Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\0b4951b4-d0e4-4e71-9fc4-22dd46c3cf69.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\0f15f81d-a2e2-434e-9a67-58ddd17ff18e.tmp
|
SysEx File -
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\121fd69f-b957-4895-a006-a33ff20a68aa.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\4aa17048-b48a-4aa3-baf1-3b0bed51ffbe.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\8fab66d0-c0c0-45ec-ab2f-9bf291b7af51.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\91e10707-f2fc-4de7-a82d-025d5e58dcf3.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\986d42f7-8649-4b92-94b4-5d02b1873e4a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\04c6cca4-0188-475f-ac99-d1ed562bc353.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\14aa6f6e-9895-4db4-9727-b671feffa61c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1acbed87-8197-4359-9c2a-06279cf10548.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\231ea2da-f740-431a-8097-6740c71b77fe.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\258e079b-edbe-4112-b71f-7af796bb374c.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\40e2a574-c4b4-4d2e-bc9e-b72ceb1bd68c.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\425fe601-baa9-4cea-a0d8-b9cc59068067.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\435de003-915b-44c8-b79d-0ce5c08395ae.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\82313930-2534-4216-9555-736974a52c63.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8550e2f8-0d6d-4c99-817b-61e6ba47022a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8683dfc9-5ae2-45e5-9c54-6836adc5dbce.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9a7b8998-c8de-47e6-af2b-4715a2fc6f31.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_euc-onenote.officeapps.live.com_0.indexeddb.leveldb\000001.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_euc-onenote.officeapps.live.com_0.indexeddb.leveldb\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_euc-onenote.officeapps.live.com_0.indexeddb.leveldb\000005.ldb
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_euc-onenote.officeapps.live.com_0.indexeddb.leveldb\CURRENT
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_euc-onenote.officeapps.live.com_0.indexeddb.leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_euc-onenote.officeapps.live.com_0.indexeddb.leveldb\MANIFEST-000001
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences.. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferencesac (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences{ (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences. (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\e6b36ac5f5cc9cbcdac0c08392db25625d539905\be785a6f-ad71-4b15-a857-96ed2afe8d9a\index
|
ISO-8859 text, with no line terminators, with escape sequences
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\e6b36ac5f5cc9cbcdac0c08392db25625d539905\be785a6f-ad71-4b15-a857-96ed2afe8d9a\index-dir\temp-index
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\e6b36ac5f5cc9cbcdac0c08392db25625d539905\be785a6f-ad71-4b15-a857-96ed2afe8d9a\index-dir\the-real-indexP.
(copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\e6b36ac5f5cc9cbcdac0c08392db25625d539905\index.txt
(copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\e6b36ac5f5cc9cbcdac0c08392db25625d539905\index.txt.
(copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\e6b36ac5f5cc9cbcdac0c08392db25625d539905\index.txt.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\3b57046a-a87c-4550-8d87-0760b8408cc0.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\6ae47188-9dea-4aa8-966c-f51e5997aee6.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\ab842098-936c-4d4d-8f14-db4c50a135a9.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.oldon
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\c9bf6c43-a4a6-46ab-a1d5-80529051edd3.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\af6a1fd2-43f2-4931-b5b4-f48bd962ea2f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c4697215-8a3c-4dbf-97cf-78e6637a8549.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c72f5f44-c458-45bf-9016-51e76d2c568c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c7e48424-f6e4-4ad7-8814-73af7ebf2f8b.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\e7ad6b51-7857-44d3-b944-15f591433305.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f17c999e-afa4-4050-9f49-f83a46622429.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State. (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StateQ (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cacher (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\a5c34fb8-309e-4931-ae69-cfa882eddd75.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\b9605b12-d85e-46f8-8653-deae86a7e2a4.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\c3d5b237-92ef-42d6-b5eb-ba743b21ca1c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\e0f2f360-9c45-438f-ba54-faf1988f84f3.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\f886a1ca-f242-41a5-8a93-3157a719445a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\449dfbd3-9b61-4822-835a-d71f52895d15.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5924_2024320734\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5924_2024320734\_platform_specific\x86_64\pnacl_public_pnacl_json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5924_2024320734\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5924_2024320734\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5924_2024320734\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5924_2024320734\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=7511538a3a6a0b862c772eace49075ed1bbe2377,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5924_2024320734\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5924_2024320734\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5924_2024320734\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5924_2024320734\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5924_2024320734\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=309d6d3d463e6b1b0690f39eb226b1e4c469b2ce,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5924_2024320734\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_sz_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=4b15de4ab227d5e46213978b8518d53c53ce1db9,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5924_2024320734\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\5924_2024320734\manifest.json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\969b2941-83c6-4e0f-b25a-d6657478a755.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\a92e0b9c-ebcb-40c5-b235-69a3c02132c9.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\cb6479d2-1770-4a55-919f-2f059e3f9a3b.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1029456932\cb6479d2-1770-4a55-919f-2f059e3f9a3b.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\449dfbd3-9b61-4822-835a-d71f52895d15.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\iw\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\angular.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\background_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\cast_sender.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\feedback.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\feedback.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\feedback_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\material_css_min.css
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\mirroring_cast_streaming.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\mirroring_common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\mirroring_hangouts.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir5924_1473783656\CRX_INSTALL\mirroring_webrtc.js
|
ASCII text, with very long lines
|
dropped
|
|
There are 206 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "https://vztnl-my.sharepoint.com/:o:/g/personal/mvanzaal_vzt_nl/EuuLOsYLcitAhOY9KZNqP9gBXbzHgWcXtG3S-zCfidXUXA?e=5%3ahV4RUj&at=9
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1592,6233830419226784550,16524938468778052118,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1932 /prefetch:8
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://vztnl-my.sharepoint.com/:o:/g/personal/mvanzaal_vzt_nl/EuuLOsYLcitAhOY9KZNqP9gBXbzHgWcXtG3S-zCfidXUXA?e=5%3ahV4RUj&at=9
|
 |
||
|
https://www.vzt.nl/algemenevoorwaarden
|
|
||
|
https://vztnl-my.sharepoint.com/personal/mvanzaal_vzt_nl/_layouts/15/Doc.aspx?sourcedoc={c63a8beb-720b-402b-84e6-3d29936a3fd8}&action=view&wd=target%28VAN%20ZAAL%20TRANSPORT.one%7Cee96c080-a5a0-45b2-ab17-4c46e71e821a%2FVAN%20ZAAL%20TRANSPORT%7C8b790e4f-45a0-4569-b92d-4e687cda39f3%2F%29
|
|
||
|
https://www.vzt.nl/
|
|
||
|
https://www.vzt.nl/vacatures
|
|
||
|
https://vztnl-my.sharepoint.com/:o:/g/personal/mvanzaal_vzt_nl/EuuLOsYLcitAhOY9KZNqP9gBXbzHgWcXtG3S-zCfidXUXA?rtime=EMODEjCg2Ug
|
|
||
|
https://stats.g.doubleclick.net
|
unknown
|
|
|
|
https://apis.google.com/js/client.js
|
unknown
|
|
|
|
https://www.google.com/images/cleardot.gif
|
unknown
|
|
|
|
https://crash.corp.google.com/samples?reportid=&q=
|
unknown
|
|
|
|
https://www.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://vztnl-my.sharepoint.com/:o:/g/personal/mvanzaal_vzt_nl/EuuLOsYLcitAhOY9KZNqP9gBXbzHgWcXtG3S-
|
unknown
|
|
|
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
|
unknown
|
|
|
|
https://accounts.google.com/MergeSession
|
unknown
|
|
|
|
https://preprod-hangouts-googleapis.sandbox.google.com
|
unknown
|
|
|
|
https://www.google.com
|
unknown
|
|
|
|
https://hangouts.clients6.google.com
|
unknown
|
|
|
|
https://meet.google.com
|
unknown
|
|
|
|
https://hangouts.google.com/hangouts/_/logpref
|
unknown
|
|
|
|
https://accounts.google.com
|
unknown
|
|
|
|
https://clients2.google.com/cr/report
|
unknown
|
|
|
|
http://angularjs.org
|
unknown
|
|
|
|
https://creativecommons.org/publicdomain/zero/1.0/.
|
unknown
|
|
|
|
https://github.com/angular/material
|
unknown
|
|
|
|
https://apis.google.com
|
unknown
|
|
|
|
https://vztnl-my.sharepoint.com/personal/mvanzaal_vzt_nl/_layouts/15/Doc.aspx?sourcedoc=%7Bc63a8beb-
|
unknown
|
|
|
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
|
|
|
https://github.com/madler/zlib/blob/master/zlib.h
|
unknown
|
|
|
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
|
|
|
https://clients2.google.com
|
unknown
|
|
|
|
https://vztnl-my.sharepoint.com/personal/mvanzaal_vzt_nl/_layouts/15/Doc.aspx?sourcedoc=
|
unknown
|
|
|
|
https://www.google.com/tools/feedback
|
unknown
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
unknown
|
|
|
|
https://dns.google
|
unknown
|
|
|
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
|
|
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
|
|
|
https://ogs.google.com
|
unknown
|
|
|
|
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
|
unknown
|
|
|
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://www.google.com;
|
unknown
|
|
|
|
https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
|
unknown
|
|
|
|
https://hangouts.google.com/
|
unknown
|
|
|
|
https://www.google.com/images/x2.gif
|
unknown
|
|
|
|
http://llvm.org/):
|
unknown
|
|
|
|
https://www.google.com/images/dot2.gif
|
unknown
|
|
|
|
https://officewayside.weebly.com/
|
|
||
|
https://meetings.clients6.google.com
|
unknown
|
|
|
|
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://code.google.com/p/nativeclient/issues/entry%s:
|
unknown
|
|
|
|
http://tools.ietf.org/html/rfc1950
|
unknown
|
|
|
|
https://code.google.com/p/nativeclient/issues/entry
|
unknown
|
|
|
|
https://support.google.com/chromecast/answer/2998456
|
unknown
|
|
|
|
https://clients2.googleusercontent.com
|
unknown
|
|
|
|
https://platform.twitter.com/widgets/widget_iframe.a53eecb4584348a2ad32ec2ae21f6eae.html?origin=https%3A%2F%2Fwww.vzt.nl
|
|
||
|
https://docs.google.com
|
unknown
|
|
|
|
https://www.google.com/
|
unknown
|
|
|
|
https://feedback.googleusercontent.com
|
unknown
|
|
|
|
https://chromium.googlesource.com/a/native_client/pnacl-clang.git
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx
|
unknown
|
|
|
|
https://clients6.google.com
|
unknown
|
|
There are 51 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
gstaticadssl.l.google.com
|
142.250.185.131
|
|
|
|
sp-2020021412301152490000000a-1069308460.us-west-2.elb.amazonaws.com
|
54.189.175.59
|
|
|
|
cs45.wac.edgecastcdn.net
|
93.184.220.70
|
|
|
|
weebly.map.fastly.net
|
151.101.1.46
|
|
|
|
platform.twitter.map.fastly.net
|
199.232.136.157
|
|
|
|
i-db3p-cor005.api.p001.1drv.com
|
13.104.208.160
|
|
|
|
embed.tawk.to
|
104.22.25.131
|
|
|
|
va.tawk.to
|
104.22.24.131
|
|
|
|
scontent.xx.fbcdn.net
|
157.240.17.15
|
|
|
|
ssl-google-analytics.l.google.com
|
142.250.186.168
|
|
|
|
www.google.com
|
142.250.185.196
|
|
|
|
cs510.wpc.edgecastcdn.net
|
152.199.21.141
|
|
|
|
star-mini.c10r.facebook.com
|
157.240.17.35
|
|
|
|
accounts.google.com
|
142.250.184.237
|
|
|
|
www-google-analytics.l.google.com
|
142.250.186.142
|
|
|
|
stats.l.doubleclick.net
|
74.125.140.157
|
|
|
|
pop-esv5.mix.linkedin.com
|
108.174.11.37
|
|
|
|
www-googletagmanager.l.google.com
|
142.250.186.168
|
|
|
|
www.freeprivacypolicy.com
|
104.26.7.220
|
|
|
|
syndication.twitter.com
|
104.244.42.8
|
|
|
|
187270-ipv4.farm.dprodmgd104.aa-rt.sharepoint.com
|
40.108.231.27
|
|
|
|
pages-wildcard.weebly.com
|
199.34.228.54
|
|
|
|
www.vzt.nl
|
185.159.242.66
|
|
|
|
cs511.wpc.edgecastcdn.net
|
152.199.21.140
|
|
|
|
cs672.wac.edgecastcdn.net
|
192.229.233.50
|
|
|
|
clients.l.google.com
|
216.58.212.174
|
|
|
|
googlehosted.l.googleusercontent.com
|
216.58.212.161
|
|
|
|
officewayside.weebly.com
|
unknown
|
|
|
|
abs.twimg.com
|
unknown
|
|
|
|
cdn2.editmysite.com
|
unknown
|
|
|
|
messaging.office.com
|
unknown
|
|
|
|
ajax.aspnetcdn.com
|
unknown
|
|
|
|
stats.g.doubleclick.net
|
unknown
|
|
|
|
clients2.googleusercontent.com
|
unknown
|
|
|
|
vztnl-my.sharepoint.com
|
unknown
|
|
|
|
clients2.google.com
|
unknown
|
|
|
|
amcdn.msftauth.net
|
unknown
|
|
|
|
cdn.syndication.twimg.com
|
unknown
|
|
|
|
www.onenote.com
|
unknown
|
|
|
|
platform.twitter.com
|
unknown
|
|
|
|
www.facebook.com
|
unknown
|
|
|
|
onenoteonlinesync.onenote.com
|
unknown
|
|
|
|
ton.twimg.com
|
unknown
|
|
|
|
www.linkedin.com
|
unknown
|
|
|
|
pbs.twimg.com
|
unknown
|
|
|
|
storage.live.com
|
unknown
|
|
|
|
connect.facebook.net
|
unknown
|
|
|
|
px.ads.linkedin.com
|
unknown
|
|
|
|
ec.editmysite.com
|
unknown
|
|
|
|
snap.licdn.com
|
unknown
|
|
There are 40 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.168.2.1
|
unknown
|
unknown
|
|
|
|
157.240.17.35
|
star-mini.c10r.facebook.com
|
United States
|
|
|
|
151.101.1.46
|
weebly.map.fastly.net
|
United States
|
|
|
|
192.229.233.50
|
cs672.wac.edgecastcdn.net
|
United States
|
|
|
|
74.125.140.157
|
stats.l.doubleclick.net
|
United States
|
|
|
|
239.255.255.250
|
unknown
|
Reserved
|
|
|
|
142.250.185.196
|
www.google.com
|
United States
|
|
|
|
142.250.186.142
|
www-google-analytics.l.google.com
|
United States
|
|
|
|
142.250.184.237
|
accounts.google.com
|
United States
|
|
|
|
216.58.212.161
|
googlehosted.l.googleusercontent.com
|
United States
|
|
|
|
127.0.0.1
|
unknown
|
unknown
|
|
|
|
108.174.11.37
|
pop-esv5.mix.linkedin.com
|
United States
|
|
|
|
185.159.242.66
|
www.vzt.nl
|
Netherlands
|
|
|
|
104.22.25.131
|
embed.tawk.to
|
United States
|
|
|
|
199.34.228.54
|
pages-wildcard.weebly.com
|
United States
|
|
|
|
157.240.17.15
|
scontent.xx.fbcdn.net
|
United States
|
|
|
|
104.26.7.220
|
www.freeprivacypolicy.com
|
United States
|
|
|
|
152.199.21.141
|
cs510.wpc.edgecastcdn.net
|
United States
|
|
|
|
216.58.212.174
|
clients.l.google.com
|
United States
|
|
|
|
54.189.175.59
|
sp-2020021412301152490000000a-1069308460.us-west-2.elb.amazonaws.com
|
United States
|
|
|
|
104.22.24.131
|
va.tawk.to
|
United States
|
|
|
|
13.104.208.160
|
i-db3p-cor005.api.p001.1drv.com
|
United States
|
|
|
|
152.199.21.140
|
cs511.wpc.edgecastcdn.net
|
United States
|
|
|
|
104.244.42.8
|
syndication.twitter.com
|
United States
|
|
|
|
40.108.231.27
|
187270-ipv4.farm.dprodmgd104.aa-rt.sharepoint.com
|
United States
|
|
|
|
142.250.185.131
|
gstaticadssl.l.google.com
|
United States
|
|
|
|
93.184.220.70
|
cs45.wac.edgecastcdn.net
|
European Union
|
|
|
|
142.250.186.168
|
ssl-google-analytics.l.google.com
|
United States
|
|
|
|
199.232.136.157
|
platform.twitter.map.fastly.net
|
United States
|
|
There are 19 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
|
There are 33 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7FF578BEB000
|
unkown image
|
page readonly
|
|
|
|
13376B40000
|
unkown
|
page read and write
|
|
|
|
2BBD602A000
|
unkown
|
page read and write
|
|
|
|
1EC6DB5E000
|
unkown
|
page read and write
|
|
|
|
1CB89A49000
|
unkown
|
page read and write
|
|
|
|
7FF5D872F000
|
unkown image
|
page readonly
|
|
|
|
A07DEF7000
|
stack
|
page read and write
|
|
|
|
1EC6D4C3000
|
unkown
|
page read and write
|
|
|
|
7FF56EB88000
|
unkown image
|
page readonly
|
|
|
|
7FF56E7F3000
|
unkown image
|
page readonly
|
|
|
|
7DF5E25D2000
|
unkown image
|
page readonly
|
|
|
|
CFA147B000
|
stack
|
page read and write
|
|
|
|
7DF57CBD0000
|
unkown image
|
page readonly
|
|
|
|
7FF5E54ED000
|
unkown image
|
page readonly
|
|
|
|
7FF5D87D4000
|
unkown image
|
page readonly
|
|
|
|
7FF5E54E1000
|
unkown image
|
page readonly
|
|
|
|
7FF56EAB0000
|
unkown image
|
page readonly
|
|
|
|
13376B61000
|
unkown
|
page read and write
|
|
|
|
7FF5E5340000
|
unkown image
|
page readonly
|
|
|
|
7FF5E5456000
|
unkown image
|
page readonly
|
|
|
|
7FF5E5462000
|
unkown image
|
page readonly
|
|
|
|
7DF5EF2F0000
|
unkown image
|
page readonly
|
|
|
|
1EC6D413000
|
unkown
|
page read and write
|
|
|
|
7FF56ED66000
|
unkown image
|
page readonly
|
|
|
|
7DF5E25C2000
|
unkown image
|
page readonly
|
|
|
|
7FF56EB66000
|
unkown image
|
page readonly
|
|
|
|
14A54B8F000
|
unkown
|
page read and write
|
|
|
|
1EC6DB9B000
|
unkown
|
page read and write
|
|
|
|
7FF56EA80000
|
unkown image
|
page readonly
|
|
|
|
7FF56ED27000
|
unkown image
|
page readonly
|
|
|
|
1EC6DBCB000
|
unkown
|
page read and write
|
|
|
|
1EC6DB9F000
|
unkown
|
page read and write
|
|
|
|
7DF578B22000
|
unkown image
|
page readonly
|
|
|
|
1EC6DBB5000
|
unkown
|
page read and write
|
|
|
|
1EC6E06A000
|
unkown
|
page read and write
|
|
|
|
7FF5E5523000
|
unkown image
|
page readonly
|
|
|
|
1EC6D1E0000
|
heap private
|
page read and write
|
|
|
|
1EC6DB6F000
|
unkown
|
page read and write
|
|
|
|
7FF56ED4A000
|
unkown image
|
page readonly
|
|
|
|
14A54940000
|
unkown image
|
page readonly
|
|
|
|
1EC6E102000
|
unkown
|
page read and write
|
|
|
|
7FF56E533000
|
unkown image
|
page readonly
|
|
|
|
2BBD6053000
|
unkown
|
page read and write
|
|
|
|
7DF57CBC2000
|
unkown image
|
page readonly
|
|
|
|
2BBD6680000
|
unkown
|
page read and write
|
|
|
|
2BBD6200000
|
unkown image
|
page readonly
|
|
|
|
7FF5E5348000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB91000
|
unkown
|
page read and write
|
|
|
|
104A8FE000
|
stack
|
page read and write
|
|
|
|
2BBD5EB0000
|
unkown image
|
page read and write
|
|
|
|
379FCFF000
|
stack
|
page read and write
|
|
|
|
2BBD6013000
|
unkown
|
page read and write
|
|
|
|
7FF56EC64000
|
unkown image
|
page readonly
|
|
|
|
7FF5E550A000
|
unkown image
|
page readonly
|
|
|
|
7FF5E54E7000
|
unkown image
|
page readonly
|
|
|
|
7FF56E609000
|
unkown image
|
page readonly
|
|
|
|
1EC6D4CA000
|
unkown
|
page read and write
|
|
|
|
7FF5E547D000
|
unkown image
|
page readonly
|
|
|
|
7DF578B20000
|
unkown image
|
page readonly
|
|
|
|
7FF56E9F0000
|
unkown image
|
page readonly
|
|
|
|
13371F59000
|
unkown
|
page read and write
|
|
|
|
7FF56EAAE000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB95000
|
unkown
|
page read and write
|
|
|
|
7DF5EF2D0000
|
unkown image
|
page readonly
|
|
|
|
7DF5E25E0000
|
unkown image
|
page readonly
|
|
|
|
1CB89820000
|
unkown image
|
page readonly
|
|
|
|
1EC6DA02000
|
unkown
|
page read and write
|
|
|
|
1CB89A00000
|
unkown
|
page read and write
|
|
|
|
379FC7F000
|
stack
|
page read and write
|
|
|
|
2BBD6802000
|
unkown
|
page read and write
|
|
|
|
7DF578B10000
|
unkown image
|
page readonly
|
|
|
|
1CB89C00000
|
unkown image
|
page readonly
|
|
|
|
7DF57CBD2000
|
unkown image
|
page readonly
|
|
|
|
7FF56ECBD000
|
unkown image
|
page readonly
|
|
|
|
1EC6DBCC000
|
unkown
|
page read and write
|
|
|
|
7FF5C5477000
|
unkown image
|
page readonly
|
|
|
|
7DF578B30000
|
unkown image
|
page readonly
|
|
|
|
14A54FA0000
|
unkown image
|
page readonly
|
|
|
|
14A54B60000
|
heap default
|
page read and write
|
|
|
|
7FF5C54B7000
|
unkown image
|
page readonly
|
|
|
|
1EC6D449000
|
unkown
|
page read and write
|
|
|
|
2042C64D000
|
unkown
|
page read and write
|
|
|
|
7FF5E5326000
|
unkown image
|
page readonly
|
|
|
|
CFA14FF000
|
stack
|
page read and write
|
|
|
|
1EC6DBAB000
|
unkown
|
page read and write
|
|
|
|
1EC6D4FB000
|
unkown
|
page read and write
|
|
|
|
1EC6D800000
|
unkown image
|
page readonly
|
|
|
|
7FF56ED21000
|
unkown image
|
page readonly
|
|
|
|
7FF578817000
|
unkown image
|
page readonly
|
|
|
|
104A87B000
|
stack
|
page read and write
|
|
|
|
2042C680000
|
unkown
|
page read and write
|
|
|
|
7FF56EAD4000
|
unkown image
|
page readonly
|
|
|
|
1EC6E163000
|
unkown
|
page read and write
|
|
|
|
104ABFF000
|
stack
|
page read and write
|
|
|
|
7FF5E52F7000
|
unkown image
|
page readonly
|
|
|
|
5D6B4FE000
|
stack
|
page read and write
|
|
|
|
13376B46000
|
unkown
|
page read and write
|
|
|
|
7FF5C546D000
|
unkown image
|
page readonly
|
|
|
|
7DF5E25C2000
|
unkown image
|
page readonly
|
|
|
|
5D6B777000
|
stack
|
page read and write
|
|
|
|
1EC6DB71000
|
unkown
|
page read and write
|
|
|
|
1CB89A70000
|
unkown
|
page read and write
|
|
|
|
A07DDFB000
|
stack
|
page read and write
|
|
|
|
2042C5A0000
|
unkown
|
page read and write
|
|
|
|
1EC6DB9F000
|
unkown
|
page read and write
|
|
|
|
1EC6DBAA000
|
unkown
|
page read and write
|
|
|
|
7DF5EF2D2000
|
unkown image
|
page readonly
|
|
|
|
7FF5D87D7000
|
unkown image
|
page readonly
|
|
|
|
1CB89A47000
|
unkown
|
page read and write
|
|
|
|
7FF5E54FB000
|
unkown image
|
page readonly
|
|
|
|
1EC6DBB5000
|
unkown
|
page read and write
|
|
|
|
1EC6DBDA000
|
unkown
|
page read and write
|
|
|
|
2042C580000
|
unkown image
|
page readonly
|
|
|
|
2042CA00000
|
unkown image
|
page readonly
|
|
|
|
7DF5CF252000
|
unkown image
|
page readonly
|
|
|
|
14A54AA0000
|
unkown image
|
page readonly
|
|
|
|
7FF5E54F4000
|
unkown image
|
page readonly
|
|
|
|
7FF5C5474000
|
unkown image
|
page readonly
|
|
|
|
7FF5C5461000
|
unkown image
|
page readonly
|
|
|
|
379FEFA000
|
stack
|
page read and write
|
|
|
|
2BBD5F20000
|
heap default
|
page read and write
|
|
|
|
7FF5C53D6000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB1C000
|
unkown
|
page read and write
|
|
|
|
7FF592247000
|
unkown image
|
page readonly
|
|
|
|
1EC6DBCB000
|
unkown
|
page read and write
|
|
|
|
7FF5C53B1000
|
unkown image
|
page readonly
|
|
|
|
7FF56EC8D000
|
unkown image
|
page readonly
|
|
|
|
7FF579057000
|
unkown image
|
page readonly
|
|
|
|
7FF5E5345000
|
unkown image
|
page readonly
|
|
|
|
7FF5D871F000
|
unkown image
|
page readonly
|
|
|
|
7FF5D8822000
|
unkown image
|
page readonly
|
|
|
|
2BBD6047000
|
unkown
|
page read and write
|
|
|
|
1EC6DB8D000
|
unkown
|
page read and write
|
|
|
|
7FF5C52C5000
|
unkown image
|
page readonly
|
|
|
|
7FF56EB1D000
|
unkown image
|
page readonly
|
|
|
|
7FF5C54A3000
|
unkown image
|
page readonly
|
|
|
|
1EC6D220000
|
unkown image
|
page readonly
|
|
|
|
7DF5CF250000
|
unkown image
|
page readonly
|
|
|
|
CFA17FF000
|
stack
|
page read and write
|
|
|
|
5D6BAFF000
|
stack
|
page read and write
|
|
|
|
CFA0F1C000
|
unkown
|
page read and write
|
|
|
|
1EC6D47C000
|
unkown
|
page read and write
|
|
|
|
7FF578813000
|
unkown image
|
page readonly
|
|
|
|
7FF56EC54000
|
unkown image
|
page readonly
|
|
|
|
7FF5E53B5000
|
unkown image
|
page readonly
|
|
|
|
7DF5E25D0000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB9F000
|
unkown
|
page read and write
|
|
|
|
14A54B6B000
|
heap default
|
page read and write
|
|
|
|
7FF56EC25000
|
unkown image
|
page readonly
|
|
|
|
14A54940000
|
unkown image
|
page readonly
|
|
|
|
1EC6D502000
|
unkown
|
page read and write
|
|
|
|
7DF578B30000
|
unkown image
|
page readonly
|
|
|
|
13376CD0000
|
unkown
|
page read and write
|
|
|
|
14A54920000
|
unkown image
|
page read and write
|
|
|
|
7FF5E5378000
|
unkown image
|
page readonly
|
|
|
|
1EC6D320000
|
unkown image
|
page readonly
|
|
|
|
1EC6E102000
|
unkown
|
page read and write
|
|
|
|
1CB89800000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB96000
|
unkown
|
page read and write
|
|
|
|
7FF5D87E4000
|
unkown image
|
page readonly
|
|
|
|
2BBD6113000
|
unkown
|
page read and write
|
|
|
|
7FF5D82D1000
|
unkown image
|
page readonly
|
|
|
|
1EC6DBB0000
|
unkown
|
page read and write
|
|
|
|
14A54A70000
|
unkown
|
page read and write
|
|
|
|
1CFA7B90000
|
unkown
|
page read and write
|
|
|
|
14A54B8F000
|
unkown
|
page read and write
|
|
|
|
2BBD6410000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB9F000
|
unkown
|
page read and write
|
|
|
|
1EC6DB16000
|
unkown
|
page read and write
|
|
|
|
7FF5D85BA000
|
unkown image
|
page readonly
|
|
|
|
2042C62A000
|
unkown
|
page read and write
|
|
|
|
7FF5C548A000
|
unkown image
|
page readonly
|
|
|
|
1CB89950000
|
unkown
|
page read and write
|
|
|
|
7FF5E52CA000
|
unkown image
|
page readonly
|
|
|
|
7FF5C5464000
|
unkown image
|
page readonly
|
|
|
|
1EC6DBC0000
|
unkown
|
page read and write
|
|
|
|
7DF578B10000
|
unkown image
|
page readonly
|
|
|
|
5D6B47E000
|
stack
|
page read and write
|
|
|
|
13376B80000
|
unkown
|
page read and write
|
|
|
|
7FF5C53E2000
|
unkown image
|
page readonly
|
|
|
|
7DF57CBE0000
|
unkown image
|
page readonly
|
|
|
|
7DF578B22000
|
unkown image
|
page readonly
|
|
|
|
7FF5D8721000
|
unkown image
|
page readonly
|
|
|
|
7FF5C54B7000
|
unkown image
|
page readonly
|
|
|
|
7DF5CF250000
|
unkown image
|
page readonly
|
|
|
|
7DF578B20000
|
unkown image
|
page readonly
|
|
|
|
14A54D90000
|
heap private
|
page read and write
|
|
|
|
13376B70000
|
unkown
|
page read and write
|
|
|
|
1EC6D46F000
|
unkown
|
page read and write
|
|
|
|
5D6B877000
|
stack
|
page read and write
|
|
|
|
7FF56EC83000
|
unkown image
|
page readonly
|
|
|
|
7FF5E5537000
|
unkown image
|
page readonly
|
|
|
|
7DF5EF2E0000
|
unkown image
|
page readonly
|
|
|
|
1EC6E002000
|
unkown
|
page read and write
|
|
|
|
7FF5D7F96000
|
unkown image
|
page readonly
|
|
|
|
1CB8A202000
|
unkown
|
page read and write
|
|
|
|
7FF5E543F000
|
unkown image
|
page readonly
|
|
|
|
7FF56EBB8000
|
unkown image
|
page readonly
|
|
|
|
13376C10000
|
unkown
|
page read and write
|
|
|
|
1EC6D44D000
|
unkown
|
page read and write
|
|
|
|
104A67E000
|
stack
|
page read and write
|
|
|
|
1EC6DB97000
|
unkown
|
page read and write
|
|
|
|
5D6B1AC000
|
unkown
|
page read and write
|
|
|
|
13376B4E000
|
unkown
|
page read and write
|
|
|
|
7FF56EC96000
|
unkown image
|
page readonly
|
|
|
|
1CB89B08000
|
unkown
|
page read and write
|
|
|
|
2042C450000
|
unkown image
|
page readonly
|
|
|
|
1EC6D44C000
|
unkown
|
page read and write
|
|
|
|
7FF5D874A000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB99000
|
unkown
|
page read and write
|
|
|
|
2BBD6102000
|
unkown
|
page read and write
|
|
|
|
7FF56E8D2000
|
unkown image
|
page readonly
|
|
|
|
7FF5D8827000
|
unkown image
|
page readonly
|
|
|
|
7FF578FA9000
|
unkown image
|
page readonly
|
|
|
|
7FF56EB0A000
|
unkown image
|
page readonly
|
|
|
|
5D6BCF8000
|
stack
|
page read and write
|
|
|
|
7DF4769E0000
|
unkown image
|
page readonly
|
|
|
|
1EC6D513000
|
unkown
|
page read and write
|
|
|
|
1EC6DBB9000
|
unkown
|
page read and write
|
|
|
|
2BBD606F000
|
unkown
|
page read and write
|
|
|
|
7DF5E25C0000
|
unkown image
|
page readonly
|
|
|
|
7FF5C524A000
|
unkown image
|
page readonly
|
|
|
|
2042CE02000
|
unkown
|
page read and write
|
|
|
|
7FF5C5335000
|
unkown image
|
page readonly
|
|
|
|
7FF5E5537000
|
unkown image
|
page readonly
|
|
|
|
1EC6E002000
|
unkown
|
page read and write
|
|
|
|
14A54B77000
|
unkown
|
page read and write
|
|
|
|
CFA0F9E000
|
stack
|
page read and write
|
|
|
|
7FF5D87E7000
|
unkown image
|
page readonly
|
|
|
|
7FF5C5130000
|
unkown image
|
page readonly
|
|
|
|
1CB89B13000
|
unkown
|
page read and write
|
|
|
|
1CFA70D0000
|
unkown
|
page read and write
|
|
|
|
7FF5D8630000
|
unkown image
|
page readonly
|
|
|
|
7FF57901B000
|
unkown image
|
page readonly
|
|
|
|
7DF5EF2E2000
|
unkown image
|
page readonly
|
|
|
|
2BBD5F00000
|
unkown image
|
page readonly
|
|
|
|
7FF56EA4F000
|
unkown image
|
page readonly
|
|
|
|
7FF5D8668000
|
unkown image
|
page readonly
|
|
|
|
2042CB80000
|
unkown image
|
page readonly
|
|
|
|
13371F9A000
|
unkown
|
page read and write
|
|
|
|
7FF5C5407000
|
unkown image
|
page readonly
|
|
|
|
13376CA0000
|
unkown
|
page read and write
|
|
|
|
7FF56ED77000
|
unkown image
|
page readonly
|
|
|
|
7FF5D8491000
|
unkown image
|
page readonly
|
|
|
|
7FF5D7F90000
|
unkown image
|
page readonly
|
|
|
|
2BBD609B000
|
unkown
|
page read and write
|
|
|
|
7FF578F96000
|
unkown image
|
page readonly
|
|
|
|
7DF582E10000
|
unkown image
|
page readonly
|
|
|
|
1CB89A13000
|
unkown
|
page read and write
|
|
|
|
CFA16FF000
|
stack
|
page read and write
|
|
|
|
7FF5E5526000
|
unkown image
|
page readonly
|
|
|
|
2042C653000
|
unkown
|
page read and write
|
|
|
|
5D6B67E000
|
stack
|
page read and write
|
|
|
|
1EC6DB00000
|
unkown
|
page read and write
|
|
|
|
7FF56ED24000
|
unkown image
|
page readonly
|
|
|
|
7DF582E10000
|
unkown image
|
page readonly
|
|
|
|
2042C480000
|
unkown image
|
page readonly
|
|
|
|
7DF59BFF2000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB99000
|
unkown
|
page read and write
|
|
|
|
2042C4A0000
|
heap default
|
page read and write
|
|
|
|
2BBD6000000
|
unkown
|
page read and write
|
|
|
|
2042C430000
|
unkown image
|
page read and write
|
|
|
|
7FF5C53C3000
|
unkown image
|
page readonly
|
|
|
|
7FF5770EB000
|
unkown image
|
page readonly
|
|
|
|
7FF56EC6F000
|
unkown image
|
page readonly
|
|
|
|
7FF56EB1F000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB78000
|
unkown
|
page read and write
|
|
|
|
1CB897E0000
|
unkown image
|
page read and write
|
|
|
|
1EC6DBBD000
|
unkown
|
page read and write
|
|
|
|
A07D91E000
|
stack
|
page read and write
|
|
|
|
7FF578F6E000
|
unkown image
|
page readonly
|
|
|
|
7DF57CBC0000
|
unkown image
|
page readonly
|
|
|
|
13371F59000
|
unkown
|
page read and write
|
|
|
|
1EC6DB83000
|
unkown
|
page read and write
|
|
|
|
2BBD6590000
|
unkown image
|
page readonly
|
|
|
|
1CFA70F1000
|
unkown
|
page read and write
|
|
|
|
7FF56EC38000
|
unkown image
|
page readonly
|
|
|
|
7FF5D8752000
|
unkown image
|
page readonly
|
|
|
|
7DF582E02000
|
unkown image
|
page readonly
|
|
|
|
7FF56E605000
|
unkown image
|
page readonly
|
|
|
|
7FF56ED37000
|
unkown image
|
page readonly
|
|
|
|
13371490000
|
unkown image
|
page readonly
|
|
|
|
7FF5C52C8000
|
unkown image
|
page readonly
|
|
|
|
7DF5CF260000
|
unkown image
|
page readonly
|
|
|
|
2042C713000
|
unkown
|
page read and write
|
|
|
|
1EC6DBD5000
|
unkown
|
page read and write
|
|
|
|
7FF5D87EB000
|
unkown image
|
page readonly
|
|
|
|
379FD79000
|
stack
|
page read and write
|
|
|
|
13371F18000
|
unkown
|
page read and write
|
|
|
|
7FF5D8777000
|
unkown image
|
page readonly
|
|
|
|
13376B64000
|
unkown
|
page read and write
|
|
|
|
2042C600000
|
unkown
|
page read and write
|
|
|
|
7FF56EA45000
|
unkown image
|
page readonly
|
|
|
|
7DF578B12000
|
unkown image
|
page readonly
|
|
|
|
2BBD6108000
|
unkown
|
page read and write
|
|
|
|
7FF578F9D000
|
unkown image
|
page readonly
|
|
|
|
1EC6D4A6000
|
unkown
|
page read and write
|
|
|
|
7FF579001000
|
unkown image
|
page readonly
|
|
|
|
7FF56ED2D000
|
unkown image
|
page readonly
|
|
|
|
1EC6DBD5000
|
unkown
|
page read and write
|
|
|
|
1EC6E06A000
|
unkown
|
page read and write
|
|
|
|
7FF5D87DD000
|
unkown image
|
page readonly
|
|
|
|
1EC6DBB7000
|
unkown
|
page read and write
|
|
|
|
5D6BA7A000
|
stack
|
page read and write
|
|
|
|
379FE7F000
|
stack
|
page read and write
|
|
|
|
14A54B9F000
|
unkown
|
page read and write
|
|
|
|
7FF5C54A6000
|
unkown image
|
page readonly
|
|
|
|
1EC6DBC6000
|
unkown
|
page read and write
|
|
|
|
7FF5D8635000
|
unkown image
|
page readonly
|
|
|
|
7DF4E0490000
|
unkown image
|
page readonly
|
|
|
|
1EC6E019000
|
unkown
|
page read and write
|
|
|
|
7FF579017000
|
unkown image
|
page readonly
|
|
|
|
1CB89A3C000
|
unkown
|
page read and write
|
|
|
|
7FF5D8733000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB99000
|
unkown
|
page read and write
|
|
|
|
7DF582E00000
|
unkown image
|
page readonly
|
|
|
|
7FF579014000
|
unkown image
|
page readonly
|
|
|
|
7FF5D85F7000
|
unkown image
|
page readonly
|
|
|
|
7DF5EF2D2000
|
unkown image
|
page readonly
|
|
|
|
2042C708000
|
unkown
|
page read and write
|
|
|
|
2BBD604B000
|
unkown
|
page read and write
|
|
|
|
7FF56E537000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB99000
|
unkown
|
page read and write
|
|
|
|
7DF59BFE2000
|
unkown image
|
page readonly
|
|
|
|
104A3DE000
|
stack
|
page read and write
|
|
|
|
7FF578FA7000
|
unkown image
|
page readonly
|
|
|
|
14A54B77000
|
heap default
|
page read and write
|
|
|
|
7FF56ECA2000
|
unkown image
|
page readonly
|
|
|
|
7FF579046000
|
unkown image
|
page readonly
|
|
|
|
7FF5E545A000
|
unkown image
|
page readonly
|
|
|
|
7FF578F63000
|
unkown image
|
page readonly
|
|
|
|
7DF5EF2E0000
|
unkown image
|
page readonly
|
|
|
|
7FF5E54E4000
|
unkown image
|
page readonly
|
|
|
|
1CFA7EC0000
|
unkown
|
page read and write
|
|
|
|
7DF582DF0000
|
unkown image
|
page readonly
|
|
|
|
7FF56EC59000
|
unkown image
|
page readonly
|
|
|
|
7FF5E51EA000
|
unkown image
|
page readonly
|
|
|
|
7FF5E4FE7000
|
unkown image
|
page readonly
|
|
|
|
1EC6D484000
|
unkown
|
page read and write
|
|
|
|
1EC6DBAA000
|
unkown
|
page read and write
|
|
|
|
7FF56E7F6000
|
unkown image
|
page readonly
|
|
|
|
1CB89A2A000
|
unkown
|
page read and write
|
|
|
|
2BBD607D000
|
unkown
|
page read and write
|
|
|
|
CFA127E000
|
stack
|
page read and write
|
|
|
|
1CB89830000
|
unkown image
|
page readonly
|
|
|
|
7DF5E25D2000
|
unkown image
|
page readonly
|
|
|
|
7DF4CD120000
|
unkown image
|
page readonly
|
|
|
|
1EC6DBB9000
|
unkown
|
page read and write
|
|
|
|
2BBD5EF0000
|
unkown image
|
page readonly
|
|
|
|
7DF5CF270000
|
unkown image
|
page readonly
|
|
|
|
104AAFE000
|
stack
|
page read and write
|
|
|
|
7DF5CF252000
|
unkown image
|
page readonly
|
|
|
|
7FF5C53AF000
|
unkown image
|
page readonly
|
|
|
|
7FF5E542F000
|
unkown image
|
page readonly
|
|
|
|
104A35B000
|
unkown
|
page read and write
|
|
|
|
13377060000
|
unkown
|
page read and write
|
|
|
|
13376B40000
|
unkown
|
page read and write
|
|
|
|
1EC6E002000
|
unkown
|
page read and write
|
|
|
|
1EC6D516000
|
unkown
|
page read and write
|
|
|
|
13371F9A000
|
unkown
|
page read and write
|
|
|
|
CFA15F7000
|
stack
|
page read and write
|
|
|
|
14A54B72000
|
unkown
|
page read and write
|
|
|
|
1CB89A4B000
|
unkown
|
page read and write
|
|
|
|
7FF56EC71000
|
unkown image
|
page readonly
|
|
|
|
A07E0FF000
|
stack
|
page read and write
|
|
|
|
1EC6D1D0000
|
unkown image
|
page read and write
|
|
|
|
1EC6DB89000
|
unkown
|
page read and write
|
|
|
|
7FF5D873D000
|
unkown image
|
page readonly
|
|
|
|
2042C602000
|
unkown
|
page read and write
|
|
|
|
1CB89A02000
|
unkown
|
page read and write
|
|
|
|
7DF582E00000
|
unkown image
|
page readonly
|
|
|
|
1EC6D600000
|
unkown image
|
page readonly
|
|
|
|
1EC6DBBD000
|
unkown
|
page read and write
|
|
|
|
1EC6E000000
|
unkown
|
page read and write
|
|
|
|
7DF480CC0000
|
unkown image
|
page readonly
|
|
|
|
7FF5C5121000
|
unkown image
|
page readonly
|
|
|
|
104A9F7000
|
stack
|
page read and write
|
|
|
|
2042C450000
|
unkown image
|
page readonly
|
|
|
|
7FF5D85E7000
|
unkown image
|
page readonly
|
|
|
|
7DF5CF260000
|
unkown image
|
page readonly
|
|
|
|
7FF5C4C26000
|
unkown image
|
page readonly
|
|
|
|
7FF5C53F6000
|
unkown image
|
page readonly
|
|
|
|
7FF56EC27000
|
unkown image
|
page readonly
|
|
|
|
7FF5D87FA000
|
unkown image
|
page readonly
|
|
|
|
2042C700000
|
unkown
|
page read and write
|
|
|
|
5D6BBFA000
|
stack
|
page read and write
|
|
|
|
379FDFF000
|
stack
|
page read and write
|
|
|
|
A07D99D000
|
stack
|
page read and write
|
|
|
|
7DF582DF2000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB91000
|
unkown
|
page read and write
|
|
|
|
1EC6D1F0000
|
unkown image
|
page readonly
|
|
|
|
7FF56EB80000
|
unkown image
|
page readonly
|
|
|
|
7FF5C547B000
|
unkown image
|
page readonly
|
|
|
|
1EC6E002000
|
unkown
|
page read and write
|
|
|
|
7FF56EABB000
|
unkown image
|
page readonly
|
|
|
|
14A54DA0000
|
unkown image
|
page readonly
|
|
|
|
A07DFFF000
|
stack
|
page read and write
|
|
|
|
1CB89A4E000
|
unkown
|
page read and write
|
|
|
|
13371F9A000
|
unkown
|
page read and write
|
|
|
|
7FF56ED34000
|
unkown image
|
page readonly
|
|
|
|
7FF56EB23000
|
unkown image
|
page readonly
|
|
|
|
1CB89F80000
|
unkown image
|
page readonly
|
|
|
|
1EC6DF40000
|
unkown image
|
page write copy
|
|
|
|
7FF56ECB6000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB95000
|
unkown
|
page read and write
|
|
|
|
7DF5E25C0000
|
unkown image
|
page readonly
|
|
|
|
1CB89800000
|
unkown image
|
page readonly
|
|
|
|
7DF578B12000
|
unkown image
|
page readonly
|
|
|
|
13376C90000
|
unkown
|
page read and write
|
|
|
|
14A55120000
|
unkown image
|
page readonly
|
|
|
|
2BBD6087000
|
unkown
|
page read and write
|
|
|
|
1EC6DB99000
|
unkown
|
page read and write
|
|
|
|
7FF5C52F8000
|
unkown image
|
page readonly
|
|
|
|
7FF5C5409000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB99000
|
unkown
|
page read and write
|
|
|
|
1EC6D9A0000
|
unkown
|
page read and write
|
|
|
|
7FF5E54F7000
|
unkown image
|
page readonly
|
|
|
|
1CB89E00000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB87000
|
unkown
|
page read and write
|
|
|
|
13371F18000
|
unkown
|
page read and write
|
|
|
|
13376C10000
|
unkown
|
page read and write
|
|
|
|
1EC6E002000
|
unkown
|
page read and write
|
|
|
|
14A54AB0000
|
unkown image
|
page readonly
|
|
|
|
1EC6D4BB000
|
unkown
|
page read and write
|
|
|
|
7FF5C53CD000
|
unkown image
|
page readonly
|
|
|
|
1CB89A8A000
|
unkown
|
page read and write
|
|
|
|
7FF5E4D00000
|
unkown image
|
page readonly
|
|
|
|
1EC6E019000
|
unkown
|
page read and write
|
|
|
|
7FF5C52C0000
|
unkown image
|
page readonly
|
|
|
|
13376F19000
|
unkown
|
page read and write
|
|
|
|
1EC6DB4E000
|
unkown
|
page read and write
|
|
|
|
1EC6E002000
|
unkown
|
page read and write
|
|
|
|
7DF5CF262000
|
unkown image
|
page readonly
|
|
|
|
1EC6D450000
|
unkown
|
page read and write
|
|
|
|
7FF579043000
|
unkown image
|
page readonly
|
|
|
|
13371F99000
|
unkown
|
page read and write
|
|
|
|
1EC6D400000
|
unkown
|
page read and write
|
|
|
|
1CFA70EC000
|
unkown
|
page read and write
|
|
|
|
1EC6DB18000
|
unkown
|
page read and write
|
|
|
|
7DF59BFF0000
|
unkown image
|
page readonly
|
|
|
|
7FF57902A000
|
unkown image
|
page readonly
|
|
|
|
7FF5D87D1000
|
unkown image
|
page readonly
|
|
|
|
1EC6D4D8000
|
unkown
|
page read and write
|
|
|
|
7FF5E5489000
|
unkown image
|
page readonly
|
|
|
|
2BBD604E000
|
unkown
|
page read and write
|
|
|
|
7FF56ECC7000
|
unkown image
|
page readonly
|
|
|
|
1CB89850000
|
heap default
|
page read and write
|
|
|
|
7FF572E27000
|
unkown image
|
page readonly
|
|
|
|
1CB89930000
|
unkown image
|
page readonly
|
|
|
|
7DF5EF2F0000
|
unkown image
|
page readonly
|
|
|
|
14A54AC0000
|
unkown image
|
page read and write
|
|
|
|
1EC6D49F000
|
unkown
|
page read and write
|
|
|
|
1EC6D1F0000
|
unkown image
|
page readonly
|
|
|
|
7FF56E821000
|
unkown image
|
page readonly
|
|
|
|
7FF56EB47000
|
unkown image
|
page readonly
|
|
|
|
7FF5E5307000
|
unkown image
|
page readonly
|
|
|
|
1EC6D429000
|
unkown
|
page read and write
|
|
|
|
1EC6DFA0000
|
unkown
|
page read and write
|
|
|
|
1EC6D240000
|
heap default
|
page read and write
|
|
|
|
7FF56EB37000
|
unkown image
|
page readonly
|
|
|
|
7FF5D8638000
|
unkown image
|
page readonly
|
|
|
|
1EC6D9C0000
|
unkown image
|
page readonly
|
|
|
|
1CFA6F10000
|
unkown image
|
page readonly
|
|
|
|
7FF5D8527000
|
unkown image
|
page readonly
|
|
|
|
1EC6DBA6000
|
unkown
|
page read and write
|
|
|
|
14A54B8F000
|
unkown
|
page read and write
|
|
|
|
7FF5C52A6000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB89000
|
unkown
|
page read and write
|
|
|
|
7FF5C53FD000
|
unkown image
|
page readonly
|
|
|
|
14A54B87000
|
unkown
|
page read and write
|
|
|
|
7DF5CF270000
|
unkown image
|
page readonly
|
|
|
|
2BBD5EC0000
|
heap private
|
page read and write
|
|
|
|
7FF5C5467000
|
unkown image
|
page readonly
|
|
|
|
7FF579057000
|
unkown image
|
page readonly
|
|
|
|
7FF5C53DA000
|
unkown image
|
page readonly
|
|
|
|
1EC6DBCB000
|
unkown
|
page read and write
|
|
|
|
7FF56E4E0000
|
unkown image
|
page readonly
|
|
|
|
7FF578F65000
|
unkown image
|
page readonly
|
|
|
|
7FF5D8766000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB97000
|
unkown
|
page read and write
|
|
|
|
1EC6D4F0000
|
unkown
|
page read and write
|
|
|
|
7FF5C53BF000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB91000
|
unkown
|
page read and write
|
|
|
|
7FF56EBF5000
|
unkown image
|
page readonly
|
|
|
|
2042C440000
|
heap private
|
page read and write
|
|
|
|
1CFA70EA000
|
unkown
|
page read and write
|
|
|
|
379F9CA000
|
unkown
|
page read and write
|
|
|
|
14A54BA0000
|
unkown
|
page read and write
|
|
|
|
7FF5D8827000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB71000
|
unkown
|
page read and write
|
|
|
|
7FF56E9E1000
|
unkown image
|
page readonly
|
|
|
|
7FF5E4FE1000
|
unkown image
|
page readonly
|
|
|
|
7DF5CF262000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB93000
|
unkown
|
page read and write
|
|
|
|
7FF5D876D000
|
unkown image
|
page readonly
|
|
|
|
1EC6D43C000
|
unkown
|
page read and write
|
|
|
|
7FF56EC7F000
|
unkown image
|
page readonly
|
|
|
|
2042C68A000
|
unkown
|
page read and write
|
|
|
|
13376B84000
|
unkown
|
page read and write
|
|
|
|
7FF56ED63000
|
unkown image
|
page readonly
|
|
|
|
1CFA70D0000
|
unkown
|
page read and write
|
|
|
|
7FF5D8813000
|
unkown image
|
page readonly
|
|
|
|
7FF5E5443000
|
unkown image
|
page readonly
|
|
|
|
13376B44000
|
unkown
|
page read and write
|
|
|
|
2BBD5ED0000
|
unkown image
|
page readonly
|
|
|
|
7FF5C4F67000
|
unkown image
|
page readonly
|
|
|
|
1CFA70C8000
|
unkown
|
page read and write
|
|
|
|
7DF5EF2D0000
|
unkown image
|
page readonly
|
|
|
|
7FF56EC9A000
|
unkown image
|
page readonly
|
|
|
|
1EC6DFB0000
|
unkown image
|
page read and write
|
|
|
|
13371F59000
|
unkown
|
page read and write
|
|
|
|
2042C702000
|
unkown
|
page read and write
|
|
|
|
7DF4ED1A0000
|
unkown image
|
page readonly
|
|
|
|
7FF5E5431000
|
unkown image
|
page readonly
|
|
|
|
7DF59C000000
|
unkown image
|
page readonly
|
|
|
|
7DF5E25E0000
|
unkown image
|
page readonly
|
|
|
|
7FF5C5277000
|
unkown image
|
page readonly
|
|
|
|
7FF5E5487000
|
unkown image
|
page readonly
|
|
|
|
1EC6DFA0000
|
unkown
|
page read and write
|
|
|
|
7FF5D8616000
|
unkown image
|
page readonly
|
|
|
|
14A54B88000
|
unkown
|
page read and write
|
|
|
|
1CB897F0000
|
heap private
|
page read and write
|
|
|
|
7FF5C4F61000
|
unkown image
|
page readonly
|
|
|
|
1EC6D4E5000
|
unkown
|
page read and write
|
|
|
|
13376CD0000
|
unkown
|
page read and write
|
|
|
|
7FF5D86A5000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB99000
|
unkown
|
page read and write
|
|
|
|
7FF5D8779000
|
unkown image
|
page readonly
|
|
|
|
7FF56ECC9000
|
unkown image
|
page readonly
|
|
|
|
7FF5E5476000
|
unkown image
|
page readonly
|
|
|
|
7FF56E827000
|
unkown image
|
page readonly
|
|
|
|
7DF582E02000
|
unkown image
|
page readonly
|
|
|
|
2042C63C000
|
unkown
|
page read and write
|
|
|
|
13376B48000
|
unkown
|
page read and write
|
|
|
|
1CFA70D0000
|
unkown
|
page read and write
|
|
|
|
7FF5C54B2000
|
unkown image
|
page readonly
|
|
|
|
1CB89B00000
|
unkown
|
page read and write
|
|
|
|
2042C671000
|
unkown
|
page read and write
|
|
|
|
1EC6DFA0000
|
unkown
|
page read and write
|
|
|
|
1EC6E002000
|
unkown
|
page read and write
|
|
|
|
7FF579007000
|
unkown image
|
page readonly
|
|
|
|
1CB89A80000
|
unkown
|
page read and write
|
|
|
|
7FF5C4C20000
|
unkown image
|
page readonly
|
|
|
|
1CB89A53000
|
unkown
|
page read and write
|
|
|
|
1EC6D980000
|
unkown image
|
page readonly
|
|
|
|
13376B41000
|
unkown
|
page read and write
|
|
|
|
7DF5E25D0000
|
unkown image
|
page readonly
|
|
|
|
7FF5D8816000
|
unkown image
|
page readonly
|
|
|
|
2BBD603C000
|
unkown
|
page read and write
|
|
|
|
2042C470000
|
unkown image
|
page readonly
|
|
|
|
1EC6E100000
|
unkown
|
page read and write
|
|
|
|
14A54D95000
|
heap private
|
page read and write
|
|
|
|
7FF5D8746000
|
unkown image
|
page readonly
|
|
|
|
7FF5E544D000
|
unkown image
|
page readonly
|
|
|
|
1EC6D210000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB99000
|
unkown
|
page read and write
|
|
|
|
7DF582DF0000
|
unkown image
|
page readonly
|
|
|
|
2042C800000
|
unkown image
|
page readonly
|
|
|
|
7FF5E51A1000
|
unkown image
|
page readonly
|
|
|
|
7FF579004000
|
unkown image
|
page readonly
|
|
|
|
7FF578F76000
|
unkown image
|
page readonly
|
|
|
|
7DF5EF2E2000
|
unkown image
|
page readonly
|
|
|
|
7FF56ED77000
|
unkown image
|
page readonly
|
|
|
|
A07D89C000
|
unkown
|
page read and write
|
|
|
|
1CB89B02000
|
unkown
|
page read and write
|
|
|
|
2BBD6100000
|
unkown
|
page read and write
|
|
|
|
1EC6DBAA000
|
unkown
|
page read and write
|
|
|
|
7DF582DF2000
|
unkown image
|
page readonly
|
|
|
|
7FF56EC50000
|
unkown image
|
page readonly
|
|
|
|
7FF5E5532000
|
unkown image
|
page readonly
|
|
|
|
14A54A50000
|
unkown
|
page read and write
|
|
|
|
2BBD6400000
|
unkown image
|
page readonly
|
|
|
|
5D6B97F000
|
stack
|
page read and write
|
|
|
|
7FF56E4E6000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB8B000
|
unkown
|
page read and write
|
|
|
|
7FF56ED72000
|
unkown image
|
page readonly
|
|
|
|
1EC6DB70000
|
unkown
|
page read and write
|
|
|
|
13376CD0000
|
unkown
|
page read and write
|
|
|
|
7FF5C5287000
|
unkown image
|
page readonly
|
|
|
|
2042C613000
|
unkown
|
page read and write
|
|
|
|
1EC6DBAA000
|
unkown
|
page read and write
|
|
|
|
7FF56EB85000
|
unkown image
|
page readonly
|
|
|
|
7DF59BFE0000
|
unkown image
|
page readonly
|
|
|
|
1EC6D508000
|
unkown
|
page read and write
|
|
|
|
7FF57900D000
|
unkown image
|
page readonly
|
|
|
|
2BBD5ED0000
|
unkown image
|
page readonly
|
|
|
|
7FF56E90B000
|
unkown image
|
page readonly
|
|
|
|
14A54960000
|
unkown image
|
page readonly
|
|
|
|
1EC6D453000
|
unkown
|
page read and write
|
|
|
|
7FF5D82D7000
|
unkown image
|
page readonly
|
|
There are 580 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://officewayside.weebly.com/
|
|
|
|
https://euc-onenote.officeapps.live.com/o/onenoteframe.aspx?ui=en%2DUS&rs=en%2DUS&wopisrc=https%3A%2F%2Fvztnl-my.sharepoint.com%2Fpersonal%2Fmvanzaal_vzt_nl%2F_vti_bin%2Fwopi.ashx%2Ffolders%2Fc63a8beb720b402b84e63d29936a3fd8&wdenableroaming=1&mscc=0&wdodb=1&hid=B01300A0-90CC-3000-48E9-839900FDAA51&wdorigin=Sharing&wdhostclicktime=1636127055379&jsapi=1&jsapiver=v1&newsession=1&corrid=24ecc4a8-f4a2-4fe1-921e-d9acb6c97b08&usid=24ecc4a8-f4a2-4fe1-921e-d9acb6c97b08&sftc=1&mtf=1&sfp=1&readonly=1&wdredirectionreason=Force_SingleStepBoot&rct=Medium&ctp=LeastProtected
|
|
|
|
https://vztnl-my.sharepoint.com/:o:/g/personal/mvanzaal_vzt_nl/EuuLOsYLcitAhOY9KZNqP9gBXbzHgWcXtG3S-zCfidXUXA?rtime=EMODEjCg2Ug
|
|
|
|
https://euc-onenote.officeapps.live.com/o/onenoteframe.aspx?ui=en%2DUS&rs=en%2DUS&wopisrc=https%3A%2F%2Fvztnl-my.sharepoint.com%2Fpersonal%2Fmvanzaal_vzt_nl%2F_vti_bin%2Fwopi.ashx%2Ffolders%2Fc63a8beb720b402b84e63d29936a3fd8&wdenableroaming=1&mscc=0&wdodb=1&hid=B01300A0-90CC-3000-48E9-839900FDAA51&wdorigin=Sharing&wdhostclicktime=1636127055379&jsapi=1&jsapiver=v1&newsession=1&corrid=24ecc4a8-f4a2-4fe1-921e-d9acb6c97b08&usid=24ecc4a8-f4a2-4fe1-921e-d9acb6c97b08&sftc=1&mtf=1&sfp=1&readonly=1&wdredirectionreason=Force_SingleStepBoot&rct=Medium&ctp=LeastProtected
|
|
|
|
https://vztnl-my.sharepoint.com/personal/mvanzaal_vzt_nl/_layouts/15/Doc.aspx?sourcedoc={c63a8beb-720b-402b-84e6-3d29936a3fd8}&action=view&wd=target%28VAN%20ZAAL%20TRANSPORT.one%7Cee96c080-a5a0-45b2-ab17-4c46e71e821a%2FVAN%20ZAAL%20TRANSPORT%7C8b790e4f-45a0-4569-b92d-4e687cda39f3%2F%29
|
|
|
|
https://www.vzt.nl/
|
|
|
|
https://platform.twitter.com/widgets/widget_iframe.a53eecb4584348a2ad32ec2ae21f6eae.html?origin=https%3A%2F%2Fwww.vzt.nl
|
|
|
|
https://www.vzt.nl/
|
|
|
|
https://www.vzt.nl/vacatures
|
|
|
|
https://www.vzt.nl/algemenevoorwaarden
|
|