Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3
|
data
|
dropped
|
 |
|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\2a096b6a-269f-4b65-b1f5-b90f17a76c02.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\4029802f-3569-4731-b210-21aeda1d7056.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\425368ce-a12a-4d03-a14c-5be2f4261674.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\6e9d0426-fdde-462f-bcdb-fd0c0ef76385.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\724584d8-a31c-4231-9122-0d2f69c9940f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\8bcd44d8-5956-48dc-a5a5-506d6f21f418.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\08543760-f032-4a14-a3cc-4ac54048a886.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1a3499ae-1bbd-4f21-b859-739e719edae8.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2856527d-71c3-4d49-bf6c-6fbbef557354.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\33df27c9-2246-4fcc-bf12-c884d84f0d85.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3b33810f-fb24-49d5-bd55-fb787c83eb54.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\479a0f98-008b-45cc-bf85-9852a08a58e2.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\62cb999f-2135-421f-957e-f9760131d088.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8f17fce8-f8db-435f-9e0b-f82f3ff1da81.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old.. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.olddl (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabsnd (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State<- (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State@. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences) (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\4aa24dfb-8bf6-4c72-bd10-291c87b7d639.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.oldad
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
State.. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old.
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.old/i
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\a578556e-a15f-402f-8833-10b1e9750bd4.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.oldx3
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\da52e6a0-f2c4-4dae-b124-cbd8f311be31.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\dd0ae198-deef-4acf-8fd9-266f30aa65d5.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f3f5b40e-a377-4d90-8547-4de18ca4314d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.oldil (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local Stateml (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache\e (copy)
|
SysEx File -
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\27\scoped_dir2876_1506019999\Ruleset
Data
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\b08df91b-1d5a-4454-a1be-9624bfc12c1f.tmp
|
SysEx File -
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\b643886a-0185-4f92-81e9-138b2876b0e2.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\d8599db7-9d26-44d0-a063-554f36b920a6.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\ff55097e-ec88-4699-832c-03ad06729c1d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\14e63765-4224-4f9b-9e75-e52998357276.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\19f6efde-d62b-4c48-b60f-2af5b4b97758.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_1642684161\Filtering Rules
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_1642684161\LICENSE.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_1642684161\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_1642684161\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_1642684161\manifest.json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_825316695\LICENSE
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_825316695\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_825316695\crl-set
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_825316695\manifest.fingerprint
|
ASCII text, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_825316695\manifest.json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_85347879\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_85347879\_platform_specific\x86_64\pnacl_public_pnacl_json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_85347879\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_85347879\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_85347879\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_85347879\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=7511538a3a6a0b862c772eace49075ed1bbe2377,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_85347879\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_85347879\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_85347879\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_85347879\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_85347879\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=309d6d3d463e6b1b0690f39eb226b1e4c469b2ce,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_85347879\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_sz_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=4b15de4ab227d5e46213978b8518d53c53ce1db9,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_85347879\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2876_85347879\manifest.json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\adc123a3-c9f1-4fb4-894a-db1dd5b616be.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\f6cba72e-089d-45cb-8dfc-dc8f9424bcca.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\19f6efde-d62b-4c48-b60f-2af5b4b97758.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_1809250299\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\iw\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\angular.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\background_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\cast_sender.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\feedback.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\feedback.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\feedback_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\material_css_min.css
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\mirroring_cast_streaming.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\mirroring_common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\mirroring_hangouts.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\CRX_INSTALL\mirroring_webrtc.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir2876_875983578\f6cba72e-089d-45cb-8dfc-dc8f9424bcca.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
There are 251 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "https://linkprotect.cudasvc.com/url?a=https%3a%2f%2fayaanhomes.com.au%2fApproved%2f&c=E,1,sOUOgCqks1z0ambp9gvZ1ziebXnBNxvPGsYhwXBewppNY4wVm86Dc0h0V8oxfAC_HBV9i2eThZKJNV18728pVuUbad9V2QhM-0KomMdk4BfHJt5p-neG1mlM4A,,&typo=1
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1612,16007283316596176296,15755431473824682259,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1932 /prefetch:8
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://linkprotect.cudasvc.com/url?a=https%3a%2f%2fayaanhomes.com.au%2fApproved%2f&c=E,1,sOUOgCqks1z0ambp9gvZ1ziebXnBNxvPGsYhwXBewppNY4wVm86Dc0h0V8oxfAC_HBV9i2eThZKJNV18728pVuUbad9V2QhM-0KomMdk4BfHJt5p-neG1mlM4A,,&typo=1
|
|
||
|
https://ayaanhomes.com.au/Approved/
|
|
||
|
https://ayaanhomes.com.au/Approved/
|
104.244.127.122
|
|
|
|
https://ayaanhomes.com.au/Approved/2
|
unknown
|
|
|
|
https://ayaanhomes.com.au/favicon.icoD
|
unknown
|
|
|
|
https://tracepointllc.instascreen.net/_styles/2.5/version2_5.css?v=3.0.978
|
44.239.31.29
|
|
|
|
https://tracepointllc.instascreen.net/_styles/2.5/is-bootstrap-overrides.css?v=3.0.978
|
44.239.31.29
|
|
|
|
https://www.google.com/images/cleardot.gif
|
unknown
|
|
|
|
https://tracepointllc.instascreen.net/_scripts/jquery/jquery-3.5.1.js?v=3.0.978d
|
unknown
|
|
|
|
https://tracepointllc.instascreen.net/_scripts/dialogs/login/loginForm.js?v=3.0.978/
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/apps-themesCross-Origin-Resource-Policy:
|
unknown
|
|
|
|
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Le8XbwUAAAAANWeNFdP-C4MpwjbSxsAKmKrHFUn&co=aHR0
|
unknown
|
|
|
|
https://www.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://easylist.to/)
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/report-to/apps-themes
|
unknown
|
|
|
|
https://tracepointllc.instascreen.net/_scripts/jquery/jquery.focus-first.custom.js?v=3.0.978
|
44.239.31.29
|
|
|
|
https://csp.withgoogle.com/csp/recaptcha
|
unknown
|
|
|
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
|
unknown
|
|
|
|
https://tracepointllc.instascreen.net/_styles/2.5/is-responsive.css?v=3.0.978
|
44.239.31.29
|
|
|
|
https://accounts.google.com/MergeSession
|
unknown
|
|
|
|
https://creativecommons.org/compatiblelicenses
|
unknown
|
|
|
|
https://preprod-hangouts-googleapis.sandbox.google.com
|
unknown
|
|
|
|
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
|
142.250.203.97
|
|
|
|
https://www.google.com
|
unknown
|
|
|
|
https://github.com/easylist)
|
unknown
|
|
|
|
https://ayaanhomes.com.au/favicon.ico
|
104.244.127.122
|
|
|
|
https://creativecommons.org/.
|
unknown
|
|
|
|
https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=_7Co1fh8iT2hcjvquYJ_3zSP
|
unknown
|
|
|
|
https://hangouts.clients6.google.com
|
unknown
|
|
|
|
https://hangouts.google.com/hangouts/_/logpref
|
unknown
|
|
|
|
https://linkprotect.cudasvc.com/url?a=https%3a%2f%2fayaanhomes.com.au%2fApproved%2f&c=E,1,sOUOgCqks1z0ambp9gvZ1ziebXnBNxvPGsYhwXBewppNY4wVm86Dc0h0V8oxfAC_HBV9i2eThZKJNV18728pVuUbad9V2QhM-0KomMdk4BfHJt5p-neG1mlM4A,,&typo=1
|
18.195.47.8
|
|
|
|
https://accounts.google.com
|
unknown
|
|
|
|
https://clients2.google.com/cr/report
|
unknown
|
|
|
|
http://angularjs.org
|
unknown
|
|
|
|
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Le8XbwUAAAAANWeNFdP-C4MpwjbSxsAKmKrHFUn&co=aHR0cHM6Ly9heWFhbmhvbWVzLmNvbS5hdTo0NDM.&hl=en&v=_7Co1fh8iT2hcjvquYJ_3zSP&size=invisible&cb=ya4mrevdfx81
|
|
||
|
https://creativecommons.org/publicdomain/zero/1.0/.
|
unknown
|
|
|
|
https://github.com/angular/material
|
unknown
|
|
|
|
https://apis.google.com
|
unknown
|
|
|
|
https://www.google.com/recaptcha/api2/
|
unknown
|
|
|
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
|
|
|
https://github.com/madler/zlib/blob/master/zlib.h
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/report-to/recaptchaX
|
unknown
|
|
|
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
|
|
|
https://clients2.google.com
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/recaptchaCross-Origin-Resource-Policy:
|
unknown
|
|
|
|
https://tracepointllc.instascreen.net/_scripts/dialogs/login/loginForm.js?v=3.0.978
|
44.239.31.29
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/report-to/recaptcha_
|
unknown
|
|
|
|
https://dns.google
|
unknown
|
|
|
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
|
|
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
|
|
|
https://ogs.google.com
|
unknown
|
|
|
|
https://ayaanhomes.com.au
|
unknown
|
|
|
|
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
142.250.203.110
|
|
|
|
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
172.217.168.45
|
|
|
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://www.google.com;
|
unknown
|
|
|
|
https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
|
unknown
|
|
|
|
https://hangouts.google.com/
|
unknown
|
|
|
|
https://tracepointllc.instascreen.net/_styles/2.5/is-layout.css?v=3.0.978
|
44.239.31.29
|
|
|
|
https://www.google.com/images/x2.gif
|
unknown
|
|
|
|
https://idp.singlesignon.services/cookieV2?scheme=https&domain=tracepointllc.instascreen.net&port=443
|
54.185.139.161
|
|
|
|
http://llvm.org/):
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/report-to/recaptcha
|
unknown
|
|
|
|
https://linkprotect.cudasvc.com/url?a=https%3a%2f%2fayaanhomes.com.au%2fApproved%2f&c=E
|
unknown
|
|
|
|
https://tracepointllc.instascreen.net/_libs/bootstrap_3.4.1/css/bootstrap.min.css?v=3.0.978
|
44.239.31.29
|
|
|
|
https://www.google.com/images/dot2.gif
|
unknown
|
|
|
|
https://meetings.clients6.google.com
|
unknown
|
|
|
|
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://code.google.com/p/nativeclient/issues/entry%s:
|
unknown
|
|
|
|
https://www.stratospherenetworks.com/blog/wp-content/uploads/2018/08/office365-logo.png
|
192.124.249.52
|
|
|
|
https://tracepointllc.instascreen.net/_scripts/jquery/jquery-migrate-3.3.2.js?v=3.0.978
|
44.239.31.29
|
|
|
|
http://tools.ietf.org/html/rfc1950
|
unknown
|
|
|
|
https://taz-skin.s3.amazonaws.com/_styles/skin/da_tracepointllc.instascreen.net_skin.css?v=3
|
52.218.138.83
|
|
|
|
https://code.google.com/p/nativeclient/issues/entry
|
unknown
|
|
|
|
https://ayaanhomes.com.auh
|
unknown
|
|
|
|
https://support.google.com/chromecast/answer/2998456
|
unknown
|
|
|
|
https://tracepointllc.instascreen.net/_scripts/jquery/jquery-3.5.1.js?v=3.0.978
|
44.239.31.29
|
|
|
|
https://tracepointllc.instascreen.net/_scripts/jquery/jquery-migrate-3.3.2.js?v=3.0.978$:
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/apps-themes
|
unknown
|
|
|
|
https://www.google.com/recaptcha/api.js?render=6Le8XbwUAAAAANWeNFdP-C4MpwjbSxsAKmKrHFUn
|
172.217.168.68
|
|
|
|
https://clients2.googleusercontent.com
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/report-to/IdentityListAccountsHttp/external
|
unknown
|
|
|
|
https://www.google.com/
|
unknown
|
|
|
|
https://feedback.googleusercontent.com
|
unknown
|
|
|
|
https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=_7Co1fh8iT2hcjvquYJ_3zSPI
|
unknown
|
|
|
|
https://chromium.googlesource.com/a/native_client/pnacl-clang.git
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx
|
unknown
|
|
|
|
https://clients6.google.com
|
unknown
|
|
There are 81 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
gstaticadssl.l.google.com
|
172.217.168.3
|
|
|
|
s3-us-west-2-w.amazonaws.com
|
52.218.138.83
|
|
|
|
accounts.google.com
|
172.217.168.45
|
|
|
|
b-group.instascreen.net
|
44.239.31.29
|
|
|
|
idp.singlesignon.services
|
54.185.139.161
|
|
|
|
ayaanhomes.com.au
|
104.244.127.122
|
|
|
|
stratospherenetworks.com
|
192.124.249.52
|
|
|
|
www.google.com
|
172.217.168.68
|
|
|
|
clients.l.google.com
|
142.250.203.110
|
|
|
|
linkprotect.cudasvc.com
|
18.195.47.8
|
|
|
|
googlehosted.l.googleusercontent.com
|
142.250.203.97
|
|
|
|
clients2.googleusercontent.com
|
unknown
|
|
|
|
taz-skin.s3.amazonaws.com
|
unknown
|
|
|
|
tracepointllc.instascreen.net
|
unknown
|
|
|
|
clients2.google.com
|
unknown
|
|
|
|
www.stratospherenetworks.com
|
unknown
|
|
There are 6 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.168.2.1
|
unknown
|
unknown
|
|
|
|
18.195.47.8
|
linkprotect.cudasvc.com
|
United States
|
|
|
|
142.250.203.110
|
clients.l.google.com
|
United States
|
|
|
|
44.239.31.29
|
b-group.instascreen.net
|
United States
|
|
|
|
192.124.249.52
|
stratospherenetworks.com
|
United States
|
|
|
|
172.217.168.68
|
www.google.com
|
United States
|
|
|
|
172.217.168.45
|
accounts.google.com
|
United States
|
|
|
|
142.250.203.97
|
googlehosted.l.googleusercontent.com
|
United States
|
|
|
|
239.255.255.250
|
unknown
|
Reserved
|
|
|
|
172.217.168.3
|
gstaticadssl.l.google.com
|
United States
|
|
|
|
104.244.127.122
|
ayaanhomes.com.au
|
United States
|
|
|
|
52.218.138.83
|
s3-us-west-2-w.amazonaws.com
|
United States
|
|
|
|
54.185.139.161
|
idp.singlesignon.services
|
United States
|
|
|
|
127.0.0.1
|
unknown
|
unknown
|
|
There are 4 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
|
There are 33 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7FF5D22BB000
|
unkown image
|
page readonly
|
|
|
|
7DF579770000
|
unkown image
|
page readonly
|
|
|
|
1FD53400000
|
heap default
|
page read and write
|
|
|
|
19966660000
|
unkown
|
page read and write
|
|
|
|
7FF5D208D000
|
unkown image
|
page readonly
|
|
|
|
7FF5D2249000
|
unkown image
|
page readonly
|
|
|
|
7FF5C7044000
|
unkown image
|
page readonly
|
|
|
|
7FF5D29FA000
|
unkown image
|
page readonly
|
|
|
|
7FF563E3B000
|
unkown image
|
page readonly
|
|
|
|
7FF5D221D000
|
unkown image
|
page readonly
|
|
|
|
9D20AFF000
|
stack
|
page read and write
|
|
|
|
1FD535D0000
|
unkown
|
page read and write
|
|
|
|
7FF5C6FE3000
|
unkown image
|
page readonly
|
|
|
|
29C35D64000
|
unkown
|
page read and write
|
|
|
|
7DF5275F0000
|
unkown image
|
page readonly
|
|
|
|
1B35FA02000
|
unkown
|
page read and write
|
|
|
|
2261EF00000
|
unkown image
|
page readonly
|
|
|
|
7DF579780000
|
unkown image
|
page readonly
|
|
|
|
7FF5DA933000
|
unkown image
|
page readonly
|
|
|
|
7FF5D2255000
|
unkown image
|
page readonly
|
|
|
|
7FF511CDB000
|
unkown image
|
page readonly
|
|
|
|
2D8CE850000
|
unkown image
|
page readonly
|
|
|
|
7FF502555000
|
unkown image
|
page readonly
|
|
|
|
7FF5025B6000
|
unkown image
|
page readonly
|
|
|
|
1FD533B0000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1D9F000
|
unkown image
|
page readonly
|
|
|
|
7DF5E83B2000
|
unkown image
|
page readonly
|
|
|
|
7DF5E83A2000
|
unkown image
|
page readonly
|
|
|
|
6B0A2FE000
|
stack
|
page read and write
|
|
|
|
7FF50253A000
|
unkown image
|
page readonly
|
|
|
|
22B72E45000
|
unkown
|
page read and write
|
|
|
|
29C35EC0000
|
unkown
|
page read and write
|
|
|
|
29C30F70000
|
unkown image
|
page read and write
|
|
|
|
7FF537772000
|
unkown image
|
page readonly
|
|
|
|
F19327E000
|
stack
|
page read and write
|
|
|
|
208118C0000
|
heap private
|
page read and write
|
|
|
|
7FF5379DF000
|
unkown image
|
page readonly
|
|
|
|
19966013000
|
unkown
|
page read and write
|
|
|
|
1B35F0C0000
|
unkown image
|
page readonly
|
|
|
|
7FF5D2208000
|
unkown image
|
page readonly
|
|
|
|
7FF5376DD000
|
unkown image
|
page readonly
|
|
|
|
29C35EC0000
|
unkown
|
page read and write
|
|
|
|
29C3610D000
|
unkown
|
page read and write
|
|
|
|
7FF5D2084000
|
unkown image
|
page readonly
|
|
|
|
E22ABFA000
|
stack
|
page read and write
|
|
|
|
29C36106000
|
unkown
|
page read and write
|
|
|
|
22B72E44000
|
unkown
|
page read and write
|
|
|
|
2D8CE25B000
|
unkown
|
page read and write
|
|
|
|
29C36100000
|
unkown
|
page read and write
|
|
|
|
22B72C90000
|
heap private
|
page read and write
|
|
|
|
E0ACDFB000
|
stack
|
page read and write
|
|
|
|
29C30FD1000
|
unkown
|
page read and write
|
|
|
|
7FF502298000
|
unkown image
|
page readonly
|
|
|
|
7DF54D2E0000
|
unkown image
|
page readonly
|
|
|
|
7FF5C7105000
|
unkown image
|
page readonly
|
|
|
|
7DF517EE2000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1FED000
|
unkown image
|
page readonly
|
|
|
|
7FF5D2225000
|
unkown image
|
page readonly
|
|
|
|
7FF5024FD000
|
unkown image
|
page readonly
|
|
|
|
E0ACEFB000
|
stack
|
page read and write
|
|
|
|
7DF517EF0000
|
unkown image
|
page readonly
|
|
|
|
F1928FB000
|
unkown
|
page read and write
|
|
|
|
1B35F300000
|
unkown
|
page read and write
|
|
|
|
7FF5C6C93000
|
unkown image
|
page readonly
|
|
|
|
7FF51183A000
|
unkown image
|
page readonly
|
|
|
|
7DF415DB0000
|
unkown image
|
page readonly
|
|
|
|
F19337F000
|
stack
|
page read and write
|
|
|
|
20811A00000
|
unkown
|
page read and write
|
|
|
|
7FF5DABC3000
|
unkown image
|
page readonly
|
|
|
|
7FF563DBA000
|
unkown image
|
page readonly
|
|
|
|
7DF579772000
|
unkown image
|
page readonly
|
|
|
|
22B72E75000
|
unkown
|
page read and write
|
|
|
|
29C31281000
|
unkown
|
page read and write
|
|
|
|
1FD53C02000
|
unkown
|
page read and write
|
|
|
|
7FF511BB4000
|
unkown image
|
page readonly
|
|
|
|
9D208FB000
|
stack
|
page read and write
|
|
|
|
7FF5C6F9E000
|
unkown image
|
page readonly
|
|
|
|
29C35C40000
|
unkown
|
page read and write
|
|
|
|
7FF563E2F000
|
unkown image
|
page readonly
|
|
|
|
7FF511CCB000
|
unkown image
|
page readonly
|
|
|
|
7FF511C19000
|
unkown image
|
page readonly
|
|
|
|
29C3610D000
|
unkown
|
page read and write
|
|
|
|
29C35C00000
|
unkown
|
page read and write
|
|
|
|
7FF511A2A000
|
unkown image
|
page readonly
|
|
|
|
7DF5DCAE0000
|
unkown image
|
page readonly
|
|
|
|
29C30902000
|
unkown
|
page read and write
|
|
|
|
7FF5D21A7000
|
unkown image
|
page readonly
|
|
|
|
29C36000000
|
unkown
|
page read and write
|
|
|
|
2D8CE308000
|
unkown
|
page read and write
|
|
|
|
7FF563B23000
|
unkown image
|
page readonly
|
|
|
|
1FD53665000
|
unkown
|
page read and write
|
|
|
|
22B72E49000
|
unkown
|
page read and write
|
|
|
|
7FF5C7109000
|
unkown image
|
page readonly
|
|
|
|
7FF511BCC000
|
unkown image
|
page readonly
|
|
|
|
7FF5D213F000
|
unkown image
|
page readonly
|
|
|
|
9D20BFE000
|
stack
|
page read and write
|
|
|
|
7FF5D22EF000
|
unkown image
|
page readonly
|
|
|
|
22B72E30000
|
unkown
|
page read and write
|
|
|
|
7FF511C2A000
|
unkown image
|
page readonly
|
|
|
|
29C360FF000
|
unkown
|
page read and write
|
|
|
|
7FF5378B4000
|
unkown image
|
page readonly
|
|
|
|
2D8CE269000
|
unkown
|
page read and write
|
|
|
|
E22B1FE000
|
stack
|
page read and write
|
|
|
|
7DF5275E2000
|
unkown image
|
page readonly
|
|
|
|
2D8CE130000
|
heap private
|
page read and write
|
|
|
|
22B72E65000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC7B000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAB73000
|
unkown image
|
page readonly
|
|
|
|
9D206FE000
|
stack
|
page read and write
|
|
|
|
2D8CE261000
|
unkown
|
page read and write
|
|
|
|
7FF563E5B000
|
unkown image
|
page readonly
|
|
|
|
22B73000000
|
unkown image
|
page readonly
|
|
|
|
1B35F213000
|
unkown
|
page read and write
|
|
|
|
29C35BD0000
|
unkown
|
page read and write
|
|
|
|
29C306A0000
|
heap private
|
page read and write
|
|
|
|
7FF5C70C3000
|
unkown image
|
page readonly
|
|
|
|
7FF5D2AAF000
|
unkown image
|
page readonly
|
|
|
|
29C35E70000
|
unkown
|
page read and write
|
|
|
|
29C30858000
|
unkown
|
page read and write
|
|
|
|
7FF5C718F000
|
unkown image
|
page readonly
|
|
|
|
7FF5D22ED000
|
unkown image
|
page readonly
|
|
|
|
9D207FB000
|
stack
|
page read and write
|
|
|
|
7DF5E7BF2000
|
unkown image
|
page readonly
|
|
|
|
29C31870000
|
unkown image
|
page readonly
|
|
|
|
29C3610D000
|
unkown
|
page read and write
|
|
|
|
7DF5DCAC0000
|
unkown image
|
page readonly
|
|
|
|
7FF5024D3000
|
unkown image
|
page readonly
|
|
|
|
E0ACFF7000
|
stack
|
page read and write
|
|
|
|
29C3610A000
|
unkown
|
page read and write
|
|
|
|
7FF5022A6000
|
unkown image
|
page readonly
|
|
|
|
29C36102000
|
unkown
|
page read and write
|
|
|
|
7FF5C6FBE000
|
unkown image
|
page readonly
|
|
|
|
7FF5D22C0000
|
unkown image
|
page readonly
|
|
|
|
7FF5D29BC000
|
unkown image
|
page readonly
|
|
|
|
29C31830000
|
unkown image
|
page readonly
|
|
|
|
7FF5635E8000
|
unkown image
|
page readonly
|
|
|
|
19966040000
|
unkown
|
page read and write
|
|
|
|
7FF5C719B000
|
unkown image
|
page readonly
|
|
|
|
29C35EC0000
|
unkown
|
page read and write
|
|
|
|
7DF54D2D2000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAA1D000
|
unkown image
|
page readonly
|
|
|
|
29C31118000
|
unkown
|
page read and write
|
|
|
|
7DF5F0580000
|
unkown image
|
page readonly
|
|
|
|
7DF5DCAD0000
|
unkown image
|
page readonly
|
|
|
|
29C31119000
|
unkown
|
page read and write
|
|
|
|
22B72E2D000
|
unkown
|
page read and write
|
|
|
|
2D8CE268000
|
unkown
|
page read and write
|
|
|
|
29C35C60000
|
unkown
|
page read and write
|
|
|
|
2D8CE23C000
|
unkown
|
page read and write
|
|
|
|
7DF5E83A2000
|
unkown image
|
page readonly
|
|
|
|
AB9DFF000
|
stack
|
page read and write
|
|
|
|
7FF563C33000
|
unkown image
|
page readonly
|
|
|
|
2261F102000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC46000
|
unkown image
|
page readonly
|
|
|
|
7FF563D7C000
|
unkown image
|
page readonly
|
|
|
|
19965E10000
|
heap private
|
page read and write
|
|
|
|
1FD53390000
|
unkown image
|
page read and write
|
|
|
|
2D8CE262000
|
unkown
|
page read and write
|
|
|
|
7FF5024F7000
|
unkown image
|
page readonly
|
|
|
|
7FF563CBF000
|
unkown image
|
page readonly
|
|
|
|
22B72E63000
|
unkown
|
page read and write
|
|
|
|
1FD5364E000
|
unkown
|
page read and write
|
|
|
|
1FD534E0000
|
unkown image
|
page readonly
|
|
|
|
2D8CE28B000
|
unkown
|
page read and write
|
|
|
|
7FF5D1FE1000
|
unkown image
|
page readonly
|
|
|
|
7DF54D2D2000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAACF000
|
unkown image
|
page readonly
|
|
|
|
7FF5378D3000
|
unkown image
|
page readonly
|
|
|
|
7FF5D29E9000
|
unkown image
|
page readonly
|
|
|
|
82216FD000
|
stack
|
page read and write
|
|
|
|
E22B27E000
|
stack
|
page read and write
|
|
|
|
20811900000
|
unkown image
|
page readonly
|
|
|
|
7FF5DA743000
|
unkown image
|
page readonly
|
|
|
|
22B72E3A000
|
unkown
|
page read and write
|
|
|
|
29C308FE000
|
unkown
|
page read and write
|
|
|
|
1B35F200000
|
unkown
|
page read and write
|
|
|
|
2D8CE302000
|
unkown
|
page read and write
|
|
|
|
7FF5025A8000
|
unkown image
|
page readonly
|
|
|
|
29C35E80000
|
unkown
|
page read and write
|
|
|
|
19966590000
|
unkown image
|
page readonly
|
|
|
|
7FF5DABB5000
|
unkown image
|
page readonly
|
|
|
|
7FF5D2A94000
|
unkown image
|
page readonly
|
|
|
|
208120C0000
|
unkown image
|
page write copy
|
|
|
|
1FD53649000
|
unkown
|
page read and write
|
|
|
|
7FF5DAB77000
|
unkown image
|
page readonly
|
|
|
|
7FF511CBD000
|
unkown image
|
page readonly
|
|
|
|
29C36102000
|
unkown
|
page read and write
|
|
|
|
29C360FF000
|
unkown
|
page read and write
|
|
|
|
7FF5378C2000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1E21000
|
unkown image
|
page readonly
|
|
|
|
29C35C50000
|
unkown
|
page read and write
|
|
|
|
7DF579780000
|
unkown image
|
page readonly
|
|
|
|
7FF563D88000
|
unkown image
|
page readonly
|
|
|
|
29C35D6E000
|
unkown
|
page read and write
|
|
|
|
29C31119000
|
unkown
|
page read and write
|
|
|
|
29C36106000
|
unkown
|
page read and write
|
|
|
|
29C306B0000
|
unkown image
|
page readonly
|
|
|
|
7FF5C70DC000
|
unkown image
|
page readonly
|
|
|
|
20811ACC000
|
unkown
|
page read and write
|
|
|
|
7FF563D77000
|
unkown image
|
page readonly
|
|
|
|
7FF53799F000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1E93000
|
unkown image
|
page readonly
|
|
|
|
29C35D90000
|
unkown
|
page read and write
|
|
|
|
29C30829000
|
unkown
|
page read and write
|
|
|
|
98D71AE000
|
stack
|
page read and write
|
|
|
|
7FF563E6F000
|
unkown image
|
page readonly
|
|
|
|
7DF4254A0000
|
unkown image
|
page readonly
|
|
|
|
7DFDE5ADD000
|
unkown image
|
page readonly
|
|
|
|
7DF517EF2000
|
unkown image
|
page readonly
|
|
|
|
2261EEF0000
|
heap private
|
page read and write
|
|
|
|
7FF5C6E83000
|
unkown image
|
page readonly
|
|
|
|
22B72E6E000
|
unkown
|
page read and write
|
|
|
|
29C31660000
|
unkown image
|
page read and write
|
|
|
|
1FD53713000
|
unkown
|
page read and write
|
|
|
|
7DF4E6270000
|
unkown image
|
page readonly
|
|
|
|
22B72E6C000
|
unkown
|
page read and write
|
|
|
|
E22B57E000
|
stack
|
page read and write
|
|
|
|
22B72CA0000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1FE3000
|
unkown image
|
page readonly
|
|
|
|
29C30A00000
|
unkown image
|
page readonly
|
|
|
|
7FF5D21C0000
|
unkown image
|
page readonly
|
|
|
|
2261F660000
|
unkown image
|
page readonly
|
|
|
|
1B35F27C000
|
unkown
|
page read and write
|
|
|
|
7FF5DAB98000
|
unkown image
|
page readonly
|
|
|
|
2D8CE2A2000
|
unkown
|
page read and write
|
|
|
|
29C31015000
|
unkown
|
page read and write
|
|
|
|
29C30D90000
|
unkown image
|
page readonly
|
|
|
|
29C3610E000
|
unkown
|
page read and write
|
|
|
|
29C36102000
|
unkown
|
page read and write
|
|
|
|
E22B47C000
|
stack
|
page read and write
|
|
|
|
29C36104000
|
unkown
|
page read and write
|
|
|
|
7FF5D1F0B000
|
unkown image
|
page readonly
|
|
|
|
20812300000
|
unkown
|
page read and write
|
|
|
|
7FF5379B0000
|
unkown image
|
page readonly
|
|
|
|
20811A13000
|
unkown
|
page read and write
|
|
|
|
1B35F24D000
|
unkown
|
page read and write
|
|
|
|
7DF517EF0000
|
unkown image
|
page readonly
|
|
|
|
29C360FF000
|
unkown
|
page read and write
|
|
|
|
7FF5D22AF000
|
unkown image
|
page readonly
|
|
|
|
19966400000
|
unkown image
|
page readonly
|
|
|
|
29C35D80000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC64000
|
unkown image
|
page readonly
|
|
|
|
7FF5D2087000
|
unkown image
|
page readonly
|
|
|
|
7FF5C711A000
|
unkown image
|
page readonly
|
|
|
|
1B35F090000
|
heap private
|
page read and write
|
|
|
|
7FF5D2AAB000
|
unkown image
|
page readonly
|
|
|
|
2D8CE300000
|
unkown
|
page read and write
|
|
|
|
29C3605F000
|
unkown
|
page read and write
|
|
|
|
E22A9F8000
|
stack
|
page read and write
|
|
|
|
1FD53708000
|
unkown
|
page read and write
|
|
|
|
19965FA0000
|
unkown
|
page read and write
|
|
|
|
29C31201000
|
unkown
|
page read and write
|
|
|
|
7FF5C6F93000
|
unkown image
|
page readonly
|
|
|
|
7FF53792A000
|
unkown image
|
page readonly
|
|
|
|
29C31159000
|
unkown
|
page read and write
|
|
|
|
F19367F000
|
stack
|
page read and write
|
|
|
|
7FF511BE7000
|
unkown image
|
page readonly
|
|
|
|
7FF563E6F000
|
unkown image
|
page readonly
|
|
|
|
7FF5DABCA000
|
unkown image
|
page readonly
|
|
|
|
7FF5024B0000
|
unkown image
|
page readonly
|
|
|
|
7FF5D20A3000
|
unkown image
|
page readonly
|
|
|
|
E22AFFE000
|
stack
|
page read and write
|
|
|
|
7FF5379DD000
|
unkown image
|
page readonly
|
|
|
|
7FF511AF6000
|
unkown image
|
page readonly
|
|
|
|
7FF5379DF000
|
unkown image
|
page readonly
|
|
|
|
29C35D6B000
|
unkown
|
page read and write
|
|
|
|
19965E70000
|
heap default
|
page read and write
|
|
|
|
19965E20000
|
unkown image
|
page readonly
|
|
|
|
2261F113000
|
unkown
|
page read and write
|
|
|
|
1FD53665000
|
unkown
|
page read and write
|
|
|
|
7FF563C5E000
|
unkown image
|
page readonly
|
|
|
|
1B35F0F0000
|
heap default
|
page read and write
|
|
|
|
2D8CE120000
|
unkown image
|
page read and write
|
|
|
|
29C31840000
|
unkown image
|
page readonly
|
|
|
|
7FF5C70D7000
|
unkown image
|
page readonly
|
|
|
|
2261F650000
|
unkown image
|
page readonly
|
|
|
|
2D8CE313000
|
unkown
|
page read and write
|
|
|
|
7FF5D2164000
|
unkown image
|
page readonly
|
|
|
|
E22AF7F000
|
stack
|
page read and write
|
|
|
|
98D767F000
|
stack
|
page read and write
|
|
|
|
29C36106000
|
unkown
|
page read and write
|
|
|
|
1FD5368E000
|
unkown
|
page read and write
|
|
|
|
8220D4C000
|
unkown
|
page read and write
|
|
|
|
29C3611B000
|
unkown
|
page read and write
|
|
|
|
1B35F22A000
|
unkown
|
page read and write
|
|
|
|
7FF5DABB9000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAAF4000
|
unkown image
|
page readonly
|
|
|
|
19966200000
|
unkown image
|
page readonly
|
|
|
|
7FF5D2AAF000
|
unkown image
|
page readonly
|
|
|
|
98D787F000
|
stack
|
page read and write
|
|
|
|
7FF563CC5000
|
unkown image
|
page readonly
|
|
|
|
19965FA0000
|
unkown
|
page read and write
|
|
|
|
7DF5275E0000
|
unkown image
|
page readonly
|
|
|
|
1FD5366F000
|
unkown
|
page read and write
|
|
|
|
7FF5D2A6F000
|
unkown image
|
page readonly
|
|
|
|
7FF5D22A8000
|
unkown image
|
page readonly
|
|
|
|
7FF5022E8000
|
unkown image
|
page readonly
|
|
|
|
7DF517EE0000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1EA0000
|
unkown image
|
page readonly
|
|
|
|
E22B37A000
|
stack
|
page read and write
|
|
|
|
2D8CE4D0000
|
unkown image
|
page readonly
|
|
|
|
F192CFB000
|
stack
|
page read and write
|
|
|
|
208118B0000
|
unkown image
|
page read and write
|
|
|
|
E0ACC7E000
|
stack
|
page read and write
|
|
|
|
29C3610D000
|
unkown
|
page read and write
|
|
|
|
29C3088C000
|
unkown
|
page read and write
|
|
|
|
7FF5D1B16000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAA4E000
|
unkown image
|
page readonly
|
|
|
|
7FF5C71B4000
|
unkown image
|
page readonly
|
|
|
|
E22AEFE000
|
stack
|
page read and write
|
|
|
|
1FD53800000
|
unkown image
|
page readonly
|
|
|
|
29C36088000
|
unkown
|
page read and write
|
|
|
|
7FF5DAA93000
|
unkown image
|
page readonly
|
|
|
|
22B72E6A000
|
unkown
|
page read and write
|
|
|
|
7FF5024C0000
|
unkown image
|
page readonly
|
|
|
|
7FF511BD3000
|
unkown image
|
page readonly
|
|
|
|
7FF5025BB000
|
unkown image
|
page readonly
|
|
|
|
1FD5364B000
|
unkown
|
page read and write
|
|
|
|
7DF517EE2000
|
unkown image
|
page readonly
|
|
|
|
7DF54D2E2000
|
unkown image
|
page readonly
|
|
|
|
29C30800000
|
unkown
|
page read and write
|
|
|
|
7FF5D21C8000
|
unkown image
|
page readonly
|
|
|
|
2D8CE229000
|
unkown
|
page read and write
|
|
|
|
7FF511CDF000
|
unkown image
|
page readonly
|
|
|
|
2D8CE28D000
|
unkown
|
page read and write
|
|
|
|
7FF50251D000
|
unkown image
|
page readonly
|
|
|
|
7FF5025EF000
|
unkown image
|
page readonly
|
|
|
|
7DF5DCAD2000
|
unkown image
|
page readonly
|
|
|
|
22B72E13000
|
unkown
|
page read and write
|
|
|
|
29C308BC000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC5D000
|
unkown image
|
page readonly
|
|
|
|
7DF5F0570000
|
unkown image
|
page readonly
|
|
|
|
7FF5C71CF000
|
unkown image
|
page readonly
|
|
|
|
7FF5D20A8000
|
unkown image
|
page readonly
|
|
|
|
7FF5025ED000
|
unkown image
|
page readonly
|
|
|
|
7FF501A44000
|
unkown image
|
page readonly
|
|
|
|
7FF5C71CB000
|
unkown image
|
page readonly
|
|
|
|
29C3610D000
|
unkown
|
page read and write
|
|
|
|
29C3083F000
|
unkown
|
page read and write
|
|
|
|
7DF54D2E2000
|
unkown image
|
page readonly
|
|
|
|
7FF563E54000
|
unkown image
|
page readonly
|
|
|
|
7DF579762000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAC50000
|
unkown image
|
page readonly
|
|
|
|
22B72CF0000
|
heap default
|
page read and write
|
|
|
|
29C36048000
|
unkown
|
page read and write
|
|
|
|
19965E00000
|
unkown image
|
page read and write
|
|
|
|
7FF5378E8000
|
unkown image
|
page readonly
|
|
|
|
29C360FF000
|
unkown
|
page read and write
|
|
|
|
1B35F23C000
|
unkown
|
page read and write
|
|
|
|
29C36102000
|
unkown
|
page read and write
|
|
|
|
22B72E7E000
|
unkown
|
page read and write
|
|
|
|
2261F041000
|
unkown
|
page read and write
|
|
|
|
822147D000
|
stack
|
page read and write
|
|
|
|
7FF5379AB000
|
unkown image
|
page readonly
|
|
|
|
7DF5E7C00000
|
unkown image
|
page readonly
|
|
|
|
7FF5379DB000
|
unkown image
|
page readonly
|
|
|
|
7FF502525000
|
unkown image
|
page readonly
|
|
|
|
7FF511AED000
|
unkown image
|
page readonly
|
|
|
|
7FF5D29F3000
|
unkown image
|
page readonly
|
|
|
|
6B09D1B000
|
unkown
|
page read and write
|
|
|
|
7FF5D2013000
|
unkown image
|
page readonly
|
|
|
|
7DF5275D2000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1E9D000
|
unkown image
|
page readonly
|
|
|
|
29C31158000
|
unkown
|
page read and write
|
|
|
|
29C35E90000
|
unkown
|
page read and write
|
|
|
|
1B35F28B000
|
unkown
|
page read and write
|
|
|
|
7FF5C70E8000
|
unkown image
|
page readonly
|
|
|
|
29C3610D000
|
unkown
|
page read and write
|
|
|
|
2261F002000
|
unkown
|
page read and write
|
|
|
|
29C31BC0000
|
unkown
|
page read and write
|
|
|
|
7FF5379CB000
|
unkown image
|
page readonly
|
|
|
|
ABA2FF000
|
stack
|
page read and write
|
|
|
|
22B72E42000
|
unkown
|
page read and write
|
|
|
|
29C360ED000
|
unkown
|
page read and write
|
|
|
|
22B72CC0000
|
unkown image
|
page readonly
|
|
|
|
22B72F02000
|
unkown
|
page read and write
|
|
|
|
7DF5E7BF0000
|
unkown image
|
page readonly
|
|
|
|
7FF5D2A76000
|
unkown image
|
page readonly
|
|
|
|
7FF5C6C99000
|
unkown image
|
page readonly
|
|
|
|
7FF5024E7000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1B37000
|
unkown image
|
page readonly
|
|
|
|
29C31159000
|
unkown
|
page read and write
|
|
|
|
29C30879000
|
unkown
|
page read and write
|
|
|
|
22B72E3D000
|
unkown
|
page read and write
|
|
|
|
2D8CE140000
|
unkown image
|
page readonly
|
|
|
|
7FF511B54000
|
unkown image
|
page readonly
|
|
|
|
7DF517F00000
|
unkown image
|
page readonly
|
|
|
|
29C35E30000
|
unkown
|
page read and write
|
|
|
|
2D8CE26B000
|
unkown
|
page read and write
|
|
|
|
7FF5C6F6D000
|
unkown image
|
page readonly
|
|
|
|
2D8CE213000
|
unkown
|
page read and write
|
|
|
|
7FF5DAA43000
|
unkown image
|
page readonly
|
|
|
|
1B35F0A0000
|
unkown image
|
page readonly
|
|
|
|
7FF5D22EB000
|
unkown image
|
page readonly
|
|
|
|
19966802000
|
unkown
|
page read and write
|
|
|
|
7FF5C71CF000
|
unkown image
|
page readonly
|
|
|
|
7FF511BC2000
|
unkown image
|
page readonly
|
|
|
|
29C31740000
|
unkown
|
page read and write
|
|
|
|
29C360FF000
|
unkown
|
page read and write
|
|
|
|
7DF517EE0000
|
unkown image
|
page readonly
|
|
|
|
20812080000
|
unkown
|
page read and write
|
|
|
|
7FF51178F000
|
unkown image
|
page readonly
|
|
|
|
7FF563C3E000
|
unkown image
|
page readonly
|
|
|
|
20811AE2000
|
unkown
|
page read and write
|
|
|
|
7FF5025AF000
|
unkown image
|
page readonly
|
|
|
|
F192E7F000
|
stack
|
page read and write
|
|
|
|
2261F2D0000
|
unkown image
|
page readonly
|
|
|
|
7FF536E4A000
|
unkown image
|
page readonly
|
|
|
|
22B72E29000
|
unkown
|
page read and write
|
|
|
|
7FF511C0D000
|
unkown image
|
page readonly
|
|
|
|
7FF563DA9000
|
unkown image
|
page readonly
|
|
|
|
7DF5E7BE0000
|
unkown image
|
page readonly
|
|
|
|
2D8CE140000
|
unkown image
|
page readonly
|
|
|
|
22B72CD0000
|
unkown image
|
page readonly
|
|
|
|
29C31119000
|
unkown
|
page read and write
|
|
|
|
6B0A07E000
|
stack
|
page read and write
|
|
|
|
ABA3FC000
|
stack
|
page read and write
|
|
|
|
29C35D68000
|
unkown
|
page read and write
|
|
|
|
7FF5C71A0000
|
unkown image
|
page readonly
|
|
|
|
7FF511524000
|
unkown image
|
page readonly
|
|
|
|
2D8CE25E000
|
unkown
|
page read and write
|
|
|
|
7DF5E83B0000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAA6E000
|
unkown image
|
page readonly
|
|
|
|
AB9A7C000
|
unkown
|
page read and write
|
|
|
|
822127E000
|
stack
|
page read and write
|
|
|
|
29C30871000
|
unkown
|
page read and write
|
|
|
|
22B73602000
|
unkown
|
page read and write
|
|
|
|
E22B0FA000
|
stack
|
page read and write
|
|
|
|
22B72E46000
|
unkown
|
page read and write
|
|
|
|
2261F802000
|
unkown
|
page read and write
|
|
|
|
7FF5D29A7000
|
unkown image
|
page readonly
|
|
|
|
7FF563939000
|
unkown image
|
page readonly
|
|
|
|
22B72E4B000
|
unkown
|
page read and write
|
|
|
|
22B72E68000
|
unkown
|
page read and write
|
|
|
|
1B35F302000
|
unkown
|
page read and write
|
|
|
|
7DF5E7BE2000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1E64000
|
unkown image
|
page readonly
|
|
|
|
F19357F000
|
stack
|
page read and write
|
|
|
|
E0AD0FE000
|
stack
|
page read and write
|
|
|
|
29C30876000
|
unkown
|
page read and write
|
|
|
|
7DF4DA990000
|
unkown image
|
page readonly
|
|
|
|
29C36014000
|
unkown
|
page read and write
|
|
|
|
7FF5025EF000
|
unkown image
|
page readonly
|
|
|
|
7FF5376E7000
|
unkown image
|
page readonly
|
|
|
|
6B0A4FF000
|
stack
|
page read and write
|
|
|
|
7FF5C7113000
|
unkown image
|
page readonly
|
|
|
|
22B72E32000
|
unkown
|
page read and write
|
|
|
|
7FF511CAB000
|
unkown image
|
page readonly
|
|
|
|
7FF5D21D2000
|
unkown image
|
page readonly
|
|
|
|
29C35D61000
|
unkown
|
page read and write
|
|
|
|
7FF511C9F000
|
unkown image
|
page readonly
|
|
|
|
7DF5F0590000
|
unkown image
|
page readonly
|
|
|
|
29C31000000
|
unkown
|
page read and write
|
|
|
|
19965E50000
|
unkown image
|
page readonly
|
|
|
|
7FF5C71AD000
|
unkown image
|
page readonly
|
|
|
|
7DF5F0570000
|
unkown image
|
page readonly
|
|
|
|
2261F029000
|
unkown
|
page read and write
|
|
|
|
2261F07A000
|
unkown
|
page read and write
|
|
|
|
29C36107000
|
unkown
|
page read and write
|
|
|
|
7DF44B1A0000
|
unkown image
|
page readonly
|
|
|
|
1B35F1D0000
|
unkown image
|
page readonly
|
|
|
|
22B72E40000
|
unkown
|
page read and write
|
|
|
|
22B72E00000
|
unkown
|
page read and write
|
|
|
|
29C306B0000
|
unkown image
|
page readonly
|
|
|
|
1B35F308000
|
unkown
|
page read and write
|
|
|
|
7FF5119B8000
|
unkown image
|
page readonly
|
|
|
|
29C30813000
|
unkown
|
page read and write
|
|
|
|
7FF5DA749000
|
unkown image
|
page readonly
|
|
|
|
7DF5F0572000
|
unkown image
|
page readonly
|
|
|
|
22B73380000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1E7F000
|
unkown image
|
page readonly
|
|
|
|
7FF5025C0000
|
unkown image
|
page readonly
|
|
|
|
7FF5378CC000
|
unkown image
|
page readonly
|
|
|
|
29C35D6C000
|
unkown
|
page read and write
|
|
|
|
29C3115A000
|
unkown
|
page read and write
|
|
|
|
7FF537998000
|
unkown image
|
page readonly
|
|
|
|
7DF5275D0000
|
unkown image
|
page readonly
|
|
|
|
7DF5DCAE0000
|
unkown image
|
page readonly
|
|
|
|
22B72E85000
|
unkown
|
page read and write
|
|
|
|
7FF5C71BB000
|
unkown image
|
page readonly
|
|
|
|
1FD5368C000
|
unkown
|
page read and write
|
|
|
|
7DF5DCAD2000
|
unkown image
|
page readonly
|
|
|
|
1996602A000
|
unkown
|
page read and write
|
|
|
|
7DF5DCAC2000
|
unkown image
|
page readonly
|
|
|
|
7DF5E7BE0000
|
unkown image
|
page readonly
|
|
|
|
2D8CE170000
|
unkown image
|
page readonly
|
|
|
|
29C30C00000
|
unkown image
|
page readonly
|
|
|
|
7DF579770000
|
unkown image
|
page readonly
|
|
|
|
7FF5D20BC000
|
unkown image
|
page readonly
|
|
|
|
7FF511CC4000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1E70000
|
unkown image
|
page readonly
|
|
|
|
7FF5D21DC000
|
unkown image
|
page readonly
|
|
|
|
7FF5C70FD000
|
unkown image
|
page readonly
|
|
|
|
6B09D9F000
|
stack
|
page read and write
|
|
|
|
7FF5D2A9E000
|
unkown image
|
page readonly
|
|
|
|
29C3601D000
|
unkown
|
page read and write
|
|
|
|
2261F4D0000
|
unkown image
|
page readonly
|
|
|
|
20811C00000
|
unkown image
|
page readonly
|
|
|
|
22B72E47000
|
unkown
|
page read and write
|
|
|
|
29C3611B000
|
unkown
|
page read and write
|
|
|
|
7DF5E83C0000
|
unkown image
|
page readonly
|
|
|
|
7FF5D22B6000
|
unkown image
|
page readonly
|
|
|
|
1FD53A00000
|
unkown image
|
page readonly
|
|
|
|
2261EF20000
|
unkown image
|
page readonly
|
|
|
|
29C31850000
|
unkown image
|
page readonly
|
|
|
|
29C31118000
|
unkown
|
page read and write
|
|
|
|
7FF5DA0D4000
|
unkown image
|
page readonly
|
|
|
|
7FF5D2011000
|
unkown image
|
page readonly
|
|
|
|
29C35D67000
|
unkown
|
page read and write
|
|
|
|
7FF5D284D000
|
unkown image
|
page readonly
|
|
|
|
7FF5D22DE000
|
unkown image
|
page readonly
|
|
|
|
2261F05B000
|
unkown
|
page read and write
|
|
|
|
29C3610E000
|
unkown
|
page read and write
|
|
|
|
7FF5C70C7000
|
unkown image
|
page readonly
|
|
|
|
1FD5363C000
|
unkown
|
page read and write
|
|
|
|
1FD533A0000
|
heap private
|
page read and write
|
|
|
|
7FF511CDF000
|
unkown image
|
page readonly
|
|
|
|
ABA1FD000
|
stack
|
page read and write
|
|
|
|
29C3610D000
|
unkown
|
page read and write
|
|
|
|
7FF5D29C8000
|
unkown image
|
page readonly
|
|
|
|
AB9EFF000
|
stack
|
page read and write
|
|
|
|
22B72E32000
|
unkown
|
page read and write
|
|
|
|
6B0A5FE000
|
stack
|
page read and write
|
|
|
|
F19307F000
|
stack
|
page read and write
|
|
|
|
2D8CE200000
|
unkown
|
page read and write
|
|
|
|
E22ADFB000
|
stack
|
page read and write
|
|
|
|
7FF50238D000
|
unkown image
|
page readonly
|
|
|
|
7FF5025CD000
|
unkown image
|
page readonly
|
|
|
|
1B35F080000
|
unkown image
|
page read and write
|
|
|
|
7FF5C71BE000
|
unkown image
|
page readonly
|
|
|
|
7FF5119A6000
|
unkown image
|
page readonly
|
|
|
|
82214FE000
|
stack
|
page read and write
|
|
|
|
7DF4EE440000
|
unkown image
|
page readonly
|
|
|
|
7FF5D2040000
|
unkown image
|
page readonly
|
|
|
|
7FF5377AF000
|
unkown image
|
page readonly
|
|
|
|
7FF511BD5000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAAD5000
|
unkown image
|
page readonly
|
|
|
|
7FF5D21A0000
|
unkown image
|
page readonly
|
|
|
|
29C30D80000
|
unkown image
|
page readonly
|
|
|
|
29C3115A000
|
unkown
|
page read and write
|
|
|
|
1FD533D0000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1E6A000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAB87000
|
unkown image
|
page readonly
|
|
|
|
1FD53600000
|
unkown
|
page read and write
|
|
|
|
7FF5D1761000
|
unkown image
|
page readonly
|
|
|
|
2D8CE29C000
|
unkown
|
page read and write
|
|
|
|
29C35C03000
|
unkown
|
page read and write
|
|
|
|
7FF5DA0CD000
|
unkown image
|
page readonly
|
|
|
|
7FF5377A6000
|
unkown image
|
page readonly
|
|
|
|
29C31118000
|
unkown
|
page read and write
|
|
|
|
E22ACFE000
|
stack
|
page read and write
|
|
|
|
29C30913000
|
unkown
|
page read and write
|
|
|
|
7FF53790D000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1FF7000
|
unkown image
|
page readonly
|
|
|
|
7FF563DA5000
|
unkown image
|
page readonly
|
|
|
|
29C31118000
|
unkown
|
page read and write
|
|
|
|
7FF502529000
|
unkown image
|
page readonly
|
|
|
|
29C31119000
|
unkown
|
page read and write
|
|
|
|
7FF563DD5000
|
unkown image
|
page readonly
|
|
|
|
22B72DD0000
|
unkown image
|
page readonly
|
|
|
|
7FF511A7D000
|
unkown image
|
page readonly
|
|
|
|
20811ABB000
|
unkown
|
page read and write
|
|
|
|
6B0A3F7000
|
stack
|
page read and write
|
|
|
|
7DF477630000
|
unkown image
|
page readonly
|
|
|
|
2261F000000
|
unkown
|
page read and write
|
|
|
|
7FF5D22CD000
|
unkown image
|
page readonly
|
|
|
|
2D8CE255000
|
unkown
|
page read and write
|
|
|
|
7DF54D2F0000
|
unkown image
|
page readonly
|
|
|
|
E22AAFA000
|
stack
|
page read and write
|
|
|
|
7FF5D2A7B000
|
unkown image
|
page readonly
|
|
|
|
29C360F1000
|
unkown
|
page read and write
|
|
|
|
29C306D0000
|
unkown image
|
page readonly
|
|
|
|
7FF502533000
|
unkown image
|
page readonly
|
|
|
|
29C31820000
|
unkown image
|
page readonly
|
|
|
|
29C31002000
|
unkown
|
page read and write
|
|
|
|
7FF511B5E000
|
unkown image
|
page readonly
|
|
|
|
7DF5E7BF0000
|
unkown image
|
page readonly
|
|
|
|
1B35F0A0000
|
unkown image
|
page readonly
|
|
|
|
29C36086000
|
unkown
|
page read and write
|
|
|
|
7DF5E83A0000
|
unkown image
|
page readonly
|
|
|
|
29C31113000
|
unkown
|
page read and write
|
|
|
|
7FF5D219D000
|
unkown image
|
page readonly
|
|
|
|
1FD53651000
|
unkown
|
page read and write
|
|
|
|
7FF5DABE5000
|
unkown image
|
page readonly
|
|
|
|
29C36102000
|
unkown
|
page read and write
|
|
|
|
7FF5025D4000
|
unkown image
|
page readonly
|
|
|
|
7FF563E6B000
|
unkown image
|
page readonly
|
|
|
|
1FD53680000
|
unkown
|
page read and write
|
|
|
|
19966580000
|
unkown image
|
page readonly
|
|
|
|
29C35FB0000
|
unkown
|
page read and write
|
|
|
|
7DF5E83A0000
|
unkown image
|
page readonly
|
|
|
|
7DF517F00000
|
unkown image
|
page readonly
|
|
|
|
2261EF80000
|
unkown
|
page read and write
|
|
|
|
7FF563C0D000
|
unkown image
|
page readonly
|
|
|
|
7FF5D21E7000
|
unkown image
|
page readonly
|
|
|
|
29C3610A000
|
unkown
|
page read and write
|
|
|
|
22B72E4F000
|
unkown
|
page read and write
|
|
|
|
1FD5364F000
|
unkown
|
page read and write
|
|
|
|
1B35F248000
|
unkown
|
page read and write
|
|
|
|
7DF54D2D0000
|
unkown image
|
page readonly
|
|
|
|
7DF5275E0000
|
unkown image
|
page readonly
|
|
|
|
7FF53785E000
|
unkown image
|
page readonly
|
|
|
|
2D8CE190000
|
heap default
|
page read and write
|
|
|
|
22B72E4E000
|
unkown
|
page read and write
|
|
|
|
20811A89000
|
unkown
|
page read and write
|
|
|
|
20811920000
|
heap default
|
page read and write
|
|
|
|
7FF5379CE000
|
unkown image
|
page readonly
|
|
|
|
22B72E76000
|
unkown
|
page read and write
|
|
|
|
20811A70000
|
unkown
|
page read and write
|
|
|
|
7DF579762000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAC6E000
|
unkown image
|
page readonly
|
|
|
|
7FF563E5E000
|
unkown image
|
page readonly
|
|
|
|
E0AC9DB000
|
unkown
|
page read and write
|
|
|
|
7FF5C6CA8000
|
unkown image
|
page readonly
|
|
|
|
F19347F000
|
stack
|
page read and write
|
|
|
|
7FF5DA758000
|
unkown image
|
page readonly
|
|
|
|
1FD53613000
|
unkown
|
page read and write
|
|
|
|
20811FA0000
|
unkown image
|
page readonly
|
|
|
|
29C35DA0000
|
unkown
|
page read and write
|
|
|
|
7FF5D2233000
|
unkown image
|
page readonly
|
|
|
|
29C36102000
|
unkown
|
page read and write
|
|
|
|
29C3602A000
|
unkown
|
page read and write
|
|
|
|
7DF5275F0000
|
unkown image
|
page readonly
|
|
|
|
7FF563D63000
|
unkown image
|
page readonly
|
|
|
|
7FF5379BD000
|
unkown image
|
page readonly
|
|
|
|
7FF5DABAD000
|
unkown image
|
page readonly
|
|
|
|
7FF511C45000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1AA3000
|
unkown image
|
page readonly
|
|
|
|
7FF563E40000
|
unkown image
|
page readonly
|
|
|
|
1B35F0D0000
|
unkown image
|
page readonly
|
|
|
|
29C30700000
|
heap default
|
page read and write
|
|
|
|
7FF5DAC6B000
|
unkown image
|
page readonly
|
|
|
|
19966000000
|
unkown
|
page read and write
|
|
|
|
20811B02000
|
unkown
|
page read and write
|
|
|
|
29C31500000
|
unkown
|
page read and write
|
|
|
|
20811E10000
|
unkown image
|
page readonly
|
|
|
|
7FF511B02000
|
unkown image
|
page readonly
|
|
|
|
7FF511CCE000
|
unkown image
|
page readonly
|
|
|
|
7DF4E5AB0000
|
unkown image
|
page readonly
|
|
|
|
7FF537919000
|
unkown image
|
page readonly
|
|
|
|
22B72E48000
|
unkown
|
page read and write
|
|
|
|
7FF511A72000
|
unkown image
|
page readonly
|
|
|
|
208118D0000
|
unkown image
|
page readonly
|
|
|
|
22B72E39000
|
unkown
|
page read and write
|
|
|
|
822177E000
|
stack
|
page read and write
|
|
|
|
7FF563DB3000
|
unkown image
|
page readonly
|
|
|
|
E22A5DB000
|
unkown
|
page read and write
|
|
|
|
2D8CE6D0000
|
unkown image
|
page readonly
|
|
|
|
7FF563C83000
|
unkown image
|
page readonly
|
|
|
|
7FF5C7025000
|
unkown image
|
page readonly
|
|
|
|
29C35DA0000
|
unkown
|
page read and write
|
|
|
|
7FF5D1DF6000
|
unkown image
|
page readonly
|
|
|
|
22B72CA0000
|
unkown image
|
page readonly
|
|
|
|
20811AC2000
|
unkown
|
page read and write
|
|
|
|
1FD533B0000
|
unkown image
|
page readonly
|
|
|
|
1B35F400000
|
unkown image
|
page readonly
|
|
|
|
7FF5D21B0000
|
unkown image
|
page readonly
|
|
|
|
29C36450000
|
unkown
|
page read and write
|
|
|
|
29C31159000
|
unkown
|
page read and write
|
|
|
|
7FF563933000
|
unkown image
|
page readonly
|
|
|
|
22B72E7F000
|
unkown
|
page read and write
|
|
|
|
19965E40000
|
unkown image
|
page readonly
|
|
|
|
7DF5E83B2000
|
unkown image
|
page readonly
|
|
|
|
1B35F313000
|
unkown
|
page read and write
|
|
|
|
1B35F600000
|
unkown image
|
page readonly
|
|
|
|
2D8CE25D000
|
unkown
|
page read and write
|
|
|
|
7FF537945000
|
unkown image
|
page readonly
|
|
|
|
29C360A6000
|
unkown
|
page read and write
|
|
|
|
7FF5D2127000
|
unkown image
|
page readonly
|
|
|
|
7FF5D29E5000
|
unkown image
|
page readonly
|
|
|
|
98D70AB000
|
unkown
|
page read and write
|
|
|
|
7FF5D22D4000
|
unkown image
|
page readonly
|
|
|
|
29C306E0000
|
unkown image
|
page readonly
|
|
|
|
22B72E2E000
|
unkown
|
page read and write
|
|
|
|
29C31159000
|
unkown
|
page read and write
|
|
|
|
1B35F271000
|
unkown
|
page read and write
|
|
|
|
7DF54D2E0000
|
unkown image
|
page readonly
|
|
|
|
29C307E0000
|
unkown image
|
page readonly
|
|
|
|
22B72C80000
|
unkown image
|
page read and write
|
|
|
|
22B72E7C000
|
unkown
|
page read and write
|
|
|
|
29C35D60000
|
unkown
|
page read and write
|
|
|
|
20811A29000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC38000
|
unkown image
|
page readonly
|
|
|
|
7DF5F0572000
|
unkown image
|
page readonly
|
|
|
|
E22A87E000
|
stack
|
page read and write
|
|
|
|
7FF5D21F7000
|
unkown image
|
page readonly
|
|
|
|
82211FE000
|
stack
|
page read and write
|
|
|
|
29C3089E000
|
unkown
|
page read and write
|
|
|
|
7FF5D1F7A000
|
unkown image
|
page readonly
|
|
|
|
29C35BC0000
|
unkown
|
page read and write
|
|
|
|
7FF563948000
|
unkown image
|
page readonly
|
|
|
|
2D8CE1C0000
|
unkown
|
page read and write
|
|
|
|
22B72E62000
|
unkown
|
page read and write
|
|
|
|
7FF511BF8000
|
unkown image
|
page readonly
|
|
|
|
7DF5DCAD0000
|
unkown image
|
page readonly
|
|
|
|
22B72E70000
|
unkown
|
page read and write
|
|
|
|
7FF511BD7000
|
unkown image
|
page readonly
|
|
|
|
7DF579772000
|
unkown image
|
page readonly
|
|
|
|
1FD5362A000
|
unkown
|
page read and write
|
|
|
|
822137E000
|
stack
|
page read and write
|
|
|
|
20812202000
|
unkown
|
page read and write
|
|
|
|
22B73200000
|
unkown image
|
page readonly
|
|
|
|
1996605C000
|
unkown
|
page read and write
|
|
|
|
7FF563E36000
|
unkown image
|
page readonly
|
|
|
|
7FF53779C000
|
unkown image
|
page readonly
|
|
|
|
7FF5D2A68000
|
unkown image
|
page readonly
|
|
|
|
7DF5275D2000
|
unkown image
|
page readonly
|
|
|
|
29C35D81000
|
unkown
|
page read and write
|
|
|
|
7FF5D2260000
|
unkown image
|
page readonly
|
|
|
|
7FF511C15000
|
unkown image
|
page readonly
|
|
|
|
7DF54D2D0000
|
unkown image
|
page readonly
|
|
|
|
29C3087B000
|
unkown
|
page read and write
|
|
|
|
2261F013000
|
unkown
|
page read and write
|
|
|
|
7FF5D1FDA000
|
unkown image
|
page readonly
|
|
|
|
7FF5D21C4000
|
unkown image
|
page readonly
|
|
|
|
29C360D9000
|
unkown
|
page read and write
|
|
|
|
7DF579760000
|
unkown image
|
page readonly
|
|
|
|
29C35D84000
|
unkown
|
page read and write
|
|
|
|
7FF51183E000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAC3F000
|
unkown image
|
page readonly
|
|
|
|
7FF5D22EF000
|
unkown image
|
page readonly
|
|
|
|
2261F058000
|
unkown
|
page read and write
|
|
|
|
29C3610D000
|
unkown
|
page read and write
|
|
|
|
29C35D90000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC4B000
|
unkown image
|
page readonly
|
|
|
|
1FD53702000
|
unkown
|
page read and write
|
|
|
|
22B72E60000
|
unkown
|
page read and write
|
|
|
|
7FF563E4D000
|
unkown image
|
page readonly
|
|
|
|
20811B13000
|
unkown
|
page read and write
|
|
|
|
29C35D60000
|
unkown
|
page read and write
|
|
|
|
29C360FF000
|
unkown
|
page read and write
|
|
|
|
7FF5D29DD000
|
unkown image
|
page readonly
|
|
|
|
1FD53700000
|
unkown
|
page read and write
|
|
|
|
7DF5F0590000
|
unkown image
|
page readonly
|
|
|
|
19966002000
|
unkown
|
page read and write
|
|
|
|
7FF563D67000
|
unkown image
|
page readonly
|
|
|
|
7DF579760000
|
unkown image
|
page readonly
|
|
|
|
2D8CE266000
|
unkown
|
page read and write
|
|
|
|
2261EF30000
|
unkown image
|
page readonly
|
|
|
|
98D777E000
|
stack
|
page read and write
|
|
|
|
19966102000
|
unkown
|
page read and write
|
|
|
|
7FF5D2A9B000
|
unkown image
|
page readonly
|
|
|
|
7FF53777D000
|
unkown image
|
page readonly
|
|
|
|
7FF511BEC000
|
unkown image
|
page readonly
|
|
|
|
7DF5F0582000
|
unkown image
|
page readonly
|
|
|
|
F19317D000
|
stack
|
page read and write
|
|
|
|
7DF5E7C00000
|
unkown image
|
page readonly
|
|
|
|
7DF5E7BE2000
|
unkown image
|
page readonly
|
|
|
|
2D8CE25F000
|
unkown
|
page read and write
|
|
|
|
9D209F7000
|
stack
|
page read and write
|
|
|
|
7DF5DCAC0000
|
unkown image
|
page readonly
|
|
|
|
7FF511CDD000
|
unkown image
|
page readonly
|
|
|
|
19965E20000
|
unkown image
|
page readonly
|
|
|
|
2D8CEA02000
|
unkown
|
page read and write
|
|
|
|
F192F7C000
|
stack
|
page read and write
|
|
|
|
ABA4FF000
|
stack
|
page read and write
|
|
|
|
29C35E40000
|
unkown
|
page read and write
|
|
|
|
29C31860000
|
unkown image
|
page readonly
|
|
|
|
1B35F250000
|
unkown
|
page read and write
|
|
|
|
20811E00000
|
unkown image
|
page readonly
|
|
|
|
7DF5E83C0000
|
unkown image
|
page readonly
|
|
|
|
7FF5C6948000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAB8C000
|
unkown image
|
page readonly
|
|
|
|
7FF5D2A80000
|
unkown image
|
page readonly
|
|
|
|
29C31100000
|
unkown
|
page read and write
|
|
|
|
2D8CE160000
|
unkown image
|
page readonly
|
|
|
|
7FF537915000
|
unkown image
|
page readonly
|
|
|
|
2261F075000
|
unkown
|
page read and write
|
|
|
|
29C35EB0000
|
unkown
|
page read and write
|
|
|
|
29C35EC0000
|
unkown
|
page read and write
|
|
|
|
7FF5D21FC000
|
unkown image
|
page readonly
|
|
|
|
E0AD1FF000
|
stack
|
page read and write
|
|
|
|
19966024000
|
unkown
|
page read and write
|
|
|
|
29C308AF000
|
unkown
|
page read and write
|
|
|
|
E0ACCFE000
|
stack
|
page read and write
|
|
|
|
7DF5F0580000
|
unkown image
|
page readonly
|
|
|
|
7DF54D2F0000
|
unkown image
|
page readonly
|
|
|
|
29C36104000
|
unkown
|
page read and write
|
|
|
|
29C35DA4000
|
unkown
|
page read and write
|
|
|
|
29C31102000
|
unkown
|
page read and write
|
|
|
|
7FF5C7196000
|
unkown image
|
page readonly
|
|
|
|
2D8CE1A0000
|
unkown image
|
page readonly
|
|
|
|
AB9F7C000
|
stack
|
page read and write
|
|
|
|
29C3610C000
|
unkown
|
page read and write
|
|
|
|
7FF5D1FDC000
|
unkown image
|
page readonly
|
|
|
|
29C30FF3000
|
unkown
|
page read and write
|
|
|
|
29C36102000
|
unkown
|
page read and write
|
|
|
|
7FF5D22DB000
|
unkown image
|
page readonly
|
|
|
|
7DF517EF2000
|
unkown image
|
page readonly
|
|
|
|
2D8CE26C000
|
unkown
|
page read and write
|
|
|
|
1FD533E0000
|
unkown image
|
page readonly
|
|
|
|
7FF563D9D000
|
unkown image
|
page readonly
|
|
|
|
7FF5C701F000
|
unkown image
|
page readonly
|
|
|
|
7FF511AA1000
|
unkown image
|
page readonly
|
|
|
|
7FF5C7037000
|
unkown image
|
page readonly
|
|
|
|
208118F0000
|
unkown image
|
page readonly
|
|
|
|
29C3603B000
|
unkown
|
page read and write
|
|
|
|
7FF537923000
|
unkown image
|
page readonly
|
|
|
|
1FD5364A000
|
unkown
|
page read and write
|
|
|
|
ABA0FB000
|
stack
|
page read and write
|
|
|
|
7DF5DCAC2000
|
unkown image
|
page readonly
|
|
|
|
22B72E67000
|
unkown
|
page read and write
|
|
|
|
7FF5D21E3000
|
unkown image
|
page readonly
|
|
|
|
29C35ED0000
|
unkown
|
page read and write
|
|
|
|
AB9C7C000
|
stack
|
page read and write
|
|
|
|
29C35BE0000
|
unkown
|
page read and write
|
|
|
|
29C30893000
|
unkown
|
page read and write
|
|
|
|
22B72E41000
|
unkown
|
page read and write
|
|
|
|
2261EEE0000
|
unkown image
|
page read and write
|
|
|
|
7FF511C23000
|
unkown image
|
page readonly
|
|
|
|
29C30FF0000
|
unkown
|
page read and write
|
|
|
|
1FD5364D000
|
unkown
|
page read and write
|
|
|
|
29C31158000
|
unkown
|
page read and write
|
|
|
|
7FF563CD7000
|
unkown image
|
page readonly
|
|
|
|
29C30690000
|
unkown image
|
page read and write
|
|
|
|
9D2067E000
|
stack
|
page read and write
|
|
|
|
29C35EA0000
|
unkown
|
page read and write
|
|
|
|
22B72E64000
|
unkown
|
page read and write
|
|
|
|
E22B67E000
|
stack
|
page read and write
|
|
|
|
29C35EB0000
|
unkown
|
page read and write
|
|
|
|
7FF5025DB000
|
unkown image
|
page readonly
|
|
|
|
7FF5378F8000
|
unkown image
|
page readonly
|
|
|
|
1B35F1F0000
|
unkown
|
page read and write
|
|
|
|
1B35F24B000
|
unkown
|
page read and write
|
|
|
|
2261EF50000
|
heap default
|
page read and write
|
|
|
|
2D8CE264000
|
unkown
|
page read and write
|
|
|
|
29C36102000
|
unkown
|
page read and write
|
|
|
|
7FF563E28000
|
unkown image
|
page readonly
|
|
|
|
7FF5D2A15000
|
unkown image
|
page readonly
|
|
|
|
7FF5378EC000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1FAF000
|
unkown image
|
page readonly
|
|
|
|
1FD53B80000
|
unkown image
|
page readonly
|
|
|
|
29C35E30000
|
unkown
|
page read and write
|
|
|
|
7FF5D2763000
|
unkown image
|
page readonly
|
|
|
|
7FF511CAE000
|
unkown image
|
page readonly
|
|
|
|
7FF5379A6000
|
unkown image
|
page readonly
|
|
|
|
7FF5D22BE000
|
unkown image
|
page readonly
|
|
|
|
29C30E60000
|
unkown
|
page read and write
|
|
|
|
ABA07D000
|
stack
|
page read and write
|
|
|
|
20811A44000
|
unkown
|
page read and write
|
|
|
|
7DF5F0582000
|
unkown image
|
page readonly
|
|
|
|
7FF511C98000
|
unkown image
|
page readonly
|
|
|
|
2261EF60000
|
unkown image
|
page readonly
|
|
|
|
19965FA0000
|
unkown
|
page read and write
|
|
|
|
7FF5C7135000
|
unkown image
|
page readonly
|
|
|
|
7DF5275E2000
|
unkown image
|
page readonly
|
|
|
|
1B35F249000
|
unkown
|
page read and write
|
|
|
|
2D8CE25C000
|
unkown
|
page read and write
|
|
|
|
9D203FC000
|
unkown
|
page read and write
|
|
|
|
19965F70000
|
unkown
|
page read and write
|
|
|
|
7DF5275D0000
|
unkown image
|
page readonly
|
|
|
|
7DF5E7BF2000
|
unkown image
|
page readonly
|
|
|
|
7FF563CE4000
|
unkown image
|
page readonly
|
|
|
|
22B72DF0000
|
unkown
|
page read and write
|
|
|
|
7FF5C7188000
|
unkown image
|
page readonly
|
|
|
|
98D712E000
|
stack
|
page read and write
|
|
|
|
7FF5025DE000
|
unkown image
|
page readonly
|
|
|
|
E22B17F000
|
stack
|
page read and write
|
|
|
|
7FF5378D7000
|
unkown image
|
page readonly
|
|
|
|
7FF5D223A000
|
unkown image
|
page readonly
|
|
|
|
20811F90000
|
unkown image
|
page readonly
|
|
|
|
98D757E000
|
stack
|
page read and write
|
|
|
|
7DF5E83B0000
|
unkown image
|
page readonly
|
|
|
|
22B72E61000
|
unkown
|
page read and write
|
|
|
|
7FF511CA6000
|
unkown image
|
page readonly
|
|
|
|
208118D0000
|
unkown image
|
page readonly
|
|
|
|
6B0A27B000
|
stack
|
page read and write
|
|
|
|
1B35F255000
|
unkown
|
page read and write
|
|
|
|
7FF53766A000
|
unkown image
|
page readonly
|
|
|
|
2261EF00000
|
unkown image
|
page readonly
|
|
|
|
19965F50000
|
unkown image
|
page readonly
|
|
|
|
82215FD000
|
stack
|
page read and write
|
|
|
|
7FF5DAC7F000
|
unkown image
|
page readonly
|
|
|
|
1B35F780000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAC7F000
|
unkown image
|
page readonly
|
|
|
|
7FF5D2229000
|
unkown image
|
page readonly
|
|
|
|
7FF5379C4000
|
unkown image
|
page readonly
|
|
There are 867 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://ayaanhomes.com.au/Approved/
|
|
|
|
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Le8XbwUAAAAANWeNFdP-C4MpwjbSxsAKmKrHFUn&co=aHR0cHM6Ly9heWFhbmhvbWVzLmNvbS5hdTo0NDM.&hl=en&v=_7Co1fh8iT2hcjvquYJ_3zSP&size=invisible&cb=ya4mrevdfx81
|
|