Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
PaymentReceipt.html
|
HTML document, ASCII text, with very long lines
|
initial sample
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\361f5925-d805-4496-9db2-2160427f22e7.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\47abf5af-5e4d-44a3-9b7e-fbbb2235a5a0.tmp
|
SysEx File -
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\49689fa7-b0c6-4315-87fd-f6823261d0a6.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\52f751b6-3a03-4dd0-ba94-997a2701cf00.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\915b8712-e93c-4e3a-b022-d9ea50c7f458.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\92caad5e-4e36-4f9a-9d8b-82fa278c6a12.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2c263522-e59e-46ec-a702-8940070c945b.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\34179be7-304b-4382-aed3-67d725d118d0.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\39081f31-579f-472d-adb4-df1fc4b5136c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\4baf6b29-33e6-4652-be42-e44dfcb98d68.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\602eed3c-4e0d-4e7e-b442-13fd7d847e14.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6121b419-90ee-4b46-b976-a4b0cdbf995c.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\90f943bc-fbd8-4308-acf3-6a694c15b069.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.oldNT (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old. (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old. (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.oldg (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Sessiona (copy)
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabsle (copy)
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State3} (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent Statemp (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences.t (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure PreferencesMP (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.oldQ (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\9ea5879b-4edd-4707-9385-950525085747.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State.. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\034e55e0-9b94-480d-b81a-068c9b343130.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.olde/
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old.. (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.olds
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a1bb12ef-742c-4867-9744-0dce5c4e8cb4.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\cfccf2c5-14ca-479b-aae0-515fb5cf24aa.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d465a11c-f402-458e-bde3-df63323407ae.tmp
|
very short file (no magic)
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENTf (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\edb20bc3-becd-422c-ab5c-b0e065e43fc9.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old8 (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State2 (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local Staten (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info CacheMP (copy)
|
SysEx File -
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache\s (copy)
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\27\scoped_dir6464_1104440068\Ruleset
Data
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\a0d66900-a260-42b9-80ea-5da23d5942f7.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\a55697f4-714f-4796-a846-c2ac9767d310.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\af811be1-2bdb-43ed-bd54-4fe27ce4d385.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\c0971b7c-017d-42a2-921f-4ae264e059ed.tmp
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\d9c87646-1859-4f40-bd17-f040b9881b1b.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\dbc8dce2-c832-4e52-b17b-8f9882ca7664.tmp
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\f2a36e88-aaaf-4796-a1eb-97bb5938204e.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_1419435908\Filtering Rules
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_1419435908\LICENSE.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_1419435908\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_1419435908\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_1419435908\manifest.json
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_1545557429\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_1545557429\download_file_types.pb
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_1545557429\manifest.fingerprint
|
ASCII text, with no line terminators
|
modified
|
||
C:\Users\user\AppData\Local\Temp\6464_1545557429\manifest.json
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_206981374\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_206981374\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_206981374\manifest.json
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_206981374\ssl_error_assistant.pb
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_751026547\LICENSE
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_751026547\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_751026547\crl-set
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_751026547\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_751026547\manifest.json
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_913451637\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_913451637\_platform_specific\x86_64\pnacl_public_pnacl_json
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_913451637\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_913451637\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_913451637\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_913451637\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=7511538a3a6a0b862c772eace49075ed1bbe2377,
stripped
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_913451637\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a
|
current ar archive
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_913451637\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a
|
current ar archive
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_913451637\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a
|
current ar archive
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_913451637\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a
|
current ar archive
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_913451637\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=309d6d3d463e6b1b0690f39eb226b1e4c469b2ce,
stripped
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_913451637\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_sz_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=4b15de4ab227d5e46213978b8518d53c53ce1db9,
stripped
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_913451637\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6464_913451637\manifest.json
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\6e044b75-2010-4977-b133-e71aa02ade14.tmp
|
very short file (no magic)
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\7c10e155-cace-4777-aaf3-da62f84ee7d7.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\7ccb8eb9-6ee3-4455-993d-7c6656e98f8c.tmp
|
very short file (no magic)
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\9a5f5108-754d-4e9f-9db7-700484b34e80.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\9a5f5108-754d-4e9f-9db7-700484b34e80.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_1946785410\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\7c10e155-cace-4777-aaf3-da62f84ee7d7.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\iw\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\angular.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\background_script.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\cast_sender.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\common.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\feedback.css
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\feedback.html
|
HTML document, ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\feedback_script.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\material_css_min.css
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\mirroring_cast_streaming.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\mirroring_common.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\mirroring_hangouts.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir6464_2025272211\CRX_INSTALL\mirroring_webrtc.js
|
ASCII text, with very long lines
|
dropped
|
There are 265 hidden files, click here to show them.
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "C:\Users\user\Desktop\PaymentReceipt.html
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1552,6213295624667690040,7919256905441255605,131072
--lang=en-GB --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1956 /prefetch:8
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
file:///C:/Users/user/Desktop/PaymentReceipt.html
|
|||
https://aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_kfhrfyfy-sm2tmkm5ficc
|
unknown
|
||
https://login.microsoftonline.com/logout.srf?ct=1548343592&rver=64.4.6456.0&lc=1033&id=501392
|
|||
https://apis.google.com/js/client.js
|
unknown
|
||
https://www.google.com/images/cleardot.gif
|
unknown
|
||
https://play.google.com
|
unknown
|
||
https://aadcdn.msftauth.net/shared/1.0/content/images/personal_account_0f72b5950600f24e7f9a604b186f3945.png
|
152.199.23.37
|
||
https://crash.corp.google.com/samples?reportid=&q=
|
unknown
|
||
https://www.google.com/log?format=json&hasfast=true
|
unknown
|
||
https://code.jquery.com/jquery-3.3.1.slim.min.js
|
unknown
|
||
https://easylist.to/)
|
unknown
|
||
https://login.windows-ppe.net
|
unknown
|
||
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
||
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
|
unknown
|
||
https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
|
104.18.10.207
|
||
https://accounts.google.com/MergeSession
|
unknown
|
||
https://creativecommons.org/compatiblelicenses
|
unknown
|
||
https://preprod-hangouts-googleapis.sandbox.google.com
|
unknown
|
||
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
|
142.250.203.97
|
||
https://aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2_7916a894ebde7d29c2cc29b267f1299f.jpg
|
152.199.23.37
|
||
https://www.google.com
|
unknown
|
||
https://github.com/easylist)
|
unknown
|
||
https://creativecommons.org/.
|
unknown
|
||
https://login.microsoftonline.com
|
unknown
|
||
https://aadcdn.msftauth.net/ests/2.1/content/cdnbundles/aad.login.min_ktc4wemsewhydsbdjhhsja2.jsz
|
unknown
|
||
https://aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_lgjnfq3xbrj5zvj5ionvww2.css
|
152.199.23.37
|
||
https://hangouts.clients6.google.com
|
unknown
|
||
https://meet.google.com
|
unknown
|
||
https://hangouts.google.com/hangouts/_/logpref
|
unknown
|
||
https://accounts.google.com
|
unknown
|
||
https://clients2.google.com/cr/report
|
unknown
|
||
http://angularjs.org
|
unknown
|
||
https://login.microsoftonline.com/logout.srf?ct=1548343592&rver=64.4.6456.0&lc=1033&id=501392
|
unknown
|
||
https://aadcdn.msftauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
|
152.199.23.37
|
||
https://creativecommons.org/publicdomain/zero/1.0/.
|
unknown
|
||
https://github.com/angular/material
|
unknown
|
||
https://apis.google.com
|
unknown
|
||
https://aadcdn.msftauth.net/shared/1.0/content/images/arrow_left_a9cc2824ef3517b6c4160dcf8ff7d410.sv
|
unknown
|
||
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
||
https://github.com/madler/zlib/blob/master/zlib.h
|
unknown
|
||
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
||
https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers
|
unknown
|
||
https://clients2.google.com
|
unknown
|
||
https://www.google.com/tools/feedback
|
unknown
|
||
http://www.apache.org/licenses/LICENSE-2.0
|
unknown
|
||
https://dns.google
|
unknown
|
||
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
||
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
||
https://ogs.google.com
|
unknown
|
||
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
||
https://aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2-small_e58aafc980614a9cd7796bea7b
|
unknown
|
||
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
|
unknown
|
||
https://code.jquery.com/jquery-3.1.1.min.js
|
unknown
|
||
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
172.217.168.45
|
||
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
||
https://www.google.com;
|
unknown
|
||
https://aadcdn.msftauth.net/shared/1.0/content/images/arrow_left_a9cc2824ef3517b6c4160dcf8ff7d410.svg
|
152.199.23.37
|
||
https://a.nel.cloudflare.com/report/v3?s=PPAx7m9PtByQOkx38ZYFV01NMc3I5ClaWRCuwwXhY%2BzhVzBNfIOHj1hbf
|
unknown
|
||
https://aadcdn.msftauth.net/shared/1.0/content/images/personal_account_0f72b5950600f24e7f9a604b186f3
|
unknown
|
||
https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
|
unknown
|
||
https://hangouts.google.com/
|
unknown
|
||
https://aadcdn.msftauth.net/shared/1.0/content/images/work_account_1963c6b1926b773986f53f844ce4c32e.
|
unknown
|
||
https://aadcdn.msftauth.net/ests/2.1/content/images/microsoft_logo.png
|
152.199.23.37
|
||
https://csp.withgoogle.com/csp/hosted-libraries-pushers
|
unknown
|
||
https://www.google.com/images/x2.gif
|
unknown
|
||
https://code.jquery.com/jquery-3.3.1.slim.min.jsC
|
unknown
|
||
https://aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2_7916a894ebde7d29c2cc29b267f1299f
|
unknown
|
||
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-GB&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
142.250.203.110
|
||
https://aadcdn.msftauth.net/ests/2.1/content/cdnbundles/aad.login.min_ktc4wemsewhydsbdjhhsja2.js
|
152.199.23.37
|
||
http://llvm.org/):
|
unknown
|
||
https://www.google.com/images/dot2.gif
|
unknown
|
||
https://meetings.clients6.google.com
|
unknown
|
||
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
||
https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js
|
104.16.19.94
|
||
https://code.google.com/p/nativeclient/issues/entry%s:
|
unknown
|
||
https://aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_lgjnfq3xbrj5zvj5ionvw
|
unknown
|
||
https://identity.nel.measure.office.net/api/report?catId=GW
|
unknown
|
||
https://aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2-small_e58aafc980614a9cd7796bea7b5ea8f0.jpg
|
152.199.23.37
|
||
http://tools.ietf.org/html/rfc1950
|
unknown
|
||
https://code.google.com/p/nativeclient/issues/entry
|
unknown
|
||
https://aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_kfhrfyfy-sm2tmkm5ficcw2.css
|
152.199.23.37
|
||
https://csp.withgoogle.com/csp/hosted-libraries-pushersCross-Origin-Resource-Policy:
|
unknown
|
||
https://support.google.com/chromecast/answer/2998456
|
unknown
|
||
https://clients2.googleusercontent.com
|
unknown
|
||
https://aadcdn.msftauth.net/ests/2.1/content/cdnbundles/jquery.3.5.min_dc940oomzau4rsu8qesnvg2.js
|
152.199.23.37
|
||
https://docs.google.com
|
unknown
|
||
https://www.google.com/
|
unknown
|
||
https://feedback.googleusercontent.com
|
unknown
|
||
https://aadcdn.msftauth.net/shared/1.0/content/images/work_account_1963c6b1926b773986f53f844ce4c32e.png
|
152.199.23.37
|
||
https://chromium.googlesource.com/a/native_client/pnacl-clang.git
|
unknown
|
||
https://clients2.google.com/service/update2/crx
|
unknown
|
||
https://clients6.google.com
|
unknown
|
There are 82 hidden URLs, click here to show them.
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
cs1100.wpc.omegacdn.net
|
152.199.23.37
|
||
accounts.google.com
|
172.217.168.45
|
||
cdnjs.cloudflare.com
|
104.16.19.94
|
||
maxcdn.bootstrapcdn.com
|
104.18.10.207
|
||
clients.l.google.com
|
142.250.203.110
|
||
googlehosted.l.googleusercontent.com
|
142.250.203.97
|
||
clients2.googleusercontent.com
|
unknown
|
||
clients2.google.com
|
unknown
|
||
code.jquery.com
|
unknown
|
||
aadcdn.msftauth.net
|
unknown
|
||
login.microsoftonline.com
|
unknown
|
||
aadcdn.msauth.net
|
unknown
|
There are 2 hidden domains, click here to show them.
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
192.168.2.1
|
unknown
|
unknown
|
||
104.18.10.207
|
maxcdn.bootstrapcdn.com
|
United States
|
||
142.250.203.110
|
clients.l.google.com
|
United States
|
||
192.168.2.5
|
unknown
|
unknown
|
||
172.217.168.45
|
accounts.google.com
|
United States
|
||
142.250.203.97
|
googlehosted.l.googleusercontent.com
|
United States
|
||
239.255.255.250
|
unknown
|
Reserved
|
||
152.199.23.37
|
cs1100.wpc.omegacdn.net
|
United States
|
||
104.16.19.94
|
cdnjs.cloudflare.com
|
United States
|
||
127.0.0.1
|
unknown
|
unknown
|
Registry
Path
|
Value
|
Malicious
|
|
---|---|---|---|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
||
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
There are 35 hidden registries, click here to show them.
Memdumps
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
---|---|---|---|---|
E5049FF000
|
stack
|
page read and write
|
||
E503DEE000
|
stack
|
page read and write
|
||
22A6E840000
|
heap default
|
page read and write
|
||
2C050F60000
|
unkown
|
page read and write
|
||
2C050400000
|
unkown
|
page read and write
|
||
2C055104000
|
unkown
|
page read and write
|
||
7DF44B4A0000
|
unkown image
|
page readonly
|
||
292DB600000
|
unkown
|
page read and write
|
||
22A6EB02000
|
unkown
|
page read and write
|
||
7FF5E6217000
|
unkown image
|
page readonly
|
||
26E8CE10000
|
unkown image
|
page readonly
|
||
2128424B000
|
unkown
|
page read and write
|
||
1BBD087E000
|
unkown
|
page read and write
|
||
FFBCE77000
|
stack
|
page read and write
|
||
7FF5384CE000
|
unkown image
|
page readonly
|
||
7FF5120A3000
|
unkown image
|
page readonly
|
||
7FF512216000
|
unkown image
|
page readonly
|
||
21284283000
|
unkown
|
page read and write
|
||
22A6EA00000
|
unkown
|
page read and write
|
||
E50427F000
|
stack
|
page read and write
|
||
2C04FC73000
|
unkown
|
page read and write
|
||
7DF52DB92000
|
unkown image
|
page readonly
|
||
7FF4F8DE2000
|
unkown image
|
page readonly
|
||
7FF518A7F000
|
unkown image
|
page readonly
|
||
292DB4E0000
|
unkown image
|
page readonly
|
||
22A6F17F000
|
unkown
|
page read and write
|
||
22A6EA13000
|
unkown
|
page read and write
|
||
22A6F18E000
|
unkown
|
page read and write
|
||
7FF4F8DE1000
|
unkown image
|
page readonly
|
||
FFBC79B000
|
unkown
|
page read and write
|
||
2C04FBF0000
|
unkown
|
page read and write
|
||
7FF4F8C36000
|
unkown image
|
page readonly
|
||
7FF4F8CEA000
|
unkown image
|
page readonly
|
||
7FF4F8D5E000
|
unkown image
|
page readonly
|
||
22A6EAA7000
|
unkown
|
page read and write
|
||
7DF424B30000
|
unkown image
|
page readonly
|
||
7DF527312000
|
unkown image
|
page readonly
|
||
1E5E4FF000
|
stack
|
page read and write
|
||
2C054F60000
|
unkown
|
page read and write
|
||
7FF5E626E000
|
unkown image
|
page readonly
|
||
7FF511AF3000
|
unkown image
|
page readonly
|
||
7FF511867000
|
unkown image
|
page readonly
|
||
22A6F5B0000
|
unkown image
|
page read and write
|
||
1E5E5FF000
|
stack
|
page read and write
|
||
2C04FA10000
|
unkown image
|
page readonly
|
||
21284120000
|
unkown image
|
page readonly
|
||
22A6F19C000
|
unkown
|
page read and write
|
||
22A6F540000
|
unkown image
|
page write copy
|
||
1BBD0840000
|
heap default
|
page read and write
|
||
7DF52DBB0000
|
unkown image
|
page readonly
|
||
2C055420000
|
unkown
|
page read and write
|
||
7FF5E6276000
|
unkown image
|
page readonly
|
||
2C04FC90000
|
unkown
|
page read and write
|
||
7DF526C60000
|
unkown image
|
page readonly
|
||
7FF5E6200000
|
unkown image
|
page readonly
|
||
21284257000
|
unkown
|
page read and write
|
||
22A6F191000
|
unkown
|
page read and write
|
||
7DF527312000
|
unkown image
|
page readonly
|
||
2C0552DE000
|
unkown
|
page read and write
|
||
7FF51891B000
|
unkown image
|
page readonly
|
||
7FF4F8589000
|
unkown image
|
page readonly
|
||
7FF5E6153000
|
unkown image
|
page readonly
|
||
22A6F16E000
|
unkown
|
page read and write
|
||
D2C0A7F000
|
stack
|
page read and write
|
||
2C055100000
|
unkown
|
page read and write
|
||
7FF511A2A000
|
unkown image
|
page readonly
|
||
22A6F1A2000
|
unkown
|
page read and write
|
||
2C055288000
|
unkown
|
page read and write
|
||
26E8CE00000
|
heap private
|
page read and write
|
||
22A6F18F000
|
unkown
|
page read and write
|
||
1BBD087F000
|
unkown
|
page read and write
|
||
2C0550CE000
|
unkown
|
page read and write
|
||
7DF52DB92000
|
unkown image
|
page readonly
|
||
7DF527330000
|
unkown image
|
page readonly
|
||
7FF537DB7000
|
unkown image
|
page readonly
|
||
7FF511AFB000
|
unkown image
|
page readonly
|
||
7FF512061000
|
unkown image
|
page readonly
|
||
7FF4F8597000
|
unkown image
|
page readonly
|
||
7FF5E62F1000
|
unkown image
|
page readonly
|
||
2C055610000
|
unkown
|
page read and write
|
||
7FF51209E000
|
unkown image
|
page readonly
|
||
7FF512043000
|
unkown image
|
page readonly
|
||
7DF50DE80000
|
unkown image
|
page readonly
|
||
7FF4F8D34000
|
unkown image
|
page readonly
|
||
26E8D580000
|
unkown image
|
page readonly
|
||
2C0503D0000
|
unkown
|
page read and write
|
||
7FF511F66000
|
unkown image
|
page readonly
|
||
7DF526C62000
|
unkown image
|
page readonly
|
||
22A6E7F0000
|
unkown image
|
page readonly
|
||
2C050519000
|
unkown
|
page read and write
|
||
7FF511B6D000
|
unkown image
|
page readonly
|
||
7FF518A2B000
|
unkown image
|
page readonly
|
||
22A6F1A2000
|
unkown
|
page read and write
|
||
7DF52DBA0000
|
unkown image
|
page readonly
|
||
7FF511C7E000
|
unkown image
|
page readonly
|
||
22A6F18C000
|
unkown
|
page read and write
|
||
2C050518000
|
unkown
|
page read and write
|
||
7FF538498000
|
unkown image
|
page readonly
|
||
7FF53848C000
|
unkown image
|
page readonly
|
||
7FF4F8CB3000
|
unkown image
|
page readonly
|
||
7FF518A99000
|
unkown image
|
page readonly
|
||
7FF511AF0000
|
unkown image
|
page readonly
|
||
22A6F17A000
|
unkown
|
page read and write
|
||
2C0550F0000
|
unkown
|
page read and write
|
||
7FF518A25000
|
unkown image
|
page readonly
|
||
22A6F19E000
|
unkown
|
page read and write
|
||
2C0551F0000
|
unkown
|
page read and write
|
||
D2C06FB000
|
stack
|
page read and write
|
||
7FF512081000
|
unkown image
|
page readonly
|
||
7DF50DE70000
|
unkown image
|
page readonly
|
||
7FF5E5DC6000
|
unkown image
|
page readonly
|
||
26E8D029000
|
unkown
|
page read and write
|
||
2C05528C000
|
unkown
|
page read and write
|
||
292DB649000
|
unkown
|
page read and write
|
||
2C050415000
|
unkown
|
page read and write
|
||
2C04FBF3000
|
unkown
|
page read and write
|
||
7FF4F8CC4000
|
unkown image
|
page readonly
|
||
292DB500000
|
unkown image
|
page readonly
|
||
2C04FC9C000
|
unkown
|
page read and write
|
||
22A6F18B000
|
unkown
|
page read and write
|
||
292DB530000
|
heap default
|
page read and write
|
||
7FF5119EB000
|
unkown image
|
page readonly
|
||
22A6F17A000
|
unkown
|
page read and write
|
||
22A6F189000
|
unkown
|
page read and write
|
||
7FF5E60FB000
|
unkown image
|
page readonly
|
||
D38ABA000
|
unkown
|
page read and write
|
||
7FF511E1A000
|
unkown image
|
page readonly
|
||
FFBCA7E000
|
stack
|
page read and write
|
||
7FF511BE2000
|
unkown image
|
page readonly
|
||
22A6F19D000
|
unkown
|
page read and write
|
||
2C054F63000
|
unkown
|
page read and write
|
||
2C05528C000
|
unkown
|
page read and write
|
||
7FF5E6164000
|
unkown image
|
page readonly
|
||
7FF5E60FE000
|
unkown image
|
page readonly
|
||
7FF5119EE000
|
unkown image
|
page readonly
|
||
FD7B37B000
|
stack
|
page read and write
|
||
2128424D000
|
unkown
|
page read and write
|
||
22A6F178000
|
unkown
|
page read and write
|
||
7FF5E6244000
|
unkown image
|
page readonly
|
||
7FF512292000
|
unkown image
|
page readonly
|
||
21284302000
|
unkown
|
page read and write
|
||
7FF511F17000
|
unkown image
|
page readonly
|
||
7FF5185F5000
|
unkown image
|
page readonly
|
||
7FF518984000
|
unkown image
|
page readonly
|
||
7FF511A5C000
|
unkown image
|
page readonly
|
||
21284229000
|
unkown
|
page read and write
|
||
7FF53846B000
|
unkown image
|
page readonly
|
||
292DB613000
|
unkown
|
page read and write
|
||
22A6EAE2000
|
unkown
|
page read and write
|
||
E5046FF000
|
stack
|
page read and write
|
||
22A6EABE000
|
unkown
|
page read and write
|
||
7FF4F8C3D000
|
unkown image
|
page readonly
|
||
7DF54D5E2000
|
unkown image
|
page readonly
|
||
7FF4F8DD4000
|
unkown image
|
page readonly
|
||
292DB662000
|
unkown
|
page read and write
|
||
7FF5120A8000
|
unkown image
|
page readonly
|
||
7FF51896D000
|
unkown image
|
page readonly
|
||
7FF511BDA000
|
unkown image
|
page readonly
|
||
2C05522B000
|
unkown
|
page read and write
|
||
7DF52DBB0000
|
unkown image
|
page readonly
|
||
7FF4F8AEF000
|
unkown image
|
page readonly
|
||
7FF518A74000
|
unkown image
|
page readonly
|
||
7FF4F8905000
|
unkown image
|
page readonly
|
||
D38FFC000
|
stack
|
page read and write
|
||
22A6EA4B000
|
unkown
|
page read and write
|
||
2C05528A000
|
unkown
|
page read and write
|
||
7FF51217F000
|
unkown image
|
page readonly
|
||
21284110000
|
heap private
|
page read and write
|
||
FD7B07A000
|
stack
|
page read and write
|
||
2C055210000
|
unkown
|
page read and write
|
||
7FF51216B000
|
unkown image
|
page readonly
|
||
2C0550C6000
|
unkown
|
page read and write
|
||
22A6F17F000
|
unkown
|
page read and write
|
||
2C050190000
|
unkown image
|
page readonly
|
||
22A6F1C1000
|
unkown
|
page read and write
|
||
22A6EF80000
|
unkown image
|
page readonly
|
||
2C0551D0000
|
unkown
|
page read and write
|
||
7FF512208000
|
unkown image
|
page readonly
|
||
22A6F19D000
|
unkown
|
page read and write
|
||
7FF518A0A000
|
unkown image
|
page readonly
|
||
22A6F17A000
|
unkown
|
page read and write
|
||
7FF5187D4000
|
unkown image
|
page readonly
|
||
22A6EC00000
|
unkown image
|
page readonly
|
||
2C05527A000
|
unkown
|
page read and write
|
||
7FF511B1F000
|
unkown image
|
page readonly
|
||
2C050BF0000
|
unkown image
|
page readonly
|
||
1BBD06A0000
|
unkown image
|
page readonly
|
||
7FF4F8D1C000
|
unkown image
|
page readonly
|
||
22A6F18F000
|
unkown
|
page read and write
|
||
7FF511DB7000
|
unkown image
|
page readonly
|
||
7FF4F89C9000
|
unkown image
|
page readonly
|
||
7FF51219E000
|
unkown image
|
page readonly
|
||
26E8D049000
|
unkown
|
page read and write
|
||
1BBD0866000
|
unkown
|
page read and write
|
||
7FF511B44000
|
unkown image
|
page readonly
|
||
D2C0877000
|
stack
|
page read and write
|
||
2C055400000
|
unkown
|
page read and write
|
||
7FF4F8D44000
|
unkown image
|
page readonly
|
||
7FF511A3D000
|
unkown image
|
page readonly
|
||
7DF527320000
|
unkown image
|
page readonly
|
||
2C055284000
|
unkown
|
page read and write
|
||
22A6F1A2000
|
unkown
|
page read and write
|
||
22A6F602000
|
unkown
|
page read and write
|
||
21284254000
|
unkown
|
page read and write
|
||
7FF5121CF000
|
unkown image
|
page readonly
|
||
7FF5E6051000
|
unkown image
|
page readonly
|
||
7FF512153000
|
unkown image
|
page readonly
|
||
22A6F193000
|
unkown
|
page read and write
|
||
22A6F1A4000
|
unkown
|
page read and write
|
||
2C04F9F0000
|
unkown image
|
page read and write
|
||
22A6F19D000
|
unkown
|
page read and write
|
||
22A6EA6A000
|
unkown
|
page read and write
|
||
2C04FC8C000
|
unkown
|
page read and write
|
||
22A6F195000
|
unkown
|
page read and write
|
||
7FF511941000
|
unkown image
|
page readonly
|
||
7DF54D5E0000
|
unkown image
|
page readonly
|
||
22A6F763000
|
unkown
|
page read and write
|
||
1BBD0870000
|
unkown
|
page read and write
|
||
22A6EB13000
|
unkown
|
page read and write
|
||
22A6F5A0000
|
unkown
|
page read and write
|
||
22A6F19E000
|
unkown
|
page read and write
|
||
22A6F19B000
|
unkown
|
page read and write
|
||
2C050519000
|
unkown
|
page read and write
|
||
7FF518A88000
|
unkown image
|
page readonly
|
||
2C055288000
|
unkown
|
page read and write
|
||
7FF4F8D58000
|
unkown image
|
page readonly
|
||
22A6F14E000
|
unkown
|
page read and write
|
||
292DB540000
|
unkown image
|
page readonly
|
||
22A6F18B000
|
unkown
|
page read and write
|
||
7FF512174000
|
unkown image
|
page readonly
|
||
22A6F1D0000
|
unkown
|
page read and write
|
||
22A6EA4D000
|
unkown
|
page read and write
|
||
7FF511D66000
|
unkown image
|
page readonly
|
||
7DF54D5F0000
|
unkown image
|
page readonly
|
||
2C055293000
|
unkown
|
page read and write
|
||
22A6EAC5000
|
unkown
|
page read and write
|
||
2C05523E000
|
unkown
|
page read and write
|
||
7DF50DE70000
|
unkown image
|
page readonly
|
||
7FF518B0A000
|
unkown image
|
page readonly
|
||
2C050900000
|
unkown
|
page read and write
|
||
292DB66B000
|
unkown
|
page read and write
|
||
22A6F161000
|
unkown
|
page read and write
|
||
26E8CDF0000
|
unkown image
|
page read and write
|
||
22A6EA6A000
|
unkown
|
page read and write
|
||
7DF52DBA0000
|
unkown image
|
page readonly
|
||
FD7B4FF000
|
stack
|
page read and write
|
||
7DF54D5D0000
|
unkown image
|
page readonly
|
||
2C0550C8000
|
unkown
|
page read and write
|
||
E504377000
|
stack
|
page read and write
|
||
7DF52DB90000
|
unkown image
|
page readonly
|
||
7FF4F8B95000
|
unkown image
|
page readonly
|
||
E50447F000
|
stack
|
page read and write
|
||
7FF4F89D7000
|
unkown image
|
page readonly
|
||
1E5DCEB000
|
unkown
|
page read and write
|
||
22A6EAD5000
|
unkown
|
page read and write
|
||
7FF4F8D38000
|
unkown image
|
page readonly
|
||
D38E7F000
|
stack
|
page read and write
|
||
7FF512142000
|
unkown image
|
page readonly
|
||
7FF518973000
|
unkown image
|
page readonly
|
||
2C05520F000
|
unkown
|
page read and write
|
||
2C055293000
|
unkown
|
page read and write
|
||
7FF4F8D07000
|
unkown image
|
page readonly
|
||
E503CEB000
|
unkown
|
page read and write
|
||
22A6F702000
|
unkown
|
page read and write
|
||
2C055284000
|
unkown
|
page read and write
|
||
7FF5384BE000
|
unkown image
|
page readonly
|
||
2C0503C0000
|
unkown
|
page read and write
|
||
7FF5E5DD5000
|
unkown image
|
page readonly
|
||
7DF50DE62000
|
unkown image
|
page readonly
|
||
7FF511A24000
|
unkown image
|
page readonly
|
||
7DF50DE60000
|
unkown image
|
page readonly
|
||
FD7B3FF000
|
stack
|
page read and write
|
||
7DF5FB370000
|
unkown image
|
page readonly
|
||
2C050500000
|
unkown
|
page read and write
|
||
22A6F1A1000
|
unkown
|
page read and write
|
||
7FF51898C000
|
unkown image
|
page readonly
|
||
2C055286000
|
unkown
|
page read and write
|
||
7FF518797000
|
unkown image
|
page readonly
|
||
2C04FC6E000
|
unkown
|
page read and write
|
||
22A6F5A0000
|
unkown
|
page read and write
|
||
7FF518A1A000
|
unkown image
|
page readonly
|
||
21284170000
|
heap default
|
page read and write
|
||
7FF4F8D1F000
|
unkown image
|
page readonly
|
||
7DF50DE62000
|
unkown image
|
page readonly
|
||
22A6F19B000
|
unkown
|
page read and write
|
||
1BBD06C0000
|
unkown image
|
page readonly
|
||
FD7AF78000
|
stack
|
page read and write
|
||
7DF527322000
|
unkown image
|
page readonly
|
||
22A6F1A2000
|
unkown
|
page read and write
|
||
22A6F188000
|
unkown
|
page read and write
|
||
26E8D102000
|
unkown
|
page read and write
|
||
7FF5E62E4000
|
unkown image
|
page readonly
|
||
7FF511AF7000
|
unkown image
|
page readonly
|
||
7FF4F8D66000
|
unkown image
|
page readonly
|
||
7FF5E627D000
|
unkown image
|
page readonly
|
||
7FF4F8CF0000
|
unkown image
|
page readonly
|
||
22A6EA3C000
|
unkown
|
page read and write
|
||
22A6F193000
|
unkown
|
page read and write
|
||
22A6E820000
|
unkown image
|
page readonly
|
||
22A6F66A000
|
unkown
|
page read and write
|
||
7FF51891E000
|
unkown image
|
page readonly
|
||
7FF51228A000
|
unkown image
|
page readonly
|
||
7FF538544000
|
unkown image
|
page readonly
|
||
21284850000
|
unkown image
|
page readonly
|
||
7FF512140000
|
unkown image
|
page readonly
|
||
7FF5E60A3000
|
unkown image
|
page readonly
|
||
7FF511B69000
|
unkown image
|
page readonly
|
||
7DF52DB90000
|
unkown image
|
page readonly
|
||
2C050518000
|
unkown
|
page read and write
|
||
22A6F19F000
|
unkown
|
page read and write
|
||
2C050559000
|
unkown
|
page read and write
|
||
2128428C000
|
unkown
|
page read and write
|
||
E503D6E000
|
stack
|
page read and write
|
||
26E8D055000
|
unkown
|
page read and write
|
||
2C04FC58000
|
unkown
|
page read and write
|
||
7FF5121A5000
|
unkown image
|
page readonly
|
||
21284200000
|
unkown
|
page read and write
|
||
2C0550C0000
|
unkown
|
page read and write
|
||
7FF538465000
|
unkown image
|
page readonly
|
||
22A6EAE8000
|
unkown
|
page read and write
|
||
21284213000
|
unkown
|
page read and write
|
||
FD7B77A000
|
stack
|
page read and write
|
||
7FF5E614D000
|
unkown image
|
page readonly
|
||
22A6F763000
|
unkown
|
page read and write
|
||
7FF5116B0000
|
unkown image
|
page readonly
|
||
212841A0000
|
unkown
|
page read and write
|
||
22A6EFA0000
|
unkown
|
page read and write
|
||
22A6F1A2000
|
unkown
|
page read and write
|
||
22A6EB08000
|
unkown
|
page read and write
|
||
21284313000
|
unkown
|
page read and write
|
||
7FF5E60E1000
|
unkown image
|
page readonly
|
||
7FF4F8B9F000
|
unkown image
|
page readonly
|
||
7FF5384A4000
|
unkown image
|
page readonly
|
||
22A6EA70000
|
unkown
|
page read and write
|
||
7FF4F84CC000
|
unkown image
|
page readonly
|
||
1BBD0940000
|
unkown image
|
page readonly
|
||
7FF4F8CA3000
|
unkown image
|
page readonly
|
||
1BBD0810000
|
unkown image
|
page readonly
|
||
2C04FA40000
|
unkown image
|
page readonly
|
||
22A6EAE6000
|
unkown
|
page read and write
|
||
22A6F1A2000
|
unkown
|
page read and write
|
||
7FF518A64000
|
unkown image
|
page readonly
|
||
7DF4251E0000
|
unkown image
|
page readonly
|
||
7FF51137A000
|
unkown image
|
page readonly
|
||
2C04FCBB000
|
unkown
|
page read and write
|
||
2C055420000
|
unkown
|
page read and write
|
||
22A6EFD0000
|
unkown image
|
page readonly
|
||
7FF5188C3000
|
unkown image
|
page readonly
|
||
2C050A00000
|
unkown image
|
page read and write
|
||
7FF5E61FA000
|
unkown image
|
page readonly
|
||
7FF512284000
|
unkown image
|
page readonly
|
||
1BBD06A0000
|
unkown image
|
page readonly
|
||
2C055284000
|
unkown
|
page read and write
|
||
22A6EA53000
|
unkown
|
page read and write
|
||
FD7B47F000
|
stack
|
page read and write
|
||
7FF4F89D4000
|
unkown image
|
page readonly
|
||
7FF53854A000
|
unkown image
|
page readonly
|
||
7FF4F8CDC000
|
unkown image
|
page readonly
|
||
7FF5E5DC0000
|
unkown image
|
page readonly
|
||
22A6EA29000
|
unkown
|
page read and write
|
||
2C055215000
|
unkown
|
page read and write
|
||
7FF518871000
|
unkown image
|
page readonly
|
||
7DF50DE72000
|
unkown image
|
page readonly
|
||
D2C047E000
|
stack
|
page read and write
|
||
7DF527330000
|
unkown image
|
page readonly
|
||
292DB4E0000
|
unkown image
|
page readonly
|
||
2C04FE00000
|
unkown image
|
page readonly
|
||
2C04FA30000
|
unkown image
|
page readonly
|
||
2C050BC0000
|
unkown image
|
page readonly
|
||
26E8CE40000
|
unkown image
|
page readonly
|
||
7FF5E61FE000
|
unkown image
|
page readonly
|
||
292DB602000
|
unkown
|
page read and write
|
||
2C055288000
|
unkown
|
page read and write
|
||
7FF5384B4000
|
unkown image
|
page readonly
|
||
7FF518A9D000
|
unkown image
|
page readonly
|
||
2C050559000
|
unkown
|
page read and write
|
||
22A6F1B0000
|
unkown
|
page read and write
|
||
2C050C10000
|
unkown image
|
page readonly
|
||
2C050558000
|
unkown
|
page read and write
|
||
7FF5E61EC000
|
unkown image
|
page readonly
|
||
7FF518A1E000
|
unkown image
|
page readonly
|
||
2C0550CB000
|
unkown
|
page read and write
|
||
22A6F702000
|
unkown
|
page read and write
|
||
7FF511FD6000
|
unkown image
|
page readonly
|
||
7FF511AEE000
|
unkown image
|
page readonly
|
||
7FF5116B6000
|
unkown image
|
page readonly
|
||
292DB700000
|
unkown
|
page read and write
|
||
2C05529D000
|
unkown
|
page read and write
|
||
7FF511A54000
|
unkown image
|
page readonly
|
||
2C04FC3E000
|
unkown
|
page read and write
|
||
22A6F17F000
|
unkown
|
page read and write
|
||
7FF5E625F000
|
unkown image
|
page readonly
|
||
2C055293000
|
unkown
|
page read and write
|
||
7FF51210C000
|
unkown image
|
page readonly
|
||
7FF511B34000
|
unkown image
|
page readonly
|
||
7DF54D5E0000
|
unkown image
|
page readonly
|
||
7DF5FB372000
|
unkown image
|
page readonly
|
||
D2C04FE000
|
stack
|
page read and write
|
||
2C0550C1000
|
unkown
|
page read and write
|
||
22A6F1AA000
|
unkown
|
page read and write
|
||
7FF4F8852000
|
unkown image
|
page readonly
|
||
22A6F190000
|
unkown
|
page read and write
|
||
7FF5121B7000
|
unkown image
|
page readonly
|
||
7FF5E6254000
|
unkown image
|
page readonly
|
||
22A6EA89000
|
unkown
|
page read and write
|
||
22A6F1A2000
|
unkown
|
page read and write
|
||
7FF5185E0000
|
unkown image
|
page readonly
|
||
7DF5FB380000
|
unkown image
|
page readonly
|
||
7FF518A57000
|
unkown image
|
page readonly
|
||
2C0555A0000
|
unkown
|
page read and write
|
||
2C05521D000
|
unkown
|
page read and write
|
||
21284150000
|
unkown image
|
page readonly
|
||
1BBD0AC0000
|
unkown image
|
page readonly
|
||
26E8D200000
|
unkown image
|
page readonly
|
||
7DF526C70000
|
unkown image
|
page readonly
|
||
7FF5E5FB4000
|
unkown image
|
page readonly
|
||
2C050BE0000
|
unkown image
|
page readonly
|
||
2C0550E0000
|
unkown
|
page read and write
|
||
26E8D000000
|
unkown
|
page read and write
|
||
7DF527310000
|
unkown image
|
page readonly
|
||
7FF5E6237000
|
unkown image
|
page readonly
|
||
7FF511B5E000
|
unkown image
|
page readonly
|
||
2C04FC78000
|
unkown
|
page read and write
|
||
7FF511D0E000
|
unkown image
|
page readonly
|
||
21284A02000
|
unkown
|
page read and write
|
||
7FF4F84BC000
|
unkown image
|
page readonly
|
||
7DF5FB372000
|
unkown image
|
page readonly
|
||
7FF511B3A000
|
unkown image
|
page readonly
|
||
1BBD0870000
|
unkown
|
page read and write
|
||
2C05050D000
|
unkown
|
page read and write
|
||
7FF518A8E000
|
unkown image
|
page readonly
|
||
2C04FCFD000
|
unkown
|
page read and write
|
||
7DF527322000
|
unkown image
|
page readonly
|
||
21284308000
|
unkown
|
page read and write
|
||
22A6F700000
|
unkown
|
page read and write
|
||
FFBCD7E000
|
stack
|
page read and write
|
||
2C055410000
|
unkown
|
page read and write
|
||
2C05055A000
|
unkown
|
page read and write
|
||
7DF526C72000
|
unkown image
|
page readonly
|
||
2C0550C4000
|
unkown
|
page read and write
|
||
7FF4F8AA4000
|
unkown image
|
page readonly
|
||
22A6F192000
|
unkown
|
page read and write
|
||
292DB510000
|
unkown image
|
page readonly
|
||
2C0551E0000
|
unkown
|
page read and write
|
||
FFBCF7E000
|
stack
|
page read and write
|
||
21284270000
|
unkown
|
page read and write
|
||
2C050559000
|
unkown
|
page read and write
|
||
22A6EA56000
|
unkown
|
page read and write
|
||
22A6F17A000
|
unkown
|
page read and write
|
||
2C055292000
|
unkown
|
page read and write
|
||
2C0550C0000
|
unkown
|
page read and write
|
||
7FF511A43000
|
unkown image
|
page readonly
|
||
7FF512104000
|
unkown image
|
page readonly
|
||
22A6EA49000
|
unkown
|
page read and write
|
||
FD7B87E000
|
stack
|
page read and write
|
||
22A6F190000
|
unkown
|
page read and write
|
||
7FF511D75000
|
unkown image
|
page readonly
|
||
22A6F116000
|
unkown
|
page read and write
|
||
1E5E1FB000
|
stack
|
page read and write
|
||
7FF4F8C90000
|
unkown image
|
page readonly
|
||
21284300000
|
unkown
|
page read and write
|
||
22A6F17A000
|
unkown
|
page read and write
|
||
2C0550C1000
|
unkown
|
page read and write
|
||
2C0550F0000
|
unkown
|
page read and write
|
||
2C050518000
|
unkown
|
page read and write
|
||
22A6F19F000
|
unkown
|
page read and write
|
||
22A6F19C000
|
unkown
|
page read and write
|
||
2C050518000
|
unkown
|
page read and write
|
||
7FF5E6279000
|
unkown image
|
page readonly
|
||
22A6F1A0000
|
unkown
|
page read and write
|
||
2C055261000
|
unkown
|
page read and write
|
||
7FF511B1C000
|
unkown image
|
page readonly
|
||
26E8CF60000
|
unkown
|
page read and write
|
||
7FF5E622F000
|
unkown image
|
page readonly
|
||
7DF54D5D2000
|
unkown image
|
page readonly
|
||
7FF512219000
|
unkown image
|
page readonly
|
||
22A6F189000
|
unkown
|
page read and write
|
||
26E8D113000
|
unkown
|
page read and write
|
||
1E5E2F7000
|
stack
|
page read and write
|
||
292DB63C000
|
unkown
|
page read and write
|
||
2C04FBD1000
|
unkown
|
page read and write
|
||
292DBAD0000
|
unkown image
|
page readonly
|
||
22A6F189000
|
unkown
|
page read and write
|
||
7FF5E62F2000
|
unkown image
|
page readonly
|
||
7FF518A4F000
|
unkown image
|
page readonly
|
||
2C0550E1000
|
unkown
|
page read and write
|
||
2C055220000
|
unkown
|
page read and write
|
||
7FF511993000
|
unkown image
|
page readonly
|
||
22A6F190000
|
unkown
|
page read and write
|
||
FFBCCFB000
|
stack
|
page read and write
|
||
7FF5384DD000
|
unkown image
|
page readonly
|
||
7FF4F8A9A000
|
unkown image
|
page readonly
|
||
1BBD0856000
|
heap default
|
page read and write
|
||
26E8D03C000
|
unkown
|
page read and write
|
||
22A6F602000
|
unkown
|
page read and write
|
||
22A6F602000
|
unkown
|
page read and write
|
||
22A6F19D000
|
unkown
|
page read and write
|
||
22A6F17F000
|
unkown
|
page read and write
|
||
2C0503E0000
|
unkown
|
page read and write
|
||
2C04FA60000
|
heap default
|
page read and write
|
||
2C0555B0000
|
unkown
|
page read and write
|
||
7FF5121E4000
|
unkown image
|
page readonly
|
||
7FF4F8D4F000
|
unkown image
|
page readonly
|
||
2C050000000
|
unkown image
|
page readonly
|
||
2C04FC8A000
|
unkown
|
page read and write
|
||
7FF5380DA000
|
unkown image
|
page readonly
|
||
22A6F66A000
|
unkown
|
page read and write
|
||
2C0550C5000
|
unkown
|
page read and write
|
||
7FF511FF1000
|
unkown image
|
page readonly
|
||
292DBC50000
|
unkown image
|
page readonly
|
||
FD7B17A000
|
stack
|
page read and write
|
||
2C04FC00000
|
unkown
|
page read and write
|
||
7DF526C62000
|
unkown image
|
page readonly
|
||
22A6F19F000
|
unkown
|
page read and write
|
||
7FF5E60C1000
|
unkown image
|
page readonly
|
||
7FF511D02000
|
unkown image
|
page readonly
|
||
22A6F16E000
|
unkown
|
page read and write
|
||
7FF4F863E000
|
unkown image
|
page readonly
|
||
292DB4D0000
|
heap private
|
page read and write
|
||
7FF4F84C7000
|
unkown image
|
page readonly
|
||
22A6F1A4000
|
unkown
|
page read and write
|
||
22A6F1BE000
|
unkown
|
page read and write
|
||
22A6F17E000
|
unkown
|
page read and write
|
||
7FF511E91000
|
unkown image
|
page readonly
|
||
7FF4F8B9A000
|
unkown image
|
page readonly
|
||
2C050518000
|
unkown
|
page read and write
|
||
7FF5188E1000
|
unkown image
|
page readonly
|
||
7DF54D5E2000
|
unkown image
|
page readonly
|
||
1E5DDEF000
|
stack
|
page read and write
|
||
2128424C000
|
unkown
|
page read and write
|
||
D38B3F000
|
stack
|
page read and write
|
||
26E8D013000
|
unkown
|
page read and write
|
||
2C050180000
|
unkown image
|
page readonly
|
||
7DF5FB390000
|
unkown image
|
page readonly
|
||
D38EF9000
|
stack
|
page read and write
|
||
22A6E810000
|
unkown image
|
page readonly
|
||
2C0555A0000
|
unkown
|
page read and write
|
||
26E8CF40000
|
unkown image
|
page readonly
|
||
7FF4F8CF5000
|
unkown image
|
page readonly
|
||
7FF4F8B24000
|
unkown image
|
page readonly
|
||
7FF4F8946000
|
unkown image
|
page readonly
|
||
292DB64C000
|
unkown
|
page read and write
|
||
22A6E7E0000
|
heap private
|
page read and write
|
||
292DB713000
|
unkown
|
page read and write
|
||
FD7B5FF000
|
stack
|
page read and write
|
||
7FF5E6268000
|
unkown image
|
page readonly
|
||
7FF511FE1000
|
unkown image
|
page readonly
|
||
22A6F1A2000
|
unkown
|
page read and write
|
||
2C055510000
|
unkown
|
page read and write
|
||
22A6F193000
|
unkown
|
page read and write
|
||
22A6F118000
|
unkown
|
page read and write
|
||
22A6F178000
|
unkown
|
page read and write
|
||
7FF4F8CEE000
|
unkown image
|
page readonly
|
||
2C04FC76000
|
unkown
|
page read and write
|
||
22A6F602000
|
unkown
|
page read and write
|
||
7DF5FB382000
|
unkown image
|
page readonly
|
||
22A6F602000
|
unkown
|
page read and write
|
||
1E5DD6F000
|
stack
|
page read and write
|
||
1E5E0FC000
|
stack
|
page read and write
|
||
D2C019B000
|
unkown
|
page read and write
|
||
1BBD07B0000
|
unkown
|
page read and write
|
||
7DF526C80000
|
unkown image
|
page readonly
|
||
7FF511BD4000
|
unkown image
|
page readonly
|
||
E50457A000
|
stack
|
page read and write
|
||
7FF4F8B41000
|
unkown image
|
page readonly
|
||
26E8CE10000
|
unkown image
|
page readonly
|
||
22A6F178000
|
unkown
|
page read and write
|
||
22A6E920000
|
unkown image
|
page readonly
|
||
2C04FD13000
|
unkown
|
page read and write
|
||
7FF5121A0000
|
unkown image
|
page readonly
|
||
7DF54D5D0000
|
unkown image
|
page readonly
|
||
7FF4F8BB1000
|
unkown image
|
page readonly
|
||
7DF5FB382000
|
unkown image
|
page readonly
|
||
7FF511D12000
|
unkown image
|
page readonly
|
||
7DF5FB370000
|
unkown image
|
page readonly
|
||
7FF518A37000
|
unkown image
|
page readonly
|
||
26E8D04F000
|
unkown
|
page read and write
|
||
7FF5121AB000
|
unkown image
|
page readonly
|
||
FD7ABBF000
|
stack
|
page read and write
|
||
292DB702000
|
unkown
|
page read and write
|
||
7FF4F8AED000
|
unkown image
|
page readonly
|
||
7FF511BE1000
|
unkown image
|
page readonly
|
||
22A6F1AA000
|
unkown
|
page read and write
|
||
FD7B27F000
|
stack
|
page read and write
|
||
22A6EAEB000
|
unkown
|
page read and write
|
||
7DF54D5D2000
|
unkown image
|
page readonly
|
||
7DF526C60000
|
unkown image
|
page readonly
|
||
22A6EAF7000
|
unkown
|
page read and write
|
||
1E5E3FD000
|
stack
|
page read and write
|
||
22A6EA48000
|
unkown
|
page read and write
|
||
7FF4F89DA000
|
unkown image
|
page readonly
|
||
7FF518901000
|
unkown image
|
page readonly
|
||
7FF538552000
|
unkown image
|
page readonly
|
||
7FF5384C8000
|
unkown image
|
page readonly
|
||
7FF538551000
|
unkown image
|
page readonly
|
||
7FF511B27000
|
unkown image
|
page readonly
|
||
2C050600000
|
unkown
|
page read and write
|
||
D2C05FB000
|
stack
|
page read and write
|
||
21284140000
|
unkown image
|
page readonly
|
||
212844D0000
|
unkown image
|
page readonly
|
||
26E8D002000
|
unkown
|
page read and write
|
||
22A6EA27000
|
unkown
|
page read and write
|
||
292DB560000
|
unkown
|
page read and write
|
||
7FF5121D7000
|
unkown image
|
page readonly
|
||
2C055293000
|
unkown
|
page read and write
|
||
22A6F193000
|
unkown
|
page read and write
|
||
1BBD0680000
|
unkown image
|
page read and write
|
||
7FF4F8B82000
|
unkown image
|
page readonly
|
||
FFBCAFE000
|
stack
|
page read and write
|
||
2C055218000
|
unkown
|
page read and write
|
||
26E8D100000
|
unkown
|
page read and write
|
||
292DB708000
|
unkown
|
page read and write
|
||
E504678000
|
stack
|
page read and write
|
||
2C04FB40000
|
unkown image
|
page readonly
|
||
7DF50DE80000
|
unkown image
|
page readonly
|
||
2C055600000
|
unkown
|
page read and write
|
||
7FF5384AA000
|
unkown image
|
page readonly
|
||
22A6F18D000
|
unkown
|
page read and write
|
||
D38BBF000
|
stack
|
page read and write
|
||
22A6EA4E000
|
unkown
|
page read and write
|
||
2C050559000
|
unkown
|
page read and write
|
||
7FF538460000
|
unkown image
|
page readonly
|
||
22A6F1A3000
|
unkown
|
page read and write
|
||
7FF51204A000
|
unkown image
|
page readonly
|
||
2C055200000
|
unkown
|
page read and write
|
||
7FF5119B1000
|
unkown image
|
page readonly
|
||
7FF511D60000
|
unkown image
|
page readonly
|
||
22A6EA84000
|
unkown
|
page read and write
|
||
2C050AE0000
|
unkown
|
page read and write
|
||
7FF4F8907000
|
unkown image
|
page readonly
|
||
2C04FA10000
|
unkown image
|
page readonly
|
||
2C050559000
|
unkown
|
page read and write
|
||
7FF5E624A000
|
unkown image
|
page readonly
|
||
7FF53848F000
|
unkown image
|
page readonly
|
||
7DF5FB380000
|
unkown image
|
page readonly
|
||
2C050C00000
|
unkown image
|
page readonly
|
||
7DF526C70000
|
unkown image
|
page readonly
|
||
7FF5120ED000
|
unkown image
|
page readonly
|
||
7FF511374000
|
unkown image
|
page readonly
|
||
7FF5121F4000
|
unkown image
|
page readonly
|
||
2C050519000
|
unkown
|
page read and write
|
||
22A6F178000
|
unkown
|
page read and write
|
||
7FF537DB3000
|
unkown image
|
page readonly
|
||
292DB629000
|
unkown
|
page read and write
|
||
D2C077E000
|
stack
|
page read and write
|
||
D38F7F000
|
stack
|
page read and write
|
||
2C050558000
|
unkown
|
page read and write
|
||
26E8D070000
|
unkown
|
page read and write
|
||
7FF512291000
|
unkown image
|
page readonly
|
||
2C04FB70000
|
unkown image
|
page read and write
|
||
22A6F189000
|
unkown
|
page read and write
|
||
26E8CE60000
|
heap default
|
page read and write
|
||
7FF5E61EA000
|
unkown image
|
page readonly
|
||
2C04FB60000
|
unkown
|
page read and write
|
||
292DBE02000
|
unkown
|
page read and write
|
||
22A6F178000
|
unkown
|
page read and write
|
||
7FF518A0C000
|
unkown image
|
page readonly
|
||
2C055190000
|
unkown
|
page read and write
|
||
E5041FB000
|
stack
|
page read and write
|
||
7FF511ADA000
|
unkown image
|
page readonly
|
||
7FF4F8CDA000
|
unkown image
|
page readonly
|
||
7FF5185E6000
|
unkown image
|
page readonly
|
||
7DF527310000
|
unkown image
|
page readonly
|
||
D2C097F000
|
stack
|
page read and write
|
||
2C050402000
|
unkown
|
page read and write
|
||
7FF4F8AE1000
|
unkown image
|
page readonly
|
||
1BBD0B10000
|
heap private
|
page read and write
|
||
7FF511F5B000
|
unkown image
|
page readonly
|
||
7FF518B11000
|
unkown image
|
page readonly
|
||
7FF51209B000
|
unkown image
|
page readonly
|
||
7FF5E616C000
|
unkown image
|
page readonly
|
||
1BBD0851000
|
unkown
|
page read and write
|
||
7FF5384D9000
|
unkown image
|
page readonly
|
||
7FF511AF5000
|
unkown image
|
page readonly
|
||
22A6F100000
|
unkown
|
page read and write
|
||
22A6E7D0000
|
unkown image
|
page read and write
|
||
7FF4F8D69000
|
unkown image
|
page readonly
|
||
7FF511FA0000
|
unkown image
|
page readonly
|
||
2C050518000
|
unkown
|
page read and write
|
||
292DB64F000
|
unkown
|
page read and write
|
||
292DB654000
|
unkown
|
page read and write
|
||
7FF51218C000
|
unkown image
|
page readonly
|
||
2C050BD0000
|
unkown image
|
page readonly
|
||
7FF4F8B31000
|
unkown image
|
page readonly
|
||
7FF518A6A000
|
unkown image
|
page readonly
|
||
7FF4F8C5C000
|
unkown image
|
page readonly
|
||
1BBD0B20000
|
unkown image
|
page readonly
|
||
2C05524B000
|
unkown
|
page read and write
|
||
22A6F1D0000
|
unkown
|
page read and write
|
||
22A6EA4C000
|
unkown
|
page read and write
|
||
7FF4F8981000
|
unkown image
|
page readonly
|
||
7DF42BA60000
|
unkown image
|
page readonly
|
||
212846D0000
|
unkown image
|
page readonly
|
||
1BBD0867000
|
unkown
|
page read and write
|
||
26E8D400000
|
unkown image
|
page readonly
|
||
7FF5E5F77000
|
unkown image
|
page readonly
|
||
7FF511AA2000
|
unkown image
|
page readonly
|
||
21284100000
|
unkown image
|
page read and write
|
||
2C055293000
|
unkown
|
page read and write
|
||
22A6F120000
|
unkown
|
page read and write
|
||
7FF5116C5000
|
unkown image
|
page readonly
|
||
1BBD0B15000
|
heap private
|
page read and write
|
||
22A6EA51000
|
unkown
|
page read and write
|
||
2C054FA0000
|
unkown
|
page read and write
|
||
2C055293000
|
unkown
|
page read and write
|
||
2C04FD02000
|
unkown
|
page read and write
|
||
2C055420000
|
unkown
|
page read and write
|
||
7FF5182A4000
|
unkown image
|
page readonly
|
||
292DB4C0000
|
unkown image
|
page read and write
|
||
2C054FC0000
|
unkown
|
page read and write
|
||
7DF50DE60000
|
unkown image
|
page readonly
|
||
7FF5121FF000
|
unkown image
|
page readonly
|
||
2C05055A000
|
unkown
|
page read and write
|
||
22A6F193000
|
unkown
|
page read and write
|
||
2C04FC29000
|
unkown
|
page read and write
|
||
1BBD07D0000
|
unkown
|
page read and write
|
||
7FF511FD4000
|
unkown image
|
page readonly
|
||
7FF518A20000
|
unkown image
|
page readonly
|
||
22A6F149000
|
unkown
|
page read and write
|
||
22A6E7F0000
|
unkown image
|
page readonly
|
||
7FF4F8AC8000
|
unkown image
|
page readonly
|
||
7DF526C80000
|
unkown image
|
page readonly
|
||
22A6F1D3000
|
unkown
|
page read and write
|
||
22A6F19A000
|
unkown
|
page read and write
|
||
22A6EA50000
|
unkown
|
page read and write
|
||
7FF5118A4000
|
unkown image
|
page readonly
|
||
7FF5E5A8A000
|
unkown image
|
page readonly
|
||
26E8CE30000
|
unkown image
|
page readonly
|
||
7DF5FB390000
|
unkown image
|
page readonly
|
||
E5047FF000
|
stack
|
page read and write
|
||
E5048FA000
|
stack
|
page read and write
|
||
22A6F195000
|
unkown
|
page read and write
|
||
22A6F1B2000
|
unkown
|
page read and write
|
||
7FF5E6205000
|
unkown image
|
page readonly
|
||
292DB662000
|
unkown
|
page read and write
|
||
2C055287000
|
unkown
|
page read and write
|
||
22A6EAA8000
|
unkown
|
page read and write
|
||
7FF518B12000
|
unkown image
|
page readonly
|
||
FD7AB3B000
|
unkown
|
page read and write
|
||
2C055100000
|
unkown
|
page read and write
|
||
22A6F19B000
|
unkown
|
page read and write
|
||
2C0550E4000
|
unkown
|
page read and write
|
||
7DF50DE72000
|
unkown image
|
page readonly
|
||
22A6F5A0000
|
unkown
|
page read and write
|
||
7FF511AEA000
|
unkown image
|
page readonly
|
||
2C054FB0000
|
unkown
|
page read and write
|
||
7FF4F8CAF000
|
unkown image
|
page readonly
|
||
2C050519000
|
unkown
|
page read and write
|
||
FD7B67F000
|
stack
|
page read and write
|
||
292DB687000
|
unkown
|
page read and write
|
||
1BBD0800000
|
unkown image
|
page readonly
|
||
7DF526C72000
|
unkown image
|
page readonly
|
||
7FF51218A000
|
unkown image
|
page readonly
|
||
7DF52DBA2000
|
unkown image
|
page readonly
|
||
7FF511B07000
|
unkown image
|
page readonly
|
||
2C055290000
|
unkown
|
page read and write
|
||
7FF518A96000
|
unkown image
|
page readonly
|
||
7FF5121EA000
|
unkown image
|
page readonly
|
||
2128424F000
|
unkown
|
page read and write
|
||
21284180000
|
unkown image
|
page readonly
|
||
22A6F002000
|
unkown
|
page read and write
|
||
2128423C000
|
unkown
|
page read and write
|
||
2C05528C000
|
unkown
|
page read and write
|
||
2C055287000
|
unkown
|
page read and write
|
||
2C055284000
|
unkown
|
page read and write
|
||
7FF5E622C000
|
unkown image
|
page readonly
|
||
22A6F600000
|
unkown
|
page read and write
|
||
7FF511B66000
|
unkown image
|
page readonly
|
||
2C0550C5000
|
unkown
|
page read and write
|
||
7FF511ADC000
|
unkown image
|
page readonly
|
||
22A6EB16000
|
unkown
|
page read and write
|
||
22A6F1A3000
|
unkown
|
page read and write
|
||
7FF4F8B26000
|
unkown image
|
page readonly
|
||
2C050559000
|
unkown
|
page read and write
|
||
21284120000
|
unkown image
|
page readonly
|
||
2C04FC13000
|
unkown
|
page read and write
|
||
E5040FB000
|
stack
|
page read and write
|
||
26E8D802000
|
unkown
|
page read and write
|
||
7FF518A4C000
|
unkown image
|
page readonly
|
||
7FF51220E000
|
unkown image
|
page readonly
|
||
22A6F18F000
|
unkown
|
page read and write
|
||
22A6F602000
|
unkown
|
page read and write
|
||
7DF4F9240000
|
unkown image
|
page readonly
|
||
22A6F18F000
|
unkown
|
page read and write
|
||
7FF511DB5000
|
unkown image
|
page readonly
|
||
7FF5E62EA000
|
unkown image
|
page readonly
|
||
7FF51219A000
|
unkown image
|
page readonly
|
||
7FF511B4F000
|
unkown image
|
page readonly
|
||
7FF5120F3000
|
unkown image
|
page readonly
|
||
22A6F1A2000
|
unkown
|
page read and write
|
||
2C050513000
|
unkown
|
page read and write
|
||
7FF51216F000
|
unkown image
|
page readonly
|
||
7FF4F8971000
|
unkown image
|
page readonly
|
||
2C050502000
|
unkown
|
page read and write
|
||
26E8D08C000
|
unkown
|
page read and write
|
||
7FF4F8AAB000
|
unkown image
|
page readonly
|
||
22A6EE00000
|
unkown image
|
page readonly
|
||
26E8D081000
|
unkown
|
page read and write
|
||
7FF4F8D27000
|
unkown image
|
page readonly
|
||
7FF5182AA000
|
unkown image
|
page readonly
|
||
2C0550C0000
|
unkown
|
page read and write
|
||
7FF4F8ADB000
|
unkown image
|
page readonly
|
||
1BBD0870000
|
unkown
|
page read and write
|
||
2C055430000
|
unkown
|
page read and write
|
||
7FF511B58000
|
unkown image
|
page readonly
|
||
7DF54D5F0000
|
unkown image
|
page readonly
|
||
7FF4F896A000
|
unkown image
|
page readonly
|
||
22A6F178000
|
unkown
|
page read and write
|
||
7FF5E620B000
|
unkown image
|
page readonly
|
||
7FF4F8CFB000
|
unkown image
|
page readonly
|
||
7FF5121CC000
|
unkown image
|
page readonly
|
||
7FF4F8CCF000
|
unkown image
|
page readonly
|
||
26E8D108000
|
unkown
|
page read and write
|
||
22A6F178000
|
unkown
|
page read and write
|
||
2C050681000
|
unkown
|
page read and write
|
||
292DB8D0000
|
unkown image
|
page readonly
|
||
22A6EA54000
|
unkown
|
page read and write
|
||
7FF5119D1000
|
unkown image
|
page readonly
|
||
FD7B57E000
|
stack
|
page read and write
|
||
2C04FA00000
|
heap private
|
page read and write
|
||
22A6EAB1000
|
unkown
|
page read and write
|
||
FFBD07E000
|
stack
|
page read and write
|
||
7DF52DBA2000
|
unkown image
|
page readonly
|
||
7FF4F8ACF000
|
unkown image
|
page readonly
|
||
7FF4F8AB6000
|
unkown image
|
page readonly
|
||
7FF4F8DDA000
|
unkown image
|
page readonly
|
||
7DF40BD30000
|
unkown image
|
page readonly
|
||
7DF527320000
|
unkown image
|
page readonly
|
||
7FF518B04000
|
unkown image
|
page readonly
|
There are 819 hidden memdumps, click here to show them.
DOM / HTML
URL
|
Malicious
|
|
---|---|---|
https://login.microsoftonline.com/logout.srf?ct=1548343592&rver=64.4.6456.0&lc=1033&id=501392
|
||
file:///C:/Users/user/Desktop/PaymentReceipt.html
|