Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\018e95ea-b0a1-4257-a895-0d44b8e60ddd.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\0d5a12ce-76ed-4577-b490-2c6e269d40d5.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\3a977571-a094-47ed-aa6c-b2f6fe1c5f00.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\5a1ab7dd-f6b4-43b9-84fe-d5b23b997e51.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\68a02a10-973b-41dc-886d-4ff374816734.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\920d9782-35b8-4e30-a044-6b5434200994.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\9d4b2dc6-1e6d-43e7-85b4-54254f748402.tmp
|
SysEx File -
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\03130748-94fb-4ea5-a742-bb8b1e0253b4.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\061512da-e347-40ec-9695-dda113bc476e.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\0f8e5cf4-315c-4dab-997d-bec31f0fc51c.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\30175ea0-87c0-4797-9cd1-604b462b7e3b.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7d95431f-a652-4e21-aeb0-62680d3a92a2.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8371209d-e93e-41be-ba9f-f460b150540e.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9bd99ea0-5d5e-4a03-9827-034bc8707d2f.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
zlib compressed data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session[. (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabs (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.olddl (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State3} (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.old10 (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences\ (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences.t (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure PreferencesMP (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\1f10015e-8870-4fa4-94b2-f8ecee25320c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old.
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\42c035f6-0858-4c1f-af7c-72cf7164d31b.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
State.. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.olde/
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old.. (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.old0
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a8ca9dc0-b970-40af-aa76-14844bc9b922.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\aa400cda-bc27-47c1-9d4d-7a28a0b594d4.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d0e21e2f-a42c-4f1d-bad9-7aeab4b89904.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENTMP (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\dddf2600-c9be-4456-9ea5-6de026000d21.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\eae734d6-ac3e-4187-908a-22c6affc7eaa.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old8f (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local Statee (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local Staten (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info CacheR (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cachea (copy)
|
SysEx File -
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cachejs (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\daf47c8b-2a8e-48cb-8b08-b71857a22cc3.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\f0ecb7d3-58bf-4fda-9416-99bca30fb3da.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\f492d450-fc17-4797-a074-5125cff8b0b1.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\f5ec7c71-90c4-44c2-a4a2-2b2d66ebaea3.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\3823a6a3-c151-4788-a3bd-f08b4b7bca9e.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\60be7198-b80c-48e7-a4a8-4a2529da13a7.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6636_1928114711\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6636_1928114711\_platform_specific\x86_64\pnacl_public_pnacl_json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6636_1928114711\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6636_1928114711\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6636_1928114711\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6636_1928114711\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=7511538a3a6a0b862c772eace49075ed1bbe2377,
stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6636_1928114711\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6636_1928114711\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6636_1928114711\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6636_1928114711\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6636_1928114711\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=309d6d3d463e6b1b0690f39eb226b1e4c469b2ce,
stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6636_1928114711\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_sz_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=4b15de4ab227d5e46213978b8518d53c53ce1db9,
stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6636_1928114711\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6636_1928114711\manifest.json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\75bf26da-06cc-4663-86e8-c265adfcf566.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\77d5df83-cc37-4fa0-9ac1-59b91716d2d6.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\60be7198-b80c-48e7-a4a8-4a2529da13a7.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\iw\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\angular.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\background_script.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\cast_sender.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\common.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\feedback.css
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\feedback.html
|
HTML document, ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\feedback_script.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\material_css_min.css
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\mirroring_cast_streaming.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\mirroring_common.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\mirroring_hangouts.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_2003439724\CRX_INSTALL\mirroring_webrtc.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\77d5df83-cc37-4fa0-9ac1-59b91716d2d6.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6636_982485282\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
There are 250 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "http://oddfxzwq.disclosurecheck.co.uk/Access_VNpdedinw_Portal#YWpvbmVzQHRpb2ZpLmNvbS5hdQ==
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1536,9189883521351138627,10954566763217959445,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1904 /prefetch:8
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://oddfxzwq.disclosurecheck.co.uk/Access_VNpdedinw_Portal#YWpvbmVzQHRpb2ZpLmNvbS5hdQ==
|
 |
||
|
https://apis.google.com/js/client.js
|
unknown
|
||
|
https://www.google.com/images/cleardot.gif
|
unknown
|
||
|
https://play.google.com
|
unknown
|
||
|
https://crash.corp.google.com/samples?reportid=&q=
|
unknown
|
||
|
https://www.google.com/log?format=json&hasfast=true
|
unknown
|
||
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
|
unknown
|
||
|
https://accounts.google.com/MergeSession
|
unknown
|
||
|
https://preprod-hangouts-googleapis.sandbox.google.com
|
unknown
|
||
|
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
|
142.250.185.65
|
||
|
https://www.google.com
|
unknown
|
||
|
https://www.linkpicture.com/q/ring.jpeg
|
104.21.235.182
|
||
|
https://www.visitorjs.com/visitor.js
|
23.92.21.178
|
||
|
http://oddfxzwq.disclosurecheck.co.uk/Access_VNpdedinw_Portal#YWpvbmVzQHRpb2ZpLmNvbS5hdQ==
|
unknown
|
||
|
http://cpanel.com/?utm_source=cpanelwhm&utm_medium=cplogo&utm_content=logolink&utm_campaign=404refer
|
unknown
|
||
|
https://hangouts.clients6.google.com
|
unknown
|
||
|
https://meet.google.com
|
unknown
|
||
|
http://oddfxzwq.disclosurecheck.co.uk/Access_VNpdedinw_PortalS
|
unknown
|
||
|
https://hangouts.google.com/hangouts/_/logpref
|
unknown
|
||
|
https://accounts.google.com
|
unknown
|
||
|
https://clients2.google.com/cr/report
|
unknown
|
||
|
http://angularjs.org
|
unknown
|
||
|
http://oddfxzwq.disclosurecheck.co.uk
|
unknown
|
||
|
https://creativecommons.org/publicdomain/zero/1.0/.
|
unknown
|
||
|
https://github.com/angular/material
|
unknown
|
||
|
https://apis.google.com
|
unknown
|
||
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
||
|
https://github.com/madler/zlib/blob/master/zlib.h
|
unknown
|
||
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
||
|
https://www.linkpicture.com/q/download_8.jpeg
|
104.21.235.182
|
||
|
https://clients2.google.com
|
unknown
|
||
|
https://www.google.com/tools/feedback
|
unknown
|
||
|
http://www.apache.org/licenses/LICENSE-2.0
|
unknown
|
||
|
https://dns.google
|
unknown
|
||
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
||
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
||
|
https://ogs.google.com
|
unknown
|
||
|
https://www.linkpicture.com/q/voicemail-right.jpeg
|
104.21.235.182
|
||
|
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
||
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
|
unknown
|
||
|
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
142.250.185.78
|
||
|
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
172.217.16.141
|
||
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
http://icw4fpi.shoppersemporium.co.za
|
unknown
|
||
|
https://www.google.com;
|
unknown
|
||
|
https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
|
unknown
|
||
|
https://hangouts.google.com/
|
unknown
|
||
|
https://www.google.com/images/x2.gif
|
unknown
|
||
|
https://a.nel.cloudflare.com/report/v3?s=5cXJqI%2BjLcUqxKbTpDHYSulQCLpV8KNBFXLhzulfe9WZZnTF43dBRGcSW
|
unknown
|
||
|
https://go.cpanel.net/privacy
|
unknown
|
||
|
http://llvm.org/):
|
unknown
|
||
|
https://www.google.com/images/dot2.gif
|
unknown
|
||
|
https://meetings.clients6.google.com
|
unknown
|
||
|
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
||
|
http://www.visitorjs.com/
|
unknown
|
||
|
https://code.google.com/p/nativeclient/issues/entry%s:
|
unknown
|
||
|
http://tools.ietf.org/html/rfc1950
|
unknown
|
||
|
https://code.google.com/p/nativeclient/issues/entry
|
unknown
|
||
|
http://maxmind.com/.
|
unknown
|
||
|
https://support.google.com/chromecast/answer/2998456
|
unknown
|
||
|
http://oddfxzwq.disclosurecheck.co.uk/Access_VNpdedinw_Portal
|
67.222.108.232
|
||
|
http://icw4fpi.shoppersemporium.co.za/$%
|
unknown
|
||
|
https://clients2.googleusercontent.com
|
unknown
|
||
|
http://icw4fpi.shoppersemporium.co.za/$%*wOUMiMygtsTOxZwKDP8r23sruyndFz6U10MNe6zI942CaYMwgWZjaVDtm9lFHKetbnohFDRDddelQ6ospehRQVnS7YRClwubbvV2w/rbyYMcpcPYv1g5VSMtadT7nTPVVNkQUpVa3PVSN3D2IoHr3cWziJmmhAt9JEvtIunRp6LCweRdf9WZ4HA16m490rC4AdhpYCosYT/@*&%5E-ALP9TAat34UiNQJhwuEYkhSX9DOM5WA47vYwTttjW6WTnsqEJKZCAd5VzRpD5hHOf02yVhbaVnt7CUxBoSft3e9tX160pZajcPFi/?alt=media&token=eceadc54-a951-44b8-ae51-18aaf8c8e92f&MWAEIhVUo2MGOoP0UFo56yN4mtdp2cEG8jZDScSQPb5FbjoDg2=buydoaQLKpWwCMzgiwTQ&email=ajones@tiofi.com.au&PmuqYRrWt41vsKzulcgtaqyLq1cZ7XuM5NIwEWecSgYcF4ivMdtU8szO9udpXtIbVkHwrndAYo9QGa6V5KdLJOagow4bY1nGaXwt
|
102.219.84.9
|
||
|
https://docs.google.com
|
unknown
|
||
|
https://www.google.com/
|
unknown
|
||
|
https://feedback.googleusercontent.com
|
unknown
|
||
|
https://chromium.googlesource.com/a/native_client/pnacl-clang.git
|
unknown
|
||
|
https://clients2.google.com/service/update2/crx
|
unknown
|
||
|
https://clients6.google.com
|
unknown
|
There are 60 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
www.visitorjs.com
|
23.92.21.178
|
||
|
icw4fpi.shoppersemporium.co.za
|
102.219.84.9
|
||
|
accounts.google.com
|
172.217.16.141
|
||
|
www.linkpicture.com
|
104.21.235.182
|
||
|
clients.l.google.com
|
142.250.185.78
|
||
|
oddfxzwq.disclosurecheck.co.uk
|
67.222.108.232
|
||
|
googlehosted.l.googleusercontent.com
|
142.250.185.65
|
||
|
clients2.googleusercontent.com
|
unknown
|
||
|
clients2.google.com
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
142.250.185.78
|
clients.l.google.com
|
United States
|
||
|
104.21.235.182
|
www.linkpicture.com
|
United States
|
||
|
192.168.2.1
|
unknown
|
unknown
|
||
|
67.222.108.232
|
oddfxzwq.disclosurecheck.co.uk
|
United States
|
||
|
102.219.84.9
|
icw4fpi.shoppersemporium.co.za
|
unknown
|
||
|
23.92.21.178
|
www.visitorjs.com
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
172.217.16.141
|
accounts.google.com
|
United States
|
||
|
127.0.0.1
|
unknown
|
unknown
|
||
|
142.250.185.65
|
googlehosted.l.googleusercontent.com
|
United States
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
There are 35 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
26A12BC5000
|
unkown
|
page read and write
|
||
|
CA4F3FF000
|
stack
|
page read and write
|
||
|
299418A7000
|
heap
|
page read and write
|
||
|
2A82AB08000
|
unkown
|
page read and write
|
||
|
26A12250000
|
unkown
|
page read and write
|
||
|
19A4725E000
|
unkown
|
page read and write
|
||
|
19A470C0000
|
heap
|
page read and write
|
||
|
1E58944E000
|
unkown
|
page read and write
|
||
|
CA4EF4A000
|
stack
|
page read and write
|
||
|
CA4F37A000
|
stack
|
page read and write
|
||
|
6E7507E000
|
stack
|
page read and write
|
||
|
26A12BD2000
|
unkown
|
page read and write
|
||
|
26A12B64000
|
unkown
|
page read and write
|
||
|
26A12256000
|
unkown
|
page read and write
|
||
|
CA4F2F9000
|
stack
|
page read and write
|
||
|
19A47213000
|
unkown
|
page read and write
|
||
|
1E58946E000
|
unkown
|
page read and write
|
||
|
E2C77BB000
|
stack
|
page read and write
|
||
|
4A962CB000
|
stack
|
page read and write
|
||
|
29941C10000
|
heap
|
page read and write
|
||
|
26A12259000
|
unkown
|
page read and write
|
||
|
E2C80FE000
|
stack
|
page read and write
|
||
|
26A12B71000
|
unkown
|
page read and write
|
||
|
19A4723C000
|
unkown
|
page read and write
|
||
|
26A12B6D000
|
unkown
|
page read and write
|
||
|
26A12940000
|
remote allocation
|
page read and write
|
||
|
26A12B87000
|
unkown
|
page read and write
|
||
|
E2C7FFD000
|
stack
|
page read and write
|
||
|
1EAF5050000
|
heap
|
page read and write
|
||
|
6E755FD000
|
stack
|
page read and write
|
||
|
26A12B7E000
|
unkown
|
page read and write
|
||
|
299418B0000
|
heap
|
page read and write
|
||
|
26A12B00000
|
unkown
|
page read and write
|
||
|
19A47202000
|
unkown
|
page read and write
|
||
|
FF179FE000
|
stack
|
page read and write
|
||
|
26A12BBF000
|
unkown
|
page read and write
|
||
|
6FC167E000
|
stack
|
page read and write
|
||
|
26A12BA2000
|
unkown
|
page read and write
|
||
|
26A12302000
|
unkown
|
page read and write
|
||
|
2A82AA58000
|
unkown
|
page read and write
|
||
|
26A12B8A000
|
unkown
|
page read and write
|
||
|
26A12BC2000
|
unkown
|
page read and write
|
||
|
2A82AA52000
|
unkown
|
page read and write
|
||
|
26A13002000
|
unkown
|
page read and write
|
||
|
FF1797A000
|
stack
|
page read and write
|
||
|
2A82AA29000
|
unkown
|
page read and write
|
||
|
26A12B5E000
|
unkown
|
page read and write
|
||
|
19A47292000
|
unkown
|
page read and write
|
||
|
1E589360000
|
heap
|
page read and write
|
||
|
1E589402000
|
unkown
|
page read and write
|
||
|
6FC11F7000
|
stack
|
page read and write
|
||
|
26A13000000
|
unkown
|
page read and write
|
||
|
26A12BA9000
|
unkown
|
page read and write
|
||
|
26A12B7E000
|
unkown
|
page read and write
|
||
|
CA4F27F000
|
stack
|
page read and write
|
||
|
26A122C0000
|
unkown
|
page read and write
|
||
|
26A12B9E000
|
unkown
|
page read and write
|
||
|
26A12B7A000
|
unkown
|
page read and write
|
||
|
26A12B4C000
|
unkown
|
page read and write
|
||
|
26A12B4A000
|
unkown
|
page read and write
|
||
|
19A47302000
|
unkown
|
page read and write
|
||
|
1E589B30000
|
unkown
|
page read and write
|
||
|
2A82AA46000
|
unkown
|
page read and write
|
||
|
4A9634E000
|
stack
|
page read and write
|
||
|
26A12A02000
|
unkown
|
page read and write
|
||
|
6FC10F8000
|
stack
|
page read and write
|
||
|
26A12BA6000
|
unkown
|
page read and write
|
||
|
26A12B9E000
|
unkown
|
page read and write
|
||
|
2A82A9E0000
|
unkown
|
page read and write
|
||
|
26A12B5C000
|
unkown
|
page read and write
|
||
|
1E589513000
|
unkown
|
page read and write
|
||
|
4A96977000
|
stack
|
page read and write
|
||
|
19A47313000
|
unkown
|
page read and write
|
||
|
26A12313000
|
unkown
|
page read and write
|
||
|
E2C7CFB000
|
stack
|
page read and write
|
||
|
19A47258000
|
unkown
|
page read and write
|
||
|
29941A50000
|
heap
|
page read and write
|
||
|
26A12BA6000
|
unkown
|
page read and write
|
||
|
26A1224E000
|
unkown
|
page read and write
|
||
|
4A966FB000
|
stack
|
page read and write
|
||
|
26A12B17000
|
unkown
|
page read and write
|
||
|
26A12BBF000
|
unkown
|
page read and write
|
||
|
26A12BB3000
|
unkown
|
page read and write
|
||
|
299424F0000
|
trusted library allocation
|
page read and write
|
||
|
26A12B9E000
|
unkown
|
page read and write
|
||
|
26A12B64000
|
unkown
|
page read and write
|
||
|
1E589429000
|
unkown
|
page read and write
|
||
|
29941800000
|
trusted library allocation
|
page read and write
|
||
|
26A12B8D000
|
unkown
|
page read and write
|
||
|
1EAF5066000
|
heap
|
page read and write
|
||
|
1EAF507F000
|
heap
|
page read and write
|
||
|
1EAF507F000
|
heap
|
page read and write
|
||
|
19A47261000
|
unkown
|
page read and write
|
||
|
2A82AA00000
|
unkown
|
page read and write
|
||
|
1EAF4F60000
|
heap
|
page read and write
|
||
|
26A1223C000
|
unkown
|
page read and write
|
||
|
26A13063000
|
unkown
|
page read and write
|
||
|
26A12BA6000
|
unkown
|
page read and write
|
||
|
26A13002000
|
unkown
|
page read and write
|
||
|
26A12BB7000
|
unkown
|
page read and write
|
||
|
26A12308000
|
unkown
|
page read and write
|
||
|
26A12B7D000
|
unkown
|
page read and write
|
||
|
26A12B65000
|
unkown
|
page read and write
|
||
|
6E7517B000
|
stack
|
page read and write
|
||
|
26A12B6A000
|
unkown
|
page read and write
|
||
|
26A12B22000
|
unkown
|
page read and write
|
||
|
26A1224C000
|
unkown
|
page read and write
|
||
|
26A12289000
|
unkown
|
page read and write
|
||
|
19A47290000
|
unkown
|
page read and write
|
||
|
26A13002000
|
unkown
|
page read and write
|
||
|
26A12940000
|
remote allocation
|
page read and write
|
||
|
6E754FF000
|
stack
|
page read and write
|
||
|
26A12BAE000
|
unkown
|
page read and write
|
||
|
4A967FB000
|
stack
|
page read and write
|
||
|
19A47256000
|
unkown
|
page read and write
|
||
|
6FC15F8000
|
stack
|
page read and write
|
||
|
2A82AA50000
|
unkown
|
page read and write
|
||
|
6E74D2B000
|
stack
|
page read and write
|
||
|
2A82AA4B000
|
unkown
|
page read and write
|
||
|
2A82AA57000
|
unkown
|
page read and write
|
||
|
26A12940000
|
remote allocation
|
page read and write
|
||
|
26A122EC000
|
unkown
|
page read and write
|
||
|
4A9687E000
|
stack
|
page read and write
|
||
|
6E752FE000
|
stack
|
page read and write
|
||
|
29941C15000
|
heap
|
page read and write
|
||
|
4A963CE000
|
stack
|
page read and write
|
||
|
26A12B83000
|
unkown
|
page read and write
|
||
|
1E5893D0000
|
heap
|
page read and write
|
||
|
19A47283000
|
unkown
|
page read and write
|
||
|
26A122B2000
|
unkown
|
page read and write
|
||
|
26A12BA3000
|
unkown
|
page read and write
|
||
|
26A12284000
|
unkown
|
page read and write
|
||
|
1E589480000
|
unkown
|
page read and write
|
||
|
E2C7EFE000
|
stack
|
page read and write
|
||
|
299417F0000
|
heap
|
page read and write
|
||
|
299427C0000
|
trusted library allocation
|
page read and write
|
||
|
FF17A7B000
|
stack
|
page read and write
|
||
|
1EAF5010000
|
heap
|
page read and write
|
||
|
1E58948A000
|
unkown
|
page read and write
|
||
|
1EAF507F000
|
heap
|
page read and write
|
||
|
1E58944B000
|
unkown
|
page read and write
|
||
|
26A12200000
|
unkown
|
page read and write
|
||
|
FF174DC000
|
stack
|
page read and write
|
||
|
26A12BA6000
|
unkown
|
page read and write
|
||
|
26A12B88000
|
unkown
|
page read and write
|
||
|
2A82AA55000
|
unkown
|
page read and write
|
||
|
19A47229000
|
unkown
|
page read and write
|
||
|
1EAF5090000
|
heap
|
page read and write
|
||
|
26A12120000
|
heap
|
page read and write
|
||
|
299418A7000
|
heap
|
page read and write
|
||
|
19A47A02000
|
unkown
|
page read and write
|
||
|
2A82AA4C000
|
unkown
|
page read and write
|
||
|
1E58947F000
|
unkown
|
page read and write
|
||
|
2A82A810000
|
heap
|
page read and write
|
||
|
2A82AA70000
|
unkown
|
page read and write
|
||
|
6FC0BCB000
|
stack
|
page read and write
|
||
|
26A12271000
|
unkown
|
page read and write
|
||
|
26A12BC2000
|
unkown
|
page read and write
|
||
|
299418AF000
|
heap
|
page read and write
|
||
|
26A12B77000
|
unkown
|
page read and write
|
||
|
26A12B81000
|
unkown
|
page read and write
|
||
|
29941868000
|
heap
|
page read and write
|
||
|
26A122E0000
|
unkown
|
page read and write
|
||
|
26A1225C000
|
unkown
|
page read and write
|
||
|
26A13002000
|
unkown
|
page read and write
|
||
|
26A1225B000
|
unkown
|
page read and write
|
||
|
19A4727F000
|
unkown
|
page read and write
|
||
|
2A82AA5A000
|
unkown
|
page read and write
|
||
|
19A470B0000
|
heap
|
page read and write
|
||
|
26A12BA6000
|
unkown
|
page read and write
|
||
|
1EAF5077000
|
heap
|
page read and write
|
||
|
1E589453000
|
unkown
|
page read and write
|
||
|
2A82AA7F000
|
unkown
|
page read and write
|
||
|
26A12B6E000
|
unkown
|
page read and write
|
||
|
26A12B79000
|
unkown
|
page read and write
|
||
|
26A12B9E000
|
unkown
|
page read and write
|
||
|
26A12B89000
|
unkown
|
page read and write
|
||
|
CA4F47D000
|
stack
|
page read and write
|
||
|
29942500000
|
trusted library allocation
|
page read and write
|
||
|
26A122FA000
|
unkown
|
page read and write
|
||
|
FF175DE000
|
stack
|
page read and write
|
||
|
26A12BBF000
|
unkown
|
page read and write
|
||
|
1E589413000
|
unkown
|
page read and write
|
||
|
26A120C0000
|
heap
|
page read and write
|
||
|
26A12B77000
|
unkown
|
page read and write
|
||
|
19A4726E000
|
unkown
|
page read and write
|
||
|
26A122AB000
|
unkown
|
page read and write
|
||
|
26A12BA6000
|
unkown
|
page read and write
|
||
|
19A47264000
|
unkown
|
page read and write
|
||
|
6E756FE000
|
stack
|
page read and write
|
||
|
26A1225D000
|
unkown
|
page read and write
|
||
|
1EAF5015000
|
heap
|
page read and write
|
||
|
29942770000
|
trusted library allocation
|
page read and write
|
||
|
2A82AA4F000
|
unkown
|
page read and write
|
||
|
2A82AA90000
|
unkown
|
page read and write
|
||
|
19A4725C000
|
unkown
|
page read and write
|
||
|
19A47200000
|
unkown
|
page read and write
|
||
|
26A12B5C000
|
unkown
|
page read and write
|
||
|
6FC13FB000
|
stack
|
page read and write
|
||
|
1E589370000
|
heap
|
page read and write
|
||
|
4A96B7C000
|
stack
|
page read and write
|
||
|
1E589508000
|
unkown
|
page read and write
|
||
|
E2C7A7F000
|
stack
|
page read and write
|
||
|
19A47300000
|
unkown
|
page read and write
|
||
|
6FC177D000
|
stack
|
page read and write
|
||
|
26A12BA7000
|
unkown
|
page read and write
|
||
|
29941860000
|
heap
|
page read and write
|
||
|
26A12BBF000
|
unkown
|
page read and write
|
||
|
26A13063000
|
unkown
|
page read and write
|
||
|
29941A30000
|
heap
|
page read and write
|
||
|
1EAF5076000
|
heap
|
page read and write
|
||
|
26A120B0000
|
heap
|
page read and write
|
||
|
1E589400000
|
unkown
|
page read and write
|
||
|
6FC0EFE000
|
stack
|
page read and write
|
||
|
29941C19000
|
heap
|
page read and write
|
||
|
1E589448000
|
unkown
|
page read and write
|
||
|
2A82A7B0000
|
heap
|
page read and write
|
||
|
26A122E9000
|
unkown
|
page read and write
|
||
|
26A122A8000
|
unkown
|
page read and write
|
||
|
29942760000
|
trusted library allocation
|
page read and write
|
||
|
29941C20000
|
trusted library allocation
|
page read and write
|
||
|
26A13002000
|
unkown
|
page read and write
|
||
|
29942740000
|
trusted library allocation
|
page read and write
|
||
|
26A12B85000
|
unkown
|
page read and write
|
||
|
2A82AA13000
|
unkown
|
page read and write
|
||
|
1E58943C000
|
unkown
|
page read and write
|
||
|
E2C7BFC000
|
stack
|
page read and write
|
||
|
26A12BA6000
|
unkown
|
page read and write
|
||
|
2A82AA88000
|
unkown
|
page read and write
|
||
|
299418B0000
|
heap
|
page read and write
|
||
|
19A47308000
|
unkown
|
page read and write
|
||
|
E2C7DF7000
|
stack
|
page read and write
|
||
|
CA4EFCF000
|
stack
|
page read and write
|
||
|
26A12BC2000
|
unkown
|
page read and write
|
||
|
1E589502000
|
unkown
|
page read and write
|
||
|
6FC0E7F000
|
stack
|
page read and write
|
||
|
2A82AA4D000
|
unkown
|
page read and write
|
||
|
26A12B9F000
|
unkown
|
page read and write
|
||
|
1EAF508F000
|
heap
|
page read and write
|
||
|
4A96A7F000
|
stack
|
page read and write
|
||
|
26A12B9E000
|
unkown
|
page read and write
|
||
|
26A12B9C000
|
unkown
|
page read and write
|
||
|
26A12B9E000
|
unkown
|
page read and write
|
||
|
E2C7AFF000
|
stack
|
page read and write
|
||
|
2A82AB02000
|
unkown
|
page read and write
|
||
|
26A122EB000
|
unkown
|
page read and write
|
||
|
2A82AB13000
|
unkown
|
page read and write
|
||
|
6FC14FC000
|
stack
|
page read and write
|
||
|
26A13100000
|
unkown
|
page read and write
|
||
|
19A4726E000
|
unkown
|
page read and write
|
||
|
26A12258000
|
unkown
|
page read and write
|
||
|
29942750000
|
heap
|
page readonly
|
||
|
1EAF4F80000
|
heap
|
page read and write
|
||
|
2A82B002000
|
unkown
|
page read and write
|
||
|
29942480000
|
trusted library allocation
|
page read and write
|
||
|
6E753F7000
|
stack
|
page read and write
|
||
|
26A12BA4000
|
unkown
|
page read and write
|
||
|
26A12229000
|
unkown
|
page read and write
|
||
|
19A47227000
|
unkown
|
page read and write
|
||
|
FF1755D000
|
stack
|
page read and write
|
||
|
26A12BC5000
|
unkown
|
page read and write
|
||
|
19A47880000
|
unkown
|
page read and write
|
||
|
2A82AB00000
|
unkown
|
page read and write
|
||
|
2A82AA3C000
|
unkown
|
page read and write
|
||
|
26A12880000
|
unkown
|
page read and write
|
||
|
19A4725A000
|
unkown
|
page read and write
|
||
|
26A12B5C000
|
unkown
|
page read and write
|
||
|
6E7527B000
|
stack
|
page read and write
|
||
|
26A12B81000
|
unkown
|
page read and write
|
||
|
26A12B77000
|
unkown
|
page read and write
|
||
|
26A1224D000
|
unkown
|
page read and write
|
||
|
2A82AA47000
|
unkown
|
page read and write
|
||
|
1EAF4E30000
|
heap
|
page read and write
|
||
|
26A12316000
|
unkown
|
page read and write
|
||
|
FF1787E000
|
stack
|
page read and write
|
||
|
26A122C6000
|
unkown
|
page read and write
|
||
|
26A12B79000
|
unkown
|
page read and write
|
||
|
26A12BD4000
|
unkown
|
page read and write
|
||
|
26A12213000
|
unkown
|
page read and write
|
||
|
1EAF5061000
|
heap
|
page read and write
|
||
|
26A12B77000
|
unkown
|
page read and write
|
||
|
29942490000
|
trusted library allocation
|
page read and write
|
||
|
FF178F9000
|
stack
|
page read and write
|
||
|
26A12B7A000
|
unkown
|
page read and write
|
||
|
26A12255000
|
unkown
|
page read and write
|
||
|
26A13102000
|
unkown
|
page read and write
|
||
|
2A82A7A0000
|
heap
|
page read and write
|
||
|
6FC12FF000
|
stack
|
page read and write
|
||
|
1E589500000
|
unkown
|
page read and write
|
||
|
19A47120000
|
heap
|
page read and write
|
||
|
26A12B77000
|
unkown
|
page read and write
|
||
|
6E74DAE000
|
stack
|
page read and write
|
||
|
1E589C02000
|
unkown
|
page read and write
|
There are 283 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
http://icw4fpi.shoppersemporium.co.za/$%*wOUMiMygtsTOxZwKDP8r23sruyndFz6U10MNe6zI942CaYMwgWZjaVDtm9lFHKetbnohFDRDddelQ6ospehRQVnS7YRClwubbvV2w/rbyYMcpcPYv1g5VSMtadT7nTPVVNkQUpVa3PVSN3D2IoHr3cWziJmmhAt9JEvtIunRp6LCweRdf9WZ4HA16m490rC4AdhpYCosYT/@*&%5E-ALP9TAat34UiNQJhwuEYkhSX9DOM5WA47vYwTttjW6WTnsqEJKZCAd5VzRpD5hHOf02yVhbaVnt7CUxBoSft3e9tX160pZajcPFi/?alt=media&token=eceadc54-a951-44b8-ae51-18aaf8c8e92f&MWAEIhVUo2MGOoP0UFo56yN4mtdp2cEG8jZDScSQPb5FbjoDg2=buydoaQLKpWwCMzgiwTQ&email=ajones@tiofi.com.au&PmuqYRrWt41vsKzulcgtaqyLq1cZ7XuM5NIwEWecSgYcF4ivMdtU8szO9udpXtIbVkHwrndAYo9QGa6V5KdLJOagow4bY1nGaXwt#mail/u/2/#inboxnfuiqbN4Ch6Qt621iDW0uu2mE5SlPHGWI9c10vC3C1dyRR4G8U350EEDjyn12s5hDXPs7G6viQnm5A07lJkCKWoc7coByubKmUpV8BzQF19aEED1wG3uo3RSvuIsfs9T8G8y1CWbcQLhaZPu738LZA7i0DNJxnzS70Gf99MpPeifceK1LKwF7vfv4KXXUJz0nHAUiYQG&email=&I6U2rHcxIfnRRuwcVZJhWRbEGFIFDbQD1ezRqoR8bilVkq1nglIvuUMriFKBbDbqCY238V3ih4cZtprydVGXx6CxFXINJKpWfbsdiMytdtEJ1qyIammIhwUFuiLkD800mH3f2aE338ST0YIGCUOy2sW5cNrKW1JzuGNV2hrb0VI1Pe1BWK058NUlLbqppmIiEEMc82Tg=kGFDtiqdlpmMwntAuRYCTpAEKBEzrjCsuIeyGc2RCPlRgxiqKi5pzlgdkNtJtKssTaWOXJVIq4temgPP30uOzRQfZEdoySN4EtgQtpNb1j2InsnabYRdFTbOls4bdLQaEGgcfxirhFryv3cF7l5J8OZbAzlUQ4grD2BHTc44q4trNyQX9lKQ3ymTCwFM7cVYJVNzu3Pa
|
|