Automated Malware Analysis IOC Report for

Files

File Path

Type

Processes

Path

Cmdline

Malicious

C:\Windows\System32\msiexec.exe

"C:\Windows\System32\msiexec.exe" /i "C:\Users\user\Desktop\KeePassXC-2.7.10-Win64.msi"

C:\Windows\System32\msiexec.exe

C:\Windows\system32\msiexec.exe /V

C:\Windows\SysWOW64\msiexec.exe

C:\Windows\syswow64\MsiExec.exe -Embedding 3C7DB1E64F61A48906110C16B119F45C C

C:\Windows\SysWOW64\msiexec.exe

C:\Windows\syswow64\MsiExec.exe -Embedding ADA735D44122B6D1906D2FBADB36DA04

C:\Windows\SysWOW64\taskkill.exe

"C:\Windows\SysWOW64\taskkill.exe" /IM KeePassXC.exe

C:\Windows\System32\conhost.exe

C:\Windows\system32\conhost.exe 0xffffffff -ForceV1

C:\Windows\SysWOW64\taskkill.exe

"C:\Windows\SysWOW64\taskkill.exe" /IM keepassxc-proxy.exe /F

C:\Windows\System32\conhost.exe

C:\Windows\system32\conhost.exe 0xffffffff -ForceV1

C:\Program Files\KeePassXC\KeePassXC.exe

"C:\Program Files\KeePassXC\KeePassXC.exe"

C:\Program Files\KeePassXC\KeePassXC.exe

"C:\Program Files\KeePassXC\KeePassXC.exe"

C:\Program Files\KeePassXC\KeePassXC.exe

"C:\Program Files\KeePassXC\KeePassXC.exe"

There are 1 hidden processes, click here to show them.

URLs

Name

Malicious

http://html4/loose.dtd

unknown

http://www.phreedom.org/md5)

unknown

https://api.pwnedpasswords.com/range/User-Agent:

unknown

https://github.com/keepassxreboot/keepassxc/graphs/contributors

unknown

http://www.winimage.com/zLibDll1.3.0

unknown

https://keepassxc.org/docs/#faq-yubikey-howto

unknown

http://www.phreedom.org/md5)08:27

unknown

https://github.com/TheZ3ro

unknown

https://icons.duckduckgo.com

unknown

https://addons.mozilla.org/firefox/addon/keepassxc-browser/

unknown

http://www.aiim.org/pdfa/ns/id/

unknown

https://github.com/keepassxreboot/keepassxc/issues

unknown

https://api.pwnedpasswords.com/range/

unknown

https://github.com

unknown

https://keepassxc.org/donatehttps://github.com/keepassxreboot/keepassxc/issuesfile:///%1docs/KeePass

unknown

https://api.pwnedpasswords.com/range/KeePassXCUser-Agent:

unknown

https://github.com/phoerious

unknown

https://github.com/varjolintu

unknown

https://keepassxc.org/

unknown

https://chromewebstore.google.com/detail/keepassxc-browser/oboonakemofpalcgghocfoadofidjkkk

unknown

https://icons.duckduckgo.com.ico/ip3/./favicon.ico/favicon.ico0r

unknown

https://github.com/louib

unknown

http://.css

unknown

https://keepassxc.org/docs/KeePassXC_UserGuide.html#_configure_auto_type_sequences1updateAutoTypeEna

unknown

http://www.color.org)

unknown

http://bugreports.qt.io/

unknown

https://github.com/hifi

unknown

http://fontfabrik.com

unknown

https://haveibeenpwned.com).

unknown

http://www.winimage.com/zLibDll-

unknown

https://api.github.com/repos/keepassxreboot/keepassxc/releases

unknown

https://keepassxc.org/docs/

unknown

http://www.zlib.net/D

unknown

https://keepassxc.org/download/

unknown

https://keepassxc.org

unknown

https://www.openssl.org/H

unknown

https://api.github.com/repos/keepassxreboot/keepassxc/releases/latestAccepttag_name

unknown

https://haveibeenpwned.com/Passwords.

unknown

https://keepassxc.org/donate

unknown

https://www.yubico.com/

unknown

http://www.winimage.com/zLibDll

unknown

http://bugreports.qt.io/_q_receiveReplyensureClientPrefaceSentMicrosoft-IIS/4.Microsoft-IIS/5.Netsca

unknown

http://.jpg

unknown

https://icons.duckduckgo.com.ico/ip3/./favicon.ico/favicon.ico

unknown

https://keepassxc.org/docs/KeePassXC_UserGuide.html#_configure_auto_type_sequences

unknown

https://onlykey.io

unknown

https://github.com/droidmonkey

unknown

There are 37 hidden URLs, click here to show them.

Domains

Name

Malicious

ax-0002.ax-msedge.net

150.171.27.11

a-0003.a-msedge.net

204.79.197.203

c-msn-pme.trafficmanager.net

20.110.205.119

sb.scorecardresearch.com

3.163.80.85

a1062.dscd.akamai.net

23.0.162.246

ax-0001.ax-msedge.net

150.171.28.10

a233.dscd.akamai.net

23.0.162.246

assets.msn.com

unknown

windows.msn.com

unknown

c.msn.com

unknown

api.msn.com

unknown

There are 1 hidden domains, click here to show them.

Registry

Path

Value

Malicious

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\CCBBF9E1485AF63CE47ABF8E9E648C2504FC319D

Blob

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\CCBBF9E1485AF63CE47ABF8E9E648C2504FC319D

Blob

HKEY_CURRENT_USER\Software\Microsoft\SystemCertificates\CA\Certificates\329B78A5C9EBC2043242DE90CE1B7C6B1BA6C692

Blob

HKEY_CURRENT_USER\Software\Microsoft\SystemCertificates\CA\Certificates\329B78A5C9EBC2043242DE90CE1B7C6B1BA6C692

Blob

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D1EB23A46D17D68FD92564C2F1F1601764D8E349

Blob

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer

GlobalAssocChangedCounter

HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000

Owner

HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000

SessionHash

HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000

Sequence

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\Config.Msi\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Rollback\Scripts

C:\Config.Msi\607c23.rbs

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Rollback\Scripts

C:\Config.Msi\607c23.rbsLow

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DA701CAF9EF50365BB0CD9BDA4B4C21A

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5537A63291702615696636E59CCE4CAE

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C1ABFA8FC692AA149B860623A3026656

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\78FB23F6B91B54859AAF19BD24E2A021

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C85DB0AA99A79195798596F56EA51371

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07804A0D4E3004E528EC3684BCD72FA8

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\18E19DEE4467D9F59BF0648B2DDB6362

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2611F00F345DF0153B7E4F0D807B1176

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\609C83FF8FC47CB5E8F6ADD073A9503D

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1F5D997E793FCCF5EA8FA31C2E501D1D

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F312DF3F17503FF529D519A181AFB6B8

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\44D6EDF620BA6D557AF7889AF152FA16

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\17F35CAFEF5F37A5B952E393CAE146AF

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88A28FBB0FE16925599C09F39A59F0B9

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\66B8161156A614550A91B0E6E8D7B763

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\384773C3E1406805C818CC8E9B4EF936

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F85F309E21CEDBD598E3A1E25DAFAB33

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\35804FF9F76888A56AD37EC545047931

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C71184F28D78DBD559B0A68A954E6874

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\099C62E1D72A41F54BED015F30FFD6C7

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FEB03F167E6B7152AC054A25FA3DCFD

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4E2BB8B59A17D1853A652169A2A3CEFA

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FBBEC2911E4E0FB518477BF85ABFA043

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B0D75ACEB08813956B80EB581BED2440

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FBD42FED484B25589CB122D3B81F0D0

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\37348C5BDFB5C9556A0379B58923A6A6

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\967EF84F89128F7579E1594A5280AC84

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EFAE6D29E900AFD57AE3F27295623468

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CAE755F0C78B9425F92660D3E7E096EC

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DEDA150829A5CB58B8D583CAD109966

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6097C59FA62E77254B7B9D607711F723

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29A6BC706A0746A5894628A2CDA36345

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A66169AD45F45F59AB553977EE7B9B4

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\21C8C152F3D3B92568FD3E412A74B790

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF0A418E8032D99529305D1639B7E024

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4C1D6F65CC12D2D579D3F054D713FFAC

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\618F4E7D3EC37AF54A7F00688A1E2406

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\57D622E040711A55490B7111C9E3825C

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\03C3AD49C193A3C5AA71BA53B3B2269E

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A284AA4999252605AAF4846DDD70A8CF

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DC5121F7F6FE9D059B15E820D393D051

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A17163CDC5342CA5F932D463820EFDD0

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F00767C3416A8B05F81D556431D827F7

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2C3D919158AC3A55BB32FDC0AC782F0B

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\57ADE707AA772DB599B54C76BAECFCBF

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\306269F722CBE2550B31A2B0A5EA2FC9

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2BA236471838F955EB91C415BE46F088

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\81CD1C1520146935EB92AF7BA1CA2BEB

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1AE5550E7A682AE5DB8638779F5EC970

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3E4E4412ED487A05891B7AC921ECC32F

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FFA03554DB43B255B80E092EECEF3511

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EBB270B33705AB15D9D989CF3B524E19

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D42958C51BBFAFE54A719756FEE6EFFE

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\686DFAADDAE8CFF54953048B7055A06A

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\87E651177B91D735A85E73138DCD6D97

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\32DAB1870F22F8050B609F618D43BB0A

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6F3EB64BFF8A1458B816DC016808F6D

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D45A00BB330CB7B58BE539522B7A83E3

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FC82430384D72C050BA13BE4F3758E9C

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E335F3BE6A3DF035FBBC4AB322D8CCC2

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3FC0A5D4BF3F77B529711C8A4B379B9A

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F5AB5C7B7934A3B51B8F6D35D9AA46A6

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3B1AFECD20371A05490C9BF90C9DF428

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EE5618B682608205AB2E65CDA92F72A8

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\30C488A283E5EAD5085EA9DB95F6FE12

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCBF995C12A483554A4EFEBB72B15406

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8C1FF3B2D7609FA579DB5A4C2632D1ED

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\87D16DE9EB647645F868A3B096ED7C22

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F32995DA3553CC95CA161115205CDBDD

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CF0B78573EB83055EB986F7859933F55

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C12DB0AAC47F3085C9C105DC579D9ACD

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C32BB373472ED7B5E8ED40549BCB0F57

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A4E028F9138E62A5F8F855CF34DF7EE5

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C6B210E159130AD5AAEBF87EA6A3BC66

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C9FB173EF69CA3655BD39673D7C19B26

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E2735D6FC103DEB5BAB10370A86019CA

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BB2A645E8D6D14759809C2891BFF5FF0

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2A4E85322880FF25B9B9218FC9010823

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EB9C344D26E02E454B9D85806EF02C91

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B801406D0D5DDDD56A88900F70AF647D

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\654AA8DCB6FF8A95394758965E9B4A22

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C20EB213C17FA985894279FA5CE8F12C

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CD6D61DECC9BF1C53B16C2CC3394A997

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\890E6267816908255AEA205847842242

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C36C4737DBEAFB85E964ABB0CF43288D

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BFECEAD53B749C75A9A318C7BF257774

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EDD07B072EF5C435AADDF9E1ECBEDEA2

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D61E3588E0B82365BB60B9FCDE1190D9

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9429BC1D410FA7D53A9DAA4FE24A79C2

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4613BCA4C22DB6E5998CAAF4310014EC

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\38E0938E8628E9453A217BF3E36924F4

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7A89ACA028B273A5EBECD8493DCAF9CA

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2EED435DA9F4F14559447455783BEBE6

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4C3C9D7CC92A0B15495F8D5DF1E528EC

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E8AC2BECD5817E9588BC376B3B1FDB06

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\31D59BB72EF94375E8FEEBF13F503C43

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7500A9DD47D8A3A57BCB70E6086D1CB2

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\404FA2085CC11A154A6FD02161923D7F

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B445A5610DC19995D89C63D3B45976C3

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\93B9BE19C28C40C5091812615FEFED27

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B6D099403DCBCFA5EAF6E4AC814EBE02

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1CBA636A62BEFE659B49AE22270CEA88

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9FD44E1FE321AEB5E88816307010E0AC

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED0C1516E1ACA0E569DD23BE8ECC2EB0

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5AEB630305E7CD52B87E385BC5D62C4

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0DFDE4BD344EF945CA5BC292B91012B8

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6359508944AE257B0438BF164170B8

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A362F2176302BC259BBD20714FA3969B

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C249D14BA2C3CE05496A8212D6D97FFE

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8F4114C245D85AD53BA0C20684437E90

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88111B6310FD9BE5BA530A2AF0B7AA8A

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9DAD2E6FE24B6525EBDFC146917C23F4

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D8B9C8F887B3601559AED3AE89F614FD

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\04C486FE563BB83519C53D59A8F0B0FB

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\52EB1EF26084E1051A0BDB5D40907DEF

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BEBD3E2499D508F52A71179F499972EC

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FFA398C039975B15A8DE282B0C496CF7

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\35FA7C6B5D5AB65539A167AB0F5B6D84

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D9F18D5048EBC8551A95456FCC0C03CB

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97F664691AEF351538EA8344CD8C9A40

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4E8DE1069DD703C5BA7C362924A5BA34

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9983AED225B99145B8835252DE215BCD

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\16EA1D35F77E37A57B199E88F489B4FD

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14A981DD3CE36F254AEF415D085892E7

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3913D3DBAA7B34C5E8D3C2384130D4A1

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\016FA8EFDFFD61550933C34DEF594B21

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\936D00F76D68B045EB0CD102A2AA8CE7

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CB55845F3A57EC55D817472764D0B1DC

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A9890295F2B41A754982B68286052116

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0DA140EE65E31B755872A9D47F0341BA

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\Program Files\KeePassXC\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\Program Files\KeePassXC\plugins\bearer\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\Program Files\KeePassXC\plugins\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\Program Files\KeePassXC\plugins\iconengines\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\Program Files\KeePassXC\plugins\imageformats\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\Program Files\KeePassXC\plugins\platforms\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\Program Files\KeePassXC\plugins\styles\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\Program Files\KeePassXC\share\docs\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\Program Files\KeePassXC\share\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\Program Files\KeePassXC\share\icons\application\256x256\apps\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\Program Files\KeePassXC\share\icons\application\256x256\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\Program Files\KeePassXC\share\icons\application\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\Program Files\KeePassXC\share\icons\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\Program Files\KeePassXC\share\translations\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\Program Files\KeePassXC\share\wordlists\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\Program Files\KeePassXC\ssl\certs\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\Program Files\KeePassXC\ssl\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\Windows\Installer\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePassXC\

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\KeePassXC.kdbx\shell\open

NULL

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\KeePassXC.kdbx\shell\open\command

NULL

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.kdbx

NULL

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.kdbx

Content Type

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\KeePassXC.kdbx

NULL

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\KeePassXC.kdbx\DefaultIcon

NULL

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run

KeePassXC

HKEY_CURRENT_USER\Software\KeePassXC

StartMenuShortcut

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

LocalPackage

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

AuthorizedCDFPrefix

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

Comments

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

Contact

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

DisplayVersion

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

HelpLink

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

HelpTelephone

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

InstallDate

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

InstallLocation

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

InstallSource

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

ModifyPath

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

NoModify

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

Publisher

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

Readme

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

Size

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

EstimatedSize

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

UninstallString

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

URLInfoAbout

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

URLUpdateInfo

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

VersionMajor

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

VersionMinor

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

WindowsInstaller

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

Version

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

Language

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

AuthorizedCDFPrefix

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

Comments

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

Contact

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

DisplayVersion

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

HelpLink

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

HelpTelephone

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

InstallDate

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

InstallLocation

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

InstallSource

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

ModifyPath

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

NoModify

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

Publisher

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

Readme

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

Size

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

EstimatedSize

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

UninstallString

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

URLInfoAbout

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

URLUpdateInfo

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

VersionMajor

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

VersionMinor

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

WindowsInstaller

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

Version

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

Language

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\27A58788EAE392F4983ECBB691ABA9B5

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\InstallProperties

DisplayName

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E86A6926-F1BD-42B8-BE36-12E8A3A052AC}

DisplayName

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\6296A68EDB1F8B24EB63218E3A0A25CA

ProductFeature

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\Features

ProductFeature

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6296A68EDB1F8B24EB63218E3A0A25CA\Patches

AllPatches

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\6296A68EDB1F8B24EB63218E3A0A25CA

ProductName

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\6296A68EDB1F8B24EB63218E3A0A25CA

PackageCode

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\6296A68EDB1F8B24EB63218E3A0A25CA

Language

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\6296A68EDB1F8B24EB63218E3A0A25CA

Version

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\6296A68EDB1F8B24EB63218E3A0A25CA

Assignment

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\6296A68EDB1F8B24EB63218E3A0A25CA

AdvertiseFlags

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\6296A68EDB1F8B24EB63218E3A0A25CA

ProductIcon

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\6296A68EDB1F8B24EB63218E3A0A25CA

InstanceType

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\6296A68EDB1F8B24EB63218E3A0A25CA

AuthorizedLUAApp

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\6296A68EDB1F8B24EB63218E3A0A25CA

DeploymentFlags

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\27A58788EAE392F4983ECBB691ABA9B5

6296A68EDB1F8B24EB63218E3A0A25CA

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\6296A68EDB1F8B24EB63218E3A0A25CA\SourceList

PackageName

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\6296A68EDB1F8B24EB63218E3A0A25CA\SourceList\Net

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\6296A68EDB1F8B24EB63218E3A0A25CA\SourceList\Media

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\6296A68EDB1F8B24EB63218E3A0A25CA

Clients

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\6296A68EDB1F8B24EB63218E3A0A25CA\SourceList

LastUsedSource

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\MUI\StringCacheSettings

StringCacheGeneration

HKEY_LOCAL_MACHINE\SYSTEM\Software\Microsoft\TIP\AggregateResults

data

There are 230 hidden registries, click here to show them.

Memdumps

Base Address

Regiontype

Protect

Malicious

Download

7FF957A69000

unkown

page read and write

7FF93CB60000

unkown

page readonly

7FF6AC861000

unkown

page execute read

7FF93C02D000

unkown

page read and write

192784A7000

heap

page read and write

7FF93CF19000

unkown

page readonly

7FF957AC4000

unkown

page readonly

7FF957ABD000

unkown

page readonly

1F401DF0000

heap

page read and write

7FF94405B000

unkown

page readonly

7FF93CB60000

unkown

page readonly

7FF93CB00000

unkown

page read and write

1DDB4C92000

heap

page read and write

7FF93C218000

unkown

page execute read

7FF956DC3000

unkown

page read and write

7FF950BD1000

unkown

page execute read

8332394000

stack

page read and write

7FF93CB04000

unkown

page write copy

7FF93D189000

unkown

page write copy

7FF6ACD4E000

unkown

page write copy

7FF943FE1000

unkown

page execute read

7FF9586B0000

unkown

page readonly

2CAF000

stack

page read and write

1DDB19D0000

heap

page read and write

7FF93F144000

unkown

page readonly

1927A010000

heap

page read and write

7FF93C02F000

unkown

page readonly

1DDB53A6000

heap

page read and write

7FF93C515000

unkown

page read and write

19278485000

heap

page read and write

7FF93D18E000

unkown

page read and write

7FF95DD5A000

unkown

page readonly

7FF9586B1000

unkown

page execute read

4C0000

heap

page read and write

7FF93CB04000

unkown

page write copy

7FF93D6B8000

unkown

page read and write

7FF956DB1000

unkown

page execute read

7FF943FE1000

unkown

page execute read

7FF93D189000

unkown

page write copy

7FF93D69F000

unkown

page read and write

1927A1D3000

heap

page read and write

7FF95DD57000

unkown

page readonly

7FF93BF30000

unkown

page readonly

7FF93D198000

unkown

page read and write

7FF93DBA2000

unkown

page write copy

7FF93D6BA000

unkown

page read and write

7FF957AC3000

unkown

page read and write

7FF93CB18000

unkown

page read and write

7FF6ACD5D000

unkown

page read and write

3231000

heap

page read and write

1DDB4CB5000

heap

page read and write

7FF93C550000

unkown

page readonly

7FF93DC11000

unkown

page execute read

7FF957E00000

unkown

page readonly

7FF94405B000

unkown

page readonly

7FF93BD70000

unkown

page readonly

7FF93CB25000

unkown

page write copy

7FF6AC860000

unkown

page readonly

1DDB19F1000

heap

page read and write

7FF93CB10000

unkown

page read and write

7FF93D698000

unkown

page write copy

1F403AE0000

heap

page read and write

7FF93DD58000

unkown

page write copy

7FF93D6A7000

unkown

page read and write

1927A1D0000

heap

page read and write

7FF93CB18000

unkown

page read and write

1F403920000

heap

page read and write

7FF93CB14000

unkown

page read and write

7FF95DD5A000

unkown

page readonly

7FF956DB0000

unkown

page readonly

7FF93D46B000

unkown

page readonly

1DDB4CA3000

heap

page read and write

1DDB4CB4000

heap

page read and write

7FF93D17E000

unkown

page write copy

7FF957E0E000

unkown

page readonly

345F000

unkown

page read and write

7FF93BFF2000

unkown

page readonly

7FF93CB00000

unkown

page read and write

7FF6ACD4B000

unkown

page read and write

7FF93C5D2000

unkown

page read and write

7FF93C041000

unkown

page execute read

1F401FDC000

heap

page read and write

7FF93BDA0000

unkown

page readonly

7FF93C5AC000

unkown

page readonly

192784A3000

heap

page read and write

7FF93C519000

unkown

page readonly

7FF944043000

unkown

page readonly

7FF6ACA86000

unkown

page readonly

1DDB4C92000

heap

page read and write

7FF93BA86000

unkown

page readonly

2B4E000

stack

page read and write

7FF93D184000

unkown

page write copy

7FF93DD9F000

unkown

page readonly

2BCE000

stack

page read and write

7FF93D6BC000

unkown

page read and write

2BE0000

heap

page read and write

1DDB4C8C000

heap

page read and write

7FF93D17F000

unkown

page read and write

3248000

heap

page read and write

7FF93C5D2000

unkown

page read and write

7FF6ACD57000

unkown

page write copy

3210000

heap

page read and write

7FF93C5D2000

unkown

page read and write

7FF93C0DB000

unkown

page read and write

7FF95DD50000

unkown

page readonly

7FF6ACD4E000

unkown

page write copy

7FF93C5AC000

unkown

page readonly

7FF93BD8B000

unkown

page readonly

7FF6AC860000

unkown

page readonly

1927A015000

heap

page read and write

7FF95D9C0000

unkown

page readonly

3255000

heap

page read and write

7FF6ACD3A000

unkown

page write copy

7FF950BDD000

unkown

page read and write

7FF957ABD000

unkown

page readonly

7FF956DC5000

unkown

page readonly

7FF93D696000

unkown

page read and write

7FF957A70000

unkown

page readonly

7FF957A71000

unkown

page execute read

7FF93DC10000

unkown

page readonly

1DDB4EC0000

trusted library allocation

page read and write

1F401F99000

heap

page read and write

192784AF000

heap

page read and write

2D1E000

heap

page read and write

7FF957AC3000

unkown

page read and write

1DDB1A3D000

heap

page read and write

7FF93C5D4000

unkown

page readonly

1F401FD4000

heap

page read and write

1DDB5311000

heap

page read and write

1F401FC9000

heap

page read and write

1DDB4650000

heap

page read and write

1DDB4C9A000

heap

page read and write

1DDB7951000

heap

page read and write

7FF93BE6B000

unkown

page write copy

7FF93C041000

unkown

page execute read

341E000

unkown

page read and write

7FF93DBDE000

unkown

page readonly

3248000

heap

page read and write

1DDB3553000

heap

page read and write

1DDB53FA000

heap

page read and write

7FF93D6A4000

unkown

page read and write

1DDB4CA3000

heap

page read and write

7FF6ACD50000

unkown

page read and write

1927849E000

heap

page read and write

84FA2FD000

stack

page read and write

7FF950BDD000

unkown

page read and write

7FF94405A000

unkown

page read and write

7FF93DD9F000

unkown

page readonly

7FF95D9CF000

unkown

page readonly

7FF957A95000

unkown

page readonly

1DDB4C9C000

heap

page read and write

7FF93C039000

unkown

page readonly

1DDB5535000

heap

page read and write

7FF93DD59000

unkown

page read and write

1F401FC9000

heap

page read and write

1DDB54CF000

heap

page read and write

7FF93D6A0000

unkown

page write copy

1927844D000

heap

page read and write

7FF957A61000

unkown

page execute read

2CF0000

heap

page read and write

7FF93C0F1000

unkown

page execute read

7FF93BD33000

unkown

page write copy

7FF93BE80000

unkown

page readonly

1DDB4C81000

heap

page read and write

19279E50000

heap

page read and write

1DDB52E5000

heap

page read and write

516F000

stack

page read and write

7FF93D6A8000

unkown

page write copy

7FF950BD1000

unkown

page execute read

7FF6ACD52000

unkown

page write copy

7FF93C93E000

unkown

page readonly

2A7E000

stack

page read and write

7FF956DB1000

unkown

page execute read

7FF93BDA0000

unkown

page readonly

19278478000

heap

page read and write

7FF93C02D000

unkown

page read and write

1DDB19D4000

heap

page read and write

1DDB4CB4000

heap

page read and write

7FF9586B1000

unkown

page execute read

1DDB4C88000

heap

page read and write

7FF93BE6C000

unkown

page read and write

1DDB4CB4000

heap

page read and write

7FF93D6B6000

unkown

page write copy

83328FE000

stack

page read and write

1DDB4C92000

heap

page read and write

BEB9FFE000

stack

page read and write

7FF93D19A000

unkown

page readonly

7FF95D9C1000

unkown

page execute read

7FF93C5CF000

unkown

page write copy

7FF93DBA1000

unkown

page read and write

1DDB52CC000

heap

page read and write

1DDB4CB5000

heap

page read and write

7FF93CB14000

unkown

page read and write

7FF93D1E0000

unkown

page readonly

7FF93DBA2000

unkown

page write copy

7FF93CB2D000

unkown

page readonly

1DDB4C9A000

heap

page read and write

1DDB5361000

heap

page read and write

2D38000

heap

page read and write

7FF93DBA1000

unkown

page read and write

1DDB3590000

heap

page read and write

19278478000

heap

page read and write

1F401F97000

heap

page read and write

7FF93CB00000

unkown

page read and write

7FF93D6B3000

unkown

page read and write

7FF95DD50000

unkown

page readonly

1DDB52C0000

heap

page read and write

7FF950BDA000

unkown

page readonly

3120000

heap

page read and write

1F401FD4000

heap

page read and write

7FF6ACD3A000

unkown

page write copy

7FF6ACD4B000

unkown

page read and write

7FF93B8A0000

unkown

page readonly

2D3C000

heap

page read and write

7FF93BFF2000

unkown

page readonly

1DDB4C93000

heap

page read and write

1DDB4CB4000

heap

page read and write

7FF9610C1000

unkown

page execute read

2D32000

heap

page read and write

3238000

heap

page read and write

7FF6ACD4B000

unkown

page read and write

7FF950BDA000

unkown

page readonly

7FF93BD3A000

unkown

page read and write

7FF93BDA1000

unkown

page execute read

7FF93DCEE000

unkown

page readonly

7FF93D46B000

unkown

page readonly

7FF93D6BE000

unkown

page readonly

1DDB532A000

heap

page read and write

7FF93C5E1000

unkown

page execute read

7FF957E00000

unkown

page readonly

1DDB4CA3000

heap

page read and write

7FF93BDA1000

unkown

page execute read

7FF93DD4E000

unkown

page read and write

1F401FCF000

heap

page read and write

7FF93D188000

unkown

page read and write

1DDB4C81000

heap

page read and write

1DDB4C92000

heap

page read and write

1DDB4CB5000

heap

page read and write

7FF95D9C0000

unkown

page readonly

7FF957A71000

unkown

page execute read

3248000

heap

page read and write

7FF93BD70000

unkown

page readonly

84F9F84000

stack

page read and write

3214000

heap

page read and write

7FF9586BE000

unkown

page readonly

7FF93BE6B000

unkown

page write copy

7FF93DBD4000

unkown

page read and write

1DDB4C9B000

heap

page read and write

1DDB4CA3000

heap

page read and write

7FF93CB15000

unkown

page write copy

7FF6AC860000

unkown

page readonly

1DDB4C9A000

heap

page read and write

1DDB4CB5000

heap

page read and write

7FF6AC861000

unkown

page execute read

7FF93C511000

unkown

page write copy

1DDB55A6000

heap

page read and write

19278260000

heap

page read and write

7FF9610C7000

unkown

page read and write

7FF93BD71000

unkown

page execute read

7FF6ACD50000

unkown

page read and write

7FF93BD25000

unkown

page write copy

2ABF000

stack

page read and write

7FF6ACD3A000

unkown

page write copy

7FF93BE68000

unkown

page read and write

7FF9610C8000

unkown

page readonly

7FF93D17E000

unkown

page write copy

7FF93C41E000

unkown

page readonly

1DDB4C81000

heap

page read and write

7FF93D6A6000

unkown

page write copy

7FF957AC4000

unkown

page readonly

7FF944036000

unkown

page readonly

7FF93BE80000

unkown

page readonly

7FF957E01000

unkown

page execute read

7FF6ACA86000

unkown

page readonly

7FF93F121000

unkown

page execute read

7FF93D187000

unkown

page write copy

7FF93CB1A000

unkown

page write copy

7FF956DC5000

unkown

page readonly

7FF93D198000

unkown

page read and write

7FF93D17F000

unkown

page read and write

7FF957AB1000

unkown

page execute read

7FF6ACD60000

unkown

page readonly

7FF93CB61000

unkown

page execute read

7FF957A95000

unkown

page readonly

7FF93DD58000

unkown

page write copy

7FF93BDA0000

unkown

page readonly

7FF93DBA2000

unkown

page write copy

1DDB4C9B000

heap

page read and write

7FF957A65000

unkown

page readonly

7FF93C040000

unkown

page readonly

19278484000

heap

page read and write

7FF9610C8000

unkown

page readonly

7FF6AC861000

unkown

page execute read

7FF93C039000

unkown

page readonly

7FF6ACD60000

unkown

page readonly

7FF93CF19000

unkown

page readonly

7FF93C93E000

unkown

page readonly

7FF93CB16000

unkown

page read and write

7FF93D185000

unkown

page read and write

7FF93CF19000

unkown

page readonly

7FF6AC861000

unkown

page execute read

7FF944043000

unkown

page readonly

1F403BDF000

direct allocation

page execute and read and write

1DDB54CB000

heap

page read and write

7FF94405A000

unkown

page read and write

3231000

heap

page read and write

1DDB4969000

heap

page read and write

7FF95DD51000

unkown

page execute read

1DDB4C88000

heap

page read and write

1DDB4C8C000

heap

page read and write

19278498000

heap

page read and write

309C000

stack

page read and write

7FF93CB61000

unkown

page execute read

7FF957E01000

unkown

page execute read

7FF9610C4000

unkown

page readonly

7FF93CB1C000

unkown

page read and write

1F401FF7000

heap

page read and write

7FF93F123000

unkown

page readonly

7FF93BEFA000

unkown

page readonly

7FF93DD70000

unkown

page readonly

192784A3000

heap

page read and write

7FF9586B1000

unkown

page execute read

192784A6000

heap

page read and write

7FF93D184000

unkown

page write copy

2AF0000

heap

page read and write

7FF93D17E000

unkown

page write copy

7FF93D6B8000

unkown

page read and write

2D3C000

heap

page read and write

522E000

stack

page read and write

7FF956DC0000

unkown

page readonly

7FF93DD71000

unkown

page execute read

7FF956DC5000

unkown

page readonly

2D29000

heap

page read and write

7FF93CB2D000

unkown

page readonly

7FF6ACD55000

unkown

page read and write

52AE000

stack

page read and write

7FF6AC860000

unkown

page readonly

7FF93C218000

unkown

page execute read

7FF6ACA86000

unkown

page readonly

1DDB4CB4000

heap

page read and write

1F401FF8000

heap

page read and write

7FF93DD71000

unkown

page execute read

2D42000

heap

page read and write

7FF93C93E000

unkown

page readonly

2D18000

heap

page read and write

7FF956DC0000

unkown

page readonly

7FF95D9C0000

unkown

page readonly

7FF93CB0A000

unkown

page read and write

1DDB5659000

heap

page read and write

27FE000

unkown

page read and write

1F403955000

heap

page read and write

2D2B000

heap

page read and write

7FF957AA0000

unkown

page readonly

7FF94405A000

unkown

page read and write

7FF950BDE000

unkown

page readonly

7FF950BDE000

unkown

page readonly

7FF93C519000

unkown

page readonly

7FF95DD5A000

unkown

page readonly

2CF4000

heap

page read and write

7FF93CB60000

unkown

page readonly

7FF93BE70000

unkown

page readonly

1DDB4CB5000

heap

page read and write

7FF957E0E000

unkown

page readonly

1DDB4C9A000

heap

page read and write

7FF93CB0A000

unkown

page read and write

1DDB5560000

heap

page read and write

7FF93BF23000

unkown

page readonly

7FF93BD96000

unkown

page read and write

7FF93D741000

unkown

page execute read

7FF9586BE000

unkown

page readonly

7FF6ACD60000

unkown

page readonly

7FF9586BE000

unkown

page readonly

7FF93D69F000

unkown

page read and write

7FF93C519000

unkown

page readonly

1DDB4C9A000

heap

page read and write

1DDB4C9A000

heap

page read and write

7FF6ACD52000

unkown

page write copy

7FF93DBDE000

unkown

page readonly

19278486000

heap

page read and write

322A000

heap

page read and write

7FF956DB0000

unkown

page readonly

7FF93D172000

unkown

page read and write

7FF93BD4A000

unkown

page readonly

1DDB4CB4000

heap

page read and write

84FA4FE000

stack

page read and write

7FF93D6BE000

unkown

page readonly

1927845E000

heap

page read and write

7FF93CB61000

unkown

page execute read

7FF93DD59000

unkown

page read and write

2D0A000

heap

page read and write

7FF93DDBD000

unkown

page readonly

1F401FF0000

heap

page read and write

7FF93C040000

unkown

page readonly

7FF93F121000

unkown

page execute read

7FF93C41E000

unkown

page readonly

7FF93D6A6000

unkown

page write copy

7FF957AC4000

unkown

page readonly

7FF93BE70000

unkown

page readonly

7FF93F121000

unkown

page execute read

7FF93CB14000

unkown

page read and write

7FF6ACD5D000

unkown

page read and write

7FF93C02F000

unkown

page readonly

7FF93C0DC000

unkown

page readonly

7FF93CB0D000

unkown

page write copy

7FF95D9CF000

unkown

page readonly

34BE000

stack

page read and write

7FF93BD8B000

unkown

page readonly

7FF93CB10000

unkown

page read and write

7FF93DC10000

unkown

page readonly

7FF93BD24000

unkown

page read and write

7FF93D740000

unkown

page readonly

7FF93BD3F000

unkown

page read and write

7FF93DD5B000

unkown

page readonly

7FF93DCEE000

unkown

page readonly

1DDB4C9C000

heap

page read and write

7FF93BD71000

unkown

page execute read

7FF93C0CA000

unkown

page readonly

7FF93F120000

unkown

page readonly

2D33000

heap

page read and write

1DDB4670000

heap

page read and write

7FF93BF23000

unkown

page readonly

1DDB5395000

heap

page read and write

7FF943FE0000

unkown

page readonly

7FF93BE81000

unkown

page execute read

2C6E000

stack

page read and write

7FF9586BD000

unkown

page read and write

1DDB5666000

heap

page read and write

7FF957E0A000

unkown

page readonly

7FF9610C7000

unkown

page read and write

7FF6ACD52000

unkown

page write copy

1DDB4C9A000

heap

page read and write

19278434000

heap

page read and write

1927A0FF000

direct allocation

page execute and read and write

2D3C000

heap

page read and write

1DDB4C9A000

heap

page read and write

2DF0000

heap

page read and write

1DDB4C80000

heap

page read and write

7FF95D9D7000

unkown

page readonly

7FF93C5D4000

unkown

page readonly

7FF93BD96000

unkown

page read and write

3190000

heap

page read and write

7FF93C040000

unkown

page readonly

19278448000

heap

page read and write

1DDB495C000

heap

page read and write

7FF950BD1000

unkown

page execute read

1F401FFB000

heap

page read and write

7FF93C511000

unkown

page write copy

7FF93D6A6000

unkown

page write copy

7FF93D6B6000

unkown

page write copy

7FF957AB0000

unkown

page readonly

7FF9610C0000

unkown

page readonly

7FF957E0A000

unkown

page readonly

1DDB4C70000

heap

page read and write

1DDB4C9A000

heap

page read and write

7FF95D9D7000

unkown

page readonly

7FF9586B0000

unkown

page readonly

7FF956DB0000

unkown

page readonly

BEB9DFE000

stack

page read and write

1F404AA0000

heap

page read and write

3248000

heap

page read and write

7FF9586B9000

unkown

page readonly

7FF93CB16000

unkown

page read and write

7FF6ACD50000

unkown

page read and write

7FF93C5CF000

unkown

page write copy

7FF957AC3000

unkown

page read and write

7FF956DB1000

unkown

page execute read

1DDB4CB4000

heap

page read and write

1DDB4CB4000

heap

page read and write

1DDB4CA3000

heap

page read and write

7FF9610C7000

unkown

page read and write

7FF93BEFA000

unkown

page readonly

7FF957A6A000

unkown

page readonly

7FF93C02D000

unkown

page read and write

7FF950BDD000

unkown

page read and write

1DDB4C8C000

heap

page read and write

7FF93DD4E000

unkown

page read and write

7FF93F144000

unkown

page readonly

1DDB55E3000

heap

page read and write

2D2B000

heap

page read and write

1DDB4CB5000

heap

page read and write

1DDB5494000

heap

page read and write

7FF93DDBD000

unkown

page readonly

1DDB52BE000

heap

page read and write

1DDB4CAF000

heap

page read and write

7FF93C0DB000

unkown

page read and write

7FF93BDA1000

unkown

page execute read

7FF93CB17000

unkown

page write copy

7FF93C5E0000

unkown

page readonly

1DDB4C94000

heap

page read and write

1F401FFB000

heap

page read and write

7FF93CB2D000

unkown

page readonly

7FF957E00000

unkown

page readonly

7FF956DC3000

unkown

page read and write

1DDB4C9A000

heap

page read and write

7FF6ACA86000

unkown

page readonly

1F401F80000

heap

page read and write

1DDB5441000

heap

page read and write

1DDB4C92000

heap

page read and write

7FF9610C8000

unkown

page readonly

7FF9610C1000

unkown

page execute read

7FF93BE70000

unkown

page readonly

5F0000

heap

page read and write

7FF95DD51000

unkown

page execute read

7FF95D9C1000

unkown

page execute read

7FF6ACD4E000

unkown

page write copy

7FF95D9D7000

unkown

page readonly

52C000

stack

page read and write

192784A6000

heap

page read and write

2A3F000

unkown

page read and write

7FF93D6A2000

unkown

page write copy

1DDB5382000

heap

page read and write

7FF93BF23000

unkown

page readonly

1DDB4674000

heap

page read and write

7FF93D696000

unkown

page read and write

7FF93C551000

unkown

page execute read

1F401FF7000

heap

page read and write

2BE4000

heap

page read and write

19278447000

heap

page read and write

7FF957AB1000

unkown

page execute read

51AE000

stack

page read and write

7FF93D187000

unkown

page write copy

7FF93C0F0000

unkown

page readonly

7FF93BF30000

unkown

page readonly

7FF9610C4000

unkown

page readonly

7FF93CB04000

unkown

page write copy

7FF93DC10000

unkown

page readonly

19278497000

heap

page read and write

7FF6ACD3A000

unkown

page write copy

7FF93CB0A000

unkown

page read and write

7FF93CB17000

unkown

page write copy

7FF93BE27000

unkown

page readonly

7FF93C515000

unkown

page read and write

7FF93BF31000

unkown

page execute read

BEB9BFE000

stack

page read and write

7FF93CB18000

unkown

page read and write

7FF93D69F000

unkown

page read and write

7FF6ACD3A000

unkown

page write copy

1DDB7930000

heap

page read and write

1F401FD7000

heap

page read and write

7FF93BF31000

unkown

page execute read

7FF93D1E1000

unkown

page execute read

7FF957A70000

unkown

page readonly

7FF957AB1000

unkown

page execute read

19278320000

heap

page read and write

7FF93CB1C000

unkown

page read and write

83327FD000

stack

page read and write

7FF93C02F000

unkown

page readonly

7FF93CB0D000

unkown

page write copy

7FF93C550000

unkown

page readonly

7FF93C041000

unkown

page execute read

1DDB532F000

heap

page read and write

7FF93C039000

unkown

page readonly

1DDB4EA2000

trusted library allocation

page read and write

7FF957AA0000

unkown

page readonly

1F401FC2000

heap

page read and write

7FF93BE6C000

unkown

page read and write

1DDB4770000

heap

page read and write

7FF93D18E000

unkown

page read and write

322E000

heap

page read and write

7FF9610C4000

unkown

page readonly

7FF93CB25000

unkown

page write copy

2D2B000

heap

page read and write

7FF93D184000

unkown

page write copy

1F401F84000

heap

page read and write

7FF93D741000

unkown

page execute read

83329FE000

stack

page read and write

2D1E000

heap

page read and write

7FF6ACD55000

unkown

page read and write

7FF93CB12000

unkown

page write copy

7FF9610C1000

unkown

page execute read

7FF93D6BC000

unkown

page read and write

7FF944036000

unkown

page readonly

7FF93D185000

unkown

page read and write

7FF93C0DC000

unkown

page readonly

56C000

stack

page read and write

7FF93CB2B000

unkown

page read and write

2D0E000

heap

page read and write

192784AA000

heap

page read and write

7FF93CB15000

unkown

page write copy

7FF93C5E0000

unkown

page readonly

7FF6AC861000

unkown

page execute read

7FF93D741000

unkown

page execute read

192784AA000

heap

page read and write

7FF93D6A1000

unkown

page read and write

7FF6ACD3A000

unkown

page write copy

2C2F000

stack

page read and write

1927849C000

heap

page read and write

7FF93D698000

unkown

page write copy

7FF93DBD4000

unkown

page read and write

7FF6AC860000

unkown

page readonly

7FF93D185000

unkown

page read and write

1DDB5662000

heap

page read and write

7FF93BD30000

unkown

page read and write

7FF6ACD55000

unkown

page read and write

7FF93DDBD000

unkown

page readonly

1DDB1A25000

heap

page read and write

7FF93BE80000

unkown

page readonly

7FF93C515000

unkown

page read and write

7FF93DC11000

unkown

page execute read

1F401FDB000

heap

page read and write

192784AF000

heap

page read and write

7FF93C5E1000

unkown

page execute read

7FF93F123000

unkown

page readonly

7FF93C0F0000

unkown

page readonly

7FF957A95000

unkown

page readonly

3258000

heap

page read and write

7FF6ACD60000

unkown

page readonly

7FF93DD59000

unkown

page read and write

7FF93C5AC000

unkown

page readonly

7FF93D19A000

unkown

page readonly

7FF93BD3C000

unkown

page write copy

7FF93CB15000

unkown

page write copy

BEB9CFF000

stack

page read and write

7FF93CB2B000

unkown

page read and write

52EF000

stack

page read and write

7FF93BE6B000

unkown

page write copy

7FF93D17F000

unkown

page read and write

2D3D000

heap

page read and write

1DDB4C9C000

heap

page read and write

7FF93CB1A000

unkown

page write copy

7FF95DD51000

unkown

page execute read

1F403950000

heap

page read and write

7FF93F120000

unkown

page readonly

7FF957E0A000

unkown

page readonly

1DDB46C0000

heap

page read and write

1DDB52D1000

heap

page read and write

1DDB19A0000

heap

page read and write

7FF93C551000

unkown

page execute read

7FF93CB17000

unkown

page write copy

3237000

heap

page read and write

7FF93BD47000

unkown

page read and write

1DDB4C92000

heap

page read and write

2D1E000

heap

page read and write

1DDB4C82000

heap

page read and write

7FF944036000

unkown

page readonly

7FF93BD71000

unkown

page execute read

7FF93BE6C000

unkown

page read and write

1927849E000

heap

page read and write

7FF93C0CA000

unkown

page readonly

7FF93D188000

unkown

page read and write

7FF93D740000

unkown

page readonly

1DDB4C9B000

heap

page read and write

7FF6ACA86000

unkown

page readonly

7FF93BF30000

unkown

page readonly

1DDB6F50000

trusted library allocation

page read and write

7FF93D1E1000

unkown

page execute read

7FF93D1E0000

unkown

page readonly

7FF957AB0000

unkown

page readonly

7FF93BE27000

unkown

page readonly

7FF93BEFA000

unkown

page readonly

7FF95DD50000

unkown

page readonly

526F000

stack

page read and write

7FF93BF31000

unkown

page execute read

7FF93C5E1000

unkown

page execute read

7FF93D6BC000

unkown

page read and write

7FF93DDBB000

unkown

page read and write

1DDB4C8F000

heap

page read and write

7FF93F123000

unkown

page readonly

7FF93C0F0000

unkown

page readonly

2D19000

heap

page read and write

1DDB1A27000

heap

page read and write

84FA3FE000

stack

page read and write

1DDB18E0000

heap

page read and write

7FF93BD97000

unkown

page readonly

7FF93DA60000

unkown

page readonly

1F401FD4000

heap

page read and write

7FF93BFF2000

unkown

page readonly

3259000

heap

page read and write

7FF93D6A7000

unkown

page read and write

7FF93DD58000

unkown

page write copy

1DDB4C88000

heap

page read and write

7FF93DD70000

unkown

page readonly

1DDB4CA3000

heap

page read and write

1DDB4CB4000

heap

page read and write

7FF95DD57000

unkown

page readonly

7FF957E01000

unkown

page execute read

1DDB4CB4000

heap

page read and write

19278472000

heap

page read and write

7FF6ACD60000

unkown

page readonly

7FF93DD9F000

unkown

page readonly

322A000

heap

page read and write

7FF93D740000

unkown

page readonly

7FF93D6B3000

unkown

page read and write

7FF93D6A7000

unkown

page read and write

7FF93D172000

unkown

page read and write

BEB9AFE000

stack

page read and write

7FF93BD8B000

unkown

page readonly

7FF93BE81000

unkown

page execute read

7FF93DD5B000

unkown

page readonly

7FF93D172000

unkown

page read and write

1DDB3550000

heap

page read and write

BEB96E5000

stack

page read and write

1927848D000

heap

page read and write

7FF9610C0000

unkown

page readonly

7FF957A70000

unkown

page readonly

1DDB34D0000

heap

page read and write

1DDB1A4C000

heap

page read and write

2D2B000

heap

page read and write

1DDB5280000

heap

page read and write

1DDB4C9A000

heap

page read and write

1DDB5605000

heap

page read and write

305C000

stack

page read and write

7FF93D19A000

unkown

page readonly

7FF956DC0000

unkown

page readonly

7FF93DD70000

unkown

page readonly

7FF93DD4E000

unkown

page read and write

7FF93C218000

unkown

page execute read

7FF93C0F1000

unkown

page execute read

7FF93DA60000

unkown

page readonly

7FF93D6A8000

unkown

page write copy

7FF93C0DB000

unkown

page read and write

7FF9586B9000

unkown

page readonly

1DDB5394000

heap

page read and write

7FF93C41E000

unkown

page readonly

1F401D30000

heap

page read and write

7FF93D187000

unkown

page write copy

7FF93DA60000

unkown

page readonly

1DDB4C91000

heap

page read and write

3170000

heap

page read and write

1927848B000

heap

page read and write

3194000

heap

page read and write

7FF93BD96000

unkown

page read and write

7FF93BE68000

unkown

page read and write

7FF93D6BA000

unkown

page read and write

7FF93DBD4000

unkown

page read and write

7FF93CB0D000

unkown

page write copy

1DDB4791000

heap

page read and write

7FF93D6A4000

unkown

page read and write

7FF93DD71000

unkown

page execute read

1F401FF0000

heap

page read and write

7FF93C551000

unkown

page execute read

7FF93D6A8000

unkown

page write copy

7FF950BD0000

unkown

page readonly

1DDB4C8C000

heap

page read and write

7FF93CB1A000

unkown

page write copy

1DDB496C000

heap

page read and write

1DDB378C000

direct allocation

page execute and read and write

7FF93D696000

unkown

page read and write

2660000

heap

page read and write

7FF93C5D4000

unkown

page readonly

7FF6AC860000

unkown

page readonly

7FF93BE68000

unkown

page read and write

1F401FF0000

heap

page read and write

7FF93DC11000

unkown

page execute read

2D0E000

heap

page read and write

7FF93C0DC000

unkown

page readonly

7FF93F144000

unkown

page readonly

7FF6ACD57000

unkown

page write copy

7FF943FE1000

unkown

page execute read

7FF93D6A2000

unkown

page write copy

7FF957ABD000

unkown

page readonly

7FF95D9CF000

unkown

page readonly

7FF956DC3000

unkown

page read and write

7FF6ACA86000

unkown

page readonly

1927845E000

heap

page read and write

7FF93D1E0000

unkown

page readonly

7FF93D198000

unkown

page read and write

2D1E000

heap

page read and write

7FF950BD0000

unkown

page readonly

7FF9586B9000

unkown

page readonly

7FF93C511000

unkown

page write copy

1DDB4CB5000

heap

page read and write

7FF957AA0000

unkown

page readonly

7FF9586BD000

unkown

page read and write

7FF957E0E000

unkown

page readonly

7FF93BD70000

unkown

page readonly

7FF9610C0000

unkown

page readonly

7FF93CB12000

unkown

page write copy

1DDB4C9A000

heap

page read and write

7FF93DBA1000

unkown

page read and write

7FF93D6B8000

unkown

page read and write

7FF95D9C1000

unkown

page execute read

7FF93C0CA000

unkown

page readonly

1927848B000

heap

page read and write

7FF93C5CF000

unkown

page write copy

7FF950BDE000

unkown

page readonly

83326FD000

stack

page read and write

7FF93BE27000

unkown

page readonly

7FF950BDA000

unkown

page readonly

2D0A000

heap

page read and write

7FF93DD5B000

unkown

page readonly

1DDB4CB4000

heap

page read and write

7FF9586B0000

unkown

page readonly

7FF9586BD000

unkown

page read and write

7FF957A71000

unkown

page execute read

7FF6ACD57000

unkown

page write copy

7FF93DDBB000

unkown

page read and write

1F401FF0000

heap

page read and write

1927A130000

heap

page read and write

7FF93CB10000

unkown

page read and write

7FF93D18E000

unkown

page read and write

7FF944043000

unkown

page readonly

1DDB3595000

heap

page read and write

7FF93DDBB000

unkown

page read and write

2D2B000

heap

page read and write

7FF93D6B6000

unkown

page write copy

7FF93D6A4000

unkown

page read and write

7FF94405B000

unkown

page readonly

1DDB4CA3000

heap

page read and write

1DDB4893000

heap

page read and write

7FF93DCEE000

unkown

page readonly

1F403AE3000

heap

page read and write

7FF93D6B3000

unkown

page read and write

7FF93CB12000

unkown

page write copy

7FF93C5E0000

unkown

page readonly

7FF93BD97000

unkown

page readonly

19278430000

heap

page read and write

7FF943FE0000

unkown

page readonly

1DDB4CB4000

heap

page read and write

7FF943FE0000

unkown

page readonly

51EF000

stack

page read and write

7FF93F120000

unkown

page readonly

7FF93CB16000

unkown

page read and write

1DDB4C8E000

heap

page read and write

7FF957AB0000

unkown

page readonly

7FF93C0F1000

unkown

page execute read

7FF93CB2B000

unkown

page read and write

19278473000

heap

page read and write

7FF6ACD5D000

unkown

page read and write

7FF93BD97000

unkown

page readonly

7FF93CB25000

unkown

page write copy

1DDB4CB5000

heap

page read and write

34F0000

heap

page read and write

7FF93D6BE000

unkown

page readonly

1DDB4C9A000

heap

page read and write

2B8F000

stack

page read and write

7FF93D188000

unkown

page read and write

7FF93B8A1000

unkown

page execute read

3231000

heap

page read and write

1DDB55A8000

heap

page read and write

7FF6ACD60000

unkown

page readonly

192784A3000

heap

page read and write

1DDB4CB1000

heap

page read and write

1DDB4C9A000

heap

page read and write

7FF93D46B000

unkown

page readonly

7FF93D6A2000

unkown

page write copy

1927849E000

heap

page read and write

7FF93C550000

unkown

page readonly

7FF93DBDE000

unkown

page readonly

7FF6AC861000

unkown

page execute read

7FF93D189000

unkown

page write copy

1927844E000

heap

page read and write

7FF950BD0000

unkown

page readonly

7FF93D1E1000

unkown

page execute read

3258000

heap

page read and write

1F401FFB000

heap

page read and write

7FF95DD57000

unkown

page readonly

1DDB4C9A000

heap

page read and write

7FF93BE81000

unkown

page execute read

BEB9EFF000

stack

page read and write

7FF93BD41000

unkown

page write copy

7FF93D698000

unkown

page write copy

7FF93CB1C000

unkown

page read and write

7FF957A60000

unkown

page readonly

1F401FC3000

heap

page read and write

There are 845 hidden memdumps, click here to show them.

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

IOC Report
KeePassXC-2.7.10-Win64.msi

Files

Processes

URLs

Domains

Registry

Memdumps

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

IOC ReportKeePassXC-2.7.10-Win64.msi

Files

Processes

URLs

Domains

Registry

Memdumps

IOC Report
KeePassXC-2.7.10-Win64.msi