Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
wXvjhk5m3v.html
|
HTML document, ASCII text, with very long lines, with CRLF line terminators
|
initial sample
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\0c5fcebb-69dc-4fb1-b699-a9314a6f1747.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\160d64a6-1eeb-4dc2-9b6f-b9e5d4aa1992.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\22b35e1d-7fdb-47b3-89cb-958fa921edc9.tmp
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\69175fad-d0ee-4c5f-a226-9bf077c951e9.tmp
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\7a5109d2-5998-4b16-93f4-9065a79c0e30.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1785d6ae-d68b-41c8-9783-98d12090b22f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2ab5f33f-1417-475f-b031-9c12f532154f.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\339a517e-d6ad-449e-9ecb-938fcbf97aca.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3e33330f-85f5-45c4-ad19-06526a1f5da6.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5a322888-dea8-4187-9b7b-f3a315199093.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\65017b5a-1c5e-45b0-bc25-261455fabd69.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6d9ea8fc-b171-461b-b32b-4900321e005d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\94dbcf1c-e098-4e1b-9b26-fa4550144aad.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.oldot (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old.d (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session (copy)
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabs (copy)
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
modified
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.old.. (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences.. (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure PreferencesMP (copy)
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferenceswe (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\3ae19ca6-bd9a-4fb0-8607-5c88f13973e4.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\9eb95b2e-d67e-4ce7-bcf2-15191cf7fdfc.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
State} (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.old.
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old.. (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a2dfb77c-b638-4ba1-ba32-691d274593f2.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b6f328b4-4ad1-414a-899d-03a871e5ed58.tmp
|
very short file (no magic)
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT. (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old.1 (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\facda635-82b2-49d3-bde2-14eec0b68b41.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.oldM (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cachef (copy)
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Caches (copy)
|
SysEx File -
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\27\scoped_dir6704_951853371\Ruleset Data
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\a1bef5a9-95d4-4d5e-b06b-434a8847b288.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\acdb0e81-2303-4580-a1dc-d486d8a12ea4.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\af645226-14e3-4182-891c-7a65e9942a16.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\be6e7b5e-e382-48d7-841c-570845680964.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\da8cedd8-326b-4ccb-9253-cf0a54380925.tmp
|
SysEx File -
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\de029872-d91a-4423-bd41-8af05b43e6b5.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\ec7d31b9-59e0-4819-96f6-0eda4ab70923.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\1c96e7e6-87ce-426d-92a9-82d687faa6eb.tmp
|
very short file (no magic)
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\4f8360dd-387b-4473-8d91-3272c19fa82b.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_1256685134\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_1256685134\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_1256685134\manifest.json
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_1256685134\module_list_proto
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_1925047400\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_1925047400\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_1925047400\manifest.json
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_1925047400\ssl_error_assistant.pb
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_212793549\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_212793549\_platform_specific\x86_64\pnacl_public_pnacl_json
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_212793549\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_212793549\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_212793549\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_212793549\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=7511538a3a6a0b862c772eace49075ed1bbe2377,
stripped
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_212793549\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a
|
current ar archive
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_212793549\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a
|
current ar archive
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_212793549\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a
|
current ar archive
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_212793549\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a
|
current ar archive
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_212793549\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=309d6d3d463e6b1b0690f39eb226b1e4c469b2ce,
stripped
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_212793549\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_sz_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=4b15de4ab227d5e46213978b8518d53c53ce1db9,
stripped
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_212793549\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_212793549\manifest.json
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_281600877\Filtering Rules
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_281600877\LICENSE.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_281600877\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_281600877\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_281600877\manifest.json
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_639937078\LICENSE
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_639937078\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_639937078\crl-set
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_639937078\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_639937078\manifest.json
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_733674376\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_733674376\download_file_types.pb
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_733674376\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6704_733674376\manifest.json
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\97273b6f-936b-4c44-95f7-eefd4d0bff48.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\987483d3-6fd8-46ea-8233-d27a79ae2b4f.tmp
|
very short file (no magic)
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\4f8360dd-387b-4473-8d91-3272c19fa82b.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_1320708543\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\97273b6f-936b-4c44-95f7-eefd4d0bff48.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\iw\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\angular.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\background_script.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\cast_sender.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\common.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\feedback.css
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\feedback.html
|
HTML document, ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\feedback_script.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\material_css_min.css
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\mirroring_cast_streaming.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\mirroring_common.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\mirroring_hangouts.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6704_585029316\CRX_INSTALL\mirroring_webrtc.js
|
ASCII text, with very long lines
|
dropped
|
There are 266 hidden files, click here to show them.
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "C:\Users\user\Desktop\wXvjhk5m3v.html
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1612,16036229678002564385,16466666419431766852,131072
--lang=en-GB --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1772 /prefetch:8
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
file:///C:/Users/user/Desktop/wXvjhk5m3v.html
|
|||
https://a.nel.cloudflare.com/report/v3?s=S6zmJbXzwKdHkNhD1PRNhE7HswhYm5cZYvwqVOJVKvcvsAI4CA1cAJCaSRT
|
unknown
|
||
https://apis.google.com/js/client.js
|
unknown
|
||
https://ka-f.fontawesome.com
|
unknown
|
||
https://www.google.com/images/cleardot.gif
|
unknown
|
||
https://www.office.com
|
unknown
|
||
https://code.jquery.com/jquery-3.2.1.slim.min.js
|
unknown
|
||
https://play.google.com
|
unknown
|
||
https://a.nel.cloudflare.com/report/v3?s=runKx0451RTqkIEfFmdMG1vmr%2FhpUoqtpcoBDjr3DLJj7lVFP7V2tVOGF
|
unknown
|
||
https://crash.corp.google.com/samples?reportid=&q=
|
unknown
|
||
https://www.google.com/log?format=json&hasfast=true
|
unknown
|
||
https://ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251
|
unknown
|
||
https://easylist.to/)
|
unknown
|
||
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
||
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
|
unknown
|
||
https://accounts.google.com/MergeSession
|
unknown
|
||
https://creativecommons.org/compatiblelicenses
|
unknown
|
||
https://preprod-hangouts-googleapis.sandbox.google.com
|
unknown
|
||
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
|
142.250.203.97
|
||
https://www.google.com
|
unknown
|
||
https://github.com/easylist)
|
unknown
|
||
https://creativecommons.org/.
|
unknown
|
||
https://ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251kf
|
unknown
|
||
https://hangouts.clients6.google.com
|
unknown
|
||
https://meet.google.com
|
unknown
|
||
https://hangouts.google.com/hangouts/_/logpref
|
unknown
|
||
https://accounts.google.com
|
unknown
|
||
https://clients2.google.com/cr/report
|
unknown
|
||
http://angularjs.org
|
unknown
|
||
https://creativecommons.org/publicdomain/zero/1.0/.
|
unknown
|
||
https://github.com/angular/material
|
unknown
|
||
https://apis.google.com
|
unknown
|
||
https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
|
104.18.10.207
|
||
https://kit.fontawesome.com/585b051251.js
|
unknown
|
||
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
||
https://github.com/madler/zlib/blob/master/zlib.h
|
unknown
|
||
https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.jsy
|
unknown
|
||
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
||
https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers
|
unknown
|
||
https://clients2.google.com
|
unknown
|
||
https://www.google.com/tools/feedback
|
unknown
|
||
http://www.apache.org/licenses/LICENSE-2.0
|
unknown
|
||
https://dns.google
|
unknown
|
||
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
||
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
||
https://ogs.google.com
|
unknown
|
||
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
||
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
|
unknown
|
||
https://aadcdn.msauth.net/ests/2.1/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
|
unknown
|
||
https://code.jquery.com/jquery-3.1.1.min.js
|
unknown
|
||
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
172.217.168.45
|
||
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
||
https://www.google.com;
|
unknown
|
||
https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
|
unknown
|
||
https://hangouts.google.com/
|
unknown
|
||
https://ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251
|
unknown
|
||
https://csp.withgoogle.com/csp/hosted-libraries-pushers
|
unknown
|
||
https://www.google.com/images/x2.gif
|
unknown
|
||
https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
|
104.18.10.207
|
||
https://code.jquery.com/jquery-3.3.1.js
|
unknown
|
||
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-GB&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
142.250.203.110
|
||
http://llvm.org/):
|
unknown
|
||
https://www.google.com/images/dot2.gif
|
unknown
|
||
https://kit.fontawesome.com
|
unknown
|
||
https://meetings.clients6.google.com
|
unknown
|
||
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
||
https://code.google.com/p/nativeclient/issues/entry%s:
|
unknown
|
||
https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
|
104.16.18.94
|
||
http://tools.ietf.org/html/rfc1950
|
unknown
|
||
https://code.google.com/p/nativeclient/issues/entry
|
unknown
|
||
https://code.jquery.com/jquery-3.3.1.js&
|
unknown
|
||
https://csp.withgoogle.com/csp/hosted-libraries-pushersCross-Origin-Resource-Policy:
|
unknown
|
||
https://support.google.com/chromecast/answer/2998456
|
unknown
|
||
https://clients2.googleusercontent.com
|
unknown
|
||
https://logo.clearbit.com/
|
unknown
|
||
https://docs.google.com
|
unknown
|
||
https://www.google.com/
|
unknown
|
||
https://feedback.googleusercontent.com
|
unknown
|
||
https://chromium.googlesource.com/a/native_client/pnacl-clang.git
|
unknown
|
||
https://clients2.google.com/service/update2/crx
|
unknown
|
||
https://clients6.google.com
|
unknown
|
There are 71 hidden URLs, click here to show them.
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
gstaticadssl.l.google.com
|
172.217.168.3
|
||
accounts.google.com
|
172.217.168.45
|
||
cdnjs.cloudflare.com
|
104.16.18.94
|
||
maxcdn.bootstrapcdn.com
|
104.18.10.207
|
||
clients.l.google.com
|
142.250.203.110
|
||
googlehosted.l.googleusercontent.com
|
142.250.203.97
|
||
clients2.googleusercontent.com
|
unknown
|
||
clients2.google.com
|
unknown
|
||
ka-f.fontawesome.com
|
unknown
|
||
code.jquery.com
|
unknown
|
||
kit.fontawesome.com
|
unknown
|
||
aadcdn.msauth.net
|
unknown
|
There are 2 hidden domains, click here to show them.
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
192.168.2.1
|
unknown
|
unknown
|
||
104.18.10.207
|
maxcdn.bootstrapcdn.com
|
United States
|
||
142.250.203.110
|
clients.l.google.com
|
United States
|
||
192.168.2.5
|
unknown
|
unknown
|
||
172.217.168.45
|
accounts.google.com
|
United States
|
||
142.250.203.97
|
googlehosted.l.googleusercontent.com
|
United States
|
||
239.255.255.250
|
unknown
|
Reserved
|
||
172.217.168.3
|
gstaticadssl.l.google.com
|
United States
|
||
104.16.18.94
|
cdnjs.cloudflare.com
|
United States
|
||
127.0.0.1
|
unknown
|
unknown
|
Registry
Path
|
Value
|
Malicious
|
|
---|---|---|---|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
||
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
There are 35 hidden registries, click here to show them.
Memdumps
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
---|---|---|---|---|
7FF512F83000
|
unkown image
|
page readonly
|
||
7FF54F9E6000
|
unkown image
|
page readonly
|
||
7FF54F912000
|
unkown image
|
page readonly
|
||
28E5131A000
|
unkown
|
page read and write
|
||
2C0C7D02000
|
unkown
|
page read and write
|
||
7FF54F7C1000
|
unkown image
|
page readonly
|
||
19F76550000
|
heap private
|
page read and write
|
||
7FF54F97B000
|
unkown image
|
page readonly
|
||
19F76700000
|
unkown
|
page read and write
|
||
1F2B94F2000
|
unkown
|
page read and write
|
||
28E51318000
|
unkown
|
page read and write
|
||
7DF510530000
|
unkown image
|
page readonly
|
||
7DF55A422000
|
unkown image
|
page readonly
|
||
1F2B9D5F000
|
unkown
|
page read and write
|
||
7DF55A430000
|
unkown image
|
page readonly
|
||
95804FC000
|
unkown
|
page read and write
|
||
7FF545214000
|
unkown image
|
page readonly
|
||
403E9F7000
|
stack
|
page read and write
|
||
28E51200000
|
unkown
|
page read and write
|
||
7FF4FB353000
|
unkown image
|
page readonly
|
||
1F2B9BF0000
|
unkown
|
page read and write
|
||
28E56490000
|
unkown
|
page read and write
|
||
2C0C7C4C000
|
unkown
|
page read and write
|
||
1F161F80000
|
unkown image
|
page readonly
|
||
28E56490000
|
unkown
|
page read and write
|
||
19F76560000
|
unkown image
|
page readonly
|
||
1F2B94A8000
|
unkown
|
page read and write
|
||
28E51358000
|
unkown
|
page read and write
|
||
28E50900000
|
unkown image
|
page readonly
|
||
7FF54F831000
|
unkown image
|
page readonly
|
||
19F765E0000
|
unkown
|
page read and write
|
||
28E562BF000
|
unkown
|
page read and write
|
||
7FF5D57AE000
|
unkown image
|
page readonly
|
||
7FF5452AE000
|
unkown image
|
page readonly
|
||
9580B78000
|
stack
|
page read and write
|
||
7DF5EA8B0000
|
unkown image
|
page readonly
|
||
1F2B94FD000
|
unkown
|
page read and write
|
||
7FF4FB340000
|
unkown image
|
page readonly
|
||
23400A5A000
|
unkown
|
page read and write
|
||
7DF528252000
|
unkown image
|
page readonly
|
||
7FF5131D2000
|
unkown image
|
page readonly
|
||
1F161CF0000
|
unkown image
|
page readonly
|
||
1F2B9D00000
|
unkown
|
page read and write
|
||
7FF51314E000
|
unkown image
|
page readonly
|
||
28E55FB0000
|
unkown
|
page read and write
|
||
28E51215000
|
unkown
|
page read and write
|
||
28E56110000
|
unkown
|
page read and write
|
||
7FF5452F4000
|
unkown image
|
page readonly
|
||
28E5623E000
|
unkown
|
page read and write
|
||
7FF54F93B000
|
unkown image
|
page readonly
|
||
1F2B9D6C000
|
unkown
|
page read and write
|
||
7DF426120000
|
unkown image
|
page readonly
|
||
1F2B9DC4000
|
unkown
|
page read and write
|
||
7FF5453A2000
|
unkown image
|
page readonly
|
||
19F76649000
|
unkown
|
page read and write
|
||
7DF43C980000
|
unkown image
|
page readonly
|
||
28E50A8D000
|
unkown
|
page read and write
|
||
28E50AFD000
|
unkown
|
page read and write
|
||
7FF4FB1D4000
|
unkown image
|
page readonly
|
||
28E56080000
|
unkown
|
page read and write
|
||
28E564A0000
|
unkown
|
page read and write
|
||
1F2B9D68000
|
unkown
|
page read and write
|
||
7FF544E76000
|
unkown image
|
page readonly
|
||
1F2B9D72000
|
unkown
|
page read and write
|
||
7FF545171000
|
unkown image
|
page readonly
|
||
28E50ED0000
|
unkown image
|
page readonly
|
||
1F2B9A50000
|
unkown image
|
page readonly
|
||
7DF564AF0000
|
unkown image
|
page readonly
|
||
1F2BA202000
|
unkown
|
page read and write
|
||
7DF5EA8D0000
|
unkown image
|
page readonly
|
||
28E509F3000
|
unkown
|
page read and write
|
||
7FF51312A000
|
unkown image
|
page readonly
|
||
7FF54F987000
|
unkown image
|
page readonly
|
||
28E55FB4000
|
unkown
|
page read and write
|
||
7FF544E70000
|
unkown image
|
page readonly
|
||
7FF512CA0000
|
unkown image
|
page readonly
|
||
7FF529945000
|
unkown image
|
page readonly
|
||
7FF5D57A8000
|
unkown image
|
page readonly
|
||
1F2B9DA1000
|
unkown
|
page read and write
|
||
7FF5131D1000
|
unkown image
|
page readonly
|
||
2C0C8000000
|
unkown image
|
page readonly
|
||
7FF4FB2ED000
|
unkown image
|
page readonly
|
||
7FF5D5757000
|
unkown image
|
page readonly
|
||
7DF53EAC2000
|
unkown image
|
page readonly
|
||
23400A29000
|
unkown
|
page read and write
|
||
7FF4FB079000
|
unkown image
|
page readonly
|
||
7FF54F975000
|
unkown image
|
page readonly
|
||
7FF5D56AC000
|
unkown image
|
page readonly
|
||
7FF51302D000
|
unkown image
|
page readonly
|
||
23400A64000
|
unkown
|
page read and write
|
||
7DF5EA8C0000
|
unkown image
|
page readonly
|
||
1F2B94AB000
|
unkown
|
page read and write
|
||
7FF5D5591000
|
unkown image
|
page readonly
|
||
1F2B9D82000
|
unkown
|
page read and write
|
||
2C0C7A80000
|
unkown image
|
page readonly
|
||
28E5627A000
|
unkown
|
page read and write
|
||
28E56295000
|
unkown
|
page read and write
|
||
1F2B9D8C000
|
unkown
|
page read and write
|
||
28E5629C000
|
unkown
|
page read and write
|
||
1F2B9D88000
|
unkown
|
page read and write
|
||
23400ED0000
|
unkown image
|
page readonly
|
||
7DF53EAC0000
|
unkown image
|
page readonly
|
||
7FF512FC1000
|
unkown image
|
page readonly
|
||
23400930000
|
unkown image
|
page readonly
|
||
7FF4FB3F4000
|
unkown image
|
page readonly
|
||
317418A000
|
unkown
|
page read and write
|
||
28E50A13000
|
unkown
|
page read and write
|
||
23400A60000
|
unkown
|
page read and write
|
||
7FF4FB3CC000
|
unkown image
|
page readonly
|
||
28E5624B000
|
unkown
|
page read and write
|
||
1F2B9D90000
|
unkown
|
page read and write
|
||
1F161E80000
|
heap default
|
page read and write
|
||
28E56277000
|
unkown
|
page read and write
|
||
7FF5D5824000
|
unkown image
|
page readonly
|
||
2C0C7C3C000
|
unkown
|
page read and write
|
||
1F2B94A1000
|
unkown
|
page read and write
|
||
19F76580000
|
unkown image
|
page readonly
|
||
2C0C7D08000
|
unkown
|
page read and write
|
||
1F2B9DC2000
|
unkown
|
page read and write
|
||
2C0C7C7B000
|
unkown
|
page read and write
|
||
7DF53EAB2000
|
unkown image
|
page readonly
|
||
28E51E01000
|
unkown
|
page read and write
|
||
1F2B9D72000
|
unkown
|
page read and write
|
||
A426D7D000
|
stack
|
page read and write
|
||
7FF54F7A6000
|
unkown image
|
page readonly
|
||
1F2BA26A000
|
unkown
|
page read and write
|
||
67E94FB000
|
unkown
|
page read and write
|
||
28E560C0000
|
unkown
|
page read and write
|
||
7FF513044000
|
unkown image
|
page readonly
|
||
7FF4FB15B000
|
unkown image
|
page readonly
|
||
28E56278000
|
unkown
|
page read and write
|
||
7FF4FB24F000
|
unkown image
|
page readonly
|
||
23400A88000
|
unkown
|
page read and write
|
||
9580FFA000
|
stack
|
page read and write
|
||
1F2B9DAD000
|
unkown
|
page read and write
|
||
DB821FB000
|
stack
|
page read and write
|
||
28E5622E000
|
unkown
|
page read and write
|
||
7FF545027000
|
unkown image
|
page readonly
|
||
317447F000
|
stack
|
page read and write
|
||
7FF529A31000
|
unkown image
|
page readonly
|
||
1F161CD0000
|
unkown image
|
page readonly
|
||
1F2B9D94000
|
unkown
|
page read and write
|
||
7FF54FA62000
|
unkown image
|
page readonly
|
||
23401050000
|
unkown image
|
page readonly
|
||
7FF5D5693000
|
unkown image
|
page readonly
|
||
7FF5452B5000
|
unkown image
|
page readonly
|
||
A4277FA000
|
stack
|
page read and write
|
||
2C0C7C56000
|
unkown
|
page read and write
|
||
19F76713000
|
unkown
|
page read and write
|
||
7DF55A430000
|
unkown image
|
page readonly
|
||
28E56284000
|
unkown
|
page read and write
|
||
23400940000
|
unkown image
|
page readonly
|
||
1F2B9DA3000
|
unkown
|
page read and write
|
||
28E55FD4000
|
unkown
|
page read and write
|
||
28E56200000
|
unkown
|
page read and write
|
||
28E51050000
|
unkown image
|
page readonly
|
||
7FF545191000
|
unkown image
|
page readonly
|
||
28E560E0000
|
unkown
|
page read and write
|
||
1F2B9413000
|
unkown
|
page read and write
|
||
28E511E0000
|
unkown image
|
page readonly
|
||
1F2B93A0000
|
unkown image
|
page readonly
|
||
7FF5D56A4000
|
unkown image
|
page readonly
|
||
7FF4FB408000
|
unkown image
|
page readonly
|
||
A4272FA000
|
stack
|
page read and write
|
||
23400A5C000
|
unkown
|
page read and write
|
||
1F2B9380000
|
unkown image
|
page readonly
|
||
1F2B9D7A000
|
unkown
|
page read and write
|
||
1F2B9D13000
|
unkown
|
page read and write
|
||
7FF54F851000
|
unkown image
|
page readonly
|
||
7FF5453A1000
|
unkown image
|
page readonly
|
||
1F2B9D8C000
|
unkown
|
page read and write
|
||
1F2B9DD1000
|
unkown
|
page read and write
|
||
7FF54F9B4000
|
unkown image
|
page readonly
|
||
1F2B9429000
|
unkown
|
page read and write
|
||
1F2B9D6E000
|
unkown
|
page read and write
|
||
28E5629A000
|
unkown
|
page read and write
|
||
7FF4FB38A000
|
unkown image
|
page readonly
|
||
1F2B9D5D000
|
unkown
|
page read and write
|
||
7FF5130E5000
|
unkown image
|
page readonly
|
||
7FF4FB484000
|
unkown image
|
page readonly
|
||
1F2B9D92000
|
unkown
|
page read and write
|
||
1F161EA5000
|
unkown
|
page read and write
|
||
7FF5D5315000
|
unkown image
|
page readonly
|
||
1F2B9D70000
|
unkown
|
page read and write
|
||
7DF528260000
|
unkown image
|
page readonly
|
||
7FF5D54B7000
|
unkown image
|
page readonly
|
||
28E51313000
|
unkown
|
page read and write
|
||
7FF545318000
|
unkown image
|
page readonly
|
||
7FF52998A000
|
unkown image
|
page readonly
|
||
7FF544A67000
|
unkown image
|
page readonly
|
||
1F2B9B80000
|
unkown image
|
page write copy
|
||
7FF4FB38C000
|
unkown image
|
page readonly
|
||
DB822F7000
|
stack
|
page read and write
|
||
23400A7C000
|
unkown
|
page read and write
|
||
7FF5452FA000
|
unkown image
|
page readonly
|
||
7FF512CA6000
|
unkown image
|
page readonly
|
||
95805FE000
|
stack
|
page read and write
|
||
28E511B0000
|
unkown image
|
page readonly
|
||
9580A77000
|
stack
|
page read and write
|
||
7FF4FB19F000
|
unkown image
|
page readonly
|
||
7FF4FAC2A000
|
unkown image
|
page readonly
|
||
19F76E02000
|
unkown
|
page read and write
|
||
A4276FF000
|
stack
|
page read and write
|
||
28E55FB0000
|
unkown
|
page read and write
|
||
19F768D0000
|
unkown image
|
page readonly
|
||
28E511F0000
|
unkown
|
page read and write
|
||
7FF513159000
|
unkown image
|
page readonly
|
||
1F2B9360000
|
unkown image
|
page read and write
|
||
2C0C7C52000
|
unkown
|
page read and write
|
||
7FF4FB18B000
|
unkown image
|
page readonly
|
||
7FF513124000
|
unkown image
|
page readonly
|
||
28E51358000
|
unkown
|
page read and write
|
||
7FF52994B000
|
unkown image
|
page readonly
|
||
1F2B9D5E000
|
unkown
|
page read and write
|
||
28E51302000
|
unkown
|
page read and write
|
||
2C0C7C13000
|
unkown
|
page read and write
|
||
7FF5D573A000
|
unkown image
|
page readonly
|
||
28E55FB6000
|
unkown
|
page read and write
|
||
2C0C7A40000
|
unkown image
|
page read and write
|
||
7FF4FB154000
|
unkown image
|
page readonly
|
||
1F2B94BE000
|
unkown
|
page read and write
|
||
1F2B9D6B000
|
unkown
|
page read and write
|
||
1F2B9D72000
|
unkown
|
page read and write
|
||
1F2B9471000
|
unkown
|
page read and write
|
||
1F161E91000
|
unkown
|
page read and write
|
||
23400910000
|
unkown image
|
page readonly
|
||
DB823FF000
|
stack
|
page read and write
|
||
7DF5EA8B0000
|
unkown image
|
page readonly
|
||
28E5629D000
|
unkown
|
page read and write
|
||
1F2B9DA1000
|
unkown
|
page read and write
|
||
7FF5D5306000
|
unkown image
|
page readonly
|
||
1F161EAE000
|
unkown
|
page read and write
|
||
7FF529994000
|
unkown image
|
page readonly
|
||
23400A62000
|
unkown
|
page read and write
|
||
1F161E8B000
|
heap default
|
page read and write
|
||
7FF545101000
|
unkown image
|
page readonly
|
||
7FF529A2A000
|
unkown image
|
page readonly
|
||
28E5628F000
|
unkown
|
page read and write
|
||
28E5131A000
|
unkown
|
page read and write
|
||
2C0C8402000
|
unkown
|
page read and write
|
||
1F2B94C5000
|
unkown
|
page read and write
|
||
28E56110000
|
unkown
|
page read and write
|
||
7DF55A420000
|
unkown image
|
page readonly
|
||
1F2B9DC3000
|
unkown
|
page read and write
|
||
28E5627A000
|
unkown
|
page read and write
|
||
1F2B944D000
|
unkown
|
page read and write
|
||
2C0C7C29000
|
unkown
|
page read and write
|
||
7FF545304000
|
unkown image
|
page readonly
|
||
28E50990000
|
unkown image
|
page read and write
|
||
7FF529978000
|
unkown image
|
page readonly
|
||
7FF54F6E7000
|
unkown image
|
page readonly
|
||
7FF5D504F000
|
unkown image
|
page readonly
|
||
1F2B9D5E000
|
unkown
|
page read and write
|
||
28E50CD0000
|
unkown image
|
page readonly
|
||
19F76647000
|
unkown
|
page read and write
|
||
23400960000
|
heap default
|
page read and write
|
||
28E50AB0000
|
unkown
|
page read and write
|
||
7FF4FAC4B000
|
unkown image
|
page readonly
|
||
28E55FB4000
|
unkown
|
page read and write
|
||
28E56290000
|
unkown
|
page read and write
|
||
7DF528252000
|
unkown image
|
page readonly
|
||
7FF54F8DC000
|
unkown image
|
page readonly
|
||
19F76560000
|
unkown image
|
page readonly
|
||
7FF4FB3E4000
|
unkown image
|
page readonly
|
||
28E50960000
|
unkown image
|
page readonly
|
||
7FF4FB3E8000
|
unkown image
|
page readonly
|
||
7FF54F9D8000
|
unkown image
|
page readonly
|
||
7FF54F7B1000
|
unkown image
|
page readonly
|
||
31746FC000
|
stack
|
page read and write
|
||
7FF5D579F000
|
unkown image
|
page readonly
|
||
1F2B9BF0000
|
unkown
|
page read and write
|
||
1F161E40000
|
unkown image
|
page readonly
|
||
28E508F0000
|
heap private
|
page read and write
|
||
7FF54F970000
|
unkown image
|
page readonly
|
||
7FF54F9C4000
|
unkown image
|
page readonly
|
||
7DF528262000
|
unkown image
|
page readonly
|
||
403E67E000
|
stack
|
page read and write
|
||
28E51300000
|
unkown
|
page read and write
|
||
7FF545326000
|
unkown image
|
page readonly
|
||
7FF54F615000
|
unkown image
|
page readonly
|
||
7FF5130F7000
|
unkown image
|
page readonly
|
||
7DF55A440000
|
unkown image
|
page readonly
|
||
7FF4FAFF6000
|
unkown image
|
page readonly
|
||
1F2B9B60000
|
unkown image
|
page readonly
|
||
7FF51315D000
|
unkown image
|
page readonly
|
||
A426E77000
|
stack
|
page read and write
|
||
7FF54F8D4000
|
unkown image
|
page readonly
|
||
7FF5299A8000
|
unkown image
|
page readonly
|
||
28E56277000
|
unkown
|
page read and write
|
||
7FF54FA5A000
|
unkown image
|
page readonly
|
||
1F2B94F2000
|
unkown
|
page read and write
|
||
2C0C7C70000
|
unkown
|
page read and write
|
||
DB825FF000
|
stack
|
page read and write
|
||
28E519E0000
|
unkown
|
page read and write
|
||
7FF5D5832000
|
unkown image
|
page readonly
|
||
1F2B9D8C000
|
unkown
|
page read and write
|
||
19F76653000
|
unkown
|
page read and write
|
||
7FF4FACEE000
|
unkown image
|
page readonly
|
||
7FF54F96E000
|
unkown image
|
page readonly
|
||
1F2BA26A000
|
unkown
|
page read and write
|
||
28E511D0000
|
unkown image
|
page readonly
|
||
28E5135B000
|
unkown
|
page read and write
|
||
7DF5EA8B2000
|
unkown image
|
page readonly
|
||
7FF513117000
|
unkown image
|
page readonly
|
||
1F161E70000
|
heap private
|
page read and write
|
||
1F2B9DB2000
|
unkown
|
page read and write
|
||
67E957E000
|
stack
|
page read and write
|
||
67E98FB000
|
stack
|
page read and write
|
||
7FF54F910000
|
unkown image
|
page readonly
|
||
1F161EAE000
|
unkown
|
page read and write
|
||
19F76702000
|
unkown
|
page read and write
|
||
67E95FE000
|
stack
|
page read and write
|
||
7FF5D572C000
|
unkown image
|
page readonly
|
||
A4274FE000
|
stack
|
page read and write
|
||
7FF5129EF000
|
unkown image
|
page readonly
|
||
23400A5D000
|
unkown
|
page read and write
|
||
1F2B9D9D000
|
unkown
|
page read and write
|
||
7FF4FB3A5000
|
unkown image
|
page readonly
|
||
28E5628B000
|
unkown
|
page read and write
|
||
1F2B9DB1000
|
unkown
|
page read and write
|
||
7DF564AF2000
|
unkown image
|
page readonly
|
||
28E56110000
|
unkown
|
page read and write
|
||
7FF4FB031000
|
unkown image
|
page readonly
|
||
1F161DE0000
|
unkown
|
page read and write
|
||
1F2BA302000
|
unkown
|
page read and write
|
||
7DF5EA8B2000
|
unkown image
|
page readonly
|
||
7FF4FAC25000
|
unkown image
|
page readonly
|
||
1F162300000
|
unkown image
|
page readonly
|
||
1F2BA140000
|
unkown image
|
page read and write
|
||
1F2B9D8E000
|
unkown
|
page read and write
|
||
7FF5D5300000
|
unkown image
|
page readonly
|
||
7FF5452DF000
|
unkown image
|
page readonly
|
||
7DF528250000
|
unkown image
|
page readonly
|
||
67E9C7F000
|
stack
|
page read and write
|
||
23400A57000
|
unkown
|
page read and write
|
||
1F161E00000
|
unkown
|
page read and write
|
||
19F76613000
|
unkown
|
page read and write
|
||
28E564F0000
|
unkown
|
page read and write
|
||
DB81C9B000
|
unkown
|
page read and write
|
||
7FF545203000
|
unkown image
|
page readonly
|
||
7FF4FB24A000
|
unkown image
|
page readonly
|
||
7FF54F736000
|
unkown image
|
page readonly
|
||
7FF5D57B9000
|
unkown image
|
page readonly
|
||
28E50920000
|
unkown image
|
page readonly
|
||
7FF5451AB000
|
unkown image
|
page readonly
|
||
317467F000
|
stack
|
page read and write
|
||
28E51501000
|
unkown
|
page read and write
|
||
2C0C7BB0000
|
unkown
|
page read and write
|
||
7FF5130E0000
|
unkown image
|
page readonly
|
||
1F2B9D77000
|
unkown
|
page read and write
|
||
7FF4FB3CF000
|
unkown image
|
page readonly
|
||
28E56277000
|
unkown
|
page read and write
|
||
28E51359000
|
unkown
|
page read and write
|
||
7FF4FB363000
|
unkown image
|
page readonly
|
||
67E997D000
|
stack
|
page read and write
|
||
7DF564AE2000
|
unkown image
|
page readonly
|
||
7DF528262000
|
unkown image
|
page readonly
|
||
7FF4FB3A0000
|
unkown image
|
page readonly
|
||
234008F0000
|
unkown image
|
page read and write
|
||
7FF54F9E9000
|
unkown image
|
page readonly
|
||
7FF54529A000
|
unkown image
|
page readonly
|
||
1F2B9450000
|
unkown
|
page read and write
|
||
1F2B9DB4000
|
unkown
|
page read and write
|
||
1F161E30000
|
unkown image
|
page readonly
|
||
7DF5EA8C0000
|
unkown image
|
page readonly
|
||
1F2B9D9C000
|
unkown
|
page read and write
|
||
1F2B9D15000
|
unkown
|
page read and write
|
||
7FF54F4DE000
|
unkown image
|
page readonly
|
||
7FF512F31000
|
unkown image
|
page readonly
|
||
7FF51304C000
|
unkown image
|
page readonly
|
||
28E56100000
|
unkown
|
page read and write
|
||
7FF4FB416000
|
unkown image
|
page readonly
|
||
7FF5D57BD000
|
unkown image
|
page readonly
|
||
7FF544A61000
|
unkown image
|
page readonly
|
||
2C0C7E00000
|
unkown image
|
page readonly
|
||
1F2B96D0000
|
unkown image
|
page readonly
|
||
1F2B9D68000
|
unkown
|
page read and write
|
||
28E51580000
|
unkown
|
page read and write
|
||
1F2B9D94000
|
unkown
|
page read and write
|
||
1F2B9DB1000
|
unkown
|
page read and write
|
||
7FF5D578A000
|
unkown image
|
page readonly
|
||
7DF564AF0000
|
unkown image
|
page readonly
|
||
28E56218000
|
unkown
|
page read and write
|
||
1F2B9DA4000
|
unkown
|
page read and write
|
||
7DF53EAD0000
|
unkown image
|
page readonly
|
||
1F2B9456000
|
unkown
|
page read and write
|
||
A42747F000
|
stack
|
page read and write
|
||
7FF51310F000
|
unkown image
|
page readonly
|
||
28E56291000
|
unkown
|
page read and write
|
||
1F2B9D6E000
|
unkown
|
page read and write
|
||
7FF4FB08A000
|
unkown image
|
page readonly
|
||
28E50980000
|
unkown
|
page read and write
|
||
2C0C7C00000
|
unkown
|
page read and write
|
||
28E5627A000
|
unkown
|
page read and write
|
||
1F2B9D71000
|
unkown
|
page read and write
|
||
1F161CD0000
|
unkown image
|
page readonly
|
||
7FF54F770000
|
unkown image
|
page readonly
|
||
23400B08000
|
unkown
|
page read and write
|
||
7FF4FB17F000
|
unkown image
|
page readonly
|
||
7FF5295E5000
|
unkown image
|
page readonly
|
||
7DF564AE0000
|
unkown image
|
page readonly
|
||
7FF4FAC49000
|
unkown image
|
page readonly
|
||
7FF4FB37F000
|
unkown image
|
page readonly
|
||
1F2B9D90000
|
unkown
|
page read and write
|
||
7FF512CB5000
|
unkown image
|
page readonly
|
||
7FF544E85000
|
unkown image
|
page readonly
|
||
67E9B77000
|
stack
|
page read and write
|
||
1F2B945D000
|
unkown
|
page read and write
|
||
23401202000
|
unkown
|
page read and write
|
||
A42767E000
|
stack
|
page read and write
|
||
7FF4FB3FF000
|
unkown image
|
page readonly
|
||
7DF53EAD0000
|
unkown image
|
page readonly
|
||
1F2B9D88000
|
unkown
|
page read and write
|
||
1F2B9D88000
|
unkown
|
page read and write
|
||
23400A13000
|
unkown
|
page read and write
|
||
28E55FD0000
|
unkown
|
page read and write
|
||
28E511C0000
|
unkown image
|
page readonly
|
||
7FF4FB39E000
|
unkown image
|
page readonly
|
||
7FF4FB150000
|
unkown image
|
page readonly
|
||
28E55FF0000
|
unkown
|
page read and write
|
||
7FF4FAF02000
|
unkown image
|
page readonly
|
||
7DF564B00000
|
unkown image
|
page readonly
|
||
7DF53EAB2000
|
unkown image
|
page readonly
|
||
19F7662A000
|
unkown
|
page read and write
|
||
1F2B9458000
|
unkown
|
page read and write
|
||
1F2B943C000
|
unkown
|
page read and write
|
||
28E56277000
|
unkown
|
page read and write
|
||
28E50B13000
|
unkown
|
page read and write
|
||
7FF54F944000
|
unkown image
|
page readonly
|
||
7FF512FDB000
|
unkown image
|
page readonly
|
||
1F2B9D6B000
|
unkown
|
page read and write
|
||
7FF5D5831000
|
unkown image
|
page readonly
|
||
19F7664E000
|
unkown
|
page read and write
|
||
7FF4FB3D7000
|
unkown image
|
page readonly
|
||
7FF4FB2E6000
|
unkown image
|
page readonly
|
||
7DF564AF2000
|
unkown image
|
page readonly
|
||
28E51318000
|
unkown
|
page read and write
|
||
7FF529297000
|
unkown image
|
page readonly
|
||
23400990000
|
unkown
|
page read and write
|
||
7DF528270000
|
unkown image
|
page readonly
|
||
7FF512FDE000
|
unkown image
|
page readonly
|
||
2C0C7B90000
|
unkown image
|
page readonly
|
||
28E5629A000
|
unkown
|
page read and write
|
||
23400A02000
|
unkown
|
page read and write
|
||
23400A5E000
|
unkown
|
page read and write
|
||
7FF4FB149000
|
unkown image
|
page readonly
|
||
28E56110000
|
unkown
|
page read and write
|
||
7FF54F813000
|
unkown image
|
page readonly
|
||
28E560D0000
|
unkown
|
page read and write
|
||
2C0C7AB0000
|
heap default
|
page read and write
|
||
7DF55A440000
|
unkown image
|
page readonly
|
||
1F2B94EF000
|
unkown
|
page read and write
|
||
7FF512E57000
|
unkown image
|
page readonly
|
||
7DF4582F0000
|
unkown image
|
page readonly
|
||
7FF5D5794000
|
unkown image
|
page readonly
|
||
28E55FBE000
|
unkown
|
page read and write
|
||
1F2B9DB0000
|
unkown
|
page read and write
|
||
7FF51310C000
|
unkown image
|
page readonly
|
||
1F2BA200000
|
unkown
|
page read and write
|
||
28E56289000
|
unkown
|
page read and write
|
||
7DF55A432000
|
unkown image
|
page readonly
|
||
1F2B9DA5000
|
unkown
|
page read and write
|
||
1F2BA202000
|
unkown
|
page read and write
|
||
23400B00000
|
unkown
|
page read and write
|
||
7FF529293000
|
unkown image
|
page readonly
|
||
28E56284000
|
unkown
|
page read and write
|
||
7FF54F99F000
|
unkown image
|
page readonly
|
||
7FF52996C000
|
unkown image
|
page readonly
|
||
7DF4629B0000
|
unkown image
|
page readonly
|
||
7DF528270000
|
unkown image
|
page readonly
|
||
7FF5D5601000
|
unkown image
|
page readonly
|
||
7FF51313F000
|
unkown image
|
page readonly
|
||
7FF54F585000
|
unkown image
|
page readonly
|
||
7FF5452E7000
|
unkown image
|
page readonly
|
||
28E55FF4000
|
unkown
|
page read and write
|
||
2C0C7C51000
|
unkown
|
page read and write
|
||
28E56220000
|
unkown
|
page read and write
|
||
23400CD0000
|
unkown image
|
page readonly
|
||
7DF564AE2000
|
unkown image
|
page readonly
|
||
7FF4FB084000
|
unkown image
|
page readonly
|
||
1F2B9D19000
|
unkown
|
page read and write
|
||
19F76AD0000
|
unkown image
|
page readonly
|
||
7FF54F94F000
|
unkown image
|
page readonly
|
||
28E55FD1000
|
unkown
|
page read and write
|
||
1F2B9DA5000
|
unkown
|
page read and write
|
||
28E5629D000
|
unkown
|
page read and write
|
||
1F2B9DB3000
|
unkown
|
page read and write
|
||
1F2BA363000
|
unkown
|
page read and write
|
||
1F2B947F000
|
unkown
|
page read and write
|
||
7FF544F2A000
|
unkown image
|
page readonly
|
||
28E5627A000
|
unkown
|
page read and write
|
||
7FF513156000
|
unkown image
|
page readonly
|
||
A426C7B000
|
unkown
|
page read and write
|
||
7FF54F9A7000
|
unkown image
|
page readonly
|
||
1F2B9D8C000
|
unkown
|
page read and write
|
||
19F7666E000
|
unkown
|
page read and write
|
||
28E55FB8000
|
unkown
|
page read and write
|
||
28E56277000
|
unkown
|
page read and write
|
||
28E55FB1000
|
unkown
|
page read and write
|
||
1F2B94D7000
|
unkown
|
page read and write
|
||
7FF5452DC000
|
unkown image
|
page readonly
|
||
7FF545394000
|
unkown image
|
page readonly
|
||
9580C77000
|
stack
|
page read and write
|
||
1F2B9D9C000
|
unkown
|
page read and write
|
||
1F2B9D90000
|
unkown
|
page read and write
|
||
7FF4FB3AB000
|
unkown image
|
page readonly
|
||
28E56213000
|
unkown
|
page read and write
|
||
7FF54F536000
|
unkown image
|
page readonly
|
||
1F2B9BF0000
|
unkown
|
page read and write
|
||
28E55E20000
|
unkown
|
page read and write
|
||
3174579000
|
stack
|
page read and write
|
||
28E50A6F000
|
unkown
|
page read and write
|
||
1F2B9370000
|
heap private
|
page read and write
|
||
1F2B9D94000
|
unkown
|
page read and write
|
||
23400B13000
|
unkown
|
page read and write
|
||
2C0C7A50000
|
heap private
|
page read and write
|
||
7DF564B00000
|
unkown image
|
page readonly
|
||
1F2B9453000
|
unkown
|
page read and write
|
||
7FF54F4D2000
|
unkown image
|
page readonly
|
||
28E5627A000
|
unkown
|
page read and write
|
||
1F2B945A000
|
unkown
|
page read and write
|
||
7FF4FB166000
|
unkown image
|
page readonly
|
||
1F2B9486000
|
unkown
|
page read and write
|
||
7FF5452B0000
|
unkown image
|
page readonly
|
||
23400A00000
|
unkown
|
page read and write
|
||
28E50930000
|
unkown image
|
page readonly
|
||
28E56262000
|
unkown
|
page read and write
|
||
1F161EA6000
|
unkown
|
page read and write
|
||
1F2BA300000
|
unkown
|
page read and write
|
||
28E51060000
|
unkown image
|
page readonly
|
||
7FF4FB191000
|
unkown image
|
page readonly
|
||
7FF4FB261000
|
unkown image
|
page readonly
|
||
1F2B9DA8000
|
unkown
|
page read and write
|
||
7FF5299B9000
|
unkown image
|
page readonly
|
||
2C0C7C7C000
|
unkown
|
page read and write
|
||
19F76600000
|
unkown
|
page read and write
|
||
28E5621B000
|
unkown
|
page read and write
|
||
7FF54F95C000
|
unkown image
|
page readonly
|
||
7DF40E3E0000
|
unkown image
|
page readonly
|
||
1F161EAE000
|
unkown
|
page read and write
|
||
1F2BA302000
|
unkown
|
page read and write
|
||
1F2B944C000
|
unkown
|
page read and write
|
||
7FF5D572A000
|
unkown image
|
page readonly
|
||
95810F8000
|
stack
|
page read and write
|
||
28E51359000
|
unkown
|
page read and write
|
||
2C0C7A60000
|
unkown image
|
page readonly
|
||
1F161E96000
|
heap default
|
page read and write
|
||
7FF4FAFB5000
|
unkown image
|
page readonly
|
||
1F2B9D6B000
|
unkown
|
page read and write
|
||
28E50A8F000
|
unkown
|
page read and write
|
||
23400A5B000
|
unkown
|
page read and write
|
||
7FF54F96A000
|
unkown image
|
page readonly
|
||
1F2B9D8C000
|
unkown
|
page read and write
|
||
7FF54F2C3000
|
unkown image
|
page readonly
|
||
7FF54F27F000
|
unkown image
|
page readonly
|
||
23400970000
|
unkown image
|
page readonly
|
||
1F161CB0000
|
unkown image
|
page read and write
|
||
1F2B9516000
|
unkown
|
page read and write
|
||
7FF54F86E000
|
unkown image
|
page readonly
|
||
19F765C0000
|
unkown image
|
page readonly
|
||
1F2BA202000
|
unkown
|
page read and write
|
||
1F2B9D6A000
|
unkown
|
page read and write
|
||
7FF52996F000
|
unkown image
|
page readonly
|
||
7FF4FB3B7000
|
unkown image
|
page readonly
|
||
7FF54F530000
|
unkown image
|
page readonly
|
||
28E5628F000
|
unkown
|
page read and write
|
||
1F162180000
|
unkown image
|
page readonly
|
||
7FF4FB245000
|
unkown image
|
page readonly
|
||
A42757E000
|
stack
|
page read and write
|
||
7FF4FB1F1000
|
unkown image
|
page readonly
|
||
7DF5EA8C2000
|
unkown image
|
page readonly
|
||
1F2B9D94000
|
unkown
|
page read and write
|
||
403E3DB000
|
unkown
|
page read and write
|
||
7DF4E8780000
|
unkown image
|
page readonly
|
||
1F2B9502000
|
unkown
|
page read and write
|
||
9580D7E000
|
stack
|
page read and write
|
||
7FF54F95A000
|
unkown image
|
page readonly
|
||
67E9D7F000
|
stack
|
page read and write
|
||
7FF5D5745000
|
unkown image
|
page readonly
|
||
7DF510512000
|
unkown image
|
page readonly
|
||
1F2B9DA1000
|
unkown
|
page read and write
|
||
403E8FB000
|
stack
|
page read and write
|
||
7FF5D573E000
|
unkown image
|
page readonly
|
||
28E51190000
|
unkown image
|
page readonly
|
||
7FF54F2C7000
|
unkown image
|
page readonly
|
||
7DF510510000
|
unkown image
|
page readonly
|
||
7FF5130DA000
|
unkown image
|
page readonly
|
||
7FF529A32000
|
unkown image
|
page readonly
|
||
1F2B9508000
|
unkown
|
page read and write
|
||
1F2B9D82000
|
unkown
|
page read and write
|
||
28E50B02000
|
unkown
|
page read and write
|
||
7FF54F99C000
|
unkown image
|
page readonly
|
||
28E56289000
|
unkown
|
page read and write
|
||
7FF54F4E2000
|
unkown image
|
page readonly
|
||
7FF5D5777000
|
unkown image
|
page readonly
|
||
7FF4FB419000
|
unkown image
|
page readonly
|
||
28E51E20000
|
unkown
|
page read and write
|
||
1F2B9DB2000
|
unkown
|
page read and write
|
||
2C0C7D13000
|
unkown
|
page read and write
|
||
7FF5452BB000
|
unkown image
|
page readonly
|
||
1F2B945C000
|
unkown
|
page read and write
|
||
1F2B94E2000
|
unkown
|
page read and write
|
||
19F7663C000
|
unkown
|
page read and write
|
||
28E56285000
|
unkown
|
page read and write
|
||
1F2B9D92000
|
unkown
|
page read and write
|
||
28E56289000
|
unkown
|
page read and write
|
||
7FF5131C4000
|
unkown image
|
page readonly
|
||
DB820FC000
|
stack
|
page read and write
|
||
28E51800000
|
unkown
|
page read and write
|
||
7DF55A422000
|
unkown image
|
page readonly
|
||
403E6FE000
|
stack
|
page read and write
|
||
1F2B9DB2000
|
unkown
|
page read and write
|
||
28E55FB0000
|
unkown
|
page read and write
|
||
28E55FF0000
|
unkown
|
page read and write
|
||
28E50AA1000
|
unkown
|
page read and write
|
||
1F2B9D63000
|
unkown
|
page read and write
|
||
7FF4FB021000
|
unkown image
|
page readonly
|
||
7FF5452C7000
|
unkown image
|
page readonly
|
||
7FF54F272000
|
unkown image
|
page readonly
|
||
1F2B9D9D000
|
unkown
|
page read and write
|
||
7FF54FA54000
|
unkown image
|
page readonly
|
||
7FF4FB48A000
|
unkown image
|
page readonly
|
||
7FF54F8C3000
|
unkown image
|
page readonly
|
||
7FF529A24000
|
unkown image
|
page readonly
|
||
28E55FB1000
|
unkown
|
page read and write
|
||
7DF510530000
|
unkown image
|
page readonly
|
||
7FF5299BD000
|
unkown image
|
page readonly
|
||
28E51900000
|
unkown image
|
page read and write
|
||
1F2B9513000
|
unkown
|
page read and write
|
||
1F2B9D67000
|
unkown
|
page read and write
|
||
7FF5452AA000
|
unkown image
|
page readonly
|
||
1F2B9D76000
|
unkown
|
page read and write
|
||
28E50A79000
|
unkown
|
page read and write
|
||
28E55E53000
|
unkown
|
page read and write
|
||
7FF54F9BA000
|
unkown image
|
page readonly
|
||
1F2B9DA1000
|
unkown
|
page read and write
|
||
28E5135A000
|
unkown
|
page read and write
|
||
28E562A0000
|
unkown
|
page read and write
|
||
28E51359000
|
unkown
|
page read and write
|
||
28E56100000
|
unkown
|
page read and write
|
||
7FF5130EB000
|
unkown image
|
page readonly
|
||
7DF510520000
|
unkown image
|
page readonly
|
||
7DF510520000
|
unkown image
|
page readonly
|
||
28E51358000
|
unkown
|
page read and write
|
||
1F2B9D5E000
|
unkown
|
page read and write
|
||
28E50A00000
|
unkown
|
page read and write
|
||
7FF4FB1D6000
|
unkown image
|
page readonly
|
||
1F2B9380000
|
unkown image
|
page readonly
|
||
9580EFE000
|
stack
|
page read and write
|
||
7FF4FB1E1000
|
unkown image
|
page readonly
|
||
1F2B9D8C000
|
unkown
|
page read and write
|
||
7FF52999E000
|
unkown image
|
page readonly
|
||
28E50A58000
|
unkown
|
page read and write
|
||
7DF53EAB0000
|
unkown image
|
page readonly
|
||
7FF529940000
|
unkown image
|
page readonly
|
||
7FF5130CA000
|
unkown image
|
page readonly
|
||
7DF510510000
|
unkown image
|
page readonly
|
||
28E56400000
|
unkown
|
page read and write
|
||
28E508E0000
|
unkown image
|
page read and write
|
||
A426FFB000
|
stack
|
page read and write
|
||
1F2B9454000
|
unkown
|
page read and write
|
||
28E50A93000
|
unkown
|
page read and write
|
||
19F76677000
|
unkown
|
page read and write
|
||
7FF5D563E000
|
unkown image
|
page readonly
|
||
7DF55A432000
|
unkown image
|
page readonly
|
||
7FF4FB19D000
|
unkown image
|
page readonly
|
||
7FF54F9DE000
|
unkown image
|
page readonly
|
||
23400B02000
|
unkown
|
page read and write
|
||
19F7664B000
|
unkown
|
page read and write
|
||
7FF529984000
|
unkown image
|
page readonly
|
||
1F2B9D7B000
|
unkown
|
page read and write
|
||
7FF54F93F000
|
unkown image
|
page readonly
|
||
2C0C7D00000
|
unkown
|
page read and write
|
||
1F2B98D0000
|
unkown image
|
page readonly
|
||
A4275FF000
|
stack
|
page read and write
|
||
7FF54F44E000
|
unkown image
|
page readonly
|
||
7FF54F86B000
|
unkown image
|
page readonly
|
||
19F765B0000
|
heap default
|
page read and write
|
||
7FF5D5621000
|
unkown image
|
page readonly
|
||
7FF5D5784000
|
unkown image
|
page readonly
|
||
7FF5130DE000
|
unkown image
|
page readonly
|
||
7FF54532D000
|
unkown image
|
page readonly
|
||
1F2B9D93000
|
unkown
|
page read and write
|
||
1F2B93E0000
|
unkown image
|
page readonly
|
||
7FF5D57B6000
|
unkown image
|
page readonly
|
||
28E55FE0000
|
unkown
|
page read and write
|
||
1F2B9D72000
|
unkown
|
page read and write
|
||
2C0C7C86000
|
unkown
|
page read and write
|
||
28E50950000
|
heap default
|
page read and write
|
||
7FF54521C000
|
unkown image
|
page readonly
|
||
28E55FBB000
|
unkown
|
page read and write
|
||
28E509F0000
|
unkown
|
page read and write
|
||
28E50900000
|
unkown image
|
page readonly
|
||
7FF5D5740000
|
unkown image
|
page readonly
|
||
403EBFE000
|
stack
|
page read and write
|
||
28E56120000
|
unkown
|
page read and write
|
||
1F2B9C02000
|
unkown
|
page read and write
|
||
1F161E75000
|
heap private
|
page read and write
|
||
67E9A7B000
|
stack
|
page read and write
|
||
7FF5D563B000
|
unkown image
|
page readonly
|
||
19F76708000
|
unkown
|
page read and write
|
||
1F2B9400000
|
unkown
|
page read and write
|
||
7FF4FB40E000
|
unkown image
|
page readonly
|
||
28E55E90000
|
unkown
|
page read and write
|
||
7FF54F72B000
|
unkown image
|
page readonly
|
||
28E55EA0000
|
unkown
|
page read and write
|
||
1F2B944E000
|
unkown
|
page read and write
|
||
28E51202000
|
unkown
|
page read and write
|
||
7FF545153000
|
unkown image
|
page readonly
|
||
7FF4FB492000
|
unkown image
|
page readonly
|
||
23400A3C000
|
unkown
|
page read and write
|
||
28E51318000
|
unkown
|
page read and write
|
||
1F2B9DB2000
|
unkown
|
page read and write
|
||
7FF54F9CF000
|
unkown image
|
page readonly
|
||
1F2B9DB3000
|
unkown
|
page read and write
|
||
7FF4FB491000
|
unkown image
|
page readonly
|
||
7FF54F878000
|
unkown image
|
page readonly
|
||
A426EFE000
|
stack
|
page read and write
|
||
7FF54F923000
|
unkown image
|
page readonly
|
||
28E55EB0000
|
unkown
|
page read and write
|
||
1F2B93D0000
|
heap default
|
page read and write
|
||
A4273FB000
|
stack
|
page read and write
|
||
19F76590000
|
unkown image
|
page readonly
|
||
7DF53EAB0000
|
unkown image
|
page readonly
|
||
7FF513134000
|
unkown image
|
page readonly
|
||
7FF54F587000
|
unkown image
|
page readonly
|
||
28E5629C000
|
unkown
|
page read and write
|
||
7DF53EAC0000
|
unkown image
|
page readonly
|
||
28E50A3F000
|
unkown
|
page read and write
|
||
7DF53EAC2000
|
unkown image
|
page readonly
|
||
403EAFE000
|
stack
|
page read and write
|
||
7FF4FB091000
|
unkown image
|
page readonly
|
||
7FF513033000
|
unkown image
|
page readonly
|
||
28E56440000
|
unkown
|
page read and write
|
||
DB81D1F000
|
stack
|
page read and write
|
||
7FF5D582A000
|
unkown image
|
page readonly
|
||
1F2B9D92000
|
unkown
|
page read and write
|
||
7FF4FB30C000
|
unkown image
|
page readonly
|
||
28E560F0000
|
unkown
|
page read and write
|
||
2C0C8180000
|
unkown image
|
page readonly
|
||
7FF5451AE000
|
unkown image
|
page readonly
|
||
7FF4FAFB7000
|
unkown image
|
page readonly
|
||
7FF54F8BD000
|
unkown image
|
page readonly
|
||
7DF55A420000
|
unkown image
|
page readonly
|
||
7FF4FAB77000
|
unkown image
|
page readonly
|
||
7FF4FB39A000
|
unkown image
|
page readonly
|
||
7FF512FA1000
|
unkown image
|
page readonly
|
||
7FF54FA61000
|
unkown image
|
page readonly
|
||
7DF528250000
|
unkown image
|
page readonly
|
||
7FF4FB178000
|
unkown image
|
page readonly
|
||
7FF5D568D000
|
unkown image
|
page readonly
|
||
7FF4FB087000
|
unkown image
|
page readonly
|
||
28E55FE0000
|
unkown
|
page read and write
|
||
28E51318000
|
unkown
|
page read and write
|
||
28E511A0000
|
unkown image
|
page readonly
|
||
28E5627A000
|
unkown
|
page read and write
|
||
1F2B9451000
|
unkown
|
page read and write
|
||
28E55E50000
|
unkown
|
page read and write
|
||
7FF4FB35F000
|
unkown image
|
page readonly
|
||
28E5629D000
|
unkown
|
page read and write
|
||
28E50A77000
|
unkown
|
page read and write
|
||
28E55FBC000
|
unkown
|
page read and write
|
||
7FF54F7A4000
|
unkown image
|
page readonly
|
||
7FF5D576F000
|
unkown image
|
page readonly
|
||
28E5628A000
|
unkown
|
page read and write
|
||
7FF54F81A000
|
unkown image
|
page readonly
|
||
28E55FBA000
|
unkown
|
page read and write
|
||
1F2B9457000
|
unkown
|
page read and write
|
||
7FF54531E000
|
unkown image
|
page readonly
|
||
958057F000
|
stack
|
page read and write
|
||
9580E79000
|
stack
|
page read and write
|
||
7DF5EA8D0000
|
unkown image
|
page readonly
|
||
23400900000
|
heap private
|
page read and write
|
||
7FF54F545000
|
unkown image
|
page readonly
|
||
7DF510512000
|
unkown image
|
page readonly
|
||
7FF5451FD000
|
unkown image
|
page readonly
|
||
31745FE000
|
stack
|
page read and write
|
||
28E50A9F000
|
unkown
|
page read and write
|
||
7FF545329000
|
unkown image
|
page readonly
|
||
7FF5D55E3000
|
unkown image
|
page readonly
|
||
28E50A29000
|
unkown
|
page read and write
|
||
DB81D9F000
|
stack
|
page read and write
|
||
2C0C7A90000
|
unkown image
|
page readonly
|
||
19F76540000
|
unkown image
|
page read and write
|
||
28E56290000
|
unkown
|
page read and write
|
||
1F2B9D68000
|
unkown
|
page read and write
|
||
A4271FE000
|
stack
|
page read and write
|
||
7FF54530F000
|
unkown image
|
page readonly
|
||
7DF564AE0000
|
unkown image
|
page readonly
|
||
7FF5D574B000
|
unkown image
|
page readonly
|
||
1F2B9DC4000
|
unkown
|
page read and write
|
||
7FF5299AE000
|
unkown image
|
page readonly
|
||
1F2B93B0000
|
unkown image
|
page readonly
|
||
23400910000
|
unkown image
|
page readonly
|
||
2C0C7A60000
|
unkown image
|
page readonly
|
||
7FF54539A000
|
unkown image
|
page readonly
|
||
7DF5EA8C2000
|
unkown image
|
page readonly
|
||
7FF5D576C000
|
unkown image
|
page readonly
|
||
31744FF000
|
stack
|
page read and write
|
||
1F2B94B2000
|
unkown
|
page read and write
|
||
19F76681000
|
unkown
|
page read and write
|
||
1F2B9DA1000
|
unkown
|
page read and write
|
||
7FF513148000
|
unkown image
|
page readonly
|
||
7FF4FB232000
|
unkown image
|
page readonly
|
||
7FF54529C000
|
unkown image
|
page readonly
|
||
A4270FA000
|
stack
|
page read and write
|
||
28E50A74000
|
unkown
|
page read and write
|
||
7FF5130CC000
|
unkown image
|
page readonly
|
||
28E51318000
|
unkown
|
page read and write
|
||
28E562A0000
|
unkown
|
page read and write
|
||
1F2BA202000
|
unkown
|
page read and write
|
||
28E55E30000
|
unkown
|
page read and write
|
||
7DF510522000
|
unkown image
|
page readonly
|
||
1F2BA202000
|
unkown
|
page read and write
|
||
7FF4FB374000
|
unkown image
|
page readonly
|
||
DB824FF000
|
stack
|
page read and write
|
||
28E51318000
|
unkown
|
page read and write
|
||
19F76C50000
|
unkown image
|
page readonly
|
||
1F2B9D8C000
|
unkown
|
page read and write
|
||
1F2B9D6E000
|
unkown
|
page read and write
|
||
7DF528260000
|
unkown image
|
page readonly
|
||
1F2B9B30000
|
unkown
|
page read and write
|
||
7DF510522000
|
unkown image
|
page readonly
|
||
7FF54F873000
|
unkown image
|
page readonly
|
||
1F2B9D4C000
|
unkown
|
page read and write
|
||
958097E000
|
stack
|
page read and write
|
||
7FF5131CA000
|
unkown image
|
page readonly
|
There are 817 hidden memdumps, click here to show them.
DOM / HTML
URL
|
Malicious
|
|
---|---|---|
file:///C:/Users/user/Desktop/wXvjhk5m3v.html
|