Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Secure_Message_81.90.a1.00.00.htm
|
HTML document, ASCII text, with very long lines, with CRLF line terminators
|
initial sample
|
 |
|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\1127a76a-6480-46d3-9d18-9cba03957ed4.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\29b48173-2dcf-4d35-80b2-42cb4e945da4.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\30b1a39c-4be6-4379-b0bb-41c0f41d4b1c.tmp
|
SysEx File -
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\55baab2f-fbec-4259-ac43-1de07f1b7f39.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\77897c08-97d2-4ffd-aa18-9ddd1a3adf84.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\9b773131-639d-476d-819f-542533897fd9.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\0e8a3286-5e75-4bbb-a510-46e4827aba6e.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1cc8b7ec-0155-4309-a718-74822d968468.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\21387c9e-6076-47c6-8a39-45905cce7e3c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3acd6c45-0883-4fba-96a2-4eae1ff2341a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\4ac1869f-fc0a-4b6e-bf07-5cb20ab8f540.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\606e814f-2428-4a88-914e-a71c6b14bb0a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\84499677-7915-4b51-b3bb-0a061fd6a014.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.oldB (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old. (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old. (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old. (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.oldmp (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session p (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last TabsG (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent StateAZ (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.oldr: (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences\ (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences. (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences7. (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure PreferencesTM (copy)
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.oldt)
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\dda83330-eebe-4e92-bbc2-5112a9aa3742.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\16fa4aec-8c86-4a44-b979-cb7dd68c0be6.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
Statee6 (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.olde/
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old.. (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.oldpt
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a647cfad-74dc-415b-988f-c76a5450073c.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a6604f4a-7af7-41e7-a14e-fed2731c785c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c0b27b3d-df26-410e-9f41-6abf8be8f046.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ca74ca9b-156d-43bf-9c5c-cec72e479c91.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old0 (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f839b00e-70f6-44d6-9f99-52bc4e92f854.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.oldO (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local Statel (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local Staten (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache\s (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cachejs (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Caches (copy)
|
SysEx File -
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\b761b625-de82-468d-834e-e70f17b28271.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\c0b42b18-bd1a-4e67-ab45-577a476e896d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\cb04fd91-20bf-4769-b01c-100a61478f9a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\d998e532-aa2a-4b6c-a6ea-f26723b8ffeb.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\ed89ce5b-47a5-40af-b2c4-637e4f8b4170.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\2db319f4-fbd9-4713-97b4-67cde4390b5b.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\54ce1dab-a3cd-43db-94fb-39a52264a346.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_1484059368\LICENSE
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_1484059368\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_1484059368\crl-set
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_1484059368\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_1484059368\manifest.json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_933038738\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_933038738\_platform_specific\x86_64\pnacl_public_pnacl_json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_933038738\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_933038738\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_933038738\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_933038738\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=7511538a3a6a0b862c772eace49075ed1bbe2377,
stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_933038738\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_933038738\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_933038738\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_933038738\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_933038738\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=309d6d3d463e6b1b0690f39eb226b1e4c469b2ce,
stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_933038738\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_sz_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=4b15de4ab227d5e46213978b8518d53c53ce1db9,
stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_933038738\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6516_933038738\manifest.json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\8a8a1b16-ba9d-44fc-9f7e-4cc9310135db.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\f1a9ea3d-893c-40ec-b5a6-b0196df82691.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\2db319f4-fbd9-4713-97b4-67cde4390b5b.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_1192902023\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\8a8a1b16-ba9d-44fc-9f7e-4cc9310135db.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\iw\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\angular.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\background_script.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\cast_sender.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\common.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\feedback.css
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\feedback.html
|
HTML document, ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\feedback_script.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\material_css_min.css
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\mirroring_cast_streaming.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\mirroring_common.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\mirroring_hangouts.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6516_270104939\CRX_INSTALL\mirroring_webrtc.js
|
ASCII text, with very long lines
|
dropped
|
There are 254 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "C:\Users\user\Desktop\Secure_Message_81.90.a1.00.00.htm
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1572,17830205695343214726,1954334155840484969,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1916 /prefetch:8
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
file:///C:/Users/user/Desktop/Secure_Message_81.90.a1.00.00.htm
|
|
||
|
https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js
|
104.18.10.207
|
||
|
https://login.microsoftonline.com/logout.srf?ct=1548343592&rver=64.4.6456.0&lc=1033&id=501392
|
|||
|
https://apis.google.com/js/client.js
|
unknown
|
||
|
https://aadcdn.msauth.net/ests/2.1/content/cdnbundles/aad.login.min_ktc4wemsewhydsbdjhhsja2.js
|
unknown
|
||
|
https://www.google.com/images/cleardot.gif
|
unknown
|
||
|
https://play.google.com
|
unknown
|
||
|
https://aadcdn.msauth.net/shared/1.0/content/images/personal_account_0f72b5950600f24e7f9a604b186f394
|
unknown
|
||
|
https://aadcdn.msauth.net/shared/1.0/content/images/work_account_1963c6b1926b773986f53f844ce4c32e.pn
|
unknown
|
||
|
https://crash.corp.google.com/samples?reportid=&q=
|
unknown
|
||
|
https://www.google.com/log?format=json&hasfast=true
|
unknown
|
||
|
https://www.flottechllc.com/la/ba.PNG
|
185.141.25.244
|
||
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
|
unknown
|
||
|
https://accounts.google.com/MergeSession
|
unknown
|
||
|
https://preprod-hangouts-googleapis.sandbox.google.com
|
unknown
|
||
|
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
|
142.250.203.97
|
||
|
https://logincdn.msauth.net/16.000.28543.10/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
|
192.229.221.185
|
||
|
https://www.google.com
|
unknown
|
||
|
https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.bundle.min.js
|
104.18.10.207
|
||
|
https://hangouts.clients6.google.com
|
unknown
|
||
|
https://meet.google.com
|
unknown
|
||
|
https://hangouts.google.com/hangouts/_/logpref
|
unknown
|
||
|
https://logincdn.msauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d
|
unknown
|
||
|
https://logincdn.msauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg
|
192.229.221.185
|
||
|
https://accounts.google.com
|
unknown
|
||
|
https://clients2.google.com/cr/report
|
unknown
|
||
|
http://angularjs.org
|
unknown
|
||
|
https://a.nel.cloudflare.com/report/v3?s=XN%2BVyKRIe7CDHo9%2FR3MLAF7HcA64JNDSbWLLD8PNn2NFtRp1xiG3sHm
|
unknown
|
||
|
https://login.microsoftonline.com/logout.srf?ct=1548343592&rver=64.4.6456.0&lc=1033&id=501392
|
unknown
|
||
|
https://cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.jsM
|
unknown
|
||
|
https://creativecommons.org/publicdomain/zero/1.0/.
|
unknown
|
||
|
https://github.com/angular/material
|
unknown
|
||
|
https://apis.google.com
|
unknown
|
||
|
https://aadcdn.msauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_kfhrfyfy-sm2tmkm5ficcw2
|
unknown
|
||
|
https://aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2_7916a894ebde7d29c2cc29b267f1299f.j
|
unknown
|
||
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
||
|
https://github.com/madler/zlib/blob/master/zlib.h
|
unknown
|
||
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
||
|
https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers
|
unknown
|
||
|
https://clients2.google.com
|
unknown
|
||
|
https://www.google.com/tools/feedback
|
unknown
|
||
|
https://logincdn.msauth.net/16.000/Converged_v22057_egJPTAx_byK-yF_CMCKFeg2.css
|
192.229.221.185
|
||
|
http://www.apache.org/licenses/LICENSE-2.0
|
unknown
|
||
|
https://dns.google
|
unknown
|
||
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
||
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
||
|
https://ogs.google.com
|
unknown
|
||
|
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
||
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
|
unknown
|
||
|
https://logincdn.msauth.net/shared/1.0/content/images/arrow_left_a9cc2824ef3517b6c4160dcf8ff7d410.sv
|
unknown
|
||
|
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
142.250.203.110
|
||
|
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
172.217.168.45
|
||
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
https://www.google.com;
|
unknown
|
||
|
https://aadcdn.msauth.net/ests/2.1/content/cdnbundles/jquery.3.5.min_dc940oomzau4rsu8qesnvg2.js
|
unknown
|
||
|
https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
|
unknown
|
||
|
https://hangouts.google.com/
|
unknown
|
||
|
https://stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
|
104.18.10.207
|
||
|
https://csp.withgoogle.com/csp/hosted-libraries-pushers
|
unknown
|
||
|
https://www.google.com/images/x2.gif
|
unknown
|
||
|
https://www.flottechllc.com
|
unknown
|
||
|
https://aadcdn.msauth.net/ests/2.1/content/images/microsoft_logo.png
|
unknown
|
||
|
http://llvm.org/):
|
unknown
|
||
|
https://www.google.com/images/dot2.gif
|
unknown
|
||
|
https://meetings.clients6.google.com
|
unknown
|
||
|
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
||
|
https://logincdn.msauth.net/shared/1.0/content/images/arrow_left_a9cc2824ef3517b6c4160dcf8ff7d410.svg
|
192.229.221.185
|
||
|
https://code.google.com/p/nativeclient/issues/entry%s:
|
unknown
|
||
|
https://identity.nel.measure.office.net/api/report?catId=GW
|
unknown
|
||
|
http://tools.ietf.org/html/rfc1950
|
unknown
|
||
|
https://logincdn.msauth.net/16.000.28543.10/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc1937
|
unknown
|
||
|
https://code.google.com/p/nativeclient/issues/entry
|
unknown
|
||
|
https://csp.withgoogle.com/csp/hosted-libraries-pushersCross-Origin-Resource-Policy:
|
unknown
|
||
|
https://support.google.com/chromecast/answer/2998456
|
unknown
|
||
|
https://aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2-small_e58aafc980614a9cd7796bea7b5e
|
unknown
|
||
|
https://clients2.googleusercontent.com
|
unknown
|
||
|
https://cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js
|
104.16.19.94
|
||
|
https://docs.google.com
|
unknown
|
||
|
https://www.google.com/
|
unknown
|
||
|
https://feedback.googleusercontent.com
|
unknown
|
||
|
https://chromium.googlesource.com/a/native_client/pnacl-clang.git
|
unknown
|
||
|
https://clients2.google.com/service/update2/crx
|
unknown
|
||
|
https://clients6.google.com
|
unknown
|
There are 74 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
stackpath.bootstrapcdn.com
|
104.18.10.207
|
||
|
cs1100.wpc.omegacdn.net
|
152.199.23.37
|
||
|
accounts.google.com
|
172.217.168.45
|
||
|
cdnjs.cloudflare.com
|
104.16.19.94
|
||
|
flottechllc.com
|
185.141.25.244
|
||
|
cs1227.wpc.alphacdn.net
|
192.229.221.185
|
||
|
clients.l.google.com
|
142.250.203.110
|
||
|
googlehosted.l.googleusercontent.com
|
142.250.203.97
|
||
|
logincdn.msauth.net
|
unknown
|
||
|
clients2.googleusercontent.com
|
unknown
|
||
|
clients2.google.com
|
unknown
|
||
|
www.flottechllc.com
|
unknown
|
||
|
aadcdn.msftauth.net
|
unknown
|
||
|
login.microsoftonline.com
|
unknown
|
||
|
aadcdn.msauth.net
|
unknown
|
There are 5 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.168.2.1
|
unknown
|
unknown
|
||
|
104.18.10.207
|
stackpath.bootstrapcdn.com
|
United States
|
||
|
142.250.203.110
|
clients.l.google.com
|
United States
|
||
|
172.217.168.45
|
accounts.google.com
|
United States
|
||
|
142.250.203.97
|
googlehosted.l.googleusercontent.com
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
192.229.221.185
|
cs1227.wpc.alphacdn.net
|
United States
|
||
|
185.141.25.244
|
flottechllc.com
|
Netherlands
|
||
|
104.16.19.94
|
cdnjs.cloudflare.com
|
United States
|
||
|
127.0.0.1
|
unknown
|
unknown
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
There are 35 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
289A1502000
|
unkown
|
page read and write
|
||
|
289A1413000
|
unkown
|
page read and write
|
||
|
7159AFB000
|
stack
|
page read and write
|
||
|
26880161000
|
heap
|
page read and write
|
||
|
15E4C254000
|
unkown
|
page read and write
|
||
|
16CF3200000
|
unkown
|
page read and write
|
||
|
1934A002000
|
unkown
|
page read and write
|
||
|
1DFF8A02000
|
unkown
|
page read and write
|
||
|
10B8E7F000
|
stack
|
page read and write
|
||
|
1DFF6DC0000
|
trusted library allocation
|
page read and write
|
||
|
21DDCA4E000
|
unkown
|
page read and write
|
||
|
289A2202000
|
unkown
|
page read and write
|
||
|
F65D1FE000
|
stack
|
page read and write
|
||
|
15E4C251000
|
unkown
|
page read and write
|
||
|
292477E000
|
stack
|
page read and write
|
||
|
289A1BA0000
|
remote allocation
|
page read and write
|
||
|
289A1D9D000
|
unkown
|
page read and write
|
||
|
26880166000
|
heap
|
page read and write
|
||
|
289A1D8F000
|
unkown
|
page read and write
|
||
|
289A1DA8000
|
unkown
|
page read and write
|
||
|
289A1C02000
|
unkown
|
page read and write
|
||
|
289A1DA0000
|
unkown
|
page read and write
|
||
|
1DFF6E47000
|
unkown
|
page read and write
|
||
|
2688017F000
|
heap
|
page read and write
|
||
|
2688017F000
|
heap
|
page read and write
|
||
|
21DDCA70000
|
unkown
|
page read and write
|
||
|
21A00828000
|
unkown
|
page read and write
|
||
|
21A00800000
|
unkown
|
page read and write
|
||
|
22CFCFB000
|
stack
|
page read and write
|
||
|
25B192D0000
|
heap
|
page read and write
|
||
|
1DFF8870000
|
trusted library allocation
|
page read and write
|
||
|
1DFF6E48000
|
unkown
|
page read and write
|
||
|
1EE7043D000
|
unkown
|
page read and write
|
||
|
25B19710000
|
heap
|
page read and write
|
||
|
1E9BCFC000
|
stack
|
page read and write
|
||
|
289A2300000
|
unkown
|
page read and write
|
||
|
22CFEFE000
|
stack
|
page read and write
|
||
|
21DDCA29000
|
unkown
|
page read and write
|
||
|
289A1D8E000
|
unkown
|
page read and write
|
||
|
19349840000
|
unkown
|
page read and write
|
||
|
1DFF6E48000
|
unkown
|
page read and write
|
||
|
15E4C0C0000
|
heap
|
page read and write
|
||
|
1DFF6F13000
|
unkown
|
page read and write
|
||
|
5B5E77F000
|
stack
|
page read and write
|
||
|
21DDCA00000
|
unkown
|
page read and write
|
||
|
1DFF6F00000
|
unkown
|
page read and write
|
||
|
D97C7FF000
|
stack
|
page read and write
|
||
|
193498CC000
|
unkown
|
page read and write
|
||
|
15E4C213000
|
unkown
|
page read and write
|
||
|
1DFF6F02000
|
unkown
|
page read and write
|
||
|
25B192E0000
|
trusted library allocation
|
page read and write
|
||
|
289A1508000
|
unkown
|
page read and write
|
||
|
D97CAFE000
|
stack
|
page read and write
|
||
|
26880130000
|
heap
|
page read and write
|
||
|
8E34FFE000
|
stack
|
page read and write
|
||
|
21DDCA50000
|
unkown
|
page read and write
|
||
|
268803E5000
|
heap
|
page read and write
|
||
|
1E9BDFE000
|
stack
|
page read and write
|
||
|
F65CE7F000
|
stack
|
page read and write
|
||
|
1DFF6E00000
|
unkown
|
page read and write
|
||
|
D97C27C000
|
stack
|
page read and write
|
||
|
E71B6FB000
|
stack
|
page read and write
|
||
|
25B1A250000
|
trusted library allocation
|
page read and write
|
||
|
21A007F0000
|
heap
|
page read and write
|
||
|
10B88FF000
|
stack
|
page read and write
|
||
|
1934A100000
|
unkown
|
page read and write
|
||
|
2924A7B000
|
stack
|
page read and write
|
||
|
1DFF6D70000
|
unkown
|
page read and write
|
||
|
1E9BEFD000
|
stack
|
page read and write
|
||
|
E71B8FC000
|
stack
|
page read and write
|
||
|
7159BFE000
|
stack
|
page read and write
|
||
|
289A1BA0000
|
remote allocation
|
page read and write
|
||
|
E71B7FF000
|
stack
|
page read and write
|
||
|
8E34B6A000
|
stack
|
page read and write
|
||
|
21DDCA54000
|
unkown
|
page read and write
|
||
|
A3C73EE000
|
stack
|
page read and write
|
||
|
16CF324B000
|
unkown
|
page read and write
|
||
|
15E4C27B000
|
unkown
|
page read and write
|
||
|
25B19360000
|
heap
|
page read and write
|
||
|
289A1D94000
|
unkown
|
page read and write
|
||
|
25B19FD0000
|
trusted library allocation
|
page read and write
|
||
|
1A04EE02000
|
unkown
|
page read and write
|
||
|
25B1A230000
|
heap
|
page readonly
|
||
|
1A04E702000
|
unkown
|
page read and write
|
||
|
25B193AB000
|
heap
|
page read and write
|
||
|
1EE7045E000
|
unkown
|
page read and write
|
||
|
1A04E621000
|
unkown
|
page read and write
|
||
|
289A1D8B000
|
unkown
|
page read and write
|
||
|
289A2202000
|
unkown
|
page read and write
|
||
|
F65CFF9000
|
stack
|
page read and write
|
||
|
15E4C24E000
|
unkown
|
page read and write
|
||
|
DC7C977000
|
stack
|
page read and write
|
||
|
1A04E658000
|
unkown
|
page read and write
|
||
|
289A1513000
|
unkown
|
page read and write
|
||
|
5B5E87E000
|
stack
|
page read and write
|
||
|
19349889000
|
unkown
|
page read and write
|
||
|
E71B2CB000
|
stack
|
page read and write
|
||
|
289A14F9000
|
unkown
|
page read and write
|
||
|
5B5EA7E000
|
stack
|
page read and write
|
||
|
19349913000
|
unkown
|
page read and write
|
||
|
193498C5000
|
unkown
|
page read and write
|
||
|
289A1D8E000
|
unkown
|
page read and write
|
||
|
1EE70413000
|
unkown
|
page read and write
|
||
|
16CF30B0000
|
heap
|
page read and write
|
||
|
16CF324D000
|
unkown
|
page read and write
|
||
|
16CF3313000
|
unkown
|
page read and write
|
||
|
1DFF88F0000
|
remote allocation
|
page read and write
|
||
|
DC7C3FF000
|
stack
|
page read and write
|
||
|
289A2202000
|
unkown
|
page read and write
|
||
|
289A14EE000
|
unkown
|
page read and write
|
||
|
1DFF6CD0000
|
heap
|
page read and write
|
||
|
289A1D92000
|
unkown
|
page read and write
|
||
|
22CFDF7000
|
stack
|
page read and write
|
||
|
1DFF6E02000
|
unkown
|
page read and write
|
||
|
289A143C000
|
unkown
|
page read and write
|
||
|
16CF328B000
|
unkown
|
page read and write
|
||
|
E71BCFE000
|
stack
|
page read and write
|
||
|
10B8B7B000
|
stack
|
page read and write
|
||
|
15E4C308000
|
unkown
|
page read and write
|
||
|
1EE7047E000
|
unkown
|
page read and write
|
||
|
21DDCA3C000
|
unkown
|
page read and write
|
||
|
1934986D000
|
unkown
|
page read and write
|
||
|
1DFF6E64000
|
unkown
|
page read and write
|
||
|
1EE7046A000
|
unkown
|
page read and write
|
||
|
16CF3256000
|
unkown
|
page read and write
|
||
|
289A1D12000
|
unkown
|
page read and write
|
||
|
289A1380000
|
heap
|
page read and write
|
||
|
5B5E37F000
|
stack
|
page read and write
|
||
|
1DFF88F0000
|
remote allocation
|
page read and write
|
||
|
21DDCA88000
|
unkown
|
page read and write
|
||
|
1DFF6E2A000
|
unkown
|
page read and write
|
||
|
289A1D80000
|
unkown
|
page read and write
|
||
|
1EE70485000
|
unkown
|
page read and write
|
||
|
22CFA7E000
|
stack
|
page read and write
|
||
|
289A1D91000
|
unkown
|
page read and write
|
||
|
22691E00000
|
unkown
|
page read and write
|
||
|
1A04E602000
|
unkown
|
page read and write
|
||
|
1EE702B0000
|
heap
|
page read and write
|
||
|
289A1DA0000
|
unkown
|
page read and write
|
||
|
289A1D9D000
|
unkown
|
page read and write
|
||
|
289A1DA2000
|
unkown
|
page read and write
|
||
|
1EE7047C000
|
unkown
|
page read and write
|
||
|
1EE70400000
|
unkown
|
page read and write
|
||
|
19349829000
|
unkown
|
page read and write
|
||
|
1A04ECA0000
|
remote allocation
|
page read and write
|
||
|
F65CBAC000
|
stack
|
page read and write
|
||
|
289A14D0000
|
unkown
|
page read and write
|
||
|
289A1DD2000
|
unkown
|
page read and write
|
||
|
1DFF6E13000
|
unkown
|
page read and write
|
||
|
289A1BA0000
|
remote allocation
|
page read and write
|
||
|
289A2202000
|
unkown
|
page read and write
|
||
|
289A1D7B000
|
unkown
|
page read and write
|
||
|
1EE70458000
|
unkown
|
page read and write
|
||
|
21DDCA13000
|
unkown
|
page read and write
|
||
|
289A1D80000
|
unkown
|
page read and write
|
||
|
DC7C37B000
|
stack
|
page read and write
|
||
|
289A1D69000
|
unkown
|
page read and write
|
||
|
19349650000
|
heap
|
page read and write
|
||
|
1EE70250000
|
heap
|
page read and write
|
||
|
1EE70C02000
|
unkown
|
page read and write
|
||
|
1A04E640000
|
unkown
|
page read and write
|
||
|
289A1D4C000
|
unkown
|
page read and write
|
||
|
25B19F60000
|
trusted library allocation
|
page read and write
|
||
|
1EE70461000
|
unkown
|
page read and write
|
||
|
21A0083E000
|
unkown
|
page read and write
|
||
|
16CF3A02000
|
unkown
|
page read and write
|
||
|
289A1D94000
|
unkown
|
page read and write
|
||
|
289A1D9D000
|
unkown
|
page read and write
|
||
|
16CF3213000
|
unkown
|
page read and write
|
||
|
D97C37B000
|
stack
|
page read and write
|
||
|
25B1A2A0000
|
trusted library allocation
|
page read and write
|
||
|
1EE70429000
|
unkown
|
page read and write
|
||
|
289A1320000
|
heap
|
page read and write
|
||
|
289A1450000
|
unkown
|
page read and write
|
||
|
21A00790000
|
heap
|
page read and write
|
||
|
193495E0000
|
heap
|
page read and write
|
||
|
1DFF6D90000
|
trusted library allocation
|
page read and write
|
||
|
15E4C256000
|
unkown
|
page read and write
|
||
|
289A1D96000
|
unkown
|
page read and write
|
||
|
22691E26000
|
unkown
|
page read and write
|
||
|
21A00900000
|
unkown
|
page read and write
|
||
|
289A1DC0000
|
unkown
|
page read and write
|
||
|
1EE70475000
|
unkown
|
page read and write
|
||
|
22691E3D000
|
unkown
|
page read and write
|
||
|
15E4C255000
|
unkown
|
page read and write
|
||
|
26880177000
|
heap
|
page read and write
|
||
|
15E4C302000
|
unkown
|
page read and write
|
||
|
21DDCA49000
|
unkown
|
page read and write
|
||
|
1E9B7FB000
|
stack
|
page read and write
|
||
|
21A00868000
|
unkown
|
page read and write
|
||
|
289A1D7C000
|
unkown
|
page read and write
|
||
|
289A1D57000
|
unkown
|
page read and write
|
||
|
22691E67000
|
unkown
|
page read and write
|
||
|
10B887B000
|
stack
|
page read and write
|
||
|
289A2200000
|
unkown
|
page read and write
|
||
|
289A1DCF000
|
unkown
|
page read and write
|
||
|
1EE70445000
|
unkown
|
page read and write
|
||
|
15E4C253000
|
unkown
|
page read and write
|
||
|
21DDCA55000
|
unkown
|
page read and write
|
||
|
292497C000
|
stack
|
page read and write
|
||
|
1EE70502000
|
unkown
|
page read and write
|
||
|
289A1D8C000
|
unkown
|
page read and write
|
||
|
1DFF6F29000
|
unkown
|
page read and write
|
||
|
21DDCA7D000
|
unkown
|
page read and write
|
||
|
1EE70462000
|
unkown
|
page read and write
|
||
|
289A1D91000
|
unkown
|
page read and write
|
||
|
16CF3249000
|
unkown
|
page read and write
|
||
|
1EE70465000
|
unkown
|
page read and write
|
||
|
289A1D8C000
|
unkown
|
page read and write
|
||
|
1EE70447000
|
unkown
|
page read and write
|
||
|
15E4C24B000
|
unkown
|
page read and write
|
||
|
19349885000
|
unkown
|
page read and write
|
||
|
1EE70460000
|
unkown
|
page read and write
|
||
|
DC7CB7E000
|
stack
|
page read and write
|
||
|
289A1D9B000
|
unkown
|
page read and write
|
||
|
16CF324A000
|
unkown
|
page read and write
|
||
|
21A00864000
|
unkown
|
page read and write
|
||
|
289A1466000
|
unkown
|
page read and write
|
||
|
21DDC990000
|
unkown
|
page read and write
|
||
|
2688017F000
|
heap
|
page read and write
|
||
|
21DDCA53000
|
unkown
|
page read and write
|
||
|
289A1D99000
|
unkown
|
page read and write
|
||
|
289A1D10000
|
unkown
|
page read and write
|
||
|
DC7C77C000
|
stack
|
page read and write
|
||
|
A3C77FE000
|
stack
|
page read and write
|
||
|
22691F02000
|
unkown
|
page read and write
|
||
|
289A1D60000
|
unkown
|
page read and write
|
||
|
289A1D95000
|
unkown
|
page read and write
|
||
|
E71BBFF000
|
stack
|
page read and write
|
||
|
289A1481000
|
unkown
|
page read and write
|
||
|
289A14D7000
|
unkown
|
page read and write
|
||
|
F65CEFE000
|
stack
|
page read and write
|
||
|
22CFBFC000
|
stack
|
page read and write
|
||
|
289A1DA5000
|
unkown
|
page read and write
|
||
|
1EE70476000
|
unkown
|
page read and write
|
||
|
289A1DA2000
|
unkown
|
page read and write
|
||
|
1EE70457000
|
unkown
|
page read and write
|
||
|
289A1D73000
|
unkown
|
page read and write
|
||
|
22CFFFE000
|
stack
|
page read and write
|
||
|
10B8C77000
|
stack
|
page read and write
|
||
|
25B193AB000
|
heap
|
page read and write
|
||
|
289A1DA8000
|
unkown
|
page read and write
|
||
|
1A04EC70000
|
unkown
|
page read and write
|
||
|
193498BB000
|
unkown
|
page read and write
|
||
|
22691C80000
|
heap
|
page read and write
|
||
|
289A1DA6000
|
unkown
|
page read and write
|
||
|
1A04ECA0000
|
remote allocation
|
page read and write
|
||
|
5B5E17C000
|
stack
|
page read and write
|
||
|
289A1D7C000
|
unkown
|
page read and write
|
||
|
1DFF6D40000
|
heap
|
page read and write
|
||
|
289A13B0000
|
unkown
|
page read and write
|
||
|
289A1D9B000
|
unkown
|
page read and write
|
||
|
289A1D82000
|
unkown
|
page read and write
|
||
|
1DFF6E57000
|
unkown
|
page read and write
|
||
|
289A1D9B000
|
unkown
|
page read and write
|
||
|
1A04E4A0000
|
heap
|
page read and write
|
||
|
21A00879000
|
unkown
|
page read and write
|
||
|
A3C7AFE000
|
stack
|
page read and write
|
||
|
1EE70441000
|
unkown
|
page read and write
|
||
|
16CF327C000
|
unkown
|
page read and write
|
||
|
289A2263000
|
unkown
|
page read and write
|
||
|
D97C9FB000
|
stack
|
page read and write
|
||
|
21DDCB00000
|
unkown
|
page read and write
|
||
|
289A1467000
|
unkown
|
page read and write
|
||
|
21DDCA4B000
|
unkown
|
page read and write
|
||
|
71595CB000
|
stack
|
page read and write
|
||
|
1EE70463000
|
unkown
|
page read and write
|
||
|
10B897F000
|
stack
|
page read and write
|
||
|
289A142E000
|
unkown
|
page read and write
|
||
|
289A1D8E000
|
unkown
|
page read and write
|
||
|
7159DFB000
|
stack
|
page read and write
|
||
|
16CF3202000
|
unkown
|
page read and write
|
||
|
8E34BEF000
|
stack
|
page read and write
|
||
|
16CF324E000
|
unkown
|
page read and write
|
||
|
A3C736B000
|
stack
|
page read and write
|
||
|
22691E78000
|
unkown
|
page read and write
|
||
|
25B193AB000
|
heap
|
page read and write
|
||
|
289A1DB1000
|
unkown
|
page read and write
|
||
|
21DDC820000
|
heap
|
page read and write
|
||
|
21DDCB13000
|
unkown
|
page read and write
|
||
|
15E4C249000
|
unkown
|
page read and write
|
||
|
289A1DB9000
|
unkown
|
page read and write
|
||
|
22691E5B000
|
unkown
|
page read and write
|
||
|
289A1D60000
|
unkown
|
page read and write
|
||
|
289A1D86000
|
unkown
|
page read and write
|
||
|
22691E29000
|
unkown
|
page read and write
|
||
|
D97C8FD000
|
stack
|
page read and write
|
||
|
19349750000
|
unkown
|
page read and write
|
||
|
D97C578000
|
stack
|
page read and write
|
||
|
268800B0000
|
heap
|
page read and write
|
||
|
5B5DD3B000
|
stack
|
page read and write
|
||
|
5B5E97D000
|
stack
|
page read and write
|
||
|
289A1516000
|
unkown
|
page read and write
|
||
|
289A1D94000
|
unkown
|
page read and write
|
||
|
16CF3308000
|
unkown
|
page read and write
|
||
|
D97C07B000
|
stack
|
page read and write
|
||
|
21DDCA47000
|
unkown
|
page read and write
|
||
|
289A144C000
|
unkown
|
page read and write
|
||
|
22CF7BB000
|
stack
|
page read and write
|
||
|
1A04E62A000
|
unkown
|
page read and write
|
||
|
16CF3229000
|
unkown
|
page read and write
|
||
|
21DDC830000
|
heap
|
page read and write
|
||
|
21DDCA7A000
|
unkown
|
page read and write
|
||
|
21A00913000
|
unkown
|
page read and write
|
||
|
A3C767E000
|
stack
|
page read and write
|
||
|
1EE70431000
|
unkown
|
page read and write
|
||
|
8E34F79000
|
stack
|
page read and write
|
||
|
289A1DA2000
|
unkown
|
page read and write
|
||
|
15E4CA02000
|
unkown
|
page read and write
|
||
|
2924B7F000
|
stack
|
page read and write
|
||
|
E71BDFF000
|
stack
|
page read and write
|
||
|
289A1D94000
|
unkown
|
page read and write
|
||
|
25B19715000
|
heap
|
page read and write
|
||
|
16CF3110000
|
heap
|
page read and write
|
||
|
289A1DAF000
|
unkown
|
page read and write
|
||
|
1EE703B0000
|
unkown
|
page read and write
|
||
|
1EE70468000
|
unkown
|
page read and write
|
||
|
21DDCA4D000
|
unkown
|
page read and write
|
||
|
21A01002000
|
unkown
|
page read and write
|
||
|
DC7C87B000
|
stack
|
page read and write
|
||
|
289A2263000
|
unkown
|
page read and write
|
||
|
289A1D91000
|
unkown
|
page read and write
|
||
|
16CF30A0000
|
heap
|
page read and write
|
||
|
289A1D84000
|
unkown
|
page read and write
|
||
|
25B193CF000
|
heap
|
page read and write
|
||
|
8E3507F000
|
stack
|
page read and write
|
||
|
DC7C67F000
|
stack
|
page read and write
|
||
|
21DDD202000
|
unkown
|
page read and write
|
||
|
10B8A7B000
|
stack
|
page read and write
|
||
|
21DDCA4A000
|
unkown
|
page read and write
|
||
|
16CF3252000
|
unkown
|
page read and write
|
||
|
E71BAFD000
|
stack
|
page read and write
|
||
|
16CF3870000
|
unkown
|
page read and write
|
||
|
5B5E47F000
|
stack
|
page read and write
|
||
|
1934A112000
|
unkown
|
page read and write
|
||
|
15E4C200000
|
unkown
|
page read and write
|
||
|
7159CFF000
|
stack
|
page read and write
|
||
|
1A04ECA0000
|
remote allocation
|
page read and write
|
||
|
1A04E600000
|
unkown
|
page read and write
|
||
|
289A1D7E000
|
unkown
|
page read and write
|
||
|
1DFF6CE0000
|
heap
|
page read and write
|
||
|
289A1D8E000
|
unkown
|
page read and write
|
||
|
22691C20000
|
heap
|
page read and write
|
||
|
289A1D9B000
|
unkown
|
page read and write
|
||
|
289A2202000
|
unkown
|
page read and write
|
||
|
25B19FE0000
|
trusted library allocation
|
page read and write
|
||
|
21DDCA56000
|
unkown
|
page read and write
|
||
|
25B19340000
|
heap
|
page read and write
|
||
|
D97C17E000
|
stack
|
page read and write
|
||
|
1EE7047B000
|
unkown
|
page read and write
|
||
|
D97C477000
|
stack
|
page read and write
|
||
|
1EE70459000
|
unkown
|
page read and write
|
||
|
16CF3271000
|
unkown
|
page read and write
|
||
|
25B19F70000
|
trusted library allocation
|
page read and write
|
||
|
289A14A3000
|
unkown
|
page read and write
|
||
|
1EE70446000
|
unkown
|
page read and write
|
||
|
19349902000
|
unkown
|
page read and write
|
||
|
16CF3302000
|
unkown
|
page read and write
|
||
|
1DFF6E40000
|
unkown
|
page read and write
|
||
|
21A00813000
|
unkown
|
page read and write
|
||
|
D97C67F000
|
stack
|
page read and write
|
||
|
F65CF7E000
|
stack
|
page read and write
|
||
|
1EE7045D000
|
unkown
|
page read and write
|
||
|
19349800000
|
unkown
|
page read and write
|
||
|
289A2202000
|
unkown
|
page read and write
|
||
|
F65D179000
|
stack
|
page read and write
|
||
|
25B193AD000
|
heap
|
page read and write
|
||
|
289A1D81000
|
unkown
|
page read and write
|
||
|
289A1DCE000
|
unkown
|
page read and write
|
||
|
1E9BF7F000
|
stack
|
page read and write
|
||
|
22691E13000
|
unkown
|
page read and write
|
||
|
A3C79FE000
|
stack
|
page read and write
|
||
|
292467F000
|
stack
|
page read and write
|
||
|
1EE7046E000
|
unkown
|
page read and write
|
||
|
289A146B000
|
unkown
|
page read and write
|
||
|
1934A13B000
|
unkown
|
page read and write
|
||
|
289A1D8E000
|
unkown
|
page read and write
|
||
|
15E4C0B0000
|
heap
|
page read and write
|
||
|
D97C0FE000
|
stack
|
page read and write
|
||
|
1E9C1FE000
|
stack
|
page read and write
|
||
|
21A00802000
|
unkown
|
page read and write
|
||
|
1DFF6E58000
|
unkown
|
page read and write
|
||
|
1EE70433000
|
unkown
|
page read and write
|
||
|
289A1481000
|
unkown
|
page read and write
|
||
|
25B19720000
|
trusted library allocation
|
page read and write
|
||
|
22691E02000
|
unkown
|
page read and write
|
||
|
289A14D7000
|
unkown
|
page read and write
|
||
|
1EE7044E000
|
unkown
|
page read and write
|
||
|
22692602000
|
unkown
|
page read and write
|
||
|
1A04E4B0000
|
heap
|
page read and write
|
||
|
1E9C07D000
|
stack
|
page read and write
|
||
|
15E4C288000
|
unkown
|
page read and write
|
||
|
1DFF6E58000
|
unkown
|
page read and write
|
||
|
15E4C23C000
|
unkown
|
page read and write
|
||
|
289A1DCF000
|
unkown
|
page read and write
|
||
|
289A1D00000
|
unkown
|
page read and write
|
||
|
F65D0FE000
|
stack
|
page read and write
|
||
|
21DDCA48000
|
unkown
|
page read and write
|
||
|
289A1D82000
|
unkown
|
page read and write
|
||
|
289A1D8E000
|
unkown
|
page read and write
|
||
|
289A1D8E000
|
unkown
|
page read and write
|
||
|
1DFF6E7F000
|
unkown
|
page read and write
|
||
|
15E4C270000
|
unkown
|
page read and write
|
||
|
8E34EFD000
|
stack
|
page read and write
|
||
|
1EE7046C000
|
unkown
|
page read and write
|
||
|
289A1D8A000
|
unkown
|
page read and write
|
||
|
10B8D7E000
|
stack
|
page read and write
|
||
|
289A1D98000
|
unkown
|
page read and write
|
||
|
1EE7043B000
|
unkown
|
page read and write
|
||
|
22691D80000
|
unkown
|
page read and write
|
||
|
289A1DD5000
|
unkown
|
page read and write
|
||
|
15E4C229000
|
unkown
|
page read and write
|
||
|
289A1400000
|
unkown
|
page read and write
|
||
|
1EE70442000
|
unkown
|
page read and write
|
||
|
289A1D81000
|
unkown
|
page read and write
|
||
|
19349813000
|
unkown
|
page read and write
|
||
|
289A1DA2000
|
unkown
|
page read and write
|
||
|
21A00902000
|
unkown
|
page read and write
|
||
|
16CF323C000
|
unkown
|
page read and write
|
||
|
1EE7043A000
|
unkown
|
page read and write
|
||
|
1EE70478000
|
unkown
|
page read and write
|
||
|
29244FD000
|
stack
|
page read and write
|
||
|
15E4C880000
|
unkown
|
page read and write
|
||
|
289A1D15000
|
unkown
|
page read and write
|
||
|
1A04E675000
|
unkown
|
page read and write
|
||
|
289A2302000
|
unkown
|
page read and write
|
||
|
289A14A4000
|
unkown
|
page read and write
|
||
|
289A1D98000
|
unkown
|
page read and write
|
||
|
1A04E613000
|
unkown
|
page read and write
|
||
|
289A1487000
|
unkown
|
page read and write
|
||
|
289A1D94000
|
unkown
|
page read and write
|
||
|
1E9BC7C000
|
stack
|
page read and write
|
||
|
1DFF88F0000
|
remote allocation
|
page read and write
|
||
|
15E4C313000
|
unkown
|
page read and write
|
||
|
289A1DA0000
|
unkown
|
page read and write
|
||
|
25B19530000
|
heap
|
page read and write
|
||
|
289A1310000
|
heap
|
page read and write
|
||
|
289A1D8E000
|
unkown
|
page read and write
|
||
|
25B19368000
|
heap
|
page read and write
|
||
|
22691F13000
|
unkown
|
page read and write
|
||
|
289A1D6A000
|
unkown
|
page read and write
|
||
|
8E34E7F000
|
stack
|
page read and write
|
||
|
1DFF6E89000
|
unkown
|
page read and write
|
||
|
F65D07D000
|
stack
|
page read and write
|
||
|
15E4C28D000
|
unkown
|
page read and write
|
||
|
15E4C120000
|
heap
|
page read and write
|
||
|
1EE70440000
|
unkown
|
page read and write
|
||
|
193495F0000
|
heap
|
page read and write
|
||
|
289A1DC0000
|
unkown
|
page read and write
|
||
|
22691C10000
|
heap
|
page read and write
|
||
|
289A144E000
|
unkown
|
page read and write
|
||
|
1EE70444000
|
unkown
|
page read and write
|
||
|
25B193A3000
|
heap
|
page read and write
|
||
|
21DDCB02000
|
unkown
|
page read and write
|
||
|
289A14AE000
|
unkown
|
page read and write
|
||
|
21DDCA51000
|
unkown
|
page read and write
|
||
|
25B1A220000
|
trusted library allocation
|
page read and write
|
||
|
26880150000
|
heap
|
page read and write
|
||
|
21A00857000
|
unkown
|
page read and write
|
||
|
1A04E510000
|
heap
|
page read and write
|
||
|
21DDC890000
|
heap
|
page read and write
|
||
|
A3C78FE000
|
stack
|
page read and write
|
||
|
289A1429000
|
unkown
|
page read and write
|
||
|
21A00F50000
|
unkown
|
page read and write
|
||
|
289A14BC000
|
unkown
|
page read and write
|
||
|
5B5E67B000
|
stack
|
page read and write
|
||
|
289A1D5D000
|
unkown
|
page read and write
|
||
|
21DDCB08000
|
unkown
|
page read and write
|
||
|
26880176000
|
heap
|
page read and write
|
||
|
15E4C300000
|
unkown
|
page read and write
|
||
|
25B1A240000
|
trusted library allocation
|
page read and write
|
||
|
5B5E4FC000
|
stack
|
page read and write
|
||
|
26880110000
|
heap
|
page read and write
|
||
|
DC7CA7E000
|
stack
|
page read and write
|
||
|
5B5E5FD000
|
stack
|
page read and write
|
||
|
E71BFFE000
|
stack
|
page read and write
|
||
|
1EE70464000
|
unkown
|
page read and write
|
||
|
289A1DA9000
|
unkown
|
page read and write
|
||
|
292408B000
|
stack
|
page read and write
|
||
|
289A1D8E000
|
unkown
|
page read and write
|
||
|
289A14E0000
|
unkown
|
page read and write
|
||
|
22CFAFE000
|
stack
|
page read and write
|
||
|
289A1D8E000
|
unkown
|
page read and write
|
||
|
1EE7045A000
|
unkown
|
page read and write
|
||
|
21A00780000
|
heap
|
page read and write
|
||
|
292487F000
|
stack
|
page read and write
|
||
|
289A14C3000
|
unkown
|
page read and write
|
||
|
289A1D9B000
|
unkown
|
page read and write
|
||
|
D97C777000
|
stack
|
page read and write
|
||
|
E71BEFE000
|
stack
|
page read and write
|
||
|
25B19719000
|
heap
|
page read and write
|
||
|
268803E0000
|
heap
|
page read and write
|
||
|
2924C7C000
|
stack
|
page read and write
|
||
|
16CF3300000
|
unkown
|
page read and write
|
||
|
1EE70240000
|
heap
|
page read and write
|
There are 485 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://login.microsoftonline.com/logout.srf?ct=1548343592&rver=64.4.6456.0&lc=1033&id=501392
|
|
|
|
file:///C:/Users/user/Desktop/Secure_Message_81.90.a1.00.00.htm
|