IOCReport

loading gif

Files

File Path
Type
Category
Malicious
ATT78678_Covid-19.HTM
HTML document, ASCII text, with very long lines, with CRLF line terminators
initial sample
 malicious
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\1682bf6e-22bb-45f0-b1e0-7c5133d8a3ac.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\1af30b03-eea2-425c-9a24-bf0ca63beab4.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\5e60ba18-2bca-43d5-95cd-302b4a504ecc.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\614b27af-3f0d-4ffc-8c70-c08578d58db2.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\6458ed06-0864-46fe-b4b2-9113cc626450.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\7dcf0a92-eaf9-4e7b-bce9-12ab938c1656.tmp
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\87c7c976-a53f-4066-b38f-1cdd5f0926b7.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\987f7cfe-6fc7-4f57-b41e-844a08d777a5.tmp
SysEx File -
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\9a126eb9-8229-4278-9e9d-b8151f392148.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\17801827-7bb7-45cb-a888-80ee46e09685.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1b6ecaab-9d06-4840-a4ea-c802451564f7.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1d680305-4423-4d7c-a737-80de0dbf84dd.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\27b227d8-2c49-4556-9e0d-cf30e8190870.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2ed1a8af-45cf-40ff-b40b-55589fe20bd2.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\310cf686-5c24-40db-96b6-e68b760d616e.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\31f18a33-d4b6-4bcb-8d2f-b1fd4d016382.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\4516472a-6cf2-4385-bcdd-2f3769e55cb4.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\49393195-5327-4d47-8f8f-bc5aec00242f.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\79b30cee-e407-4c1d-aa4b-4044b217dd40.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\888f3885-e5d5-44f5-91b2-9ce1ae8fa91d.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8e140c48-ea1d-49ec-9be9-aee6f1dfe88c.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.oldG (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old. (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\008dc773b56dfd0d_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0a2197cadd8e4b97_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\111af5ccb62b6b70_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1295a2006ceccd71_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1a54f2caba9a14a8_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1b48bac0974da259_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\22aff53d8c3d2958_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\25a3ab3861ce4c12_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\25fee9239af0f367_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2eae8fc2f849aab2_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\337f32f67e7ec069_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\33e9019b23fa72ca_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\344b2c7516b11a54_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\352888151a61213b_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\357c858e4180f954_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\41ed385887268f9f_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\424c8833d7029573_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4288a3017ab4b890_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\46ce81332f2c4037_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\50002f7bb64ea525_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\50dd5d6cb6fcf72d_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5313946ae3e46240_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\53aed352ab9346a8_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\543801d69036d7ab_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5d5fa87c4fac1422_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5e35d025c7ef2253_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\668d8173b08fa931_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\66e1bb11f2b7360e_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\675aed2ac303a57b_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\68b63bab14f17a64_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6a541bbf12112915_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6b2fac6ae22c012f_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6e7eced35ab2febc_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6ff1346bdf56e4c3_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7924e45aad8a467b_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7b16bfc03bbfb5ae_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7bb65f416e2d5794_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7bcfb593ff988bab_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7d589616bef44ee0_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8c0707e5cd72b147_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\90a73e17aa20d02a_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\93c3c10c9093cc3b_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\96c3a7ce86fd7415_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\97d21510985a8eea_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9e15e7e73598d066_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a0980d45e3abc14d_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a12f04773ac92630_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a169b384dfc96f9b_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\aba92518196da695_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\add4778db30f37f1_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b053779cd1efe7c2_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b4751ef62e2ff60a_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b8d2c6a2e4b0bb74_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bbbf882f508443af_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bcf2da12a90df2c4_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bd312f2b8b5367de_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c845b0dbd15696be_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c8541f85084e2883_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\cb588c6db8bcc19f_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ce777d467f405060_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d8af8100610b5218_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\dd8ea5d88b54d623_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\de0e6a64a6f72ad0_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e1b6990de6b7633f_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e220f31ffe28e1b8_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e822e54fc3a4a146_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ef944c513728ab40_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f323b45a2548fe5a_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f71de80139fccadb_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f74f2b6c9f121f0e_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
data
modified
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_1\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old.. (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.oldil (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session. (copy)
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabs (copy)
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.oldvt (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent StateTM (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.oldtt (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferencesi (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences. (copy)
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences.. (copy)
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferencesn. (copy)
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old.. (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent Statemp (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old0 (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\de99fabe-9935-44b3-85b6-cab114895a5f.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent State (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\bd293af4-b3ac-4dec-9286-8e73465352d4.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.oldTM (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\TransportSecurityTM (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_nmmhkkegccagdldgiimedpiccmgmieda\Chrome Web Store Payments.ico (copy)
MS Windows icon resource - 13 icons, 8x8, 32 bits/pixel, 10x10, 32 bits/pixel
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_nmmhkkegccagdldgiimedpiccmgmieda\Chrome Web Store Payments.ico.md5
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_nmmhkkegccagdldgiimedpiccmgmieda\d322256a-a601-422f-96d4-d55f8081f42b.tmp
MS Windows icon resource - 13 icons, 8x8, 32 bits/pixel, 10x10, 32 bits/pixel
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a9c31f51-08c0-4f78-b0b4-40fc91d563a4.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c0cc7560-1c6b-4928-a993-6c9767060817.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT7c (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
MPEG-4 LOAS
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\dd6e8949-1c01-403a-9cbd-3581c65def75.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\e23e83ca-ae76-464d-9599-0804eba09c4d.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\e8802208-7020-48fe-ae5b-aa1dd0f7ef8a.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old (copy)
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StateH+ (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local Statec. (copy)
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache. (copy)
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_1
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\a9a51485-0b47-4f4b-b1e7-08b773a220bb.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\b30ac87e-48b5-43da-92d6-5374d0ff2817.tmp
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\be9aad1f-10fe-4bc7-9fb2-77e6ead96478.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\d9d3c919-6e5a-4174-a055-b3cfb30230b4.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\e5b1c7cb-142b-4946-88a0-c6208be40c74.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\f2eb0aef-c8e7-4678-8563-7827ae517f5d.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\00c0dc32-6111-4f36-8e15-c48f323e17cb.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Temp\335e8a9a-6485-4b97-9805-3f6f8a24c45d.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\4020_1223747828\manifest.fingerprint
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\4020_1360218820\manifest.fingerprint
ASCII text, with no line terminators
modified
 clean
C:\Users\user\AppData\Local\Temp\4020_1568004997\manifest.fingerprint
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\4020_1651865197\manifest.fingerprint
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\4020_2011995859\manifest.fingerprint
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\4020_2077192696\manifest.fingerprint
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\4020_292042862\manifest.fingerprint
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\4020_695248147\manifest.fingerprint
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\4020_989332098\manifest.fingerprint
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\5d164c5b-a863-430c-a833-430f8965dca8.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\6ecb5189-a350-47fe-ae4d-aac942751e85.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Temp\bed74d5a-8ebc-431f-9a10-2e9bfb3820aa.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\c378b563-37a1-4acc-af9b-25d73904d73f.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\en\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\en_GB\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\es_419\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\fil\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\id\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\nl\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\pt_BR\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\pt_PT\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\zh_CN\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\images\icon_128.png
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\images\icon_16.png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\CRX_INSTALL\manifest.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1152082067\bed74d5a-8ebc-431f-9a10-2e9bfb3820aa.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\5d164c5b-a863-430c-a833-430f8965dca8.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\am\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\ar\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\bn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\en\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\fa\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\fil\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\gu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\id\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\kn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\ml\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\mr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\ms\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\nl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\pt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\sw\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\ta\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\te\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\zh\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1555045164\CRX_INSTALL\manifest.json
ASCII text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\335e8a9a-6485-4b97-9805-3f6f8a24c45d.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\en\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\en_GB\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\es_419\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\fil\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\id\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\nl\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\pt_BR\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\pt_PT\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\zh_CN\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\images\icon_128.png
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\images\icon_16.png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir4020_1859399215\CRX_INSTALL\manifest.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Windows\Fonts\arial.ttf
data
dropped
 clean
There are 350 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'C:\Users\user\Desktop\ATT78678_Covid-19.HTM'
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1620,10020745847991899420,12407152926095554639,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1708 /prefetch:8
clean
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1620,10020745847991899420,12407152926095554639,131072 --lang=en-US --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=2040 /prefetch:8
clean

URLs

Name
IP
Malicious
https://medisolhealthcare.com/
malicious
https://medisolhealthcare.com/tamu.edu/index.html
malicious
https://medisolhealthcare.com/tamu.edu/index.html
204.93.193.76
 malicious
https://medisolhealthcare.com/assets/tether/tether.min.css
204.93.193.76
 clean
https://tamu.edu/1
unknown
 clean
https://unpkg.com/tippy.js
unknown
 clean
https://tamu.edu/$
unknown
 clean
https://tamu.edu/)
unknown
 clean
https://www.tamu.edu/assets/js/scripts-max.v4.js
unknown
 clean
https://it.tamu.edu/leadership/Leadership
unknown
 clean
https://csp.withgoogle.com/csp/report-to/apps-themes
unknown
 clean
https://gateway.tamu.edu/password-reset/m
unknown
 clean
https://csp.withgoogle.com/csp/report-to/maps-api-js
unknown
 clean
https://medisolhealthcare.com/assets/images/banner-2-2000x750.jpg
204.93.193.76
 clean
https://it.tamu.edu/assets/js/TAMU.js
unknown
 clean
https://gateway.tamu.edu/
unknown
 clean
https://medisolhealthcare.com/https://cas.tamu.edu/cas/media/js/foundation.js
204.93.193.76
 clean
https://medisolhealthcare.com/&
unknown
 clean
https://medisolhealthcare.com/
204.93.193.76
 clean
https://tamu.edu/C
unknown
 clean
https://medisolhealthcare.com%
unknown
 clean
https://medisolhealthcare.com/tamu.edu/index.php
unknown
 clean
https://tamu.edu/ND
unknown
 clean
https://it.tamu.edu/
unknown
 clean
https://it.tamu.edu/stack/js/modernizr.js?18.171.32322
unknown
 clean
https://tamu.edu/Mi
unknown
 clean
https://vars.hotjar.com/box-dfc01efbdc94bb0936d9a35a502b0b64.html
unknown
 clean
https://services.tamu.edu/directory-search/
unknown
 clean
https://www.tamu.edu/
unknown
 clean
https://medisolhealthcare.com/K4u
unknown
 clean
https://gateway.tamu.edu/services/media/js/activation.js
unknown
 clean
https://medisolhealthcare.com/assets/dropdown/js/script.min.js
204.93.193.76
 clean
https://gateway.tamu.edu/favicon.icoJ
unknown
 clean
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
172.217.19.110
 clean
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.16.18.94
 clean
https://payments.google.com/payments/v4/js/integrator.js
unknown
 clean
https://www.tamu.edu/Texas
unknown
 clean
https://gateway.tamu.edu/password-reset/
unknown
 clean
https://www.tamu.edu/search/index.html
unknown
 clean
https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3945.9165706755552!2d76.92436481460193!3d8.507481599281519!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x3b05bbfc5555555b%3A0x951cc4a2b9385586!2sMedisol+Healthcare!5e0!3m2!1sen!2sin!4v1543508867808
clean
https://medisolhealthcare.com/assets/images/banner-3-2000x750.jpg
204.93.193.76
 clean
https://it.tamu.edu/js/search.js?20.137.56303
unknown
 clean
https://medisolhealthcare.com/assets/images/banner-1-2000x750.jpg
204.93.193.76
 clean
https://cas.tamu.edu/cas/media/fonts/OpenSans-Bold-webfont.ttf
128.194.34.13
 clean
https://gateway.tamu.edu/activation/NetID
unknown
 clean
https://gateway.tamu.edu/services/media/js/foundation.reveal.js
unknown
 clean
https://tamu.edu/Nb
unknown
 clean
https://tamu.edu/oc
unknown
 clean
https://gateway.tamu.edu/services/media/js/cleave.min.js
unknown
 clean
https://www.tamu.edu
unknown
 clean
https://medisolhealthcare.com/00/
204.93.193.76
 clean
https://it.tamu.edu/js/jquery-sliding-menu.js?20.259.64502
unknown
 clean
https://medisolhealthcare.com/assets/images/medisol-logo-n-90x100.jpg
204.93.193.76
 clean
https://it.tamu.edu/js/site.js?20.259.64502
unknown
 clean
https://medisolhealthcare.com/Healthcare
unknown
 clean
https://medisolhealthcare.comh
unknown
 clean
https://medisolhealthcare.com/j-
unknown
 clean
https://gateway.tamu.edu/services/media/js/modernizer.jsa
unknown
 clean
https://unpkg.com/micromodal
unknown
 clean
http://www.tamu.edu/Texas
unknown
 clean
https://medisolhealthcare.com/assets/animate.css/animate.min.css
204.93.193.76
 clean
https://feedback.googleusercontent.com
unknown
 clean
https://www.google.co.uk
unknown
 clean
https://medisolhealthcare.com
unknown
 clean
https://gateway.tamu.edu/services/media/js/foundation.jsa
unknown
 clean
https://it.tamu.edu/leadership/
clean
https://gateway.tamu.edu/favicon.ico
unknown
 clean
https://medisolhealthcare.com/assets/socicon/css/styles.css
204.93.193.76
 clean
https://medisolhealthcare.com/tamu.edu/index.phpP
unknown
 clean
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
104.16.18.94
 clean
https://gateway.tamu.edu/services/media/js/hideShowPassword.min.js
unknown
 clean
https://script.hotjar.com/modules.5fe2f4f38cf4833026a9.js
unknown
 clean
https://medisolhealthcare.com/assets/images/banner-4-2000x750.jpg
204.93.193.76
 clean
https://gateway.tamu.edu/services/media/js/foundation.reveal.jsaD
unknown
 clean
https://medisolhealthcare.com/assets/tether/tether.min.js
204.93.193.76
 clean
https://support.google.com/maps/?p=thirdpartymaps
unknown
 clean
https://it.tamu.edu/assets/js/TAMU.js?20.137.47251
unknown
 clean
https://medisolhealthcare.com/assets/bootstrap/css/bootstrap.min.css
204.93.193.76
 clean
http://www.google.cn
unknown
 clean
https://cas.tamu.edu/cas/media/fonts/oswald-light-webfont.woff
128.194.34.13
 clean
https://it.tamu.edu/search.php
unknown
 clean
https://medisolhealthcare.com/assets/smooth-scroll/smooth-scroll.js
204.93.193.76
 clean
https://cas.tamu.edu/cas/media/js/cas.js
128.194.34.13
 clean
https://www.google.comh
unknown
 clean
https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3945.9165706755552!2d76.92436481460193!3d8.507481599281519!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x3b05bbfc5555555b%3A0x951cc4a2b9385586!2sMedisol+Healthcare!5e0!3m2!1sen!2sin!4v1543508867808
142.250.201.196
 clean
https://apis.google.com
unknown
 clean
https://medisolhealthcare.com/PHealthcare
unknown
 clean
https://gateway.tamu.edu/activation/
clean
https://gateway.tamu.edu/services/media/js/modernizer.js
unknown
 clean
https://csp.withgoogle.com/csp/report-to/geo-tactile
unknown
 clean
https://gateway.tamu.edu/services/media/js/jquery.jsaD
unknown
 clean
https://www.google.com/maps/embed?pb=
unknown
 clean
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
142.250.180.237
 clean
https://developers.google.com/maps/documentation/javascript/error-messages#
unknown
 clean
https://it.tamu.edu/stack/js/Stack.js?18.171.32322
unknown
 clean
https://app.interakt.ai/kiwi-sdk/kiwi-sdk-17-prod-min.js?v=1632186724712
unknown
 clean
https://it.tamu.edu/favicon.ico8
unknown
 clean
https://myaccount.google.com/
unknown
 clean
https://support.google.com/chromecast/answer/2998456
unknown
 clean
https://clients2.googleusercontent.com
unknown
 clean
There are 90 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
gstaticadssl.l.google.com
142.250.185.99
 clean
web.sin21prdstr03a.store.core.windows.net
20.150.28.97
 clean
script.hotjar.com
18.66.112.111
 clean
cdnjs.cloudflare.com
104.16.18.94
 clean
www.google.com
142.250.201.196
 clean
static-cdn.hotjar.com
18.66.112.53
 clean
gateway.syse.tamu.edu
128.194.34.40
 clean
siteimproveanalytics.com
104.21.89.178
 clean
accounts.google.com
142.250.180.237
 clean
www-google-analytics.l.google.com
142.250.180.206
 clean
stats.l.doubleclick.net
142.251.5.154
 clean
www-googletagmanager.l.google.com
142.250.180.200
 clean
todayprod.wpengine.com
104.197.146.231
 clean
it.tamu.edu
128.194.43.60
 clean
vars.hotjar.com
18.66.139.84
 clean
cas.it.tamu.edu
128.194.34.13
 clean
vimeo.map.fastly.net
151.101.0.217
 clean
www3.l.google.com
172.217.20.14
 clean
medisolhealthcare.com
204.93.193.76
 clean
www-lb.tamu.edu
165.91.22.70
 clean
www.google.co.uk
142.250.180.195
 clean
clients.l.google.com
172.217.19.110
 clean
unpkg.com
104.16.125.175
 clean
googlehosted.l.googleusercontent.com
172.217.19.97
 clean
www.it.tamu.edu
128.194.43.60
 clean
7omcu3a78zp40klds2w28klr-wpengine.netdna-ssl.com
108.161.188.228
 clean
today.tamu.edu
unknown
 clean
gateway.tamu.edu
unknown
 clean
www.tamu.edu
unknown
 clean
stats.g.doubleclick.net
unknown
 clean
clients2.googleusercontent.com
unknown
 clean
cio.tamu.edu
unknown
 clean
clients2.google.com
unknown
 clean
static.hotjar.com
unknown
 clean
app.interakt.ai
unknown
 clean
cas.tamu.edu
unknown
 clean
stkiwiwebdev.z23.web.core.windows.net
unknown
 clean
pro.fontawesome.com
unknown
 clean
player.vimeo.com
unknown
 clean
analytics.google.com
unknown
 clean
api.interakt.ai
unknown
 clean
There are 31 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
142.250.185.99
gstaticadssl.l.google.com
United States
clean
192.168.2.1
unknown
unknown
clean
128.194.43.60
it.tamu.edu
United States
clean
151.101.0.217
vimeo.map.fastly.net
United States
clean
108.161.188.228
7omcu3a78zp40klds2w28klr-wpengine.netdna-ssl.com
United States
clean
18.66.112.53
static-cdn.hotjar.com
United States
clean
128.194.34.13
cas.it.tamu.edu
United States
clean
142.250.201.196
www.google.com
United States
clean
104.21.89.178
siteimproveanalytics.com
United States
clean
18.66.139.84
vars.hotjar.com
United States
clean
142.250.180.200
www-googletagmanager.l.google.com
United States
clean
104.16.18.94
cdnjs.cloudflare.com
United States
clean
18.66.112.111
script.hotjar.com
United States
clean
204.93.193.76
medisolhealthcare.com
United States
clean
142.250.180.237
accounts.google.com
United States
clean
165.91.22.70
www-lb.tamu.edu
United States
clean
172.217.19.110
clients.l.google.com
United States
clean
142.251.5.154
stats.l.doubleclick.net
United States
clean
104.16.125.175
unpkg.com
United States
clean
239.255.255.250
unknown
Reserved
clean
20.150.28.97
web.sin21prdstr03a.store.core.windows.net
United States
clean
128.194.34.40
gateway.syse.tamu.edu
United States
clean
172.217.19.97
googlehosted.l.googleusercontent.com
United States
clean
172.217.20.14
www3.l.google.com
United States
clean
142.250.180.195
www.google.co.uk
United States
clean
127.0.0.1
unknown
unknown
clean
There are 16 hidden IPs, click here to show them.

Registry

Path
Value
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
S-1-5-21-3853321935-2125563209-4053062332-1002
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
ahfgeienlihckogmohjhadlkjgocpleb
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gdaefkejpgkiemlaofpalmlakkmbjdnl
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gfdkimpbcpahaombhbimeihdjnejgicl
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
kmendfapggjehodndflmmgagdbamhnfd
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
mfehgcgbbipciphmccgaenjidiccnmng
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
mhjfbmdgcfjbbpaeojofohoefgiehjai
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
neajdppkdcdipfabeoofebfddakdcjhd
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nkeimhogjdpnpccoofpliimaahmaaome
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nmmhkkegccagdldgiimedpiccmgmieda
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
pkedcjkdefgpdelpbcmbmeomcjbeemfm
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
prefs.preference_reset_time
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gfdkimpbcpahaombhbimeihdjnejgicl
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nmmhkkegccagdldgiimedpiccmgmieda
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nmmhkkegccagdldgiimedpiccmgmieda
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nmmhkkegccagdldgiimedpiccmgmieda
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
state
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
StatusCodes
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
StatusCodes
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
state
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.reporting
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
module_blacklist_cache_md5_digest
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
media.storage_id_salt
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.last_account_id
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.account_id
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.prompt_seed
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_homepage
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
default_search_provider_data.template_url_data
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
safebrowsing.incidents_sent
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
pinned_tabs
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
search_provider_overrides
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_default_search
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
prefs.preference_reset_time
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.last_username
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
session.startup_urls
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
session.restore_on_startup
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.prompt_version
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_startup_urls
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.prompt_wave
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
homepage
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
homepage_is_newtabpage
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
browser.show_home_button
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
user_experience_metrics.stability.exited_cleanly
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
lastrun
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
GlobalAssocChangedCounter
 clean
There are 35 hidden registries, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
20E2B662000
unkown
page read and write
 clean
2BD29F08000
unkown
page read and write
 clean
7DF5B6900000
unkown image
page readonly
 clean
18858518000
unkown
page read and write
 clean
1885E010000
unkown
page read and write
 clean
1EC77660000
unkown image
page readonly
 clean
7FF5EA4FF000
unkown image
page readonly
 clean
2BD29EC7000
unkown
page read and write
 clean
21C10E00000
unkown image
page readonly
 clean
7FF5EA93C000
unkown image
page readonly
 clean
7DF52EFF0000
unkown image
page readonly
 clean
7DF5B6910000
unkown image
page readonly
 clean
7FF54A016000
unkown image
page readonly
 clean
7FF52D8E2000
unkown image
page readonly
 clean
1EC7706F000
unkown
page read and write
 clean
2BD2A79E000
unkown
page read and write
 clean
7FF5CF976000
unkown image
page readonly
 clean
1885D58B000
unkown
page read and write
 clean
7FF582521000
unkown image
page readonly
 clean
E7E5C7E000
unkown
page read and write
 clean
2BD2AC02000
unkown
page read and write
 clean
18858330000
unkown image
page read and write
 clean
188583F0000
unkown
page read and write
 clean
7DF52EFE0000
unkown image
page readonly
 clean
7FF5CFC45000
unkown image
page readonly
 clean
7DF5095C2000
unkown image
page readonly
 clean
2BD2A7A4000
unkown
page read and write
 clean
7FF5B53D9000
unkown image
page readonly
 clean
7DF533782000
unkown image
page readonly
 clean
1885D22A000
unkown
page read and write
 clean
BE4037E000
unkown
page read and write
 clean
9585FFD000
unkown
page read and write
 clean
7FF52D382000
unkown image
page readonly
 clean
7DF533DF0000
unkown image
page readonly
 clean
2BD2A795000
unkown
page read and write
 clean
2B269870000
unkown
page read and write
 clean
2BD29EE9000
unkown
page read and write
 clean
7FF5B53E1000
unkown image
page readonly
 clean
7FF5EA5DF000
unkown image
page readonly
 clean
7FF532934000
unkown image
page readonly
 clean
7FF508166000
unkown image
page readonly
 clean
E7E5F7F000
unkown
page read and write
 clean
2BD29E00000
unkown
page read and write
 clean
7FF527B06000
unkown image
page readonly
 clean
1885D380000
unkown
page read and write
 clean
21C10AD0000
unkown image
page readonly
 clean
E7E5CFE000
unkown
page read and write
 clean
7FF5EA7C5000
unkown image
page readonly
 clean
27F1C960000
unkown
page read and write
 clean
21C10C4C000
unkown
page read and write
 clean
21F4C4BA000
unkown
page read and write
 clean
7FF58DE0F000
unkown image
page readonly
 clean
7DF52EFD2000
unkown image
page readonly
 clean
2AD59C4A000
unkown
page read and write
 clean
2BD2AC00000
unkown
page read and write
 clean
7FF53222B000
unkown image
page readonly
 clean
7DF533772000
unkown image
page readonly
 clean
C9E487E000
unkown
page read and write
 clean
7FF5CFAF8000
unkown image
page readonly
 clean
1885859D000
unkown
page read and write
 clean
7FF5B540B000
unkown image
page readonly
 clean
7DF54B550000
unkown image
page readonly
 clean
1885D530000
unkown
page read and write
 clean
20E2B63D000
unkown
page read and write
 clean
7FF5CFE73000
unkown image
page readonly
 clean
2AD59B30000
heap private
page read and write
 clean
2BD2A74F000
unkown
page read and write
 clean
20E2B65A000
unkown
page read and write
 clean
2B26A002000
unkown
page read and write
 clean
7DF54B552000
unkown image
page readonly
 clean
7FF5CFE04000
unkown image
page readonly
 clean
2BD2A4C0000
unkown
page read and write
 clean
7FF582535000
unkown image
page readonly
 clean
7FF58DF55000
unkown image
page readonly
 clean
7FF5329A3000
unkown image
page readonly
 clean
21F4C46A000
unkown
page read and write
 clean
1885D430000
unkown
page read and write
 clean
7FF54A06C000
unkown image
page readonly
 clean
2BD2AC02000
unkown
page read and write
 clean
2BD29E6C000
unkown
page read and write
 clean
20E2B4D0000
unkown image
page readonly
 clean
7FF5CFDEC000
unkown image
page readonly
 clean
26ED2980000
unkown image
page readonly
 clean
2BD29E55000
unkown
page read and write
 clean
21C10C70000
unkown
page read and write
 clean
18858B00000
unkown image
page read and write
 clean
2BD2AC02000
unkown
page read and write
 clean
18858CD0000
unkown image
page readonly
 clean
7FF5BA83C000
unkown image
page readonly
 clean
21F4C8D0000
unkown image
page readonly
 clean
7DF533770000
unkown image
page readonly
 clean
7FF5EA889000
unkown image
page readonly
 clean
7FF532235000
unkown image
page readonly
 clean
18858700000
unkown
page read and write
 clean
1885859E000
unkown
page read and write
 clean
1885D52E000
unkown
page read and write
 clean
1885D6C0000
unkown
page read and write
 clean
7DF5D12D2000
unkown image
page readonly
 clean
7FF5EA64F000
unkown image
page readonly
 clean
7FF5080EC000
unkown image
page readonly
 clean
26ED29A0000
unkown image
page readonly
 clean
7DF5BBD10000
unkown image
page readonly
 clean
7DF5D12D0000
unkown image
page readonly
 clean
2BD2A7A4000
unkown
page read and write
 clean
1885D52E000
unkown
page read and write
 clean
7FF582500000
unkown image
page readonly
 clean
21FADFE000
unkown
page read and write
 clean
1EC76FA0000
heap default
page read and write
 clean
1885D580000
unkown
page read and write
 clean
95864FE000
unkown
page read and write
 clean
7DF5B68F2000
unkown image
page readonly
 clean
7DF5BBD30000
unkown image
page readonly
 clean
26ED2FB0000
unkown image
page readonly
 clean
25109D40000
heap private
page read and write
 clean
2AD59C13000
unkown
page read and write
 clean
21F4C400000
unkown
page read and write
 clean
20E2B63B000
unkown
page read and write
 clean
2BD2AC02000
unkown
page read and write
 clean
7FF50807B000
unkown image
page readonly
 clean
20E2B646000
unkown
page read and write
 clean
7FF52DB83000
unkown image
page readonly
 clean
18858518000
unkown
page read and write
 clean
7FF58E058000
unkown image
page readonly
 clean
7FF5B539B000
unkown image
page readonly
 clean
27F1C8C0000
heap private
page read and write
 clean
1885D370000
unkown
page read and write
 clean
7DF52EFE0000
unkown image
page readonly
 clean
7FF5EA945000
unkown image
page readonly
 clean
2BD29E13000
unkown
page read and write
 clean
1885D502000
unkown
page read and write
 clean
7DF533790000
unkown image
page readonly
 clean
7FF532323000
unkown image
page readonly
 clean
7DF5B6900000
unkown image
page readonly
 clean
18858A00000
unkown
page read and write
 clean
7FF52DB09000
unkown image
page readonly
 clean
E0FBE7E000
unkown
page read and write
 clean
20E2B500000
heap default
page read and write
 clean
7FF58DCA9000
unkown image
page readonly
 clean
EAB797B000
unkown
page read and write
 clean
2AD59BC0000
unkown
page read and write
 clean
7DF533790000
unkown image
page readonly
 clean
7FF52D790000
unkown image
page readonly
 clean
7FF5BA7E0000
unkown image
page readonly
 clean
7DF5BBD22000
unkown image
page readonly
 clean
26ED3680000
unkown
page read and write
 clean
1885D4FF000
unkown
page read and write
 clean
2BD2A7A8000
unkown
page read and write
 clean
7FF581DAA000
unkown image
page readonly
 clean
20E2B702000
unkown
page read and write
 clean
91E227B000
unkown
page read and write
 clean
2BD2A79D000
unkown
page read and write
 clean
1885D5A3000
unkown
page read and write
 clean
7FF507ED2000
unkown image
page readonly
 clean
18858529000
unkown
page read and write
 clean
7DF58F5B0000
unkown image
page readonly
 clean
7DF583A30000
unkown image
page readonly
 clean
7FF58DF0F000
unkown image
page readonly
 clean
419EC7F000
unkown
page read and write
 clean
7FF549F15000
unkown image
page readonly
 clean
BE4047E000
unkown
page read and write
 clean
7DF5D12E0000
unkown image
page readonly
 clean
7FF5328C0000
unkown image
page readonly
 clean
7FF58DFF3000
unkown image
page readonly
 clean
7FF508090000
unkown image
page readonly
 clean
7FF532306000
unkown image
page readonly
 clean
7FF531FD9000
unkown image
page readonly
 clean
27F1C760000
unkown image
page readonly
 clean
7DF52EFE2000
unkown image
page readonly
 clean
7DF583A32000
unkown image
page readonly
 clean
7FF54A103000
unkown image
page readonly
 clean
1EC77055000
unkown
page read and write
 clean
7FF5EA870000
unkown image
page readonly
 clean
20E2B66F000
unkown
page read and write
 clean
7FF58E055000
unkown image
page readonly
 clean
E0FBC79000
unkown
page read and write
 clean
419F3FE000
unkown
page read and write
 clean
7DF4B9BE0000
unkown image
page readonly
 clean
2BD2A7AD000
unkown
page read and write
 clean
27F1C95E000
unkown
page read and write
 clean
26ED2BB3000
unkown
page read and write
 clean
21C10C51000
unkown
page read and write
 clean
7FF531AA4000
unkown image
page readonly
 clean
7DF5D12D0000
unkown image
page readonly
 clean
7FF5EA543000
unkown image
page readonly
 clean
2AD59BA0000
unkown image
page readonly
 clean
1885D4A2000
unkown
page read and write
 clean
18857B50000
unkown image
page read and write
 clean
7DF5095D0000
unkown image
page readonly
 clean
1885D4FF000
unkown
page read and write
 clean
7FF5EA8D6000
unkown image
page readonly
 clean
27F1C958000
unkown
page read and write
 clean
18858518000
unkown
page read and write
 clean
7FF52DB83000
unkown image
page readonly
 clean
1885D224000
unkown
page read and write
 clean
2BD2AC63000
unkown
page read and write
 clean
2BD29C30000
unkown image
page read and write
 clean
18858518000
unkown
page read and write
 clean
7FF5B5412000
unkown image
page readonly
 clean
7DF42CEA0000
unkown image
page readonly
 clean
7FF58E01C000
unkown image
page readonly
 clean
1885D090000
unkown
page read and write
 clean
20E2B632000
unkown
page read and write
 clean
7FF5EA814000
unkown image
page readonly
 clean
21C10C3C000
unkown
page read and write
 clean
1885D260000
unkown
page read and write
 clean
7FF5824DC000
unkown image
page readonly
 clean
1885D220000
unkown
page read and write
 clean
7DF5EBDA2000
unkown image
page readonly
 clean
1885D441000
unkown
page read and write
 clean
1885D22C000
unkown
page read and write
 clean
25109E00000
unkown
page read and write
 clean
18857C97000
unkown
page read and write
 clean
2B26984F000
unkown
page read and write
 clean
1885D50C000
unkown
page read and write
 clean
7FF5CFDE9000
unkown image
page readonly
 clean
1885D720000
unkown
page read and write
 clean
7FF5825E3000
unkown image
page readonly
 clean
1885D0C3000
unkown
page read and write
 clean
419F6F9000
unkown
page read and write
 clean
20E2B4B0000
unkown image
page readonly
 clean
2BD2A792000
unkown
page read and write
 clean
7FF5BA7D1000
unkown image
page readonly
 clean
2BD2A7A8000
unkown
page read and write
 clean
419F4FF000
unkown
page read and write
 clean
2BD2A200000
unkown image
page readonly
 clean
1885D50C000
unkown
page read and write
 clean
2B269848000
unkown
page read and write
 clean
7DF533780000
unkown image
page readonly
 clean
7FF5B52BA000
unkown image
page readonly
 clean
1885D4DB000
unkown
page read and write
 clean
7DF5B6910000
unkown image
page readonly
 clean
7FF532170000
unkown image
page readonly
 clean
20E2B67D000
unkown
page read and write
 clean
7FF53222F000
unkown image
page readonly
 clean
21FAA7E000
unkown
page read and write
 clean
1885D502000
unkown
page read and write
 clean
1885D502000
unkown
page read and write
 clean
1885D502000
unkown
page read and write
 clean
958595C000
unkown
page read and write
 clean
26ED2D90000
heap private
page read and write
 clean
7FF532206000
unkown image
page readonly
 clean
7FF52DAF9000
unkown image
page readonly
 clean
7FF508085000
unkown image
page readonly
 clean
7FF5CFCAA000
unkown image
page readonly
 clean
BE3FDEB000
unkown
page read and write
 clean
7DF58F5B0000
unkown image
page readonly
 clean
7FF531FD5000
unkown image
page readonly
 clean
BE404FC000
unkown
page read and write
 clean
1885D514000
unkown
page read and write
 clean
1885D700000
unkown
page read and write
 clean
2510A2D0000
unkown image
page readonly
 clean
C9E52FE000
unkown
page read and write
 clean
21F4C429000
unkown
page read and write
 clean
2AD59C55000
unkown
page read and write
 clean
7FF5BA8B6000
unkown image
page readonly
 clean
7FF53203B000
unkown image
page readonly
 clean
1885D4FF000
unkown
page read and write
 clean
2BD29E52000
unkown
page read and write
 clean
18858518000
unkown
page read and write
 clean
7FF5EA4C4000
unkown image
page readonly
 clean
7FF507FB0000
unkown image
page readonly
 clean
1885D50C000
unkown
page read and write
 clean
7FF5BA8AC000
unkown image
page readonly
 clean
27F1C870000
unkown
page read and write
 clean
7FF5CFE66000
unkown image
page readonly
 clean
2BD2A7A0000
unkown
page read and write
 clean
1885859D000
unkown
page read and write
 clean
2BD2A7C8000
unkown
page read and write
 clean
1885D22B000
unkown
page read and write
 clean
1885D50C000
unkown
page read and write
 clean
7DF533E10000
unkown image
page readonly
 clean
7FF52DAB9000
unkown image
page readonly
 clean
C9E4E7C000
unkown
page read and write
 clean
BE405FC000
unkown
page read and write
 clean
7FF53281C000
unkown image
page readonly
 clean
2BD29EEC000
unkown
page read and write
 clean
7FF5080DC000
unkown image
page readonly
 clean
26ED2BB2000
unkown
page read and write
 clean
2BD2A79D000
unkown
page read and write
 clean
1885D502000
unkown
page read and write
 clean
2BD29E4D000
unkown
page read and write
 clean
7DF449420000
unkown image
page readonly
 clean
7FF5321E4000
unkown image
page readonly
 clean
7FF58E0BC000
unkown image
page readonly
 clean
20E2B667000
unkown
page read and write
 clean
1EC77102000
unkown
page read and write
 clean
7FF52DAB1000
unkown image
page readonly
 clean
2BD2A79C000
unkown
page read and write
 clean
20E2B642000
unkown
page read and write
 clean
20E2BC60000
unkown
page read and write
 clean
7DF533DF2000
unkown image
page readonly
 clean
2BD2A796000
unkown
page read and write
 clean
21F4CC02000
unkown
page read and write
 clean
1885D56F000
unkown
page read and write
 clean
1885D52E000
unkown
page read and write
 clean
1885859D000
unkown
page read and write
 clean
18858500000
unkown
page read and write
 clean
7FF5EA82C000
unkown image
page readonly
 clean
7FF5080E2000
unkown image
page readonly
 clean
1885D0A0000
unkown
page read and write
 clean
7FF549998000
unkown image
page readonly
 clean
2BD2A79C000
unkown
page read and write
 clean
21F4CD00000
unkown
page read and write
 clean
C9E4FFA000
unkown
page read and write
 clean
1885D100000
unkown
page read and write
 clean
7FF582375000
unkown image
page readonly
 clean
7FF5EA619000
unkown image
page readonly
 clean
1EC7703F000
unkown
page read and write
 clean
7FF5EA4B9000
unkown image
page readonly
 clean
18858518000
unkown
page read and write
 clean
7DF5EBDB0000
unkown image
page readonly
 clean
1885D22B000
unkown
page read and write
 clean
7FF5495B6000
unkown image
page readonly
 clean
18858559000
unkown
page read and write
 clean
1885D221000
unkown
page read and write
 clean
7FF53228C000
unkown image
page readonly
 clean
91E277E000
unkown
page read and write
 clean
7FF5B4D18000
unkown image
page readonly
 clean
7FF58E064000
unkown image
page readonly
 clean
2BD29EA7000
unkown
page read and write
 clean
1885859F000
unkown
page read and write
 clean
419EEFA000
unkown
page read and write
 clean
1EC772D0000
unkown image
page readonly
 clean
7FF5EA4A8000
unkown image
page readonly
 clean
7FF53289C000
unkown image
page readonly
 clean
1885D4FF000
unkown
page read and write
 clean
7DF5EBDC0000
unkown image
page readonly
 clean
1EC77000000
unkown
page read and write
 clean
7FF5EA868000
unkown image
page readonly
 clean
7FF52D347000
unkown image
page readonly
 clean
2AD5A402000
unkown
page read and write
 clean
26ED31B0000
unkown image
page readonly
 clean
2BD2A788000
unkown
page read and write
 clean
2BD2A602000
unkown
page read and write
 clean
7DF533E10000
unkown image
page readonly
 clean
7DF5EBDB2000
unkown image
page readonly
 clean
7FF5CFC3D000
unkown image
page readonly
 clean
1885D380000
unkown
page read and write
 clean
20E2B4B0000
unkown image
page readonly
 clean
2BD29E58000
unkown
page read and write
 clean
18858CF0000
unkown image
page readonly
 clean
26ED29B0000
unkown image
page readonly
 clean
27F1C96E000
unkown
page read and write
 clean
2510A460000
unkown image
page readonly
 clean
7FF52DA8F000
unkown image
page readonly
 clean
1885E010000
unkown
page read and write
 clean
21F4C3C0000
heap default
page read and write
 clean
20E2B66B000
unkown
page read and write
 clean
2BD29EC0000
unkown
page read and write
 clean
91E24FE000
unkown
page read and write
 clean
7FF532275000
unkown image
page readonly
 clean
1885D579000
unkown
page read and write
 clean
1885D4FF000
unkown
page read and write
 clean
EAB75FE000
unkown
page read and write
 clean
7FF5BA7CF000
unkown image
page readonly
 clean
7FF5EA760000
unkown image
page readonly
 clean
21C10C00000
unkown
page read and write
 clean
7FF549F7C000
unkown image
page readonly
 clean
7FF5EA4BB000
unkown image
page readonly
 clean
21FABFE000
unkown
page read and write
 clean
2B269670000
unkown image
page readonly
 clean
2AD59C3C000
unkown
page read and write
 clean
7FF5CFDC5000
unkown image
page readonly
 clean
7DF5BBD22000
unkown image
page readonly
 clean
7FF507DF8000
unkown image
page readonly
 clean
21C10AB0000
unkown image
page read and write
 clean
2BD2A7BC000
unkown
page read and write
 clean
27F1C93B000
heap default
page read and write
 clean
7DF54B552000
unkown image
page readonly
 clean
7FF58DFBC000
unkown image
page readonly
 clean
1885859D000
unkown
page read and write
 clean
18857BA0000
unkown image
page readonly
 clean
7DF52EFF0000
unkown image
page readonly
 clean
27F1CC30000
unkown image
page readonly
 clean
20E2B600000
unkown
page read and write
 clean
2B269D80000
unkown image
page readonly
 clean
1885D50D000
unkown
page read and write
 clean
1885D50C000
unkown
page read and write
 clean
1EC77076000
unkown
page read and write
 clean
1885D57B000
unkown
page read and write
 clean
7FF5EA801000
unkown image
page readonly
 clean
2BD2A78E000
unkown
page read and write
 clean
1885D50C000
unkown
page read and write
 clean
2BD2A792000
unkown
page read and write
 clean
7FF5B53C0000
unkown image
page readonly
 clean
7FF58DF7A000
unkown image
page readonly
 clean
21F4C3D0000
unkown image
page readonly
 clean
7DF58F5A0000
unkown image
page readonly
 clean
1885D220000
unkown
page read and write
 clean
7FF5324AC000
unkown image
page readonly
 clean
1885D502000
unkown
page read and write
 clean
2BD2A7DA000
unkown
page read and write
 clean
2BD2A7A8000
unkown
page read and write
 clean
7FF582559000
unkown image
page readonly
 clean
2BD2A783000
unkown
page read and write
 clean
2BD2AC63000
unkown
page read and write
 clean
1EC77802000
unkown
page read and write
 clean
2AD59B90000
heap default
page read and write
 clean
7FF582519000
unkown image
page readonly
 clean
7FF507F61000
unkown image
page readonly
 clean
2AD59C70000
unkown
page read and write
 clean
7FF5B5495000
unkown image
page readonly
 clean
7FF50807F000
unkown image
page readonly
 clean
7DF5095C2000
unkown image
page readonly
 clean
881D3BC000
unkown
page read and write
 clean
7FF58E095000
unkown image
page readonly
 clean
1885D7B0000
unkown
page read and write
 clean
1885D502000
unkown
page read and write
 clean
1EC76F50000
unkown image
page readonly
 clean
95862FD000
unkown
page read and write
 clean
2BD2A789000
unkown
page read and write
 clean
C9E51F8000
unkown
page read and write
 clean
20E2B675000
unkown
page read and write
 clean
20E2B649000
unkown
page read and write
 clean
BE4087E000
unkown
page read and write
 clean
7FF5328E1000
unkown image
page readonly
 clean
2510A800000
unkown
page read and write
 clean
7FF58E0AC000
unkown image
page readonly
 clean
95863FE000
unkown
page read and write
 clean
C9E4B78000
unkown
page read and write
 clean
7FF507FAA000
unkown image
page readonly
 clean
7FF5EA685000
unkown image
page readonly
 clean
18857C78000
unkown
page read and write
 clean
7FF549E87000
unkown image
page readonly
 clean
419F5FE000
unkown
page read and write
 clean
2BD29D80000
unkown image
page readonly
 clean
7FF5CFC19000
unkown image
page readonly
 clean
1885D573000
unkown
page read and write
 clean
7FF508094000
unkown image
page readonly
 clean
18858518000
unkown
page read and write
 clean
26ED2C60000
unkown image
page readonly
 clean
91E257E000
unkown
page read and write
 clean
26ED2B50000
unkown
page read and write
 clean
1885859D000
unkown
page read and write
 clean
20E2B664000
unkown
page read and write
 clean
7FF5EA874000
unkown image
page readonly
 clean
7DF583A42000
unkown image
page readonly
 clean
7DF58F592000
unkown image
page readonly
 clean
26ED2DA0000
unkown
page read and write
 clean
20E2B67B000
unkown
page read and write
 clean
2BD2A79A000
unkown
page read and write
 clean
7DF48D460000
unkown image
page readonly
 clean
7FF5B5486000
unkown image
page readonly
 clean
7FF54A072000
unkown image
page readonly
 clean
7FF5CF5EC000
unkown image
page readonly
 clean
7DF58F5A0000
unkown image
page readonly
 clean
7FF52D30D000
unkown image
page readonly
 clean
7DF5D12C0000
unkown image
page readonly
 clean
7FF5E9E1B000
unkown image
page readonly
 clean
7FF54A031000
unkown image
page readonly
 clean
AB340F9000
unkown
page read and write
 clean
7FF5CFD88000
unkown image
page readonly
 clean
2BD2A79D000
unkown
page read and write
 clean
7DF5EBDA2000
unkown image
page readonly
 clean
2BD2A4C0000
unkown
page read and write
 clean
7FF54A086000
unkown image
page readonly
 clean
E7E627F000
unkown
page read and write
 clean
1885D220000
unkown
page read and write
 clean
2BD29CA0000
heap default
page read and write
 clean
7DF533E02000
unkown image
page readonly
 clean
21F4C502000
unkown
page read and write
 clean
1885D380000
unkown
page read and write
 clean
26ED2B60000
heap default
page read and write
 clean
27F1C960000
unkown
page read and write
 clean
18857C58000
unkown
page read and write
 clean
2BD2A79E000
unkown
page read and write
 clean
7DF5BBD12000
unkown image
page readonly
 clean
7FF5EA820000
unkown image
page readonly
 clean
7FF5321F0000
unkown image
page readonly
 clean
25109D30000
unkown image
page read and write
 clean
1885D790000
unkown
page read and write
 clean
18857BC0000
heap default
page read and write
 clean
2AD59B40000
unkown image
page readonly
 clean
21F4C4C2000
unkown
page read and write
 clean
2BD29C50000
unkown image
page readonly
 clean
27F1C942000
unkown
page read and write
 clean
7FF58E025000
unkown image
page readonly
 clean
1EC77066000
unkown
page read and write
 clean
7FF508104000
unkown image
page readonly
 clean
7FF5EA891000
unkown image
page readonly
 clean
1885D4DB000
unkown
page read and write
 clean
7FF532231000
unkown image
page readonly
 clean
7DF583A50000
unkown image
page readonly
 clean
20E2B645000
unkown
page read and write
 clean
7DF5EBDA0000
unkown image
page readonly
 clean
7DF5095D2000
unkown image
page readonly
 clean
7FF52DAFC000
unkown image
page readonly
 clean
1885D50F000
unkown
page read and write
 clean
1885D56F000
unkown
page read and write
 clean
2AD59B40000
unkown image
page readonly
 clean
7DF54B570000
unkown image
page readonly
 clean
1885D502000
unkown
page read and write
 clean
1885D780000
unkown
page read and write
 clean
AB33DAE000
unkown
page read and write
 clean
7DF5B68F0000
unkown image
page readonly
 clean
7FF5EA6EB000
unkown image
page readonly
 clean
1885D512000
unkown
page read and write
 clean
1885D50C000
unkown
page read and write
 clean
1885D4FF000
unkown
page read and write
 clean
18858400000
unkown
page read and write
 clean
2B2696A0000
heap default
page read and write
 clean
7FF5B53B5000
unkown image
page readonly
 clean
7FF5EA8BB000
unkown image
page readonly
 clean
7FF58E143000
unkown image
page readonly
 clean
BE4067B000
unkown
page read and write
 clean
7FF58DCEA000
unkown image
page readonly
 clean
7FF5B5001000
unkown image
page readonly
 clean
1885D0C0000
unkown
page read and write
 clean
21C10C13000
unkown
page read and write
 clean
1885D228000
unkown
page read and write
 clean
26ED38B0000
unkown
page readonly
 clean
7FF58E079000
unkown image
page readonly
 clean
21F4CB60000
unkown image
page write copy
 clean
21C10C4F000
unkown
page read and write
 clean
7FF58E071000
unkown image
page readonly
 clean
1885D4FB000
unkown
page read and write
 clean
7FF5CF32B000
unkown image
page readonly
 clean
7DF58F590000
unkown image
page readonly
 clean
7FF5EA865000
unkown image
page readonly
 clean
21C11000000
unkown image
page readonly
 clean
7FF5BA82C000
unkown image
page readonly
 clean
27F1C957000
unkown
page read and write
 clean
AB3417F000
unkown
page read and write
 clean
7FF58DF5A000
unkown image
page readonly
 clean
7FF5327DA000
unkown image
page readonly
 clean
1885D57F000
unkown
page read and write
 clean
26ED2D95000
heap private
page read and write
 clean
7FF5BA7F1000
unkown image
page readonly
 clean
7DF5D12E0000
unkown image
page readonly
 clean
1885D241000
unkown
page read and write
 clean
7FF58DE3F000
unkown image
page readonly
 clean
7FF5B52B5000
unkown image
page readonly
 clean
1885D730000
unkown
page read and write
 clean
1885D533000
unkown
page read and write
 clean
18857C92000
unkown
page read and write
 clean
7FF54A024000
unkown image
page readonly
 clean
7FF5EA67F000
unkown image
page readonly
 clean
7FF5825E3000
unkown image
page readonly
 clean
1885D56F000
unkown
page read and write
 clean
1885859D000
unkown
page read and write
 clean
7DF533E00000
unkown image
page readonly
 clean
1885D340000
unkown
page read and write
 clean
1885D225000
unkown
page read and write
 clean
26ED2AE0000
unkown image
page readonly
 clean
AB3427D000
unkown
page read and write
 clean
1885D250000
unkown
page read and write
 clean
7FF5EA8E4000
unkown image
page readonly
 clean
2BD29EAB000
unkown
page read and write
 clean
7FF54A020000
unkown image
page readonly
 clean
27F1C8D0000
unkown image
page readonly
 clean
20E2B613000
unkown
page read and write
 clean
7FF5EA840000
unkown image
page readonly
 clean
7FF5EA7D0000
unkown image
page readonly
 clean
C9E4A7F000
unkown
page read and write
 clean
2BD2A77B000
unkown
page read and write
 clean
7FF5327E0000
unkown image
page readonly
 clean
7FF52D808000
unkown image
page readonly
 clean
2BD29E49000
unkown
page read and write
 clean
7FF532912000
unkown image
page readonly
 clean
7FF5CFDB1000
unkown image
page readonly
 clean
7FF5CFBD2000
unkown image
page readonly
 clean
2BD2A4D0000
unkown image
page read and write
 clean
7FF5B5419000
unkown image
page readonly
 clean
1885D502000
unkown
page read and write
 clean
21C10B00000
unkown image
page readonly
 clean
1885D4F2000
unkown
page read and write
 clean
2BD2A711000
unkown
page read and write
 clean
7FF54A055000
unkown image
page readonly
 clean
1885859E000
unkown
page read and write
 clean
2BD2A788000
unkown
page read and write
 clean
7FF53230C000
unkown image
page readonly
 clean
18858518000
unkown
page read and write
 clean
7FF52DB66000
unkown image
page readonly
 clean
25109DB0000
unkown image
page readonly
 clean
7FF5EA700000
unkown image
page readonly
 clean
7DF5BBD12000
unkown image
page readonly
 clean
21C11010000
unkown image
page readonly
 clean
1885D4F2000
unkown
page read and write
 clean
7DF52EFE2000
unkown image
page readonly
 clean
7DF5B68F0000
unkown image
page readonly
 clean
18857CA2000
unkown
page read and write
 clean
7FF54A103000
unkown image
page readonly
 clean
7FF532299000
unkown image
page readonly
 clean
7FF5EA63D000
unkown image
page readonly
 clean
7DF54B562000
unkown image
page readonly
 clean
7FF5BA815000
unkown image
page readonly
 clean
7FF5824EB000
unkown image
page readonly
 clean
7FF5CFD85000
unkown image
page readonly
 clean
1885D502000
unkown
page read and write
 clean
7FF5CFC3F000
unkown image
page readonly
 clean
25109DD0000
unkown
page read and write
 clean
7DF54B560000
unkown image
page readonly
 clean
419E9BB000
unkown
page read and write
 clean
7FF52D33F000
unkown image
page readonly
 clean
26ED2BC9000
heap default
page read and write
 clean
2BD2AC02000
unkown
page read and write
 clean
7FF58DEF0000
unkown image
page readonly
 clean
20E2BE02000
unkown
page read and write
 clean
7DF54B570000
unkown image
page readonly
 clean
18857BD0000
unkown image
page readonly
 clean
1885D537000
unkown
page read and write
 clean
1885D4AA000
unkown
page read and write
 clean
7FF52DAC1000
unkown image
page readonly
 clean
7DF5BBD10000
unkown image
page readonly
 clean
2BD29E65000
unkown
page read and write
 clean
7FF5495B4000
unkown image
page readonly
 clean
1885859D000
unkown
page read and write
 clean
21F4C3A0000
unkown image
page readonly
 clean
419F47E000
unkown
page read and write
 clean
7FF582504000
unkown image
page readonly
 clean
1885D4BA000
unkown
page read and write
 clean
7DF533782000
unkown image
page readonly
 clean
26ED38C0000
unkown
page read and write
 clean
26ED3920000
unkown
page read and write
 clean
2BD2A78E000
unkown
page read and write
 clean
188580D0000
unkown image
page readonly
 clean
18857D02000
unkown
page read and write
 clean
7DF533E00000
unkown image
page readonly
 clean
27F1C930000
heap default
page read and write
 clean
26ED2BD4000
heap default
page read and write
 clean
419F7FD000
unkown
page read and write
 clean
7FF508088000
unkown image
page readonly
 clean
1885D519000
unkown
page read and write
 clean
1885D571000
unkown
page read and write
 clean
2AD5A250000
unkown image
page readonly
 clean
7FF58E081000
unkown image
page readonly
 clean
7FF582552000
unkown image
page readonly
 clean
2BD29EEC000
unkown
page read and write
 clean
1885D503000
unkown
page read and write
 clean
7DF58F5A2000
unkown image
page readonly
 clean
1885D50C000
unkown
page read and write
 clean
1EC774D0000
unkown image
page readonly
 clean
7FF54A018000
unkown image
page readonly
 clean
7FF5CFD7B000
unkown image
page readonly
 clean
7FF5823D1000
unkown image
page readonly
 clean
20E2B65F000
unkown
page read and write
 clean
7DF5D12C2000
unkown image
page readonly
 clean
18858CC0000
unkown image
page readonly
 clean
20E2B4E0000
unkown image
page readonly
 clean
7FF5B53AC000
unkown image
page readonly
 clean
2B26984D000
unkown
page read and write
 clean
7FF58DF31000
unkown image
page readonly
 clean
7FF58255C000
unkown image
page readonly
 clean
20E2B67E000
unkown
page read and write
 clean
7FF5CF331000
unkown image
page readonly
 clean
7FF5080C5000
unkown image
page readonly
 clean
7FF52DA95000
unkown image
page readonly
 clean
2BD2A78C000
unkown
page read and write
 clean
EAB7C7F000
unkown
page read and write
 clean
2AD59C29000
unkown
page read and write
 clean
2BD2A7A8000
unkown
page read and write
 clean
C9E4D7F000
unkown
page read and write
 clean
18858518000
unkown
page read and write
 clean
2B26984A000
unkown
page read and write
 clean
7DF54B562000
unkown image
page readonly
 clean
7FF58E020000
unkown image
page readonly
 clean
2BD29E29000
unkown
page read and write
 clean
1885D514000
unkown
page read and write
 clean
1EC76FB0000
unkown image
page readonly
 clean
2BD2A798000
unkown
page read and write
 clean
7FF581DB0000
unkown image
page readonly
 clean
E0FBCF9000
unkown
page read and write
 clean
7FF5822A9000
unkown image
page readonly
 clean
2BD2A79D000
unkown
page read and write
 clean
1885859D000
unkown
page read and write
 clean
7FF5BA7D8000
unkown image
page readonly
 clean
1885D530000
unkown
page read and write
 clean
27F1C8F0000
unkown image
page read and write
 clean
25109F02000
unkown
page read and write
 clean
7FF58DEA2000
unkown image
page readonly
 clean
1885D502000
unkown
page read and write
 clean
7FF5EA8C2000
unkown image
page readonly
 clean
1EC77002000
unkown
page read and write
 clean
7DF5095C0000
unkown image
page readonly
 clean
2BD29DC0000
unkown image
page readonly
 clean
7DF481900000
unkown image
page readonly
 clean
1EC7705A000
unkown
page read and write
 clean
1EC76F70000
unkown image
page readonly
 clean
20E2B4A0000
heap private
page read and write
 clean
7FF58E04B000
unkown image
page readonly
 clean
7FF5BA062000
unkown image
page readonly
 clean
2AD59D00000
unkown
page read and write
 clean
7FF5B5434000
unkown image
page readonly
 clean
7FF532292000
unkown image
page readonly
 clean
18857C00000
unkown
page read and write
 clean
2B26987D000
unkown
page read and write
 clean
21FA70B000
unkown
page read and write
 clean
7FF5080F6000
unkown image
page readonly
 clean
1885D579000
unkown
page read and write
 clean
18858518000
unkown
page read and write
 clean
7FF54A0F6000
unkown image
page readonly
 clean
1885D571000
unkown
page read and write
 clean
7FF5B531C000
unkown image
page readonly
 clean
7DF431640000
unkown image
page readonly
 clean
27F1CA30000
unkown image
page readonly
 clean
7FF549F75000
unkown image
page readonly
 clean
1885859D000
unkown
page read and write
 clean
2AD59ED0000
unkown image
page readonly
 clean
7FF532323000
unkown image
page readonly
 clean
2AD59B20000
unkown image
page read and write
 clean
7FF5CFD90000
unkown image
page readonly
 clean
27F1C947000
heap default
page read and write
 clean
21C11402000
unkown
page read and write
 clean
20E2B490000
unkown image
page read and write
 clean
2BD2A7A4000
unkown
page read and write
 clean
2BD2A7B9000
unkown
page read and write
 clean
7FF532996000
unkown image
page readonly
 clean
7FF5CFDF6000
unkown image
page readonly
 clean
7FF5BA839000
unkown image
page readonly
 clean
7FF5328B8000
unkown image
page readonly
 clean
7FF5328D9000
unkown image
page readonly
 clean
7FF58DA08000
unkown image
page readonly
 clean
2B269630000
unkown image
page read and write
 clean
18857B70000
unkown image
page readonly
 clean
7FF5080A9000
unkown image
page readonly
 clean
2BD2A700000
unkown
page read and write
 clean
20E2B64E000
unkown
page read and write
 clean
21F4C390000
unkown image
page readonly
 clean
1885D6C0000
unkown
page read and write
 clean
7FF508173000
unkown image
page readonly
 clean
2BD2A790000
unkown
page read and write
 clean
2510A0D0000
unkown image
page readonly
 clean
1885D571000
unkown
page read and write
 clean
7FF52DA98000
unkown image
page readonly
 clean
1885D514000
unkown
page read and write
 clean
7FF5CFDDC000
unkown image
page readonly
 clean
1885D380000
unkown
page read and write
 clean
7FF58DEE9000
unkown image
page readonly
 clean
2AD59D02000
unkown
page read and write
 clean
7FF532251000
unkown image
page readonly
 clean
1885D50C000
unkown
page read and write
 clean
7DF533770000
unkown image
page readonly
 clean
EAB7A7B000
unkown
page read and write
 clean
7FF5EA6FB000
unkown image
page readonly
 clean
2BD2A7A2000
unkown
page read and write
 clean
21C10B20000
heap default
page read and write
 clean
2BD2A000000
unkown image
page readonly
 clean
1885D423000
unkown
page read and write
 clean
25109E40000
unkown
page read and write
 clean
7FF53291C000
unkown image
page readonly
 clean
7DF5EBDC0000
unkown image
page readonly
 clean
7FF5080A1000
unkown image
page readonly
 clean
27F1C760000
unkown image
page readonly
 clean
1885D4E0000
unkown
page read and write
 clean
1885D370000
unkown
page read and write
 clean
1885D52E000
unkown
page read and write
 clean
1EC76F40000
heap private
page read and write
 clean
7DF52EFD2000
unkown image
page readonly
 clean
2BD29E53000
unkown
page read and write
 clean
7FF532791000
unkown image
page readonly
 clean
7FF582574000
unkown image
page readonly
 clean
2BD2AC02000
unkown
page read and write
 clean
2BD2A7AD000
unkown
page read and write
 clean
26ED2B40000
unkown
page read and write
 clean
7FF549861000
unkown image
page readonly
 clean
E7E6077000
unkown
page read and write
 clean
20E2B66A000
unkown
page read and write
 clean
7FF532926000
unkown image
page readonly
 clean
7FF5B53D1000
unkown image
page readonly
 clean
2AD59C75000
unkown
page read and write
 clean
7FF532702000
unkown image
page readonly
 clean
881D6FE000
unkown
page read and write
 clean
7FF58DE75000
unkown image
page readonly
 clean
7FF5CFDA9000
unkown image
page readonly
 clean
2B269A00000
unkown image
page readonly
 clean
26ED38A0000
unkown
page read and write
 clean
21C10D02000
unkown
page read and write
 clean
18857C29000
unkown
page read and write
 clean
7FF5BA8C3000
unkown image
page readonly
 clean
7FF54A07C000
unkown image
page readonly
 clean
2BD2A78E000
unkown
page read and write
 clean
2B269902000
unkown
page read and write
 clean
1885D250000
unkown
page read and write
 clean
1EC76FD0000
unkown
page read and write
 clean
1885D502000
unkown
page read and write
 clean
21F4CA60000
unkown image
page readonly
 clean
2BD2A7BC000
unkown
page read and write
 clean
26ED3890000
unkown image
page read and write
 clean
7FF549F2E000
unkown image
page readonly
 clean
27F1C740000
unkown image
page read and write
 clean
7FF52DB14000
unkown image
page readonly
 clean
7FF5EA85F000
unkown image
page readonly
 clean
7FF508173000
unkown image
page readonly
 clean
2BD2A789000
unkown
page read and write
 clean
7FF5328AB000
unkown image
page readonly
 clean
1885D502000
unkown
page read and write
 clean
7FF58E0B2000
unkown image
page readonly
 clean
7DF5BBD20000
unkown image
page readonly
 clean
25109E13000
unkown
page read and write
 clean
7FF5BA8A6000
unkown image
page readonly
 clean
2BD2A79C000
unkown
page read and write
 clean
21FAEFE000
unkown
page read and write
 clean
20E2B62F000
unkown
page read and write
 clean
26ED2970000
unkown
page read and write
 clean
27F1C8C5000
heap private
page read and write
 clean
26ED2AA0000
unkown
page read and write
 clean
7FF5EA835000
unkown image
page readonly
 clean
2BD2A79E000
unkown
page read and write
 clean
2AD59B70000
unkown image
page readonly
 clean
20E2BA00000
unkown image
page readonly
 clean
2B269640000
heap private
page read and write
 clean
7FF5B5333000
unkown image
page readonly
 clean
26ED2D9C000
heap private
page read and write
 clean
7DF5D12C2000
unkown image
page readonly
 clean
7FF5B54A3000
unkown image
page readonly
 clean
E0FBD7E000
unkown
page read and write
 clean
2BD29DA0000
unkown
page read and write
 clean
18857B70000
unkown image
page readonly
 clean
26ED2BB2000
unkown
page read and write
 clean
2BD2A79E000
unkown
page read and write
 clean
18858513000
unkown
page read and write
 clean
7FF5EA6E8000
unkown image
page readonly
 clean
7FF5EA824000
unkown image
page readonly
 clean
2BD29F16000
unkown
page read and write
 clean
2BD2A7C2000
unkown
page read and write
 clean
7FF58E143000
unkown image
page readonly
 clean
1885D220000
unkown
page read and write
 clean
2BD29E4B000
unkown
page read and write
 clean
2AD5A0D0000
unkown image
page readonly
 clean
7DF5BBD30000
unkown image
page readonly
 clean
27F1C95E000
unkown
page read and write
 clean
1885D512000
unkown
page read and write
 clean
7FF5329A3000
unkown image
page readonly
 clean
EAB787E000
unkown
page read and write
 clean
7FF5BA832000
unkown image
page readonly
 clean
7FF5CFCB0000
unkown image
page readonly
 clean
2B269908000
unkown
page read and write
 clean
2BD2A7A4000
unkown
page read and write
 clean
9585D7A000
unkown
page read and write
 clean
1885D221000
unkown
page read and write
 clean
7DF5095D2000
unkown image
page readonly
 clean
7FF54A010000
unkown image
page readonly
 clean
1885D571000
unkown
page read and write
 clean
25109D70000
unkown image
page readonly
 clean
20E2B660000
unkown
page read and write
 clean
7DF5B6902000
unkown image
page readonly
 clean
7FF5B53F5000
unkown image
page readonly
 clean
7FF5B5202000
unkown image
page readonly
 clean
7FF532628000
unkown image
page readonly
 clean
7FF527B06000
unkown image
page readonly
 clean
7FF5328AF000
unkown image
page readonly
 clean
21FA78E000
unkown
page read and write
 clean
7FF5CFDE2000
unkown image
page readonly
 clean
2BD2A792000
unkown
page read and write
 clean
AB3407F000
unkown
page read and write
 clean
E7E59BC000
unkown
page read and write
 clean
25109E29000
unkown
page read and write
 clean
21F4CA50000
unkown image
page readonly
 clean
1885D502000
unkown
page read and write
 clean
7FF582473000
unkown image
page readonly
 clean
2BD2AC5D000
unkown
page read and write
 clean
7FF507F45000
unkown image
page readonly
 clean
2BD29EB2000
unkown
page read and write
 clean
2BD2A79A000
unkown
page read and write
 clean
7FF58D601000
unkown image
page readonly
 clean
26ED2BA9000
unkown
page read and write
 clean
18858250000
unkown image
page readonly
 clean
91E2A7D000
unkown
page read and write
 clean
2B26984C000
unkown
page read and write
 clean
BE4097C000
unkown
page read and write
 clean
7FF58DFF1000
unkown image
page readonly
 clean
21F4C370000
unkown image
page readonly
 clean
2B269829000
unkown
page read and write
 clean
C9E45DB000
unkown
page read and write
 clean
26ED2BB0000
unkown
page read and write
 clean
2BD29E4A000
unkown
page read and write
 clean
21F4C513000
unkown
page read and write
 clean
2BD2A779000
unkown
page read and write
 clean
2AD59C81000
unkown
page read and write
 clean
7FF58E03B000
unkown image
page readonly
 clean
419F0FF000
unkown
page read and write
 clean
2BD2A796000
unkown
page read and write
 clean
7FF532775000
unkown image
page readonly
 clean
7FF5322A6000
unkown image
page readonly
 clean
95867FF000
unkown
page read and write
 clean
18858402000
unkown
page read and write
 clean
2BD2AC02000
unkown
page read and write
 clean
18857D00000
unkown
page read and write
 clean
7DF407490000
unkown image
page readonly
 clean
18858D10000
unkown image
page readonly
 clean
21F4C43D000
unkown
page read and write
 clean
1885D581000
unkown
page read and write
 clean
1885D720000
unkown
page read and write
 clean
18857BF0000
unkown
page read and write
 clean
20E2B66D000
unkown
page read and write
 clean
1885D4FF000
unkown
page read and write
 clean
7FF5BA7E4000
unkown image
page readonly
 clean
18857ED0000
unkown image
page readonly
 clean
27F1C8E0000
unkown image
page readonly
 clean
2BD2A79F000
unkown
page read and write
 clean
881DA77000
unkown
page read and write
 clean
1885D57F000
unkown
page read and write
 clean
18858518000
unkown
page read and write
 clean
7FF532315000
unkown image
page readonly
 clean
7FF58254C000
unkown image
page readonly
 clean
7FF5EA741000
unkown image
page readonly
 clean
91E267E000
unkown
page read and write
 clean
1885E000000
unkown
page read and write
 clean
7DF431CC0000
unkown image
page readonly
 clean
7DF5EBDA0000
unkown image
page readonly
 clean
1885D50D000
unkown
page read and write
 clean
2BD29E56000
unkown
page read and write
 clean
26ED2BB1000
unkown
page read and write
 clean
AB341FF000
unkown
page read and write
 clean
7FF5CFDA1000
unkown image
page readonly
 clean
7FF507FEC000
unkown image
page readonly
 clean
7FF532749000
unkown image
page readonly
 clean
7FF58D5FB000
unkown image
page readonly
 clean
1885D260000
unkown
page read and write
 clean
1885D670000
unkown
page read and write
 clean
2BD29E50000
unkown
page read and write
 clean
7FF58D944000
unkown image
page readonly
 clean
7FF5824C5000
unkown image
page readonly
 clean
7FF54A079000
unkown image
page readonly
 clean
1885D360000
unkown
page read and write
 clean
7FF5CFE73000
unkown image
page readonly
 clean
21F4C4CB000
unkown
page read and write
 clean
419EDF7000
unkown
page read and write
 clean
7DF54B550000
unkown image
page readonly
 clean
2BD2A792000
unkown
page read and write
 clean
7DF58F5A2000
unkown image
page readonly
 clean
E0FBA7B000
unkown
page read and write
 clean
20E2B657000
unkown
page read and write
 clean
26ED3330000
unkown image
page readonly
 clean
7FF58E004000
unkown image
page readonly
 clean
7FF5B5426000
unkown image
page readonly
 clean
7FF58D986000
unkown image
page readonly
 clean
1885D502000
unkown
page read and write
 clean
2BD2AC02000
unkown
page read and write
 clean
7FF549F1A000
unkown image
page readonly
 clean
1885D579000
unkown
page read and write
 clean
7FF5825C6000
unkown image
page readonly
 clean
20E2B677000
unkown
page read and write
 clean
1885D506000
unkown
page read and write
 clean
1885D4FF000
unkown
page read and write
 clean
7DF533DF0000
unkown image
page readonly
 clean
7FF5BA846000
unkown image
page readonly
 clean
881D67E000
unkown
page read and write
 clean
1885D50C000
unkown
page read and write
 clean
7FF5080E9000
unkown image
page readonly
 clean
7FF52DB06000
unkown image
page readonly
 clean
7FF532240000
unkown image
page readonly
 clean
7DF5EBDB0000
unkown image
page readonly
 clean
2BD2A460000
unkown image
page write copy
 clean
AB33D2A000
unkown
page read and write
 clean
21F4C6D0000
unkown image
page readonly
 clean
1885D579000
unkown
page read and write
 clean
2510A530000
unkown
page read and write
 clean
881D7FB000
unkown
page read and write
 clean
21F4C3F0000
unkown
page read and write
 clean
1885D502000
unkown
page read and write
 clean
26ED38F0000
unkown
page read and write
 clean
25109D80000
unkown image
page readonly
 clean
BE40A7F000
unkown
page read and write
 clean
7FF58DE6F000
unkown image
page readonly
 clean
7FF52DAA0000
unkown image
page readonly
 clean
7FF5EA936000
unkown image
page readonly
 clean
7FF507C7C000
unkown image
page readonly
 clean
7FF5B510D000
unkown image
page readonly
 clean
7FF5CFD6C000
unkown image
page readonly
 clean
18858D00000
unkown image
page readonly
 clean
7DF5095C0000
unkown image
page readonly
 clean
2BD29C40000
heap private
page read and write
 clean
18858260000
unkown image
page readonly
 clean
7DF583A32000
unkown image
page readonly
 clean
7FF53290C000
unkown image
page readonly
 clean
7FF5324A6000
unkown image
page readonly
 clean
7DF4E9C70000
unkown image
page readonly
 clean
2510A530000
unkown
page read and write
 clean
20E2B800000
unkown image
page readonly
 clean
2BD29EE1000
unkown
page read and write
 clean
2BD2A797000
unkown
page read and write
 clean
E7E617F000
unkown
page read and write
 clean
7DF5B6902000
unkown image
page readonly
 clean
1885D220000
unkown
page read and write
 clean
7DF5D12C0000
unkown image
page readonly
 clean
2510A530000
unkown
page read and write
 clean
20E2BB80000
unkown image
page readonly
 clean
21C10C56000
unkown
page read and write
 clean
7FF5322A1000
unkown image
page readonly
 clean
7FF5B506D000
unkown image
page readonly
 clean
7FF5EA154000
unkown image
page readonly
 clean
419F37F000
unkown
page read and write
 clean
7FF5CFE56000
unkown image
page readonly
 clean
2BD2AC02000
unkown
page read and write
 clean
7FF58E0C6000
unkown image
page readonly
 clean
27F1C96F000
unkown
page read and write
 clean
1885D120000
unkown
page read and write
 clean
2BD2A7A4000
unkown
page read and write
 clean
7DF5EBDB2000
unkown image
page readonly
 clean
26ED2960000
unkown image
page read and write
 clean
7FF532919000
unkown image
page readonly
 clean
26ED3960000
unkown
page read and write
 clean
25109E02000
unkown
page read and write
 clean
7FF5EA0EE000
unkown image
page readonly
 clean
7FF5B5385000
unkown image
page readonly
 clean
20E2B665000
unkown
page read and write
 clean
91E28FD000
unkown
page read and write
 clean
7DF58F592000
unkown image
page readonly
 clean
21F4C350000
unkown image
page read and write
 clean
2BD2AD02000
unkown
page read and write
 clean
7FF53221C000
unkown image
page readonly
 clean
7FF58DCAB000
unkown image
page readonly
 clean
7FF549846000
unkown image
page readonly
 clean
27F1C960000
unkown
page read and write
 clean
2BD2A79C000
unkown
page read and write
 clean
E0FBDF9000
unkown
page read and write
 clean
7FF5EA6B2000
unkown image
page readonly
 clean
1885D502000
unkown
page read and write
 clean
2BD29E3C000
unkown
page read and write
 clean
BE4077D000
unkown
page read and write
 clean
26ED2B30000
unkown
page read and write
 clean
1885D4FF000
unkown
page read and write
 clean
2BD2A7CE000
unkown
page read and write
 clean
1885D6C0000
unkown
page read and write
 clean
1885D52E000
unkown
page read and write
 clean
7FF58DF15000
unkown image
page readonly
 clean
419F8FF000
unkown
page read and write
 clean
1EC76F80000
unkown image
page readonly
 clean
7DF52EFD0000
unkown image
page readonly
 clean
7FF5822D4000
unkown image
page readonly
 clean
18857B60000
heap private
page read and write
 clean
7DF533E02000
unkown image
page readonly
 clean
2BD29E82000
unkown
page read and write
 clean
7FF5CFC61000
unkown image
page readonly
 clean
7DF5D12D2000
unkown image
page readonly
 clean
E7E5EFB000
unkown
page read and write
 clean
7FF5EA953000
unkown image
page readonly
 clean
419F57F000
unkown
page read and write
 clean
1885D22E000
unkown
page read and write
 clean
20E2B65C000
unkown
page read and write
 clean
21FACFE000
unkown
page read and write
 clean
7FF5EA61C000
unkown image
page readonly
 clean
7FF507C76000
unkown image
page readonly
 clean
1EC77650000
unkown image
page readonly
 clean
25109D50000
unkown image
page readonly
 clean
21C10C81000
unkown
page read and write
 clean
2AD59C50000
unkown
page read and write
 clean
21C11280000
unkown
page read and write
 clean
2BD2A79C000
unkown
page read and write
 clean
7FF5824F8000
unkown image
page readonly
 clean
2510A602000
unkown
page read and write
 clean
2B269780000
unkown image
page readonly
 clean
7DF533780000
unkown image
page readonly
 clean
1885D52E000
unkown
page read and write
 clean
21C10C7A000
unkown
page read and write
 clean
1885859D000
unkown
page read and write
 clean
C9E4EFF000
unkown
page read and write
 clean
7FF5CF97C000
unkown image
page readonly
 clean
18857C13000
unkown
page read and write
 clean
7FF5824F5000
unkown image
page readonly
 clean
7FF52DAEC000
unkown image
page readonly
 clean
7FF58E04F000
unkown image
page readonly
 clean
2BD2A7A9000
unkown
page read and write
 clean
1885859F000
unkown
page read and write
 clean
1885D4FF000
unkown
page read and write
 clean
20E2B625000
unkown
page read and write
 clean
18857C41000
unkown
page read and write
 clean
95861FF000
unkown
page read and write
 clean
2B269827000
unkown
page read and write
 clean
25109DA0000
heap default
page read and write
 clean
7FF58E030000
unkown image
page readonly
 clean
7DF4CF190000
unkown image
page readonly
 clean
21F4C464000
unkown
page read and write
 clean
7FF5CFD94000
unkown image
page readonly
 clean
7FF5824D0000
unkown image
page readonly
 clean
7FF5EA85B000
unkown image
page readonly
 clean
18858559000
unkown
page read and write
 clean
1885D574000
unkown
page read and write
 clean
7FF53229C000
unkown image
page readonly
 clean
2BD2AC02000
unkown
page read and write
 clean
2BD2AC02000
unkown
page read and write
 clean
21C10D08000
unkown
page read and write
 clean
2AD59C4D000
unkown
page read and write
 clean
1885D264000
unkown
page read and write
 clean
2BD29E4F000
unkown
page read and write
 clean
7FF5B53AF000
unkown image
page readonly
 clean
7FF58E0D4000
unkown image
page readonly
 clean
1885D58B000
unkown
page read and write
 clean
C9E4C77000
unkown
page read and write
 clean
419F9FB000
unkown
page read and write
 clean
21C10D13000
unkown
page read and write
 clean
7FF5EA549000
unkown image
page readonly
 clean
7FF5328F5000
unkown image
page readonly
 clean
26ED2980000
unkown image
page readonly
 clean
7FF5EA1D0000
unkown image
page readonly
 clean
EAB7D7E000
unkown
page read and write
 clean
1885D57F000
unkown
page read and write
 clean
2B269C00000
unkown image
page readonly
 clean
7FF532082000
unkown image
page readonly
 clean
1885D110000
unkown
page read and write
 clean
26ED2AC0000
unkown
page read and write
 clean
7FF5EA8C9000
unkown image
page readonly
 clean
7FF507F3F000
unkown image
page readonly
 clean
25109E58000
unkown
page read and write
 clean
18858BE0000
unkown
page read and write
 clean
7FF5EA8CC000
unkown image
page readonly
 clean
2B269887000
unkown
page read and write
 clean
2B269800000
unkown
page read and write
 clean
1885D22A000
unkown
page read and write
 clean
419F2FB000
unkown
page read and write
 clean
881D8FB000
unkown
page read and write
 clean
18857D13000
unkown
page read and write
 clean
26ED38D0000
unkown
page read and write
 clean
7FF5B53B8000
unkown image
page readonly
 clean
7FF532244000
unkown image
page readonly
 clean
25109D50000
unkown image
page readonly
 clean
27F1C780000
unkown image
page readonly
 clean
2AD59B60000
unkown image
page readonly
 clean
7FF5824B4000
unkown image
page readonly
 clean
1885859D000
unkown
page read and write
 clean
27F1C947000
unkown
page read and write
 clean
1885D22E000
unkown
page read and write
 clean
1885D57D000
unkown
page read and write
 clean
7FF58E135000
unkown image
page readonly
 clean
9585EFF000
unkown
page read and write
 clean
7FF5EA65E000
unkown image
page readonly
 clean
7FF5CFD7F000
unkown image
page readonly
 clean
20E2B663000
unkown
page read and write
 clean
20E2B629000
unkown
page read and write
 clean
7FF582342000
unkown image
page readonly
 clean
20E2B658000
unkown
page read and write
 clean
1885859A000
unkown
page read and write
 clean
7FF5328B5000
unkown image
page readonly
 clean
2AD59C00000
unkown
page read and write
 clean
21C10D00000
unkown
page read and write
 clean
7FF5B5005000
unkown image
page readonly
 clean
881DB7E000
unkown
page read and write
 clean
20E2B5E0000
unkown image
page readonly
 clean
1885D50F000
unkown
page read and write
 clean
7FF5EA953000
unkown image
page readonly
 clean
7FF5EA8A5000
unkown image
page readonly
 clean
7FF58DC4C000
unkown image
page readonly
 clean
2BD29C70000
unkown image
page readonly
 clean
91E27FF000
unkown
page read and write
 clean
7FF5B53C4000
unkown image
page readonly
 clean
7FF5EA830000
unkown image
page readonly
 clean
1885D330000
unkown
page read and write
 clean
7FF58DDC8000
unkown image
page readonly
 clean
7FF5328D1000
unkown image
page readonly
 clean
2B269900000
unkown
page read and write
 clean
7FF5B541C000
unkown image
page readonly
 clean
1885D502000
unkown
page read and write
 clean
21F4C487000
unkown
page read and write
 clean
7FF5080B1000
unkown image
page readonly
 clean
1885D461000
unkown
page read and write
 clean
2B269813000
unkown
page read and write
 clean
2BD29F13000
unkown
page read and write
 clean
20E2B661000
unkown
page read and write
 clean
7DF52EFD0000
unkown image
page readonly
 clean
18857CA4000
unkown
page read and write
 clean
7FF50762B000
unkown image
page readonly
 clean
18858415000
unkown
page read and write
 clean
7FF54A0E6000
unkown image
page readonly
 clean
C9E48FE000
unkown
page read and write
 clean
21C10C29000
unkown
page read and write
 clean
7FF5495AC000
unkown image
page readonly
 clean
7DF4B47C0000
unkown image
page readonly
 clean
7FF5328C4000
unkown image
page readonly
 clean
2B269650000
unkown image
page readonly
 clean
2B269854000
unkown
page read and write
 clean
7DF54B560000
unkown image
page readonly
 clean
7DF5095E0000
unkown image
page readonly
 clean
2BD2A784000
unkown
page read and write
 clean
7FF532238000
unkown image
page readonly
 clean
EAB7B77000
unkown
page read and write
 clean
2B269650000
unkown image
page readonly
 clean
1885D50C000
unkown
page read and write
 clean
1885D390000
unkown
page read and write
 clean
2AD59D13000
unkown
page read and write
 clean
7FF5EA55F000
unkown image
page readonly
 clean
2BD29ED8000
unkown
page read and write
 clean
7FF5B54A3000
unkown image
page readonly
 clean
1885D411000
unkown
page read and write
 clean
20E2B668000
unkown
page read and write
 clean
7FF5822CD000
unkown image
page readonly
 clean
2B269852000
unkown
page read and write
 clean
2BD2A4C0000
unkown
page read and write
 clean
18857C8E000
unkown
page read and write
 clean
2BD2AC03000
unkown
page read and write
 clean
7FF5EA881000
unkown image
page readonly
 clean
7FF5B5399000
unkown image
page readonly
 clean
7FF507F3D000
unkown image
page readonly
 clean
18858559000
unkown
page read and write
 clean
1885D350000
unkown
page read and write
 clean
7FF5EA4E6000
unkown image
page readonly
 clean
7FF52DAA4000
unkown image
page readonly
 clean
7FF5CFCEC000
unkown image
page readonly
 clean
1885D4FF000
unkown
page read and write
 clean
1885D226000
unkown
page read and write
 clean
7FF5BA8C3000
unkown image
page readonly
 clean
7FF532986000
unkown image
page readonly
 clean
1885D44E000
unkown
page read and write
 clean
1885D2F0000
unkown
page read and write
 clean
26ED2D99000
heap private
page read and write
 clean
7FF53276F000
unkown image
page readonly
 clean
7FF58DF80000
unkown image
page readonly
 clean
2BD29E8B000
unkown
page read and write
 clean
1885D50C000
unkown
page read and write
 clean
7FF5B5390000
unkown image
page readonly
 clean
18859080000
unkown
page read and write
 clean
2B269680000
unkown image
page readonly
 clean
18857C7C000
unkown
page read and write
 clean
21C10AD0000
unkown image
page readonly
 clean
7DF583A50000
unkown image
page readonly
 clean
7FF58D8E2000
unkown image
page readonly
 clean
7FF58DF0D000
unkown image
page readonly
 clean
7DF5B68F2000
unkown image
page readonly
 clean
1885D780000
unkown
page read and write
 clean
1885D57F000
unkown
page read and write
 clean
7FF52DB76000
unkown image
page readonly
 clean
1885D22F000
unkown
page read and write
 clean
188583F3000
unkown
page read and write
 clean
7DF5BBD20000
unkown image
page readonly
 clean
7DF5095D0000
unkown image
page readonly
 clean
1885D502000
unkown
page read and write
 clean
1885D50C000
unkown
page read and write
 clean
2BD29F02000
unkown
page read and write
 clean
2BD29E65000
unkown
page read and write
 clean
1EC76F50000
unkown image
page readonly
 clean
7FF5EA661000
unkown image
page readonly
 clean
18859061000
unkown
page read and write
 clean
7FF5EA7CC000
unkown image
page readonly
 clean
7FF5B5374000
unkown image
page readonly
 clean
26ED2B67000
heap default
page read and write
 clean
26ED2BB0000
unkown
page read and write
 clean
18858518000
unkown
page read and write
 clean
7DF58F590000
unkown image
page readonly
 clean
7FF52DAF2000
unkown image
page readonly
 clean
7FF507631000
unkown image
page readonly
 clean
27F1C890000
unkown
page read and write
 clean
20E2B62D000
unkown
page read and write
 clean
1EC77113000
unkown
page read and write
 clean
1885D244000
unkown
page read and write
 clean
2BD2A792000
unkown
page read and write
 clean
1885D574000
unkown
page read and write
 clean
2BD2A717000
unkown
page read and write
 clean
21F4C370000
unkown image
page readonly
 clean
1EC7702A000
unkown
page read and write
 clean
21C10AF0000
unkown image
page readonly
 clean
27F1C95E000
unkown
page read and write
 clean
7FF52DAD5000
unkown image
page readonly
 clean
1885D499000
unkown
page read and write
 clean
7FF5EA705000
unkown image
page readonly
 clean
1885D6C0000
unkown
page read and write
 clean
7FF5EA1CB000
unkown image
page readonly
 clean
881DC7F000
unkown
page read and write
 clean
18858518000
unkown
page read and write
 clean
1885D56F000
unkown
page read and write
 clean
7FF5EA644000
unkown image
page readonly
 clean
2BD2A7D3000
unkown
page read and write
 clean
7FF54A008000
unkown image
page readonly
 clean
7FF5822AF000
unkown image
page readonly
 clean
21C10AC0000
heap private
page read and write
 clean
2B26983C000
unkown
page read and write
 clean
7DF533772000
unkown image
page readonly
 clean
7FF5EA84B000
unkown image
page readonly
 clean
18858559000
unkown
page read and write
 clean
419F1FA000
unkown
page read and write
 clean
7FF5EA61F000
unkown image
page readonly
 clean
2BD2A762000
unkown
page read and write
 clean
95865FF000
unkown
page read and write
 clean
1885D240000
unkown
page read and write
 clean
7DF583A42000
unkown image
page readonly
 clean
7FF5B517A000
unkown image
page readonly
 clean
20E2B684000
unkown
page read and write
 clean
20E2B640000
unkown
page read and write
 clean
7FF5B518C000
unkown image
page readonly
 clean
7FF5EA561000
unkown image
page readonly
 clean
7FF582395000
unkown image
page readonly
 clean
2BD29EF6000
unkown
page read and write
 clean
7FF58E0B9000
unkown image
page readonly
 clean
7FF582566000
unkown image
page readonly
 clean
7FF58DC46000
unkown image
page readonly
 clean
7FF5079B7000
unkown image
page readonly
 clean
7DF533DF2000
unkown image
page readonly
 clean
2BD29EA0000
unkown
page read and write
 clean
2BD2AC1D000
unkown
page read and write
 clean
2B269913000
unkown
page read and write
 clean
2BD29C50000
unkown image
page readonly
 clean
EAB757C000
unkown
page read and write
 clean
21F4C360000
heap private
page read and write
 clean
7FF53260D000
unkown image
page readonly
 clean
7FF5495BB000
unkown image
page readonly
 clean
7FF5825D5000
unkown image
page readonly
 clean
27F1CDB0000
unkown image
page readonly
 clean
BE401FC000
unkown
page read and write
 clean
7DF583A30000
unkown image
page readonly
 clean
7FF58E060000
unkown image
page readonly
 clean
21C11190000
unkown image
page readonly
 clean
7FF53276D000
unkown image
page readonly
 clean
1885D56F000
unkown
page read and write
 clean
7DF583A40000
unkown image
page readonly
 clean
7FF508156000
unkown image
page readonly
 clean
1EC77013000
unkown
page read and write
 clean
7FF507F19000
unkown image
page readonly
 clean
7FF58E126000
unkown image
page readonly
 clean
881D97F000
unkown
page read and write
 clean
1885D221000
unkown
page read and write
 clean
18857C73000
unkown
page read and write
 clean
1885D227000
unkown
page read and write
 clean
2BD2A7C8000
unkown
page read and write
 clean
2510A450000
unkown image
page readonly
 clean
1885D4E8000
unkown
page read and write
 clean
7FF582511000
unkown image
page readonly
 clean
1885D582000
unkown
page read and write
 clean
7DF583A40000
unkown image
page readonly
 clean
1885D5A4000
unkown
page read and write
 clean
18857B90000
unkown image
page readonly
 clean
7FF5824EF000
unkown image
page readonly
 clean
2BD2AD00000
unkown
page read and write
 clean
1EC76F30000
unkown image
page read and write
 clean
7FF5EA71D000
unkown image
page readonly
 clean
20E2B674000
unkown
page read and write
 clean
7DF5095E0000
unkown image
page readonly
 clean
2B2697A0000
unkown
page read and write
 clean
2BD2A720000
unkown
page read and write
 clean
7FF5B548C000
unkown image
page readonly
 clean
2BD29C80000
unkown image
page readonly
 clean
1885D502000
unkown
page read and write
 clean
1885D080000
unkown
page read and write
 clean
2BD2A792000
unkown
page read and write
 clean
18858780000
unkown
page read and write
 clean
1885859D000
unkown
page read and write
 clean
18858CE0000
unkown image
page readonly
 clean
7FF50806C000
unkown image
page readonly
 clean
2BD2A380000
unkown image
page readonly
 clean
1885D225000
unkown
page read and write
 clean
2BD29E4E000
unkown
page read and write
 clean
2AD59D08000
unkown
page read and write
 clean
21F4C413000
unkown
page read and write
 clean
95866FF000
unkown
page read and write
 clean
C9E50FF000
unkown
page read and write
 clean
7FF5B5235000
unkown image
page readonly
 clean
1885D400000
unkown
page read and write
 clean
419EFFA000
unkown
page read and write
 clean
There are 1326 hidden memdumps, click here to show them.

DOM / HTML

URL
Malicious
file:///C:/Users/user/Desktop/ATT78678_Covid-19.HTM
 clean
https://medisolhealthcare.com/tamu.edu/index.html
 clean
https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3945.9165706755552!2d76.92436481460193!3d8.507481599281519!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x3b05bbfc5555555b%3A0x951cc4a2b9385586!2sMedisol+Healthcare!5e0!3m2!1sen!2sin!4v1543508867808
 clean
https://medisolhealthcare.com/
 clean
https://gateway.tamu.edu/activation/
 clean
https://gateway.tamu.edu/password-reset/
 clean
https://vars.hotjar.com/box-dfc01efbdc94bb0936d9a35a502b0b64.html
 clean
https://www.tamu.edu/
 clean
https://it.tamu.edu/leadership/
 clean
https://medisolhealthcare.com/tamu.edu/index.php
 clean