Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
GqjUrFW.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences
|
JSON data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
|
JSON data
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\addonStartup.json.lz4
|
Mozilla lz4 compressed data, originally 43691 bytes
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\permissions.sqlite
|
SQLite 3.x database, user version 12, last written using SQLite version 3029000, page size 32768, file counter 11, database
pages 3, cookie 0x2, schema 4, UTF-8, version-valid-for 11
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\permissions.sqlite-journal
|
SQLite Rollback Journal
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\prefs.js
|
ASCII text, with very long lines (1809), with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\prefs.js_tempHROxPC
|
ASCII text, with very long lines (1809), with CRLF, CR line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\prefs.js_tempbXaqbV
|
ASCII text, with very long lines (1809), with CRLF, CR line terminators
|
dropped
|
|
|
|
C:\Program Files\Mozilla Firefox\browser\features\{EA8CA8DA-5FF9-493B-AC9C-93682EE7EB16}.xpi
|
Zip archive data, at least v2.0 to extract, compression method=store
|
dropped
|
||
|
C:\Program Files\Mozilla Firefox\browser\omni.ja
|
Zip archive data, made by v2.0 UNIX, extract using at least v1.0, last modified Wed Dec 19 21:00:48 2001, uncompressed size
74946, method=store
|
dropped
|
||
|
C:\Program Files\Mozilla Firefox\browser\omni.ja.bak
|
Zip archive data, made by v2.0 UNIX, extract using at least v1.0, last modified Wed Dec 19 21:00:48 2001, uncompressed size
74946, method=store
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\am\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\ar\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\be\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\bg\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\bn\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\ca\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\cs\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\da\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\de\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\el\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\en\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\en_GB\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\en_TO\messages.json
|
ASCII text, with very long lines (65536), with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\en_US\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\es\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\es_419\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\et\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\fa\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\fi\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\fil\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\fr\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\gu\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\he\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\hi\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\hr\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\hu\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\id\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\it\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\ja\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\kn\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\ko\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\lt\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\lv\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\mk\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\ml\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\mr\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\ms\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\nl\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\no\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\pl\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\pt\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\pt_BR\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\pt_PT\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\ro\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\ru\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\sk\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\sl\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\sq\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\sr\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\sv\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\sw\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\ta\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\te\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\th\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\tr\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\uk\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\vi\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\zh_CN\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\_locales\zh_TW\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\icons\ficon128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\icons\icon128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\icons\icon16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\icons\icon48.png
|
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhgjfmdjomnlhfacokoibjlcmcmgoec\1.0.0_0\manifest.json
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\am\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\ar\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\be\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\bg\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\bn\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\ca\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\cs\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\da\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\de\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\el\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\en\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\en_GB\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\en_TO\messages.json
|
ASCII text, with very long lines (65536), with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\en_US\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\es\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\es_419\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\et\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\fa\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\fi\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\fil\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\fr\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\gu\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\he\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\hi\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\hr\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\hu\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\id\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\it\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\ja\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\kn\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\ko\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\lt\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\lv\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\mk\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\ml\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\mr\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\ms\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\nl\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\no\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\pl\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\pt\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\pt_BR\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\pt_PT\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\ro\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\ru\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\sk\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\sl\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\sq\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\sr\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\sv\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\sw\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\ta\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\te\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\th\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\tr\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\uk\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\vi\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\zh_CN\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\_locales\zh_TW\messages.json
|
Unicode text, UTF-8 (with BOM) text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\icons\ficon128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\icons\icon128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\icons\icon16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\icons\icon48.png
|
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fileepgfmlpabmkbocijoaggdmlhenbf\2.2.0_0\manifest.json
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences
|
JSON data
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\f01b4d95cf55d32a.automaticDestinations-ms
|
Composite Document File V2 Document, Cannot read section info
|
dropped
|
||
|
C:\Windows\System32\GroupPolicy\Machine\Registry.pol
|
RAGE Package Format (RPF),
|
modified
|
There are 134 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Windows\SysWOW64\rundll32.exe
|
rundll32.exe C:\Users\user\Desktop\GqjUrFW.dll,#1
|
|
|
|
C:\Windows\SysWOW64\rundll32.exe
|
rundll32.exe "C:\Users\user\Desktop\GqjUrFW.dll",#1
|
|
|
|
C:\Windows\SysWOW64\rundll32.exe
|
rundll32.exe "C:\Users\user\Desktop\GqjUrFW.dll",#1
|
|
|
|
C:\Windows\System32\loaddll32.exe
|
loaddll32.exe "C:\Users\user\Desktop\GqjUrFW.dll"
|
||
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
||
|
C:\Windows\SysWOW64\cmd.exe
|
cmd.exe /C rundll32.exe "C:\Users\user\Desktop\GqjUrFW.dll",#1
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1674587
|
unknown
|
||
|
https://searchfox.org/mozilla-central/rev/f40d29a11f2eb4685256b59934e637012ea6fb78/gfx/cairo/cairo/s
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1250907
|
unknown
|
||
|
https://play.google.com/store/apps/details?id=org.mozilla.firefox.vpn&referrer=utm_source%3Dfirefox-
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1181126
|
unknown
|
||
|
https://stackoverflow.com/a/32724723.
|
unknown
|
||
|
https://clients85.google.com/service/update2/crx
|
unknown
|
||
|
https://services.addons.mozilla.org/api/v5/addons/browser-mappings/?browser=%BROWSER%
|
unknown
|
||
|
https://bridge.lga1.admarketplace.net/ctp?version=16.0.0&key=1696332238301000001.2&ci=1696332238417.
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1289808
|
unknown
|
||
|
https://merino.services.mozilla.com/api/v1/suggest
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1145157
|
unknown
|
||
|
https://monitor.firefox.com/oauth/init?entrypoint=protection_report_monitor&utm_source=about-protect
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1425166
|
unknown
|
||
|
https://docs.google.com/
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1315199
|
unknown
|
||
|
https://screenshots.firefox.com
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1375006
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1724254
|
unknown
|
||
|
https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/social-media-tracking-report
|
unknown
|
||
|
https://ads.stickyadstv.com/firefox-etp
|
unknown
|
||
|
https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/send-tab
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1414039
|
unknown
|
||
|
https://monitor.firefox.com/breach-details/
|
unknown
|
||
|
https://versioncheck-bg.addons.mozilla.org/update/VersionCheck.php?reqVersion=%REQ_VERSION%&id=%ITEM
|
unknown
|
||
|
https://html.spec.whatwg.org/multipage/microdata.html#values
|
unknown
|
||
|
https://www.google.com/?h=tyjjeh2ogi3qqdrbygpj96fo04sd8rncm8xt.gg4fdx0u7lease
|
unknown
|
||
|
https://www.amazon.com/exec/obidos/external-search/
|
unknown
|
||
|
http://certs.godaddy.com/repository/
|
unknown
|
||
|
http://certificates.starfieldtech.com/repository
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1343305
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1429636
|
unknown
|
||
|
https://search.avast.com/AV752/
|
unknown
|
||
|
https://tracking-protection-issues.herokuapp.com/new
|
unknown
|
||
|
https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/password-manager-report
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1691227
|
unknown
|
||
|
https://www.amazon.com/?tag=admarketus-20&ref=pd_sl_7548d4575af019e4c148ccf1a78112802e66a0816a72fc94
|
unknown
|
||
|
https://chromium.googlesource.com/chromium/src/
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1205651
|
unknown
|
||
|
https://www.google.com/?h=bq2w5i6ru5np2fu3rd3eltwiyje2l6w8844g.mq7doifak
|
unknown
|
||
|
https://duckduckgo.com/?q=
|
unknown
|
||
|
https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/fingerprinters-report
|
unknown
|
||
|
https://chrome.google.com/webstore
|
unknown
|
||
|
https://drive-daily-2.corp.google.com/
|
unknown
|
||
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
https://fpn.firefox.com
|
unknown
|
||
|
https://monitor.firefox.com/?entrypoint=protection_report_monitor&utm_source=about-protections
|
unknown
|
||
|
https://bridge.lga1.ap01.net/ctp?version=16.0.0&key=1696332238301000001.1&ci=1696332238417.12791&cta
|
unknown
|
||
|
https://schema.org
|
unknown
|
||
|
https://support.mozilla.org/kb/warning-unresponsive-script#w_other-causes
|
unknown
|
||
|
https://drive-daily-1.corp.google.com/
|
unknown
|
||
|
https://github.com/mozilla/gcp-ingestion/blob/master/docs/edge.md#postput-request
|
unknown
|
||
|
https://drive-daily-5.corp.google.com/
|
unknown
|
||
|
https://groups.google.com/forum/#
|
unknown
|
||
|
https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/shield
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1709666
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1433118
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1437038
|
unknown
|
||
|
https://searchfox.org/mozilla-central/source/toolkit/components/search/SearchUtils.jsm#145-152
|
unknown
|
||
|
https://www.maps.google.com/a/place
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1678378
|
unknown
|
||
|
https://mitmdetection.services.mozilla.com/
|
unknown
|
||
|
https://chrome.google.com/webstoreC
|
unknown
|
||
|
https://static.adsafeprotected.com/firefox-etp-js
|
unknown
|
||
|
http://certs.starfieldtech.com/repository/
|
unknown
|
||
|
https://github.com/mozilla-services/mozilla-pipeline-schemas
|
unknown
|
||
|
https://searchfox.org/mozilla-central/search?q=search-telemetry-schema.json
|
unknown
|
||
|
https://drive-preprod.corp.google.com/
|
unknown
|
||
|
https://services.addons.mozilla.org/api/v4/addons/search/?guid=%IDS%&lang=%LOCALE%
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1392378
|
unknown
|
||
|
https://color.firefox.com/?utm_source=firefox-browser&utm_medium=firefox-browser&utm_content=theme-f
|
unknown
|
||
|
https://sandbox.google.com/
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1334069
|
unknown
|
||
|
https://www.google.com/?h=6fiz7bk1dli28pjdzprzc2iifgzk4e22xjoo.ja7lk70wr
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1379974
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1465399
|
unknown
|
||
|
https://ipfs.io/ipfs/QmXoypizjW3WknFiJnKLwHCnL72vedxjQkDDP1mXWo6uco/wiki/List_of_Google_domains.html
|
unknown
|
||
|
https://play.google.com/store/apps/details?id=org.mozilla.firefox&referrer=utm_source%3Dprotection_r
|
unknown
|
||
|
http://certificates.godaddy.com/repository
|
unknown
|
||
|
https://monitor.firefox.com/user/breach-stats?includeResolved=true
|
unknown
|
||
|
https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/cross-site-tracking-report
|
unknown
|
||
|
https://deploy-preview-1234--perf-html.netlify.com
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1309305
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1458321
|
unknown
|
||
|
https://monitor.firefox.com/user/dashboard
|
unknown
|
||
|
http://mozilla.org/foo/bar/b
|
unknown
|
||
|
https://opengraphprotocol.org/)
|
unknown
|
||
|
https://versioncheck.addons.mozilla.org/update/VersionCheck.php?reqVersion=%REQ_VERSION%&id=%ITEM_ID
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1719704
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1263733
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1688277
|
unknown
|
||
|
https://monitor.firefox.com/about
|
unknown
|
||
|
http://mozilla.org/MPL/2.0/.
|
unknown
|
||
|
http://schema.org
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1539007
|
unknown
|
||
|
https://coverage.mozilla.org
|
unknown
|
||
|
https://deploy-preview-1234--perf-html.netlify.com/
|
unknown
|
||
|
https://sandbox.google.com/payments/v4/js/integrator.js8
|
unknown
|
||
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1436524
|
unknown
|
||
|
https://deploy-preview-1234567--perf-html.netlify.app
|
unknown
|
There are 90 hidden URLs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node
|
global UID
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\google\chrome\ExtensionInstallWhitelist
|
1
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\google\chrome\ExtensionInstallWhitelist
|
2
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\google\chrome
|
ExtensionManifestV2Availability
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Edge\ExtensionInstallWhitelist
|
1
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Edge\ExtensionInstallWhitelist
|
2
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Edge\ExtensionInstallAllowlist
|
2
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Edge
|
ExtensionManifestV2Availability
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
47A0000
|
heap
|
page read and write
|
||
|
8B10000
|
heap
|
page read and write
|
||
|
3375000
|
heap
|
page read and write
|
||
|
33A6000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
2AB0000
|
heap
|
page read and write
|
||
|
33C5000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
615F000
|
heap
|
page read and write
|
||
|
4768000
|
heap
|
page read and write
|
||
|
6277000
|
heap
|
page read and write
|
||
|
5B64000
|
heap
|
page read and write
|
||
|
528E000
|
heap
|
page read and write
|
||
|
47C4000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
6C7C000
|
heap
|
page read and write
|
||
|
4773000
|
heap
|
page read and write
|
||
|
5040000
|
trusted library allocation
|
page read and write
|
||
|
A7F0000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
48A4000
|
heap
|
page read and write
|
||
|
33AA000
|
heap
|
page read and write
|
||
|
48AC000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
5561000
|
heap
|
page read and write
|
||
|
B9B000
|
heap
|
page read and write
|
||
|
33A5000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
5561000
|
heap
|
page read and write
|
||
|
5208000
|
heap
|
page read and write
|
||
|
4841000
|
heap
|
page read and write
|
||
|
2AC2000
|
heap
|
page read and write
|
||
|
580B000
|
heap
|
page read and write
|
||
|
48B4000
|
heap
|
page read and write
|
||
|
51D0000
|
heap
|
page read and write
|
||
|
2C9D000
|
heap
|
page read and write
|
||
|
5FD0000
|
trusted library allocation
|
page read and write
|
||
|
2A2B000
|
heap
|
page read and write
|
||
|
2D19000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
51F0000
|
direct allocation
|
page read and write
|
||
|
2CDA000
|
heap
|
page read and write
|
||
|
4883000
|
heap
|
page read and write
|
||
|
58C4000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
89FA000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
5BFC000
|
heap
|
page read and write
|
||
|
2CFF000
|
heap
|
page read and write
|
||
|
33C0000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
B30000
|
heap
|
page read and write
|
||
|
4764000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
576B000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
33AA000
|
heap
|
page read and write
|
||
|
47CE000
|
heap
|
page read and write
|
||
|
478B000
|
heap
|
page read and write
|
||
|
4776000
|
heap
|
page read and write
|
||
|
3379000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
3124000
|
heap
|
page read and write
|
||
|
4841000
|
heap
|
page read and write
|
||
|
47DB000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
48AD000
|
heap
|
page read and write
|
||
|
58B0000
|
heap
|
page read and write
|
||
|
51C1000
|
direct allocation
|
page read and write
|
||
|
4751000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
526E000
|
heap
|
page read and write
|
||
|
4807000
|
heap
|
page read and write
|
||
|
51DC000
|
heap
|
page read and write
|
||
|
2D12000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
2ABD000
|
heap
|
page read and write
|
||
|
2D14000
|
heap
|
page read and write
|
||
|
4751000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
47CE000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
5757000
|
heap
|
page read and write
|
||
|
2CA6000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
8110000
|
heap
|
page read and write
|
||
|
33B9000
|
heap
|
page read and write
|
||
|
47C3000
|
heap
|
page read and write
|
||
|
29F0000
|
heap
|
page read and write
|
||
|
5FD0000
|
trusted library allocation
|
page read and write
|
||
|
4830000
|
heap
|
page read and write
|
||
|
9DF0000
|
heap
|
page read and write
|
||
|
2CCB000
|
heap
|
page read and write
|
||
|
5040000
|
trusted library allocation
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
4883000
|
heap
|
page read and write
|
||
|
4835000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
807C000
|
heap
|
page read and write
|
||
|
575A000
|
heap
|
page read and write
|
||
|
4894000
|
heap
|
page read and write
|
||
|
4768000
|
heap
|
page read and write
|
||
|
59F6000
|
heap
|
page read and write
|
||
|
3375000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
3393000
|
heap
|
page read and write
|
||
|
57B0000
|
direct allocation
|
page read and write
|
||
|
47F1000
|
heap
|
page read and write
|
||
|
2CE1000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
4778000
|
heap
|
page read and write
|
||
|
4787000
|
heap
|
page read and write
|
||
|
5312000
|
heap
|
page read and write
|
||
|
4767000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
3124000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
2CFD000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
4788000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
482E000
|
heap
|
page read and write
|
||
|
53D0000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
2CDD000
|
heap
|
page read and write
|
||
|
48B6000
|
heap
|
page read and write
|
||
|
48AB000
|
heap
|
page read and write
|
||
|
4800000
|
heap
|
page read and write
|
||
|
47F8000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
481B000
|
heap
|
page read and write
|
||
|
4CB1000
|
heap
|
page read and write
|
||
|
476C000
|
heap
|
page read and write
|
||
|
B8E000
|
stack
|
page read and write
|
||
|
2CAC000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
2CE7000
|
heap
|
page read and write
|
||
|
3124000
|
heap
|
page read and write
|
||
|
47B6000
|
heap
|
page read and write
|
||
|
4786000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
4779000
|
heap
|
page read and write
|
||
|
4832000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
9DFA000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
5089000
|
heap
|
page read and write
|
||
|
BA8000
|
heap
|
page read and write
|
||
|
4787000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
4777000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
4771000
|
heap
|
page read and write
|
||
|
33C5000
|
heap
|
page read and write
|
||
|
5CA9000
|
heap
|
page read and write
|
||
|
28E0000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
2D1E000
|
heap
|
page read and write
|
||
|
2D17000
|
heap
|
page read and write
|
||
|
481D000
|
heap
|
page read and write
|
||
|
4B51000
|
direct allocation
|
page read and write
|
||
|
2CE8000
|
heap
|
page read and write
|
||
|
2D14000
|
heap
|
page read and write
|
||
|
2ABC000
|
heap
|
page read and write
|
||
|
478D000
|
heap
|
page read and write
|
||
|
480C000
|
heap
|
page read and write
|
||
|
2AC2000
|
heap
|
page read and write
|
||
|
477B000
|
heap
|
page read and write
|
||
|
47EC000
|
heap
|
page read and write
|
||
|
2D15000
|
heap
|
page read and write
|
||
|
7FF0000
|
heap
|
page read and write
|
||
|
4832000
|
heap
|
page read and write
|
||
|
482C000
|
heap
|
page read and write
|
||
|
5088000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
2CAE000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
47F9000
|
heap
|
page read and write
|
||
|
2CAC000
|
heap
|
page read and write
|
||
|
4832000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
4DB0000
|
trusted library allocation
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
33AA000
|
heap
|
page read and write
|
||
|
5561000
|
heap
|
page read and write
|
||
|
5060000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
4766000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
A910000
|
heap
|
page read and write
|
||
|
3387000
|
heap
|
page read and write
|
||
|
3396000
|
heap
|
page read and write
|
||
|
5807000
|
heap
|
page read and write
|
||
|
4787000
|
heap
|
page read and write
|
||
|
479F000
|
heap
|
page read and write
|
||
|
2E30000
|
trusted library allocation
|
page read and write
|
||
|
5877000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
48B0000
|
heap
|
page read and write
|
||
|
51D8000
|
heap
|
page read and write
|
||
|
2CB7000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
2CD7000
|
heap
|
page read and write
|
||
|
7F5F000
|
heap
|
page read and write
|
||
|
47AA000
|
heap
|
page read and write
|
||
|
2A69000
|
heap
|
page read and write
|
||
|
9510000
|
heap
|
page read and write
|
||
|
587C000
|
heap
|
page read and write
|
||
|
4771000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
2CB3000
|
heap
|
page read and write
|
||
|
4791000
|
heap
|
page read and write
|
||
|
2AC9000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
89F0000
|
heap
|
page read and write
|
||
|
476B000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
4766000
|
heap
|
page read and write
|
||
|
47DD000
|
heap
|
page read and write
|
||
|
5803000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
5088000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
476B000
|
heap
|
page read and write
|
||
|
3393000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
476D000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
B90000
|
heap
|
page read and write
|
||
|
5750000
|
trusted library allocation
|
page read and write
|
||
|
2CBA000
|
heap
|
page read and write
|
||
|
2CB7000
|
heap
|
page read and write
|
||
|
2ABC000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
5755000
|
heap
|
page read and write
|
||
|
33C5000
|
heap
|
page read and write
|
||
|
58BA000
|
heap
|
page read and write
|
||
|
51DC000
|
heap
|
page read and write
|
||
|
33B9000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
2ABF000
|
heap
|
page read and write
|
||
|
7F61000
|
heap
|
page read and write
|
||
|
AFC000
|
stack
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
FCF000
|
stack
|
page read and write
|
||
|
5954000
|
heap
|
page read and write
|
||
|
5768000
|
heap
|
page read and write
|
||
|
4CB1000
|
heap
|
page read and write
|
||
|
337D000
|
heap
|
page read and write
|
||
|
4787000
|
heap
|
page read and write
|
||
|
33C1000
|
heap
|
page read and write
|
||
|
4892000
|
heap
|
page read and write
|
||
|
481B000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
5759000
|
heap
|
page read and write
|
||
|
58B4000
|
heap
|
page read and write
|
||
|
5762000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
47D7000
|
heap
|
page read and write
|
||
|
5763000
|
heap
|
page read and write
|
||
|
5068000
|
heap
|
page read and write
|
||
|
2CB5000
|
heap
|
page read and write
|
||
|
2CAA000
|
heap
|
page read and write
|
||
|
50A3000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
479B000
|
heap
|
page read and write
|
||
|
33C5000
|
heap
|
page read and write
|
||
|
47B9000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
2CAE000
|
heap
|
page read and write
|
||
|
2AC2000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
47B9000
|
heap
|
page read and write
|
||
|
48BD000
|
heap
|
page read and write
|
||
|
3385000
|
heap
|
page read and write
|
||
|
6B68000
|
heap
|
page read and write
|
||
|
5979000
|
heap
|
page read and write
|
||
|
3394000
|
heap
|
page read and write
|
||
|
5807000
|
heap
|
page read and write
|
||
|
478C000
|
heap
|
page read and write
|
||
|
4767000
|
heap
|
page read and write
|
||
|
477D000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
4787000
|
heap
|
page read and write
|
||
|
2AB3000
|
heap
|
page read and write
|
||
|
8115000
|
heap
|
page read and write
|
||
|
47C4000
|
heap
|
page read and write
|
||
|
5FD0000
|
trusted library allocation
|
page read and write
|
||
|
2C9F000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
2CB3000
|
heap
|
page read and write
|
||
|
47CD000
|
heap
|
page read and write
|
||
|
7CC000
|
stack
|
page read and write
|
||
|
483C000
|
heap
|
page read and write
|
||
|
514F000
|
heap
|
page read and write
|
||
|
4787000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
33AA000
|
heap
|
page read and write
|
||
|
2940000
|
heap
|
page read and write
|
||
|
48BD000
|
heap
|
page read and write
|
||
|
575F000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
7561000
|
heap
|
page read and write
|
||
|
47A0000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
2D14000
|
heap
|
page read and write
|
||
|
3385000
|
heap
|
page read and write
|
||
|
4841000
|
heap
|
page read and write
|
||
|
50A3000
|
heap
|
page read and write
|
||
|
4751000
|
heap
|
page read and write
|
||
|
5067000
|
heap
|
page read and write
|
||
|
33B9000
|
heap
|
page read and write
|
||
|
B9F000
|
heap
|
page read and write
|
||
|
6161000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
110F000
|
stack
|
page read and write
|
||
|
5750000
|
heap
|
page read and write
|
||
|
5040000
|
trusted library allocation
|
page read and write
|
||
|
93F0000
|
heap
|
page read and write
|
||
|
3393000
|
heap
|
page read and write
|
||
|
4A4D000
|
heap
|
page read and write
|
||
|
5807000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
E8F000
|
stack
|
page read and write
|
||
|
5753000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
2CDA000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
5761000
|
heap
|
page read and write
|
||
|
2D16000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
2CDD000
|
heap
|
page read and write
|
||
|
47FD000
|
heap
|
page read and write
|
||
|
5043000
|
heap
|
page read and write
|
||
|
B40000
|
heap
|
page read and write
|
||
|
4770000
|
heap
|
page read and write
|
||
|
48B6000
|
heap
|
page read and write
|
||
|
47E4000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
482F000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
4841000
|
heap
|
page read and write
|
||
|
48BD000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
2E30000
|
trusted library allocation
|
page read and write
|
||
|
4DB0000
|
trusted library allocation
|
page read and write
|
||
|
ECE000
|
stack
|
page read and write
|
||
|
2D1D000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
6B61000
|
heap
|
page read and write
|
||
|
100E000
|
stack
|
page read and write
|
||
|
575D000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
339B000
|
heap
|
page read and write
|
||
|
5334000
|
heap
|
page read and write
|
||
|
575B000
|
heap
|
page read and write
|
||
|
477D000
|
heap
|
page read and write
|
||
|
767C000
|
heap
|
page read and write
|
||
|
4751000
|
heap
|
page read and write
|
||
|
2CAA000
|
heap
|
page read and write
|
||
|
9F10000
|
heap
|
page read and write
|
||
|
483C000
|
heap
|
page read and write
|
||
|
51DA000
|
heap
|
page read and write
|
||
|
2CDD000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
2CE1000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
4785000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
48B4000
|
heap
|
page read and write
|
||
|
6168000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
2AB0000
|
heap
|
page read and write
|
||
|
8B15000
|
heap
|
page read and write
|
||
|
6C77000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
2CBA000
|
heap
|
page read and write
|
||
|
580F000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
4832000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
2CE1000
|
heap
|
page read and write
|
||
|
2CC5000
|
heap
|
page read and write
|
||
|
2CB5000
|
heap
|
page read and write
|
||
|
475C000
|
heap
|
page read and write
|
||
|
2A7C000
|
heap
|
page read and write
|
||
|
4770000
|
heap
|
page read and write
|
||
|
339A000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
2CCA000
|
heap
|
page read and write
|
||
|
47B3000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
2A7B000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
93FA000
|
heap
|
page read and write
|
||
|
4788000
|
heap
|
page read and write
|
||
|
2CFD000
|
heap
|
page read and write
|
||
|
47FE000
|
heap
|
page read and write
|
||
|
755F000
|
heap
|
page read and write
|
||
|
3124000
|
heap
|
page read and write
|
||
|
2D14000
|
heap
|
page read and write
|
||
|
2E30000
|
trusted library allocation
|
page read and write
|
||
|
2AAA000
|
heap
|
page read and write
|
||
|
584000
|
heap
|
page read and write
|
||
|
480A000
|
heap
|
page read and write
|
||
|
7FFA000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
627C000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
2CAE000
|
heap
|
page read and write
|
||
|
2AA8000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
2CB3000
|
heap
|
page read and write
|
||
|
3398000
|
heap
|
page read and write
|
||
|
6B5F000
|
heap
|
page read and write
|
||
|
475A000
|
heap
|
page read and write
|
||
|
47D7000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
3393000
|
heap
|
page read and write
|
||
|
48D8000
|
heap
|
page read and write
|
||
|
CB0000
|
heap
|
page read and write
|
||
|
475E000
|
heap
|
page read and write
|
||
|
4841000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
2E30000
|
trusted library allocation
|
page read and write
|
||
|
47B4000
|
heap
|
page read and write
|
||
|
5756000
|
heap
|
page read and write
|
||
|
5860000
|
direct allocation
|
page read and write
|
||
|
5628000
|
heap
|
page read and write
|
||
|
4807000
|
heap
|
page read and write
|
||
|
33B9000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
33B1000
|
heap
|
page read and write
|
||
|
475A000
|
heap
|
page read and write
|
||
|
5800000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
4271000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
5757000
|
heap
|
page read and write
|
||
|
A7FA000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
4FD0000
|
direct allocation
|
page read and write
|
||
|
3393000
|
heap
|
page read and write
|
||
|
33A5000
|
heap
|
page read and write
|
||
|
4641000
|
heap
|
page read and write
|
||
|
2AD4000
|
heap
|
page read and write
|
||
|
5088000
|
heap
|
page read and write
|
||
|
4370000
|
trusted library allocation
|
page read and write
|
There are 468 hidden memdumps, click here to show them.