Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\258eab86-e80b-47fd-bc59-514182a8599f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\5067bb82-6865-41a4-b50b-a13d2ffe0460.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\57b32075-7dfc-42b4-af1d-6345b7b7837b.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\88e5d168-3932-43a1-82d8-581c1e4c529d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\9b9a6c99-ea79-4ed2-96eb-508526310294.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\328c5818-42b2-4761-ba3e-76fc99a5c54c.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\4726a8e7-6121-4e22-a03b-1f293b58c324.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\4a89860a-e585-471d-bf11-f21ec368408e.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\52ff89e1-bb69-48e9-b60e-2ff68866a434.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5c3ac93d-9626-47a7-a530-b91929a8f574.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\67b9a923-c112-427f-bfad-bc51f3859f85.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7fb86bb2-c339-4637-91a4-090443749af8.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9a0b921a-3fa9-456d-903c-53767c197418.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9beabdd0-89c9-408e-b195-6e6d032e7537.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabsn (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old. (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State} (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesMP (copy)
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferencese\ (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferencessg (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences+. (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure PreferencesMP (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.oldMP (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\4fcab76c-17e7-4412-ad9c-7b4fd6bab084.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.oldoi
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old{
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.olde/
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\f3afdd69-a9d1-4066-b07f-81dd4ec247e9.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old.. (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.oldn
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Top Sites
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b7593980-7d91-4c7a-92b2-f45dcc13e4fb.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c4f7e87f-2466-428b-8916-e5301f1db961.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ccd95f22-49d4-47bf-b7ac-4b84f9dd3ff5.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT.. (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.olds (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old9 (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local States} (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cachees (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cachei (copy)
|
SysEx File -
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_1
|
data
|
modified
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\a73a217c-f8f6-4dfe-90b7-eb0f545a46b4.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\b22aa8ce-afdf-48db-9fe4-03fe493b834b.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\d14d675d-e636-4c0f-bb12-83da97248ee1.tmp
|
SysEx File -
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\dbe86afd-425b-424a-baef-c3e4bd33053d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\e98de4aa-6f2c-4d3d-aa02-51ddd2b6fc69.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\38d5384e-d648-4b85-9b83-d2c9d67f72d6.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5dcc1ff4-d7d1-494a-b91d-1d1612dcef12.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6674c68e-1584-4722-a336-454b93df7ba8.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6884_1457958588\LICENSE
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6884_1457958588\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6884_1457958588\crl-set
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6884_1457958588\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6884_1457958588\manifest.json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6884_1949087574\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6884_1949087574\download_file_types.pb
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6884_1949087574\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\6884_1949087574\manifest.json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\c468808e-e297-4b53-82e1-9cd35c07c570.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\5dcc1ff4-d7d1-494a-b91d-1d1612dcef12.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\iw\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\angular.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\background_script.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\cast_sender.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\common.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\feedback.css
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\feedback.html
|
HTML document, ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\feedback_script.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\material_css_min.css
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\mirroring_cast_streaming.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\mirroring_common.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\mirroring_hangouts.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1623426078\CRX_INSTALL\mirroring_webrtc.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\6674c68e-1584-4722-a336-454b93df7ba8.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir6884_1831820505\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
There are 243 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "http://45.138.26.12/?MzI3Njk2&VVKrZWx&fhcbc5dfsdf=irreverent&sddxcvxcdfg=abettor&o3fdffvb4gn4=wnjQMvXcKxXQFYPHJf7cT6JDKUfYG1iJz5Gf3fqSCZj9JHT11NzUSkr06B2aClvh&dRdfdfg43t=p6YtK7tYPgrm2E2EKABgldxaVQhF8_2piBLdyRPIhcGL-haPZw1DrqKlJLd_mhj2&cxsfxcvvxcv=126leveryone.77lj111.406n2c9r2&KIxYFUMjQ5NjE=
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1492,13825956740073535789,2325458381764974999,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1920 /prefetch:8
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://45.138.26.12/?MzI3Njk2&VVKrZWx&fhcbc5dfsdf=irreverent&sddxcvxcdfg=abettor&o3fdffvb4gn4=wnjQMvXcKxXQFYPHJf7cT6JDKUfYG1iJz5Gf3fqSCZj9JHT11NzUSkr06B2aClvh&dRdfdfg43t=p6YtK7tYPgrm2E2EKABgldxaVQhF8_2piBLdyRPIhcGL-haPZw1DrqKlJLd_mhj2&cxsfxcvvxcv=126leveryone.77lj111.406n2c9r2&KIxYFUMjQ5NjE=
|
|||
|
https://apis.google.com/js/client.js
|
unknown
|
||
|
https://www.google.com/images/cleardot.gif
|
unknown
|
||
|
https://play.google.com
|
unknown
|
||
|
https://crash.corp.google.com/samples?reportid=&q=
|
unknown
|
||
|
https://www.google.com/log?format=json&hasfast=true
|
unknown
|
||
|
https://chrome.google.com/webstore?hl=en
|
unknown
|
||
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
|
unknown
|
||
|
https://accounts.google.com/MergeSession
|
unknown
|
||
|
https://chrome.google.com/webstore?hl=enWeb
|
unknown
|
||
|
https://preprod-hangouts-googleapis.sandbox.google.com
|
unknown
|
||
|
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
|
172.217.168.33
|
||
|
https://www.google.com
|
unknown
|
||
|
http://45.138.26.12/?MzI3Njk2&VVKrZWx&fhcbc5dfsdf=irreverent&sddxcvxcdfg=abettor&o3fdffvb4gn4=wnjQMv
|
unknown
|
||
|
http://45.138.26.12/?MzI3Njk2&VVKrZWx&fhcbc5dfsdf=irreverent&sddxcvxcdfg=abettor&o3fdffvb4gn4=wnjQMvXcKxXQFYPHJf7cT6JDKUfYG1iJz5Gf3fqSCZj9JHT11NzUSkr06B2aClvh&dRdfdfg43t=p6YtK7tYPgrm2E2EKABgldxaVQhF8_2piBLdyRPIhcGL-haPZw1DrqKlJLd_mhj2&cxsfxcvvxcv=126leveryone.77lj111.406n2c9r2&KIxYFUMjQ5NjE=
|
45.138.26.12
|
||
|
https://hangouts.clients6.google.com
|
unknown
|
||
|
https://meet.google.com
|
unknown
|
||
|
http://45.138.26.12/favicon.ico
|
45.138.26.12
|
||
|
https://hangouts.google.com/hangouts/_/logpref
|
unknown
|
||
|
https://accounts.google.com
|
unknown
|
||
|
https://clients2.google.com/cr/report
|
unknown
|
||
|
http://angularjs.org
|
unknown
|
||
|
https://creativecommons.org/publicdomain/zero/1.0/.
|
unknown
|
||
|
https://github.com/angular/material
|
unknown
|
||
|
https://apis.google.com
|
unknown
|
||
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
||
|
https://github.com/madler/zlib/blob/master/zlib.h
|
unknown
|
||
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
||
|
https://clients2.google.com
|
unknown
|
||
|
https://www.google.com/tools/feedback
|
unknown
|
||
|
http://www.apache.org/licenses/LICENSE-2.0
|
unknown
|
||
|
https://dns.google
|
unknown
|
||
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
||
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
||
|
https://ogs.google.com
|
unknown
|
||
|
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
||
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
|
unknown
|
||
|
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
142.250.203.109
|
||
|
http://45.138.26.12/
|
unknown
|
||
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
https://www.google.com;
|
unknown
|
||
|
https://hangouts.google.com/
|
unknown
|
||
|
https://www.google.com/images/x2.gif
|
unknown
|
||
|
https://www.google.com/images/dot2.gif
|
unknown
|
||
|
https://meetings.clients6.google.com
|
unknown
|
||
|
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
||
|
http://tools.ietf.org/html/rfc1950
|
unknown
|
||
|
https://support.google.com/chromecast/answer/2998456
|
unknown
|
||
|
https://clients2.googleusercontent.com
|
unknown
|
||
|
https://csp.withgoogle.com/csp/report-to/IdentityListAccountsHttp/external
|
unknown
|
||
|
https://docs.google.com
|
unknown
|
||
|
https://www.google.com/
|
unknown
|
||
|
https://feedback.googleusercontent.com
|
unknown
|
||
|
https://clients2.google.com/service/update2/crx
|
unknown
|
||
|
https://clients6.google.com
|
unknown
|
There are 45 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
accounts.google.com
|
142.250.203.109
|
||
|
clients.l.google.com
|
142.250.203.110
|
||
|
googlehosted.l.googleusercontent.com
|
172.217.168.33
|
||
|
clients2.googleusercontent.com
|
unknown
|
||
|
clients2.google.com
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.168.2.1
|
unknown
|
unknown
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
172.217.168.33
|
googlehosted.l.googleusercontent.com
|
United States
|
||
|
45.138.26.12
|
unknown
|
Turkey
|
||
|
127.0.0.1
|
unknown
|
unknown
|
||
|
142.250.203.109
|
accounts.google.com
|
United States
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
There are 35 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
1D5A583A000
|
unkown
|
page read and write
|
||
|
2192F97A000
|
unkown
|
page read and write
|
||
|
2E725858000
|
unkown
|
page read and write
|
||
|
2E725825000
|
unkown
|
page read and write
|
||
|
CF004FE000
|
stack
|
page read and write
|
||
|
29A25813000
|
unkown
|
page read and write
|
||
|
1D5A5865000
|
unkown
|
page read and write
|
||
|
2192F994000
|
unkown
|
page read and write
|
||
|
2192F915000
|
unkown
|
page read and write
|
||
|
12115886000
|
unkown
|
page read and write
|
||
|
2192F981000
|
unkown
|
page read and write
|
||
|
12772D21000
|
heap
|
page read and write
|
||
|
29A25908000
|
unkown
|
page read and write
|
||
|
2E725740000
|
heap
|
page read and write
|
||
|
2192F049000
|
unkown
|
page read and write
|
||
|
2192F972000
|
unkown
|
page read and write
|
||
|
2192F048000
|
unkown
|
page read and write
|
||
|
29A2584B000
|
unkown
|
page read and write
|
||
|
29A25650000
|
heap
|
page read and write
|
||
|
29A25870000
|
unkown
|
page read and write
|
||
|
869DCF7000
|
stack
|
page read and write
|
||
|
683D77000
|
stack
|
page read and write
|
||
|
22347E5A000
|
unkown
|
page read and write
|
||
|
1D5A5863000
|
unkown
|
page read and write
|
||
|
2192F013000
|
unkown
|
page read and write
|
||
|
2192F113000
|
unkown
|
page read and write
|
||
|
2192F0E8000
|
unkown
|
page read and write
|
||
|
683BFB000
|
stack
|
page read and write
|
||
|
D0114FB000
|
stack
|
page read and write
|
||
|
1D5A5841000
|
unkown
|
page read and write
|
||
|
2192F9B8000
|
unkown
|
page read and write
|
||
|
F3B08FE000
|
stack
|
page read and write
|
||
|
869E07A000
|
stack
|
page read and write
|
||
|
1D5A5859000
|
unkown
|
page read and write
|
||
|
2192EF70000
|
heap
|
page read and write
|
||
|
2192F97D000
|
unkown
|
page read and write
|
||
|
12772D12000
|
heap
|
page read and write
|
||
|
F3B038B000
|
stack
|
page read and write
|
||
|
EDAE7F000
|
stack
|
page read and write
|
||
|
12115853000
|
unkown
|
page read and write
|
||
|
1211583C000
|
unkown
|
page read and write
|
||
|
1D5A5862000
|
unkown
|
page read and write
|
||
|
12772D1E000
|
heap
|
page read and write
|
||
|
2192F9BB000
|
unkown
|
page read and write
|
||
|
2192F96B000
|
unkown
|
page read and write
|
||
|
12772D0E000
|
heap
|
page read and write
|
||
|
22347E00000
|
unkown
|
page read and write
|
||
|
12772CEB000
|
heap
|
page read and write
|
||
|
22347F13000
|
unkown
|
page read and write
|
||
|
2192F116000
|
unkown
|
page read and write
|
||
|
1D5A5885000
|
unkown
|
page read and write
|
||
|
12772D12000
|
heap
|
page read and write
|
||
|
D0117FF000
|
stack
|
page read and write
|
||
|
1D5A5857000
|
unkown
|
page read and write
|
||
|
2192FD40000
|
remote allocation
|
page read and write
|
||
|
22347E4C000
|
unkown
|
page read and write
|
||
|
2E72583D000
|
unkown
|
page read and write
|
||
|
2192F97D000
|
unkown
|
page read and write
|
||
|
2192F055000
|
unkown
|
page read and write
|
||
|
1D5A5845000
|
unkown
|
page read and write
|
||
|
2192F04A000
|
unkown
|
page read and write
|
||
|
22347E02000
|
unkown
|
page read and write
|
||
|
12772CB0000
|
heap
|
page read and write
|
||
|
29A25888000
|
unkown
|
page read and write
|
||
|
22347C00000
|
heap
|
page read and write
|
||
|
29A257C0000
|
unkown
|
page read and write
|
||
|
2192F98E000
|
unkown
|
page read and write
|
||
|
D0113FB000
|
stack
|
page read and write
|
||
|
D010FFB000
|
stack
|
page read and write
|
||
|
2192F9DC000
|
unkown
|
page read and write
|
||
|
2E725770000
|
unkown
|
page read and write
|
||
|
2192F03C000
|
unkown
|
page read and write
|
||
|
12115760000
|
unkown
|
page read and write
|
||
|
D01127F000
|
stack
|
page read and write
|
||
|
2192F96E000
|
unkown
|
page read and write
|
||
|
22347D50000
|
trusted library allocation
|
page read and write
|
||
|
12772D12000
|
heap
|
page read and write
|
||
|
12772D0D000
|
heap
|
page read and write
|
||
|
29A2584D000
|
unkown
|
page read and write
|
||
|
2192F0E0000
|
unkown
|
page read and write
|
||
|
12115902000
|
unkown
|
page read and write
|
||
|
1D5A5875000
|
unkown
|
page read and write
|
||
|
29A25902000
|
unkown
|
page read and write
|
||
|
F3B0B7F000
|
stack
|
page read and write
|
||
|
22347D20000
|
trusted library allocation
|
page read and write
|
||
|
2192F994000
|
unkown
|
page read and write
|
||
|
2192FE02000
|
unkown
|
page read and write
|
||
|
2192F054000
|
unkown
|
page read and write
|
||
|
22347DD0000
|
remote allocation
|
page read and write
|
||
|
1D5A586A000
|
unkown
|
page read and write
|
||
|
2192F070000
|
unkown
|
page read and write
|
||
|
1D5A5864000
|
unkown
|
page read and write
|
||
|
F3B0C7D000
|
stack
|
page read and write
|
||
|
2192F9A5000
|
unkown
|
page read and write
|
||
|
2E725829000
|
unkown
|
page read and write
|
||
|
1D5A5878000
|
unkown
|
page read and write
|
||
|
29A25850000
|
unkown
|
page read and write
|
||
|
2192F9B6000
|
unkown
|
page read and write
|
||
|
1D5A585F000
|
unkown
|
page read and write
|
||
|
29A25852000
|
unkown
|
page read and write
|
||
|
12115730000
|
heap
|
page read and write
|
||
|
29A26002000
|
unkown
|
page read and write
|
||
|
CF001FC000
|
stack
|
page read and write
|
||
|
2192F98C000
|
unkown
|
page read and write
|
||
|
2192F0BF000
|
unkown
|
page read and write
|
||
|
1D5A6002000
|
unkown
|
page read and write
|
||
|
2192F97A000
|
unkown
|
page read and write
|
||
|
2192F9A5000
|
unkown
|
page read and write
|
||
|
2192F0A7000
|
unkown
|
page read and write
|
||
|
2E7257A0000
|
remote allocation
|
page read and write
|
||
|
1D5A5610000
|
heap
|
page read and write
|
||
|
12772D06000
|
heap
|
page read and write
|
||
|
12115913000
|
unkown
|
page read and write
|
||
|
22347E4C000
|
unkown
|
page read and write
|
||
|
2192F056000
|
unkown
|
page read and write
|
||
|
F3B09FE000
|
stack
|
page read and write
|
||
|
2192F0EB000
|
unkown
|
page read and write
|
||
|
2192FE21000
|
unkown
|
page read and write
|
||
|
6836CB000
|
stack
|
page read and write
|
||
|
2192FE02000
|
unkown
|
page read and write
|
||
|
12115870000
|
unkown
|
page read and write
|
||
|
2192F802000
|
unkown
|
page read and write
|
||
|
CF7FA7C000
|
stack
|
page read and write
|
||
|
1D5A587C000
|
unkown
|
page read and write
|
||
|
2192F052000
|
unkown
|
page read and write
|
||
|
22347D00000
|
unkown
|
page read and write
|
||
|
2192F990000
|
unkown
|
page read and write
|
||
|
2192F994000
|
unkown
|
page read and write
|
||
|
2192F9A5000
|
unkown
|
page read and write
|
||
|
CF000FD000
|
stack
|
page read and write
|
||
|
1D5A583B000
|
unkown
|
page read and write
|
||
|
29A25900000
|
unkown
|
page read and write
|
||
|
12772C80000
|
heap
|
page read and write
|
||
|
CF003FC000
|
stack
|
page read and write
|
||
|
2192F102000
|
unkown
|
page read and write
|
||
|
2192F994000
|
unkown
|
page read and write
|
||
|
12772D1E000
|
heap
|
page read and write
|
||
|
12115813000
|
unkown
|
page read and write
|
||
|
683C7E000
|
stack
|
page read and write
|
||
|
12772D1E000
|
heap
|
page read and write
|
||
|
2E7257A0000
|
remote allocation
|
page read and write
|
||
|
EDAACA000
|
stack
|
page read and write
|
||
|
2192F9A5000
|
unkown
|
page read and write
|
||
|
2192F983000
|
unkown
|
page read and write
|
||
|
2192F994000
|
unkown
|
page read and write
|
||
|
22347F18000
|
unkown
|
page read and write
|
||
|
2192F9A5000
|
unkown
|
page read and write
|
||
|
12772D0D000
|
heap
|
page read and write
|
||
|
22347BA0000
|
heap
|
page read and write
|
||
|
12772CF6000
|
heap
|
page read and write
|
||
|
22347E4A000
|
unkown
|
page read and write
|
||
|
EDAFFF000
|
stack
|
page read and write
|
||
|
1D5A5847000
|
unkown
|
page read and write
|
||
|
29A2584C000
|
unkown
|
page read and write
|
||
|
12772D1E000
|
heap
|
page read and write
|
||
|
EDB07A000
|
stack
|
page read and write
|
||
|
683F7D000
|
stack
|
page read and write
|
||
|
29A2584F000
|
unkown
|
page read and write
|
||
|
2192FE02000
|
unkown
|
page read and write
|
||
|
683AFB000
|
stack
|
page read and write
|
||
|
2192FE02000
|
unkown
|
page read and write
|
||
|
869DAF8000
|
stack
|
page read and write
|
||
|
22347B90000
|
heap
|
page read and write
|
||
|
1D5A584E000
|
unkown
|
page read and write
|
||
|
22347DD0000
|
remote allocation
|
page read and write
|
||
|
12115848000
|
unkown
|
page read and write
|
||
|
12772D1E000
|
heap
|
page read and write
|
||
|
6837CD000
|
stack
|
page read and write
|
||
|
D0115F7000
|
stack
|
page read and write
|
||
|
2192F04C000
|
unkown
|
page read and write
|
||
|
2192F07F000
|
unkown
|
page read and write
|
||
|
12772D0F000
|
heap
|
page read and write
|
||
|
2192F95F000
|
unkown
|
page read and write
|
||
|
2192F94E000
|
unkown
|
page read and write
|
||
|
2192F994000
|
unkown
|
page read and write
|
||
|
F3B0AFD000
|
stack
|
page read and write
|
||
|
29A2589B000
|
unkown
|
page read and write
|
||
|
29A2584A000
|
unkown
|
page read and write
|
||
|
2E725802000
|
unkown
|
page read and write
|
||
|
2E725800000
|
unkown
|
page read and write
|
||
|
12772C10000
|
heap
|
page read and write
|
||
|
CF7FFFE000
|
stack
|
page read and write
|
||
|
869DBF7000
|
stack
|
page read and write
|
||
|
1211584E000
|
unkown
|
page read and write
|
||
|
2192F04F000
|
unkown
|
page read and write
|
||
|
1D5A5840000
|
unkown
|
page read and write
|
||
|
2192F000000
|
unkown
|
page read and write
|
||
|
812B53E000
|
stack
|
page read and write
|
||
|
2192F04D000
|
unkown
|
page read and write
|
||
|
2192F97F000
|
unkown
|
page read and write
|
||
|
2192F99F000
|
unkown
|
page read and write
|
||
|
12772D19000
|
heap
|
page read and write
|
||
|
2192F029000
|
unkown
|
page read and write
|
||
|
22347F02000
|
unkown
|
page read and write
|
||
|
683E7E000
|
stack
|
page read and write
|
||
|
2192F0AB000
|
unkown
|
page read and write
|
||
|
2192F987000
|
unkown
|
page read and write
|
||
|
12116002000
|
unkown
|
page read and write
|
||
|
2192F04E000
|
unkown
|
page read and write
|
||
|
1211582A000
|
unkown
|
page read and write
|
||
|
12772CF2000
|
heap
|
page read and write
|
||
|
869E17F000
|
stack
|
page read and write
|
||
|
22347D90000
|
trusted library allocation
|
page read and write
|
||
|
1D5A5861000
|
unkown
|
page read and write
|
||
|
2192EF80000
|
heap
|
page read and write
|
||
|
812BA7E000
|
stack
|
page read and write
|
||
|
29A25849000
|
unkown
|
page read and write
|
||
|
2192F051000
|
unkown
|
page read and write
|
||
|
1D5A586C000
|
unkown
|
page read and write
|
||
|
1D5A5868000
|
unkown
|
page read and write
|
||
|
2192F0C6000
|
unkown
|
page read and write
|
||
|
2192F994000
|
unkown
|
page read and write
|
||
|
12772D08000
|
heap
|
page read and write
|
||
|
2192FE19000
|
unkown
|
page read and write
|
||
|
2192F740000
|
unkown
|
page read and write
|
||
|
1D5A586E000
|
unkown
|
page read and write
|
||
|
869E27F000
|
stack
|
page read and write
|
||
|
22347E2A000
|
unkown
|
page read and write
|
||
|
CF002FE000
|
stack
|
page read and write
|
||
|
2192F972000
|
unkown
|
page read and write
|
||
|
12772CF7000
|
heap
|
page read and write
|
||
|
812B4BB000
|
stack
|
page read and write
|
||
|
2192F9C0000
|
unkown
|
page read and write
|
||
|
121156D0000
|
heap
|
page read and write
|
||
|
2192F9B6000
|
unkown
|
page read and write
|
||
|
1211584B000
|
unkown
|
page read and write
|
||
|
F3B077F000
|
stack
|
page read and write
|
||
|
D0116FF000
|
stack
|
page read and write
|
||
|
12772C85000
|
heap
|
page read and write
|
||
|
2E726002000
|
unkown
|
page read and write
|
||
|
22347E3D000
|
unkown
|
page read and write
|
||
|
869D8FE000
|
stack
|
page read and write
|
||
|
2192F0F5000
|
unkown
|
page read and write
|
||
|
2192F994000
|
unkown
|
page read and write
|
||
|
12115900000
|
unkown
|
page read and write
|
||
|
2192FE63000
|
unkown
|
page read and write
|
||
|
2192F9C1000
|
unkown
|
page read and write
|
||
|
2192F9B6000
|
unkown
|
page read and write
|
||
|
812B5BE000
|
stack
|
page read and write
|
||
|
2192F0B2000
|
unkown
|
page read and write
|
||
|
29A25660000
|
heap
|
page read and write
|
||
|
2E725902000
|
unkown
|
page read and write
|
||
|
12772C90000
|
heap
|
page read and write
|
||
|
1D5A583D000
|
unkown
|
page read and write
|
||
|
2192F0A0000
|
unkown
|
page read and write
|
||
|
1D5A5670000
|
heap
|
page read and write
|
||
|
D0112FE000
|
stack
|
page read and write
|
||
|
29A2587E000
|
unkown
|
page read and write
|
||
|
12772D1A000
|
heap
|
page read and write
|
||
|
2192F994000
|
unkown
|
page read and write
|
||
|
869D59C000
|
stack
|
page read and write
|
||
|
F3B087C000
|
stack
|
page read and write
|
||
|
22349802000
|
unkown
|
page read and write
|
||
|
29A25800000
|
unkown
|
page read and write
|
||
|
812BC7F000
|
stack
|
page read and write
|
||
|
2E725813000
|
unkown
|
page read and write
|
||
|
1D5A5860000
|
unkown
|
page read and write
|
||
|
2192F900000
|
unkown
|
page read and write
|
||
|
1D5A5902000
|
unkown
|
page read and write
|
||
|
2E7256E0000
|
heap
|
page read and write
|
||
|
EDAF7F000
|
stack
|
page read and write
|
||
|
869D87E000
|
stack
|
page read and write
|
||
|
22347DD0000
|
remote allocation
|
page read and write
|
||
|
2192F981000
|
unkown
|
page read and write
|
||
|
EDAEF9000
|
stack
|
page read and write
|
||
|
2192F994000
|
unkown
|
page read and write
|
||
|
1D5A5813000
|
unkown
|
page read and write
|
||
|
2192EFE0000
|
heap
|
page read and write
|
||
|
29A256C0000
|
heap
|
page read and write
|
||
|
2192F97D000
|
unkown
|
page read and write
|
||
|
2192F96D000
|
unkown
|
page read and write
|
||
|
2192F9B6000
|
unkown
|
page read and write
|
||
|
12115800000
|
unkown
|
page read and write
|
||
|
869DE7E000
|
stack
|
page read and write
|
||
|
2192F982000
|
unkown
|
page read and write
|
||
|
2192F994000
|
unkown
|
page read and write
|
||
|
869DDFF000
|
stack
|
page read and write
|
||
|
2192FE00000
|
unkown
|
page read and write
|
||
|
1D5A585C000
|
unkown
|
page read and write
|
||
|
2192F047000
|
unkown
|
page read and write
|
||
|
2192F994000
|
unkown
|
page read and write
|
||
|
29A25913000
|
unkown
|
page read and write
|
||
|
2192FE02000
|
unkown
|
page read and write
|
||
|
22347E60000
|
unkown
|
page read and write
|
||
|
1D5A5800000
|
unkown
|
page read and write
|
||
|
2192FE02000
|
unkown
|
page read and write
|
||
|
2192F992000
|
unkown
|
page read and write
|
||
|
2192F0EB000
|
unkown
|
page read and write
|
||
|
12772D12000
|
heap
|
page read and write
|
||
|
1D5A5600000
|
heap
|
page read and write
|
||
|
CF7FDFE000
|
stack
|
page read and write
|
||
|
2E7256D0000
|
heap
|
page read and write
|
||
|
1D5A5844000
|
unkown
|
page read and write
|
||
|
22347E68000
|
unkown
|
page read and write
|
||
|
2192F9C0000
|
unkown
|
page read and write
|
||
|
2192F0D7000
|
unkown
|
page read and write
|
||
|
2192FE03000
|
unkown
|
page read and write
|
||
|
2192F91A000
|
unkown
|
page read and write
|
||
|
CF7FEFE000
|
stack
|
page read and write
|
||
|
1D5A5831000
|
unkown
|
page read and write
|
||
|
1D5A585A000
|
unkown
|
page read and write
|
||
|
1D5A5770000
|
unkown
|
page read and write
|
||
|
812BB7F000
|
stack
|
page read and write
|
||
|
2192F987000
|
unkown
|
page read and write
|
||
|
2E7257A0000
|
remote allocation
|
page read and write
|
||
|
1D5A5846000
|
unkown
|
page read and write
|
||
|
12115908000
|
unkown
|
page read and write
|
||
|
22347F00000
|
unkown
|
page read and write
|
||
|
2192F98D000
|
unkown
|
page read and write
|
||
|
1D5A587B000
|
unkown
|
page read and write
|
||
|
121156C0000
|
heap
|
page read and write
|
||
|
EDABCE000
|
stack
|
page read and write
|
||
|
1D5A5858000
|
unkown
|
page read and write
|
||
|
2192F97F000
|
unkown
|
page read and write
|
||
|
EDAB4E000
|
stack
|
page read and write
|
||
|
1D5A587F000
|
unkown
|
page read and write
|
||
|
12772D0D000
|
heap
|
page read and write
|
||
|
2192F108000
|
unkown
|
page read and write
|
||
|
22347E13000
|
unkown
|
page read and write
|
||
|
22347E5C000
|
unkown
|
page read and write
|
||
|
2192FE02000
|
unkown
|
page read and write
|
||
|
2192F994000
|
unkown
|
page read and write
|
||
|
2192FE02000
|
unkown
|
page read and write
|
||
|
12115879000
|
unkown
|
page read and write
|
||
|
2192F974000
|
unkown
|
page read and write
|
||
|
1D5A5829000
|
unkown
|
page read and write
|
||
|
12772D22000
|
heap
|
page read and write
|
||
|
2192F984000
|
unkown
|
page read and write
|
||
|
2192F917000
|
unkown
|
page read and write
|
||
|
12772CE0000
|
heap
|
page read and write
|
||
|
2192F994000
|
unkown
|
page read and write
|
||
|
812B97E000
|
stack
|
page read and write
|
||
|
2192F9B8000
|
unkown
|
page read and write
|
||
|
1D5A5842000
|
unkown
|
page read and write
|
||
|
2192F086000
|
unkown
|
page read and write
|
||
|
2192F97D000
|
unkown
|
page read and write
|
||
|
22347E5C000
|
unkown
|
page read and write
|
||
|
2192F057000
|
unkown
|
page read and write
|
||
|
29A2582A000
|
unkown
|
page read and write
|
||
|
2192F9B6000
|
unkown
|
page read and write
|
||
|
2192FD40000
|
remote allocation
|
page read and write
|
||
|
869DF7B000
|
stack
|
page read and write
|
||
|
68374E000
|
stack
|
page read and write
|
||
|
1D5A5876000
|
unkown
|
page read and write
|
||
|
2192FD40000
|
remote allocation
|
page read and write
|
||
|
29A2583C000
|
unkown
|
page read and write
|
There are 336 hidden memdumps, click here to show them.