IOCReport

loading gif

Files

File Path
Type
Category
Malicious
equinitiTicket#51347303511505986.htm
HTML document, ASCII text, with no line terminators
initial sample
 malicious
C:\Users\user\AppData\Local\Google\Chrome\User Data\03a0c5e5-58a0-4387-9ea8-36a830cee9c3.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\30defbab-99ea-4aec-b2be-163024b6888c.tmp
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\4db1974b-9d5a-41b2-af1d-7018f13f1c23.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\5b8215bb-e8a6-441a-b515-36bf25456c8a.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\6940f551-cbe9-43c2-bf80-0b1fab78159e.tmp
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\7238b5f9-3653-435c-88e9-dfefaafea197.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\94262eb7-32b3-4221-94ce-f0aae00850d7.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\957c9426-6dc8-42f9-a64b-37271ae45a76.tmp
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2d42eebd-bd10-4bf1-ab75-6e950f0ce2a3.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\37e6ab63-00ca-4ede-8e83-cfe32e62e863.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5bccae93-e38e-4f82-9914-5484dce55fc1.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\720c0f87-269c-4f42-a7fe-af5c088991a1.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\5bd75231-5773-48a9-b9fd-f8c53144f5e5.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\bafaf7f6-9d61-48b4-b4ed-987c02904db1.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ce99f6bd-cb32-4af0-a8ec-d170a12abf57.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
MPEG-4 LOAS
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\db4313c4-f022-41f5-a06b-1111c40781a3.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\e705fee9-51f7-4cd9-bfe4-4c10ed790ab4.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\e72e0f2c-6e97-4ca9-8d2a-3cc80341ca33.tmp
ASCII text, with very long lines, with no line terminators
modified
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\a5f934dd-7288-499b-9f00-1274a2264f98.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\d8f70adb-a47f-4c79-b62b-33a4f5e7f79b.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\4513a782-0670-4335-9c87-3123cd40f752.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\4ac57fed-731f-44c4-a9f5-6e21e97931c8.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Temp\51fcfd65-e9fb-46a5-93cd-719e7ccb4fd6.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\6960_1256072906\manifest.fingerprint
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\6960_1327120964\manifest.fingerprint
ASCII text, with no line terminators
modified
 clean
C:\Users\user\AppData\Local\Temp\6960_1590743133\manifest.fingerprint
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\6960_2102678167\manifest.fingerprint
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\c70014d7-3d49-48ea-954f-6b86d5c18738.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\4513a782-0670-4335-9c87-3123cd40f752.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\am\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\ar\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\bn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\en\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\fa\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\fil\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\gu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\id\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\kn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\ml\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\mr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\ms\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\nl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\pt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\sw\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\ta\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\te\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\zh\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_1292274319\CRX_INSTALL\manifest.json
ASCII text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\51fcfd65-e9fb-46a5-93cd-719e7ccb4fd6.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\en\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\en_GB\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\es_419\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\fil\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\id\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\nl\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\pt_BR\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\pt_PT\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\zh_CN\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\images\icon_128.png
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\images\icon_16.png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir6960_2037367849\CRX_INSTALL\manifest.json
ASCII text, with CRLF line terminators
dropped
 clean
There are 162 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized 'C:\Users\user\Desktop\equinitiTicket#51347303511505986.htm'
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1536,15388751358428902676,16190953219467586011,131072 --lang=en-GB --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1800 /prefetch:8
clean

URLs

Name
IP
Malicious
https://foodtecafrica.com/common/auth/authorize_client_id:3v7t1n8s-a5rl-7igk-uy1f-g08d7xjokfw1_oiywbv49mzl6gctus3rahnj2k5q7f08d1epx9uakrz27pi6qxfncedjlh4tmo8vy5g0wb13siynf6e2boasx5mgjph9twcdvk8zr3714ul0q?data=emFrLm5ld21hbkBlcXVpbml0aS5jb20=
malicious
https://dns.google
unknown
 clean
https://foodtecafrica.com/common/auth/authorize_client_id:3v7t1n8s-a5rl-7igk-uy1f-g08d7xjokfw1_oiywb
unknown
 clean
https://foodtecafrica.com/common/auth/?/emFrLm5ld21hbkBlcXVpbml0aS5jb20=
unknown
 clean
https://foodtecafrica.com/common?zak.newman
unknown
 clean
https://foodtecafrica.com/common/auth/?/emFrLm5ld21hbkBlcXVpbml0aS5jb20=Verify
unknown
 clean
https://foodtecafrica.com/common/auth?/emFrLm5ld21hbkBlcXVpbml0aS5jb20=
unknown
 clean
https://foodtecafrica.com/common/auth?/emFrLm5ld21hbkBlcXVpbml0aS5jb20=Verify
unknown
 clean
https://foodtecafrica.com
unknown
 clean
https://foodtecafrica.com/common/auth/?/emFrLm5ld21hbkBlcXVpbml0aS5jb20==
unknown
 clean
https://clients2.googleusercontent.com
unknown
 clean
https://foodtecafrica.com/common/?zak.newman
unknown
 clean
https://feedback.googleusercontent.com
unknown
 clean
https://foodtecafrica.com/common/auth/images/favicon.ico
unknown
 clean
There are 4 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
foodtecafrica.com
207.174.215.254
 clean
googlehosted.l.googleusercontent.com
172.217.23.33
 clean
clients2.googleusercontent.com
unknown
 clean

IPs

IP
Domain
Country
Active
Malicious
192.168.2.1
unknown
unknown
unknown
 clean
207.174.215.254
foodtecafrica.com
United States
unknown
 clean
192.168.2.5
unknown
unknown
unknown
 clean
239.255.255.250
unknown
Reserved
unknown
 clean
172.217.23.33
googlehosted.l.googleusercontent.com
United States
unknown
 clean
127.0.0.1
unknown
unknown
unknown
 clean

Registry

Path
Value
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
S-1-5-21-3853321935-2125563209-4053062332-1002
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
ahfgeienlihckogmohjhadlkjgocpleb
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gdaefkejpgkiemlaofpalmlakkmbjdnl
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gfdkimpbcpahaombhbimeihdjnejgicl
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
kmendfapggjehodndflmmgagdbamhnfd
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
mfehgcgbbipciphmccgaenjidiccnmng
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
mhjfbmdgcfjbbpaeojofohoefgiehjai
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
neajdppkdcdipfabeoofebfddakdcjhd
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nkeimhogjdpnpccoofpliimaahmaaome
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nmmhkkegccagdldgiimedpiccmgmieda
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
pkedcjkdefgpdelpbcmbmeomcjbeemfm
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
prefs.preference_reset_time
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gfdkimpbcpahaombhbimeihdjnejgicl
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nmmhkkegccagdldgiimedpiccmgmieda
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
state
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
StatusCodes
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
StatusCodes
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
state
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
dr
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.reporting
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
module_blacklist_cache_md5_digest
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
media.storage_id_salt
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.last_account_id
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.account_id
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.prompt_seed
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_homepage
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
default_search_provider_data.template_url_data
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
safebrowsing.incidents_sent
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
pinned_tabs
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
search_provider_overrides
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_default_search
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
prefs.preference_reset_time
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.last_username
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
session.startup_urls
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
session.restore_on_startup
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.prompt_version
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_startup_urls
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.prompt_wave
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
homepage
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
homepage_is_newtabpage
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
browser.show_home_button
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
user_experience_metrics.stability.exited_cleanly
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
lastrun
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
S-1-5-21-3853321935-2125563209-4053062332-1002
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
 clean
There are 36 hidden registries, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
7FF5E43F4000
unkown
page readonly
 clean
1A403C55000
unkown
page read and write
 clean
1E53A085000
unkown
page read and write
 clean
7FF545C67000
unkown
page readonly
 clean
7FF5AC624000
unkown
page readonly
 clean
20D91860000
unkown
page read and write
 clean
7FF5E43B0000
unkown
page readonly
 clean
2308618D000
unkown
page read and write
 clean
23085790000
unkown
page readonly
 clean
20D91920000
unkown
page read and write
 clean
20D918DB000
unkown
page read and write
 clean
1A403C68000
unkown
page read and write
 clean
1E534A8E000
unkown
page read and write
 clean
1A403D08000
unkown
page read and write
 clean
7FF531C1E000
unkown
page readonly
 clean
23086148000
unkown
page read and write
 clean
7FF5AC84E000
unkown
page readonly
 clean
20D918DA000
unkown
page read and write
 clean
1E53A088000
unkown
page read and write
 clean
23086141000
unkown
page read and write
 clean
7FF53210F000
unkown
page readonly
 clean
F4049F9000
unkown
page read and write
 clean
23086137000
unkown
page read and write
 clean
29496800000
unkown
page readonly
 clean
1A403E00000
unkown
page readonly
 clean
C4497F5000
unkown
page read and write
 clean
7FF524E5A000
unkown
page readonly
 clean
7FF59E78D000
unkown
page readonly
 clean
23085849000
unkown
page read and write
 clean
18810730000
unkown
page readonly
 clean
20D918DC000
unkown
page read and write
 clean
1E53A091000
unkown
page read and write
 clean
20D918DE000
unkown
page read and write
 clean
7FF5CFD25000
unkown
page readonly
 clean
2308613B000
unkown
page read and write
 clean
7FF532003000
unkown
page readonly
 clean
1E535359000
unkown
page read and write
 clean
230858EB000
unkown
page read and write
 clean
2308615B000
unkown
page read and write
 clean
20D93A53000
unkown
page read and write
 clean
20D918BA000
unkown
page read and write
 clean
20D918DC000
unkown
page read and write
 clean
29495E2A000
unkown
page read and write
 clean
23085740000
heap default
page read and write
 clean
23086159000
unkown
page read and write
 clean
20D918DE000
unkown
page read and write
 clean
2308618D000
unkown
page read and write
 clean
7FF531EF1000
unkown
page readonly
 clean
20D94110000
unkown
page read and write
 clean
1000FE000
unkown
page read and write
 clean
1E534AB0000
unkown
page read and write
 clean
7FF59E7E0000
unkown
page readonly
 clean
7FF5320AE000
unkown
page readonly
 clean
190C5177000
unkown
page read and write
 clean
20D917A0000
heap private
page read and write
 clean
7FF524DCC000
unkown
page readonly
 clean
18810829000
unkown
page read and write
 clean
1E535190000
unkown
page readonly
 clean
7FF59E5EA000
unkown
page readonly
 clean
7FF524A26000
unkown
page readonly
 clean
23086113000
unkown
page read and write
 clean
7FF59E7F3000
unkown
page readonly
 clean
7FF524EB4000
unkown
page readonly
 clean
20D93D02000
unkown
page read and write
 clean
1E534B02000
unkown
page read and write
 clean
2308613E000
unkown
page read and write
 clean
7FF59E62B000
unkown
page readonly
 clean
20D93702000
unkown
page read and write
 clean
1E53A084000
unkown
page read and write
 clean
1E534AFF000
unkown
page read and write
 clean
1BB2675000
unkown
page read and write
 clean
20D91841000
unkown
page read and write
 clean
7661DAE000
unkown
page read and write
 clean
7FF545F8A000
unkown
page readonly
 clean
20D9361D000
unkown
page read and write
 clean
7FF59E931000
unkown
page readonly
 clean
20D93610000
unkown
page read and write
 clean
2308583C000
unkown
page read and write
 clean
1E53A3E0000
unkown
page readonly
 clean
2308613F000
unkown
page read and write
 clean
10007B000
unkown
page read and write
 clean
1E535359000
unkown
page read and write
 clean
234E7CD0000
unkown
page readonly
 clean
7FF59E89F000
unkown
page readonly
 clean
7FF53207B000
unkown
page readonly
 clean
7274D7E000
unkown
page read and write
 clean
52994FF000
unkown
page read and write
 clean
1E53539F000
unkown
page read and write
 clean
7FF545FDA000
unkown
page readonly
 clean
1E535800000
unkown
page read and write
 clean
234E7A40000
unkown
page read and write
 clean
23085857000
unkown
page read and write
 clean
2308617C000
unkown
page read and write
 clean
20D936E1000
unkown
page read and write
 clean
7FF531C22000
unkown
page readonly
 clean
7FF5E442D000
unkown
page readonly
 clean
7FF531B8E000
unkown
page readonly
 clean
7FF524E5E000
unkown
page readonly
 clean
190C517E000
unkown
page read and write
 clean
7FF5AC7DA000
unkown
page readonly
 clean
2308618D000
unkown
page read and write
 clean
7FF53211E000
unkown
page readonly
 clean
727447B000
unkown
page read and write
 clean
20D93B43000
unkown
page read and write
 clean
7FF545E98000
unkown
page readonly
 clean
20D93613000
unkown
page read and write
 clean
7FF5320B0000
unkown
page readonly
 clean
C44997E000
unkown
page read and write
 clean
1E53A350000
unkown
page readonly
 clean
1E539FAE000
unkown
page read and write
 clean
1E53A0B4000
unkown
page read and write
 clean
20D94210000
unkown
page read and write
 clean
20D94410000
unkown
page read and write
 clean
20D91620000
unkown
page readonly
 clean
2308613A000
unkown
page read and write
 clean
7FF5CFD20000
unkown
page readonly
 clean
7FF5CFD2B000
unkown
page readonly
 clean
23086147000
unkown
page read and write
 clean
7FF531FB3000
unkown
page readonly
 clean
23086159000
unkown
page read and write
 clean
76626FF000
unkown
page read and write
 clean
23086146000
unkown
page read and write
 clean
7FF5DAAEC000
unkown
page readonly
 clean
2308617C000
unkown
page read and write
 clean
1E53A08E000
unkown
page read and write
 clean
190C5425000
heap private
page read and write
 clean
7FF5AC5CF000
unkown
page readonly
 clean
2308618D000
unkown
page read and write
 clean
7FF59E4D1000
unkown
page readonly
 clean
1E539FA0000
unkown
page read and write
 clean
7FF5320AA000
unkown
page readonly
 clean
1BB247B000
unkown
page read and write
 clean
1E535E00000
unkown
page read and write
 clean
23086146000
unkown
page read and write
 clean
20D91902000
unkown
page read and write
 clean
DF74D7A000
unkown
page read and write
 clean
230858EA000
unkown
page read and write
 clean
20D936E3000
unkown
page read and write
 clean
7FF531FAB000
unkown
page readonly
 clean
7FF545F32000
unkown
page readonly
 clean
20D91961000
unkown
page read and write
 clean
DF7527D000
unkown
page read and write
 clean
7FF5E44A1000
unkown
page readonly
 clean
23085800000
unkown
page read and write
 clean
23086157000
unkown
page read and write
 clean
23086163000
unkown
page read and write
 clean
18810856000
unkown
page read and write
 clean
1A403D00000
unkown
page read and write
 clean
7FF5321A2000
unkown
page readonly
 clean
727507A000
unkown
page read and write
 clean
7FF5AC641000
unkown
page readonly
 clean
7FF5AC858000
unkown
page readonly
 clean
2308615B000
unkown
page read and write
 clean
7FF59E92A000
unkown
page readonly
 clean
23086146000
unkown
page read and write
 clean
C449C7F000
unkown
page read and write
 clean
234E7C00000
unkown
page readonly
 clean
1E539FD0000
unkown
page read and write
 clean
7FF59E618000
unkown
page readonly
 clean
7FF5AC626000
unkown
page readonly
 clean
20D936DB000
unkown
page read and write
 clean
1E539FC4000
unkown
page read and write
 clean
7FF59E7AC000
unkown
page readonly
 clean
230858A9000
unkown
page read and write
 clean
190C5190000
unkown
page read and write
 clean
7FF59E524000
unkown
page readonly
 clean
7FF5CF8E0000
unkown
page readonly
 clean
7FF5CFE04000
unkown
page readonly
 clean
1E53A2C0000
unkown
page read and write
 clean
23086146000
unkown
page read and write
 clean
727457E000
unkown
page read and write
 clean
7FF59E141000
unkown
page readonly
 clean
23086161000
unkown
page read and write
 clean
7FF59E888000
unkown
page readonly
 clean
7FF5DAB04000
unkown
page readonly
 clean
20D91960000
unkown
page read and write
 clean
2308614D000
unkown
page read and write
 clean
7FF5DAB3D000
unkown
page readonly
 clean
23086162000
unkown
page read and write
 clean
7FF524DC4000
unkown
page readonly
 clean
29495F02000
unkown
page read and write
 clean
7FF545C5F000
unkown
page readonly
 clean
727487A000
unkown
page read and write
 clean
7FF59E5FB000
unkown
page readonly
 clean
7FF59E4C1000
unkown
page readonly
 clean
230858D7000
unkown
page read and write
 clean
7274EFF000
unkown
page read and write
 clean
7FF53209C000
unkown
page readonly
 clean
23086146000
unkown
page read and write
 clean
7FF5DAAC5000
unkown
page readonly
 clean
1E53A05E000
unkown
page read and write
 clean
23086144000
unkown
page read and write
 clean
20D93C00000
unkown
page read and write
 clean
1E53A310000
unkown
page read and write
 clean
7FF5E4418000
unkown
page readonly
 clean
23085854000
unkown
page read and write
 clean
23086600000
unkown
page read and write
 clean
20D936AE000
unkown
page read and write
 clean
7FF5321A1000
unkown
page readonly
 clean
1E5353E0000
unkown
page read and write
 clean
7FF59E8A8000
unkown
page readonly
 clean
23085AD0000
unkown
page readonly
 clean
7FF59E0A6000
unkown
page readonly
 clean
1E539FAE000
unkown
page read and write
 clean
23086148000
unkown
page read and write
 clean
1A403B60000
unkown
page read and write
 clean
7FF524E65000
unkown
page readonly
 clean
2308584C000
unkown
page read and write
 clean
23086654000
unkown
page read and write
 clean
7662278000
unkown
page read and write
 clean
7FF5AC81C000
unkown
page readonly
 clean
7FF545FA7000
unkown
page readonly
 clean
1E53535B000
unkown
page read and write
 clean
1E539FA1000
unkown
page read and write
 clean
2308584F000
unkown
page read and write
 clean
20D94410000
unkown
page read and write
 clean
230858B0000
unkown
page read and write
 clean
7FF59E0D5000
unkown
page readonly
 clean
1E535501000
unkown
page read and write
 clean
23086159000
unkown
page read and write
 clean
23085916000
unkown
page read and write
 clean
7FF524E4A000
unkown
page readonly
 clean
20D93A36000
unkown
page read and write
 clean
7FF5AC8E2000
unkown
page readonly
 clean
7FF5CFD4F000
unkown
page readonly
 clean
7FF545FFE000
unkown
page readonly
 clean
7FF531E76000
unkown
page readonly
 clean
20D918D9000
unkown
page read and write
 clean
7FF531C85000
unkown
page readonly
 clean
C44967E000
unkown
page read and write
 clean
7FF53209A000
unkown
page readonly
 clean
727477A000
unkown
page read and write
 clean
1E53A360000
unkown
page readonly
 clean
18810C50000
unkown
page readonly
 clean
230858BF000
unkown
page read and write
 clean
7FF59E857000
unkown
page readonly
 clean
23086173000
unkown
page read and write
 clean
1E539FAB000
unkown
page read and write
 clean
20D91970000
unkown
page read and write
 clean
7FF59E606000
unkown
page readonly
 clean
1E53A270000
unkown
page read and write
 clean
7FF5DABA4000
unkown
page readonly
 clean
23086178000
unkown
page read and write
 clean
2308614E000
unkown
page read and write
 clean
190C5320000
unkown
page read and write
 clean
1E5351A0000
unkown
page readonly
 clean
23086158000
unkown
page read and write
 clean
20D916F0000
unkown
page write copy
 clean
23086137000
unkown
page read and write
 clean
20D918E1000
unkown
page read and write
 clean
1A403B50000
unkown
page readonly
 clean
1E53A016000
unkown
page read and write
 clean
20D917F0000
unkown
page readonly
 clean
1E535318000
unkown
page read and write
 clean
7FF5DA417000
unkown
page readonly
 clean
7FF545FEE000
unkown
page readonly
 clean
7FF5AC615000
unkown
page readonly
 clean
DF74C7A000
unkown
page read and write
 clean
7FF5AC6F8000
unkown
page readonly
 clean
7FF5AC5B6000
unkown
page readonly
 clean
20D94310000
unkown
page read and write
 clean
20D93D00000
unkown
page read and write
 clean
1E5351C0000
unkown
page readonly
 clean
7FF532194000
unkown
page readonly
 clean
1BB27FE000
unkown
page read and write
 clean
20D95010000
unkown
page read and write
 clean
20D918DC000
unkown
page read and write
 clean
1E53A290000
unkown
page read and write
 clean
7FF531A07000
unkown
page readonly
 clean
7FF5E43DF000
unkown
page readonly
 clean
1E5353E0000
unkown
page read and write
 clean
7FF59E691000
unkown
page readonly
 clean
1004FF000
unkown
page read and write
 clean
7FF5242F5000
unkown
page readonly
 clean
20D93810000
unkown
page read and write
 clean
7FF5DAB2E000
unkown
page readonly
 clean
230857E0000
unkown
page readonly
 clean
7FF5320BB000
unkown
page readonly
 clean
1E53A030000
unkown
page read and write
 clean
7FF5320DC000
unkown
page readonly
 clean
7FF59E924000
unkown
page readonly
 clean
20D935E0000
unkown
page read and write
 clean
7FF5AC8E1000
unkown
page readonly
 clean
7FF5DAAF8000
unkown
page readonly
 clean
1E53A000000
unkown
page read and write
 clean
23086602000
unkown
page read and write
 clean
20D91892000
unkown
page read and write
 clean
23086137000
unkown
page read and write
 clean
23086132000
unkown
page read and write
 clean
7FF532118000
unkown
page readonly
 clean
23086198000
unkown
page read and write
 clean
20D93605000
unkown
page read and write
 clean
29495E78000
unkown
page read and write
 clean
7FF5CFC1B000
unkown
page readonly
 clean
7FF5CFA97000
unkown
page readonly
 clean
234E7920000
heap private
page read and write
 clean
7FF5AC792000
unkown
page readonly
 clean
7FF53201C000
unkown
page readonly
 clean
7FF5AC649000
unkown
page readonly
 clean
23086146000
unkown
page read and write
 clean
1E535200000
unkown
page read and write
 clean
23086137000
unkown
page read and write
 clean
29495E82000
unkown
page read and write
 clean
234E7A54000
unkown
page read and write
 clean
7FF5AC736000
unkown
page readonly
 clean
18810800000
unkown
page read and write
 clean
20D918DC000
unkown
page read and write
 clean
20D9361B000
unkown
page read and write
 clean
7FF524F44000
unkown
page readonly
 clean
1E53A085000
unkown
page read and write
 clean
10017A000
unkown
page read and write
 clean
190C5430000
unkown
page readonly
 clean
18810813000
unkown
page read and write
 clean
2308614E000
unkown
page read and write
 clean
20D91A00000
unkown
page readonly
 clean
23085913000
unkown
page read and write
 clean
23086164000
unkown
page read and write
 clean
7FF59E63F000
unkown
page readonly
 clean
7FF524E8C000
unkown
page readonly
 clean
7FF5319B1000
unkown
page readonly
 clean
29495D90000
heap default
page read and write
 clean
23085870000
unkown
page read and write
 clean
190C5166000
heap default
page read and write
 clean
7FF59E631000
unkown
page readonly
 clean
529947F000
unkown
page read and write
 clean
230861B8000
unkown
page read and write
 clean
20D93672000
unkown
page read and write
 clean
230857C0000
unkown
page readonly
 clean
7FF5CFD1A000
unkown
page readonly
 clean
20D91740000
unkown
page readonly
 clean
7FF59E496000
unkown
page readonly
 clean
20D9187B000
unkown
page read and write
 clean
7FF5320E7000
unkown
page readonly
 clean
7FF5AC5AB000
unkown
page readonly
 clean
20D935E0000
unkown
page read and write
 clean
234E7A68000
unkown
page read and write
 clean
10047A000
unkown
page read and write
 clean
7FF59E884000
unkown
page readonly
 clean
7FF531EE4000
unkown
page readonly
 clean
7FF545E8B000
unkown
page readonly
 clean
7FF5E4291000
unkown
page readonly
 clean
1E53A300000
unkown
page read and write
 clean
18812210000
unkown
page read and write
 clean
7FF545DB1000
unkown
page readonly
 clean
7FF524ED6000
unkown
page readonly
 clean
23086200000
unkown
page readonly
 clean
7661D2B000
unkown
page read and write
 clean
7FF5AC7F5000
unkown
page readonly
 clean
20D9188F000
unkown
page read and write
 clean
1A403C3C000
unkown
page read and write
 clean
20D918DC000
unkown
page read and write
 clean
23086157000
unkown
page read and write
 clean
230861BD000
unkown
page read and write
 clean
1E539E90000
unkown
page read and write
 clean
18810A00000
unkown
page write copy
 clean
7FF59E6EF000
unkown
page readonly
 clean
234E7A6C000
unkown
page read and write
 clean
7FF59E845000
unkown
page readonly
 clean
7FF524E60000
unkown
page readonly
 clean
1E5351D0000
unkown
page readonly
 clean
20D94310000
unkown
page read and write
 clean
23085888000
unkown
page read and write
 clean
7FF5AC051000
unkown
page readonly
 clean
29495E56000
unkown
page read and write
 clean
7FF59E7FF000
unkown
page readonly
 clean
1E53A0BE000
unkown
page read and write
 clean
18810720000
heap default
page read and write
 clean
23086100000
unkown
page read and write
 clean
DF74A7E000
unkown
page read and write
 clean
20D918E7000
unkown
page read and write
 clean
7FF5AC7F0000
unkown
page readonly
 clean
23085770000
unkown
page read and write
 clean
20D93637000
unkown
page read and write
 clean
1E53A04D000
unkown
page read and write
 clean
1A403A60000
heap default
page read and write
 clean
23085760000
unkown
page readonly
 clean
7FF5E4373000
unkown
page readonly
 clean
7FF59E83A000
unkown
page readonly
 clean
234E7B00000
unkown
page read and write
 clean
7FF5457F1000
unkown
page readonly
 clean
DF752FF000
unkown
page read and write
 clean
20D93C82000
unkown
page read and write
 clean
20D91920000
unkown
page read and write
 clean
20D94510000
unkown
page read and write
 clean
2308584D000
unkown
page read and write
 clean
2308618D000
unkown
page read and write
 clean
7FF59E681000
unkown
page readonly
 clean
DF74F7A000
unkown
page read and write
 clean
23086002000
unkown
page read and write
 clean
DF74B7A000
unkown
page read and write
 clean
7FF59E8AE000
unkown
page readonly
 clean
20D94000000
unkown
page read and write
 clean
29495F08000
unkown
page read and write
 clean
7FF545FF8000
unkown
page readonly
 clean
1A404402000
unkown
page read and write
 clean
1BB24FE000
unkown
page read and write
 clean
1E539FAF000
unkown
page read and write
 clean
2308615B000
unkown
page read and write
 clean
7274C7F000
unkown
page read and write
 clean
7FF531C70000
unkown
page readonly
 clean
29495DA0000
unkown
page readonly
 clean
7FF5CFD8E000
unkown
page readonly
 clean
20D918DE000
unkown
page read and write
 clean
7FF5AC7BB000
unkown
page readonly
 clean
2308618D000
unkown
page read and write
 clean
20D918DB000
unkown
page read and write
 clean
1E53A088000
unkown
page read and write
 clean
7FF5CFD96000
unkown
page readonly
 clean
7FF59E455000
unkown
page readonly
 clean
529919A000
unkown
page read and write
 clean
7FF5E4421000
unkown
page readonly
 clean
2308614B000
unkown
page read and write
 clean
7FF5AC782000
unkown
page readonly
 clean
1A404260000
unkown
page readonly
 clean
7FF546081000
unkown
page readonly
 clean
23086150000
unkown
page read and write
 clean
7FF531EE6000
unkown
page readonly
 clean
DF74EFB000
unkown
page read and write
 clean
7FF59E15C000
unkown
page readonly
 clean
DF74AF9000
unkown
page read and write
 clean
29495E78000
unkown
page read and write
 clean
7FF5AC4BF000
unkown
page readonly
 clean
7FF524EDD000
unkown
page readonly
 clean
1E53A0AB000
unkown
page read and write
 clean
23085750000
unkown
page readonly
 clean
230858A5000
unkown
page read and write
 clean
23085829000
unkown
page read and write
 clean
20D94710000
unkown
page read and write
 clean
20D9361F000
unkown
page read and write
 clean
7FF524E97000
unkown
page readonly
 clean
7FF5CFD99000
unkown
page readonly
 clean
1E534A13000
unkown
page read and write
 clean
1E53A08D000
unkown
page read and write
 clean
7FF5AC3C9000
unkown
page readonly
 clean
7FF5CFC84000
unkown
page readonly
 clean
1E534A00000
unkown
page read and write
 clean
1E53A0BC000
unkown
page read and write
 clean
1E539FA9000
unkown
page read and write
 clean
1E53A086000
unkown
page read and write
 clean
230857E0000
unkown
page read and write
 clean
2308616C000
unkown
page read and write
 clean
1E53A2D0000
unkown
page read and write
 clean
234E98D0000
unkown
page read and write
 clean
7FF531FAE000
unkown
page readonly
 clean
230858C5000
unkown
page read and write
 clean
7FF5E440E000
unkown
page readonly
 clean
52995F9000
unkown
page read and write
 clean
7FF5E4209000
unkown
page readonly
 clean
2308613A000
unkown
page read and write
 clean
230856E0000
heap private
page read and write
 clean
7FF5AC807000
unkown
page readonly
 clean
1E539E40000
unkown
page read and write
 clean
1E535202000
unkown
page read and write
 clean
20D936DA000
unkown
page read and write
 clean
20D93695000
unkown
page read and write
 clean
7FF59E86F000
unkown
page readonly
 clean
1E539FA0000
unkown
page read and write
 clean
7FF524D5B000
unkown
page readonly
 clean
727517C000
unkown
page read and write
 clean
7FF545E71000
unkown
page readonly
 clean
2308613C000
unkown
page read and write
 clean
1E535313000
unkown
page read and write
 clean
7FF54607A000
unkown
page readonly
 clean
F4048F9000
unkown
page read and write
 clean
DF74E7A000
unkown
page read and write
 clean
7FF531CC7000
unkown
page readonly
 clean
1E53A091000
unkown
page read and write
 clean
7FF546006000
unkown
page readonly
 clean
20D93850000
unkown
page readonly
 clean
7FF5CFD7F000
unkown
page readonly
 clean
1E534AA0000
unkown
page read and write
 clean
7FF5E4404000
unkown
page readonly
 clean
1E534A2A000
unkown
page read and write
 clean
1A403C50000
unkown
page read and write
 clean
7FF531C12000
unkown
page readonly
 clean
23086158000
unkown
page read and write
 clean
2308617C000
unkown
page read and write
 clean
20D936D4000
unkown
page read and write
 clean
1E53B010000
unkown
page read and write
 clean
2308618D000
unkown
page read and write
 clean
F404A7F000
unkown
page read and write
 clean
7FF5319D0000
unkown
page readonly
 clean
23086175000
unkown
page read and write
 clean
2308618D000
unkown
page read and write
 clean
7FF5E42AB000
unkown
page readonly
 clean
20D918DC000
unkown
page read and write
 clean
20D9192F000
unkown
page read and write
 clean
7FF5CFC73000
unkown
page readonly
 clean
7FF5AC7EE000
unkown
page readonly
 clean
23085A00000
unkown
page readonly
 clean
1E534A7C000
unkown
page read and write
 clean
7FF59E81F000
unkown
page readonly
 clean
529957A000
unkown
page read and write
 clean
DF7507B000
unkown
page read and write
 clean
29495DC0000
unkown
page read and write
 clean
7FF5E3C11000
unkown
page readonly
 clean
23086157000
unkown
page read and write
 clean
7FF5E4426000
unkown
page readonly
 clean
7FF532126000
unkown
page readonly
 clean
7FF524E6B000
unkown
page readonly
 clean
1E53A022000
unkown
page read and write
 clean
7FF53208F000
unkown
page readonly
 clean
7FF532050000
unkown
page readonly
 clean
7274E7C000
unkown
page read and write
 clean
20D936EC000
unkown
page read and write
 clean
7FF5320C7000
unkown
page readonly
 clean
7FF5AC790000
unkown
page readonly
 clean
7FF5AC6D1000
unkown
page readonly
 clean
7FF59E088000
unkown
page readonly
 clean
7FF524E8F000
unkown
page readonly
 clean
1BB2AFE000
unkown
page read and write
 clean
2308614A000
unkown
page read and write
 clean
7FF5AC7DC000
unkown
page readonly
 clean
7FF5E441E000
unkown
page readonly
 clean
23086178000
unkown
page read and write
 clean
7FF532052000
unkown
page readonly
 clean
7FF531EB0000
unkown
page readonly
 clean
23086602000
unkown
page read and write
 clean
23086164000
unkown
page read and write
 clean
7FF5CFD1E000
unkown
page readonly
 clean
7274F7F000
unkown
page read and write
 clean
7FF531CC5000
unkown
page readonly
 clean
1E53A0AB000
unkown
page read and write
 clean
18810902000
unkown
page read and write
 clean
2308614D000
unkown
page read and write
 clean
230857E0000
unkown
page read and write
 clean
7FF59E932000
unkown
page readonly
 clean
20D918DA000
unkown
page read and write
 clean
1E53A08F000
unkown
page read and write
 clean
7FF5AC8D4000
unkown
page readonly
 clean
1E53A088000
unkown
page read and write
 clean
7FF5CF1B5000
unkown
page readonly
 clean
2308613E000
unkown
page read and write
 clean
1E534A93000
unkown
page read and write
 clean
7FF5AC869000
unkown
page readonly
 clean
7FF5E4352000
unkown
page readonly
 clean
2308616C000
unkown
page read and write
 clean
C4493BB000
unkown
page read and write
 clean
766217F000
unkown
page read and write
 clean
2308615B000
unkown
page read and write
 clean
DF750FC000
unkown
page read and write
 clean
1E53A0A8000
unkown
page read and write
 clean
1E53A274000
unkown
page read and write
 clean
1E53A294000
unkown
page readonly
 clean
20D918E1000
unkown
page read and write
 clean
1E5359E0000
unkown
page read and write
 clean
2308615B000
unkown
page read and write
 clean
18812310000
unkown
page readonly
 clean
190C5360000
unkown
page readonly
 clean
20D9364E000
unkown
page read and write
 clean
1E539FA5000
unkown
page read and write
 clean
1E53A07D000
unkown
page read and write
 clean
20D9361D000
unkown
page read and write
 clean
7FF545FD4000
unkown
page readonly
 clean
234E7A02000
unkown
page read and write
 clean
23086144000
unkown
page read and write
 clean
188106C0000
heap private
page read and write
 clean
7FF5AC7C4000
unkown
page readonly
 clean
29496602000
unkown
page read and write
 clean
7FF531E27000
unkown
page readonly
 clean
1E5349E1000
unkown
page read and write
 clean
1E539FE0000
unkown
page read and write
 clean
7FF59E84B000
unkown
page readonly
 clean
23086147000
unkown
page read and write
 clean
7FF59E6D2000
unkown
page readonly
 clean
1E53A090000
unkown
page read and write
 clean
20D91902000
unkown
page read and write
 clean
20D91860000
unkown
page read and write
 clean
7FF524DB3000
unkown
page readonly
 clean
23086156000
unkown
page read and write
 clean
23085850000
unkown
page read and write
 clean
2308615F000
unkown
page read and write
 clean
23086158000
unkown
page read and write
 clean
7FF59E63D000
unkown
page readonly
 clean
7FF59E61F000
unkown
page readonly
 clean
7FF5AC834000
unkown
page readonly
 clean
52996FD000
unkown
page read and write
 clean
23086133000
unkown
page read and write
 clean
234E7A00000
unkown
page read and write
 clean
7FF59E6E5000
unkown
page readonly
 clean
7FF531F01000
unkown
page readonly
 clean
7FF5CFD6A000
unkown
page readonly
 clean
7FF545C4C000
unkown
page readonly
 clean
7FF5AC6F3000
unkown
page readonly
 clean
7FF5AC352000
unkown
page readonly
 clean
7FF5DABAA000
unkown
page readonly
 clean
29495E13000
unkown
page read and write
 clean
1E539FC1000
unkown
page read and write
 clean
7FF531A03000
unkown
page readonly
 clean
7FF5CFD74000
unkown
page readonly
 clean
20D918E7000
unkown
page read and write
 clean
20D93B00000
unkown
page read and write
 clean
23086146000
unkown
page read and write
 clean
7FF5CFC01000
unkown
page readonly
 clean
20D935E0000
unkown
page read and write
 clean
C449A77000
unkown
page read and write
 clean
1A404600000
unkown
page readonly
 clean
7662577000
unkown
page read and write
 clean
2308614F000
unkown
page read and write
 clean
1BB28F7000
unkown
page read and write
 clean
29495E00000
unkown
page read and write
 clean
20D94610000
unkown
page read and write
 clean
7FF5E43E8000
unkown
page readonly
 clean
7FF5E42B3000
unkown
page readonly
 clean
7FF545C5A000
unkown
page readonly
 clean
23086147000
unkown
page read and write
 clean
7FF5CFD0C000
unkown
page readonly
 clean
1E53A096000
unkown
page read and write
 clean
23086159000
unkown
page read and write
 clean
1E53A270000
unkown
page readonly
 clean
1E534AA2000
unkown
page read and write
 clean
7FF545FE4000
unkown
page readonly
 clean
23086189000
unkown
page read and write
 clean
23086147000
unkown
page read and write
 clean
7FF5DAB1E000
unkown
page readonly
 clean
7FF5CF8F5000
unkown
page readonly
 clean
7FF545F53000
unkown
page readonly
 clean
1E534970000
unkown
page read and write
 clean
7FF59E814000
unkown
page readonly
 clean
230858A6000
unkown
page read and write
 clean
7FF5E43DC000
unkown
page readonly
 clean
7FF545E93000
unkown
page readonly
 clean
7FF59E527000
unkown
page readonly
 clean
7FF532014000
unkown
page readonly
 clean
190C5340000
unkown
page read and write
 clean
7FF5E407F000
unkown
page readonly
 clean
20D93677000
unkown
page read and write
 clean
20D93A84000
unkown
page read and write
 clean
23085848000
unkown
page read and write
 clean
7FF5AC04D000
unkown
page readonly
 clean
7FF531545000
unkown
page readonly
 clean
190C5370000
unkown
page readonly
 clean
DF748FE000
unkown
page read and write
 clean
7FF5E4087000
unkown
page readonly
 clean
7FF5320F4000
unkown
page readonly
 clean
23085908000
unkown
page read and write
 clean
7FF524EAA000
unkown
page readonly
 clean
DF749FA000
unkown
page read and write
 clean
7FF5E416B000
unkown
page readonly
 clean
20D918DC000
unkown
page read and write
 clean
20D94210000
unkown
page read and write
 clean
1E53539F000
unkown
page read and write
 clean
1A403C46000
unkown
page read and write
 clean
F404AFF000
unkown
page read and write
 clean
23085F80000
unkown
page readonly
 clean
20D918A1000
unkown
page read and write
 clean
2308617C000
unkown
page read and write
 clean
7FF524ED9000
unkown
page readonly
 clean
1A403B40000
unkown
page readonly
 clean
1E5351F3000
unkown
page read and write
 clean
DF7497A000
unkown
page read and write
 clean
7FF545FBC000
unkown
page readonly
 clean
20D918DE000
unkown
page read and write
 clean
7274A7B000
unkown
page read and write
 clean
1E53A091000
unkown
page read and write
 clean
234E7A29000
unkown
page read and write
 clean
1E53A0F0000
unkown
page read and write
 clean
234E79E0000
unkown
page readonly
 clean
7274B7B000
unkown
page read and write
 clean
1E539FA0000
unkown
page read and write
 clean
1BB277B000
unkown
page read and write
 clean
23086140000
unkown
page read and write
 clean
23086157000
unkown
page read and write
 clean
1E539E10000
unkown
page read and write
 clean
20D9191F000
unkown
page read and write
 clean
234E7A6D000
unkown
page read and write
 clean
7FF531F53000
unkown
page readonly
 clean
1E535060000
unkown
page readonly
 clean
29496B40000
unkown
page readonly
 clean
1A403D02000
unkown
page read and write
 clean
1E53A040000
unkown
page read and write
 clean
7FF5AC4C7000
unkown
page readonly
 clean
20D93800000
unkown
page read and write
 clean
23086177000
unkown
page read and write
 clean
7FF54600D000
unkown
page readonly
 clean
230857F0000
unkown
page read and write
 clean
7274CFF000
unkown
page read and write
 clean
7FF5E4429000
unkown
page readonly
 clean
7FF5320B5000
unkown
page readonly
 clean
23086158000
unkown
page read and write
 clean
7FF5E43B5000
unkown
page readonly
 clean
1E53A2E0000
unkown
page read and write
 clean
7FF5E41D1000
unkown
page readonly
 clean
7FF531FB8000
unkown
page readonly
 clean
1E53531A000
unkown
page read and write
 clean
7FF59E5BF000
unkown
page readonly
 clean
7FF5DAB14000
unkown
page readonly
 clean
7FF5CFE0A000
unkown
page readonly
 clean
7FF5CFC1E000
unkown
page readonly
 clean
234E7980000
heap default
page read and write
 clean
7FF545F30000
unkown
page readonly
 clean
727497E000
unkown
page read and write
 clean
7FF5AC81F000
unkown
page readonly
 clean
23086661000
unkown
page read and write
 clean
7FF59E82C000
unkown
page readonly
 clean
7FF5AC5C8000
unkown
page readonly
 clean
1E534C00000
unkown
page readonly
 clean
7FF5457ED000
unkown
page readonly
 clean
230857D0000
unkown
page readonly
 clean
20D91800000
unkown
page read and write
 clean
7FF5CFD57000
unkown
page readonly
 clean
7274677000
unkown
page read and write
 clean
20D918DC000
unkown
page read and write
 clean
23086137000
unkown
page read and write
 clean
29496000000
unkown
page readonly
 clean
20D91940000
unkown
page read and write
 clean
7FF532104000
unkown
page readonly
 clean
230861CE000
unkown
page read and write
 clean
23086175000
unkown
page read and write
 clean
7FF5AC827000
unkown
page readonly
 clean
20D93820000
unkown
page read and write
 clean
1E53A091000
unkown
page read and write
 clean
1E534CD0000
unkown
page readonly
 clean
7FF59E674000
unkown
page readonly
 clean
23086121000
unkown
page read and write
 clean
23086134000
unkown
page read and write
 clean
7FF5E407A000
unkown
page readonly
 clean
7FF5AC844000
unkown
page readonly
 clean
1E534960000
unkown
page readonly
 clean
20D94610000
unkown
page read and write
 clean
2308614D000
unkown
page read and write
 clean
7FF524F4A000
unkown
page readonly
 clean
F4045BB000
unkown
page read and write
 clean
1E535318000
unkown
page read and write
 clean
7FF59E52A000
unkown
page readonly
 clean
DF7517D000
unkown
page read and write
 clean
1E534A72000
unkown
page read and write
 clean
DF745DB000
unkown
page read and write
 clean
7FF5CFBC3000
unkown
page readonly
 clean
7FF545F95000
unkown
page readonly
 clean
7FF5AC631000
unkown
page readonly
 clean
7FF5CFB71000
unkown
page readonly
 clean
1E535900000
unkown
page read and write
 clean
2308615B000
unkown
page read and write
 clean
7FF5E4176000
unkown
page readonly
 clean
23086168000
unkown
page read and write
 clean
7FF5AC611000
unkown
page readonly
 clean
29495F00000
unkown
page read and write
 clean
29495DB0000
unkown
page readonly
 clean
7FF524E77000
unkown
page readonly
 clean
7FF5E449A000
unkown
page readonly
 clean
234E9570000
unkown
page readonly
 clean
7FF546082000
unkown
page readonly
 clean
1E5351E0000
unkown
page readonly
 clean
7662678000
unkown
page read and write
 clean
29495E3C000
unkown
page read and write
 clean
23086159000
unkown
page read and write
 clean
7FF5AC83A000
unkown
page readonly
 clean
7FF5E43BB000
unkown
page readonly
 clean
1E53539C000
unkown
page read and write
 clean
1E534A40000
unkown
page read and write
 clean
1E535318000
unkown
page read and write
 clean
7662377000
unkown
page read and write
 clean
1E539FA4000
unkown
page read and write
 clean
7FF524DAD000
unkown
page readonly
 clean
7FF5E4494000
unkown
page readonly
 clean
1A403C90000
unkown
page read and write
 clean
7FF59E160000
unkown
page readonly
 clean
1E539E80000
unkown
page read and write
 clean
190C5150000
heap default
page read and write
 clean
7FF5CFE12000
unkown
page readonly
 clean
190C5420000
heap private
page read and write
 clean
DF74DFA000
unkown
page read and write
 clean
1E534A79000
unkown
page read and write
 clean
1E539FA4000
unkown
page read and write
 clean
1E534980000
unkown
page read and write
 clean
23086157000
unkown
page read and write
 clean
7FF5CFC8C000
unkown
page readonly
 clean
1E53A0AB000
unkown
page read and write
 clean
1E539E20000
unkown
page read and write
 clean
7FF59E877000
unkown
page readonly
 clean
2308614D000
unkown
page read and write
 clean
190C517E000
unkown
page read and write
 clean
76628FE000
unkown
page read and write
 clean
7FF5CFAA0000
unkown
page readonly
 clean
7FF5AC8DA000
unkown
page readonly
 clean
7FF524D41000
unkown
page readonly
 clean
1E534A58000
unkown
page read and write
 clean
1E534B13000
unkown
page read and write
 clean
7FF5AC0F1000
unkown
page readonly
 clean
1E539EA0000
unkown
page read and write
 clean
DF7487E000
unkown
page read and write
 clean
23086173000
unkown
page read and write
 clean
7FF524F51000
unkown
page readonly
 clean
7FF5AC7B3000
unkown
page readonly
 clean
1A403C4A000
unkown
page read and write
 clean
1E5353E0000
unkown
page read and write
 clean
1BB29FF000
unkown
page read and write
 clean
20D935E0000
unkown
page readonly
 clean
20D93A12000
unkown
page read and write
 clean
7FF524CB1000
unkown
page readonly
 clean
7FF5E43AE000
unkown
page readonly
 clean
1E539FC0000
unkown
page read and write
 clean
1E53A100000
unkown
page read and write
 clean
20D936B6000
unkown
page read and write
 clean
230858E7000
unkown
page read and write
 clean
23086148000
unkown
page read and write
 clean
1E539E50000
unkown
page readonly
 clean
7FF5DAACB000
unkown
page readonly
 clean
7FF5242EF000
unkown
page readonly
 clean
20D935F0000
unkown
page read and write
 clean
7FF5DA3E0000
unkown
page readonly
 clean
7FF5E4350000
unkown
page readonly
 clean
1E53A082000
unkown
page read and write
 clean
20D918DC000
unkown
page read and write
 clean
20D91790000
unkown
page readonly
 clean
20D932A0000
unkown
page readonly
 clean
29495F13000
unkown
page read and write
 clean
7FF531E6B000
unkown
page readonly
 clean
7FF5E43AA000
unkown
page readonly
 clean
7FF5DAB39000
unkown
page readonly
 clean
1E5348E0000
heap private
page read and write
 clean
23086158000
unkown
page read and write
 clean
7FF5AC4BA000
unkown
page readonly
 clean
23086198000
unkown
page read and write
 clean
7FF524EC8000
unkown
page readonly
 clean
7FF5E43FA000
unkown
page readonly
 clean
1E534950000
unkown
page readonly
 clean
20D9361F000
unkown
page read and write
 clean
F40487E000
unkown
page read and write
 clean
2308615B000
unkown
page read and write
 clean
1A403C4D000
unkown
page read and write
 clean
234E7B13000
unkown
page read and write
 clean
7FF5AC78C000
unkown
page readonly
 clean
234E7A13000
unkown
page read and write
 clean
1E53A091000
unkown
page read and write
 clean
F40497E000
unkown
page read and write
 clean
7FF59E08D000
unkown
page readonly
 clean
23085813000
unkown
page read and write
 clean
23086174000
unkown
page read and write
 clean
20D95010000
unkown
page read and write
 clean
2308618D000
unkown
page read and write
 clean
7FF5DABB2000
unkown
page readonly
 clean
7FF5E3C0D000
unkown
page readonly
 clean
C4498FB000
unkown
page read and write
 clean
7FF5AC7BF000
unkown
page readonly
 clean
1BB257E000
unkown
page read and write
 clean
7FF59E82A000
unkown
page readonly
 clean
20D9185A000
unkown
page read and write
 clean
7FF5DABB1000
unkown
page readonly
 clean
294960D0000
unkown
page readonly
 clean
7FF545D4B000
unkown
page readonly
 clean
190C518F000
unkown
page read and write
 clean
230858FA000
unkown
page read and write
 clean
20D93A00000
unkown
page read and write
 clean
766247F000
unkown
page read and write
 clean
190C517E000
unkown
page read and write
 clean
7FF5CFD9D000
unkown
page readonly
 clean
1A403A70000
unkown
page readonly
 clean
20D931A0000
unkown
page read and write
 clean
20D9366C000
unkown
page read and write
 clean
7FF59E18E000
unkown
page readonly
 clean
7FF53207F000
unkown
page readonly
 clean
1E535359000
unkown
page read and write
 clean
7FF59E840000
unkown
page readonly
 clean
1E53A3F0000
unkown
page read and write
 clean
7FF524EBF000
unkown
page readonly
 clean
2308615B000
unkown
page read and write
 clean
7FF524A20000
unkown
page readonly
 clean
7FF59E676000
unkown
page readonly
 clean
20D93B43000
unkown
page read and write
 clean
1E535359000
unkown
page read and write
 clean
23086146000
unkown
page read and write
 clean
7FF5CFC6D000
unkown
page readonly
 clean
7FF5AC866000
unkown
page readonly
 clean
2308618D000
unkown
page read and write
 clean
7FF5AC85E000
unkown
page readonly
 clean
7FF5DA413000
unkown
page readonly
 clean
2308616C000
unkown
page read and write
 clean
20D918C0000
unkown
page read and write
 clean
230858E4000
unkown
page read and write
 clean
1E53A094000
unkown
page read and write
 clean
2308584B000
unkown
page read and write
 clean
20D918B2000
unkown
page read and write
 clean
7FF546009000
unkown
page readonly
 clean
1E53A08D000
unkown
page read and write
 clean
7FF546001000
unkown
page readonly
 clean
7FF5CF8E6000
unkown
page readonly
 clean
7FF5E41D5000
unkown
page readonly
 clean
1001FE000
unkown
page read and write
 clean
23086162000
unkown
page read and write
 clean
7FF5CFD4C000
unkown
page readonly
 clean
18810802000
unkown
page read and write
 clean
7FF5DAAC0000
unkown
page readonly
 clean
7FF545F90000
unkown
page readonly
 clean
1E539FA8000
unkown
page read and write
 clean
7FF532084000
unkown
page readonly
 clean
1E5351F0000
unkown
page read and write
 clean
1E539E00000
unkown
page read and write
 clean
230861CE000
unkown
page read and write
 clean
7FF5AC6EB000
unkown
page readonly
 clean
7FF524A35000
unkown
page readonly
 clean
23086190000
unkown
page read and write
 clean
20D94010000
unkown
page read and write
 clean
23086158000
unkown
page read and write
 clean
2308614D000
unkown
page read and write
 clean
23085F30000
unkown
page write copy
 clean
7FF59E83E000
unkown
page readonly
 clean
18810A50000
unkown
page readonly
 clean
1881083F000
unkown
page read and write
 clean
7FF59E6EA000
unkown
page readonly
 clean
234E7990000
unkown
page write copy
 clean
7FF59E8B6000
unkown
page readonly
 clean
1E53A2A8000
unkown
page read and write
 clean
7FF524D03000
unkown
page readonly
 clean
23086146000
unkown
page read and write
 clean
1E53A300000
unkown
page read and write
 clean
DF751FB000
unkown
page read and write
 clean
7FF5CFD37000
unkown
page readonly
 clean
1E535318000
unkown
page read and write
 clean
1E53B000000
unkown
page read and write
 clean
20D91829000
unkown
page read and write
 clean
20D93600000
unkown
page read and write
 clean
1E53A2B0000
unkown
page read and write
 clean
7FF5CFD64000
unkown
page readonly
 clean
20D94410000
unkown
page read and write
 clean
20D915B0000
heap private
page read and write
 clean
7FF59E457000
unkown
page readonly
 clean
7FF531F91000
unkown
page readonly
 clean
7FF53219A000
unkown
page readonly
 clean
23086158000
unkown
page read and write
 clean
23085883000
unkown
page read and write
 clean
20D918DB000
unkown
page read and write
 clean
1A403C00000
unkown
page read and write
 clean
2308616C000
unkown
page read and write
 clean
1E535318000
unkown
page read and write
 clean
7FF524BD7000
unkown
page readonly
 clean
DF74CFA000
unkown
page read and write
 clean
234E9470000
unkown
page read and write
 clean
7FF524D5E000
unkown
page readonly
 clean
1A403C85000
unkown
page read and write
 clean
10057D000
unkown
page read and write
 clean
2308613E000
unkown
page read and write
 clean
23086175000
unkown
page read and write
 clean
7FF59E803000
unkown
page readonly
 clean
20D93AA4000
unkown
page read and write
 clean
2308618D000
unkown
page read and write
 clean
1E535215000
unkown
page read and write
 clean
7FF545DB5000
unkown
page readonly
 clean
23086174000
unkown
page read and write
 clean
23086159000
unkown
page read and write
 clean
7FF545FBF000
unkown
page readonly
 clean
7FF5CF1AF000
unkown
page readonly
 clean
29495E60000
unkown
page read and write
 clean
20D93630000
unkown
page read and write
 clean
23086190000
unkown
page read and write
 clean
7FF5AC4AC000
unkown
page readonly
 clean
190C5176000
unkown
page read and write
 clean
23086162000
unkown
page read and write
 clean
76627F9000
unkown
page read and write
 clean
1E53A300000
unkown
page readonly
 clean
7FF531E30000
unkown
page readonly
 clean
1E53A2F0000
unkown
page read and write
 clean
1E53531A000
unkown
page read and write
 clean
7FF59E0AB000
unkown
page readonly
 clean
23086149000
unkown
page read and write
 clean
7FF524EA4000
unkown
page readonly
 clean
7FF5DAAEF000
unkown
page readonly
 clean
20D94110000
unkown
page read and write
 clean
20D94310000
unkown
page read and write
 clean
7FF59E8B9000
unkown
page readonly
 clean
2308613E000
unkown
page read and write
 clean
1E534ABD000
unkown
page read and write
 clean
7FF5E44A2000
unkown
page readonly
 clean
7FF524F52000
unkown
page readonly
 clean
7FF545DE9000
unkown
page readonly
 clean
1A403A00000
heap private
page read and write
 clean
7FF5320FA000
unkown
page readonly
 clean
7FF59E701000
unkown
page readonly
 clean
18810834000
unkown
page read and write
 clean
1E53535B000
unkown
page read and write
 clean
1E53A096000
unkown
page read and write
 clean
20D9188C000
unkown
page read and write
 clean
7FF545FC8000
unkown
page readonly
 clean
7FF5320DF000
unkown
page readonly
 clean
7FF59E894000
unkown
page readonly
 clean
C4496FE000
unkown
page read and write
 clean
20D91610000
heap default
page read and write
 clean
1A403D13000
unkown
page read and write
 clean
23086800000
unkown
page readonly
 clean
1E53A085000
unkown
page read and write
 clean
234E7B02000
unkown
page read and write
 clean
1E539FE4000
unkown
page read and write
 clean
7FF5AC73D000
unkown
page readonly
 clean
1A403C29000
unkown
page read and write
 clean
7FF545F9B000
unkown
page readonly
 clean
7FF531F5A000
unkown
page readonly
 clean
190C5250000
unkown
page readonly
 clean
1E53A300000
unkown
page read and write
 clean
2308614E000
unkown
page read and write
 clean
7FF59E86C000
unkown
page readonly
 clean
1E53A061000
unkown
page read and write
 clean
7FF524ECE000
unkown
page readonly
 clean
7FF5AC7EA000
unkown
page readonly
 clean
1E53A340000
unkown
page readonly
 clean
20D936BF000
unkown
page read and write
 clean
1E535AC0000
unkown
page readonly
 clean
20D94510000
unkown
page read and write
 clean
7FF5E406C000
unkown
page readonly
 clean
7FF5DAB0A000
unkown
page readonly
 clean
C449B7F000
unkown
page read and write
 clean
20D93D42000
unkown
page read and write
 clean
20D91780000
unkown
page read and write
 clean
1A403C68000
unkown
page read and write
 clean
20D91856000
unkown
page read and write
 clean
7FF5CFD88000
unkown
page readonly
 clean
20D91856000
unkown
page read and write
 clean
7FF5AC7FB000
unkown
page readonly
 clean
23086146000
unkown
page read and write
 clean
23086137000
unkown
page read and write
 clean
20D918DC000
unkown
page read and write
 clean
7FF59E786000
unkown
page readonly
 clean
20D918DC000
unkown
page read and write
 clean
20D91914000
unkown
page read and write
 clean
23086158000
unkown
page read and write
 clean
7FF524BE0000
unkown
page readonly
 clean
7FF5CFE11000
unkown
page readonly
 clean
7FF53153F000
unkown
page readonly
 clean
23085902000
unkown
page read and write
 clean
29495E66000
unkown
page read and write
 clean
1E539FD0000
unkown
page read and write
 clean
529967F000
unkown
page read and write
 clean
2308614B000
unkown
page read and write
 clean
1E53A0B4000
unkown
page read and write
 clean
7FF531C76000
unkown
page readonly
 clean
1A403C13000
unkown
page read and write
 clean
DF74BFA000
unkown
page read and write
 clean
2308615B000
unkown
page read and write
 clean
1E53A0BE000
unkown
page read and write
 clean
2308617C000
unkown
page read and write
 clean
1A403C70000
unkown
page read and write
 clean
20D93C02000
unkown
page read and write
 clean
2308615B000
unkown
page read and write
 clean
7FF524E4C000
unkown
page readonly
 clean
20D936E9000
unkown
page read and write
 clean
1E535300000
unkown
page read and write
 clean
7FF545F8E000
unkown
page readonly
 clean
7FF59E3A2000
unkown
page readonly
 clean
20D95110000
unkown
page read and write
 clean
7FF546074000
unkown
page readonly
 clean
7FF59E022000
unkown
page readonly
 clean
2308612A000
unkown
page read and write
 clean
20D93830000
unkown
page readonly
 clean
7FF5CFD0A000
unkown
page readonly
 clean
190C5161000
unkown
page read and write
 clean
23086152000
unkown
page read and write
 clean
20D94210000
unkown
page read and write
 clean
20D94410000
unkown
page read and write
 clean
7FF5E43C7000
unkown
page readonly
 clean
230857E0000
unkown
page read and write
 clean
7FF59E018000
unkown
page readonly
 clean
1E53A01E000
unkown
page read and write
 clean
7FF5DAB28000
unkown
page readonly
 clean
23086137000
unkown
page read and write
 clean
20D91813000
unkown
page read and write
 clean
7FF532129000
unkown
page readonly
 clean
7FF5E42B8000
unkown
page readonly
 clean
1E534940000
heap default
page read and write
 clean
20D918BF000
unkown
page read and write
 clean
29495D30000
heap private
page read and write
 clean
7FF5AC861000
unkown
page readonly
 clean
230861BD000
unkown
page read and write
 clean
20D918DC000
unkown
page read and write
 clean
23086162000
unkown
page read and write
 clean
7FF5AC7CF000
unkown
page readonly
 clean
1E534A77000
unkown
page read and write
 clean
7274BFF000
unkown
page read and write
 clean
20D9188C000
unkown
page read and write
 clean
23086157000
unkown
page read and write
 clean
23086602000
unkown
page read and write
 clean
1E5351B0000
unkown
page readonly
 clean
7FF545D56000
unkown
page readonly
 clean
7FF531FFD000
unkown
page readonly
 clean
20D918DB000
unkown
page read and write
 clean
DF74FFB000
unkown
page read and write
 clean
There are 1065 hidden memdumps, click here to show them.

DOM / HTML

URL
Malicious
https://foodtecafrica.com/common/auth/authorize_client_id:3v7t1n8s-a5rl-7igk-uy1f-g08d7xjokfw1_oiywbv49mzl6gctus3rahnj2k5q7f08d1epx9uakrz27pi6qxfncedjlh4tmo8vy5g0wb13siynf6e2boasx5mgjph9twcdvk8zr3714ul0q?data=emFrLm5ld21hbkBlcXVpbml0aS5jb20=
 malicious