IOCReport

loading gif

Files

File Path
Type
Category
Malicious
http://www.delval.com/
URL
initial url
 clean
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506
Microsoft Cabinet archive data, 60080 bytes, 1 file
dropped
 clean
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\20f2fa24-6a42-4654-b3d2-5b065716ff63.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\36cbc8c7-445e-4a30-890d-d88df4deb1c2.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\641e7650-d6a1-4796-a9c4-fc9dd493d294.tmp
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2146c338-cf8b-462d-9932-ebe22a7f1819.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\297e8c9f-f4bc-4c7a-8c6d-7c9c24be9843.tmp
ASCII text, with very long lines, with no line terminators
modified
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\4d0964d6-f528-4fd5-8154-6a35eaf13819.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\557e28a5-1c2b-4bb0-ab88-e103e67e1d3f.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\679ac2d4-e74e-4adf-b4da-73b8d40b88f6.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\898711cf-0221-4a91-9405-cf4a085352c8.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8a92513e-a312-4c21-9de7-c44cd8f9e18e.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\931f8b30-c273-46ed-880a-abb10e99ef07.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\94256365-d19e-4206-b912-eaae7a6e6cc2.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\23c76855-875d-4b30-90ff-231e886bac63.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\b8a1fa10-c607-453c-bbc6-e05cfc0e657d.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d7a72871-5d64-4a3f-ad0b-99e801d6f1db.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
MPEG-4 LOAS
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\bb1b7928-039d-4f4e-a19d-810b93a1fa76.tmp
data
modified
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\ca883edd-4eec-40c4-aebf-832c3a5d38f3.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\e9b1dfd0-25a5-4e8d-89a6-be6b7764323b.tmp
SysEx File -
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\f02e27fb-91da-40f5-9403-559bb5a40d9f.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\608d50b2-008a-4bc6-b775-a93e196760bc.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\65b04852-7204-4fdd-ac51-987615e47829.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Temp\c1ee36df-f31b-474a-ac7f-00a6ebe1c164.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\edf2f93c-fda2-4327-9e62-9d88f225b10f.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\608d50b2-008a-4bc6-b775-a93e196760bc.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\am\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\ar\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\bn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\en\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\fa\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\fil\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\gu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\id\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\kn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\ml\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\mr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\ms\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\nl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\pt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\sw\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\ta\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\te\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\zh\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_1068232442\CRX_INSTALL\manifest.json
ASCII text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\en\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\en_GB\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\es_419\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\fil\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\id\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\nl\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\pt_BR\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\pt_PT\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\zh_CN\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\images\icon_128.png
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\images\icon_16.png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\CRX_INSTALL\manifest.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir3544_761509036\c1ee36df-f31b-474a-ac7f-00a6ebe1c164.tmp
Google Chrome extension, version 3
dropped
 clean
There are 156 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'http://www.delval.com/'
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1548,14534732740687434052,6577963013927893067,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1736 /prefetch:8
clean

URLs

Name
IP
Malicious
https://dns.google
unknown
 clean
https://clients2.googleusercontent.com
unknown
 clean
http://www.delval.com/
162.214.158.161
 clean
https://delval.com/
unknown
 clean
https://feedback.googleusercontent.com
unknown
 clean
https://delval.com/t
unknown
 clean

Domains

Name
IP
Malicious
delval.com
162.214.158.161
 clean
www.delval.com
162.214.158.161
 clean
googlehosted.l.googleusercontent.com
216.58.212.161
 clean
clients2.googleusercontent.com
unknown
 clean

IPs

IP
Domain
Country
Malicious
192.168.2.1
unknown
unknown
clean
192.168.2.7
unknown
unknown
clean
192.168.2.4
unknown
unknown
clean
192.168.2.3
unknown
unknown
clean
239.255.255.250
unknown
Reserved
clean
162.214.158.161
delval.com
United States
clean
216.58.212.161
googlehosted.l.googleusercontent.com
United States
clean
127.0.0.1
unknown
unknown
clean

Registry

Path
Value
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
ahfgeienlihckogmohjhadlkjgocpleb
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gdaefkejpgkiemlaofpalmlakkmbjdnl
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gfdkimpbcpahaombhbimeihdjnejgicl
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
kmendfapggjehodndflmmgagdbamhnfd
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
mfehgcgbbipciphmccgaenjidiccnmng
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
mhjfbmdgcfjbbpaeojofohoefgiehjai
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
neajdppkdcdipfabeoofebfddakdcjhd
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nkeimhogjdpnpccoofpliimaahmaaome
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
prefs.preference_reset_time
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
S-1-5-21-3853321935-2125563209-4053062332-1002
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gfdkimpbcpahaombhbimeihdjnejgicl
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nmmhkkegccagdldgiimedpiccmgmieda
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
pkedcjkdefgpdelpbcmbmeomcjbeemfm
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nmmhkkegccagdldgiimedpiccmgmieda
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
state
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
StatusCodes
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
StatusCodes
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
state
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.reporting
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
module_blacklist_cache_md5_digest
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
media.storage_id_salt
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.last_account_id
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.account_id
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.prompt_seed
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_homepage
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
default_search_provider_data.template_url_data
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
safebrowsing.incidents_sent
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
pinned_tabs
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
search_provider_overrides
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_default_search
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
prefs.preference_reset_time
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.last_username
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
session.startup_urls
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
session.restore_on_startup
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.prompt_version
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_startup_urls
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.prompt_wave
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
homepage
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
homepage_is_newtabpage
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
browser.show_home_button
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
user_experience_metrics.stability.exited_cleanly
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
lastrun
 clean
There are 32 hidden registries, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
7FF52000B000
unkown
page readonly
 clean
1E79DB18000
unkown
page read and write
 clean
1E79F602000
unkown
page read and write
 clean
1E79DA47000
unkown
page read and write
 clean
7FF5DFB83000
unkown
page readonly
 clean
17D8DD18000
unkown
page read and write
 clean
7FF51FCD8000
unkown
page readonly
 clean
7FF566A20000
unkown
page readonly
 clean
BE0267B000
unkown
page read and write
 clean
7FF566B53000
unkown
page readonly
 clean
17D92AAD000
unkown
page read and write
 clean
7FF5EEA66000
unkown
page readonly
 clean
1D6D045F000
unkown
page read and write
 clean
2120FC60000
unkown
page readonly
 clean
2120F4E0000
heap private
page read and write
 clean
1CCB2713000
unkown
page read and write
 clean
7FF5627AD000
unkown
page readonly
 clean
1C043E02000
unkown
page read and write
 clean
17D8D380000
unkown
page readonly
 clean
1BD67AA0000
heap private
page read and write
 clean
2A716E2A000
unkown
page read and write
 clean
7FF5EE97C000
unkown
page readonly
 clean
2120FE02000
unkown
page read and write
 clean
1B293B13000
unkown
page read and write
 clean
2120FF39000
unkown
page read and write
 clean
7FF5F5BF8000
unkown
page readonly
 clean
7FF5C8576000
unkown
page readonly
 clean
17D929D4000
unkown
page read and write
 clean
7FF52C614000
unkown
page readonly
 clean
1CCB266F000
unkown
page read and write
 clean
7FF52C34F000
unkown
page readonly
 clean
417C07E000
unkown
page read and write
 clean
941BCFC000
unkown
page read and write
 clean
7FF51FF25000
unkown
page readonly
 clean
7FF5DFAFC000
unkown
page readonly
 clean
941BD7E000
unkown
page read and write
 clean
7FF5629E3000
unkown
page readonly
 clean
1BD678C0000
heap default
page read and write
 clean
17D8D240000
heap private
page read and write
 clean
17D8D4FF000
unkown
page read and write
 clean
1CCB2700000
unkown
page read and write
 clean
7FF58AC26000
unkown
page readonly
 clean
7FF5F5E90000
unkown
page readonly
 clean
7FF5DFB6C000
unkown
page readonly
 clean
7FF58A99A000
unkown
page readonly
 clean
17D8DD59000
unkown
page read and write
 clean
1D6D045C000
unkown
page read and write
 clean
2BAFC100000
unkown
page read and write
 clean
17D8D502000
unkown
page read and write
 clean
4F2D87B000
unkown
page read and write
 clean
1D6D045A000
unkown
page read and write
 clean
7FF520051000
unkown
page readonly
 clean
7FF5EEA6C000
unkown
page readonly
 clean
17D8D479000
unkown
page read and write
 clean
7FF52C5F9000
unkown
page readonly
 clean
2120F570000
unkown
page read and write
 clean
7FF566A4B000
unkown
page readonly
 clean
1B293A6A000
unkown
page read and write
 clean
7FF566A24000
unkown
page readonly
 clean
7FF58AC33000
unkown
page readonly
 clean
7FF5E9F38000
unkown
page readonly
 clean
1E79F470000
unkown
page read and write
 clean
7FF5F5E85000
unkown
page readonly
 clean
7FF52C5C1000
unkown
page readonly
 clean
7FF5C856C000
unkown
page readonly
 clean
7FF520009000
unkown
page readonly
 clean
7FF58ABB6000
unkown
page readonly
 clean
17D8DD00000
unkown
page read and write
 clean
2A717800000
unkown
page readonly
 clean
7FF566A81000
unkown
page readonly
 clean
7FF5628EF000
unkown
page readonly
 clean
7FF5DFAC1000
unkown
page readonly
 clean
1BD679C0000
unkown
page readonly
 clean
2BAFC080000
unkown
page read and write
 clean
BB6087B000
unkown
page read and write
 clean
17D92A40000
unkown
page read and write
 clean
1C043D90000
unkown
page readonly
 clean
7FF58A811000
unkown
page readonly
 clean
BE0247E000
unkown
page read and write
 clean
1D6D0431000
unkown
page read and write
 clean
7FF566AA5000
unkown
page readonly
 clean
2120F613000
unkown
page read and write
 clean
7FF5DF955000
unkown
page readonly
 clean
7FF5EE739000
unkown
page readonly
 clean
46CE5FD000
unkown
page read and write
 clean
7FF5EA3CC000
unkown
page readonly
 clean
7FF566941000
unkown
page readonly
 clean
417B99C000
unkown
page read and write
 clean
1B293990000
unkown
page readonly
 clean
7FF566A68000
unkown
page readonly
 clean
46CE57E000
unkown
page read and write
 clean
22515530000
unkown
page read and write
 clean
7FF5EA293000
unkown
page readonly
 clean
1B293800000
heap private
page read and write
 clean
7FF5200F6000
unkown
page readonly
 clean
1CCB2640000
unkown
page read and write
 clean
2BAFC058000
unkown
page read and write
 clean
2120F6C9000
unkown
page read and write
 clean
2120F713000
unkown
page read and write
 clean
7FF5DF99A000
unkown
page readonly
 clean
941C07C000
unkown
page read and write
 clean
7FF56600C000
unkown
page readonly
 clean
7FF566753000
unkown
page readonly
 clean
1D6D0A80000
unkown
page read and write
 clean
1B293870000
unkown
page readonly
 clean
1E79D940000
heap default
page read and write
 clean
1B293A6A000
unkown
page read and write
 clean
7FF5EA2EF000
unkown
page readonly
 clean
2C15D2F000
unkown
page read and write
 clean
7FF5DF995000
unkown
page readonly
 clean
1CCB2540000
unkown
page readonly
 clean
941C5FF000
unkown
page read and write
 clean
7FF5629E3000
unkown
page readonly
 clean
1C043E51000
unkown
page read and write
 clean
17D92C20000
unkown
page read and write
 clean
7FF51FFF5000
unkown
page readonly
 clean
2A716F02000
unkown
page read and write
 clean
BB6097E000
unkown
page read and write
 clean
1D6D0485000
unkown
page read and write
 clean
1B293860000
heap default
page read and write
 clean
17D92930000
unkown
page read and write
 clean
1C043F13000
unkown
page read and write
 clean
2BAFC200000
unkown
page readonly
 clean
22514F02000
unkown
page read and write
 clean
7FF52008C000
unkown
page readonly
 clean
1B293A00000
unkown
page read and write
 clean
17D8D476000
unkown
page read and write
 clean
191967A000
unkown
page read and write
 clean
7FF5628EC000
unkown
page readonly
 clean
22515800000
unkown
page read and write
 clean
2BAFC028000
unkown
page read and write
 clean
7FF566AE4000
unkown
page readonly
 clean
7FF5629CC000
unkown
page readonly
 clean
7FF52C570000
unkown
page readonly
 clean
7FF5DFAD5000
unkown
page readonly
 clean
7FF58AC16000
unkown
page readonly
 clean
46CE67F000
unkown
page read and write
 clean
7FF5F5D45000
unkown
page readonly
 clean
1B2953A0000
unkown
page read and write
 clean
17D8D400000
unkown
page read and write
 clean
7FF56258F000
unkown
page readonly
 clean
1CCB2668000
unkown
page read and write
 clean
1B293A6A000
unkown
page read and write
 clean
2A717530000
unkown
page readonly
 clean
7FF5F5EA9000
unkown
page readonly
 clean
2A716DE0000
heap default
page read and write
 clean
7FF5C85DC000
unkown
page readonly
 clean
7FF51FDEA000
unkown
page readonly
 clean
1E79DA75000
unkown
page read and write
 clean
7FF5200A4000
unkown
page readonly
 clean
417C57C000
unkown
page read and write
 clean
1919F7F000
unkown
page read and write
 clean
7FF51FC71000
unkown
page readonly
 clean
1CCB2669000
unkown
page read and write
 clean
7FF566AC2000
unkown
page readonly
 clean
7FF5F5D3D000
unkown
page readonly
 clean
7FF5F5EE9000
unkown
page readonly
 clean
7FF5DF750000
unkown
page readonly
 clean
7FF5C8284000
unkown
page readonly
 clean
7FF58A800000
unkown
page readonly
 clean
7FF5DF8EA000
unkown
page readonly
 clean
17D8DC00000
unkown
page read and write
 clean
1D6D0478000
unkown
page read and write
 clean
7FF58AA4A000
unkown
page readonly
 clean
505D079000
unkown
page read and write
 clean
17D8DD58000
unkown
page read and write
 clean
7FF52C683000
unkown
page readonly
 clean
7FF56684F000
unkown
page readonly
 clean
1C043E6A000
unkown
page read and write
 clean
7FF56266F000
unkown
page readonly
 clean
7FF5EA304000
unkown
page readonly
 clean
1D6D046C000
unkown
page read and write
 clean
17D8E3D0000
unkown
page readonly
 clean
1BD696B0000
heap private
page read and write
 clean
7FF5F5EC5000
unkown
page readonly
 clean
7FF562904000
unkown
page readonly
 clean
1C043E29000
unkown
page read and write
 clean
17D8D47B000
unkown
page read and write
 clean
505D0FE000
unkown
page read and write
 clean
2120FF12000
unkown
page read and write
 clean
7FF5EEA06000
unkown
page readonly
 clean
17D8DBD1000
unkown
page read and write
 clean
1CCB266B000
unkown
page read and write
 clean
7FF51FF2A000
unkown
page readonly
 clean
1BD67E70000
unkown
page readonly
 clean
D80918B000
unkown
page read and write
 clean
2BAFC079000
unkown
page read and write
 clean
7FF52C5D5000
unkown
page readonly
 clean
7FF5EA2DC000
unkown
page readonly
 clean
941C2FD000
unkown
page read and write
 clean
1C043E13000
unkown
page read and write
 clean
1C043D60000
unkown
page readonly
 clean
2C15DAE000
unkown
page read and write
 clean
1D6D0502000
unkown
page read and write
 clean
7FF562959000
unkown
page readonly
 clean
1D6D0320000
heap default
page read and write
 clean
1E79DB13000
unkown
page read and write
 clean
7FF566844000
unkown
page readonly
 clean
17D92CA0000
unkown
page readonly
 clean
941BFFE000
unkown
page read and write
 clean
7FF5DFAF9000
unkown
page readonly
 clean
941C3FE000
unkown
page read and write
 clean
1CCB2669000
unkown
page read and write
 clean
1B293A35000
unkown
page read and write
 clean
7FF5EE9B1000
unkown
page readonly
 clean
1E79D8E0000
heap private
page read and write
 clean
7FF5EA3D5000
unkown
page readonly
 clean
7FF5662B2000
unkown
page readonly
 clean
7FF51FEDD000
unkown
page readonly
 clean
BB60DFE000
unkown
page read and write
 clean
17D92D50000
unkown
page read and write
 clean
17D8E200000
unkown
page read and write
 clean
1E79D970000
unkown
page read and write
 clean
7FF5C81BD000
unkown
page readonly
 clean
7FF566AC9000
unkown
page readonly
 clean
7FF5EA300000
unkown
page readonly
 clean
7FF5EE950000
unkown
page readonly
 clean
1CCB2673000
unkown
page read and write
 clean
7FF566B36000
unkown
page readonly
 clean
1D6D0413000
unkown
page read and write
 clean
1E79F4F0000
unkown
page read and write
 clean
2120F5B0000
unkown
page write copy
 clean
7FF5668EB000
unkown
page readonly
 clean
2BAFC000000
unkown
page read and write
 clean
D8097FF000
unkown
page read and write
 clean
7FF566AE4000
unkown
page readonly
 clean
7FF5629D6000
unkown
page readonly
 clean
1CCB266D000
unkown
page read and write
 clean
7FF56691D000
unkown
page readonly
 clean
17D92A6D000
unkown
page read and write
 clean
17D92C30000
unkown
page read and write
 clean
7FF5EE991000
unkown
page readonly
 clean
1B293B00000
unkown
page read and write
 clean
941C17E000
unkown
page read and write
 clean
7FF52C513000
unkown
page readonly
 clean
7FF562935000
unkown
page readonly
 clean
7FF5EA2F8000
unkown
page readonly
 clean
417BF7F000
unkown
page read and write
 clean
7FF5E9F49000
unkown
page readonly
 clean
4F2DFFD000
unkown
page read and write
 clean
1B293A29000
unkown
page read and write
 clean
7FF5F5EDC000
unkown
page readonly
 clean
1B2954A0000
unkown
page readonly
 clean
17D927E0000
unkown
page read and write
 clean
1D6D0600000
unkown
page readonly
 clean
17D8E760000
unkown
page read and write
 clean
7FF5669C5000
unkown
page readonly
 clean
1B293C00000
unkown
page readonly
 clean
2120F6CC000
unkown
page read and write
 clean
1CCB266F000
unkown
page read and write
 clean
7FF5DFB14000
unkown
page readonly
 clean
1BD693B0000
heap private
page read and write
 clean
7FF52C565000
unkown
page readonly
 clean
7FF5628D1000
unkown
page readonly
 clean
7FF566AA5000
unkown
page readonly
 clean
7FF566ACC000
unkown
page readonly
 clean
22515000000
unkown
page readonly
 clean
17D8D471000
unkown
page read and write
 clean
941C4FD000
unkown
page read and write
 clean
2120F600000
unkown
page read and write
 clean
7FF5EE735000
unkown
page readonly
 clean
1BD67780000
unkown
page readonly
 clean
BB60BFE000
unkown
page read and write
 clean
505CF7F000
unkown
page read and write
 clean
7FF5EA352000
unkown
page readonly
 clean
1BD67890000
unkown
page readonly
 clean
7FF58AA05000
unkown
page readonly
 clean
941BEFF000
unkown
page read and write
 clean
7FF520028000
unkown
page readonly
 clean
1CCB2420000
unkown
page readonly
 clean
1919A7B000
unkown
page read and write
 clean
7FF520041000
unkown
page readonly
 clean
17D8D390000
unkown
page readonly
 clean
7FF5F5F04000
unkown
page readonly
 clean
1CCB266F000
unkown
page read and write
 clean
17D927B0000
unkown
page readonly
 clean
17D92C10000
unkown
page read and write
 clean
7FF5C8510000
unkown
page readonly
 clean
1E79DA2A000
unkown
page read and write
 clean
191912B000
unkown
page read and write
 clean
4F2DEFF000
unkown
page read and write
 clean
7FF520049000
unkown
page readonly
 clean
7FF5EA335000
unkown
page readonly
 clean
7FF58ABA9000
unkown
page readonly
 clean
22514E13000
unkown
page read and write
 clean
22514D40000
heap private
page read and write
 clean
1BD67AD5000
heap private
page read and write
 clean
4F2E3FE000
unkown
page read and write
 clean
7FF520065000
unkown
page readonly
 clean
1E79DA00000
unkown
page read and write
 clean
941C1FB000
unkown
page read and write
 clean
7FF5669D0000
unkown
page readonly
 clean
1E79D960000
unkown
page readonly
 clean
BE02AFF000
unkown
page read and write
 clean
7FF5EE9A0000
unkown
page readonly
 clean
4F2E4FF000
unkown
page read and write
 clean
1CCB266F000
unkown
page read and write
 clean
D80967F000
unkown
page read and write
 clean
1B293A6A000
unkown
page read and write
 clean
7FF5C8309000
unkown
page readonly
 clean
2A716E6E000
unkown
page read and write
 clean
2A717B40000
unkown
page readonly
 clean
17D92ACA000
unkown
page read and write
 clean
7FF5F5E88000
unkown
page readonly
 clean
7FF566960000
unkown
page readonly
 clean
7FF56225F000
unkown
page readonly
 clean
7FF566ABB000
unkown
page readonly
 clean
1E79F530000
unkown
page write copy
 clean
1E79DB02000
unkown
page read and write
 clean
1D6D0458000
unkown
page read and write
 clean
7FF5DFB66000
unkown
page readonly
 clean
1BD67AE0000
unkown
page readonly
 clean
17D8E420000
unkown
page readonly
 clean
1C043E71000
unkown
page read and write
 clean
7FF52C3E2000
unkown
page readonly
 clean
7FF5F5A7C000
unkown
page readonly
 clean
7FF566A14000
unkown
page readonly
 clean
7FF5662D5000
unkown
page readonly
 clean
7FF52001F000
unkown
page readonly
 clean
7FF5DF75C000
unkown
page readonly
 clean
2120F66E000
unkown
page read and write
 clean
7FF5C8545000
unkown
page readonly
 clean
17D8D513000
unkown
page read and write
 clean
7FF566A01000
unkown
page readonly
 clean
BE021EE000
unkown
page read and write
 clean
1BD67870000
unkown
page read and write
 clean
7FF52C666000
unkown
page readonly
 clean
4F2E2FE000
unkown
page read and write
 clean
1CCB24F0000
unkown
page write copy
 clean
417BDFC000
unkown
page read and write
 clean
2A717540000
unkown
page read and write
 clean
7FF5DFA31000
unkown
page readonly
 clean
7FF58AA45000
unkown
page readonly
 clean
2120F6E2000
unkown
page read and write
 clean
17D8E3E0000
unkown
page readonly
 clean
7FF566861000
unkown
page readonly
 clean
1BD67AC0000
unkown
page readonly
 clean
7FF5F5A76000
unkown
page readonly
 clean
17D92C60000
unkown
page read and write
 clean
2BAFBF20000
unkown
page readonly
 clean
7FF5DF84F000
unkown
page readonly
 clean
D8094FE000
unkown
page read and write
 clean
7FF58A440000
unkown
page readonly
 clean
1D6D0330000
unkown
page readonly
 clean
7FF52C36D000
unkown
page readonly
 clean
17D8D3B0000
unkown
page read and write
 clean
17D92924000
unkown
page read and write
 clean
941B8CB000
unkown
page read and write
 clean
7FF5EA1AD000
unkown
page readonly
 clean
1CCB2673000
unkown
page read and write
 clean
7FF52C374000
unkown
page readonly
 clean
7FF5668B2000
unkown
page readonly
 clean
7FF5EA2D0000
unkown
page readonly
 clean
2A716E8A000
unkown
page read and write
 clean
7FF5C8562000
unkown
page readonly
 clean
7FF562742000
unkown
page readonly
 clean
7FF5DFAEC000
unkown
page readonly
 clean
7FF5EE98B000
unkown
page readonly
 clean
22515530000
unkown
page read and write
 clean
7FF52C5FC000
unkown
page readonly
 clean
7FF5668FB000
unkown
page readonly
 clean
225150D0000
unkown
page readonly
 clean
7FF5F5F73000
unkown
page readonly
 clean
4F2E1FF000
unkown
page read and write
 clean
1BD678F9000
heap default
page read and write
 clean
2BAFC040000
unkown
page read and write
 clean
BE026FE000
unkown
page read and write
 clean
1C043E5B000
unkown
page read and write
 clean
417BC7E000
unkown
page read and write
 clean
22514DD0000
unkown
page read and write
 clean
1CCB266E000
unkown
page read and write
 clean
1CCB266B000
unkown
page read and write
 clean
417BE7D000
unkown
page read and write
 clean
7FF58ABAC000
unkown
page readonly
 clean
417C37C000
unkown
page read and write
 clean
7FF5666A8000
unkown
page readonly
 clean
17D8DD02000
unkown
page read and write
 clean
7FF5C8521000
unkown
page readonly
 clean
7FF58AB87000
unkown
page readonly
 clean
7FF58AB48000
unkown
page readonly
 clean
7FF56294C000
unkown
page readonly
 clean
17D92770000
unkown
page read and write
 clean
1919B7F000
unkown
page read and write
 clean
7FF5C85F3000
unkown
page readonly
 clean
17D929E4000
unkown
page readonly
 clean
7FF5C84EB000
unkown
page readonly
 clean
17D92ACA000
unkown
page read and write
 clean
7FF52C471000
unkown
page readonly
 clean
7FF566347000
unkown
page readonly
 clean
2120F560000
unkown
page readonly
 clean
7FF51FE72000
unkown
page readonly
 clean
2BAFC670000
unkown
page read and write
 clean
D80947E000
unkown
page read and write
 clean
2120F8D0000
unkown
page readonly
 clean
1E79D950000
unkown
page readonly
 clean
17D92D40000
unkown
page readonly
 clean
7FF5F5F73000
unkown
page readonly
 clean
7FF5EA311000
unkown
page readonly
 clean
21210000000
unkown
page readonly
 clean
7FF5C84FF000
unkown
page readonly
 clean
7FF52C5B9000
unkown
page readonly
 clean
CB0037C000
unkown
page read and write
 clean
17D92920000
unkown
page read and write
 clean
2A716F08000
unkown
page read and write
 clean
1C044800000
unkown
page readonly
 clean
7FF51FDFC000
unkown
page readonly
 clean
17D9290E000
unkown
page read and write
 clean
7FF5EA34B000
unkown
page readonly
 clean
7FF562683000
unkown
page readonly
 clean
1E79D990000
unkown
page read and write
 clean
7FF566B53000
unkown
page readonly
 clean
7FF562538000
unkown
page readonly
 clean
2A717000000
unkown
page readonly
 clean
17D92A50000
unkown
page read and write
 clean
7FF5E9FAD000
unkown
page readonly
 clean
7FF5627D1000
unkown
page readonly
 clean
7FF5668E7000
unkown
page readonly
 clean
7FF52C554000
unkown
page readonly
 clean
191947E000
unkown
page read and write
 clean
17D8D429000
unkown
page read and write
 clean
1C043E75000
unkown
page read and write
 clean
7FF58AB04000
unkown
page readonly
 clean
17D92760000
unkown
page read and write
 clean
2BAFBFF0000
unkown
page readonly
 clean
1D6D0441000
unkown
page read and write
 clean
1919D7F000
unkown
page read and write
 clean
22514E58000
unkown
page read and write
 clean
1E79DA13000
unkown
page read and write
 clean
1CCB265A000
unkown
page read and write
 clean
7FF5EA2F5000
unkown
page readonly
 clean
7FF5C8508000
unkown
page readonly
 clean
1BD67AD0000
heap private
page read and write
 clean
7FF5EA291000
unkown
page readonly
 clean
1D6D0442000
unkown
page read and write
 clean
7FF562873000
unkown
page readonly
 clean
1CCB2668000
unkown
page read and write
 clean
1BD678CB000
heap default
page read and write
 clean
7FF58AAE3000
unkown
page readonly
 clean
7FF5C8497000
unkown
page readonly
 clean
1D6D043D000
unkown
page read and write
 clean
1C044000000
unkown
page readonly
 clean
7FF5EEA75000
unkown
page readonly
 clean
7FF5628CD000
unkown
page readonly
 clean
2A716E3C000
unkown
page read and write
 clean
7FF5666BB000
unkown
page readonly
 clean
7FF566A40000
unkown
page readonly
 clean
7FF5EA074000
unkown
page readonly
 clean
17D8DC02000
unkown
page read and write
 clean
7FF5EE9FC000
unkown
page readonly
 clean
17D92D60000
unkown
page readonly
 clean
7FF56687F000
unkown
page readonly
 clean
2C1607A000
unkown
page read and write
 clean
22514E00000
unkown
page read and write
 clean
7FF56277B000
unkown
page readonly
 clean
22515530000
unkown
page read and write
 clean
7FF562775000
unkown
page readonly
 clean
7FF5628F5000
unkown
page readonly
 clean
1C044602000
unkown
page read and write
 clean
7FF52C23C000
unkown
page readonly
 clean
1B293A13000
unkown
page read and write
 clean
2120F6BB000
unkown
page read and write
 clean
1CCB2800000
unkown
page readonly
 clean
4F2DDFF000
unkown
page read and write
 clean
7FF5F5D3F000
unkown
page readonly
 clean
7FF5DFAA0000
unkown
page readonly
 clean
17D92C60000
unkown
page read and write
 clean
17D92CB0000
unkown
page readonly
 clean
1BD69480000
heap private
page read and write
 clean
2120F629000
unkown
page read and write
 clean
2BAFC068000
unkown
page read and write
 clean
7FF562966000
unkown
page readonly
 clean
191A0FD000
unkown
page read and write
 clean
7FF56254B000
unkown
page readonly
 clean
17D8DD18000
unkown
page read and write
 clean
2BAFC102000
unkown
page read and write
 clean
17D8E410000
unkown
page readonly
 clean
7FF5EE7E2000
unkown
page readonly
 clean
17D8E3F0000
unkown
page readonly
 clean
17D8D2A0000
heap default
page read and write
 clean
1E79E060000
unkown
page readonly
 clean
17D92C50000
unkown
page read and write
 clean
191997A000
unkown
page read and write
 clean
417C27C000
unkown
page read and write
 clean
17D929D0000
unkown
page readonly
 clean
7FF5668B2000
unkown
page readonly
 clean
7FF5EE79B000
unkown
page readonly
 clean
2A716DF0000
unkown
page readonly
 clean
7FF566B36000
unkown
page readonly
 clean
7FF5EEA83000
unkown
page readonly
 clean
505CFF9000
unkown
page read and write
 clean
17D8D2B0000
unkown
page readonly
 clean
17D8D413000
unkown
page read and write
 clean
1E79DA89000
unkown
page read and write
 clean
7FF52C237000
unkown
page readonly
 clean
2A716E53000
unkown
page read and write
 clean
17D92C60000
unkown
page read and write
 clean
7FF5C8584000
unkown
page readonly
 clean
7FF58A80C000
unkown
page readonly
 clean
1CCB2673000
unkown
page read and write
 clean
2A7170D0000
unkown
page readonly
 clean
7FF566ABC000
unkown
page readonly
 clean
17D92ACC000
unkown
page read and write
 clean
2BAFC113000
unkown
page read and write
 clean
7FF5F5DAA000
unkown
page readonly
 clean
1E79DA9A000
unkown
page read and write
 clean
7FF5EEA83000
unkown
page readonly
 clean
1CCB266D000
unkown
page read and write
 clean
17D92800000
unkown
page read and write
 clean
7FF5DFAF2000
unkown
page readonly
 clean
7FF566A70000
unkown
page readonly
 clean
2120F540000
heap default
page read and write
 clean
D80997F000
unkown
page read and write
 clean
4F2DCFF000
unkown
page read and write
 clean
2A716E4D000
unkown
page read and write
 clean
1E79F500000
unkown
page readonly
 clean
2120F800000
unkown
page readonly
 clean
7FF520096000
unkown
page readonly
 clean
1B293B02000
unkown
page read and write
 clean
1BD67720000
unkown
page readonly
 clean
7FF56274A000
unkown
page readonly
 clean
7FF56681F000
unkown
page readonly
 clean
7FF5C8529000
unkown
page readonly
 clean
1CCB266D000
unkown
page read and write
 clean
17D92AB1000
unkown
page read and write
 clean
7FF52C5B1000
unkown
page readonly
 clean
1CCB2629000
unkown
page read and write
 clean
17D92C40000
unkown
page read and write
 clean
2A717602000
unkown
page read and write
 clean
1D6D046A000
unkown
page read and write
 clean
1BD69280000
unkown
page readonly
 clean
7FF520113000
unkown
page readonly
 clean
7FF5C8531000
unkown
page readonly
 clean
1D6D047C000
unkown
page read and write
 clean
2BAFC002000
unkown
page read and write
 clean
7FF5F5F66000
unkown
page readonly
 clean
1BD678A0000
unkown
page readonly
 clean
7FF566B46000
unkown
page readonly
 clean
7FF562911000
unkown
page readonly
 clean
1CCB266C000
unkown
page read and write
 clean
17D92940000
unkown
page read and write
 clean
2BAFC064000
unkown
page read and write
 clean
17D92A4D000
unkown
page read and write
 clean
7FF520034000
unkown
page readonly
 clean
7FF51FC75000
unkown
page readonly
 clean
17D92A60000
unkown
page read and write
 clean
17D8DBF0000
unkown
page read and write
 clean
7FF566A68000
unkown
page readonly
 clean
7FF566B53000
unkown
page readonly
 clean
17D92AB5000
unkown
page read and write
 clean
7FF566A5B000
unkown
page readonly
 clean
7FF5C81DA000
unkown
page readonly
 clean
7FF52C5A4000
unkown
page readonly
 clean
1BD67850000
unkown
page read and write
 clean
7FF5628DC000
unkown
page readonly
 clean
7FF5629C6000
unkown
page readonly
 clean
22515460000
unkown
page readonly
 clean
2BAFCA00000
unkown
page readonly
 clean
7FF52C5A0000
unkown
page readonly
 clean
7FF56685E000
unkown
page readonly
 clean
1D6D0459000
unkown
page read and write
 clean
17D92900000
unkown
page read and write
 clean
17D8D4A1000
unkown
page read and write
 clean
7FF5EE9A4000
unkown
page readonly
 clean
1C043D50000
unkown
page readonly
 clean
7FF566A74000
unkown
page readonly
 clean
1D6D0440000
unkown
page read and write
 clean
941B94E000
unkown
page read and write
 clean
1D6D0400000
unkown
page read and write
 clean
17D8E2E0000
unkown
page read and write
 clean
D809BFE000
unkown
page read and write
 clean
7FF5EA359000
unkown
page readonly
 clean
7FF566AD9000
unkown
page readonly
 clean
7FF58ABC4000
unkown
page readonly
 clean
7FF51FEA5000
unkown
page readonly
 clean
17D92944000
unkown
page read and write
 clean
17D8D3A0000
unkown
page read and write
 clean
7FF566AC2000
unkown
page readonly
 clean
17D92930000
unkown
page read and write
 clean
D809A7D000
unkown
page read and write
 clean
1C043CE0000
heap private
page read and write
 clean
17D92C70000
unkown
page read and write
 clean
7FF58ABA2000
unkown
page readonly
 clean
7FF5EA2EC000
unkown
page readonly
 clean
1C043E3D000
unkown
page read and write
 clean
7FF5625B7000
unkown
page readonly
 clean
1E79DA69000
unkown
page read and write
 clean
7FF5F5EB1000
unkown
page readonly
 clean
4F2DA7B000
unkown
page read and write
 clean
7FF52C57C000
unkown
page readonly
 clean
7FF5200FC000
unkown
page readonly
 clean
7FF5C85E6000
unkown
page readonly
 clean
7FF5EA3C6000
unkown
page readonly
 clean
7FF5EE2F7000
unkown
page readonly
 clean
7FF566A5F000
unkown
page readonly
 clean
1D6D0800000
unkown
page readonly
 clean
7FF5EE9EC000
unkown
page readonly
 clean
7FF566743000
unkown
page readonly
 clean
1CCB2673000
unkown
page read and write
 clean
7FF52C435000
unkown
page readonly
 clean
17D8D600000
unkown
page readonly
 clean
7FF5F5EA1000
unkown
page readonly
 clean
22514E23000
unkown
page read and write
 clean
17D92C60000
unkown
page readonly
 clean
1CCB2673000
unkown
page read and write
 clean
7FF566819000
unkown
page readonly
 clean
2C15CAB000
unkown
page read and write
 clean
7FF5DFAD7000
unkown
page readonly
 clean
46CE47C000
unkown
page read and write
 clean
1BD6957F000
heap private
page read and write
 clean
1C043E6A000
unkown
page read and write
 clean
1C044460000
unkown
page readonly
 clean
7FF5C8506000
unkown
page readonly
 clean
17D8E3C0000
unkown
page readonly
 clean
17D92901000
unkown
page read and write
 clean
7FF5EE966000
unkown
page readonly
 clean
7FF520000000
unkown
page readonly
 clean
2A716F13000
unkown
page read and write
 clean
7FF5DFAB1000
unkown
page readonly
 clean
7FF566A89000
unkown
page readonly
 clean
7FF5EA3E3000
unkown
page readonly
 clean
22515602000
unkown
page read and write
 clean
7FF52C598000
unkown
page readonly
 clean
7FF520082000
unkown
page readonly
 clean
7FF566A35000
unkown
page readonly
 clean
17D92908000
unkown
page read and write
 clean
7FF5F5DB0000
unkown
page readonly
 clean
2A716E13000
unkown
page read and write
 clean
7FF5DFB83000
unkown
page readonly
 clean
7FF566A65000
unkown
page readonly
 clean
46CE4FE000
unkown
page read and write
 clean
1B293A6A000
unkown
page read and write
 clean
7FF5669CC000
unkown
page readonly
 clean
941B9CD000
unkown
page read and write
 clean
2C160F9000
unkown
page read and write
 clean
7FF58AAE1000
unkown
page readonly
 clean
7FF562952000
unkown
page readonly
 clean
7FF5C855C000
unkown
page readonly
 clean
17D8E400000
unkown
page readonly
 clean
17D8D495000
unkown
page read and write
 clean
1C043D70000
unkown
page read and write
 clean
1CCB2600000
unkown
page read and write
 clean
7FF52C415000
unkown
page readonly
 clean
2C1617F000
unkown
page read and write
 clean
1C043F02000
unkown
page read and write
 clean
46CE7FF000
unkown
page read and write
 clean
1CCB2702000
unkown
page read and write
 clean
CB00BFF000
unkown
page read and write
 clean
17D92A00000
unkown
page read and write
 clean
7FF5C85F3000
unkown
page readonly
 clean
2BAFC013000
unkown
page read and write
 clean
7FF566B53000
unkown
page readonly
 clean
1E79DA8A000
unkown
page read and write
 clean
7FF5C8514000
unkown
page readonly
 clean
1B293A6A000
unkown
page read and write
 clean
1E79DCD0000
unkown
page readonly
 clean
2120F550000
unkown
page readonly
 clean
D8098FD000
unkown
page read and write
 clean
7FF51FFE4000
unkown
page readonly
 clean
BE029FD000
unkown
page read and write
 clean
7FF52C5F2000
unkown
page readonly
 clean
17D8DD18000
unkown
page read and write
 clean
2C161FC000
unkown
page read and write
 clean
7FF5EE9F2000
unkown
page readonly
 clean
22514E02000
unkown
page read and write
 clean
1CCB2613000
unkown
page read and write
 clean
17D927F0000
unkown
page read and write
 clean
7FF58AB9C000
unkown
page readonly
 clean
22514DA0000
heap default
page read and write
 clean
1919E7D000
unkown
page read and write
 clean
7DFD025C6000
unkown
page readonly
 clean
17D92ABC000
unkown
page read and write
 clean
7FF51FFA3000
unkown
page readonly
 clean
22514E29000
unkown
page read and write
 clean
1D6D0433000
unkown
page read and write
 clean
1B293A02000
unkown
page read and write
 clean
7FF58A965000
unkown
page readonly
 clean
17D8E100000
unkown
page read and write
 clean
1E79D9C0000
unkown
page read and write
 clean
7FF566AD6000
unkown
page readonly
 clean
7FF5DFAA4000
unkown
page readonly
 clean
7FF566A65000
unkown
page readonly
 clean
7FF5628F8000
unkown
page readonly
 clean
1D6D02C0000
heap private
page read and write
 clean
7FF566A91000
unkown
page readonly
 clean
7FF5DFA98000
unkown
page readonly
 clean
2120F5A0000
unkown
page readonly
 clean
1B293A54000
unkown
page read and write
 clean
7FF5C81E3000
unkown
page readonly
 clean
BE02575000
unkown
page read and write
 clean
17D8D43F000
unkown
page read and write
 clean
1C043D40000
heap default
page read and write
 clean
7FF5F5F56000
unkown
page readonly
 clean
7FF5DFA33000
unkown
page readonly
 clean
4F2D97D000
unkown
page read and write
 clean
1E79DA48000
unkown
page read and write
 clean
505CE7B000
unkown
page read and write
 clean
1CCB23B0000
heap private
page read and write
 clean
7FF566AC9000
unkown
page readonly
 clean
17D929F8000
unkown
page read and write
 clean
1CCB2668000
unkown
page read and write
 clean
17D92921000
unkown
page read and write
 clean
7FF5F5EEC000
unkown
page readonly
 clean
46CE77C000
unkown
page read and write
 clean
7FF5EE944000
unkown
page readonly
 clean
1D6D044D000
unkown
page read and write
 clean
17D929F9000
unkown
page write copy
 clean
CB00AFB000
unkown
page read and write
 clean
22514E40000
unkown
page read and write
 clean
17D8DE01000
unkown
page read and write
 clean
2BAFBF10000
heap default
page read and write
 clean
7FF58AB54000
unkown
page readonly
 clean
7FF5DFA54000
unkown
page readonly
 clean
7FF566A2C000
unkown
page readonly
 clean
1D6D0462000
unkown
page read and write
 clean
17D8DBF3000
unkown
page read and write
 clean
1CCB2669000
unkown
page read and write
 clean
7FF5C849D000
unkown
page readonly
 clean
17D92A94000
unkown
page read and write
 clean
7FF5626AF000
unkown
page readonly
 clean
7FF5F5E7B000
unkown
page readonly
 clean
7FF562594000
unkown
page readonly
 clean
7FF5EE998000
unkown
page readonly
 clean
17D92AC6000
unkown
page read and write
 clean
7FF5EA14A000
unkown
page readonly
 clean
1D6D0460000
unkown
page read and write
 clean
BE028FF000
unkown
page read and write
 clean
417C47E000
unkown
page read and write
 clean
7FF5EA280000
unkown
page readonly
 clean
CB007FE000
unkown
page read and write
 clean
17D92D80000
unkown
page readonly
 clean
7FF566A5F000
unkown
page readonly
 clean
1D6D047B000
unkown
page read and write
 clean
7FF566A81000
unkown
page readonly
 clean
1919779000
unkown
page read and write
 clean
2120F702000
unkown
page read and write
 clean
1D6D0447000
unkown
page read and write
 clean
17D92CC0000
unkown
page readonly
 clean
7FF5EA366000
unkown
page readonly
 clean
7FF5DFAB9000
unkown
page readonly
 clean
7FF52C283000
unkown
page readonly
 clean
17D8D458000
unkown
page read and write
 clean
17D92A61000
unkown
page read and write
 clean
7FF5C85D6000
unkown
page readonly
 clean
7FF5C847E000
unkown
page readonly
 clean
7FF5DF761000
unkown
page readonly
 clean
7FF5627F5000
unkown
page readonly
 clean
7FF5F5E6C000
unkown
page readonly
 clean
2BAFC660000
unkown
page readonly
 clean
1B293A3F000
unkown
page read and write
 clean
7FF56295C000
unkown
page readonly
 clean
2A716E00000
unkown
page read and write
 clean
17D8DC15000
unkown
page read and write
 clean
7FF520030000
unkown
page readonly
 clean
7FF5F5CD2000
unkown
page readonly
 clean
7FF566900000
unkown
page readonly
 clean
1E79DA57000
unkown
page read and write
 clean
1CCB2602000
unkown
page read and write
 clean
1C043E00000
unkown
page read and write
 clean
7FF5DF390000
unkown
page readonly
 clean
7FF5C8569000
unkown
page readonly
 clean
1D6D0457000
unkown
page read and write
 clean
1D6D0444000
unkown
page read and write
 clean
7FF51FCDD000
unkown
page readonly
 clean
1E79F4F0000
unkown
page read and write
 clean
7FF566AD6000
unkown
page readonly
 clean
1D6D0C02000
unkown
page read and write
 clean
17D929E0000
unkown
page read and write
 clean
CB009FB000
unkown
page read and write
 clean
7FF566B3C000
unkown
page readonly
 clean
7FF52C5EC000
unkown
page readonly
 clean
1D6D0445000
unkown
page read and write
 clean
7FF5EA3E3000
unkown
page readonly
 clean
1B293A6A000
unkown
page read and write
 clean
17D8DD13000
unkown
page read and write
 clean
1D6D0A70000
unkown
page readonly
 clean
1919577000
unkown
page read and write
 clean
7FF566B45000
unkown
page readonly
 clean
4F2DAFD000
unkown
page read and write
 clean
1919BFF000
unkown
page read and write
 clean
7FF52C58B000
unkown
page readonly
 clean
417C17F000
unkown
page read and write
 clean
505CEFE000
unkown
page read and write
 clean
7FF58AB3F000
unkown
page readonly
 clean
BB60CFE000
unkown
page read and write
 clean
7FF58AC33000
unkown
page readonly
 clean
4F2DBFC000
unkown
page read and write
 clean
7FF520025000
unkown
page readonly
 clean
21210340000
unkown
page readonly
 clean
17D8DD59000
unkown
page read and write
 clean
2120FF00000
unkown
page read and write
 clean
7FF5EE98F000
unkown
page readonly
 clean
7FF52007B000
unkown
page readonly
 clean
4F2D8FE000
unkown
page read and write
 clean
7FF52C595000
unkown
page readonly
 clean
7FF5627FA000
unkown
page readonly
 clean
D8096FE000
unkown
page read and write
 clean
7FF566A74000
unkown
page readonly
 clean
1D6D047F000
unkown
page read and write
 clean
1E79F800000
unkown
page readonly
 clean
1D6D0429000
unkown
page read and write
 clean
7FF58AB50000
unkown
page readonly
 clean
1CCB266D000
unkown
page read and write
 clean
7FF5DFA8B000
unkown
page readonly
 clean
7FF5E9FE3000
unkown
page readonly
 clean
17D92A78000
unkown
page read and write
 clean
1E79DC00000
unkown
page readonly
 clean
7FF5F5D19000
unkown
page readonly
 clean
7FF52C58F000
unkown
page readonly
 clean
1D6D046E000
unkown
page read and write
 clean
7FF58AB61000
unkown
page readonly
 clean
1E79DA40000
unkown
page read and write
 clean
7FF5663CC000
unkown
page readonly
 clean
7FF5EE995000
unkown
page readonly
 clean
1919AFE000
unkown
page read and write
 clean
7FF5666E6000
unkown
page readonly
 clean
7FF566A89000
unkown
page readonly
 clean
D809B7E000
unkown
page read and write
 clean
2A716F00000
unkown
page read and write
 clean
1CCB2410000
heap default
page read and write
 clean
7FF5666C4000
unkown
page readonly
 clean
7FF51FF8C000
unkown
page readonly
 clean
CB0067E000
unkown
page read and write
 clean
1E79F510000
unkown
page readonly
 clean
7FF58AB71000
unkown
page readonly
 clean
1919CFF000
unkown
page read and write
 clean
7FF5F5E7F000
unkown
page readonly
 clean
7FF52C675000
unkown
page readonly
 clean
7FF52001C000
unkown
page readonly
 clean
417BCFE000
unkown
page read and write
 clean
7FF58AB69000
unkown
page readonly
 clean
7FF5EA2C5000
unkown
page readonly
 clean
2BAFBEB0000
heap private
page read and write
 clean
7FF5EE9F9000
unkown
page readonly
 clean
1E79DB00000
unkown
page read and write
 clean
7FF58AB85000
unkown
page readonly
 clean
CB008FB000
unkown
page read and write
 clean
7FF566298000
unkown
page readonly
 clean
7FF5F5EE2000
unkown
page readonly
 clean
7FF5C8493000
unkown
page readonly
 clean
17D8D990000
unkown
page readonly
 clean
7FF5E9F4B000
unkown
page readonly
 clean
17D8D491000
unkown
page read and write
 clean
1B293940000
unkown
page write copy
 clean
1919C7F000
unkown
page read and write
 clean
BE027F7000
unkown
page read and write
 clean
7FF520113000
unkown
page readonly
 clean
1D6D043A000
unkown
page read and write
 clean
7FF5DFB76000
unkown
page readonly
 clean
1CCB2673000
unkown
page read and write
 clean
7FF5DFA8F000
unkown
page readonly
 clean
1C043E68000
unkown
page read and write
 clean
1CCB40A0000
unkown
page readonly
 clean
7FF566A91000
unkown
page readonly
 clean
1E79F4F0000
unkown
page read and write
 clean
2120F685000
unkown
page read and write
 clean
7FF5666B9000
unkown
page readonly
 clean
191A07C000
unkown
page read and write
 clean
1E79DA58000
unkown
page read and write
 clean
7FF566A30000
unkown
page readonly
 clean
1CCB266D000
unkown
page read and write
 clean
7FF52C606000
unkown
page readonly
 clean
1C0440D0000
unkown
page readonly
 clean
17D92A55000
unkown
page read and write
 clean
7FF52C683000
unkown
page readonly
 clean
7FF5DF8B5000
unkown
page readonly
 clean
7FF58AB3B000
unkown
page readonly
 clean
7FF58AC1C000
unkown
page readonly
 clean
7FF5F5E94000
unkown
page readonly
 clean
7FF566905000
unkown
page readonly
 clean
22514DC0000
unkown
page readonly
 clean
7FF562900000
unkown
page readonly
 clean
7FF566ACC000
unkown
page readonly
 clean
BB60AFE000
unkown
page read and write
 clean
7FF5F5DEC000
unkown
page readonly
 clean
7FF5F5EF6000
unkown
page readonly
 clean
7FF5EA361000
unkown
page readonly
 clean
7FF5DFB06000
unkown
page readonly
 clean
2120F640000
unkown
page read and write
 clean
46CE6FE000
unkown
page read and write
 clean
17D92900000
unkown
page read and write
 clean
7FF562549000
unkown
page readonly
 clean
22514DB0000
unkown
page readonly
 clean
17D929D0000
unkown
page read and write
 clean
7FF5EEA01000
unkown
page readonly
 clean
7FF5667D8000
unkown
page readonly
 clean
17D8D48F000
unkown
page read and write
 clean
1D6D0467000
unkown
page read and write
 clean
7FF566885000
unkown
page readonly
 clean
7FF520089000
unkown
page readonly
 clean
BB608FE000
unkown
page read and write
 clean
2BAFC590000
unkown
page readonly
 clean
1CCB3FA0000
unkown
page read and write
 clean
2BAFC802000
unkown
page read and write
 clean
1B293A6A000
unkown
page read and write
 clean
1D6D0461000
unkown
page read and write
 clean
17D92A2E000
unkown
page read and write
 clean
191987F000
unkown
page read and write
 clean
1CCB266B000
unkown
page read and write
 clean
7FF566749000
unkown
page readonly
 clean
7FF5EA35C000
unkown
page readonly
 clean
1BD67AB0000
unkown
page readonly
 clean
7FF58A8FF000
unkown
page readonly
 clean
4F2E0FE000
unkown
page read and write
 clean
505D17F000
unkown
page read and write
 clean
CB003FE000
unkown
page read and write
 clean
7FF56683D000
unkown
page readonly
 clean
7FF5EA0A9000
unkown
page readonly
 clean
7FF5EE9D5000
unkown
page readonly
 clean
7FF566A70000
unkown
page readonly
 clean
7FF52C349000
unkown
page readonly
 clean
17D92A21000
unkown
page read and write
 clean
7FF56234C000
unkown
page readonly
 clean
1D6D0446000
unkown
page read and write
 clean
BE0216B000
unkown
page read and write
 clean
2A716D80000
heap private
page read and write
 clean
7FF520105000
unkown
page readonly
 clean
There are 906 hidden memdumps, click here to show them.