc9abc.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c8c48382-a9a2-41e0-b9fb-ffe41e86b37a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.olde4 (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f0f99ae0-13b5-49f6-b9e9-6e12f7072c91.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.oldol (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local Staten (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache/n (copy)
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info CacheN (copy)
|
SysEx File -
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\a1cf99d7-e4bc-4ce0-b279-d749923000ad.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\d88ccc62-3625-4da7-a6a9-74b9184e269b.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\e183d1ad-1968-482e-afe5-3dbfe06ec9fb.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\ee3ba916-254b-4f73-9124-cad523607f06.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\f3134e4c-c073-4e68-a74f-2b531f483108.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\f84f46e4-04b6-454b-b92d-19e1e00a882a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\0b1aa157-f283-4d1f-9024-611172b330b2.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2ce3be60-4203-4483-8cf4-67be9c1c4011.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_645440210\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_645440210\_platform_specific\x86_64\pnacl_public_pnacl_json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_645440210\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_645440210\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_645440210\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_645440210\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=7511538a3a6a0b862c772eace49075ed1bbe2377,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_645440210\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_645440210\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_645440210\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_645440210\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_645440210\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=309d6d3d463e6b1b0690f39eb226b1e4c469b2ce,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_645440210\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_sz_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=4b15de4ab227d5e46213978b8518d53c53ce1db9,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_645440210\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_645440210\manifest.json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5e8cb04e-e35f-4522-b088-0d8dba311810.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\db5be983-6541-450b-9578-740c37fd3a5f.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1888367808\db5be983-6541-450b-9578-740c37fd3a5f.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\0b1aa157-f283-4d1f-9024-611172b330b2.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\iw\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\angular.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\background_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\cast_sender.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\feedback.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\feedback.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\feedback_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\material_css_min.css
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\mirroring_cast_streaming.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\mirroring_common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\mirroring_hangouts.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_2100149455\CRX_INSTALL\mirroring_webrtc.js
|
ASCII text, with very long lines
|
dropped
|
|
There are 280 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "https://track.adform.net/C/?bn=35405429;cpdir=https://1vp6c.codesandbox.io/?af=YmFkYXJjQG1hc2hyZXEuY29t
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1556,1852420698623228516,12242904775007276111,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1944 /prefetch:8
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://track.adform.net/C/?bn=35405429;cpdir=https://1vp6c.codesandbox.io/?af=YmFkYXJjQG1hc2hyZXEuY29t
|
 |
||
|
https://backroomchat.com/API247247/authorize_client_id:s68b9xil-fm84-jn8u-zve0-prgv6s1e8fax_yuvn06f5mwkl1ei3dozhxj7pgrc2b9q4at8s7q3vmhpj68f9xwg2uzl1nsokie0dbrya4tc59e85rlnjxu0i3c1vbg24hd6zftqwyokmps7a?data=YmFkYXJjQG1hc2hyZXEuY29t
|
|
||
|
https://1vp6c.codesandbox.io/$$$
|
unknown
|
|
|
|
https://apis.google.com/js/client.js
|
unknown
|
|
|
|
https://codesandbox.io/api/v1/sandboxes/1vp6c
|
104.18.23.207
|
|
|
|
https://crash.corp.google.com/samples?reportid=&q=
|
unknown
|
|
|
|
https://backroomchat.com/API247247/css/style.css
|
162.241.125.231
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
|
unknown
|
|
|
|
https://secure.aadcdn.microsoftonline-p.com/ests/2.1.8148.16/content/images/microsoft_logo.svg?x=ee5
|
unknown
|
|
|
|
https://1vp6c.codesandbox.io/?af=YmFkYXJjQG1hc2hyZXEuY29t2
|
unknown
|
|
|
|
https://backroomchat.com/API247247/images/ellipsis_grey.svg
|
162.241.125.231
|
|
|
|
https://preprod-hangouts-googleapis.sandbox.google.com
|
unknown
|
|
|
|
https://1vp6c.codesandbox.io/apple-touch-icon-152x152.png?
|
unknown
|
|
|
|
https://www.google.com
|
unknown
|
|
|
|
https://codesandbox.io/static/js/vendors~sandbox.5f75c1ddb.chunk.js
|
104.18.23.207
|
|
|
|
https://codesandbox.io/static/js/sandbox.09c0d626b.js
|
104.18.23.207
|
|
|
|
https://backroomchat.com/API247247/images/passwrd.png
|
162.241.125.231
|
|
|
|
https://codesandbox.io/static/js/vendors~app~sandbox.711ae7310.chunk.js
|
104.18.23.207
|
|
|
|
https://1vp6c.codesandbox.io/?af=YmFkYXJjQG1hc2hyZXEuY29tconfirm
|
unknown
|
|
|
|
https://hangouts.google.com/hangouts/_/logpref
|
unknown
|
|
|
|
https://codesandbox.io/static/js/default~app~embed~sandbox.0af135a94.chunk.js
|
104.18.23.207
|
|
|
|
https://backroomchat.com/API247247/images/sigin.png
|
162.241.125.231
|
|
|
|
https://codesandbox.io/static/js/common-sandbox.7be24d846.chunk.js
|
104.18.23.207
|
|
|
|
https://codesandbox.io/static/js/watermark-button.be960f43b.js
|
104.18.23.207
|
|
|
|
https://creativecommons.org/publicdomain/zero/1.0/.
|
unknown
|
|
|
|
https://1vp6c.codesandbox.io/babel-transpiler.d2ef5dbd.worker.js
|
104.18.23.207
|
|
|
|
https://backroomchat.com/API247247/authorize_client_id:s68b9xil-fm84-jn8u-zve0-prgv6s1e8fax_yuvn06f5
|
unknown
|
|
|
|
https://backroomchat.com/API247247/images/inv-big-background.png
|
162.241.125.231
|
|
|
|
https://codesandbox.io/static/js/vendors~app~embed~sandbox-startup.6e3433fd3.chunk.js
|
104.18.23.207
|
|
|
|
https://unpkg.com/
|
unknown
|
|
|
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
|
|
|
https://codesandbox.io/static/js/3.c68bd71c0.chunk.js
|
104.18.23.207
|
|
|
|
https://github.com/madler/zlib/blob/master/zlib.h
|
unknown
|
|
|
|
https://codesandbox.io/static/js/vendors~app~embed~sandbox-startup.6e3433fd3.chunk.jsGX
|
unknown
|
|
|
|
https://backroomchat.com/API247247/images/ellipsis_white.svg
|
162.241.125.231
|
|
|
|
https://www.google.com/tools/feedback
|
unknown
|
|
|
|
https://dns.google
|
unknown
|
|
|
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
|
|
|
https://codesandbox.io/s/
|
unknown
|
|
|
|
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
|
unknown
|
|
|
|
https://backroomchat.com/API247247/?target=YmFkYXJjQG1hc2hyZXEuY29t2
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
172.217.168.78
|
|
|
|
https://1vp6c.codesandbox.io
|
unknown
|
|
|
|
https://1vp6c.codesandbox.io/frame.html?_sw-precache=deb3ec06fcc3ad242c57d4da2b57001fH
|
unknown
|
|
|
|
https://backroomchat.com/API247247/images/forgpass.png
|
162.241.125.231
|
|
|
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://www.google.com;
|
unknown
|
|
|
|
https://codesandbox.io/static/js/vendors~app~codemirror-editor~monaco-editor~sandbox.5ca13c344.chunk
|
unknown
|
|
|
|
https://backroomchat.com/API247247/images/arrow_left.svg
|
162.241.125.231
|
|
|
|
https://www.google.com/images/x2.gif
|
unknown
|
|
|
|
https://codesandbox.io/static/js/sandbox-startup.56e143351.js
|
104.18.23.207
|
|
|
|
https://backroomchat.com/API247247/images/arrow_left.svg-
|
unknown
|
|
|
|
https://backroomchat.com/API247247/images/firstmsg1.png
|
162.241.125.231
|
|
|
|
https://www.google.com/images/dot2.gif
|
unknown
|
|
|
|
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://1vp6c.codesandbox.io/manifest.json
|
104.18.23.207
|
|
|
|
http://tools.ietf.org/html/rfc1950
|
unknown
|
|
|
|
https://codesandbox.io/static/js/banner.be879265d.js
|
104.18.23.207
|
|
|
|
https://backroomchat.com/API247247/images/favicon.ico
|
162.241.125.231
|
|
|
|
https://prod-packager-packages.codesandbox.io/v2/packages/node-libs-browser/2.2.1.json
|
104.18.22.207
|
|
|
|
https://backroomchat.com/API247247/?target=YmFkYXJjQG1hc2hyZXEuY29t
|
162.241.125.231
|
|
|
|
https://1vp6c.codesandbox.io/apple-touch-icon-152x152.png
|
104.18.23.207
|
|
|
|
https://codesandbox.io/static/js/vendors~app~embed~sandbox~sandbox-startup.bcc15d438.chunk.js
|
104.18.23.207
|
|
|
|
https://1vp6c.codesandbox.io/frame.html?_sw-precache=deb3ec06fcc3ad242c57d4da2b57001f
|
104.18.23.207
|
|
|
|
https://new.codesandbox.io/frame.html
|
unknown
|
|
|
|
https://docs.google.com
|
unknown
|
|
|
|
https://www.google.com/
|
unknown
|
|
|
|
https://feedback.googleusercontent.com
|
unknown
|
|
|
|
https://backroomchat.com/API247247/?target=YmFkYXJjQG1hc2hyZXEuY29t=
|
unknown
|
|
|
|
https://clients6.google.com
|
unknown
|
|
|
|
https://codesandbox.io/static/js/babel.7.12.12.min.js
|
104.18.23.207
|
|
|
|
https://backroomchat.com/API247247/?target=
|
unknown
|
|
|
|
https://www.google.com/images/cleardot.gif
|
unknown
|
|
|
|
https://play.google.com
|
unknown
|
|
|
|
https://unpkg.com/@babel/runtime@%5E7.3.1/package.json
|
104.16.126.175
|
|
|
|
https://track.adform.net/C/?CC=1&bn=35405429;cpdir=https://1vp6c.codesandbox.io/?af=YmFkYXJjQG1hc2hy
|
unknown
|
|
|
|
https://www.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://1vp6c.codesandbox.io/sandbox-service-worker.js
|
104.18.23.207
|
|
|
|
https://col.csbops.io/data/sandpack
|
148.251.96.176
|
|
|
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://backroomchat.com/API247247/images/enterpass.png
|
162.241.125.231
|
|
|
|
https://accounts.google.com/MergeSession
|
unknown
|
|
|
|
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
|
172.217.168.33
|
|
|
|
https://hangouts.clients6.google.com
|
unknown
|
|
|
|
https://meet.google.com
|
unknown
|
|
|
|
https://accounts.google.com
|
unknown
|
|
|
|
https://clients2.google.com/cr/report
|
unknown
|
|
|
|
https://codesandbox.io/api/v1/sandboxes/1vp6c/phishing
|
104.18.23.207
|
|
|
|
https://1vp6c.codesandbox.io/
|
unknown
|
|
|
|
https://track.adform.net/C/?bn=35405429;cpdir=https://1vp6c.codesandbox.io/?af=YmFkYXJjQG1hc2hyZXEuY
|
unknown
|
|
|
|
https://codesandbox.io/static/browserfs12/browserfs.min.js
|
104.18.23.207
|
|
|
|
https://codesandbox.io/static/js/0.84205e20b.chunk.js
|
104.18.23.207
|
|
|
|
http://angularjs.org
|
unknown
|
|
|
|
https://github.com/angular/material
|
unknown
|
|
|
|
https://apis.google.com
|
unknown
|
|
|
|
https://codesandbox.io/
|
unknown
|
|
|
|
https://codesandbox.io/static/js/vendors~app~embed~sandbox~sandbox-startup.bcc15d438.chunk.jss8
|
unknown
|
|
|
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
|
|
|
https://clients2.google.com
|
unknown
|
|
|
|
https://1vp6c.codesandbox.io/sandbox-service-worker.jsaD
|
unknown
|
|
There are 90 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
static.cloudflareinsights.com
|
104.16.95.65
|
|
|
|
backroomchat.com
|
162.241.125.231
|
|
|
|
accounts.google.com
|
216.58.215.237
|
|
|
|
codesandbox.io
|
104.18.23.207
|
|
|
|
prod-packager-packages.codesandbox.io
|
104.18.22.207
|
|
|
|
clients.l.google.com
|
172.217.168.78
|
|
|
|
unpkg.com
|
104.16.126.175
|
|
|
|
googlehosted.l.googleusercontent.com
|
172.217.168.33
|
|
|
|
1vp6c.codesandbox.io
|
104.18.23.207
|
|
|
|
col.csbops.io
|
148.251.96.176
|
|
|
|
clients2.googleusercontent.com
|
unknown
|
|
|
|
clients2.google.com
|
unknown
|
|
|
|
secure.aadcdn.microsoftonline-p.com
|
unknown
|
|
|
|
track.adform.net
|
unknown
|
|
There are 4 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
104.18.23.207
|
codesandbox.io
|
United States
|
|
|
|
162.241.125.231
|
backroomchat.com
|
United States
|
|
|
|
192.168.2.1
|
unknown
|
unknown
|
|
|
|
216.58.215.237
|
accounts.google.com
|
United States
|
|
|
|
148.251.96.176
|
col.csbops.io
|
Germany
|
|
|
|
172.217.168.78
|
clients.l.google.com
|
United States
|
|
|
|
239.255.255.250
|
unknown
|
Reserved
|
|
|
|
104.18.22.207
|
prod-packager-packages.codesandbox.io
|
United States
|
|
|
|
172.217.168.33
|
googlehosted.l.googleusercontent.com
|
United States
|
|
|
|
104.16.126.175
|
unpkg.com
|
United States
|
|
|
|
127.0.0.1
|
unknown
|
unknown
|
|
|
|
104.16.95.65
|
static.cloudflareinsights.com
|
United States
|
|
There are 2 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
|
There are 34 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7DF5E7CB0000
|
unkown image
|
page readonly
|
|
|
|
5D2C7F000
|
stack
|
page read and write
|
|
|
|
196A8449000
|
unkown
|
page read and write
|
|
|
|
23110593000
|
unkown
|
page read and write
|
|
|
|
7FF55559C000
|
unkown image
|
page readonly
|
|
|
|
7FF4F415A000
|
unkown image
|
page readonly
|
|
|
|
7FF59DD75000
|
unkown image
|
page readonly
|
|
|
|
7FF4F4097000
|
unkown image
|
page readonly
|
|
|
|
7FF53BE7F000
|
unkown image
|
page readonly
|
|
|
|
2C9FED1A000
|
unkown
|
page read and write
|
|
|
|
2C2D7790000
|
unkown
|
page read and write
|
|
|
|
19146040000
|
unkown
|
page read and write
|
|
|
|
7FF53BFF1000
|
unkown image
|
page readonly
|
|
|
|
196A844D000
|
unkown
|
page read and write
|
|
|
|
7FF538DFB000
|
unkown image
|
page readonly
|
|
|
|
2C9FEA10000
|
unkown image
|
page readonly
|
|
|
|
13C12E02000
|
unkown
|
page read and write
|
|
|
|
25314DA0000
|
unkown
|
page read and write
|
|
|
|
7FF4F96CA000
|
unkown image
|
page readonly
|
|
|
|
2C9FC8E3000
|
unkown
|
page read and write
|
|
|
|
7FF5559A9000
|
unkown image
|
page readonly
|
|
|
|
196A8400000
|
unkown
|
page read and write
|
|
|
|
7FF53C0F2000
|
unkown image
|
page readonly
|
|
|
|
1C29BB13000
|
unkown
|
page read and write
|
|
|
|
23110A6A000
|
unkown
|
page read and write
|
|
|
|
7FF59D351000
|
unkown image
|
page readonly
|
|
|
|
7FF59CDA3000
|
unkown image
|
page readonly
|
|
|
|
E8C5B0C000
|
unkown
|
page read and write
|
|
|
|
231105A0000
|
unkown
|
page read and write
|
|
|
|
191462D0000
|
unkown image
|
page readonly
|
|
|
|
7FF555719000
|
unkown image
|
page readonly
|
|
|
|
7FF555756000
|
unkown image
|
page readonly
|
|
|
|
E43F27E000
|
stack
|
page read and write
|
|
|
|
1C29BA78000
|
unkown
|
page read and write
|
|
|
|
7FF53BEBF000
|
unkown image
|
page readonly
|
|
|
|
7FF554DB4000
|
unkown image
|
page readonly
|
|
|
|
196A8477000
|
unkown
|
page read and write
|
|
|
|
25314720000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE70000
|
unkown
|
page read and write
|
|
|
|
17AD6DE7000
|
heap default
|
page read and write
|
|
|
|
2C9FEE30000
|
unkown
|
page read and write
|
|
|
|
7FF5EFF17000
|
unkown image
|
page readonly
|
|
|
|
2C9FE9F0000
|
unkown image
|
page readonly
|
|
|
|
7FF59CD8F000
|
unkown image
|
page readonly
|
|
|
|
19145F90000
|
unkown image
|
page readonly
|
|
|
|
196A86D0000
|
unkown image
|
page readonly
|
|
|
|
17AD6D00000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
7FF555523000
|
unkown image
|
page readonly
|
|
|
|
E43F0FE000
|
stack
|
page read and write
|
|
|
|
7DFE538A7000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE60000
|
unkown
|
page read and write
|
|
|
|
7FF55578C000
|
unkown image
|
page readonly
|
|
|
|
17AD6ED0000
|
unkown image
|
page readonly
|
|
|
|
2C9FC5A0000
|
heap private
|
page read and write
|
|
|
|
E936AFE000
|
stack
|
page read and write
|
|
|
|
23110593000
|
unkown
|
page read and write
|
|
|
|
DE4030B000
|
unkown
|
page read and write
|
|
|
|
7FF59DCCB000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
7DF405210000
|
unkown image
|
page readonly
|
|
|
|
2C2D784D000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
2C9FEC40000
|
unkown
|
page read and write
|
|
|
|
23110B02000
|
unkown
|
page read and write
|
|
|
|
231105A6000
|
unkown
|
page read and write
|
|
|
|
23110569000
|
unkown
|
page read and write
|
|
|
|
2C9FC902000
|
unkown
|
page read and write
|
|
|
|
7FF59DFBA000
|
unkown image
|
page readonly
|
|
|
|
17AD6E10000
|
unkown
|
page read and write
|
|
|
|
2C9FE389000
|
unkown
|
page read and write
|
|
|
|
7DF5E7CB2000
|
unkown image
|
page readonly
|
|
|
|
2C2D7857000
|
unkown
|
page read and write
|
|
|
|
17AD6DFF000
|
unkown
|
page read and write
|
|
|
|
7FF538F2F000
|
unkown image
|
page readonly
|
|
|
|
2C2D7A00000
|
unkown image
|
page readonly
|
|
|
|
7FF59DE82000
|
unkown image
|
page readonly
|
|
|
|
2C9FEA30000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
2ADBC441000
|
unkown
|
page read and write
|
|
|
|
7FF538FAE000
|
unkown image
|
page readonly
|
|
|
|
196A8390000
|
unkown image
|
page readonly
|
|
|
|
23110A02000
|
unkown
|
page read and write
|
|
|
|
17AD6DE2000
|
unkown
|
page read and write
|
|
|
|
7FF59DE41000
|
unkown image
|
page readonly
|
|
|
|
7FF59DF3D000
|
unkown image
|
page readonly
|
|
|
|
23110571000
|
unkown
|
page read and write
|
|
|
|
5D307F000
|
stack
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
23110B00000
|
unkown
|
page read and write
|
|
|
|
23110527000
|
unkown
|
page read and write
|
|
|
|
7FF4F93C4000
|
unkown image
|
page readonly
|
|
|
|
23110563000
|
unkown
|
page read and write
|
|
|
|
7DF546D00000
|
unkown image
|
page readonly
|
|
|
|
2C2D784A000
|
unkown
|
page read and write
|
|
|
|
2C9FC600000
|
heap default
|
page read and write
|
|
|
|
36F387A000
|
stack
|
page read and write
|
|
|
|
2C9FEC40000
|
unkown
|
page read and write
|
|
|
|
4F6AA7F000
|
stack
|
page read and write
|
|
|
|
7FF59D283000
|
unkown image
|
page readonly
|
|
|
|
7DF4E5B80000
|
unkown image
|
page readonly
|
|
|
|
196A8453000
|
unkown
|
page read and write
|
|
|
|
E0886FD000
|
stack
|
page read and write
|
|
|
|
2310FAD0000
|
unkown image
|
page readonly
|
|
|
|
2310FAC0000
|
heap private
|
page read and write
|
|
|
|
7FF59CE59000
|
unkown image
|
page readonly
|
|
|
|
7FF539052000
|
unkown image
|
page readonly
|
|
|
|
17AD6B80000
|
unkown image
|
page read and write
|
|
|
|
196A8447000
|
unkown
|
page read and write
|
|
|
|
25314813000
|
unkown
|
page read and write
|
|
|
|
7FF59CDA7000
|
unkown image
|
page readonly
|
|
|
|
2C9FC971000
|
unkown
|
page read and write
|
|
|
|
7FF5557BB000
|
unkown image
|
page readonly
|
|
|
|
7FF539075000
|
unkown image
|
page readonly
|
|
|
|
25314C00000
|
unkown image
|
page readonly
|
|
|
|
13C12649000
|
unkown
|
page read and write
|
|
|
|
7FF59CCEC000
|
unkown image
|
page readonly
|
|
|
|
25314889000
|
unkown
|
page read and write
|
|
|
|
7FF59DE45000
|
unkown image
|
page readonly
|
|
|
|
7FF59CA24000
|
unkown image
|
page readonly
|
|
|
|
196A8448000
|
unkown
|
page read and write
|
|
|
|
17AD6DF6000
|
unkown
|
page read and write
|
|
|
|
7FF4F4032000
|
unkown image
|
page readonly
|
|
|
|
5D337E000
|
stack
|
page read and write
|
|
|
|
7FF5DA029000
|
unkown image
|
page readonly
|
|
|
|
2310FB00000
|
unkown image
|
page readonly
|
|
|
|
17AD70D0000
|
unkown image
|
page readonly
|
|
|
|
7FF538FD2000
|
unkown image
|
page readonly
|
|
|
|
7FF53BDF2000
|
unkown image
|
page readonly
|
|
|
|
7FF59DD06000
|
unkown image
|
page readonly
|
|
|
|
23110593000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
7FF59DD46000
|
unkown image
|
page readonly
|
|
|
|
196A8370000
|
unkown image
|
page read and write
|
|
|
|
7DF501DF0000
|
unkown image
|
page readonly
|
|
|
|
7FF55565A000
|
unkown image
|
page readonly
|
|
|
|
7FF5EFE2F000
|
unkown image
|
page readonly
|
|
|
|
7FF5D9C4C000
|
unkown image
|
page readonly
|
|
|
|
23110593000
|
unkown
|
page read and write
|
|
|
|
7FF59DEE0000
|
unkown image
|
page readonly
|
|
|
|
7FF59CE81000
|
unkown image
|
page readonly
|
|
|
|
7FF4F4067000
|
unkown image
|
page readonly
|
|
|
|
7FF55579D000
|
unkown image
|
page readonly
|
|
|
|
2C9FC8BF000
|
unkown
|
page read and write
|
|
|
|
7FF4F9607000
|
unkown image
|
page readonly
|
|
|
|
7FF554DFA000
|
unkown image
|
page readonly
|
|
|
|
1C29BA02000
|
unkown
|
page read and write
|
|
|
|
7FF59DDCF000
|
unkown image
|
page readonly
|
|
|
|
2C2D7690000
|
heap default
|
page read and write
|
|
|
|
2C9FC5B0000
|
unkown image
|
page readonly
|
|
|
|
1C29BA5C000
|
unkown
|
page read and write
|
|
|
|
2C2D7C00000
|
unkown image
|
page readonly
|
|
|
|
7FF5EFF2D000
|
unkown image
|
page readonly
|
|
|
|
7FF59CD93000
|
unkown image
|
page readonly
|
|
|
|
7DF5ABC40000
|
unkown image
|
page readonly
|
|
|
|
23110596000
|
unkown
|
page read and write
|
|
|
|
7FF59D0E6000
|
unkown image
|
page readonly
|
|
|
|
7FF4F95F3000
|
unkown image
|
page readonly
|
|
|
|
7FF5555D5000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE70000
|
unkown
|
page read and write
|
|
|
|
7FF59D361000
|
unkown image
|
page readonly
|
|
|
|
7FF554DBE000
|
unkown image
|
page readonly
|
|
|
|
25314902000
|
unkown
|
page read and write
|
|
|
|
7FF538F89000
|
unkown image
|
page readonly
|
|
|
|
7FF59C967000
|
unkown image
|
page readonly
|
|
|
|
13C12629000
|
unkown
|
page read and write
|
|
|
|
7FF59DB27000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
2C9FC700000
|
unkown
|
page read and write
|
|
|
|
196A845D000
|
unkown
|
page read and write
|
|
|
|
7FF59CCFB000
|
unkown image
|
page readonly
|
|
|
|
2C98005F000
|
unkown
|
page read and write
|
|
|
|
7FF5EFBC4000
|
unkown image
|
page readonly
|
|
|
|
7FF59D297000
|
unkown image
|
page readonly
|
|
|
|
231105A6000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
17AD6BA0000
|
unkown image
|
page readonly
|
|
|
|
7FF5558F7000
|
unkown image
|
page readonly
|
|
|
|
7DF5E7CD0000
|
unkown image
|
page readonly
|
|
|
|
2C2D7870000
|
unkown
|
page read and write
|
|
|
|
2C9FEA70000
|
unkown image
|
page readonly
|
|
|
|
2311056B000
|
unkown
|
page read and write
|
|
|
|
23110000000
|
unkown image
|
page readonly
|
|
|
|
2C9FE37C000
|
unkown
|
page read and write
|
|
|
|
7FF59D92B000
|
unkown image
|
page readonly
|
|
|
|
7DF5AAFD2000
|
unkown image
|
page readonly
|
|
|
|
13C124B0000
|
unkown image
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
196A842E000
|
unkown
|
page read and write
|
|
|
|
7DF5AAFC0000
|
unkown image
|
page readonly
|
|
|
|
7FF59D2DA000
|
unkown image
|
page readonly
|
|
|
|
7DF549D92000
|
unkown image
|
page readonly
|
|
|
|
7FF5D9F5F000
|
unkown image
|
page readonly
|
|
|
|
7FF5550A4000
|
unkown image
|
page readonly
|
|
|
|
231102D0000
|
unkown image
|
page write copy
|
|
|
|
13C124F0000
|
unkown image
|
page readonly
|
|
|
|
7FF5DA045000
|
unkown image
|
page readonly
|
|
|
|
23110576000
|
unkown
|
page read and write
|
|
|
|
2C9FE9E0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F95C3000
|
unkown image
|
page readonly
|
|
|
|
7FF4F96DA000
|
unkown image
|
page readonly
|
|
|
|
986B9E000
|
stack
|
page read and write
|
|
|
|
2310FCC4000
|
unkown
|
page read and write
|
|
|
|
7FF53C017000
|
unkown image
|
page readonly
|
|
|
|
7FF4F965D000
|
unkown image
|
page readonly
|
|
|
|
13C124D0000
|
unkown image
|
page readonly
|
|
|
|
7FF59D26D000
|
unkown image
|
page readonly
|
|
|
|
7FF538BE9000
|
unkown image
|
page readonly
|
|
|
|
7DF5E7CB2000
|
unkown image
|
page readonly
|
|
|
|
7FF53C073000
|
unkown image
|
page readonly
|
|
|
|
7FF5D9FCD000
|
unkown image
|
page readonly
|
|
|
|
196A8430000
|
unkown
|
page read and write
|
|
|
|
7DF5FDCA0000
|
unkown image
|
page readonly
|
|
|
|
7FF59D927000
|
unkown image
|
page readonly
|
|
|
|
7FF59CDB7000
|
unkown image
|
page readonly
|
|
|
|
2C2D7873000
|
unkown
|
page read and write
|
|
|
|
7DF5AAAF2000
|
unkown image
|
page readonly
|
|
|
|
19145FF0000
|
unkown
|
page read and write
|
|
|
|
7DF5AAFD0000
|
unkown image
|
page readonly
|
|
|
|
7DF507342000
|
unkown image
|
page readonly
|
|
|
|
2C9FE38B000
|
unkown
|
page read and write
|
|
|
|
7FF5EFFF2000
|
unkown image
|
page readonly
|
|
|
|
2C9FE202000
|
unkown
|
page read and write
|
|
|
|
7DF5FDC80000
|
unkown image
|
page readonly
|
|
|
|
2C2D7D80000
|
unkown image
|
page readonly
|
|
|
|
7FF538FA3000
|
unkown image
|
page readonly
|
|
|
|
7FF4F4154000
|
unkown image
|
page readonly
|
|
|
|
7DF5AAAE2000
|
unkown image
|
page readonly
|
|
|
|
7FF59DAA1000
|
unkown image
|
page readonly
|
|
|
|
7FF59DC87000
|
unkown image
|
page readonly
|
|
|
|
13C12800000
|
unkown image
|
page readonly
|
|
|
|
2311055F000
|
unkown
|
page read and write
|
|
|
|
7DF5ABC20000
|
unkown image
|
page readonly
|
|
|
|
7FF53C111000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE70000
|
unkown
|
page read and write
|
|
|
|
2ADBC800000
|
unkown image
|
page readonly
|
|
|
|
2C980020000
|
unkown
|
page read and write
|
|
|
|
2C9FEAA0000
|
unkown image
|
page readonly
|
|
|
|
7DF546CE2000
|
unkown image
|
page readonly
|
|
|
|
253148D8000
|
unkown
|
page read and write
|
|
|
|
2C2D7800000
|
unkown
|
page read and write
|
|
|
|
7FF4F40ED000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE40000
|
unkown
|
page read and write
|
|
|
|
2310FAD0000
|
unkown image
|
page readonly
|
|
|
|
19145FD0000
|
unkown image
|
page readonly
|
|
|
|
7FF59CDAE000
|
unkown image
|
page readonly
|
|
|
|
7FF5559D1000
|
unkown image
|
page readonly
|
|
|
|
2C9FC848000
|
unkown
|
page read and write
|
|
|
|
2310FC4C000
|
unkown
|
page read and write
|
|
|
|
191464D0000
|
unkown image
|
page readonly
|
|
|
|
2ADBC600000
|
unkown image
|
page readonly
|
|
|
|
17AD6E0F000
|
unkown
|
page read and write
|
|
|
|
7FF59CD89000
|
unkown image
|
page readonly
|
|
|
|
19146650000
|
unkown image
|
page readonly
|
|
|
|
7FF5559CA000
|
unkown image
|
page readonly
|
|
|
|
7DF549D82000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
7FF538FF7000
|
unkown image
|
page readonly
|
|
|
|
7FF538BE7000
|
unkown image
|
page readonly
|
|
|
|
7FF5DA034000
|
unkown image
|
page readonly
|
|
|
|
E08897F000
|
stack
|
page read and write
|
|
|
|
E93677F000
|
stack
|
page read and write
|
|
|
|
7FF5D9FA3000
|
unkown image
|
page readonly
|
|
|
|
7FF4F40E7000
|
unkown image
|
page readonly
|
|
|
|
7FF4F96C4000
|
unkown image
|
page readonly
|
|
|
|
7FF4F3E27000
|
unkown image
|
page readonly
|
|
|
|
253145D0000
|
unkown image
|
page read and write
|
|
|
|
7FF59CDD3000
|
unkown image
|
page readonly
|
|
|
|
36F367A000
|
unkown
|
page read and write
|
|
|
|
196A8484000
|
unkown
|
page read and write
|
|
|
|
2310FC53000
|
unkown
|
page read and write
|
|
|
|
23110A00000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
7FF5EFF2F000
|
unkown image
|
page readonly
|
|
|
|
2ADBC990000
|
unkown image
|
page readonly
|
|
|
|
7FF4F9617000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE10000
|
unkown
|
page read and write
|
|
|
|
2C9FE9B0000
|
unkown image
|
page readonly
|
|
|
|
2C9FED1D000
|
unkown
|
page read and write
|
|
|
|
7FF538F6E000
|
unkown image
|
page readonly
|
|
|
|
7FF59CD77000
|
unkown image
|
page readonly
|
|
|
|
E9364FF000
|
stack
|
page read and write
|
|
|
|
DE40E78000
|
stack
|
page read and write
|
|
|
|
19145F50000
|
unkown image
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
7DF549D92000
|
unkown image
|
page readonly
|
|
|
|
7DF5AAAF2000
|
unkown image
|
page readonly
|
|
|
|
7DF5ABC32000
|
unkown image
|
page readonly
|
|
|
|
7FF59DEB7000
|
unkown image
|
page readonly
|
|
|
|
13C12520000
|
heap default
|
page read and write
|
|
|
|
7FF59DFC1000
|
unkown image
|
page readonly
|
|
|
|
2C2D7827000
|
unkown
|
page read and write
|
|
|
|
2ADBCA70000
|
unkown
|
page read and write
|
|
|
|
7DF5E7CB0000
|
unkown image
|
page readonly
|
|
|
|
7DF507352000
|
unkown image
|
page readonly
|
|
|
|
7FF59DF99000
|
unkown image
|
page readonly
|
|
|
|
7FF59DBBF000
|
unkown image
|
page readonly
|
|
|
|
25314640000
|
heap default
|
page read and write
|
|
|
|
7DF501DD2000
|
unkown image
|
page readonly
|
|
|
|
2C2D7902000
|
unkown
|
page read and write
|
|
|
|
19146750000
|
unkown
|
page read and write
|
|
|
|
13C12B90000
|
unkown image
|
page readonly
|
|
|
|
7FF4F416A000
|
unkown image
|
page readonly
|
|
|
|
2310FC4B000
|
unkown
|
page read and write
|
|
|
|
253145F0000
|
unkown image
|
page readonly
|
|
|
|
7FF59DD04000
|
unkown image
|
page readonly
|
|
|
|
231105B7000
|
unkown
|
page read and write
|
|
|
|
2C9FED03000
|
unkown
|
page read and write
|
|
|
|
2ADBC2C0000
|
unkown image
|
page readonly
|
|
|
|
7FF55532D000
|
unkown image
|
page readonly
|
|
|
|
13C12A00000
|
unkown image
|
page readonly
|
|
|
|
2C9FE334000
|
unkown
|
page read and write
|
|
|
|
E936A7C000
|
stack
|
page read and write
|
|
|
|
DE40C7E000
|
stack
|
page read and write
|
|
|
|
7FF53907E000
|
unkown image
|
page readonly
|
|
|
|
7DF5FDC82000
|
unkown image
|
page readonly
|
|
|
|
2311059E000
|
unkown
|
page read and write
|
|
|
|
23110597000
|
unkown
|
page read and write
|
|
|
|
7DF549DA0000
|
unkown image
|
page readonly
|
|
|
|
E9366FD000
|
stack
|
page read and write
|
|
|
|
E9361FE000
|
stack
|
page read and write
|
|
|
|
7DF563650000
|
unkown image
|
page readonly
|
|
|
|
2C2D8002000
|
unkown
|
page read and write
|
|
|
|
36F397D000
|
stack
|
page read and write
|
|
|
|
7FF4F4149000
|
unkown image
|
page readonly
|
|
|
|
1C29BA00000
|
unkown
|
page read and write
|
|
|
|
7DF563632000
|
unkown image
|
page readonly
|
|
|
|
7FF59CCDB000
|
unkown image
|
page readonly
|
|
|
|
7DF549DA0000
|
unkown image
|
page readonly
|
|
|
|
2B7C67E000
|
stack
|
page read and write
|
|
|
|
2C2D7853000
|
unkown
|
page read and write
|
|
|
|
E08857F000
|
stack
|
page read and write
|
|
|
|
7FF4F93B5000
|
unkown image
|
page readonly
|
|
|
|
7FF5EFF43000
|
unkown image
|
page readonly
|
|
|
|
7FF4F95E9000
|
unkown image
|
page readonly
|
|
|
|
7FF59CE64000
|
unkown image
|
page readonly
|
|
|
|
7FF4F4161000
|
unkown image
|
page readonly
|
|
|
|
17AD7250000
|
unkown image
|
page readonly
|
|
|
|
7FF5EFE7B000
|
unkown image
|
page readonly
|
|
|
|
7FF4F40EA000
|
unkown image
|
page readonly
|
|
|
|
2C9FC862000
|
unkown
|
page read and write
|
|
|
|
1C29BCD0000
|
unkown image
|
page readonly
|
|
|
|
7FF5EFCA5000
|
unkown image
|
page readonly
|
|
|
|
7FF59D26F000
|
unkown image
|
page readonly
|
|
|
|
7FF59DEA3000
|
unkown image
|
page readonly
|
|
|
|
7FF4F922D000
|
unkown image
|
page readonly
|
|
|
|
196A8431000
|
unkown
|
page read and write
|
|
|
|
253148E2000
|
unkown
|
page read and write
|
|
|
|
7FF5EFDF0000
|
unkown image
|
page readonly
|
|
|
|
2C2D7620000
|
unkown image
|
page read and write
|
|
|
|
1C29BA29000
|
unkown
|
page read and write
|
|
|
|
7DF5E7CD0000
|
unkown image
|
page readonly
|
|
|
|
7FF5558BF000
|
unkown image
|
page readonly
|
|
|
|
7FF53C10A000
|
unkown image
|
page readonly
|
|
|
|
7FF5EFF73000
|
unkown image
|
page readonly
|
|
|
|
9872FE000
|
stack
|
page read and write
|
|
|
|
7FF5EFF29000
|
unkown image
|
page readonly
|
|
|
|
7DF461500000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE70000
|
unkown
|
page read and write
|
|
|
|
7FF5EFF9A000
|
unkown image
|
page readonly
|
|
|
|
2ADBC2A0000
|
unkown image
|
page read and write
|
|
|
|
2C9FC848000
|
unkown
|
page read and write
|
|
|
|
253148CD000
|
unkown
|
page read and write
|
|
|
|
7DF546CE0000
|
unkown image
|
page readonly
|
|
|
|
231105CB000
|
unkown
|
page read and write
|
|
|
|
E087ECB000
|
unkown
|
page read and write
|
|
|
|
2310FC55000
|
unkown
|
page read and write
|
|
|
|
17AD6BC0000
|
unkown image
|
page readonly
|
|
|
|
2311057B000
|
unkown
|
page read and write
|
|
|
|
2C9FE385000
|
unkown
|
page read and write
|
|
|
|
7FF53C06B000
|
unkown image
|
page readonly
|
|
|
|
17AD6DFF000
|
unkown
|
page read and write
|
|
|
|
7DF3FFCA0000
|
unkown image
|
page readonly
|
|
|
|
7FF55594D000
|
unkown image
|
page readonly
|
|
|
|
7FF4F965A000
|
unkown image
|
page readonly
|
|
|
|
2C9FEA50000
|
unkown image
|
page readonly
|
|
|
|
7FF53BE16000
|
unkown image
|
page readonly
|
|
|
|
2C2D7849000
|
unkown
|
page read and write
|
|
|
|
7FF59CDF7000
|
unkown image
|
page readonly
|
|
|
|
7DF444BB0000
|
unkown image
|
page readonly
|
|
|
|
2C9FC847000
|
unkown
|
page read and write
|
|
|
|
7FF4F4054000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
7FF59D93C000
|
unkown image
|
page readonly
|
|
|
|
2310FD16000
|
unkown
|
page read and write
|
|
|
|
7DF5ABC30000
|
unkown image
|
page readonly
|
|
|
|
7FF538FCB000
|
unkown image
|
page readonly
|
|
|
|
2C9FE396000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
7FF5EFE75000
|
unkown image
|
page readonly
|
|
|
|
2ADBC429000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
7FF5EFB01000
|
unkown image
|
page readonly
|
|
|
|
253148BC000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
7FF53C040000
|
unkown image
|
page readonly
|
|
|
|
2C9FE9D0000
|
unkown image
|
page readonly
|
|
|
|
17AD6D20000
|
unkown image
|
page read and write
|
|
|
|
7DF5AAAE0000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
23110A02000
|
unkown
|
page read and write
|
|
|
|
E935CFF000
|
stack
|
page read and write
|
|
|
|
7FF5F0004000
|
unkown image
|
page readonly
|
|
|
|
7DF501DD0000
|
unkown image
|
page readonly
|
|
|
|
19146102000
|
unkown
|
page read and write
|
|
|
|
2C9FC5B0000
|
unkown image
|
page readonly
|
|
|
|
2C980002000
|
unkown
|
page read and write
|
|
|
|
2C9FE740000
|
unkown image
|
page write copy
|
|
|
|
23110563000
|
unkown
|
page read and write
|
|
|
|
7DF5E7CC0000
|
unkown image
|
page readonly
|
|
|
|
23110A02000
|
unkown
|
page read and write
|
|
|
|
7FF59D35A000
|
unkown image
|
page readonly
|
|
|
|
7FF53C003000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
7FF4F8E99000
|
unkown image
|
page readonly
|
|
|
|
E9362FC000
|
stack
|
page read and write
|
|
|
|
2C9FC913000
|
unkown
|
page read and write
|
|
|
|
23110593000
|
unkown
|
page read and write
|
|
|
|
7FF4F40C8000
|
unkown image
|
page readonly
|
|
|
|
19146A00000
|
unkown
|
page read and write
|
|
|
|
7FF5F000A000
|
unkown image
|
page readonly
|
|
|
|
2C98002F000
|
unkown
|
page read and write
|
|
|
|
7FF59D2DD000
|
unkown image
|
page readonly
|
|
|
|
2C980051000
|
unkown
|
page read and write
|
|
|
|
7FF53C09D000
|
unkown image
|
page readonly
|
|
|
|
2C9FC897000
|
unkown
|
page read and write
|
|
|
|
13C124C0000
|
heap private
|
page read and write
|
|
|
|
7DF5E7CC0000
|
unkown image
|
page readonly
|
|
|
|
E9369FC000
|
stack
|
page read and write
|
|
|
|
196A8461000
|
unkown
|
page read and write
|
|
|
|
7FF5DA051000
|
unkown image
|
page readonly
|
|
|
|
2C98005D000
|
unkown
|
page read and write
|
|
|
|
7FF5D9C4F000
|
unkown image
|
page readonly
|
|
|
|
7DF507342000
|
unkown image
|
page readonly
|
|
|
|
23110592000
|
unkown
|
page read and write
|
|
|
|
23110593000
|
unkown
|
page read and write
|
|
|
|
196A8B40000
|
unkown
|
page read and write
|
|
|
|
196A844B000
|
unkown
|
page read and write
|
|
|
|
7FF4F3EF6000
|
unkown image
|
page readonly
|
|
|
|
7FF4F96D1000
|
unkown image
|
page readonly
|
|
|
|
7FF59D280000
|
unkown image
|
page readonly
|
|
|
|
7FF53C11A000
|
unkown image
|
page readonly
|
|
|
|
2C2D7670000
|
unkown image
|
page readonly
|
|
|
|
7FF59DE9E000
|
unkown image
|
page readonly
|
|
|
|
2C2D7813000
|
unkown
|
page read and write
|
|
|
|
13C12700000
|
unkown
|
page read and write
|
|
|
|
E08847F000
|
stack
|
page read and write
|
|
|
|
7FF4F9600000
|
unkown image
|
page readonly
|
|
|
|
23110593000
|
unkown
|
page read and write
|
|
|
|
7FF53B57B000
|
unkown image
|
page readonly
|
|
|
|
7FF4F9603000
|
unkown image
|
page readonly
|
|
|
|
7FF5F001A000
|
unkown image
|
page readonly
|
|
|
|
2ADBC2E0000
|
unkown image
|
page readonly
|
|
|
|
7FF5D9F73000
|
unkown image
|
page readonly
|
|
|
|
2531482A000
|
unkown
|
page read and write
|
|
|
|
7FF55576F000
|
unkown image
|
page readonly
|
|
|
|
2ADBC46A000
|
unkown
|
page read and write
|
|
|
|
7FF59CCD5000
|
unkown image
|
page readonly
|
|
|
|
7FF59DD11000
|
unkown image
|
page readonly
|
|
|
|
2C9FED17000
|
unkown
|
page read and write
|
|
|
|
2C9FC967000
|
unkown
|
page read and write
|
|
|
|
7FF59DE1B000
|
unkown image
|
page readonly
|
|
|
|
2C9FCA00000
|
unkown image
|
page readonly
|
|
|
|
2C9FEF60000
|
unkown
|
page read and write
|
|
|
|
7FF53BDE7000
|
unkown image
|
page readonly
|
|
|
|
7FF555907000
|
unkown image
|
page readonly
|
|
|
|
2310FC4D000
|
unkown
|
page read and write
|
|
|
|
7FF55594A000
|
unkown image
|
page readonly
|
|
|
|
2310FC71000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
23110A6A000
|
unkown
|
page read and write
|
|
|
|
2C9FEE70000
|
unkown
|
page read and write
|
|
|
|
2C9FEA80000
|
unkown image
|
page readonly
|
|
|
|
7FF59DB29000
|
unkown image
|
page readonly
|
|
|
|
2C2D7630000
|
heap private
|
page read and write
|
|
|
|
7FF59CFE5000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
13C12666000
|
unkown
|
page read and write
|
|
|
|
7FF53C057000
|
unkown image
|
page readonly
|
|
|
|
196A83B0000
|
unkown image
|
page readonly
|
|
|
|
2C2D7913000
|
unkown
|
page read and write
|
|
|
|
1C29B9A0000
|
heap default
|
page read and write
|
|
|
|
7FF4F4093000
|
unkown image
|
page readonly
|
|
|
|
2C9FC6E0000
|
unkown image
|
page readonly
|
|
|
|
7FF59DD8D000
|
unkown image
|
page readonly
|
|
|
|
25314913000
|
unkown
|
page read and write
|
|
|
|
196A8442000
|
unkown
|
page read and write
|
|
|
|
7FF53C0F9000
|
unkown image
|
page readonly
|
|
|
|
7FF53BEA6000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
E935EFE000
|
stack
|
page read and write
|
|
|
|
2C9FEE70000
|
unkown
|
page read and write
|
|
|
|
4F6A7FC000
|
stack
|
page read and write
|
|
|
|
7FF59DECF000
|
unkown image
|
page readonly
|
|
|
|
7DF5ABC32000
|
unkown image
|
page readonly
|
|
|
|
7FF59DF3A000
|
unkown image
|
page readonly
|
|
|
|
4F6A9FD000
|
stack
|
page read and write
|
|
|
|
19146002000
|
unkown
|
page read and write
|
|
|
|
7DF507340000
|
unkown image
|
page readonly
|
|
|
|
7DF5ABC22000
|
unkown image
|
page readonly
|
|
|
|
2C9FE39A000
|
unkown
|
page read and write
|
|
|
|
13C12678000
|
unkown
|
page read and write
|
|
|
|
7FF4F4142000
|
unkown image
|
page readonly
|
|
|
|
986E7E000
|
stack
|
page read and write
|
|
|
|
2C2D788A000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
7FF59DEC9000
|
unkown image
|
page readonly
|
|
|
|
2C9FEB30000
|
unkown
|
page read and write
|
|
|
|
2C9FE353000
|
unkown
|
page read and write
|
|
|
|
2C9FC5E0000
|
unkown image
|
page readonly
|
|
|
|
7FF554DBB000
|
unkown image
|
page readonly
|
|
|
|
7FF59DFB1000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
7FF4F403E000
|
unkown image
|
page readonly
|
|
|
|
7FF555922000
|
unkown image
|
page readonly
|
|
|
|
7DF563632000
|
unkown image
|
page readonly
|
|
|
|
13C1264B000
|
unkown
|
page read and write
|
|
|
|
7DF5AAFD0000
|
unkown image
|
page readonly
|
|
|
|
2C9FC857000
|
unkown
|
page read and write
|
|
|
|
7FF4F96B9000
|
unkown image
|
page readonly
|
|
|
|
2310FD02000
|
unkown
|
page read and write
|
|
|
|
7DF546CF2000
|
unkown image
|
page readonly
|
|
|
|
7FF59DFA4000
|
unkown image
|
page readonly
|
|
|
|
196A88D0000
|
unkown image
|
page readonly
|
|
|
|
7DF4A89B0000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
7DF5FDCA0000
|
unkown image
|
page readonly
|
|
|
|
231105BE000
|
unkown
|
page read and write
|
|
|
|
7DF5ABC22000
|
unkown image
|
page readonly
|
|
|
|
7FF5D9F5D000
|
unkown image
|
page readonly
|
|
|
|
7FF538F31000
|
unkown image
|
page readonly
|
|
|
|
2C9FE9C0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F3E8A000
|
unkown image
|
page readonly
|
|
|
|
7DF4A9AF0000
|
unkown image
|
page readonly
|
|
|
|
253145F0000
|
unkown image
|
page readonly
|
|
|
|
196A8466000
|
unkown
|
page read and write
|
|
|
|
7FF53C02D000
|
unkown image
|
page readonly
|
|
|
|
2C9FE3A8000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
DE408F8000
|
stack
|
page read and write
|
|
|
|
7FF538E4D000
|
unkown image
|
page readonly
|
|
|
|
7FF5DA022000
|
unkown image
|
page readonly
|
|
|
|
196A8429000
|
unkown
|
page read and write
|
|
|
|
2C9FC960000
|
unkown
|
page read and write
|
|
|
|
7FF59C961000
|
unkown image
|
page readonly
|
|
|
|
7FF5F0021000
|
unkown image
|
page readonly
|
|
|
|
17AD6DD0000
|
heap default
|
page read and write
|
|
|
|
7FF55508D000
|
unkown image
|
page readonly
|
|
|
|
23110569000
|
unkown
|
page read and write
|
|
|
|
7FF5EFE8C000
|
unkown image
|
page readonly
|
|
|
|
7FF5D9F77000
|
unkown image
|
page readonly
|
|
|
|
2C9FED0E000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
7FF59D287000
|
unkown image
|
page readonly
|
|
|
|
7FF59CD05000
|
unkown image
|
page readonly
|
|
|
|
7FF538DCE000
|
unkown image
|
page readonly
|
|
|
|
7FF5558FE000
|
unkown image
|
page readonly
|
|
|
|
7FF4F4083000
|
unkown image
|
page readonly
|
|
|
|
7FF5558C7000
|
unkown image
|
page readonly
|
|
|
|
23110594000
|
unkown
|
page read and write
|
|
|
|
2C2D7908000
|
unkown
|
page read and write
|
|
|
|
19146013000
|
unkown
|
page read and write
|
|
|
|
7FF4F93B2000
|
unkown image
|
page readonly
|
|
|
|
2C9FEA40000
|
unkown image
|
page readonly
|
|
|
|
2531483E000
|
unkown
|
page read and write
|
|
|
|
7FF53C02F000
|
unkown image
|
page readonly
|
|
|
|
2311057F000
|
unkown
|
page read and write
|
|
|
|
196A8445000
|
unkown
|
page read and write
|
|
|
|
17AD6BA0000
|
unkown image
|
page readonly
|
|
|
|
4F6ACFE000
|
stack
|
page read and write
|
|
|
|
2ADBC500000
|
unkown
|
page read and write
|
|
|
|
7FF5555CF000
|
unkown image
|
page readonly
|
|
|
|
23110560000
|
unkown
|
page read and write
|
|
|
|
2C2D7900000
|
unkown
|
page read and write
|
|
|
|
7FF59DE15000
|
unkown image
|
page readonly
|
|
|
|
231105C6000
|
unkown
|
page read and write
|
|
|
|
7FF4F905C000
|
unkown image
|
page readonly
|
|
|
|
DE40AFA000
|
stack
|
page read and write
|
|
|
|
7FF4F9561000
|
unkown image
|
page readonly
|
|
|
|
196A8460000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
7FF59C797000
|
unkown image
|
page readonly
|
|
|
|
DE4107D000
|
stack
|
page read and write
|
|
|
|
E0882FB000
|
stack
|
page read and write
|
|
|
|
7DF563630000
|
unkown image
|
page readonly
|
|
|
|
7DF501DE0000
|
unkown image
|
page readonly
|
|
|
|
19146750000
|
unkown
|
page read and write
|
|
|
|
2310FC5B000
|
unkown
|
page read and write
|
|
|
|
2C9FCD90000
|
unkown image
|
page readonly
|
|
|
|
19146802000
|
unkown
|
page read and write
|
|
|
|
1C29C050000
|
unkown image
|
page readonly
|
|
|
|
23110571000
|
unkown
|
page read and write
|
|
|
|
7FF5EFFF9000
|
unkown image
|
page readonly
|
|
|
|
7DF501DD2000
|
unkown image
|
page readonly
|
|
|
|
7FF59CC6B000
|
unkown image
|
page readonly
|
|
|
|
13C12713000
|
unkown
|
page read and write
|
|
|
|
2C9FC8FA000
|
unkown
|
page read and write
|
|
|
|
7FF59CDDE000
|
unkown image
|
page readonly
|
|
|
|
7FF538F8D000
|
unkown image
|
page readonly
|
|
|
|
7FF4F96B2000
|
unkown image
|
page readonly
|
|
|
|
2C9FC800000
|
unkown
|
page read and write
|
|
|
|
7FF5DA03A000
|
unkown image
|
page readonly
|
|
|
|
2C9FEA60000
|
unkown image
|
page readonly
|
|
|
|
196A8469000
|
unkown
|
page read and write
|
|
|
|
2C9FEA20000
|
unkown image
|
page readonly
|
|
|
|
2C9FE375000
|
unkown
|
page read and write
|
|
|
|
2C9FECF0000
|
unkown
|
page read and write
|
|
|
|
2C9FEAB1000
|
unkown
|
page read and write
|
|
|
|
2C9FED0B000
|
unkown
|
page read and write
|
|
|
|
7FF4F9229000
|
unkown image
|
page readonly
|
|
|
|
17AD6CD0000
|
unkown
|
page read and write
|
|
|
|
7DF5AAAE2000
|
unkown image
|
page readonly
|
|
|
|
2C9FEA90000
|
unkown image
|
page readonly
|
|
|
|
7FF4F9657000
|
unkown image
|
page readonly
|
|
|
|
196A8C02000
|
unkown
|
page read and write
|
|
|
|
7FF53907A000
|
unkown image
|
page readonly
|
|
|
|
7FF59CC50000
|
unkown image
|
page readonly
|
|
|
|
23110592000
|
unkown
|
page read and write
|
|
|
|
196A842D000
|
unkown
|
page read and write
|
|
|
|
7FF59DEAE000
|
unkown image
|
page readonly
|
|
|
|
2B7C87F000
|
stack
|
page read and write
|
|
|
|
1914602A000
|
unkown
|
page read and write
|
|
|
|
7FF5D9FCA000
|
unkown image
|
page readonly
|
|
|
|
7DF5AAAE0000
|
unkown image
|
page readonly
|
|
|
|
7FF59D273000
|
unkown image
|
page readonly
|
|
|
|
7FF554DF5000
|
unkown image
|
page readonly
|
|
|
|
9871F7000
|
stack
|
page read and write
|
|
|
|
7FF59DC92000
|
unkown image
|
page readonly
|
|
|
|
7FF59DD25000
|
unkown image
|
page readonly
|
|
|
|
2310FCC7000
|
unkown
|
page read and write
|
|
|
|
23110559000
|
unkown
|
page read and write
|
|
|
|
7DF5FDC80000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
2310FC4A000
|
unkown
|
page read and write
|
|
|
|
7FF59DEE7000
|
unkown image
|
page readonly
|
|
|
|
7FF538F8F000
|
unkown image
|
page readonly
|
|
|
|
7FF59DEEE000
|
unkown image
|
page readonly
|
|
|
|
23110A02000
|
unkown
|
page read and write
|
|
|
|
7FF5558DD000
|
unkown image
|
page readonly
|
|
|
|
E936B7D000
|
stack
|
page read and write
|
|
|
|
17AD6DF5000
|
unkown
|
page read and write
|
|
|
|
196A845F000
|
unkown
|
page read and write
|
|
|
|
231105B4000
|
unkown
|
page read and write
|
|
|
|
196A844C000
|
unkown
|
page read and write
|
|
|
|
7FF59CE71000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE70000
|
unkown
|
page read and write
|
|
|
|
7FF59CC8F000
|
unkown image
|
page readonly
|
|
|
|
7DF546CF0000
|
unkown image
|
page readonly
|
|
|
|
7DF507360000
|
unkown image
|
page readonly
|
|
|
|
13C12708000
|
unkown
|
page read and write
|
|
|
|
7FF4F92ED000
|
unkown image
|
page readonly
|
|
|
|
7FF4F95B1000
|
unkown image
|
page readonly
|
|
|
|
231105A6000
|
unkown
|
page read and write
|
|
|
|
7FF59DCBB000
|
unkown image
|
page readonly
|
|
|
|
7FF59CDCB000
|
unkown image
|
page readonly
|
|
|
|
23110580000
|
unkown
|
page read and write
|
|
|
|
1C29B980000
|
unkown image
|
page readonly
|
|
|
|
196A847E000
|
unkown
|
page read and write
|
|
|
|
7FF59CDA0000
|
unkown image
|
page readonly
|
|
|
|
2C9FED2A000
|
unkown
|
page read and write
|
|
|
|
196A8446000
|
unkown
|
page read and write
|
|
|
|
7FF53BEE1000
|
unkown image
|
page readonly
|
|
|
|
986B1B000
|
unkown
|
page read and write
|
|
|
|
7FF53C104000
|
unkown image
|
page readonly
|
|
|
|
7FF5559A2000
|
unkown image
|
page readonly
|
|
|
|
7FF4F955B000
|
unkown image
|
page readonly
|
|
|
|
2C9FC95B000
|
unkown
|
page read and write
|
|
|
|
2C2D7640000
|
unkown image
|
page readonly
|
|
|
|
2310FAB0000
|
unkown image
|
page read and write
|
|
|
|
7FF59CC31000
|
unkown image
|
page readonly
|
|
|
|
1C29C060000
|
unkown image
|
page readonly
|
|
|
|
23110280000
|
unkown
|
page read and write
|
|
|
|
19145F70000
|
unkown image
|
page readonly
|
|
|
|
2B7C6FE000
|
stack
|
page read and write
|
|
|
|
13C12613000
|
unkown
|
page read and write
|
|
|
|
2C9FE300000
|
unkown
|
page read and write
|
|
|
|
17AD6E0F000
|
unkown
|
page read and write
|
|
|
|
2ADBC47C000
|
unkown
|
page read and write
|
|
|
|
36F377F000
|
stack
|
page read and write
|
|
|
|
7FF4F4171000
|
unkown image
|
page readonly
|
|
|
|
2C9FE332000
|
unkown
|
page read and write
|
|
|
|
196A846D000
|
unkown
|
page read and write
|
|
|
|
E088A7E000
|
stack
|
page read and write
|
|
|
|
7FF4F963E000
|
unkown image
|
page readonly
|
|
|
|
7FF538FA7000
|
unkown image
|
page readonly
|
|
|
|
7FF4F947F000
|
unkown image
|
page readonly
|
|
|
|
7FF5D9F70000
|
unkown image
|
page readonly
|
|
|
|
7FF53C120000
|
unkown image
|
page readonly
|
|
|
|
7DF549D82000
|
unkown image
|
page readonly
|
|
|
|
7FF555560000
|
unkown image
|
page readonly
|
|
|
|
25314610000
|
unkown image
|
page readonly
|
|
|
|
7FF59D344000
|
unkown image
|
page readonly
|
|
|
|
2C9FC790000
|
unkown
|
page read and write
|
|
|
|
7DF563650000
|
unkown image
|
page readonly
|
|
|
|
2C9FC882000
|
unkown
|
page read and write
|
|
|
|
7DF5FDC82000
|
unkown image
|
page readonly
|
|
|
|
196A8380000
|
heap private
|
page read and write
|
|
|
|
7FF59CB84000
|
unkown image
|
page readonly
|
|
|
|
2C9FC7D0000
|
unkown
|
page read and write
|
|
|
|
7FF59DC45000
|
unkown image
|
page readonly
|
|
|
|
7FF5EFEA1000
|
unkown image
|
page readonly
|
|
|
|
13C12653000
|
unkown
|
page read and write
|
|
|
|
2C9FEE70000
|
unkown
|
page read and write
|
|
|
|
231105D8000
|
unkown
|
page read and write
|
|
|
|
2C9FC720000
|
unkown
|
page read and write
|
|
|
|
E93647E000
|
stack
|
page read and write
|
|
|
|
7DF501DF0000
|
unkown image
|
page readonly
|
|
|
|
7DF507350000
|
unkown image
|
page readonly
|
|
|
|
23110594000
|
unkown
|
page read and write
|
|
|
|
7FF59CE6A000
|
unkown image
|
page readonly
|
|
|
|
13C12600000
|
unkown
|
page read and write
|
|
|
|
2C9FC956000
|
unkown
|
page read and write
|
|
|
|
7FF5DA051000
|
unkown image
|
page readonly
|
|
|
|
7FF53C121000
|
unkown image
|
page readonly
|
|
|
|
7FF59DE9A000
|
unkown image
|
page readonly
|
|
|
|
7FF53C04E000
|
unkown image
|
page readonly
|
|
|
|
7FF4F96DE000
|
unkown image
|
page readonly
|
|
|
|
2C9FED14000
|
unkown
|
page read and write
|
|
|
|
2ADBC502000
|
unkown
|
page read and write
|
|
|
|
7FF59DDD2000
|
unkown image
|
page readonly
|
|
|
|
7FF53C09A000
|
unkown image
|
page readonly
|
|
|
|
7FF55591B000
|
unkown image
|
page readonly
|
|
|
|
7FF59DFC0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F9565000
|
unkown image
|
page readonly
|
|
|
|
2C9FC969000
|
unkown
|
page read and write
|
|
|
|
7FF5EFDD1000
|
unkown image
|
page readonly
|
|
|
|
2C984000000
|
unkown
|
page read and write
|
|
|
|
7FF59CD8D000
|
unkown image
|
page readonly
|
|
|
|
2C9FE398000
|
unkown
|
page read and write
|
|
|
|
17AD6CB0000
|
unkown
|
page read and write
|
|
|
|
7DF5ABC40000
|
unkown image
|
page readonly
|
|
|
|
7FF5D9F9B000
|
unkown image
|
page readonly
|
|
|
|
7FF59CDFD000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE30000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
2C9FECF0000
|
unkown
|
page read and write
|
|
|
|
7DF507360000
|
unkown image
|
page readonly
|
|
|
|
25315340000
|
unkown image
|
page write copy
|
|
|
|
2ADBC3F0000
|
unkown image
|
page readonly
|
|
|
|
2C9FEC41000
|
unkown
|
page read and write
|
|
|
|
7FF59D2BE000
|
unkown image
|
page readonly
|
|
|
|
7FF4F95E4000
|
unkown image
|
page readonly
|
|
|
|
2310FC57000
|
unkown
|
page read and write
|
|
|
|
7FF55571E000
|
unkown image
|
page readonly
|
|
|
|
23110190000
|
unkown image
|
page readonly
|
|
|
|
2310FC56000
|
unkown
|
page read and write
|
|
|
|
E935DFE000
|
stack
|
page read and write
|
|
|
|
2B7CB7F000
|
stack
|
page read and write
|
|
|
|
7FF59D332000
|
unkown image
|
page readonly
|
|
|
|
231105CB000
|
unkown
|
page read and write
|
|
|
|
23110596000
|
unkown
|
page read and write
|
|
|
|
2ADBC452000
|
unkown
|
page read and write
|
|
|
|
25314D80000
|
unkown image
|
page readonly
|
|
|
|
7FF5EFF97000
|
unkown image
|
page readonly
|
|
|
|
7FF59CE7A000
|
unkown image
|
page readonly
|
|
|
|
7FF555947000
|
unkown image
|
page readonly
|
|
|
|
231105B6000
|
unkown
|
page read and write
|
|
|
|
7FF555674000
|
unkown image
|
page readonly
|
|
|
|
7FF53C047000
|
unkown image
|
page readonly
|
|
|
|
7FF4F96E1000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE70000
|
unkown
|
page read and write
|
|
|
|
196A8444000
|
unkown
|
page read and write
|
|
|
|
7FF53BEE7000
|
unkown image
|
page readonly
|
|
|
|
2ADBCC02000
|
unkown
|
page read and write
|
|
|
|
E43F477000
|
stack
|
page read and write
|
|
|
|
7FF538F77000
|
unkown image
|
page readonly
|
|
|
|
7FF5559B4000
|
unkown image
|
page readonly
|
|
|
|
231105A6000
|
unkown
|
page read and write
|
|
|
|
5D2D7B000
|
stack
|
page read and write
|
|
|
|
7DF5AAFD2000
|
unkown image
|
page readonly
|
|
|
|
7FF59DDAB000
|
unkown image
|
page readonly
|
|
|
|
E43F67F000
|
stack
|
page read and write
|
|
|
|
7FF5D9F66000
|
unkown image
|
page readonly
|
|
|
|
2C9FE34E000
|
unkown
|
page read and write
|
|
|
|
7FF53C097000
|
unkown image
|
page readonly
|
|
|
|
7FF59CC4D000
|
unkown image
|
page readonly
|
|
|
|
7FF53C033000
|
unkown image
|
page readonly
|
|
|
|
2C2D7829000
|
unkown
|
page read and write
|
|
|
|
7FF59DEF7000
|
unkown image
|
page readonly
|
|
|
|
7DF563640000
|
unkown image
|
page readonly
|
|
|
|
E93697B000
|
stack
|
page read and write
|
|
|
|
7FF59DF92000
|
unkown image
|
page readonly
|
|
|
|
2C980058000
|
unkown
|
page read and write
|
|
|
|
E43F07E000
|
stack
|
page read and write
|
|
|
|
23110573000
|
unkown
|
page read and write
|
|
|
|
7FF5D9F63000
|
unkown image
|
page readonly
|
|
|
|
2ADBC2B0000
|
heap private
|
page read and write
|
|
|
|
2C2D7850000
|
unkown
|
page read and write
|
|
|
|
7DF501DD0000
|
unkown image
|
page readonly
|
|
|
|
2ADBC2F0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F94F2000
|
unkown image
|
page readonly
|
|
|
|
7DF507340000
|
unkown image
|
page readonly
|
|
|
|
2C9FED05000
|
unkown
|
page read and write
|
|
|
|
2C9FC8FD000
|
unkown
|
page read and write
|
|
|
|
7FF5558F3000
|
unkown image
|
page readonly
|
|
|
|
7FF554DF3000
|
unkown image
|
page readonly
|
|
|
|
7FF4F409E000
|
unkown image
|
page readonly
|
|
|
|
2310FE00000
|
unkown image
|
page readonly
|
|
|
|
7DF447C50000
|
unkown image
|
page readonly
|
|
|
|
E8C607B000
|
stack
|
page read and write
|
|
|
|
196A83E0000
|
heap default
|
page read and write
|
|
|
|
7FF4F3590000
|
unkown image
|
page readonly
|
|
|
|
2ADBC310000
|
heap default
|
page read and write
|
|
|
|
17AD6DFF000
|
unkown
|
page read and write
|
|
|
|
7DF5E7CC2000
|
unkown image
|
page readonly
|
|
|
|
7FF5D9F7E000
|
unkown image
|
page readonly
|
|
|
|
23110596000
|
unkown
|
page read and write
|
|
|
|
7DF501DE2000
|
unkown image
|
page readonly
|
|
|
|
7FF59DE2C000
|
unkown image
|
page readonly
|
|
|
|
2C2D7640000
|
unkown image
|
page readonly
|
|
|
|
196A83C0000
|
unkown image
|
page readonly
|
|
|
|
2C9FC590000
|
unkown image
|
page read and write
|
|
|
|
7FF5559BA000
|
unkown image
|
page readonly
|
|
|
|
5D327E000
|
stack
|
page read and write
|
|
|
|
23110340000
|
unkown
|
page read and write
|
|
|
|
2C9FEC48000
|
unkown
|
page read and write
|
|
|
|
7FF538FA0000
|
unkown image
|
page readonly
|
|
|
|
1C29BED0000
|
unkown image
|
page readonly
|
|
|
|
2C9FCC00000
|
unkown image
|
page readonly
|
|
|
|
7DF546CF2000
|
unkown image
|
page readonly
|
|
|
|
7FF539081000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE70000
|
unkown
|
page read and write
|
|
|
|
7FF5EFE0B000
|
unkown image
|
page readonly
|
|
|
|
7FF5EFF40000
|
unkown image
|
page readonly
|
|
|
|
1C29BA40000
|
unkown
|
page read and write
|
|
|
|
7FF5EFF9D000
|
unkown image
|
page readonly
|
|
|
|
2311051A000
|
unkown
|
page read and write
|
|
|
|
5D317F000
|
stack
|
page read and write
|
|
|
|
23110B63000
|
unkown
|
page read and write
|
|
|
|
7DF507352000
|
unkown image
|
page readonly
|
|
|
|
7FF5EFDED000
|
unkown image
|
page readonly
|
|
|
|
7DF549D80000
|
unkown image
|
page readonly
|
|
|
|
7DF549D80000
|
unkown image
|
page readonly
|
|
|
|
13C12684000
|
unkown
|
page read and write
|
|
|
|
196A847A000
|
unkown
|
page read and write
|
|
|
|
7FF538840000
|
unkown image
|
page readonly
|
|
|
|
2C980047000
|
unkown
|
page read and write
|
|
|
|
2C9FED20000
|
unkown
|
page read and write
|
|
|
|
7DF5E7CC2000
|
unkown image
|
page readonly
|
|
|
|
7FF4F4090000
|
unkown image
|
page readonly
|
|
|
|
7DF549D90000
|
unkown image
|
page readonly
|
|
|
|
196A843A000
|
unkown
|
page read and write
|
|
|
|
7FF539071000
|
unkown image
|
page readonly
|
|
|
|
25314730000
|
unkown image
|
page readonly
|
|
|
|
E43F37B000
|
stack
|
page read and write
|
|
|
|
7FF4F8F0D000
|
unkown image
|
page readonly
|
|
|
|
7FF59DF0B000
|
unkown image
|
page readonly
|
|
|
|
98707B000
|
stack
|
page read and write
|
|
|
|
231105B6000
|
unkown
|
page read and write
|
|
|
|
7FF59D2B3000
|
unkown image
|
page readonly
|
|
|
|
23110A02000
|
unkown
|
page read and write
|
|
|
|
2C9FED08000
|
unkown
|
page read and write
|
|
|
|
2ADBC402000
|
unkown
|
page read and write
|
|
|
|
7FF539064000
|
unkown image
|
page readonly
|
|
|
|
1C29B970000
|
unkown image
|
page readonly
|
|
|
|
1C29B9D0000
|
unkown
|
page read and write
|
|
|
|
4F6A8FE000
|
stack
|
page read and write
|
|
|
|
7FF53BF0B000
|
unkown image
|
page readonly
|
|
|
|
7FF5EFB07000
|
unkown image
|
page readonly
|
|
|
|
E0885FC000
|
stack
|
page read and write
|
|
|
|
17AD6DF0000
|
unkown
|
page read and write
|
|
|
|
E935FF9000
|
stack
|
page read and write
|
|
|
|
19146054000
|
unkown
|
page read and write
|
|
|
|
2C980000000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
19145F70000
|
unkown image
|
page readonly
|
|
|
|
7FF555593000
|
unkown image
|
page readonly
|
|
|
|
7FF53BF9C000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
7E008B57C000
|
unkown image
|
page readonly
|
|
|
|
2C9FC82A000
|
unkown
|
page read and write
|
|
|
|
7DF546CF0000
|
unkown image
|
page readonly
|
|
|
|
2310FB20000
|
heap default
|
page read and write
|
|
|
|
7FF59DEE3000
|
unkown image
|
page readonly
|
|
|
|
196A8441000
|
unkown
|
page read and write
|
|
|
|
2310FCE1000
|
unkown
|
page read and write
|
|
|
|
2C2D7770000
|
unkown image
|
page readonly
|
|
|
|
231105A5000
|
unkown
|
page read and write
|
|
|
|
7FF4F92D7000
|
unkown image
|
page readonly
|
|
|
|
7FF5DA041000
|
unkown image
|
page readonly
|
|
|
|
2C9FC8A5000
|
unkown
|
page read and write
|
|
|
|
1C29BA13000
|
unkown
|
page read and write
|
|
|
|
2B7C97E000
|
stack
|
page read and write
|
|
|
|
253145E0000
|
heap private
|
page read and write
|
|
|
|
7DF5AAB00000
|
unkown image
|
page readonly
|
|
|
|
9870FE000
|
stack
|
page read and write
|
|
|
|
1914604C000
|
unkown
|
page read and write
|
|
|
|
7DF563642000
|
unkown image
|
page readonly
|
|
|
|
2310FCB3000
|
unkown
|
page read and write
|
|
|
|
253148C9000
|
unkown
|
page read and write
|
|
|
|
1C29BA58000
|
unkown
|
page read and write
|
|
|
|
2310FC49000
|
unkown
|
page read and write
|
|
|
|
7FF4F95EF000
|
unkown image
|
page readonly
|
|
|
|
2310FAF0000
|
unkown image
|
page readonly
|
|
|
|
7FF5DA04A000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE70000
|
unkown
|
page read and write
|
|
|
|
23110B63000
|
unkown
|
page read and write
|
|
|
|
23110402000
|
unkown
|
page read and write
|
|
|
|
17AD6D10000
|
unkown image
|
page readonly
|
|
|
|
5D277B000
|
unkown
|
page read and write
|
|
|
|
DE40F7A000
|
stack
|
page read and write
|
|
|
|
2C9FEE70000
|
unkown
|
page read and write
|
|
|
|
7DF563642000
|
unkown image
|
page readonly
|
|
|
|
7FF59DECD000
|
unkown image
|
page readonly
|
|
|
|
7DF4A8E90000
|
unkown image
|
page readonly
|
|
|
|
DE40BFE000
|
stack
|
page read and write
|
|
|
|
7FF59DED3000
|
unkown image
|
page readonly
|
|
|
|
E43F57F000
|
stack
|
page read and write
|
|
|
|
7FF4F962B000
|
unkown image
|
page readonly
|
|
|
|
7FF5EFF57000
|
unkown image
|
page readonly
|
|
|
|
7FF555537000
|
unkown image
|
page readonly
|
|
|
|
7FF59DE6F000
|
unkown image
|
page readonly
|
|
|
|
7FF5551E6000
|
unkown image
|
page readonly
|
|
|
|
7FF59CA2A000
|
unkown image
|
page readonly
|
|
|
|
7FF5388AD000
|
unkown image
|
page readonly
|
|
|
|
7DF546D00000
|
unkown image
|
page readonly
|
|
|
|
2ADBC2C0000
|
unkown image
|
page readonly
|
|
|
|
7FF554E22000
|
unkown image
|
page readonly
|
|
|
|
7FF53C02A000
|
unkown image
|
page readonly
|
|
|
|
2310FC52000
|
unkown
|
page read and write
|
|
|
|
1C29C202000
|
unkown
|
page read and write
|
|
|
|
4F6A2FB000
|
unkown
|
page read and write
|
|
|
|
7FF59CDFA000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
2C2D7854000
|
unkown
|
page read and write
|
|
|
|
7FF5EFF33000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
2C9FC8C9000
|
unkown
|
page read and write
|
|
|
|
7FF555539000
|
unkown image
|
page readonly
|
|
|
|
2C9FC813000
|
unkown
|
page read and write
|
|
|
|
2C9FC5D0000
|
unkown image
|
page readonly
|
|
|
|
7DF5ABC20000
|
unkown image
|
page readonly
|
|
|
|
7FF59DD71000
|
unkown image
|
page readonly
|
|
|
|
2C2D7820000
|
unkown
|
page read and write
|
|
|
|
7DF5FDC90000
|
unkown image
|
page readonly
|
|
|
|
7FF4F4171000
|
unkown image
|
page readonly
|
|
|
|
7FF53C00E000
|
unkown image
|
page readonly
|
|
|
|
196A8439000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
1C29BB02000
|
unkown
|
page read and write
|
|
|
|
7FF59D113000
|
unkown image
|
page readonly
|
|
|
|
25314620000
|
unkown image
|
page readonly
|
|
|
|
7FF59D257000
|
unkown image
|
page readonly
|
|
|
|
7FF53C043000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
7FF55574B000
|
unkown image
|
page readonly
|
|
|
|
7FF59DD90000
|
unkown image
|
page readonly
|
|
|
|
2311055A000
|
unkown
|
page read and write
|
|
|
|
196A8A50000
|
unkown image
|
page readonly
|
|
|
|
7FF5551DE000
|
unkown image
|
page readonly
|
|
|
|
2C9FEB20000
|
unkown
|
page read and write
|
|
|
|
7FF59DAA7000
|
unkown image
|
page readonly
|
|
|
|
2C9FEF50000
|
unkown
|
page read and write
|
|
|
|
2C98001C000
|
unkown
|
page read and write
|
|
|
|
2C9FEE70000
|
unkown
|
page read and write
|
|
|
|
7FF539059000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE70000
|
unkown
|
page read and write
|
|
|
|
7FF59CB05000
|
unkown image
|
page readonly
|
|
|
|
DE409F7000
|
stack
|
page read and write
|
|
|
|
2C9FC7D0000
|
unkown
|
page read and write
|
|
|
|
2311057C000
|
unkown
|
page read and write
|
|
|
|
DE4038E000
|
stack
|
page read and write
|
|
|
|
7DF546CE2000
|
unkown image
|
page readonly
|
|
|
|
23110A02000
|
unkown
|
page read and write
|
|
|
|
7FF59DDD7000
|
unkown image
|
page readonly
|
|
|
|
7FF4F407F000
|
unkown image
|
page readonly
|
|
|
|
7FF4F40C3000
|
unkown image
|
page readonly
|
|
|
|
17AD6DE6000
|
unkown
|
page read and write
|
|
|
|
7FF538E24000
|
unkown image
|
page readonly
|
|
|
|
DE407FE000
|
stack
|
page read and write
|
|
|
|
E08877C000
|
stack
|
page read and write
|
|
|
|
5D347E000
|
stack
|
page read and write
|
|
|
|
7FF53906A000
|
unkown image
|
page readonly
|
|
|
|
7DF5AAAF0000
|
unkown image
|
page readonly
|
|
|
|
36F37F9000
|
stack
|
page read and write
|
|
|
|
2B7C3EB000
|
unkown
|
page read and write
|
|
|
|
2ADBC400000
|
unkown
|
page read and write
|
|
|
|
7FF5D9FAE000
|
unkown image
|
page readonly
|
|
|
|
196A83F0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F9632000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
2310FC5A000
|
unkown
|
page read and write
|
|
|
|
7FF5D9D4B000
|
unkown image
|
page readonly
|
|
|
|
2310FC3C000
|
unkown
|
page read and write
|
|
|
|
7DF549D90000
|
unkown image
|
page readonly
|
|
|
|
DE4067E000
|
stack
|
page read and write
|
|
|
|
23110593000
|
unkown
|
page read and write
|
|
|
|
2C9FEE70000
|
unkown
|
page read and write
|
|
|
|
23110340000
|
unkown
|
page read and write
|
|
|
|
2C9FC750000
|
unkown
|
page read and write
|
|
|
|
7DF5FDC92000
|
unkown image
|
page readonly
|
|
|
|
7DF5AAFC2000
|
unkown image
|
page readonly
|
|
|
|
7DF5AAAF0000
|
unkown image
|
page readonly
|
|
|
|
2C9FED00000
|
unkown
|
page read and write
|
|
|
|
7DF546CE0000
|
unkown image
|
page readonly
|
|
|
|
7FF5556A2000
|
unkown image
|
page readonly
|
|
|
|
7DF507350000
|
unkown image
|
page readonly
|
|
|
|
2310FCF8000
|
unkown
|
page read and write
|
|
|
|
23110590000
|
unkown
|
page read and write
|
|
|
|
17AD6E0F000
|
unkown
|
page read and write
|
|
|
|
E935B7D000
|
stack
|
page read and write
|
|
|
|
7FF4F95CE000
|
unkown image
|
page readonly
|
|
|
|
7FF4F3E30000
|
unkown image
|
page readonly
|
|
|
|
2ADBC413000
|
unkown
|
page read and write
|
|
|
|
17AD6D90000
|
heap private
|
page read and write
|
|
|
|
7DF4FBB50000
|
unkown image
|
page readonly
|
|
|
|
7FF5EFF6B000
|
unkown image
|
page readonly
|
|
|
|
5D2F7D000
|
stack
|
page read and write
|
|
|
|
2C9FC8B8000
|
unkown
|
page read and write
|
|
|
|
2310FC00000
|
unkown
|
page read and write
|
|
|
|
7FF5558E3000
|
unkown image
|
page readonly
|
|
|
|
23110B02000
|
unkown
|
page read and write
|
|
|
|
2310FD13000
|
unkown
|
page read and write
|
|
|
|
13C124D0000
|
unkown image
|
page readonly
|
|
|
|
13C12666000
|
unkown
|
page read and write
|
|
|
|
7FF59D2D7000
|
unkown image
|
page readonly
|
|
|
|
231105C7000
|
unkown
|
page read and write
|
|
|
|
7FF5559D1000
|
unkown image
|
page readonly
|
|
|
|
36F38FF000
|
stack
|
page read and write
|
|
|
|
19145FC0000
|
heap default
|
page read and write
|
|
|
|
7FF538F93000
|
unkown image
|
page readonly
|
|
|
|
7FF5559C1000
|
unkown image
|
page readonly
|
|
|
|
E08887C000
|
stack
|
page read and write
|
|
|
|
7FF4F95ED000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
19146024000
|
unkown
|
page read and write
|
|
|
|
2311055E000
|
unkown
|
page read and write
|
|
|
|
7DF5AAFE0000
|
unkown image
|
page readonly
|
|
|
|
DE40D7B000
|
stack
|
page read and write
|
|
|
|
7FF59DE3B000
|
unkown image
|
page readonly
|
|
|
|
196A8440000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
231105A6000
|
unkown
|
page read and write
|
|
|
|
7FF59D34A000
|
unkown image
|
page readonly
|
|
|
|
E9360FC000
|
stack
|
page read and write
|
|
|
|
7FF5557E2000
|
unkown image
|
page readonly
|
|
|
|
2ADBC980000
|
unkown image
|
page readonly
|
|
|
|
7FF555697000
|
unkown image
|
page readonly
|
|
|
|
E9363FE000
|
stack
|
page read and write
|
|
|
|
231102B0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F960E000
|
unkown image
|
page readonly
|
|
|
|
25314F00000
|
unkown
|
page read and write
|
|
|
|
2C9FC92E000
|
unkown
|
page read and write
|
|
|
|
7FF59CE52000
|
unkown image
|
page readonly
|
|
|
|
7FF55565D000
|
unkown image
|
page readonly
|
|
|
|
231105C6000
|
unkown
|
page read and write
|
|
|
|
7FF5551F3000
|
unkown image
|
page readonly
|
|
|
|
7FF59DB6A000
|
unkown image
|
page readonly
|
|
|
|
7FF4F4165000
|
unkown image
|
page readonly
|
|
|
|
E9368FE000
|
stack
|
page read and write
|
|
|
|
23110571000
|
unkown
|
page read and write
|
|
|
|
2C2D7660000
|
unkown image
|
page readonly
|
|
|
|
2310FC9E000
|
unkown
|
page read and write
|
|
|
|
231105D4000
|
unkown
|
page read and write
|
|
|
|
2310FD08000
|
unkown
|
page read and write
|
|
|
|
23110500000
|
unkown
|
page read and write
|
|
|
|
231105BE000
|
unkown
|
page read and write
|
|
|
|
2C9FEE70000
|
unkown
|
page read and write
|
|
|
|
7FF59D28E000
|
unkown image
|
page readonly
|
|
|
|
196A846B000
|
unkown
|
page read and write
|
|
|
|
7FF59DB94000
|
unkown image
|
page readonly
|
|
|
|
7FF538FDE000
|
unkown image
|
page readonly
|
|
|
|
7FF59DB97000
|
unkown image
|
page readonly
|
|
|
|
2310FCE3000
|
unkown
|
page read and write
|
|
|
|
13C12500000
|
unkown image
|
page readonly
|
|
|
|
23110598000
|
unkown
|
page read and write
|
|
|
|
23110593000
|
unkown
|
page read and write
|
|
|
|
2C9FC858000
|
unkown
|
page read and write
|
|
|
|
7FF538BD3000
|
unkown image
|
page readonly
|
|
|
|
7FF5EFCA9000
|
unkown image
|
page readonly
|
|
|
|
2311057D000
|
unkown
|
page read and write
|
|
|
|
7FF59DD1F000
|
unkown image
|
page readonly
|
|
|
|
17AD6D95000
|
heap private
|
page read and write
|
|
|
|
7DF501DE0000
|
unkown image
|
page readonly
|
|
|
|
7DF5AAFC2000
|
unkown image
|
page readonly
|
|
|
|
7FF5F0011000
|
unkown image
|
page readonly
|
|
|
|
23110340000
|
unkown
|
page read and write
|
|
|
|
4F6AB7D000
|
stack
|
page read and write
|
|
|
|
25314800000
|
unkown
|
page read and write
|
|
|
|
7FF4F94F7000
|
unkown image
|
page readonly
|
|
|
|
7FF59DE71000
|
unkown image
|
page readonly
|
|
|
|
7FF59DF37000
|
unkown image
|
page readonly
|
|
|
|
E93575C000
|
unkown
|
page read and write
|
|
|
|
7FF59DF1E000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
13C1264E000
|
unkown
|
page read and write
|
|
|
|
13C1266E000
|
unkown
|
page read and write
|
|
|
|
25314871000
|
unkown
|
page read and write
|
|
|
|
196A8390000
|
unkown image
|
page readonly
|
|
|
|
7FF59DB64000
|
unkown image
|
page readonly
|
|
|
|
7FF59D2AB000
|
unkown image
|
page readonly
|
|
|
|
E9365FD000
|
stack
|
page read and write
|
|
|
|
7DF5AAB00000
|
unkown image
|
page readonly
|
|
|
|
7FF4F4079000
|
unkown image
|
page readonly
|
|
|
|
7FF4F943F000
|
unkown image
|
page readonly
|
|
|
|
13C12702000
|
unkown
|
page read and write
|
|
|
|
7FF538FFA000
|
unkown image
|
page readonly
|
|
|
|
7FF5558D9000
|
unkown image
|
page readonly
|
|
|
|
2C9FC842000
|
unkown
|
page read and write
|
|
|
|
2310FC50000
|
unkown
|
page read and write
|
|
|
|
7DF5ABC30000
|
unkown image
|
page readonly
|
|
|
|
2310FC29000
|
unkown
|
page read and write
|
|
|
|
2C2D7880000
|
unkown
|
page read and write
|
|
|
|
7FF5558F0000
|
unkown image
|
page readonly
|
|
|
|
7FF59CE81000
|
unkown image
|
page readonly
|
|
|
|
13C12A10000
|
unkown image
|
page readonly
|
|
|
|
196A8431000
|
unkown
|
page read and write
|
|
|
|
2C9FEB40000
|
unkown
|
page read and write
|
|
|
|
36F36FF000
|
stack
|
page read and write
|
|
|
|
2C9FEA00000
|
unkown image
|
page readonly
|
|
|
|
2C9FC89E000
|
unkown
|
page read and write
|
|
|
|
2310FC58000
|
unkown
|
page read and write
|
|
|
|
253148C3000
|
unkown
|
page read and write
|
|
|
|
2C9FED24000
|
unkown
|
page read and write
|
|
|
|
23110A02000
|
unkown
|
page read and write
|
|
|
|
2C980023000
|
unkown
|
page read and write
|
|
|
|
7FF5558DF000
|
unkown image
|
page readonly
|
|
|
|
7FF5EFBCA000
|
unkown image
|
page readonly
|
|
|
|
7FF538FFD000
|
unkown image
|
page readonly
|
|
|
|
13C12C80000
|
unkown
|
page read and write
|
|
|
|
2C9FC858000
|
unkown
|
page read and write
|
|
|
|
7FF53BE04000
|
unkown image
|
page readonly
|
|
|
|
19146660000
|
unkown image
|
page readonly
|
|
|
|
5D2B7B000
|
stack
|
page read and write
|
|
|
|
2ADBC513000
|
unkown
|
page read and write
|
|
|
|
7FF5EFDA6000
|
unkown image
|
page readonly
|
|
|
|
7FF538F63000
|
unkown image
|
page readonly
|
|
|
|
7FF55584C000
|
unkown image
|
page readonly
|
|
|
|
1C29B940000
|
heap private
|
page read and write
|
|
|
|
7FF4F407D000
|
unkown image
|
page readonly
|
|
|
|
23110350000
|
unkown image
|
page read and write
|
|
|
|
7FF555783000
|
unkown image
|
page readonly
|
|
|
|
7DF5AAFE0000
|
unkown image
|
page readonly
|
|
|
|
13C1263C000
|
unkown
|
page read and write
|
|
|
|
7DF5FDC90000
|
unkown image
|
page readonly
|
|
|
|
7FF4F9466000
|
unkown image
|
page readonly
|
|
|
|
7DF5AAFC0000
|
unkown image
|
page readonly
|
|
|
|
7FF5558BB000
|
unkown image
|
page readonly
|
|
|
|
7FF59CC06000
|
unkown image
|
page readonly
|
|
|
|
2310FC4F000
|
unkown
|
page read and write
|
|
|
|
196A843D000
|
unkown
|
page read and write
|
|
|
|
7FF538FD8000
|
unkown image
|
page readonly
|
|
|
|
7FF53BEC4000
|
unkown image
|
page readonly
|
|
|
|
7FF59DF13000
|
unkown image
|
page readonly
|
|
|
|
2C2D783C000
|
unkown
|
page read and write
|
|
|
|
19146750000
|
unkown
|
page read and write
|
|
|
|
196A8502000
|
unkown
|
page read and write
|
|
|
|
7FF555209000
|
unkown image
|
page readonly
|
|
|
|
7FF59DBBC000
|
unkown image
|
page readonly
|
|
|
|
23110010000
|
unkown image
|
page readonly
|
|
|
|
7DF563640000
|
unkown image
|
page readonly
|
|
|
|
1C29B950000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE70000
|
unkown
|
page read and write
|
|
|
|
7FF59D361000
|
unkown image
|
page readonly
|
|
|
|
2B7CA7E000
|
stack
|
page read and write
|
|
|
|
2C980014000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
2ADBC477000
|
unkown
|
page read and write
|
|
|
|
7FF5EFF47000
|
unkown image
|
page readonly
|
|
|
|
2C98002B000
|
unkown
|
page read and write
|
|
|
|
2C9FEE70000
|
unkown
|
page read and write
|
|
|
|
2C980018000
|
unkown
|
page read and write
|
|
|
|
1C29B930000
|
unkown image
|
page read and write
|
|
|
|
7DF563630000
|
unkown image
|
page readonly
|
|
|
|
7FF59CD01000
|
unkown image
|
page readonly
|
|
|
|
2C9FED27000
|
unkown
|
page read and write
|
|
|
|
2C9FEE80000
|
unkown
|
page read and write
|
|
|
|
7FF5EFF7E000
|
unkown image
|
page readonly
|
|
|
|
7DF5FDC92000
|
unkown image
|
page readonly
|
|
|
|
196A847B000
|
unkown
|
page read and write
|
|
|
|
7FF5557E7000
|
unkown image
|
page readonly
|
|
|
|
196A8413000
|
unkown
|
page read and write
|
|
|
|
2C9FE37B000
|
unkown
|
page read and write
|
|
|
|
7FF59DD79000
|
unkown image
|
page readonly
|
|
|
|
19146000000
|
unkown
|
page read and write
|
|
|
|
7FF538F1E000
|
unkown image
|
page readonly
|
|
|
|
253148E8000
|
unkown
|
page read and write
|
|
|
|
231105A6000
|
unkown
|
page read and write
|
|
|
|
7FF59DFAA000
|
unkown image
|
page readonly
|
|
|
|
7FF4F40CE000
|
unkown image
|
page readonly
|
|
|
|
25314A00000
|
unkown image
|
page readonly
|
|
|
|
2C9FEE70000
|
unkown
|
page read and write
|
|
|
|
7FF4F40BB000
|
unkown image
|
page readonly
|
|
|
|
17AD6DEF000
|
unkown
|
page read and write
|
|
|
|
2C9FC7D0000
|
unkown
|
page read and write
|
|
|
|
1C29B950000
|
unkown image
|
page readonly
|
|
|
|
E43EDDC000
|
unkown
|
page read and write
|
|
|
|
25314E02000
|
unkown
|
page read and write
|
|
|
|
E93687E000
|
stack
|
page read and write
|
|
|
|
23110565000
|
unkown
|
page read and write
|
|
|
|
19145FA0000
|
unkown image
|
page readonly
|
|
|
|
7FF55592E000
|
unkown image
|
page readonly
|
|
|
|
7FF5EFF4E000
|
unkown image
|
page readonly
|
|
|
|
1C29B9B0000
|
unkown image
|
page readonly
|
|
|
|
2310FC13000
|
unkown
|
page read and write
|
|
|
|
7DF501DE2000
|
unkown image
|
page readonly
|
|
|
|
E8C617F000
|
stack
|
page read and write
|
|
|
|
E8C627E000
|
stack
|
page read and write
|
|
|
|
4F6A77E000
|
stack
|
page read and write
|
|
|
|
9873FF000
|
stack
|
page read and write
|
|
|
|
19145F60000
|
heap private
|
page read and write
|
|
|
|
7FF4F95D7000
|
unkown image
|
page readonly
|
|
|
|
7FF5EFEA5000
|
unkown image
|
page readonly
|
|
|
|
7FF538D76000
|
unkown image
|
page readonly
|
|
|
|
7FF5F0021000
|
unkown image
|
page readonly
|
|
|
|
23110593000
|
unkown
|
page read and write
|
|
|
|
7FF53C07E000
|
unkown image
|
page readonly
|
|
|
|
2311051C000
|
unkown
|
page read and write
|
|
|
|
2C9FCD80000
|
unkown image
|
page readonly
|
|
There are 1201 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://backroomchat.com/API247247/authorize_client_id:s68b9xil-fm84-jn8u-zve0-prgv6s1e8fax_yuvn06f5mwkl1ei3dozhxj7pgrc2b9q4at8s7q3vmhpj68f9xwg2uzl1nsokie0dbrya4tc59e85rlnjxu0i3c1vbg24hd6zftqwyokmps7a?data=YmFkYXJjQG1hc2hyZXEuY29t
|
|