Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Michal November 23, 2021.html
|
HTML document, ASCII text, with very long lines, with no line terminators
|
initial sample
|
 |
|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\07910a4c-b41d-4297-8fc6-73cab0eb04d7.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\085b320e-381d-4521-ae03-7484706c9bca.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\24e0cc05-cc01-4f06-a6c0-8dd3b6dbf6e2.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\7461f93a-bb7b-4729-acf3-9077a7d22d72.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\10595e4a-9962-4be9-ba84-787eedc9996d.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\13373234-e187-4cc9-ae11-55770141d85a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1438042b-f735-44e6-8a42-8aab82316710.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1e3a9b42-4721-4a4c-a183-ceabe96147aa.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2b3f2815-d331-433a-80ef-f0574c7bc284.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3a2837c4-d8e8-469c-9069-60e8da51a9c6.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\64350120-f9ee-42f4-ae48-a30d1f1252d6.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6eb3b165-b94d-449a-84c1-edc57e7b01a7.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\73b4b623-41e7-4e5b-a2c7-d3791255cb14.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\80f6cce7-cf8b-48cf-8ada-a1286d5db66c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\834db08d-ccdb-41ee-bc7f-dd3e833cea4a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8359288c-a50a-46fa-9809-71e603319210.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\87a8332c-3a9c-4a64-9371-0f61521e8c07.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9f108e1a-7669-4464-a782-5f31365cce8d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old.. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old\. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session. (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabs.. (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.oldMP (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State.. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences.. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences\ (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences\* (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferencesi\ (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure PreferencesMP (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.oldgs (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\3b30358e-9b55-40bb-9ed9-879d79086488.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.oldmW
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\368ed337-4a75-49c4-95ec-63f98674234c.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old.
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old.
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.old/l
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.oldut
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a6a26573-f827-4553-838b-40cb117a5e88.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\af24802f-b8ba-485a-8278-b0e4a667968c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b2d5ba50-49d4-4d6c-9e14-4a668d41766f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b54a137a-2246-40bd-b862-e3d1297c5d00.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\bbfa86d1-e9e6-4a68-bc17-db4a1da15dd6.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c47ff34b-8df7-4119-b996-d1fe2d716e67.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\dee57397-e29f-4816-a190-70161c42d335.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.oldfb (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State4 (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State@ (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StateL (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\27\scoped_dir4900_1822177574\Ruleset
Data
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\a69dcf84-87d0-4ad0-b558-1fe5aa05e865.tmp
|
SysEx File -
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\bf6e5599-f638-4f40-8e2f-20fe52912ff8.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\c4f56c75-8e9d-4655-b557-e59309e02ccb.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\c5225ae4-befa-4eb3-87d5-fafe9fd32698.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\d3ca25c6-1800-45a7-b653-53aae0b47c82.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\d69b3039-821e-49b7-9a82-8d204ea4e39d.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\d91c7f12-b66f-49ee-a565-b7bd14175294.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\dc637f7d-4c45-4b9e-bfbd-8ab08c208e4e.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\eae3be44-6fda-40a7-9170-c688c6990e4a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\fe0f9ff3-6564-421b-ad6e-4d3305dfdff5.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\1f32a88c-5ee0-43e0-89a5-ad9a047afa27.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2eba0eda-c25f-4d5a-b294-12eaa02e2ec8.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_1438796560\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_1438796560\_platform_specific\x86_64\pnacl_public_pnacl_json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_1438796560\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_1438796560\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_1438796560\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_1438796560\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=7511538a3a6a0b862c772eace49075ed1bbe2377,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_1438796560\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_1438796560\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_1438796560\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_1438796560\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_1438796560\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=309d6d3d463e6b1b0690f39eb226b1e4c469b2ce,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_1438796560\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_sz_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=4b15de4ab227d5e46213978b8518d53c53ce1db9,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_1438796560\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_1438796560\manifest.json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_871132720\Filtering Rules
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_871132720\LICENSE.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_871132720\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_871132720\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\4900_871132720\manifest.json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\8324328e-89ad-4863-8610-900a96d2b23f.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\fa6062be-3533-4e13-9c6e-4ee142156bf2.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\8324328e-89ad-4863-8610-900a96d2b23f.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\iw\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\angular.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\background_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\cast_sender.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\feedback.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\feedback.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\feedback_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\material_css_min.css
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\mirroring_cast_streaming.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\mirroring_common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\mirroring_hangouts.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_1475413813\CRX_INSTALL\mirroring_webrtc.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\1f32a88c-5ee0-43e0-89a5-ad9a047afa27.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir4900_233558831\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
There are 270 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "C:\Users\user\Desktop\Michal
November 23, 2021.html
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1620,2406673363085316604,14634662143888244885,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1944 /prefetch:8
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://harperette.com/module/project_theme/NaturalQuality/src/User/Option/Auth/form.php
|
unknown
|
|
|
|
file:///C:/Users/user/Desktop/Michal%20November%2023,%202021.html
|
|
||
|
https://passwordreset.microsoftonline.com/js/Common.js1$
|
unknown
|
|
|
|
https://apis.google.com/js/client.js
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/images/wait_animation.gif
|
unknown
|
|
|
|
https://www.google.com/images/cleardot.gif
|
unknown
|
|
|
|
https://aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg
|
152.199.23.37
|
|
|
|
https://crash.corp.google.com/samples?reportid=&q=
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/ScriptResource.axd?d=q5w5thCcfM-puGUfx2IvVvou0xwZRExIT95KU
|
unknown
|
|
|
|
https://www.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://easylist.to/)
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/images/footer_logo_grey_bg.png
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/?ru=https%3a%2f%2flogin.microsoftonline.com%2fcommon%2freprocess%3fctx%3drQIIAYWSvY_jZBDG42Q3l82BOQ50Oqi2QAIhOXn9Ha90RbLO5mv9Otk4iZ0mSpw39pvYsddxEq91f8B2XIXQFRRXLg06GkQD9VZXb4MrCkSBqOgOL9QnmpnnmRnNFPMrFoQSTZdACXyZY0rg5DNOFHiO42cUy5gCxUkzQFVYJFD0XGLTFiMK5jR4XHyU-XbbePXzp_JX17-2P__j9dc3xLEdhv7mpFze7_clb7HAJiqZnlt2pus5Xls75keCeEMQL7OHaE214E12I6QbKzxdkQSaY9LMMCVlWWWNuIahZoRKnGoMABz1onPNxjBWQuie2QZztoSy7SqawcCRwd7PKbIVKrIRwT4AqnZmn4_qEZTraa0aw7jFq5oRGZrF3WU_UKvb0GbugxfgGP2VPVp4gTvxvU34MvddtrcIK3DYHW4D3FtYQqPriOq66VF9fchfDeZtSR9VO_OY61LKGWWtxzt_jxn2dIlGjo7ZWA_clR_xSNYG7UmsX1CIbrMdgevVL82ep0StcGqd-p2W0YmXs7jLXQYAs3UFS2tTafr7CnZ1X_V9sJd0eFEzqb5cgcqw2xVWYxzy8AqsRnxdVDe-Ptb1sYlGW1rTRV6YtOgd06BCIwpFx572-_JgoDembU9aCEPLReO6PatGWnp9KUZNLrD0sd2RXY2KLgeUvnFrLduaDuUJu0Jow830xrlU29U4wUYhRV-cjvB4aLG9lX_acAHw1KHiD6yb3Cfv-PmOeZ3Lp8L11rc50fPRGs-P_cBbYAe9i5MdU1b_dU3PRaWq47w5IH4_eFLIP3r4NHOc-eJjkDspFFLy7t3fB8SrwxTDrnj3HP_wW-ubyffg-O115vawvGArQWCcr1S7P0C1pQO1q_IOADeEUqcX1r2dLDXL_Y7m0eYz8YR-kSde5PO3-Q9b8gTWtb5WhXL1QmYm4M88cf0g89PR_4J9995HxeIWTxzPnDpo8_g_wH95P5OQREJmEzKXkAcJeZiQ-YR8kJCFhDxKyGJCPvwH0&mkt=en-IN&hosted=0&device_platform=Windows+10
|
|
||
|
https://passwordreset.microsoftonline.com/ScriptResource.axd?d=dKkdrB5w_YByjM1hzQdaPGMZwL6KMOpdrP-i7
|
unknown
|
|
|
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/images/header_microsoft.png
|
unknown
|
|
|
|
https://accounts.google.com/MergeSession
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/js/Common.js
|
unknown
|
|
|
|
https://creativecommons.org/compatiblelicenses
|
unknown
|
|
|
|
https://preprod-hangouts-googleapis.sandbox.google.com
|
unknown
|
|
|
|
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
|
142.250.203.97
|
|
|
|
https://www.google.com
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/images/header_Microsoft.pngGIF89a
|
unknown
|
|
|
|
https://github.com/easylist)
|
unknown
|
|
|
|
https://creativecommons.org/.
|
unknown
|
|
|
|
https://hangouts.clients6.google.com
|
unknown
|
|
|
|
https://meet.google.com
|
unknown
|
|
|
|
https://hangouts.google.com/hangouts/_/logpref
|
unknown
|
|
|
|
https://accounts.google.com
|
unknown
|
|
|
|
https://clients2.google.com/cr/report
|
unknown
|
|
|
|
http://angularjs.org
|
unknown
|
|
|
|
https://creativecommons.org/publicdomain/zero/1.0/.
|
unknown
|
|
|
|
https://github.com/angular/material
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/?ru=https%3a%2f%2flogin.microsoftonline.com%2fcommon%2frep
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/ScriptResource.axd?d=OUH-1awPDbalk0VCLValPdS0n633hJORT180q
|
unknown
|
|
|
|
https://apis.google.com
|
unknown
|
|
|
|
https://aadcdn.msftauth.net/shared/1.0/content/images/arrow_left_a9cc2824ef3517b6c4160dcf8ff7d410.sv
|
unknown
|
|
|
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
|
|
|
https://github.com/madler/zlib/blob/master/zlib.h
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/WebResource.axd?d=HAV6PjMKiAmtAvxBgE9JDGqR1xYgZB9pt2QBI2F1
|
unknown
|
|
|
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
|
|
|
https://clients2.google.com
|
unknown
|
|
|
|
https://aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d
|
unknown
|
|
|
|
https://www.google.com/tools/feedback
|
unknown
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
unknown
|
|
|
|
https://dns.google
|
unknown
|
|
|
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/css/Style.css?v=1342177280
|
unknown
|
|
|
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
|
|
|
https://ogs.google.com
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/css/ltrStyle.css?v=1342177280
|
unknown
|
|
|
|
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
|
|
|
https://aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90b
|
unknown
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/js/Button.js?v=1342177280
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
142.250.203.110
|
|
|
|
https://code.jquery.com/jquery-3.1.1.min.js
|
unknown
|
|
|
|
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
172.217.168.45
|
|
|
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://www.google.com;
|
unknown
|
|
|
|
https://aadcdn.msftauth.net/shared/1.0/content/images/arrow_left_a9cc2824ef3517b6c4160dcf8ff7d410.svg
|
152.199.23.37
|
|
|
|
https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
|
unknown
|
|
|
|
https://hangouts.google.com/
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/images/hip_text.gifX.
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/favicon.ico?v=1342177280Ci0KBw1EWxT8GgAKBw2L4FIoGgAKBw3Er9
|
unknown
|
|
|
|
https://www.google.com/images/x2.gif
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/images/header_Microsoft.png
|
unknown
|
|
|
|
http://llvm.org/):
|
unknown
|
|
|
|
https://www.google.com/images/dot2.gif
|
unknown
|
|
|
|
https://meetings.clients6.google.com
|
unknown
|
|
|
|
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://ajax.aspnetcdn.com/
|
unknown
|
|
|
|
https://code.google.com/p/nativeclient/issues/entry%s:
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/favicon.ico?v=1342177280
|
unknown
|
|
|
|
http://tools.ietf.org/html/rfc1950
|
unknown
|
|
|
|
https://ajax.aspnetcdn.com/ajax/jQuery/jquery-3.5.0.min.js
|
unknown
|
|
|
|
https://code.google.com/p/nativeclient/issues/entry
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/WebResource.axd?d=K8SG-wKQphiVYLlIdWNflHCKk9laM7b9jg1MsaXM
|
unknown
|
|
|
|
https://support.google.com/chromecast/answer/2998456
|
unknown
|
|
|
|
https://aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
|
152.199.23.37
|
|
|
|
https://clients2.googleusercontent.com
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/report-to/IdentityListAccountsHttp/external
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/images/hip_text.gif
|
unknown
|
|
|
|
https://docs.google.com
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/js/Webtrends.js
|
unknown
|
|
|
|
https://www.google.com/
|
unknown
|
|
|
|
https://feedback.googleusercontent.com
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/images/hip_reload.png
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/js/Captcha.js?v=1342177280
|
unknown
|
|
|
|
https://chromium.googlesource.com/a/native_client/pnacl-clang.git
|
unknown
|
|
|
|
https://passwordreset.microsoftonline.com/images/hip_speaker.png
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx
|
unknown
|
|
|
|
https://clients6.google.com
|
unknown
|
|
There are 85 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
cs1100.wpc.omegacdn.net
|
152.199.23.37
|
|
|
|
accounts.google.com
|
172.217.168.45
|
|
|
|
clients.l.google.com
|
142.250.203.110
|
|
|
|
googlehosted.l.googleusercontent.com
|
142.250.203.97
|
|
|
|
clients2.googleusercontent.com
|
unknown
|
|
|
|
passwordreset.microsoftonline.com
|
unknown
|
|
|
|
clients2.google.com
|
unknown
|
|
|
|
code.jquery.com
|
unknown
|
|
|
|
aadcdn.msftauth.net
|
unknown
|
|
|
|
ajax.aspnetcdn.com
|
unknown
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.168.2.1
|
unknown
|
unknown
|
|
|
|
142.250.203.110
|
clients.l.google.com
|
United States
|
|
|
|
192.168.2.6
|
unknown
|
unknown
|
|
|
|
172.217.168.45
|
accounts.google.com
|
United States
|
|
|
|
142.250.203.97
|
googlehosted.l.googleusercontent.com
|
United States
|
|
|
|
239.255.255.250
|
unknown
|
Reserved
|
|
|
|
192.168.2.23
|
unknown
|
unknown
|
|
|
|
152.199.23.37
|
cs1100.wpc.omegacdn.net
|
United States
|
|
|
|
192.168.2.255
|
unknown
|
unknown
|
|
|
|
127.0.0.1
|
unknown
|
unknown
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
|
There are 34 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
22425B70000
|
unkown
|
page read and write
|
|
|
|
219B7FEF000
|
unkown
|
page read and write
|
|
|
|
20447E70000
|
unkown
|
page read and write
|
|
|
|
7FF4F315F000
|
unkown image
|
page readonly
|
|
|
|
7FF5D16A7000
|
unkown image
|
page readonly
|
|
|
|
F3970FD000
|
stack
|
page read and write
|
|
|
|
7FF53DEED000
|
unkown image
|
page readonly
|
|
|
|
AC8CDFF000
|
stack
|
page read and write
|
|
|
|
20443B10000
|
unkown image
|
page readonly
|
|
|
|
7FF5B3804000
|
unkown image
|
page readonly
|
|
|
|
7FF5C9223000
|
unkown image
|
page readonly
|
|
|
|
1A854A6A000
|
unkown
|
page read and write
|
|
|
|
6DBE4FD000
|
stack
|
page read and write
|
|
|
|
7FF55A5C0000
|
unkown image
|
page readonly
|
|
|
|
7FF53DC3E000
|
unkown image
|
page readonly
|
|
|
|
16DB1013000
|
unkown
|
page read and write
|
|
|
|
B47DF3B000
|
unkown
|
page read and write
|
|
|
|
16DB0E60000
|
unkown image
|
page read and write
|
|
|
|
7FF5BDBE7000
|
unkown image
|
page readonly
|
|
|
|
7FF53D413000
|
unkown image
|
page readonly
|
|
|
|
1C1ACFE000
|
stack
|
page read and write
|
|
|
|
7FF5BDBF8000
|
unkown image
|
page readonly
|
|
|
|
7FF5C92F6000
|
unkown image
|
page readonly
|
|
|
|
1C80EAB0000
|
unkown image
|
page readonly
|
|
|
|
1A854330000
|
unkown image
|
page write copy
|
|
|
|
20448010000
|
unkown
|
page read and write
|
|
|
|
7FF5187DB000
|
unkown image
|
page readonly
|
|
|
|
7FF56443F000
|
unkown image
|
page readonly
|
|
|
|
1C80E5F0000
|
unkown
|
page read and write
|
|
|
|
7FF5B30E3000
|
unkown image
|
page readonly
|
|
|
|
7FF56FA34000
|
unkown image
|
page readonly
|
|
|
|
7FF53DCB1000
|
unkown image
|
page readonly
|
|
|
|
20448309000
|
unkown
|
page read and write
|
|
|
|
20443215000
|
unkown
|
page read and write
|
|
|
|
16DB1081000
|
unkown
|
page read and write
|
|
|
|
7FF564668000
|
unkown image
|
page readonly
|
|
|
|
20443AE0000
|
unkown image
|
page readonly
|
|
|
|
7FF5BDC3A000
|
unkown image
|
page readonly
|
|
|
|
7FF5C932B000
|
unkown image
|
page readonly
|
|
|
|
219B7FE6000
|
unkown
|
page read and write
|
|
|
|
7FF5C877D000
|
unkown image
|
page readonly
|
|
|
|
7DF5D35F0000
|
unkown image
|
page readonly
|
|
|
|
20448020000
|
unkown
|
page read and write
|
|
|
|
7DF52E100000
|
unkown image
|
page readonly
|
|
|
|
20F7A7E000
|
stack
|
page read and write
|
|
|
|
7DF57A290000
|
unkown image
|
page readonly
|
|
|
|
7FF51880F000
|
unkown image
|
page readonly
|
|
|
|
1A854593000
|
unkown
|
page read and write
|
|
|
|
7FF5D15EF000
|
unkown image
|
page readonly
|
|
|
|
20443800000
|
unkown
|
page read and write
|
|
|
|
7FF5762F9000
|
unkown image
|
page readonly
|
|
|
|
22426260000
|
unkown
|
page read and write
|
|
|
|
7FF55A6BB000
|
unkown image
|
page readonly
|
|
|
|
7FF56F993000
|
unkown image
|
page readonly
|
|
|
|
7FF5B3767000
|
unkown image
|
page readonly
|
|
|
|
20F817B000
|
stack
|
page read and write
|
|
|
|
DB62F7F000
|
stack
|
page read and write
|
|
|
|
1A853BF0000
|
unkown
|
page read and write
|
|
|
|
1A854A00000
|
unkown
|
page read and write
|
|
|
|
1A85454E000
|
unkown
|
page read and write
|
|
|
|
7FF53DE34000
|
unkown image
|
page readonly
|
|
|
|
AC8CEFF000
|
stack
|
page read and write
|
|
|
|
26A35F40000
|
unkown image
|
page readonly
|
|
|
|
7DF5DEC40000
|
unkown image
|
page readonly
|
|
|
|
22425C13000
|
unkown
|
page read and write
|
|
|
|
1A854580000
|
unkown
|
page read and write
|
|
|
|
20443359000
|
unkown
|
page read and write
|
|
|
|
7FF56F8C4000
|
unkown image
|
page readonly
|
|
|
|
1A854593000
|
unkown
|
page read and write
|
|
|
|
7DF5538B2000
|
unkown image
|
page readonly
|
|
|
|
16DB0E80000
|
unkown image
|
page readonly
|
|
|
|
1A853D16000
|
unkown
|
page read and write
|
|
|
|
7FF56F99A000
|
unkown image
|
page readonly
|
|
|
|
20443318000
|
unkown
|
page read and write
|
|
|
|
1C80E830000
|
unkown
|
page read and write
|
|
|
|
20443318000
|
unkown
|
page read and write
|
|
|
|
7FF5D1784000
|
unkown image
|
page readonly
|
|
|
|
7FF4F311F000
|
unkown image
|
page readonly
|
|
|
|
7FF5B3895000
|
unkown image
|
page readonly
|
|
|
|
7FF53DCBD000
|
unkown image
|
page readonly
|
|
|
|
204482E1000
|
unkown
|
page read and write
|
|
|
|
7FF53DDAE000
|
unkown image
|
page readonly
|
|
|
|
219B8360000
|
heap private
|
page read and write
|
|
|
|
7DF5538C0000
|
unkown image
|
page readonly
|
|
|
|
7FF5BDC33000
|
unkown image
|
page readonly
|
|
|
|
18913F50000
|
unkown image
|
page readonly
|
|
|
|
7FF559B43000
|
unkown image
|
page readonly
|
|
|
|
18914050000
|
unkown
|
page read and write
|
|
|
|
7DF585352000
|
unkown image
|
page readonly
|
|
|
|
20448490000
|
unkown
|
page read and write
|
|
|
|
7FF55A5FD000
|
unkown image
|
page readonly
|
|
|
|
26A3606A000
|
unkown
|
page read and write
|
|
|
|
7DF406920000
|
unkown image
|
page readonly
|
|
|
|
20448130000
|
unkown
|
page read and write
|
|
|
|
1A853B30000
|
unkown image
|
page readonly
|
|
|
|
7FF5C8DF9000
|
unkown image
|
page readonly
|
|
|
|
20447FF1000
|
unkown
|
page read and write
|
|
|
|
26A3607A000
|
unkown
|
page read and write
|
|
|
|
20F81FE000
|
stack
|
page read and write
|
|
|
|
26A36049000
|
unkown
|
page read and write
|
|
|
|
7DF5E7090000
|
unkown image
|
page readonly
|
|
|
|
7DF4C70F0000
|
unkown image
|
page readonly
|
|
|
|
7FF56F863000
|
unkown image
|
page readonly
|
|
|
|
7FF4F0F23000
|
unkown image
|
page readonly
|
|
|
|
7FF5184C3000
|
unkown image
|
page readonly
|
|
|
|
7FF53DC79000
|
unkown image
|
page readonly
|
|
|
|
18914055000
|
unkown
|
page read and write
|
|
|
|
1A854402000
|
unkown
|
page read and write
|
|
|
|
7FF53DA6F000
|
unkown image
|
page readonly
|
|
|
|
6943D7F000
|
stack
|
page read and write
|
|
|
|
7FF518623000
|
unkown image
|
page readonly
|
|
|
|
204482F7000
|
unkown
|
page read and write
|
|
|
|
7FF53DCB3000
|
unkown image
|
page readonly
|
|
|
|
26A36013000
|
unkown
|
page read and write
|
|
|
|
1BA3EC00000
|
unkown image
|
page readonly
|
|
|
|
1A854587000
|
unkown
|
page read and write
|
|
|
|
1A8545AD000
|
unkown
|
page read and write
|
|
|
|
2044822E000
|
unkown
|
page read and write
|
|
|
|
1C80E4B0000
|
unkown image
|
page readonly
|
|
|
|
7FF53D77D000
|
unkown image
|
page readonly
|
|
|
|
26A36060000
|
unkown
|
page read and write
|
|
|
|
1DF4B102000
|
unkown
|
page read and write
|
|
|
|
204482FE000
|
unkown
|
page read and write
|
|
|
|
7FF55A6DE000
|
unkown image
|
page readonly
|
|
|
|
1DF4B400000
|
unkown image
|
page readonly
|
|
|
|
7DF5DEC20000
|
unkown image
|
page readonly
|
|
|
|
7FF5185DE000
|
unkown image
|
page readonly
|
|
|
|
1A853C5B000
|
unkown
|
page read and write
|
|
|
|
1A854A63000
|
unkown
|
page read and write
|
|
|
|
20442940000
|
unkown image
|
page readonly
|
|
|
|
7FF517C63000
|
unkown image
|
page readonly
|
|
|
|
20443318000
|
unkown
|
page read and write
|
|
|
|
18914013000
|
unkown
|
page read and write
|
|
|
|
1891407F000
|
unkown
|
page read and write
|
|
|
|
20F82FF000
|
stack
|
page read and write
|
|
|
|
7FF4F0F25000
|
unkown image
|
page readonly
|
|
|
|
1A854588000
|
unkown
|
page read and write
|
|
|
|
1A853BF0000
|
unkown
|
page read and write
|
|
|
|
7FF5B30BF000
|
unkown image
|
page readonly
|
|
|
|
1A854A02000
|
unkown
|
page read and write
|
|
|
|
7FF576A4B000
|
unkown image
|
page readonly
|
|
|
|
219B8365000
|
heap private
|
page read and write
|
|
|
|
16DB1100000
|
unkown
|
page read and write
|
|
|
|
20F8077000
|
stack
|
page read and write
|
|
|
|
20448220000
|
unkown
|
page read and write
|
|
|
|
1891408B000
|
unkown
|
page read and write
|
|
|
|
22425A00000
|
unkown image
|
page read and write
|
|
|
|
7FF5BD9ED000
|
unkown image
|
page readonly
|
|
|
|
204482A6000
|
unkown
|
page read and write
|
|
|
|
20447EE0000
|
unkown
|
page read and write
|
|
|
|
20448140000
|
unkown
|
page read and write
|
|
|
|
7FF5187F4000
|
unkown image
|
page readonly
|
|
|
|
1A854586000
|
unkown
|
page read and write
|
|
|
|
1A853CD9000
|
unkown
|
page read and write
|
|
|
|
7FF56F9B5000
|
unkown image
|
page readonly
|
|
|
|
204480C0000
|
unkown
|
page read and write
|
|
|
|
7FF576A3D000
|
unkown image
|
page readonly
|
|
|
|
7FF5B362D000
|
unkown image
|
page readonly
|
|
|
|
1A854583000
|
unkown
|
page read and write
|
|
|
|
7FF4F306C000
|
unkown image
|
page readonly
|
|
|
|
7FF5B38EF000
|
unkown image
|
page readonly
|
|
|
|
7FF53DF7F000
|
unkown image
|
page readonly
|
|
|
|
7FF5C9265000
|
unkown image
|
page readonly
|
|
|
|
26618660000
|
unkown image
|
page readonly
|
|
|
|
7FF5B34D4000
|
unkown image
|
page readonly
|
|
|
|
1BA3EA82000
|
unkown
|
page read and write
|
|
|
|
7FF5B392F000
|
unkown image
|
page readonly
|
|
|
|
7FF56EEA3000
|
unkown image
|
page readonly
|
|
|
|
18914113000
|
unkown
|
page read and write
|
|
|
|
7FF5BDCA8000
|
unkown image
|
page readonly
|
|
|
|
20442A94000
|
unkown
|
page read and write
|
|
|
|
7FF53DCC7000
|
unkown image
|
page readonly
|
|
|
|
1BA3E8C0000
|
heap default
|
page read and write
|
|
|
|
26618013000
|
unkown
|
page read and write
|
|
|
|
22425C57000
|
unkown
|
page read and write
|
|
|
|
7FF5185AD000
|
unkown image
|
page readonly
|
|
|
|
1DF4AE80000
|
unkown image
|
page readonly
|
|
|
|
1C80E8A0000
|
unkown
|
page read and write
|
|
|
|
7FF5BD152000
|
unkown image
|
page readonly
|
|
|
|
20443E60000
|
unkown
|
page read and write
|
|
|
|
7DF5E7092000
|
unkown image
|
page readonly
|
|
|
|
22426180000
|
unkown image
|
page readonly
|
|
|
|
7FF5BDCEB000
|
unkown image
|
page readonly
|
|
|
|
7DF57A292000
|
unkown image
|
page readonly
|
|
|
|
1C80E6A4000
|
unkown
|
page read and write
|
|
|
|
20447FFB000
|
unkown
|
page read and write
|
|
|
|
22425C00000
|
unkown
|
page read and write
|
|
|
|
7FF56F968000
|
unkown image
|
page readonly
|
|
|
|
7DF508A52000
|
unkown image
|
page readonly
|
|
|
|
29B07EA0000
|
unkown image
|
page readonly
|
|
|
|
7FF53DCD3000
|
unkown image
|
page readonly
|
|
|
|
7FF53DF9D000
|
unkown image
|
page readonly
|
|
|
|
EDD487E000
|
stack
|
page read and write
|
|
|
|
7FF56495E000
|
unkown image
|
page readonly
|
|
|
|
266182D0000
|
unkown image
|
page readonly
|
|
|
|
FAA6EFF000
|
stack
|
page read and write
|
|
|
|
7DF52E120000
|
unkown image
|
page readonly
|
|
|
|
7FF5644EA000
|
unkown image
|
page readonly
|
|
|
|
7FF5BDCB6000
|
unkown image
|
page readonly
|
|
|
|
1A854586000
|
unkown
|
page read and write
|
|
|
|
7FF518775000
|
unkown image
|
page readonly
|
|
|
|
219B7FD6000
|
heap default
|
page read and write
|
|
|
|
7FF57698D000
|
unkown image
|
page readonly
|
|
|
|
7FF4F30AA000
|
unkown image
|
page readonly
|
|
|
|
7FF517C5D000
|
unkown image
|
page readonly
|
|
|
|
7DF5068C0000
|
unkown image
|
page readonly
|
|
|
|
7FF5D178E000
|
unkown image
|
page readonly
|
|
|
|
7FF53DD78000
|
unkown image
|
page readonly
|
|
|
|
7FF5B33DF000
|
unkown image
|
page readonly
|
|
|
|
694427F000
|
stack
|
page read and write
|
|
|
|
20448300000
|
unkown
|
page read and write
|
|
|
|
7FF5D16D9000
|
unkown image
|
page readonly
|
|
|
|
26A36030000
|
unkown
|
page read and write
|
|
|
|
7FF5BDCDE000
|
unkown image
|
page readonly
|
|
|
|
26618000000
|
unkown
|
page read and write
|
|
|
|
7FF518749000
|
unkown image
|
page readonly
|
|
|
|
26A3606D000
|
unkown
|
page read and write
|
|
|
|
7FF56F985000
|
unkown image
|
page readonly
|
|
|
|
1A853C4E000
|
unkown
|
page read and write
|
|
|
|
20448306000
|
unkown
|
page read and write
|
|
|
|
AC8CFFE000
|
stack
|
page read and write
|
|
|
|
29B08802000
|
unkown
|
page read and write
|
|
|
|
1DF4B065000
|
unkown
|
page read and write
|
|
|
|
29B08400000
|
unkown image
|
page readonly
|
|
|
|
1A853D13000
|
unkown
|
page read and write
|
|
|
|
1DF4B029000
|
unkown
|
page read and write
|
|
|
|
7FF56FA3B000
|
unkown image
|
page readonly
|
|
|
|
1BA3E870000
|
unkown image
|
page readonly
|
|
|
|
7FF5644EE000
|
unkown image
|
page readonly
|
|
|
|
7FF564956000
|
unkown image
|
page readonly
|
|
|
|
1A854515000
|
unkown
|
page read and write
|
|
|
|
1C80E6B8000
|
unkown
|
page read and write
|
|
|
|
1A854A02000
|
unkown
|
page read and write
|
|
|
|
29B07E90000
|
heap private
|
page read and write
|
|
|
|
266180E1000
|
unkown
|
page read and write
|
|
|
|
7DF57A282000
|
unkown image
|
page readonly
|
|
|
|
1A854A02000
|
unkown
|
page read and write
|
|
|
|
1C80E6B2000
|
unkown
|
page read and write
|
|
|
|
7DF5C9232000
|
unkown image
|
page readonly
|
|
|
|
7FF5D15F5000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1263000
|
unkown image
|
page readonly
|
|
|
|
7FF53DA98000
|
unkown image
|
page readonly
|
|
|
|
AC8CCFB000
|
stack
|
page read and write
|
|
|
|
AC8CE7E000
|
stack
|
page read and write
|
|
|
|
7DF585340000
|
unkown image
|
page readonly
|
|
|
|
26617F70000
|
unkown image
|
page readonly
|
|
|
|
7FF5B391B000
|
unkown image
|
page readonly
|
|
|
|
7FF55A6DB000
|
unkown image
|
page readonly
|
|
|
|
B47E4FE000
|
stack
|
page read and write
|
|
|
|
7FF564864000
|
unkown image
|
page readonly
|
|
|
|
7FF5BDCEF000
|
unkown image
|
page readonly
|
|
|
|
7FF5B3653000
|
unkown image
|
page readonly
|
|
|
|
7FF4F0F86000
|
unkown image
|
page readonly
|
|
|
|
7FF53DEB7000
|
unkown image
|
page readonly
|
|
|
|
26618102000
|
unkown
|
page read and write
|
|
|
|
18913EF0000
|
unkown image
|
page readonly
|
|
|
|
7FF53DFBD000
|
unkown image
|
page readonly
|
|
|
|
1A853C5A000
|
unkown
|
page read and write
|
|
|
|
7FF53DE77000
|
unkown image
|
page readonly
|
|
|
|
7FF5D179F000
|
unkown image
|
page readonly
|
|
|
|
7FF5B3637000
|
unkown image
|
page readonly
|
|
|
|
1C1B27F000
|
stack
|
page read and write
|
|
|
|
7FF576999000
|
unkown image
|
page readonly
|
|
|
|
7FF56F813000
|
unkown image
|
page readonly
|
|
|
|
20448110000
|
unkown
|
page read and write
|
|
|
|
22425BA0000
|
unkown
|
page read and write
|
|
|
|
1C80E4D0000
|
unkown image
|
page readonly
|
|
|
|
7DF5DEC40000
|
unkown image
|
page readonly
|
|
|
|
1DF4B06F000
|
unkown
|
page read and write
|
|
|
|
7FF53DD73000
|
unkown image
|
page readonly
|
|
|
|
6DBE379000
|
stack
|
page read and write
|
|
|
|
204484E0000
|
unkown
|
page read and write
|
|
|
|
7FF56496D000
|
unkown image
|
page readonly
|
|
|
|
7FF5B2DB0000
|
unkown image
|
page readonly
|
|
|
|
219B7FCB000
|
heap default
|
page read and write
|
|
|
|
16DB1070000
|
unkown
|
page read and write
|
|
|
|
7FF5C9248000
|
unkown image
|
page readonly
|
|
|
|
7FF5B36E8000
|
unkown image
|
page readonly
|
|
|
|
7FF51871C000
|
unkown image
|
page readonly
|
|
|
|
AC8CBFA000
|
stack
|
page read and write
|
|
|
|
B47E37C000
|
stack
|
page read and write
|
|
|
|
F39727D000
|
stack
|
page read and write
|
|
|
|
266184D0000
|
unkown image
|
page readonly
|
|
|
|
7DF56FFF2000
|
unkown image
|
page readonly
|
|
|
|
1A854A02000
|
unkown
|
page read and write
|
|
|
|
7FF55A6ED000
|
unkown image
|
page readonly
|
|
|
|
7FF5C931E000
|
unkown image
|
page readonly
|
|
|
|
1A853C71000
|
unkown
|
page read and write
|
|
|
|
20448014000
|
unkown
|
page read and write
|
|
|
|
1A853CB5000
|
unkown
|
page read and write
|
|
|
|
26A36084000
|
unkown
|
page read and write
|
|
|
|
7FF5B3460000
|
unkown image
|
page readonly
|
|
|
|
7FF564885000
|
unkown image
|
page readonly
|
|
|
|
1A853BF0000
|
unkown
|
page read and write
|
|
|
|
20448011000
|
unkown
|
page read and write
|
|
|
|
7DF5538B0000
|
unkown image
|
page readonly
|
|
|
|
1A854585000
|
unkown
|
page read and write
|
|
|
|
F3969CC000
|
unkown
|
page read and write
|
|
|
|
DB6267B000
|
stack
|
page read and write
|
|
|
|
26A35FA0000
|
unkown image
|
page readonly
|
|
|
|
7FF576964000
|
unkown image
|
page readonly
|
|
|
|
7DF585360000
|
unkown image
|
page readonly
|
|
|
|
7FF53DD10000
|
unkown image
|
page readonly
|
|
|
|
7DF5D35E0000
|
unkown image
|
page readonly
|
|
|
|
7FF53DF78000
|
unkown image
|
page readonly
|
|
|
|
1A854584000
|
unkown
|
page read and write
|
|
|
|
7FF55A5B0000
|
unkown image
|
page readonly
|
|
|
|
29B07FF0000
|
unkown
|
page read and write
|
|
|
|
1A854582000
|
unkown
|
page read and write
|
|
|
|
1A854575000
|
unkown
|
page read and write
|
|
|
|
B47E479000
|
stack
|
page read and write
|
|
|
|
EDD4CFE000
|
stack
|
page read and write
|
|
|
|
20443313000
|
unkown
|
page read and write
|
|
|
|
204429A0000
|
unkown image
|
page readonly
|
|
|
|
7FF518677000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1607000
|
unkown image
|
page readonly
|
|
|
|
1C80E650000
|
heap default
|
page read and write
|
|
|
|
1A854A21000
|
unkown
|
page read and write
|
|
|
|
7FF5D1693000
|
unkown image
|
page readonly
|
|
|
|
1C1A9EC000
|
unkown
|
page read and write
|
|
|
|
7FF5B37DD000
|
unkown image
|
page readonly
|
|
|
|
1A854586000
|
unkown
|
page read and write
|
|
|
|
7FF56497B000
|
unkown image
|
page readonly
|
|
|
|
7DF57A292000
|
unkown image
|
page readonly
|
|
|
|
7FF5B38F6000
|
unkown image
|
page readonly
|
|
|
|
26A36802000
|
unkown
|
page read and write
|
|
|
|
7DF5DEC22000
|
unkown image
|
page readonly
|
|
|
|
7FF4F3099000
|
unkown image
|
page readonly
|
|
|
|
7FF5641D4000
|
unkown image
|
page readonly
|
|
|
|
20F7D79000
|
stack
|
page read and write
|
|
|
|
7DF508A60000
|
unkown image
|
page readonly
|
|
|
|
7FF51865F000
|
unkown image
|
page readonly
|
|
|
|
7FF56F83E000
|
unkown image
|
page readonly
|
|
|
|
1BA3EA8D000
|
unkown
|
page read and write
|
|
|
|
20442930000
|
heap private
|
page read and write
|
|
|
|
7FF5BDC1D000
|
unkown image
|
page readonly
|
|
|
|
1A853ED0000
|
unkown image
|
page readonly
|
|
|
|
20442A72000
|
unkown
|
page read and write
|
|
|
|
1A853CF7000
|
unkown
|
page read and write
|
|
|
|
1C80F3E0000
|
unkown
|
page read and write
|
|
|
|
7FF5BDABF000
|
unkown image
|
page readonly
|
|
|
|
6943CFF000
|
stack
|
page read and write
|
|
|
|
20448160000
|
unkown
|
page read and write
|
|
|
|
7FF518717000
|
unkown image
|
page readonly
|
|
|
|
7FF53DE15000
|
unkown image
|
page readonly
|
|
|
|
7FF5BDBD2000
|
unkown image
|
page readonly
|
|
|
|
7FF5B37E0000
|
unkown image
|
page readonly
|
|
|
|
1A854582000
|
unkown
|
page read and write
|
|
|
|
7FF4F0F7F000
|
unkown image
|
page readonly
|
|
|
|
26617FA0000
|
unkown image
|
page readonly
|
|
|
|
DB62D7F000
|
stack
|
page read and write
|
|
|
|
30E107B000
|
stack
|
page read and write
|
|
|
|
7DF5538D0000
|
unkown image
|
page readonly
|
|
|
|
7FF5B3808000
|
unkown image
|
page readonly
|
|
|
|
219B81C0000
|
unkown image
|
page readonly
|
|
|
|
22425E00000
|
unkown image
|
page readonly
|
|
|
|
7FF5185FE000
|
unkown image
|
page readonly
|
|
|
|
7FF518684000
|
unkown image
|
page readonly
|
|
|
|
7FF5B3621000
|
unkown image
|
page readonly
|
|
|
|
7FF57625D000
|
unkown image
|
page readonly
|
|
|
|
7FF56FA16000
|
unkown image
|
page readonly
|
|
|
|
204484B0000
|
unkown
|
page read and write
|
|
|
|
20448034000
|
unkown
|
page read and write
|
|
|
|
26A36039000
|
unkown
|
page read and write
|
|
|
|
1A854586000
|
unkown
|
page read and write
|
|
|
|
7FF4F3078000
|
unkown image
|
page readonly
|
|
|
|
1BA3EB02000
|
unkown
|
page read and write
|
|
|
|
20443050000
|
unkown image
|
page readonly
|
|
|
|
1A8545A4000
|
unkown
|
page read and write
|
|
|
|
BC8A6FC000
|
stack
|
page read and write
|
|
|
|
29B0807D000
|
unkown
|
page read and write
|
|
|
|
7FF5D16CD000
|
unkown image
|
page readonly
|
|
|
|
7DF5C9230000
|
unkown image
|
page readonly
|
|
|
|
7FF4F3130000
|
unkown image
|
page readonly
|
|
|
|
7FF53DD8E000
|
unkown image
|
page readonly
|
|
|
|
1DF4AEB0000
|
unkown image
|
page readonly
|
|
|
|
7DF56FFE2000
|
unkown image
|
page readonly
|
|
|
|
1A854591000
|
unkown
|
page read and write
|
|
|
|
FAA6BFE000
|
stack
|
page read and write
|
|
|
|
7FF5B3869000
|
unkown image
|
page readonly
|
|
|
|
7FF53DFAE000
|
unkown image
|
page readonly
|
|
|
|
FAA67DE000
|
stack
|
page read and write
|
|
|
|
7FF53DF0A000
|
unkown image
|
page readonly
|
|
|
|
18913F40000
|
heap default
|
page read and write
|
|
|
|
7FF55A5E7000
|
unkown image
|
page readonly
|
|
|
|
7FF51875A000
|
unkown image
|
page readonly
|
|
|
|
30E0F7B000
|
stack
|
page read and write
|
|
|
|
7FF56480E000
|
unkown image
|
page readonly
|
|
|
|
1C80E850000
|
unkown
|
page read and write
|
|
|
|
6DBDFAA000
|
unkown
|
page read and write
|
|
|
|
7FF5B34DD000
|
unkown image
|
page readonly
|
|
|
|
29B08056000
|
unkown
|
page read and write
|
|
|
|
1DF4B05B000
|
unkown
|
page read and write
|
|
|
|
1A8545AB000
|
unkown
|
page read and write
|
|
|
|
7FF56479D000
|
unkown image
|
page readonly
|
|
|
|
204482DB000
|
unkown
|
page read and write
|
|
|
|
7FF56F89F000
|
unkown image
|
page readonly
|
|
|
|
204482F7000
|
unkown
|
page read and write
|
|
|
|
7FF53DAF1000
|
unkown image
|
page readonly
|
|
|
|
BC8A7FE000
|
stack
|
page read and write
|
|
|
|
20442CD0000
|
unkown image
|
page readonly
|
|
|
|
7FF5182D3000
|
unkown image
|
page readonly
|
|
|
|
7DF58C362000
|
unkown image
|
page readonly
|
|
|
|
7FF53DE70000
|
unkown image
|
page readonly
|
|
|
|
1A854588000
|
unkown
|
page read and write
|
|
|
|
7DF52E112000
|
unkown image
|
page readonly
|
|
|
|
7FF5C931B000
|
unkown image
|
page readonly
|
|
|
|
7FF55A5D3000
|
unkown image
|
page readonly
|
|
|
|
1DF4B076000
|
unkown
|
page read and write
|
|
|
|
26A364D0000
|
unkown image
|
page readonly
|
|
|
|
1C80EE30000
|
unkown image
|
page readonly
|
|
|
|
7FF56F519000
|
unkown image
|
page readonly
|
|
|
|
1A8545AA000
|
unkown
|
page read and write
|
|
|
|
7FF576A2B000
|
unkown image
|
page readonly
|
|
|
|
7DF58C350000
|
unkown image
|
page readonly
|
|
|
|
1A8545A4000
|
unkown
|
page read and write
|
|
|
|
7FF56497E000
|
unkown image
|
page readonly
|
|
|
|
7FF5B37E7000
|
unkown image
|
page readonly
|
|
|
|
22425B50000
|
unkown image
|
page readonly
|
|
|
|
1A8545A6000
|
unkown
|
page read and write
|
|
|
|
22425BA0000
|
unkown
|
page read and write
|
|
|
|
20F84FF000
|
stack
|
page read and write
|
|
|
|
22426402000
|
unkown
|
page read and write
|
|
|
|
7FF53DDCD000
|
unkown image
|
page readonly
|
|
|
|
18914802000
|
unkown
|
page read and write
|
|
|
|
22426000000
|
unkown image
|
page readonly
|
|
|
|
1A8545A6000
|
unkown
|
page read and write
|
|
|
|
26A36047000
|
unkown
|
page read and write
|
|
|
|
7DF5DEC22000
|
unkown image
|
page readonly
|
|
|
|
BC8AB7E000
|
stack
|
page read and write
|
|
|
|
7FF5B3827000
|
unkown image
|
page readonly
|
|
|
|
204480C0000
|
unkown
|
page read and write
|
|
|
|
AC8D07F000
|
stack
|
page read and write
|
|
|
|
219B7FD1000
|
unkown
|
page read and write
|
|
|
|
7DF5C9220000
|
unkown image
|
page readonly
|
|
|
|
20443359000
|
unkown
|
page read and write
|
|
|
|
7FF4F308D000
|
unkown image
|
page readonly
|
|
|
|
7FF4F077D000
|
unkown image
|
page readonly
|
|
|
|
1A8545B1000
|
unkown
|
page read and write
|
|
|
|
16DB1108000
|
unkown
|
page read and write
|
|
|
|
1A853CBF000
|
unkown
|
page read and write
|
|
|
|
7FF5187ED000
|
unkown image
|
page readonly
|
|
|
|
7FF5C9143000
|
unkown image
|
page readonly
|
|
|
|
7FF56498D000
|
unkown image
|
page readonly
|
|
|
|
16DB0E80000
|
unkown image
|
page readonly
|
|
|
|
2661893B000
|
unkown
|
page read and write
|
|
|
|
7FF55A6B6000
|
unkown image
|
page readonly
|
|
|
|
1A853C54000
|
unkown
|
page read and write
|
|
|
|
7DF5538B2000
|
unkown image
|
page readonly
|
|
|
|
26A35F60000
|
unkown image
|
page readonly
|
|
|
|
7FF53DF90000
|
unkown image
|
page readonly
|
|
|
|
7FF4F0F03000
|
unkown image
|
page readonly
|
|
|
|
7FF56EE9D000
|
unkown image
|
page readonly
|
|
|
|
7FF4F2EFD000
|
unkown image
|
page readonly
|
|
|
|
7DF5538D0000
|
unkown image
|
page readonly
|
|
|
|
1A854584000
|
unkown
|
page read and write
|
|
|
|
7FF518753000
|
unkown image
|
page readonly
|
|
|
|
7DF5C9240000
|
unkown image
|
page readonly
|
|
|
|
7FF4F0F78000
|
unkown image
|
page readonly
|
|
|
|
7FF564872000
|
unkown image
|
page readonly
|
|
|
|
7FF5BDCBB000
|
unkown image
|
page readonly
|
|
|
|
B47E3FE000
|
stack
|
page read and write
|
|
|
|
7FF53DEF5000
|
unkown image
|
page readonly
|
|
|
|
16DB0ED0000
|
heap default
|
page read and write
|
|
|
|
7FF576A18000
|
unkown image
|
page readonly
|
|
|
|
7FF51873D000
|
unkown image
|
page readonly
|
|
|
|
7FF55A633000
|
unkown image
|
page readonly
|
|
|
|
7FF55A6A8000
|
unkown image
|
page readonly
|
|
|
|
7FF576258000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1766000
|
unkown image
|
page readonly
|
|
|
|
16DB1000000
|
unkown
|
page read and write
|
|
|
|
7FF4F0EED000
|
unkown image
|
page readonly
|
|
|
|
AC8C3BB000
|
unkown
|
page read and write
|
|
|
|
2661806E000
|
unkown
|
page read and write
|
|
|
|
7DF58C370000
|
unkown image
|
page readonly
|
|
|
|
1A854586000
|
unkown
|
page read and write
|
|
|
|
1A854A02000
|
unkown
|
page read and write
|
|
|
|
20442A8B000
|
unkown
|
page read and write
|
|
|
|
1C80E899000
|
heap private
|
page read and write
|
|
|
|
1A854586000
|
unkown
|
page read and write
|
|
|
|
6943C7C000
|
unkown
|
page read and write
|
|
|
|
7FF4F0F9D000
|
unkown image
|
page readonly
|
|
|
|
7FF5BDA82000
|
unkown image
|
page readonly
|
|
|
|
20442A29000
|
unkown
|
page read and write
|
|
|
|
7FF55A63A000
|
unkown image
|
page readonly
|
|
|
|
7FF53DE0F000
|
unkown image
|
page readonly
|
|
|
|
7FF5B34B7000
|
unkown image
|
page readonly
|
|
|
|
7FF5C9314000
|
unkown image
|
page readonly
|
|
|
|
18913F20000
|
unkown image
|
page readonly
|
|
|
|
1A854380000
|
unkown image
|
page read and write
|
|
|
|
BC8A27B000
|
unkown
|
page read and write
|
|
|
|
2044335A000
|
unkown
|
page read and write
|
|
|
|
7FF57686D000
|
unkown image
|
page readonly
|
|
|
|
20F7F7E000
|
stack
|
page read and write
|
|
|
|
7DF5DEC20000
|
unkown image
|
page readonly
|
|
|
|
7FF56F528000
|
unkown image
|
page readonly
|
|
|
|
BC8AC7C000
|
stack
|
page read and write
|
|
|
|
7FF5B3436000
|
unkown image
|
page readonly
|
|
|
|
2044830A000
|
unkown
|
page read and write
|
|
|
|
1A854591000
|
unkown
|
page read and write
|
|
|
|
1891404D000
|
unkown
|
page read and write
|
|
|
|
7FF5B34AA000
|
unkown image
|
page readonly
|
|
|
|
7FF5D175F000
|
unkown image
|
page readonly
|
|
|
|
18914058000
|
unkown
|
page read and write
|
|
|
|
22425D02000
|
unkown
|
page read and write
|
|
|
|
7DF5538C2000
|
unkown image
|
page readonly
|
|
|
|
7FF5D16D5000
|
unkown image
|
page readonly
|
|
|
|
7DF585350000
|
unkown image
|
page readonly
|
|
|
|
7DF57A282000
|
unkown image
|
page readonly
|
|
|
|
1DF4AFD0000
|
unkown
|
page read and write
|
|
|
|
B47E2F9000
|
stack
|
page read and write
|
|
|
|
7FF576995000
|
unkown image
|
page readonly
|
|
|
|
1A853D02000
|
unkown
|
page read and write
|
|
|
|
1A853D08000
|
unkown
|
page read and write
|
|
|
|
29B0803C000
|
unkown
|
page read and write
|
|
|
|
7FF5B381C000
|
unkown image
|
page readonly
|
|
|
|
F396EFE000
|
stack
|
page read and write
|
|
|
|
20447E90000
|
unkown
|
page read and write
|
|
|
|
1A853C5D000
|
unkown
|
page read and write
|
|
|
|
1BA3E850000
|
unkown image
|
page read and write
|
|
|
|
7FF56A70E000
|
unkown image
|
page readonly
|
|
|
|
2044824B000
|
unkown
|
page read and write
|
|
|
|
26A36031000
|
unkown
|
page read and write
|
|
|
|
7DF56FFE0000
|
unkown image
|
page readonly
|
|
|
|
20448100000
|
unkown
|
page read and write
|
|
|
|
7FF4F30A3000
|
unkown image
|
page readonly
|
|
|
|
26A36050000
|
unkown
|
page read and write
|
|
|
|
7FF576705000
|
unkown image
|
page readonly
|
|
|
|
1A853C51000
|
unkown
|
page read and write
|
|
|
|
2044820F000
|
unkown
|
page read and write
|
|
|
|
1BA3EA4B000
|
unkown
|
page read and write
|
|
|
|
1BA3EF80000
|
unkown image
|
page readonly
|
|
|
|
7FF5B2DBA000
|
unkown image
|
page readonly
|
|
|
|
26A35F70000
|
unkown image
|
page readonly
|
|
|
|
1A854595000
|
unkown
|
page read and write
|
|
|
|
7FF4F0C3E000
|
unkown image
|
page readonly
|
|
|
|
1C80F400000
|
unkown
|
page read and write
|
|
|
|
7FF4F0FBF000
|
unkown image
|
page readonly
|
|
|
|
16DB1056000
|
unkown
|
page read and write
|
|
|
|
7FF5648DA000
|
unkown image
|
page readonly
|
|
|
|
7FF5C932F000
|
unkown image
|
page readonly
|
|
|
|
16DB1102000
|
unkown
|
page read and write
|
|
|
|
22425A50000
|
unkown image
|
page readonly
|
|
|
|
7FF4F3095000
|
unkown image
|
page readonly
|
|
|
|
1BA3EA3C000
|
unkown
|
page read and write
|
|
|
|
29B08050000
|
unkown
|
page read and write
|
|
|
|
AC8C9FA000
|
stack
|
page read and write
|
|
|
|
7FF5BDCED000
|
unkown image
|
page readonly
|
|
|
|
1A8540D0000
|
unkown image
|
page readonly
|
|
|
|
1DF4B013000
|
unkown
|
page read and write
|
|
|
|
1BA3EA55000
|
unkown
|
page read and write
|
|
|
|
1A853CC6000
|
unkown
|
page read and write
|
|
|
|
1A853B20000
|
unkown image
|
page readonly
|
|
|
|
7FF53DC73000
|
unkown image
|
page readonly
|
|
|
|
FAA6DFF000
|
stack
|
page read and write
|
|
|
|
7FF5BDCC0000
|
unkown image
|
page readonly
|
|
|
|
BC8A8FC000
|
stack
|
page read and write
|
|
|
|
16DB0FB0000
|
unkown image
|
page readonly
|
|
|
|
20442970000
|
unkown image
|
page readonly
|
|
|
|
7FF518745000
|
unkown image
|
page readonly
|
|
|
|
204429D0000
|
unkown image
|
page read and write
|
|
|
|
1DF4B000000
|
unkown
|
page read and write
|
|
|
|
18913ED0000
|
unkown image
|
page read and write
|
|
|
|
7FF5D1563000
|
unkown image
|
page readonly
|
|
|
|
7DF570000000
|
unkown image
|
page readonly
|
|
|
|
7FF53DF03000
|
unkown image
|
page readonly
|
|
|
|
7FF4F315F000
|
unkown image
|
page readonly
|
|
|
|
7FF4F0EF5000
|
unkown image
|
page readonly
|
|
|
|
2044830A000
|
unkown
|
page read and write
|
|
|
|
AC8CD7F000
|
stack
|
page read and write
|
|
|
|
1A854588000
|
unkown
|
page read and write
|
|
|
|
7DF585352000
|
unkown image
|
page readonly
|
|
|
|
16DB1113000
|
unkown
|
page read and write
|
|
|
|
7FF56FA08000
|
unkown image
|
page readonly
|
|
|
|
1A853C13000
|
unkown
|
page read and write
|
|
|
|
1BA3EA70000
|
unkown
|
page read and write
|
|
|
|
7FF518703000
|
unkown image
|
page readonly
|
|
|
|
1DF4B002000
|
unkown
|
page read and write
|
|
|
|
1BA3E890000
|
unkown image
|
page readonly
|
|
|
|
29B08200000
|
unkown image
|
page readonly
|
|
|
|
20443AC0000
|
unkown image
|
page readonly
|
|
|
|
29B0802A000
|
unkown
|
page read and write
|
|
|
|
7DF508A70000
|
unkown image
|
page readonly
|
|
|
|
18914650000
|
unkown image
|
page readonly
|
|
|
|
7FF56FA20000
|
unkown image
|
page readonly
|
|
|
|
20442990000
|
heap default
|
page read and write
|
|
|
|
7FF4F3057000
|
unkown image
|
page readonly
|
|
|
|
1BA3EB00000
|
unkown
|
page read and write
|
|
|
|
1C1B17F000
|
stack
|
page read and write
|
|
|
|
7FF576A44000
|
unkown image
|
page readonly
|
|
|
|
7FF5D16E3000
|
unkown image
|
page readonly
|
|
|
|
16DB0E70000
|
heap private
|
page read and write
|
|
|
|
204431F0000
|
unkown
|
page read and write
|
|
|
|
7FF5BDC55000
|
unkown image
|
page readonly
|
|
|
|
6DBE27F000
|
stack
|
page read and write
|
|
|
|
7DF5068D0000
|
unkown image
|
page readonly
|
|
|
|
1BA3E9A0000
|
unkown image
|
page readonly
|
|
|
|
7FF55A655000
|
unkown image
|
page readonly
|
|
|
|
20448030000
|
unkown
|
page read and write
|
|
|
|
20442A8D000
|
unkown
|
page read and write
|
|
|
|
7DF5DEC32000
|
unkown image
|
page readonly
|
|
|
|
16DB1047000
|
unkown
|
page read and write
|
|
|
|
18913EE0000
|
heap private
|
page read and write
|
|
|
|
1A854577000
|
unkown
|
page read and write
|
|
|
|
1A854589000
|
unkown
|
page read and write
|
|
|
|
7DF56FFF0000
|
unkown image
|
page readonly
|
|
|
|
7DF404780000
|
unkown image
|
page readonly
|
|
|
|
26A36040000
|
unkown
|
page read and write
|
|
|
|
7FF5B30CB000
|
unkown image
|
page readonly
|
|
|
|
20443B00000
|
unkown image
|
page readonly
|
|
|
|
7DF5E70B0000
|
unkown image
|
page readonly
|
|
|
|
26A36000000
|
unkown
|
page read and write
|
|
|
|
29B08580000
|
unkown image
|
page readonly
|
|
|
|
1BA3EA77000
|
unkown
|
page read and write
|
|
|
|
7FF5BDAB6000
|
unkown image
|
page readonly
|
|
|
|
7FF4F315B000
|
unkown image
|
page readonly
|
|
|
|
7DF56FFF0000
|
unkown image
|
page readonly
|
|
|
|
20442A00000
|
unkown
|
page read and write
|
|
|
|
26A3603D000
|
unkown
|
page read and write
|
|
|
|
7DF5E7092000
|
unkown image
|
page readonly
|
|
|
|
7FF56494F000
|
unkown image
|
page readonly
|
|
|
|
29B08113000
|
unkown
|
page read and write
|
|
|
|
20448306000
|
unkown
|
page read and write
|
|
|
|
EDD4BF7000
|
stack
|
page read and write
|
|
|
|
1891404E000
|
unkown
|
page read and write
|
|
|
|
7FF5B34B0000
|
unkown image
|
page readonly
|
|
|
|
7FF56F8A5000
|
unkown image
|
page readonly
|
|
|
|
7FF5C930D000
|
unkown image
|
page readonly
|
|
|
|
7FF5C9273000
|
unkown image
|
page readonly
|
|
|
|
7FF5B36CD000
|
unkown image
|
page readonly
|
|
|
|
26618760000
|
unkown image
|
page write copy
|
|
|
|
7FF56F95C000
|
unkown image
|
page readonly
|
|
|
|
7DF56FFE0000
|
unkown image
|
page readonly
|
|
|
|
7FF5D153D000
|
unkown image
|
page readonly
|
|
|
|
29B08100000
|
unkown
|
page read and write
|
|
|
|
7DF4DCAF0000
|
unkown image
|
page readonly
|
|
|
|
1DF4B580000
|
unkown image
|
page readonly
|
|
|
|
20443200000
|
unkown
|
page read and write
|
|
|
|
1BA3F202000
|
unkown
|
page read and write
|
|
|
|
6943F7B000
|
stack
|
page read and write
|
|
|
|
1A853C00000
|
unkown
|
page read and write
|
|
|
|
7FF576889000
|
unkown image
|
page readonly
|
|
|
|
1A853C57000
|
unkown
|
page read and write
|
|
|
|
7FF4F0F90000
|
unkown image
|
page readonly
|
|
|
|
26A362D0000
|
unkown image
|
page readonly
|
|
|
|
7FF564656000
|
unkown image
|
page readonly
|
|
|
|
7FF5187C8000
|
unkown image
|
page readonly
|
|
|
|
DB62E7F000
|
stack
|
page read and write
|
|
|
|
20443319000
|
unkown
|
page read and write
|
|
|
|
7FF55A3A6000
|
unkown image
|
page readonly
|
|
|
|
20448150000
|
unkown
|
page read and write
|
|
|
|
7FF5182D9000
|
unkown image
|
page readonly
|
|
|
|
7FF5C9300000
|
unkown image
|
page readonly
|
|
|
|
219B7FF7000
|
unkown
|
page read and write
|
|
|
|
1C80F460000
|
unkown
|
page read and write
|
|
|
|
7FF56FA2D000
|
unkown image
|
page readonly
|
|
|
|
26A36055000
|
unkown
|
page read and write
|
|
|
|
7FF5BDBE3000
|
unkown image
|
page readonly
|
|
|
|
26618650000
|
unkown image
|
page readonly
|
|
|
|
204439E0000
|
unkown
|
page read and write
|
|
|
|
7FF53DC44000
|
unkown image
|
page readonly
|
|
|
|
7FF5648D3000
|
unkown image
|
page readonly
|
|
|
|
20448150000
|
unkown
|
page read and write
|
|
|
|
7FF4F0FAB000
|
unkown image
|
page readonly
|
|
|
|
26A36063000
|
unkown
|
page read and write
|
|
|
|
7FF5B36C9000
|
unkown image
|
page readonly
|
|
|
|
1A853B60000
|
unkown image
|
page readonly
|
|
|
|
7FF564563000
|
unkown image
|
page readonly
|
|
|
|
7DF5D35E2000
|
unkown image
|
page readonly
|
|
|
|
20443319000
|
unkown
|
page read and write
|
|
|
|
7FF5D158E000
|
unkown image
|
page readonly
|
|
|
|
1A854588000
|
unkown
|
page read and write
|
|
|
|
7FF5B3680000
|
unkown image
|
page readonly
|
|
|
|
20447FF6000
|
unkown
|
page read and write
|
|
|
|
29B08000000
|
unkown
|
page read and write
|
|
|
|
1BA3EA8F000
|
unkown
|
page read and write
|
|
|
|
1A854588000
|
unkown
|
page read and write
|
|
|
|
7DF5D35F0000
|
unkown image
|
page readonly
|
|
|
|
204482F9000
|
unkown
|
page read and write
|
|
|
|
1C1AC7E000
|
stack
|
page read and write
|
|
|
|
20448150000
|
unkown
|
page read and write
|
|
|
|
1A853CAB000
|
unkown
|
page read and write
|
|
|
|
26A36056000
|
unkown
|
page read and write
|
|
|
|
1C1AEFB000
|
stack
|
page read and write
|
|
|
|
7FF5B377F000
|
unkown image
|
page readonly
|
|
|
|
7FF55A6CD000
|
unkown image
|
page readonly
|
|
|
|
204481E0000
|
unkown
|
page read and write
|
|
|
|
7DF5E7090000
|
unkown image
|
page readonly
|
|
|
|
16DB1200000
|
unkown image
|
page readonly
|
|
|
|
1A854563000
|
unkown
|
page read and write
|
|
|
|
7FF5BDCCD000
|
unkown image
|
page readonly
|
|
|
|
7FF53D40D000
|
unkown image
|
page readonly
|
|
|
|
7FF5B392D000
|
unkown image
|
page readonly
|
|
|
|
1A853C4D000
|
unkown
|
page read and write
|
|
|
|
7FF564804000
|
unkown image
|
page readonly
|
|
|
|
7FF56FA4B000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1453000
|
unkown image
|
page readonly
|
|
|
|
20442A3F000
|
unkown
|
page read and write
|
|
|
|
7FF5B3837000
|
unkown image
|
page readonly
|
|
|
|
7FF53DE98000
|
unkown image
|
page readonly
|
|
|
|
219B7FFE000
|
unkown
|
page read and write
|
|
|
|
7FF5C92EF000
|
unkown image
|
page readonly
|
|
|
|
7DF57A290000
|
unkown image
|
page readonly
|
|
|
|
7FF5B37A4000
|
unkown image
|
page readonly
|
|
|
|
1A853B50000
|
heap default
|
page read and write
|
|
|
|
16DB1077000
|
unkown
|
page read and write
|
|
|
|
1A853C29000
|
unkown
|
page read and write
|
|
|
|
204482FB000
|
unkown
|
page read and write
|
|
|
|
1C80E4E0000
|
unkown image
|
page readonly
|
|
|
|
20F7AFD000
|
stack
|
page read and write
|
|
|
|
1A854589000
|
unkown
|
page read and write
|
|
|
|
18913F10000
|
unkown image
|
page readonly
|
|
|
|
7FF4F312B000
|
unkown image
|
page readonly
|
|
|
|
20442A58000
|
unkown
|
page read and write
|
|
|
|
7DF5068B2000
|
unkown image
|
page readonly
|
|
|
|
7FF5B3865000
|
unkown image
|
page readonly
|
|
|
|
BC8A3FF000
|
stack
|
page read and write
|
|
|
|
7FF564897000
|
unkown image
|
page readonly
|
|
|
|
7FF5B361A000
|
unkown image
|
page readonly
|
|
|
|
6944177000
|
stack
|
page read and write
|
|
|
|
1A854A19000
|
unkown
|
page read and write
|
|
|
|
1A853B00000
|
unkown image
|
page readonly
|
|
|
|
1C80E4B0000
|
unkown image
|
page readonly
|
|
|
|
7FF576256000
|
unkown image
|
page readonly
|
|
|
|
7FF5C925D000
|
unkown image
|
page readonly
|
|
|
|
20443302000
|
unkown
|
page read and write
|
|
|
|
1A853CA4000
|
unkown
|
page read and write
|
|
|
|
7FF53DE80000
|
unkown image
|
page readonly
|
|
|
|
7FF5D179F000
|
unkown image
|
page readonly
|
|
|
|
7FF5BD9A9000
|
unkown image
|
page readonly
|
|
|
|
20447FF7000
|
unkown
|
page read and write
|
|
|
|
7FF5187E0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F3126000
|
unkown image
|
page readonly
|
|
|
|
7FF56495B000
|
unkown image
|
page readonly
|
|
|
|
20443300000
|
unkown
|
page read and write
|
|
|
|
7FF564887000
|
unkown image
|
page readonly
|
|
|
|
1DF4AE80000
|
unkown image
|
page readonly
|
|
|
|
7DF5C9220000
|
unkown image
|
page readonly
|
|
|
|
7FF55A6EF000
|
unkown image
|
page readonly
|
|
|
|
1A853C4C000
|
unkown
|
page read and write
|
|
|
|
219B7FF6000
|
unkown
|
page read and write
|
|
|
|
BC8AA7D000
|
stack
|
page read and write
|
|
|
|
22425A70000
|
heap default
|
page read and write
|
|
|
|
219B7F60000
|
unkown image
|
page readonly
|
|
|
|
7FF51880B000
|
unkown image
|
page readonly
|
|
|
|
1A853AE0000
|
unkown image
|
page read and write
|
|
|
|
7FF5D16B8000
|
unkown image
|
page readonly
|
|
|
|
7DF5C9230000
|
unkown image
|
page readonly
|
|
|
|
7FF57696C000
|
unkown image
|
page readonly
|
|
|
|
20442AFD000
|
unkown
|
page read and write
|
|
|
|
7FF5D1614000
|
unkown image
|
page readonly
|
|
|
|
26A35F30000
|
heap private
|
page read and write
|
|
|
|
18914108000
|
unkown
|
page read and write
|
|
|
|
219B7FA0000
|
unkown
|
page read and write
|
|
|
|
20442A13000
|
unkown
|
page read and write
|
|
|
|
7FF4F25B9000
|
unkown image
|
page readonly
|
|
|
|
29B08013000
|
unkown
|
page read and write
|
|
|
|
26617F70000
|
unkown image
|
page readonly
|
|
|
|
EDD458C000
|
unkown
|
page read and write
|
|
|
|
26A35F90000
|
heap default
|
page read and write
|
|
|
|
20447EF0000
|
unkown
|
page read and write
|
|
|
|
7FF5C90FE000
|
unkown image
|
page readonly
|
|
|
|
16DB1029000
|
unkown
|
page read and write
|
|
|
|
1C80E6C4000
|
unkown
|
page read and write
|
|
|
|
1A853C55000
|
unkown
|
page read and write
|
|
|
|
7FF5BD9F7000
|
unkown image
|
page readonly
|
|
|
|
7FF564722000
|
unkown image
|
page readonly
|
|
|
|
7DF5538C2000
|
unkown image
|
page readonly
|
|
|
|
1DF4B590000
|
unkown image
|
page readonly
|
|
|
|
7DF508A50000
|
unkown image
|
page readonly
|
|
|
|
7FF5761BB000
|
unkown image
|
page readonly
|
|
|
|
7FF56F7ED000
|
unkown image
|
page readonly
|
|
|
|
1BA3EA50000
|
unkown
|
page read and write
|
|
|
|
7DF478150000
|
unkown image
|
page readonly
|
|
|
|
7FF564974000
|
unkown image
|
page readonly
|
|
|
|
7FF4F29A5000
|
unkown image
|
page readonly
|
|
|
|
BC8A97C000
|
stack
|
page read and write
|
|
|
|
7FF55A625000
|
unkown image
|
page readonly
|
|
|
|
18914029000
|
unkown
|
page read and write
|
|
|
|
20447FF0000
|
unkown
|
page read and write
|
|
|
|
219B8370000
|
unkown image
|
page readonly
|
|
|
|
7FF5B392B000
|
unkown image
|
page readonly
|
|
|
|
1DF4AED0000
|
heap default
|
page read and write
|
|
|
|
7DF5538B0000
|
unkown image
|
page readonly
|
|
|
|
7FF53DEB3000
|
unkown image
|
page readonly
|
|
|
|
DB6277E000
|
stack
|
page read and write
|
|
|
|
22425BA0000
|
unkown
|
page read and write
|
|
|
|
219B7FCD000
|
heap default
|
page read and write
|
|
|
|
204431E0000
|
unkown
|
page read and write
|
|
|
|
7DF483210000
|
unkown image
|
page readonly
|
|
|
|
26617F90000
|
unkown image
|
page readonly
|
|
|
|
1C80E6C4000
|
unkown
|
page read and write
|
|
|
|
26A3604B000
|
unkown
|
page read and write
|
|
|
|
7DF52E110000
|
unkown image
|
page readonly
|
|
|
|
29B08002000
|
unkown
|
page read and write
|
|
|
|
7FF5B38FB000
|
unkown image
|
page readonly
|
|
|
|
29B08102000
|
unkown
|
page read and write
|
|
|
|
7DF5D35F2000
|
unkown image
|
page readonly
|
|
|
|
1DF4B113000
|
unkown
|
page read and write
|
|
|
|
26A36077000
|
unkown
|
page read and write
|
|
|
|
7DF508A62000
|
unkown image
|
page readonly
|
|
|
|
26A36062000
|
unkown
|
page read and write
|
|
|
|
1A853CEF000
|
unkown
|
page read and write
|
|
|
|
7FF4F314B000
|
unkown image
|
page readonly
|
|
|
|
7FF5BDCD4000
|
unkown image
|
page readonly
|
|
|
|
1A854582000
|
unkown
|
page read and write
|
|
|
|
7FF53DB64000
|
unkown image
|
page readonly
|
|
|
|
BC8A47C000
|
stack
|
page read and write
|
|
|
|
26A35F40000
|
unkown image
|
page readonly
|
|
|
|
1A854513000
|
unkown
|
page read and write
|
|
|
|
7FF5648BD000
|
unkown image
|
page readonly
|
|
|
|
7FF55A3E8000
|
unkown image
|
page readonly
|
|
|
|
7FF5D16AC000
|
unkown image
|
page readonly
|
|
|
|
7FF53DFBB000
|
unkown image
|
page readonly
|
|
|
|
7DF585342000
|
unkown image
|
page readonly
|
|
|
|
7FF5B3812000
|
unkown image
|
page readonly
|
|
|
|
7FF55A6EF000
|
unkown image
|
page readonly
|
|
|
|
7FF5C923C000
|
unkown image
|
page readonly
|
|
|
|
7FF56FA1B000
|
unkown image
|
page readonly
|
|
|
|
1C80ECB0000
|
unkown image
|
page readonly
|
|
|
|
219B81A0000
|
unkown image
|
page readonly
|
|
|
|
1A854593000
|
unkown
|
page read and write
|
|
|
|
7FF53DF25000
|
unkown image
|
page readonly
|
|
|
|
1BA3E8A0000
|
unkown image
|
page readonly
|
|
|
|
7FF5B383C000
|
unkown image
|
page readonly
|
|
|
|
7FF5B30E6000
|
unkown image
|
page readonly
|
|
|
|
7FF5C9295000
|
unkown image
|
page readonly
|
|
|
|
1A854595000
|
unkown
|
page read and write
|
|
|
|
7FF5D156E000
|
unkown image
|
page readonly
|
|
|
|
22425A10000
|
heap private
|
page read and write
|
|
|
|
7FF5D179B000
|
unkown image
|
page readonly
|
|
|
|
18914102000
|
unkown
|
page read and write
|
|
|
|
7FF5BDAAC000
|
unkown image
|
page readonly
|
|
|
|
7FF56472D000
|
unkown image
|
page readonly
|
|
|
|
266180BA000
|
unkown
|
page read and write
|
|
|
|
1A854250000
|
unkown image
|
page readonly
|
|
|
|
20443358000
|
unkown
|
page read and write
|
|
|
|
1BA3EA00000
|
unkown
|
page read and write
|
|
|
|
1A85457D000
|
unkown
|
page read and write
|
|
|
|
7FF5648C9000
|
unkown image
|
page readonly
|
|
|
|
7FF5BDCDB000
|
unkown image
|
page readonly
|
|
|
|
7FF576A5F000
|
unkown image
|
page readonly
|
|
|
|
1A853AF0000
|
heap private
|
page read and write
|
|
|
|
7FF56FA4F000
|
unkown image
|
page readonly
|
|
|
|
26A35F20000
|
unkown image
|
page read and write
|
|
|
|
6DBE3FF000
|
stack
|
page read and write
|
|
|
|
1A854584000
|
unkown
|
page read and write
|
|
|
|
7FF4F0FBF000
|
unkown image
|
page readonly
|
|
|
|
26A36042000
|
unkown
|
page read and write
|
|
|
|
7DF5D3600000
|
unkown image
|
page readonly
|
|
|
|
22426190000
|
unkown image
|
page readonly
|
|
|
|
7DF57A280000
|
unkown image
|
page readonly
|
|
|
|
7DF508A70000
|
unkown image
|
page readonly
|
|
|
|
1C80E750000
|
unkown image
|
page readonly
|
|
|
|
7FF5BDC29000
|
unkown image
|
page readonly
|
|
|
|
7FF4F0ECD000
|
unkown image
|
page readonly
|
|
|
|
7FF5648F5000
|
unkown image
|
page readonly
|
|
|
|
7FF53DEF9000
|
unkown image
|
page readonly
|
|
|
|
7FF5C927A000
|
unkown image
|
page readonly
|
|
|
|
1BA3EA13000
|
unkown
|
page read and write
|
|
|
|
1C80E490000
|
unkown image
|
page read and write
|
|
|
|
7FF56FA3E000
|
unkown image
|
page readonly
|
|
|
|
7FF5B3613000
|
unkown image
|
page readonly
|
|
|
|
29B08108000
|
unkown
|
page read and write
|
|
|
|
7DF52E120000
|
unkown image
|
page readonly
|
|
|
|
7FF55A6AF000
|
unkown image
|
page readonly
|
|
|
|
7DF451780000
|
unkown image
|
page readonly
|
|
|
|
1A854582000
|
unkown
|
page read and write
|
|
|
|
18913EF0000
|
unkown image
|
page readonly
|
|
|
|
7DF58C362000
|
unkown image
|
page readonly
|
|
|
|
20443900000
|
unkown image
|
page read and write
|
|
|
|
20442A7B000
|
unkown
|
page read and write
|
|
|
|
16DB0FD0000
|
unkown
|
page read and write
|
|
|
|
22425C02000
|
unkown
|
page read and write
|
|
|
|
7FF5B35BA000
|
unkown image
|
page readonly
|
|
|
|
AC8CF7F000
|
stack
|
page read and write
|
|
|
|
20448263000
|
unkown
|
page read and write
|
|
|
|
7FF5B390D000
|
unkown image
|
page readonly
|
|
|
|
20443AF0000
|
unkown image
|
page readonly
|
|
|
|
1BA3E870000
|
unkown image
|
page readonly
|
|
|
|
7DF5E70A2000
|
unkown image
|
page readonly
|
|
|
|
7DF508A50000
|
unkown image
|
page readonly
|
|
|
|
7FF5B36E3000
|
unkown image
|
page readonly
|
|
|
|
204482D7000
|
unkown
|
page read and write
|
|
|
|
20448306000
|
unkown
|
page read and write
|
|
|
|
7FF5B3914000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1705000
|
unkown image
|
page readonly
|
|
|
|
29B07FD0000
|
unkown image
|
page readonly
|
|
|
|
16DB1076000
|
unkown
|
page read and write
|
|
|
|
1A854A02000
|
unkown
|
page read and write
|
|
|
|
7FF5B36C4000
|
unkown image
|
page readonly
|
|
|
|
7DF48A220000
|
unkown image
|
page readonly
|
|
|
|
1BA3EE00000
|
unkown image
|
page readonly
|
|
|
|
7DF52E100000
|
unkown image
|
page readonly
|
|
|
|
7FF55A48D000
|
unkown image
|
page readonly
|
|
|
|
7FF57671A000
|
unkown image
|
page readonly
|
|
|
|
7FF53DDD3000
|
unkown image
|
page readonly
|
|
|
|
1DF4AE60000
|
unkown image
|
page read and write
|
|
|
|
1A854A03000
|
unkown
|
page read and write
|
|
|
|
204482F4000
|
unkown
|
page read and write
|
|
|
|
7FF56F957000
|
unkown image
|
page readonly
|
|
|
|
1A853C50000
|
unkown
|
page read and write
|
|
|
|
7FF5B3848000
|
unkown image
|
page readonly
|
|
|
|
DB62A7D000
|
stack
|
page read and write
|
|
|
|
204482FB000
|
unkown
|
page read and write
|
|
|
|
1A854593000
|
unkown
|
page read and write
|
|
|
|
1C80E6B1000
|
unkown
|
page read and write
|
|
|
|
7FF53DCE3000
|
unkown image
|
page readonly
|
|
|
|
7FF5B35E9000
|
unkown image
|
page readonly
|
|
|
|
189142D0000
|
unkown image
|
page readonly
|
|
|
|
26A3607E000
|
unkown
|
page read and write
|
|
|
|
18913F70000
|
unkown
|
page read and write
|
|
|
|
7DF5068C2000
|
unkown image
|
page readonly
|
|
|
|
1A853CE2000
|
unkown
|
page read and write
|
|
|
|
266180C4000
|
unkown
|
page read and write
|
|
|
|
30E13FC000
|
stack
|
page read and write
|
|
|
|
7FF53DFAB000
|
unkown image
|
page readonly
|
|
|
|
7FF56F81E000
|
unkown image
|
page readonly
|
|
|
|
20F77BB000
|
unkown
|
page read and write
|
|
|
|
20442AA2000
|
unkown
|
page read and write
|
|
|
|
26618802000
|
unkown
|
page read and write
|
|
|
|
26617F60000
|
heap private
|
page read and write
|
|
|
|
7FF5C9237000
|
unkown image
|
page readonly
|
|
|
|
7FF53DC48000
|
unkown image
|
page readonly
|
|
|
|
1891403C000
|
unkown
|
page read and write
|
|
|
|
1A854511000
|
unkown
|
page read and write
|
|
|
|
7DF58C352000
|
unkown image
|
page readonly
|
|
|
|
20448140000
|
unkown
|
page read and write
|
|
|
|
1A853B80000
|
unkown
|
page read and write
|
|
|
|
7FF5D1278000
|
unkown image
|
page readonly
|
|
|
|
1A854582000
|
unkown
|
page read and write
|
|
|
|
20442960000
|
unkown image
|
page readonly
|
|
|
|
1A8545A6000
|
unkown
|
page read and write
|
|
|
|
7FF5187FE000
|
unkown image
|
page readonly
|
|
|
|
1C1AF7E000
|
stack
|
page read and write
|
|
|
|
29B07EC0000
|
unkown image
|
page readonly
|
|
|
|
219B7FE5000
|
unkown
|
page read and write
|
|
|
|
7FF4F0F0A000
|
unkown image
|
page readonly
|
|
|
|
7DF5068B0000
|
unkown image
|
page readonly
|
|
|
|
18914071000
|
unkown
|
page read and write
|
|
|
|
EDD4DFC000
|
stack
|
page read and write
|
|
|
|
204431E3000
|
unkown
|
page read and write
|
|
|
|
7DF570000000
|
unkown image
|
page readonly
|
|
|
|
16DB1050000
|
unkown
|
page read and write
|
|
|
|
1C80E5D0000
|
unkown
|
page read and write
|
|
|
|
30E11F7000
|
stack
|
page read and write
|
|
|
|
219B7F20000
|
unkown image
|
page read and write
|
|
|
|
7FF53DED8000
|
unkown image
|
page readonly
|
|
|
|
1A854584000
|
unkown
|
page read and write
|
|
|
|
30E10FE000
|
stack
|
page read and write
|
|
|
|
20443500000
|
unkown
|
page read and write
|
|
|
|
7DF52E112000
|
unkown image
|
page readonly
|
|
|
|
26618042000
|
unkown
|
page read and write
|
|
|
|
7FF5C9185000
|
unkown image
|
page readonly
|
|
|
|
20443358000
|
unkown
|
page read and write
|
|
|
|
1A854597000
|
unkown
|
page read and write
|
|
|
|
7FF53DCE1000
|
unkown image
|
page readonly
|
|
|
|
1C80F1D0000
|
unkown
|
page read and write
|
|
|
|
7FF53DF8B000
|
unkown image
|
page readonly
|
|
|
|
204429C0000
|
unkown
|
page read and write
|
|
|
|
29B07E80000
|
unkown image
|
page read and write
|
|
|
|
20443318000
|
unkown
|
page read and write
|
|
|
|
29B07EA0000
|
unkown image
|
page readonly
|
|
|
|
7DF5068B2000
|
unkown image
|
page readonly
|
|
|
|
7FF5C8DF3000
|
unkown image
|
page readonly
|
|
|
|
FAA6A7E000
|
stack
|
page read and write
|
|
|
|
1A854A19000
|
unkown
|
page read and write
|
|
|
|
26A3607B000
|
unkown
|
page read and write
|
|
|
|
1DF4B200000
|
unkown image
|
page readonly
|
|
|
|
1C80E6B8000
|
unkown
|
page read and write
|
|
|
|
7FF5D178B000
|
unkown image
|
page readonly
|
|
|
|
7DF5C9222000
|
unkown image
|
page readonly
|
|
|
|
7DF57A280000
|
unkown image
|
page readonly
|
|
|
|
204482FE000
|
unkown
|
page read and write
|
|
|
|
219B81B0000
|
unkown image
|
page readonly
|
|
|
|
20442B13000
|
unkown
|
page read and write
|
|
|
|
219B8340000
|
unkown image
|
page readonly
|
|
|
|
7FF5D176B000
|
unkown image
|
page readonly
|
|
|
|
6DBE2FF000
|
stack
|
page read and write
|
|
|
|
BC8AD7E000
|
stack
|
page read and write
|
|
|
|
7DF5D35E2000
|
unkown image
|
page readonly
|
|
|
|
20448030000
|
unkown
|
page read and write
|
|
|
|
7DF508A52000
|
unkown image
|
page readonly
|
|
|
|
7FF5B3623000
|
unkown image
|
page readonly
|
|
|
|
26618088000
|
unkown
|
page read and write
|
|
|
|
7FF518665000
|
unkown image
|
page readonly
|
|
|
|
7DF57A2A0000
|
unkown image
|
page readonly
|
|
|
|
20447E60000
|
unkown
|
page read and write
|
|
|
|
1A85457F000
|
unkown
|
page read and write
|
|
|
|
219B7FEF000
|
unkown
|
page read and write
|
|
|
|
20448020000
|
unkown
|
page read and write
|
|
|
|
26617FD0000
|
unkown image
|
page readonly
|
|
|
|
7FF576A30000
|
unkown image
|
page readonly
|
|
|
|
1A8545CA000
|
unkown
|
page read and write
|
|
|
|
1A853C84000
|
unkown
|
page read and write
|
|
|
|
7DF5DEC30000
|
unkown image
|
page readonly
|
|
|
|
7FF53D77A000
|
unkown image
|
page readonly
|
|
|
|
7FF5BDB6E000
|
unkown image
|
page readonly
|
|
|
|
219B7FEF000
|
unkown
|
page read and write
|
|
|
|
26618900000
|
unkown
|
page read and write
|
|
|
|
7FF53DCD0000
|
unkown image
|
page readonly
|
|
|
|
26618029000
|
unkown
|
page read and write
|
|
|
|
7FF56A70E000
|
unkown image
|
page readonly
|
|
|
|
7FF518707000
|
unkown image
|
page readonly
|
|
|
|
26A35FC0000
|
unkown
|
page read and write
|
|
|
|
16DB1400000
|
unkown image
|
page readonly
|
|
|
|
1A8545AF000
|
unkown
|
page read and write
|
|
|
|
7FF53DFBF000
|
unkown image
|
page readonly
|
|
|
|
7FF53DEA2000
|
unkown image
|
page readonly
|
|
|
|
26618912000
|
unkown
|
page read and write
|
|
|
|
7FF5B35EF000
|
unkown image
|
page readonly
|
|
|
|
26A36650000
|
unkown image
|
page readonly
|
|
|
|
1DF4B040000
|
unkown
|
page read and write
|
|
|
|
7FF5B391E000
|
unkown image
|
page readonly
|
|
|
|
7FF5BDA8D000
|
unkown image
|
page readonly
|
|
|
|
204482EB000
|
unkown
|
page read and write
|
|
|
|
7DF5C9222000
|
unkown image
|
page readonly
|
|
|
|
1A853C3C000
|
unkown
|
page read and write
|
|
|
|
7FF53DD83000
|
unkown image
|
page readonly
|
|
|
|
16DB1802000
|
unkown
|
page read and write
|
|
|
|
7FF4F077A000
|
unkown image
|
page readonly
|
|
|
|
26617FC0000
|
heap default
|
page read and write
|
|
|
|
DB62C7F000
|
stack
|
page read and write
|
|
|
|
7FF56F943000
|
unkown image
|
page readonly
|
|
|
|
7FF56487C000
|
unkown image
|
page readonly
|
|
|
|
7FF55A629000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1697000
|
unkown image
|
page readonly
|
|
|
|
29B08070000
|
unkown
|
page read and write
|
|
|
|
7FF53DD5D000
|
unkown image
|
page readonly
|
|
|
|
7FF4F3118000
|
unkown image
|
page readonly
|
|
|
|
7FF5C8E08000
|
unkown image
|
page readonly
|
|
|
|
7DF5D3600000
|
unkown image
|
page readonly
|
|
|
|
7FF576A4E000
|
unkown image
|
page readonly
|
|
|
|
7DF508A60000
|
unkown image
|
page readonly
|
|
|
|
1C80E6C5000
|
unkown
|
page read and write
|
|
|
|
7DF4D14B0000
|
unkown image
|
page readonly
|
|
|
|
20448120000
|
unkown
|
page read and write
|
|
|
|
18914000000
|
unkown
|
page read and write
|
|
|
|
26A36046000
|
unkown
|
page read and write
|
|
|
|
20447ED0000
|
unkown
|
page read and write
|
|
|
|
7DF58C370000
|
unkown image
|
page readonly
|
|
|
|
30E12FF000
|
stack
|
page read and write
|
|
|
|
EDD48FE000
|
stack
|
page read and write
|
|
|
|
7DF5E70B0000
|
unkown image
|
page readonly
|
|
|
|
7FF5647A6000
|
unkown image
|
page readonly
|
|
|
|
7FF55A6D4000
|
unkown image
|
page readonly
|
|
|
|
20442920000
|
unkown image
|
page read and write
|
|
|
|
219B7F40000
|
unkown image
|
page readonly
|
|
|
|
1A853C53000
|
unkown
|
page read and write
|
|
|
|
20447FF0000
|
unkown
|
page read and write
|
|
|
|
1A8545B5000
|
unkown
|
page read and write
|
|
|
|
7FF53DEC7000
|
unkown image
|
page readonly
|
|
|
|
20F7C7F000
|
stack
|
page read and write
|
|
|
|
7FF576A5F000
|
unkown image
|
page readonly
|
|
|
|
1BA3EA29000
|
unkown
|
page read and write
|
|
|
|
26A36074000
|
unkown
|
page read and write
|
|
|
|
7DF4E4F60000
|
unkown image
|
page readonly
|
|
|
|
7FF5B36FC000
|
unkown image
|
page readonly
|
|
|
|
7FF5B392F000
|
unkown image
|
page readonly
|
|
|
|
1C80E6A4000
|
unkown
|
page read and write
|
|
|
|
F3973FC000
|
stack
|
page read and write
|
|
|
|
7FF4F2E13000
|
unkown image
|
page readonly
|
|
|
|
30E0B3B000
|
unkown
|
page read and write
|
|
|
|
DB6287B000
|
stack
|
page read and write
|
|
|
|
22425A20000
|
unkown image
|
page readonly
|
|
|
|
26A36045000
|
unkown
|
page read and write
|
|
|
|
7FF5BDC08000
|
unkown image
|
page readonly
|
|
|
|
1A854582000
|
unkown
|
page read and write
|
|
|
|
1C80E840000
|
unkown
|
page read and write
|
|
|
|
F39717F000
|
stack
|
page read and write
|
|
|
|
7DF5E70A2000
|
unkown image
|
page readonly
|
|
|
|
1C1B077000
|
stack
|
page read and write
|
|
|
|
26A36075000
|
unkown
|
page read and write
|
|
|
|
7FF5B361C000
|
unkown image
|
page readonly
|
|
|
|
7FF5D16EA000
|
unkown image
|
page readonly
|
|
|
|
1A8545A8000
|
unkown
|
page read and write
|
|
|
|
1DF4AEA0000
|
unkown image
|
page readonly
|
|
|
|
29B07EF0000
|
heap default
|
page read and write
|
|
|
|
7FF53DE6D000
|
unkown image
|
page readonly
|
|
|
|
1A85458B000
|
unkown
|
page read and write
|
|
|
|
7FF5B3823000
|
unkown image
|
page readonly
|
|
|
|
26A3604E000
|
unkown
|
page read and write
|
|
|
|
7DF52E102000
|
unkown image
|
page readonly
|
|
|
|
7FF5C90CD000
|
unkown image
|
page readonly
|
|
|
|
694407D000
|
stack
|
page read and write
|
|
|
|
7FF5C917F000
|
unkown image
|
page readonly
|
|
|
|
DB6247B000
|
unkown
|
page read and write
|
|
|
|
1A854582000
|
unkown
|
page read and write
|
|
|
|
219B7F80000
|
unkown
|
page read and write
|
|
|
|
7FF4F0FA4000
|
unkown image
|
page readonly
|
|
|
|
7DF5DEC32000
|
unkown image
|
page readonly
|
|
|
|
7FF5B3800000
|
unkown image
|
page readonly
|
|
|
|
7FF5D15B3000
|
unkown image
|
page readonly
|
|
|
|
26A36065000
|
unkown
|
page read and write
|
|
|
|
7DF5538C0000
|
unkown image
|
page readonly
|
|
|
|
20442940000
|
unkown image
|
page readonly
|
|
|
|
7DF46DEB0000
|
unkown image
|
page readonly
|
|
|
|
7FF5187D6000
|
unkown image
|
page readonly
|
|
|
|
7FF5C9269000
|
unkown image
|
page readonly
|
|
|
|
1C80E6A4000
|
unkown
|
page read and write
|
|
|
|
7FF4F30C5000
|
unkown image
|
page readonly
|
|
|
|
20443060000
|
unkown image
|
page readonly
|
|
|
|
20448302000
|
unkown
|
page read and write
|
|
|
|
20447FF4000
|
unkown
|
page read and write
|
|
|
|
30E0E7E000
|
stack
|
page read and write
|
|
|
|
16DB1580000
|
unkown image
|
page readonly
|
|
|
|
AC8C7F7000
|
stack
|
page read and write
|
|
|
|
7FF5BDCEF000
|
unkown image
|
page readonly
|
|
|
|
1891404C000
|
unkown
|
page read and write
|
|
|
|
20F83FE000
|
stack
|
page read and write
|
|
|
|
7FF55A398000
|
unkown image
|
page readonly
|
|
|
|
7FF4F0F8B000
|
unkown image
|
page readonly
|
|
|
|
6DBE47F000
|
stack
|
page read and write
|
|
|
|
7DF52E110000
|
unkown image
|
page readonly
|
|
|
|
219B7FFF000
|
unkown
|
page read and write
|
|
|
|
1A854500000
|
unkown
|
page read and write
|
|
|
|
FAA6CFE000
|
stack
|
page read and write
|
|
|
|
7FF5C92E8000
|
unkown image
|
page readonly
|
|
|
|
7FF56F513000
|
unkown image
|
page readonly
|
|
|
|
7FF53DEAC000
|
unkown image
|
page readonly
|
|
|
|
7FF5C9227000
|
unkown image
|
page readonly
|
|
|
|
AC8C8FA000
|
stack
|
page read and write
|
|
|
|
1A854582000
|
unkown
|
page read and write
|
|
|
|
7FF5187FB000
|
unkown image
|
page readonly
|
|
|
|
7DF58C350000
|
unkown image
|
page readonly
|
|
|
|
7DF42BFD0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F314E000
|
unkown image
|
page readonly
|
|
|
|
7FF56F703000
|
unkown image
|
page readonly
|
|
|
|
20442ED0000
|
unkown image
|
page readonly
|
|
|
|
7DF58C360000
|
unkown image
|
page readonly
|
|
|
|
7FF56489C000
|
unkown image
|
page readonly
|
|
|
|
7FF5BDBC4000
|
unkown image
|
page readonly
|
|
|
|
1C80F3F0000
|
unkown
|
page readonly
|
|
|
|
1BA3EA4D000
|
unkown
|
page read and write
|
|
|
|
7FF55A6C0000
|
unkown image
|
page readonly
|
|
|
|
7FF518728000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1269000
|
unkown image
|
page readonly
|
|
|
|
7DF5068C2000
|
unkown image
|
page readonly
|
|
|
|
26617F50000
|
unkown image
|
page read and write
|
|
|
|
7FF56FA0F000
|
unkown image
|
page readonly
|
|
|
|
7FF5B387A000
|
unkown image
|
page readonly
|
|
|
|
1A853CAF000
|
unkown
|
page read and write
|
|
|
|
7FF5BDCAF000
|
unkown image
|
page readonly
|
|
|
|
2044823E000
|
unkown
|
page read and write
|
|
|
|
7FF5648C5000
|
unkown image
|
page readonly
|
|
|
|
16DB0EA0000
|
unkown image
|
page readonly
|
|
|
|
22425A40000
|
unkown image
|
page readonly
|
|
|
|
22425A20000
|
unkown image
|
page readonly
|
|
|
|
189144D0000
|
unkown image
|
page readonly
|
|
|
|
7FF5B3156000
|
unkown image
|
page readonly
|
|
|
|
7DF5068C0000
|
unkown image
|
page readonly
|
|
|
|
7FF53DA83000
|
unkown image
|
page readonly
|
|
|
|
7DF52E102000
|
unkown image
|
page readonly
|
|
|
|
7FF5B3651000
|
unkown image
|
page readonly
|
|
|
|
26A3604F000
|
unkown
|
page read and write
|
|
|
|
7FF5B37F0000
|
unkown image
|
page readonly
|
|
|
|
20F7E77000
|
stack
|
page read and write
|
|
|
|
7FF5C911E000
|
unkown image
|
page readonly
|
|
|
|
7FF5D177D000
|
unkown image
|
page readonly
|
|
|
|
7DF5E70A0000
|
unkown image
|
page readonly
|
|
|
|
1DF4B802000
|
unkown
|
page read and write
|
|
|
|
F396E7C000
|
stack
|
page read and write
|
|
|
|
7DF5D35E0000
|
unkown image
|
page readonly
|
|
|
|
204482E3000
|
unkown
|
page read and write
|
|
|
|
7FF5187CF000
|
unkown image
|
page readonly
|
|
|
|
7FF5B385D000
|
unkown image
|
page readonly
|
|
|
|
7DF58C360000
|
unkown image
|
page readonly
|
|
|
|
1C80E610000
|
unkown image
|
page readonly
|
|
|
|
1A853BA0000
|
unkown image
|
page readonly
|
|
|
|
7FF5C90F3000
|
unkown image
|
page readonly
|
|
|
|
7DF585360000
|
unkown image
|
page readonly
|
|
|
|
1C80E890000
|
heap private
|
page read and write
|
|
|
|
20448150000
|
unkown
|
page read and write
|
|
|
|
7DF5D35F2000
|
unkown image
|
page readonly
|
|
|
|
7DF585350000
|
unkown image
|
page readonly
|
|
|
|
7DF508A62000
|
unkown image
|
page readonly
|
|
|
|
7FF56F989000
|
unkown image
|
page readonly
|
|
|
|
7FF4F0EF9000
|
unkown image
|
page readonly
|
|
|
|
26A3606B000
|
unkown
|
page read and write
|
|
|
|
1C80F410000
|
unkown
|
page read and write
|
|
|
|
7FF576A26000
|
unkown image
|
page readonly
|
|
|
|
20448200000
|
unkown
|
page read and write
|
|
|
|
7FF5769A3000
|
unkown image
|
page readonly
|
|
|
|
26A36029000
|
unkown
|
page read and write
|
|
|
|
1C80E658000
|
heap default
|
page read and write
|
|
|
|
7DF585342000
|
unkown image
|
page readonly
|
|
|
|
204482B0000
|
unkown
|
page read and write
|
|
|
|
1A854582000
|
unkown
|
page read and write
|
|
|
|
7FF5767EA000
|
unkown image
|
page readonly
|
|
|
|
7FF564883000
|
unkown image
|
page readonly
|
|
|
|
7FF5C932F000
|
unkown image
|
page readonly
|
|
|
|
7FF53DF86000
|
unkown image
|
page readonly
|
|
|
|
1A854A02000
|
unkown
|
page read and write
|
|
|
|
7FF53DFA4000
|
unkown image
|
page readonly
|
|
|
|
AC8D1FF000
|
stack
|
page read and write
|
|
|
|
7FF5BD97A000
|
unkown image
|
page readonly
|
|
|
|
DB62B7F000
|
stack
|
page read and write
|
|
|
|
7FF564948000
|
unkown image
|
page readonly
|
|
|
|
20447FF8000
|
unkown
|
page read and write
|
|
|
|
7FF5C8FE3000
|
unkown image
|
page readonly
|
|
|
|
7FF53DECC000
|
unkown image
|
page readonly
|
|
|
|
1A853C8C000
|
unkown
|
page read and write
|
|
|
|
7FF55A5F7000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1758000
|
unkown image
|
page readonly
|
|
|
|
29B07ED0000
|
unkown image
|
page readonly
|
|
|
|
16DB103C000
|
unkown
|
page read and write
|
|
|
|
7DF57A2A0000
|
unkown image
|
page readonly
|
|
|
|
7FF5C8783000
|
unkown image
|
page readonly
|
|
|
|
1DF4AE70000
|
heap private
|
page read and write
|
|
|
|
7FF5648A8000
|
unkown image
|
page readonly
|
|
|
|
20447FFE000
|
unkown
|
page read and write
|
|
|
|
26A36067000
|
unkown
|
page read and write
|
|
|
|
7FF56498F000
|
unkown image
|
page readonly
|
|
|
|
1A854599000
|
unkown
|
page read and write
|
|
|
|
1BA3E9C0000
|
unkown
|
page read and write
|
|
|
|
7FF53DFBF000
|
unkown image
|
page readonly
|
|
|
|
26617FF0000
|
unkown
|
page read and write
|
|
|
|
7FF53DA89000
|
unkown image
|
page readonly
|
|
|
|
7DF5C9232000
|
unkown image
|
page readonly
|
|
|
|
204431C1000
|
unkown
|
page read and write
|
|
|
|
1DF4AFB0000
|
unkown image
|
page readonly
|
|
|
|
20443AD0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F0FAE000
|
unkown image
|
page readonly
|
|
|
|
7FF5185D3000
|
unkown image
|
page readonly
|
|
|
|
1BA3EB08000
|
unkown
|
page read and write
|
|
|
|
7FF56498B000
|
unkown image
|
page readonly
|
|
|
|
7DF585340000
|
unkown image
|
page readonly
|
|
|
|
7FF5B38E8000
|
unkown image
|
page readonly
|
|
|
|
20443202000
|
unkown
|
page read and write
|
|
|
|
1A854588000
|
unkown
|
page read and write
|
|
|
|
7FF56F97D000
|
unkown image
|
page readonly
|
|
|
|
7FF5B3873000
|
unkown image
|
page readonly
|
|
|
|
7DF56FFE2000
|
unkown image
|
page readonly
|
|
|
|
7FF5B34A4000
|
unkown image
|
page readonly
|
|
|
|
7FF5D0BF3000
|
unkown image
|
page readonly
|
|
|
|
7FF5C91A4000
|
unkown image
|
page readonly
|
|
|
|
18914089000
|
unkown
|
page read and write
|
|
|
|
29B0808A000
|
unkown
|
page read and write
|
|
|
|
7FF5D0BED000
|
unkown image
|
page readonly
|
|
|
|
7FF5182E8000
|
unkown image
|
page readonly
|
|
|
|
1BA3E860000
|
heap private
|
page read and write
|
|
|
|
266180CB000
|
unkown
|
page read and write
|
|
|
|
22425C3C000
|
unkown
|
page read and write
|
|
|
|
1A853C5C000
|
unkown
|
page read and write
|
|
|
|
7FF5769C5000
|
unkown image
|
page readonly
|
|
|
|
7FF5D1770000
|
unkown image
|
page readonly
|
|
|
|
26618113000
|
unkown
|
page read and write
|
|
|
|
7FF55A61D000
|
unkown image
|
page readonly
|
|
|
|
7DF5C9240000
|
unkown image
|
page readonly
|
|
|
|
7FF5B38FE000
|
unkown image
|
page readonly
|
|
|
|
7FF56FA4F000
|
unkown image
|
page readonly
|
|
|
|
7FF56F947000
|
unkown image
|
page readonly
|
|
|
|
7FF576897000
|
unkown image
|
page readonly
|
|
|
|
7FF5BDBDC000
|
unkown image
|
page readonly
|
|
|
|
1C80E895000
|
heap private
|
page read and write
|
|
|
|
1BA3EB13000
|
unkown
|
page read and write
|
|
|
|
7FF4F3144000
|
unkown image
|
page readonly
|
|
|
|
1A854A02000
|
unkown
|
page read and write
|
|
|
|
1A853B00000
|
unkown image
|
page readonly
|
|
|
|
EDD4AFB000
|
stack
|
page read and write
|
|
|
|
7FF5BDC25000
|
unkown image
|
page readonly
|
|
|
|
7FF5647B2000
|
unkown image
|
page readonly
|
|
|
|
7DF56FFF2000
|
unkown image
|
page readonly
|
|
|
|
7DF5E70A0000
|
unkown image
|
page readonly
|
|
|
|
20442A77000
|
unkown
|
page read and write
|
|
|
|
7DF58C352000
|
unkown image
|
page readonly
|
|
|
|
7FF5C92FB000
|
unkown image
|
page readonly
|
|
|
|
26A36102000
|
unkown
|
page read and write
|
|
|
|
1C1ADFC000
|
stack
|
page read and write
|
|
|
|
FAA675C000
|
unkown
|
page read and write
|
|
|
|
AC8CAFE000
|
stack
|
page read and write
|
|
|
|
20443359000
|
unkown
|
page read and write
|
|
|
|
7DF5068B0000
|
unkown image
|
page readonly
|
|
|
|
18914100000
|
unkown
|
page read and write
|
|
|
|
7DF5DEC30000
|
unkown image
|
page readonly
|
|
|
|
7FF576A1F000
|
unkown image
|
page readonly
|
|
|
|
7FF51880F000
|
unkown image
|
page readonly
|
|
|
|
30E0BBE000
|
stack
|
page read and write
|
|
|
|
22425C29000
|
unkown
|
page read and write
|
|
|
|
7FF5BDBFC000
|
unkown image
|
page readonly
|
|
|
|
16DB0EB0000
|
unkown image
|
page readonly
|
|
|
|
1A8545A6000
|
unkown
|
page read and write
|
|
|
|
7DF5068D0000
|
unkown image
|
page readonly
|
|
|
|
7FF5B34BF000
|
unkown image
|
page readonly
|
|
|
|
1C80E4A0000
|
unkown
|
page read and write
|
|
|
|
7FF5BD157000
|
unkown image
|
page readonly
|
|
|
|
219B7FC0000
|
heap default
|
page read and write
|
|
|
|
7FF56498F000
|
unkown image
|
page readonly
|
|
|
|
20442B02000
|
unkown
|
page read and write
|
|
|
|
219B7F40000
|
unkown image
|
page readonly
|
|
|
|
1A854586000
|
unkown
|
page read and write
|
|
There are 1281 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
file:///C:/Users/user/Desktop/Michal%20November%2023,%202021.html
|
|
|
|
https://passwordreset.microsoftonline.com/?ru=https%3a%2f%2flogin.microsoftonline.com%2fcommon%2freprocess%3fctx%3drQIIAYWSvY_jZBDG42Q3l82BOQ50Oqi2QAIhOXn9Ha90RbLO5mv9Otk4iZ0mSpw39pvYsddxEq91f8B2XIXQFRRXLg06GkQD9VZXb4MrCkSBqOgOL9QnmpnnmRnNFPMrFoQSTZdACXyZY0rg5DNOFHiO42cUy5gCxUkzQFVYJFD0XGLTFiMK5jR4XHyU-XbbePXzp_JX17-2P__j9dc3xLEdhv7mpFze7_clb7HAJiqZnlt2pus5Xls75keCeEMQL7OHaE214E12I6QbKzxdkQSaY9LMMCVlWWWNuIahZoRKnGoMABz1onPNxjBWQuie2QZztoSy7SqawcCRwd7PKbIVKrIRwT4AqnZmn4_qEZTraa0aw7jFq5oRGZrF3WU_UKvb0GbugxfgGP2VPVp4gTvxvU34MvddtrcIK3DYHW4D3FtYQqPriOq66VF9fchfDeZtSR9VO_OY61LKGWWtxzt_jxn2dIlGjo7ZWA_clR_xSNYG7UmsX1CIbrMdgevVL82ep0StcGqd-p2W0YmXs7jLXQYAs3UFS2tTafr7CnZ1X_V9sJd0eFEzqb5cgcqw2xVWYxzy8AqsRnxdVDe-Ptb1sYlGW1rTRV6YtOgd06BCIwpFx572-_JgoDembU9aCEPLReO6PatGWnp9KUZNLrD0sd2RXY2KLgeUvnFrLduaDuUJu0Jow830xrlU29U4wUYhRV-cjvB4aLG9lX_acAHw1KHiD6yb3Cfv-PmOeZ3Lp8L11rc50fPRGs-P_cBbYAe9i5MdU1b_dU3PRaWq47w5IH4_eFLIP3r4NHOc-eJjkDspFFLy7t3fB8SrwxTDrnj3HP_wW-ubyffg-O115vawvGArQWCcr1S7P0C1pQO1q_IOADeEUqcX1r2dLDXL_Y7m0eYz8YR-kSde5PO3-Q9b8gTWtb5WhXL1QmYm4M88cf0g89PR_4J9995HxeIWTxzPnDpo8_g_wH95P5OQREJmEzKXkAcJeZiQ-YR8kJCFhDxKyGJCPvwH0&mkt=en-IN&hosted=0&device_platform=Windows+10
|
|