Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\05c7e28c-2c44-4de2-8fe9-9e5f2127adc6.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\5a5b7c92-cbff-4218-9d19-ef0285cd1ada.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\617138bb-5c14-42dc-bcfc-571be3baf180.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\7375f7e6-e90a-43cc-9f19-b84489d49712.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\7522da09-77e7-4b73-8b0a-6e1b1a88d4cb.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\84e12f83-f77c-4f0f-83a8-383c2d6478e5.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\9cb3c522-45f3-4a68-b2e9-14341f5e35c2.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\00f72e28-6829-49eb-8a1a-5518f8e111c4.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\04253e22-fdcc-46e9-b6a7-8a082598dc17.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\113bc00b-f850-4425-a2c1-2094a8b8199a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\14b7a7ac-d93a-4024-a464-58c76dd3fe3f.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\46e181a6-417b-4ca0-a1f7-4d79b32f0c24.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5bc4a97b-6e5c-43db-b045-a66004d19f8a.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5d6ea54c-e019-4ce6-9e3e-3cb5b4fcf7c6.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5d88e26a-4428-4400-a0c1-3a8666091e63.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6b723081-41ee-406a-9d07-5e26f815dac8.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6fb9b38f-b0ab-489b-8a84-cea8d807f9f2.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\77850723-ea89-4f46-b2ee-9fadb09d5251.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Google Profile.ico (copy)
|
MS Windows icon resource - 13 icons, 8x8, 32 bits/pixel, 10x10, 32 bits/pixel
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\54e3e1bd-ccbb-4427-be2a-ad4e4c511469.tmp
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State (copy)
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000001.dbtmp
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\CURRENT
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\MANIFEST-000001
|
PGP\011Secret Key -
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\536d52c7-27ae-4f8b-9853-eb6680e3d592.tmp
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
State (copy)
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000001.dbtmp
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\CURRENT
(copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\MANIFEST-000001
|
PGP\011Secret Key -
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ad7e5961-9dca-4791-826a-6f3fb69ad524.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d23c8ee6-95fd-4f26-8939-1c0dee8aab79.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d8a5cbbf-d8f0-4e1c-a6f0-a4420a8cea6a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000006.dbtmp
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\e8cdf010-d3b8-4ca1-beb3-db562a5aa3f3.tmp
|
MS Windows icon resource - 13 icons, 8x8, 32 bits/pixel, 10x10, 32 bits/pixel
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\b3873545-70ba-43e3-b382-3bd22cae4503.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\b3eb5e42-9b04-4d50-9aa7-3e5640318448.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\cc1f8062-5cc0-4aa0-ae9e-477ccb5b5728.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\687ff700-9fde-4176-98e1-c382adb47f00.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\7300_15114805\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\7300_15114805\_platform_specific\x86_64\pnacl_public_pnacl_json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\7300_15114805\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\7300_15114805\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\7300_15114805\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\7300_15114805\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=7511538a3a6a0b862c772eace49075ed1bbe2377,
stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\7300_15114805\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\7300_15114805\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\7300_15114805\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\7300_15114805\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\7300_15114805\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=309d6d3d463e6b1b0690f39eb226b1e4c469b2ce,
stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\7300_15114805\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_sz_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=4b15de4ab227d5e46213978b8518d53c53ce1db9,
stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\7300_15114805\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\7300_15114805\manifest.json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\7e04cba9-b1b9-4ded-aedc-b5782d12f4a7.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\88509d69-c4b3-4c38-9e90-ddd518f9f873.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\8ffd3e75-9f82-465f-a511-4d5792347fcf.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\9daadd19-6c4f-4d99-a980-c126b16fa3a7.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\c4808905-f2b0-473c-87e2-5f1ed0405d42.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\eb48b912-8c05-454f-8f20-7beac43f9bdb.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\fa0e2ff2-05dc-4826-9773-29d5e1df6ad5.tmp
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\8ffd3e75-9f82-465f-a511-4d5792347fcf.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\nb\messages.json
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir7300_1218489237\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Spelling\en-US\default.acl
|
Little-endian UTF-16 Unicode text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Spelling\en-US\default.dic
|
Little-endian UTF-16 Unicode text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Spelling\en-US\default.exc
|
Little-endian UTF-16 Unicode text, with no line terminators
|
dropped
|
There are 122 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation --single-argument https://express.adobe.com/page/vCTYm3h0r9BmZ/
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1720,2768340297302204061,425894217471660703,131072
--lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2096 /prefetch:8
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://express.adobe.com/page/vCTYm3h0r9BmZ/
|
 |
||
|
https://storageapi.fleek.co/84e74610-b8bb-4d6b-b394-8b4c2ffd51df-bucket/loginlg.html
|
|
||
|
https://storageapi.fleek.co/84e74610-b8bb-4d6b-b394-8b4c2ffd51df-bucket/loginlg.html
|
104.18.7.145
|
|
|
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
||
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
||
|
https://ogs.google.com
|
unknown
|
||
|
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=92.0.4515.107&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
142.250.186.110
|
||
|
https://www.google.com/images/cleardot.gif
|
unknown
|
||
|
https://i.gyazo.com/214d89a26f0ac918a09f216a1b0f97b4.png
|
104.18.36.4
|
||
|
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
142.250.186.109
|
||
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
|
unknown
|
||
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
https://www.google.com/images/x2.gif
|
unknown
|
||
|
https://accounts.google.com/MergeSession
|
unknown
|
||
|
http://llvm.org/):
|
unknown
|
||
|
https://www.google.com
|
unknown
|
||
|
https://www.google.com/images/dot2.gif
|
unknown
|
||
|
https://code.google.com/p/nativeclient/issues/entry%s:
|
unknown
|
||
|
https://cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
|
104.17.24.14
|
||
|
https://code.google.com/p/nativeclient/issues/entry
|
unknown
|
||
|
https://accounts.google.com
|
unknown
|
||
|
https://unpkg.com/axios/dist/axios.min.js
|
104.16.124.175
|
||
|
https://clients2.googleusercontent.com
|
unknown
|
||
|
https://apis.google.com
|
unknown
|
||
|
https://unpkg.com/axios@0.27.2/dist/axios.min.js
|
104.16.124.175
|
||
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
||
|
https://www.google.com/
|
unknown
|
||
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
||
|
https://chromium.googlesource.com/a/native_client/pnacl-clang.git
|
unknown
|
||
|
https://clients2.google.com
|
unknown
|
||
|
https://clients2.google.com/service/update2/crx
|
unknown
|
There are 21 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
storageapi.fleek.co
|
104.18.7.145
|
|
|
|
accounts.google.com
|
142.250.186.109
|
||
|
cdnjs.cloudflare.com
|
104.17.24.14
|
||
|
i.gyazo.com
|
104.18.36.4
|
||
|
express-prod.adobeprojectm.com
|
13.32.99.29
|
||
|
cs1227.wpc.alphacdn.net
|
192.229.221.185
|
||
|
clients.l.google.com
|
142.250.186.110
|
||
|
unpkg.com
|
104.16.124.175
|
||
|
page.adobespark-assets.com
|
108.138.17.129
|
||
|
use.typekit.net
|
unknown
|
||
|
clients2.google.com
|
unknown
|
||
|
p.typekit.net
|
unknown
|
There are 2 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
104.18.7.145
|
storageapi.fleek.co
|
United States
|
|
|
|
104.17.24.14
|
cdnjs.cloudflare.com
|
United States
|
||
|
192.168.2.1
|
unknown
|
unknown
|
||
|
13.32.99.29
|
express-prod.adobeprojectm.com
|
United States
|
||
|
142.250.186.109
|
accounts.google.com
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
192.229.221.185
|
cs1227.wpc.alphacdn.net
|
United States
|
||
|
104.16.124.175
|
unpkg.com
|
United States
|
||
|
142.250.186.110
|
clients.l.google.com
|
United States
|
||
|
108.138.17.129
|
page.adobespark-assets.com
|
United States
|
||
|
127.0.0.1
|
unknown
|
unknown
|
||
|
104.18.36.4
|
i.gyazo.com
|
United States
|
There are 2 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-2660496737-530772487-1027249058-1002
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blocklist_cache_md5_digest
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
|
GlobalAssocChangedCounter
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
version
|
There are 39 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
1665B624000
|
heap
|
page read and write
|
||
|
1665B54D000
|
heap
|
page read and write
|
||
|
1665B545000
|
heap
|
page read and write
|
||
|
1665ADED000
|
heap
|
page read and write
|
||
|
1665B491000
|
heap
|
page read and write
|
||
|
1665B560000
|
heap
|
page read and write
|
||
|
1665B482000
|
heap
|
page read and write
|
||
|
1665AC5F000
|
heap
|
page read and write
|
||
|
BB3667C000
|
stack
|
page read and write
|
||
|
1665A890000
|
trusted library allocation
|
page read and write
|
||
|
BB3657B000
|
stack
|
page read and write
|
||
|
1665ADDB000
|
heap
|
page read and write
|
||
|
1665A89F000
|
trusted library allocation
|
page read and write
|
||
|
D9197B000
|
stack
|
page read and write
|
||
|
1665A895000
|
trusted library allocation
|
page read and write
|
||
|
D9187E000
|
stack
|
page read and write
|
||
|
29CDA913000
|
heap
|
page read and write
|
||
|
1665B765000
|
heap
|
page read and write
|
||
|
CF23D7F000
|
stack
|
page read and write
|
||
|
1665AD1D000
|
heap
|
page read and write
|
||
|
1665B582000
|
heap
|
page read and write
|
||
|
1665B7AF000
|
heap
|
page read and write
|
||
|
1665AC26000
|
heap
|
page read and write
|
||
|
1665AD0A000
|
heap
|
page read and write
|
||
|
95750FF000
|
stack
|
page read and write
|
||
|
1665A9D0000
|
trusted library allocation
|
page read and write
|
||
|
16655D72000
|
heap
|
page read and write
|
||
|
1665B640000
|
heap
|
page read and write
|
||
|
1665B645000
|
heap
|
page read and write
|
||
|
1665AC2C000
|
heap
|
page read and write
|
||
|
1665AC5F000
|
heap
|
page read and write
|
||
|
1665ADA3000
|
heap
|
page read and write
|
||
|
1D3E044B000
|
heap
|
page read and write
|
||
|
1665A8D0000
|
trusted library allocation
|
page read and write
|
||
|
1665A89D000
|
trusted library allocation
|
page read and write
|
||
|
16655DFF000
|
heap
|
page read and write
|
||
|
1665ADD8000
|
heap
|
page read and write
|
||
|
1665B5FA000
|
heap
|
page read and write
|
||
|
1D3E0480000
|
heap
|
page read and write
|
||
|
1665AC5F000
|
heap
|
page read and write
|
||
|
1665B658000
|
heap
|
page read and write
|
||
|
1665B5F6000
|
heap
|
page read and write
|
||
|
1D3E03B0000
|
trusted library allocation
|
page read and write
|
||
|
1665B7B5000
|
heap
|
page read and write
|
||
|
2094DE13000
|
heap
|
page read and write
|
||
|
D91CFF000
|
stack
|
page read and write
|
||
|
1665B4FF000
|
heap
|
page read and write
|
||
|
29CDA82B000
|
heap
|
page read and write
|
||
|
CF23EFF000
|
stack
|
page read and write
|
||
|
16656800000
|
trusted library allocation
|
page read and write
|
||
|
1665B43A000
|
heap
|
page read and write
|
||
|
1665A9F0000
|
trusted library allocation
|
page read and write
|
||
|
245996BF000
|
heap
|
page read and write
|
||
|
1665B48B000
|
heap
|
page read and write
|
||
|
1665B642000
|
heap
|
page read and write
|
||
|
16655440000
|
heap
|
page read and write
|
||
|
1D3E047A000
|
heap
|
page read and write
|
||
|
1665B764000
|
heap
|
page read and write
|
||
|
1665B717000
|
heap
|
page read and write
|
||
|
29CDA843000
|
heap
|
page read and write
|
||
|
1665B796000
|
heap
|
page read and write
|
||
|
2094DE7A000
|
heap
|
page read and write
|
||
|
16655D9F000
|
heap
|
page read and write
|
||
|
D91B7F000
|
stack
|
page read and write
|
||
|
1665B5B0000
|
heap
|
page read and write
|
||
|
1665B54F000
|
heap
|
page read and write
|
||
|
1D3E043B000
|
heap
|
page read and write
|
||
|
1665B648000
|
heap
|
page read and write
|
||
|
1665B705000
|
heap
|
page read and write
|
||
|
1665ADC9000
|
heap
|
page read and write
|
||
|
166562B0000
|
trusted library section
|
page readonly
|
||
|
16655D59000
|
heap
|
page read and write
|
||
|
D915AE000
|
stack
|
page read and write
|
||
|
29CDAF30000
|
trusted library allocation
|
page read and write
|
||
|
1665A9C0000
|
trusted library allocation
|
page read and write
|
||
|
1665B6A2000
|
heap
|
page read and write
|
||
|
957537B000
|
stack
|
page read and write
|
||
|
1665B6D6000
|
heap
|
page read and write
|
||
|
1665B42F000
|
heap
|
page read and write
|
||
|
1665A891000
|
trusted library allocation
|
page read and write
|
||
|
1665B625000
|
heap
|
page read and write
|
||
|
1665B64B000
|
heap
|
page read and write
|
||
|
1665AD9D000
|
heap
|
page read and write
|
||
|
1665B6BA000
|
heap
|
page read and write
|
||
|
1665B680000
|
heap
|
page read and write
|
||
|
1665B6D7000
|
heap
|
page read and write
|
||
|
D9227E000
|
stack
|
page read and write
|
||
|
1665AA70000
|
remote allocation
|
page read and write
|
||
|
16655483000
|
heap
|
page read and write
|
||
|
1665ADD0000
|
heap
|
page read and write
|
||
|
1665AC3F000
|
heap
|
page read and write
|
||
|
1665AC37000
|
heap
|
page read and write
|
||
|
1665B50A000
|
heap
|
page read and write
|
||
|
1665B6E2000
|
heap
|
page read and write
|
||
|
16655D4C000
|
heap
|
page read and write
|
||
|
1665B7B9000
|
heap
|
page read and write
|
||
|
2094DF00000
|
heap
|
page read and write
|
||
|
1665B4B8000
|
heap
|
page read and write
|
||
|
1665B708000
|
heap
|
page read and write
|
||
|
1665B7BB000
|
heap
|
page read and write
|
||
|
1665AC5C000
|
heap
|
page read and write
|
||
|
166552C0000
|
heap
|
page read and write
|
||
|
1665A8A5000
|
trusted library allocation
|
page read and write
|
||
|
1665B686000
|
heap
|
page read and write
|
||
|
1665B66C000
|
heap
|
page read and write
|
||
|
1665B785000
|
heap
|
page read and write
|
||
|
16655C15000
|
heap
|
page read and write
|
||
|
1665B70C000
|
heap
|
page read and write
|
||
|
166562A0000
|
trusted library section
|
page readonly
|
||
|
1665A966000
|
trusted library allocation
|
page read and write
|
||
|
1665542B000
|
heap
|
page read and write
|
||
|
1665A98C000
|
trusted library allocation
|
page read and write
|
||
|
1665B4B6000
|
heap
|
page read and write
|
||
|
1665B773000
|
heap
|
page read and write
|
||
|
DB86AFB000
|
stack
|
page read and write
|
||
|
16655D81000
|
heap
|
page read and write
|
||
|
1665B65F000
|
heap
|
page read and write
|
||
|
1665B614000
|
heap
|
page read and write
|
||
|
1665543B000
|
heap
|
page read and write
|
||
|
9575478000
|
stack
|
page read and write
|
||
|
1665B547000
|
heap
|
page read and write
|
||
|
1665A96A000
|
trusted library allocation
|
page read and write
|
||
|
1665A89A000
|
trusted library allocation
|
page read and write
|
||
|
1665B571000
|
heap
|
page read and write
|
||
|
29CDA7D0000
|
heap
|
page read and write
|
||
|
1665B4E6000
|
heap
|
page read and write
|
||
|
957527E000
|
stack
|
page read and write
|
||
|
1665ADAF000
|
heap
|
page read and write
|
||
|
1665B663000
|
heap
|
page read and write
|
||
|
1665AC5F000
|
heap
|
page read and write
|
||
|
1665B595000
|
heap
|
page read and write
|
||
|
16655D13000
|
heap
|
page read and write
|
||
|
1665B4F7000
|
heap
|
page read and write
|
||
|
1665AC5F000
|
heap
|
page read and write
|
||
|
1665B76F000
|
heap
|
page read and write
|
||
|
1665A9E0000
|
trusted library allocation
|
page read and write
|
||
|
1665B548000
|
heap
|
page read and write
|
||
|
1665ADA4000
|
heap
|
page read and write
|
||
|
1665B6BE000
|
heap
|
page read and write
|
||
|
2094DBE0000
|
heap
|
page read and write
|
||
|
24599620000
|
heap
|
page read and write
|
||
|
1665AC4F000
|
heap
|
page read and write
|
||
|
1665AC53000
|
heap
|
page read and write
|
||
|
1665ADA0000
|
heap
|
page read and write
|
||
|
245994D0000
|
heap
|
page read and write
|
||
|
1665B678000
|
heap
|
page read and write
|
||
|
245996B0000
|
heap
|
page read and write
|
||
|
BB3677E000
|
stack
|
page read and write
|
||
|
1665B69F000
|
heap
|
page read and write
|
||
|
1665B666000
|
heap
|
page read and write
|
||
|
1665A8A3000
|
trusted library allocation
|
page read and write
|
||
|
1665B5CC000
|
heap
|
page read and write
|
||
|
1665B71A000
|
heap
|
page read and write
|
||
|
29CDA800000
|
heap
|
page read and write
|
||
|
1665B5FD000
|
heap
|
page read and write
|
||
|
1665B711000
|
heap
|
page read and write
|
||
|
29CDA886000
|
heap
|
page read and write
|
||
|
1665AC5F000
|
heap
|
page read and write
|
||
|
1665B771000
|
heap
|
page read and write
|
||
|
1665552C000
|
heap
|
page read and write
|
||
|
16655DFF000
|
heap
|
page read and write
|
||
|
1665A800000
|
trusted library allocation
|
page read and write
|
||
|
957567E000
|
stack
|
page read and write
|
||
|
1665B689000
|
heap
|
page read and write
|
||
|
1665B66F000
|
heap
|
page read and write
|
||
|
29CDA902000
|
heap
|
page read and write
|
||
|
1665A960000
|
trusted library allocation
|
page read and write
|
||
|
1665B687000
|
heap
|
page read and write
|
||
|
BB3687F000
|
stack
|
page read and write
|
||
|
1665B603000
|
heap
|
page read and write
|
||
|
166563E0000
|
trusted library allocation
|
page read and write
|
||
|
DB86EFC000
|
stack
|
page read and write
|
||
|
1665ADCE000
|
heap
|
page read and write
|
||
|
1665B789000
|
heap
|
page read and write
|
||
|
1665B49B000
|
heap
|
page read and write
|
||
|
1665B503000
|
heap
|
page read and write
|
||
|
2094DE60000
|
heap
|
page read and write
|
||
|
1665AC50000
|
heap
|
page read and write
|
||
|
1665B425000
|
heap
|
page read and write
|
||
|
CF23F7E000
|
stack
|
page read and write
|
||
|
1D3E042A000
|
heap
|
page read and write
|
||
|
1665B50D000
|
heap
|
page read and write
|
||
|
1665B63D000
|
heap
|
page read and write
|
||
|
1665A9B0000
|
trusted library allocation
|
page read and write
|
||
|
1D3E0502000
|
heap
|
page read and write
|
||
|
1665B656000
|
heap
|
page read and write
|
||
|
1665A897000
|
trusted library allocation
|
page read and write
|
||
|
1665AD9B000
|
heap
|
page read and write
|
||
|
16655D40000
|
heap
|
page read and write
|
||
|
1665ADEA000
|
heap
|
page read and write
|
||
|
1665B774000
|
heap
|
page read and write
|
||
|
1D3E0310000
|
heap
|
page read and write
|
||
|
1665AD67000
|
heap
|
page read and write
|
||
|
1665B79E000
|
heap
|
page read and write
|
||
|
16655426000
|
heap
|
page read and write
|
||
|
1665B6C0000
|
heap
|
page read and write
|
||
|
1665A899000
|
trusted library allocation
|
page read and write
|
||
|
1665B6DB000
|
heap
|
page read and write
|
||
|
1665B42A000
|
heap
|
page read and write
|
||
|
1665B4BE000
|
heap
|
page read and write
|
||
|
1665B7AB000
|
heap
|
page read and write
|
||
|
2094E402000
|
trusted library allocation
|
page read and write
|
||
|
1665B423000
|
heap
|
page read and write
|
||
|
1665B637000
|
heap
|
page read and write
|
||
|
1D3E0513000
|
heap
|
page read and write
|
||
|
1665B63E000
|
heap
|
page read and write
|
||
|
1665ADE9000
|
heap
|
page read and write
|
||
|
D924FE000
|
stack
|
page read and write
|
||
|
1665B5F2000
|
heap
|
page read and write
|
||
|
1665B79D000
|
heap
|
page read and write
|
||
|
D91A7A000
|
stack
|
page read and write
|
||
|
16655DE5000
|
heap
|
page read and write
|
||
|
DB869FE000
|
stack
|
page read and write
|
||
|
1665B67D000
|
heap
|
page read and write
|
||
|
1665B6D0000
|
heap
|
page read and write
|
||
|
1665B65E000
|
heap
|
page read and write
|
||
|
BB3697B000
|
stack
|
page read and write
|
||
|
1665ADEE000
|
heap
|
page read and write
|
||
|
1665AC55000
|
heap
|
page read and write
|
||
|
1665B572000
|
heap
|
page read and write
|
||
|
1665B6B6000
|
heap
|
page read and write
|
||
|
166562C0000
|
trusted library section
|
page readonly
|
||
|
1665B5D5000
|
heap
|
page read and write
|
||
|
1665B6D9000
|
heap
|
page read and write
|
||
|
1665A895000
|
trusted library allocation
|
page read and write
|
||
|
1665B5AA000
|
heap
|
page read and write
|
||
|
1665B5F3000
|
heap
|
page read and write
|
||
|
1665AC0F000
|
heap
|
page read and write
|
||
|
1D3E0C02000
|
heap
|
page read and write
|
||
|
1665B77D000
|
heap
|
page read and write
|
||
|
1665AD94000
|
heap
|
page read and write
|
||
|
1665A9F0000
|
trusted library allocation
|
page read and write
|
||
|
1665ADD9000
|
heap
|
page read and write
|
||
|
1665545A000
|
heap
|
page read and write
|
||
|
1665A89B000
|
trusted library allocation
|
page read and write
|
||
|
1665AC56000
|
heap
|
page read and write
|
||
|
16655DF1000
|
heap
|
page read and write
|
||
|
1665B654000
|
heap
|
page read and write
|
||
|
1665B697000
|
heap
|
page read and write
|
||
|
BB3627B000
|
stack
|
page read and write
|
||
|
24599660000
|
heap
|
page read and write
|
||
|
1665AC5F000
|
heap
|
page read and write
|
||
|
1665B661000
|
heap
|
page read and write
|
||
|
166562E0000
|
trusted library section
|
page readonly
|
||
|
1665A9E0000
|
trusted library allocation
|
page read and write
|
||
|
1665B5BB000
|
heap
|
page read and write
|
||
|
16655DD9000
|
heap
|
page read and write
|
||
|
D91E7E000
|
stack
|
page read and write
|
||
|
2094DF02000
|
heap
|
page read and write
|
||
|
1D3E0C15000
|
heap
|
page read and write
|
||
|
16655E90000
|
trusted library allocation
|
page read and write
|
||
|
1665B78C000
|
heap
|
page read and write
|
||
|
1665A8E3000
|
trusted library allocation
|
page read and write
|
||
|
1665ADA7000
|
heap
|
page read and write
|
||
|
DB86FFE000
|
stack
|
page read and write
|
||
|
16656140000
|
trusted library allocation
|
page read and write
|
||
|
29CDA760000
|
heap
|
page read and write
|
||
|
1665A8C0000
|
trusted library allocation
|
page read and write
|
||
|
1665B4F9000
|
heap
|
page read and write
|
||
|
166554A1000
|
heap
|
page read and write
|
||
|
D925FD000
|
stack
|
page read and write
|
||
|
2094DE29000
|
heap
|
page read and write
|
||
|
1665ADAA000
|
heap
|
page read and write
|
||
|
1665B7A7000
|
heap
|
page read and write
|
||
|
1665B706000
|
heap
|
page read and write
|
||
|
1665A880000
|
trusted library allocation
|
page read and write
|
||
|
1665B767000
|
heap
|
page read and write
|
||
|
1665B5F8000
|
heap
|
page read and write
|
||
|
1665B659000
|
heap
|
page read and write
|
||
|
1665B69B000
|
heap
|
page read and write
|
||
|
1665B400000
|
heap
|
page read and write
|
||
|
1665B798000
|
heap
|
page read and write
|
||
|
1665AC59000
|
heap
|
page read and write
|
||
|
1665ADE3000
|
heap
|
page read and write
|
||
|
29CDB002000
|
trusted library allocation
|
page read and write
|
||
|
29CDA85B000
|
heap
|
page read and write
|
||
|
1665B50A000
|
heap
|
page read and write
|
||
|
1D3E0C00000
|
heap
|
page read and write
|
||
|
1665B7A2000
|
heap
|
page read and write
|
||
|
1665B57D000
|
heap
|
page read and write
|
||
|
1665B79B000
|
heap
|
page read and write
|
||
|
16655D35000
|
heap
|
page read and write
|
||
|
16655413000
|
heap
|
page read and write
|
||
|
16655DA4000
|
heap
|
page read and write
|
||
|
1D3E0500000
|
heap
|
page read and write
|
||
|
1665A8C0000
|
trusted library allocation
|
page read and write
|
||
|
1665B64E000
|
heap
|
page read and write
|
||
|
1665B669000
|
heap
|
page read and write
|
||
|
16655D00000
|
heap
|
page read and write
|
||
|
D91C7C000
|
stack
|
page read and write
|
||
|
1665AC5F000
|
heap
|
page read and write
|
||
|
1665B667000
|
heap
|
page read and write
|
||
|
1665B64D000
|
heap
|
page read and write
|
||
|
1665ADE6000
|
heap
|
page read and write
|
||
|
1665B6DD000
|
heap
|
page read and write
|
||
|
16655D6E000
|
heap
|
page read and write
|
||
|
1665B600000
|
heap
|
page read and write
|
||
|
16655C02000
|
heap
|
page read and write
|
||
|
1665AE40000
|
trusted library allocation
|
page read and write
|
||
|
1665AC26000
|
heap
|
page read and write
|
||
|
29CDA932000
|
heap
|
page read and write
|
||
|
16655478000
|
heap
|
page read and write
|
||
|
1665AD81000
|
heap
|
page read and write
|
||
|
1665545D000
|
heap
|
page read and write
|
||
|
CF23C7F000
|
stack
|
page read and write
|
||
|
16655472000
|
heap
|
page read and write
|
||
|
BB367FB000
|
stack
|
page read and write
|
||
|
1665B703000
|
heap
|
page read and write
|
||
|
245996B8000
|
heap
|
page read and write
|
||
|
1665B723000
|
heap
|
page read and write
|
||
|
1665ADBC000
|
heap
|
page read and write
|
||
|
1665AC5F000
|
heap
|
page read and write
|
||
|
1665B674000
|
heap
|
page read and write
|
||
|
1665B68E000
|
heap
|
page read and write
|
||
|
1665ADCC000
|
heap
|
page read and write
|
||
|
1665B6AD000
|
heap
|
page read and write
|
||
|
1665B682000
|
heap
|
page read and write
|
||
|
2094DBD0000
|
heap
|
page read and write
|
||
|
16655DEA000
|
heap
|
page read and write
|
||
|
1665B6CD000
|
heap
|
page read and write
|
||
|
16655DDD000
|
heap
|
page read and write
|
||
|
1665AC0F000
|
heap
|
page read and write
|
||
|
1665B702000
|
heap
|
page read and write
|
||
|
1665B799000
|
heap
|
page read and write
|
||
|
DB86DFE000
|
stack
|
page read and write
|
||
|
1665B6A6000
|
heap
|
page read and write
|
||
|
BB36A7E000
|
stack
|
page read and write
|
||
|
1665AC5F000
|
heap
|
page read and write
|
||
|
1665B6C8000
|
heap
|
page read and write
|
||
|
1665B699000
|
heap
|
page read and write
|
||
|
CF239AC000
|
stack
|
page read and write
|
||
|
1665B502000
|
heap
|
page read and write
|
||
|
1665B646000
|
heap
|
page read and write
|
||
|
16655BC1000
|
trusted library allocation
|
page read and write
|
||
|
1665ADE7000
|
heap
|
page read and write
|
||
|
1665B7A6000
|
heap
|
page read and write
|
||
|
1665B778000
|
heap
|
page read and write
|
||
|
1665A970000
|
trusted library allocation
|
page read and write
|
||
|
1665B78A000
|
heap
|
page read and write
|
||
|
1665B50D000
|
heap
|
page read and write
|
||
|
1665AD13000
|
heap
|
page read and write
|
||
|
16655D61000
|
heap
|
page read and write
|
||
|
1665A870000
|
trusted library allocation
|
page read and write
|
||
|
1665B6C6000
|
heap
|
page read and write
|
||
|
1665AC5F000
|
heap
|
page read and write
|
||
|
1665B5CE000
|
heap
|
page read and write
|
||
|
166554E4000
|
heap
|
page read and write
|
||
|
1665B635000
|
heap
|
page read and write
|
||
|
1665B77E000
|
heap
|
page read and write
|
||
|
1665B780000
|
heap
|
page read and write
|
||
|
1665B70F000
|
heap
|
page read and write
|
||
|
16655513000
|
heap
|
page read and write
|
||
|
1665B6AA000
|
heap
|
page read and write
|
||
|
1665A8DF000
|
trusted library allocation
|
page read and write
|
||
|
1665A8E5000
|
trusted library allocation
|
page read and write
|
||
|
1665AC52000
|
heap
|
page read and write
|
||
|
1665B6BC000
|
heap
|
page read and write
|
||
|
1665AC13000
|
heap
|
page read and write
|
||
|
1665ADC1000
|
heap
|
page read and write
|
||
|
1665B769000
|
heap
|
page read and write
|
||
|
1665AC02000
|
heap
|
page read and write
|
||
|
1665B50B000
|
heap
|
page read and write
|
||
|
1665B4B9000
|
heap
|
page read and write
|
||
|
1665B795000
|
heap
|
page read and write
|
||
|
1665ADDD000
|
heap
|
page read and write
|
||
|
16655540000
|
heap
|
page read and write
|
||
|
1665B613000
|
heap
|
page read and write
|
||
|
1665B664000
|
heap
|
page read and write
|
||
|
1D3E0400000
|
heap
|
page read and write
|
||
|
2094DF13000
|
heap
|
page read and write
|
||
|
DB864BB000
|
stack
|
page read and write
|
||
|
1665B6B3000
|
heap
|
page read and write
|
||
|
1665B68B000
|
heap
|
page read and write
|
||
|
1665B605000
|
heap
|
page read and write
|
||
|
29CDA900000
|
heap
|
page read and write
|
||
|
1665B44B000
|
heap
|
page read and write
|
||
|
1665AC2A000
|
heap
|
page read and write
|
||
|
1665B78E000
|
heap
|
page read and write
|
||
|
1665ADD8000
|
heap
|
page read and write
|
||
|
1665B7B7000
|
heap
|
page read and write
|
||
|
1665A8D4000
|
trusted library allocation
|
page read and write
|
||
|
1665B7AA000
|
heap
|
page read and write
|
||
|
1665A8A1000
|
trusted library allocation
|
page read and write
|
||
|
24599600000
|
heap
|
page read and write
|
||
|
1665A97D000
|
trusted library allocation
|
page read and write
|
||
|
1665B651000
|
heap
|
page read and write
|
||
|
1665ADD6000
|
heap
|
page read and write
|
||
|
9575577000
|
stack
|
page read and write
|
||
|
1665A961000
|
trusted library allocation
|
page read and write
|
||
|
1665A89C000
|
trusted library allocation
|
page read and write
|
||
|
1665ADD4000
|
heap
|
page read and write
|
||
|
1665ADC4000
|
heap
|
page read and write
|
||
|
29CDA813000
|
heap
|
page read and write
|
||
|
16655E01000
|
trusted library allocation
|
page read and write
|
||
|
1665B712000
|
heap
|
page read and write
|
||
|
1665B715000
|
heap
|
page read and write
|
||
|
1665B783000
|
heap
|
page read and write
|
||
|
1665B76D000
|
heap
|
page read and write
|
||
|
1D3E0413000
|
heap
|
page read and write
|
||
|
D9207D000
|
stack
|
page read and write
|
||
|
1665AC48000
|
heap
|
page read and write
|
||
|
1665B7AD000
|
heap
|
page read and write
|
||
|
16655502000
|
heap
|
page read and write
|
||
|
1665B69D000
|
heap
|
page read and write
|
||
|
1665AD00000
|
heap
|
page read and write
|
||
|
1665B71E000
|
heap
|
page read and write
|
||
|
1665A890000
|
trusted library allocation
|
page read and write
|
||
|
1665B6D2000
|
heap
|
page read and write
|
||
|
1665B5AB000
|
heap
|
page read and write
|
||
|
1665B2F0000
|
trusted library allocation
|
page read and write
|
||
|
957507B000
|
stack
|
page read and write
|
||
|
1665AA10000
|
remote allocation
|
page read and write
|
||
|
1665B6AC000
|
heap
|
page read and write
|
||
|
D91DFF000
|
stack
|
page read and write
|
||
|
1665B786000
|
heap
|
page read and write
|
||
|
1665B4C9000
|
heap
|
page read and write
|
||
|
D91F7B000
|
stack
|
page read and write
|
||
|
1665AA10000
|
remote allocation
|
page read and write
|
||
|
1665A898000
|
trusted library allocation
|
page read and write
|
||
|
1665B7B1000
|
heap
|
page read and write
|
||
|
1665B6CB000
|
heap
|
page read and write
|
||
|
1665B6C4000
|
heap
|
page read and write
|
||
|
166562D0000
|
trusted library section
|
page readonly
|
||
|
957577F000
|
stack
|
page read and write
|
||
|
D9217A000
|
stack
|
page read and write
|
||
|
1665B502000
|
heap
|
page read and write
|
||
|
1665B71F000
|
heap
|
page read and write
|
||
|
1665AC45000
|
heap
|
page read and write
|
||
|
16655C00000
|
heap
|
page read and write
|
||
|
2094E3A0000
|
trusted library allocation
|
page read and write
|
||
|
1665A960000
|
trusted library allocation
|
page read and write
|
||
|
D91D7E000
|
stack
|
page read and write
|
||
|
16655BF0000
|
trusted library allocation
|
page read and write
|
||
|
2094DE00000
|
heap
|
page read and write
|
||
|
1665B6DF000
|
heap
|
page read and write
|
||
|
1665AD99000
|
heap
|
page read and write
|
||
|
1665B534000
|
heap
|
page read and write
|
||
|
1665B792000
|
heap
|
page read and write
|
||
|
16655320000
|
heap
|
page read and write
|
||
|
1665B700000
|
heap
|
page read and write
|
||
|
166552B0000
|
heap
|
page read and write
|
||
|
1665AD11000
|
heap
|
page read and write
|
||
|
1665AD9E000
|
heap
|
page read and write
|
||
|
1665B691000
|
heap
|
page read and write
|
||
|
16655400000
|
heap
|
page read and write
|
||
|
CF23DFD000
|
stack
|
page read and write
|
||
|
16655455000
|
heap
|
page read and write
|
||
|
CF23E7A000
|
stack
|
page read and write
|
||
|
1665B6A8000
|
heap
|
page read and write
|
||
|
1665B63A000
|
heap
|
page read and write
|
||
|
1665B402000
|
heap
|
page read and write
|
||
|
1665B77B000
|
heap
|
page read and write
|
||
|
1665A8B0000
|
trusted library allocation
|
page read and write
|
||
|
1665B51B000
|
heap
|
page read and write
|
||
|
1665B714000
|
heap
|
page read and write
|
||
|
1665545F000
|
heap
|
page read and write
|
||
|
1D3E0482000
|
heap
|
page read and write
|
||
|
1665ADAE000
|
heap
|
page read and write
|
||
|
1665ADE5000
|
heap
|
page read and write
|
||
|
1665B70D000
|
heap
|
page read and write
|
||
|
D9237E000
|
stack
|
page read and write
|
||
|
29CDA884000
|
heap
|
page read and write
|
||
|
CF23CFF000
|
stack
|
page read and write
|
||
|
1665B76C000
|
heap
|
page read and write
|
||
|
1665B6B4000
|
heap
|
page read and write
|
||
|
1665AC58000
|
heap
|
page read and write
|
||
|
1665ADA8000
|
heap
|
page read and write
|
||
|
1665AC5F000
|
heap
|
page read and write
|
||
|
1665ADEB000
|
heap
|
page read and write
|
||
|
1665A986000
|
trusted library allocation
|
page read and write
|
||
|
957517E000
|
stack
|
page read and write
|
||
|
1665B5D1000
|
heap
|
page read and write
|
||
|
1665AC5B000
|
heap
|
page read and write
|
||
|
1665AD02000
|
heap
|
page read and write
|
||
|
DB86BFB000
|
stack
|
page read and write
|
||
|
1D3E048C000
|
heap
|
page read and write
|
||
|
1665B671000
|
heap
|
page read and write
|
||
|
1665B7A0000
|
heap
|
page read and write
|
||
|
D923FF000
|
stack
|
page read and write
|
||
|
1665ADAC000
|
heap
|
page read and write
|
||
|
1665AC5F000
|
heap
|
page read and write
|
||
|
1665B790000
|
heap
|
page read and write
|
||
|
1665AC4D000
|
heap
|
page read and write
|
||
|
1665ADA1000
|
heap
|
page read and write
|
||
|
1665B413000
|
heap
|
page read and write
|
||
|
1665A8D9000
|
trusted library allocation
|
page read and write
|
||
|
1665C010000
|
heap
|
page read and write
|
||
|
16655A80000
|
trusted library allocation
|
page read and write
|
||
|
1D3E0464000
|
heap
|
page read and write
|
||
|
1665A8A7000
|
trusted library allocation
|
page read and write
|
||
|
29CDA87C000
|
heap
|
page read and write
|
||
|
1665B67A000
|
heap
|
page read and write
|
||
|
1665B6D3000
|
heap
|
page read and write
|
||
|
1665B65B000
|
heap
|
page read and write
|
||
|
1665B66A000
|
heap
|
page read and write
|
||
|
1665B694000
|
heap
|
page read and write
|
||
|
166562F0000
|
trusted library section
|
page readonly
|
||
|
1665B7A4000
|
heap
|
page read and write
|
||
|
16655520000
|
heap
|
page read and write
|
||
|
D9152B000
|
stack
|
page read and write
|
||
|
1665A8DC000
|
trusted library allocation
|
page read and write
|
||
|
1665AC5F000
|
heap
|
page read and write
|
||
|
1665AC4B000
|
heap
|
page read and write
|
||
|
1665B5E1000
|
heap
|
page read and write
|
||
|
1665B6CF000
|
heap
|
page read and write
|
||
|
1665A940000
|
trusted library allocation
|
page read and write
|
||
|
1665A8EE000
|
trusted library allocation
|
page read and write
|
||
|
1665AC00000
|
heap
|
page read and write
|
||
|
2094DF15000
|
heap
|
page read and write
|
||
|
1665B6C3000
|
heap
|
page read and write
|
||
|
1665B6B8000
|
heap
|
page read and write
|
||
|
1665B776000
|
heap
|
page read and write
|
||
|
1665B695000
|
heap
|
page read and write
|
||
|
1D3E0320000
|
heap
|
page read and write
|
||
|
29CDA770000
|
heap
|
page read and write
|
||
|
1665A830000
|
trusted library allocation
|
page read and write
|
||
|
1D3E044F000
|
heap
|
page read and write
|
||
|
1665AC42000
|
heap
|
page read and write
|
||
|
1665B7B3000
|
heap
|
page read and write
|
||
|
1665A97A000
|
trusted library allocation
|
page read and write
|
||
|
24599665000
|
heap
|
page read and write
|
||
|
1665B71C000
|
heap
|
page read and write
|
||
|
1665B6A3000
|
heap
|
page read and write
|
||
|
1D3E0380000
|
heap
|
page read and write
|
||
|
1665B692000
|
heap
|
page read and write
|
||
|
1665B6AF000
|
heap
|
page read and write
|
||
|
1665A973000
|
trusted library allocation
|
page read and write
|
||
|
DB86CFC000
|
stack
|
page read and write
|
||
|
1665B5FA000
|
heap
|
page read and write
|
||
|
2094DE43000
|
heap
|
page read and write
|
||
|
1665B70A000
|
heap
|
page read and write
|
||
|
2094DC40000
|
heap
|
page read and write
|
There are 522 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://storageapi.fleek.co/84e74610-b8bb-4d6b-b394-8b4c2ffd51df-bucket/loginlg.html
|
|
|
|
https://express.adobe.com/page/vCTYm3h0r9BmZ/
|