Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
camphoto_1144747756.mp4
|
ISO Media, HEIF Image HEVC Main or Main Still Picture Profile
|
initial sample
|
||
|
C:\Users\user\AppData\Local\Microsoft\Media Player\Art Cache\LocalMLS\{0879FDF1-3C18-4895-B405-9D2102018F3D}.jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 200x200, components
3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Media Player\Art Cache\LocalMLS\{24E563B7-38E3-45A3-91E3-C6DAE51EA1CD}.jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 200x200, components
3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Media Player\CurrentDatabase_372.wmdb
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Media Player\Sync Playlists\en-US\000064AB\01_Music_auto_rated_at_5_stars.wpl
|
HTML document, ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Media Player\Sync Playlists\en-US\000064AB\02_Music_added_in_the_last_month.wpl
|
HTML document, ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Media Player\Sync Playlists\en-US\000064AB\03_Music_rated_at_4_or_5_stars.wpl
|
HTML document, ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Media Player\Sync Playlists\en-US\000064AB\04_Music_played_in_the_last_month.wpl
|
HTML document, ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Media Player\Sync Playlists\en-US\000064AB\05_Pictures_taken_in_the_last_month.wpl
|
HTML document, ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Media Player\Sync Playlists\en-US\000064AB\06_Pictures_rated_4_or_5_stars.wpl
|
HTML document, ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Media Player\Sync Playlists\en-US\000064AB\07_TV_recorded_in_the_last_week.wpl
|
HTML document, ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Media Player\Sync Playlists\en-US\000064AB\08_Video_rated_at_4_or_5_stars.wpl
|
HTML document, ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Media Player\Sync Playlists\en-US\000064AB\09_Music_played_the_most.wpl
|
HTML document, ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Media Player\Sync Playlists\en-US\000064AB\10_All_Music.wpl
|
HTML document, ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Media Player\Sync Playlists\en-US\000064AB\11_All_Pictures.wpl
|
HTML document, ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Media Player\Sync Playlists\en-US\000064AB\12_All_Video.wpl
|
HTML document, ASCII text, with CRLF line terminators
|
modified
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\74d7f43c1561fc1e.customDestinations-ms (copy)
|
Matlab v4 mat-file (little endian) \253\373\277\272\002, sparse, rows 2, columns 0, imaginary
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\PC1JEWHXE4X3LXR54OYW.temp
|
Matlab v4 mat-file (little endian) \253\373\277\272\002, sparse, rows 2, columns 0, imaginary
|
dropped
|
||
|
C:\Users\Public\Music\Sample Music\AlbumArtSmall.jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 75x75, components
3
|
dropped
|
||
|
C:\Users\Public\Music\Sample Music\AlbumArt_{5FA05D35-A682-4AF6-96F7-0773E42D4D16}_Large.jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 200x200, components
3
|
dropped
|
||
|
C:\Users\Public\Music\Sample Music\AlbumArt_{5FA05D35-A682-4AF6-96F7-0773E42D4D16}_Small.jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 75x75, components
3
|
dropped
|
||
|
C:\Users\Public\Music\Sample Music\Folder.jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 200x200, components
3
|
dropped
|
||
|
C:\Windows\Temp\SDIAG_57d12060-20b6-45ab-a73b-de5201e22bf7\DiagPackage.diagpkg
|
HTML document, ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Windows\Temp\SDIAG_57d12060-20b6-45ab-a73b-de5201e22bf7\DiagPackage.dll
|
PE32+ executable (DLL) (console) x86-64, for MS Windows
|
dropped
|
||
|
C:\Windows\Temp\SDIAG_57d12060-20b6-45ab-a73b-de5201e22bf7\RS_MediaLibCorrupted.ps1
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
|
C:\Windows\Temp\SDIAG_57d12060-20b6-45ab-a73b-de5201e22bf7\TS_IsWMPUnavailable.ps1
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
|
C:\Windows\Temp\SDIAG_57d12060-20b6-45ab-a73b-de5201e22bf7\TS_WindowsMediaPlayer.ps1
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
|
C:\Windows\Temp\SDIAG_57d12060-20b6-45ab-a73b-de5201e22bf7\en-US\CL_LocalizationData.psd1
|
Unicode text, UTF-16, little-endian text, with CRLF line terminators
|
dropped
|
||
|
C:\Windows\Temp\SDIAG_57d12060-20b6-45ab-a73b-de5201e22bf7\en-US\DiagPackage.dll.mui
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Windows\Temp\SDIAG_57d12060-20b6-45ab-a73b-de5201e22bf7\result\results.xsl
|
XML 1.0 document, ASCII text, with CRLF line terminators
|
dropped
|
There are 20 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
|
"C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /prefetch:6 /Open "C:\Users\user\Desktop\camphoto_1144747756.mp4"
|
||
|
C:\Windows\SysWOW64\msdt.exe
|
"C:\Windows\System32\msdt.exe" -id WindowsMediaPlayerLibraryDiagnostic
|
||
|
C:\Windows\SysWOW64\msdt.exe
|
"C:\Windows\System32\msdt.exe" -id WindowsMediaPlayerLibraryDiagnostic
|
||
|
C:\Windows\SysWOW64\msdt.exe
|
"C:\Windows\System32\msdt.exe" -id WindowsMediaPlayerLibraryDiagnostic
|
||
|
C:\Windows\SysWOW64\msdt.exe
|
"C:\Windows\System32\msdt.exe" -id WindowsMediaPlayerLibraryDiagnostic
|
||
|
C:\Windows\SysWOW64\msdt.exe
|
"C:\Windows\System32\msdt.exe" -id WindowsMediaPlayerLibraryDiagnostic
|
||
|
C:\Windows\SysWOW64\msdt.exe
|
"C:\Windows\System32\msdt.exe" -id WindowsMediaPlayerLibraryDiagnostic
|
||
|
C:\Windows\SysWOW64\msdt.exe
|
"C:\Windows\System32\msdt.exe" -id WindowsMediaPlayerLibraryDiagnostic
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://pro.corbis.com/search/searchresults.asp?txt=42-15564978&openImage=42-15564978:li
|
unknown
|
||
|
http://crl.pkioverheid.nl/DomOrganisatieLatestCRL-G2.crl0
|
unknown
|
||
|
http://crl.pkioverheid.nl/DomOvLatestCRL.crl0
|
unknown
|
||
|
http://www.diginotar.nl/cps/pkioverheid0
|
unknown
|
||
|
http://crl.entrust.net/server1.crl0
|
unknown
|
||
|
http://pro.corbis.com/search/searchresults.asp?txt=42-17167222&openImage=42-171672228BIM
|
unknown
|
||
|
http://ocsp.entrust.net0D
|
unknown
|
||
|
http://pro.corbis.com/search/searchresults.asp?txt=42-17066732&openImage=42-17066732XRe
|
unknown
|
||
|
http://ocsp.entrust.net03
|
unknown
|
||
|
https://secure.comodo.com/CPS0
|
unknown
|
||
|
http://crl.entrust.net/2048ca.crl0
|
unknown
|
There are 1 hidden URLs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
Migrating
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
LaunchIndex
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
SQMLaunchIndex
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Player\Skins
|
LastViewModeVTen
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
AppColorLimited
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\ActiveMovie\devenum
|
Version
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\ActiveMovie\devenum\{4EFE2452-168A-11D1-BC76-00C04FB9453B}\Default MidiOut Device
|
FriendlyName
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\ActiveMovie\devenum\{4EFE2452-168A-11D1-BC76-00C04FB9453B}\Default MidiOut Device
|
CLSID
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\ActiveMovie\devenum\{4EFE2452-168A-11D1-BC76-00C04FB9453B}\Default MidiOut Device
|
FilterData
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\ActiveMovie\devenum\{4EFE2452-168A-11D1-BC76-00C04FB9453B}\Default MidiOut Device
|
MidiOutId
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\ActiveMovie\devenum\{E0F158E1-CB04-11D0-BD4E-00A0C911CE86}\Default DirectSound Device
|
FriendlyName
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\ActiveMovie\devenum\{E0F158E1-CB04-11D0-BD4E-00A0C911CE86}\Default DirectSound Device
|
CLSID
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\ActiveMovie\devenum\{E0F158E1-CB04-11D0-BD4E-00A0C911CE86}\Default DirectSound Device
|
FilterData
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\ActiveMovie\devenum\{E0F158E1-CB04-11D0-BD4E-00A0C911CE86}\Default DirectSound Device
|
DSGuid
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Multimedia\ActiveMovie\Filter Cache
|
0
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Player\Skins\res://wmploc/RT_TEXT/player.wsz
|
Prefs
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MPEG2Demultiplexer
|
StreamType
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MPEG2Demultiplexer
|
WriteCapture
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MPEG2Demultiplexer
|
WriteCaptureDir
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MPEG2Demultiplexer
|
WriteCapturePath
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
TranscodedFilesCacheSize
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
TranscodedFilesCacheDefaultSizeSet
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Setup
|
UpdateTimeStamp
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
LastLicenseRefresh
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MostRecentFileAddOrRemove
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
LibraryHasBeenPopulated
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Cached
|
{A38B883C-1682-497E-97B0-0A3A9E801682} {886D8EEB-8CF2-4446-8D02-CDBA1DBDCF99} 0xFFFF
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Cached
|
{E37A73F8-FB01-43DC-914E-AAEE76095AB9} {886D8EEB-8CF2-4446-8D02-CDBA1DBDCF99} 0xFFFF
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\SBE\SAL
|
ShadowFileMaxClients
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\SBE\SAL
|
SwagBitsPerSecond
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\SBE\SAL
|
FileDiscontinuitiesPerSecond
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\SBE\SAL
|
FileGrowthQuantumSeconds
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\SBE\SAL
|
FileInlineGrowthQuantumSeconds
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\SBE\SAL
|
FileGrowthBudgetMs
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\SBE\SAL
|
LogInitialPageCount
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\SBE\SAL
|
LogMinJobWaitTimeMs
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\SBE\SAL
|
LogMaxJobDemoteTimeMs
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\SBE\SAL
|
CommitMaxCheckPointPageCount
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\SBE\SAL
|
CommitMaxCheckPoitnRateMs
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\SBE\SAL
|
CacheLongPageCount
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\SBE\SAL
|
CacheShortPageCount
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\SBE\SAL
|
CacheHashTableSize
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\SBE\SAL
|
CacheWaitForSize
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\SBE\SAL
|
NvpRecCount
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\SBE\SAL
|
NvpClientsCount
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\SBE\SAL
|
NvpRecWaitForCounts
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\SBE\SAL
|
CriticalLowDiskSpace
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Cached
|
{AEB16279-B750-48F1-8586-97956060175A} {886D8EEB-8CF2-4446-8D02-CDBA1DBDCF99} 0xFFFF
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Direct3D\MostRecentApplication
|
Name
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Player\Skins\res://wmploc/RT_TEXT/player.wsz
|
Prefs
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
AutoMetadataLastResetTime
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MLSChangeIndexList
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MLSChangeIndexMusic
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MLSChangeIndexList
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
|
SavedLegacySettings
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MLSChangeIndexMusic
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
AutoMetadataCurrentDownloadCount
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\MIME\Database\Content Type\application/x-wmplayer
|
CLSID
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MostRecentFileAddOrRemove
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MLSChangeIndexList
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MLSChangeIndexList
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MLSChangeIndexMusic
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MostRecentFileAddOrRemove
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MLSChangeIndexMusic
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Windows Media\WMSDK\General
|
UniqueID
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Windows Media\WMSDK\General
|
ComputerName
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Windows Media\WMSDK\General
|
VolumeSerialNumber
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
AutoMetadataCurrentDownloadCount
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
AutoMetadataCurrentDownloadCount
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
AutoMetadataCurrentNetworkErrorCount
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
AutoMetadataCurrentNetworkErrorCount
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MLSChangeIndexMusic
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MLSChangeIndexMusic
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MLSChangeIndexPhoto
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MostRecentFileAddOrRemove
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MLSChangeIndexPhoto
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MLSChangeIndexPhoto
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MLSChangeIndexPhoto
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MLSChangeIndexVideo
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MostRecentFileAddOrRemove
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MLSChangeIndexMusic
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MLSChangeIndexVideo
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences
|
MostRecentFileAddOrRemove
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\3F728A35DE52B2C8994A4FB101A03B95E87B06C8
|
Blob
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\12891DF7B048CD69D0196C8AD7A754C8A812A08C
|
Blob
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\3F728A35DE52B2C8994A4FB101A03B95E87B06C8
|
Blob
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\12891DF7B048CD69D0196C8AD7A754C8A812A08C
|
Blob
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\3F728A35DE52B2C8994A4FB101A03B95E87B06C8
|
Blob
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\12891DF7B048CD69D0196C8AD7A754C8A812A08C
|
Blob
|
There are 79 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
2E05000
|
heap
|
page read and write
|
||
|
8B0000
|
heap
|
page read and write
|
||
|
22BD000
|
stack
|
page read and write
|
||
|
3A02000
|
heap
|
page read and write
|
||
|
3E9E000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
5137000
|
heap
|
page read and write
|
||
|
2E0B000
|
heap
|
page read and write
|
||
|
3AF0000
|
trusted library allocation
|
page read and write
|
||
|
42E000
|
heap
|
page read and write
|
||
|
24B0000
|
heap
|
page read and write
|
||
|
38D8000
|
heap
|
page read and write
|
||
|
1BB000
|
stack
|
page read and write
|
||
|
3A04000
|
heap
|
page read and write
|
||
|
93E000
|
trusted library allocation
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
3F15000
|
heap
|
page read and write
|
||
|
43B000
|
heap
|
page read and write
|
||
|
5DB9000
|
heap
|
page read and write
|
||
|
2240000
|
heap
|
page read and write
|
||
|
203F000
|
stack
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
5133000
|
heap
|
page read and write
|
||
|
99A000
|
heap
|
page read and write
|
||
|
4022000
|
heap
|
page read and write
|
||
|
5100000
|
trusted library allocation
|
page read and write
|
||
|
5300000
|
trusted library allocation
|
page read and write
|
||
|
5151000
|
heap
|
page read and write
|
||
|
830000
|
trusted library allocation
|
page read and write
|
||
|
2F20000
|
trusted library allocation
|
page read and write
|
||
|
8B0000
|
heap
|
page read and write
|
||
|
3A90000
|
trusted library allocation
|
page read and write
|
||
|
5320000
|
heap
|
page read and write
|
||
|
48B7000
|
trusted library section
|
page read and write
|
||
|
400000
|
heap
|
page read and write
|
||
|
2330000
|
heap
|
page read and write
|
||
|
2020000
|
heap
|
page read and write
|
||
|
3A0000
|
trusted library allocation
|
page read and write
|
||
|
2CA000
|
heap
|
page read and write
|
||
|
38DA000
|
heap
|
page read and write
|
||
|
3D3D000
|
heap
|
page read and write
|
||
|
70C000
|
heap
|
page read and write
|
||
|
241E000
|
stack
|
page read and write
|
||
|
5FD0000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
490E000
|
trusted library section
|
page read and write
|
||
|
2731000
|
heap
|
page read and write
|
||
|
402E000
|
heap
|
page read and write
|
||
|
4E3C000
|
stack
|
page read and write
|
||
|
2C50000
|
trusted library allocation
|
page read and write
|
||
|
6BA000
|
heap
|
page read and write
|
||
|
2540000
|
heap
|
page read and write
|
||
|
2872000
|
trusted library allocation
|
page read and write
|
||
|
3F15000
|
heap
|
page read and write
|
||
|
3A90000
|
trusted library allocation
|
page read and write
|
||
|
180000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
1E4000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
9A0000
|
heap
|
page read and write
|
||
|
3CB9000
|
heap
|
page read and write
|
||
|
5100000
|
trusted library allocation
|
page read and write
|
||
|
201F000
|
stack
|
page read and write
|
||
|
700000
|
heap
|
page read and write
|
||
|
12A000
|
stack
|
page read and write
|
||
|
3E10000
|
heap
|
page read and write
|
||
|
4911000
|
trusted library section
|
page read and write
|
||
|
5300000
|
trusted library allocation
|
page read and write
|
||
|
94D000
|
heap
|
page read and write
|
||
|
48F0000
|
trusted library section
|
page read and write
|
||
|
511C000
|
heap
|
page read and write
|
||
|
2B0000
|
heap
|
page read and write
|
||
|
38D8000
|
heap
|
page read and write
|
||
|
4E60000
|
heap
|
page read and write
|
||
|
5145000
|
heap
|
page read and write
|
||
|
7AF000
|
stack
|
page read and write
|
||
|
920000
|
trusted library allocation
|
page read and write
|
||
|
10000
|
heap
|
page read and write
|
||
|
2E0B000
|
heap
|
page read and write
|
||
|
20E000
|
heap
|
page read and write
|
||
|
3D34000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
5112000
|
heap
|
page read and write
|
||
|
96E000
|
stack
|
page read and write
|
||
|
490C000
|
trusted library section
|
page read and write
|
||
|
2E0E000
|
heap
|
page read and write
|
||
|
260E000
|
stack
|
page read and write
|
||
|
61D000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
244E000
|
stack
|
page read and write
|
||
|
2F20000
|
trusted library allocation
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
3E8A000
|
heap
|
page read and write
|
||
|
3A6E000
|
heap
|
page read and write
|
||
|
3C0000
|
trusted library allocation
|
page read and write
|
||
|
5520000
|
trusted library allocation
|
page read and write
|
||
|
38DB000
|
heap
|
page read and write
|
||
|
8B2000
|
heap
|
page read and write
|
||
|
3C60000
|
heap
|
page read and write
|
||
|
4935000
|
trusted library section
|
page read and write
|
||
|
271000
|
heap
|
page read and write
|
||
|
2660000
|
heap
|
page read and write
|
||
|
21B000
|
heap
|
page read and write
|
||
|
24C0000
|
heap
|
page read and write
|
||
|
975000
|
heap
|
page read and write
|
||
|
3EC0000
|
heap
|
page read and write
|
||
|
280000
|
heap
|
page read and write
|
||
|
2CC9000
|
heap
|
page read and write
|
||
|
1E0000
|
trusted library allocation
|
page read and write
|
||
|
488A000
|
trusted library section
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
5B10000
|
heap
|
page read and write
|
||
|
67E000
|
heap
|
page read and write
|
||
|
5300000
|
trusted library allocation
|
page read and write
|
||
|
970000
|
heap
|
page read and write
|
||
|
9E0000
|
heap
|
page read and write
|
||
|
23C0000
|
heap
|
page read and write
|
||
|
48BD000
|
trusted library section
|
page read and write
|
||
|
38D8000
|
heap
|
page read and write
|
||
|
38A2000
|
heap
|
page read and write
|
||
|
51E0000
|
heap
|
page read and write
|
||
|
63E000
|
stack
|
page read and write
|
||
|
691000
|
heap
|
page read and write
|
||
|
5520000
|
trusted library allocation
|
page read and write
|
||
|
426000
|
trusted library allocation
|
page read and write
|
||
|
5100000
|
trusted library allocation
|
page read and write
|
||
|
97F000
|
heap
|
page read and write
|
||
|
231F000
|
stack
|
page read and write
|
||
|
1D0000
|
heap
|
page read and write
|
||
|
38A0000
|
heap
|
page read and write
|
||
|
491B000
|
trusted library section
|
page read and write
|
||
|
428000
|
trusted library allocation
|
page read and write
|
||
|
401A000
|
heap
|
page read and write
|
||
|
240C000
|
stack
|
page read and write
|
||
|
8C0000
|
heap
|
page read and write
|
||
|
27C0000
|
trusted library allocation
|
page read and write
|
||
|
5112000
|
heap
|
page read and write
|
||
|
2873000
|
trusted library allocation
|
page read and write
|
||
|
38D8000
|
heap
|
page read and write
|
||
|
2830000
|
trusted library allocation
|
page read and write
|
||
|
2780000
|
trusted library allocation
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
38D8000
|
heap
|
page read and write
|
||
|
10000
|
heap
|
page read and write
|
||
|
50FF000
|
stack
|
page read and write
|
||
|
90000
|
heap
|
page read and write
|
||
|
2BE000
|
heap
|
page read and write
|
||
|
2CFF000
|
heap
|
page read and write
|
||
|
5D0000
|
heap
|
page read and write
|
||
|
830000
|
trusted library allocation
|
page read and write
|
||
|
2795000
|
heap
|
page read and write
|
||
|
3A60000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
2870000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
1F1F000
|
stack
|
page read and write
|
||
|
277000
|
heap
|
page read and write
|
||
|
2350000
|
heap
|
page read and write
|
||
|
38D8000
|
heap
|
page read and write
|
||
|
667000
|
heap
|
page read and write
|
||
|
2E05000
|
heap
|
page read and write
|
||
|
5112000
|
heap
|
page read and write
|
||
|
3AF0000
|
trusted library allocation
|
page read and write
|
||
|
5700000
|
trusted library allocation
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
94D000
|
heap
|
page read and write
|
||
|
24A000
|
heap
|
page read and write
|
||
|
2DA2000
|
trusted library allocation
|
page read and write
|
||
|
2A7000
|
heap
|
page read and write
|
||
|
3A6A000
|
heap
|
page read and write
|
||
|
68D000
|
heap
|
page read and write
|
||
|
2720000
|
heap
|
page read and write
|
||
|
944000
|
trusted library allocation
|
page read and write
|
||
|
2620000
|
heap
|
page read and write
|
||
|
5D70000
|
heap
|
page read and write
|
||
|
280000
|
heap
|
page read and write
|
||
|
960000
|
heap
|
page read and write
|
||
|
310000
|
trusted library allocation
|
page read and write
|
||
|
401B000
|
heap
|
page read and write
|
||
|
99B000
|
heap
|
page read and write
|
||
|
5300000
|
trusted library allocation
|
page read and write
|
||
|
276000
|
heap
|
page read and write
|
||
|
48CA000
|
trusted library section
|
page read and write
|
||
|
240000
|
trusted library allocation
|
page read and write
|
||
|
760000
|
heap
|
page read and write
|
||
|
2E3000
|
heap
|
page read and write
|
||
|
5164000
|
heap
|
page read and write
|
||
|
3F15000
|
heap
|
page read and write
|
||
|
2E0F000
|
heap
|
page read and write
|
||
|
354F000
|
stack
|
page read and write
|
||
|
401B000
|
heap
|
page read and write
|
||
|
27C0000
|
trusted library allocation
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
22B0000
|
heap
|
page read and write
|
||
|
14B000
|
stack
|
page read and write
|
||
|
31D000
|
heap
|
page read and write
|
||
|
512E000
|
heap
|
page read and write
|
||
|
51AA000
|
heap
|
page read and write
|
||
|
4879000
|
trusted library section
|
page read and write
|
||
|
3D63000
|
heap
|
page read and write
|
||
|
5300000
|
trusted library allocation
|
page read and write
|
||
|
3D42000
|
heap
|
page read and write
|
||
|
264000
|
heap
|
page read and write
|
||
|
230000
|
heap
|
page read and write
|
||
|
23C000
|
heap
|
page read and write
|
||
|
3A05000
|
heap
|
page read and write
|
||
|
418000
|
trusted library allocation
|
page read and write
|
||
|
22C8000
|
heap
|
page read and write
|
||
|
420000
|
trusted library allocation
|
page read and write
|
||
|
38D9000
|
heap
|
page read and write
|
||
|
2970000
|
heap
|
page read and write
|
||
|
2E0E000
|
heap
|
page read and write
|
||
|
3A6E000
|
heap
|
page read and write
|
||
|
6410000
|
trusted library allocation
|
page read and write
|
||
|
2350000
|
heap
|
page read and write
|
||
|
8F0000
|
heap
|
page read and write
|
||
|
5165000
|
heap
|
page read and write
|
||
|
140000
|
heap
|
page read and write
|
||
|
10000
|
heap
|
page read and write
|
||
|
48C5000
|
trusted library section
|
page read and write
|
||
|
5157000
|
heap
|
page read and write
|
||
|
308B000
|
heap
|
page read and write
|
||
|
2E05000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
3C0000
|
trusted library allocation
|
page read and write
|
||
|
2480000
|
heap
|
page read and write
|
||
|
5700000
|
trusted library allocation
|
page read and write
|
||
|
2CA0000
|
heap
|
page read and write
|
||
|
26F7000
|
heap
|
page read and write
|
||
|
15B000
|
stack
|
page read and write
|
||
|
491E000
|
trusted library section
|
page read and write
|
||
|
5100000
|
trusted library allocation
|
page read and write
|
||
|
5300000
|
trusted library allocation
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
2780000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
4860000
|
trusted library section
|
page read and write
|
||
|
21CE000
|
stack
|
page read and write
|
||
|
2580000
|
heap
|
page read and write
|
||
|
1E60000
|
trusted library allocation
|
page read and write
|
||
|
277000
|
heap
|
page read and write
|
||
|
5F7000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
307D000
|
stack
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
2360000
|
heap
|
page read and write
|
||
|
18D000
|
stack
|
page read and write
|
||
|
490A000
|
trusted library section
|
page read and write
|
||
|
5B90000
|
heap
|
page read and write
|
||
|
3AF2000
|
trusted library allocation
|
page read and write
|
||
|
240000
|
trusted library allocation
|
page read and write
|
||
|
2CC000
|
heap
|
page read and write
|
||
|
2E05000
|
heap
|
page read and write
|
||
|
48DC000
|
trusted library section
|
page read and write
|
||
|
3F15000
|
heap
|
page read and write
|
||
|
1C0000
|
trusted library allocation
|
page read and write
|
||
|
48E5000
|
trusted library section
|
page read and write
|
||
|
3C30000
|
heap
|
page read and write
|
||
|
10000
|
heap
|
page read and write
|
||
|
975000
|
heap
|
page read and write
|
||
|
38D8000
|
heap
|
page read and write
|
||
|
5100000
|
trusted library allocation
|
page read and write
|
||
|
2440000
|
heap
|
page read and write
|
||
|
3E14000
|
heap
|
page read and write
|
||
|
436000
|
heap
|
page read and write
|
||
|
96E000
|
heap
|
page read and write
|
||
|
22C0000
|
heap
|
page read and write
|
||
|
926000
|
heap
|
page read and write
|
||
|
430000
|
heap
|
page read and write
|
||
|
654000
|
heap
|
page read and write
|
||
|
5147000
|
heap
|
page read and write
|
||
|
38E1000
|
heap
|
page read and write
|
||
|
2E05000
|
heap
|
page read and write
|
||
|
38D8000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
2692000
|
heap
|
page read and write
|
||
|
1C0000
|
trusted library allocation
|
page read and write
|
||
|
97A000
|
heap
|
page read and write
|
||
|
2E0B000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
64A000
|
heap
|
page read and write
|
||
|
26E3000
|
heap
|
page read and write
|
||
|
346000
|
heap
|
page read and write
|
||
|
184000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
444000
|
heap
|
page read and write
|
||
|
202000
|
heap
|
page read and write
|
||
|
975000
|
heap
|
page read and write
|
||
|
33D000
|
heap
|
page read and write
|
||
|
170000
|
heap
|
page read and write
|
||
|
2D3B000
|
heap
|
page read and write
|
||
|
2E9C000
|
stack
|
page read and write
|
||
|
922000
|
trusted library allocation
|
page read and write
|
||
|
1F4000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
410000
|
trusted library allocation
|
page read and write
|
||
|
4906000
|
trusted library section
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
932000
|
trusted library allocation
|
page read and write
|
||
|
2A4000
|
heap
|
page read and write
|
||
|
10000
|
heap
|
page read and write
|
||
|
516F000
|
heap
|
page read and write
|
||
|
233000
|
heap
|
page read and write
|
||
|
A0000
|
trusted library allocation
|
page execute and read and write
|
||
|
287000
|
heap
|
page read and write
|
||
|
2C9C000
|
stack
|
page read and write
|
||
|
2B0000
|
heap
|
page read and write
|
||
|
6416000
|
trusted library allocation
|
page read and write
|
||
|
3C83000
|
heap
|
page read and write
|
||
|
36F000
|
stack
|
page read and write
|
||
|
480E000
|
stack
|
page read and write
|
||
|
233E000
|
heap
|
page read and write
|
||
|
3F15000
|
heap
|
page read and write
|
||
|
38DB000
|
heap
|
page read and write
|
||
|
410000
|
trusted library allocation
|
page read and write
|
||
|
224E000
|
heap
|
page read and write
|
||
|
4009000
|
heap
|
page read and write
|
||
|
46CA000
|
stack
|
page read and write
|
||
|
23D000
|
stack
|
page read and write
|
||
|
A8C000
|
stack
|
page read and write
|
||
|
5D7000
|
heap
|
page read and write
|
||
|
2F7F000
|
stack
|
page read and write
|
||
|
934000
|
trusted library allocation
|
page read and write
|
||
|
87E000
|
stack
|
page read and write
|
||
|
69E000
|
heap
|
page read and write
|
||
|
894000
|
heap
|
page read and write
|
||
|
3A6E000
|
heap
|
page read and write
|
||
|
67B000
|
heap
|
page read and write
|
||
|
400C000
|
heap
|
page read and write
|
||
|
928000
|
trusted library allocation
|
page read and write
|
||
|
5164000
|
heap
|
page read and write
|
||
|
2E0B000
|
heap
|
page read and write
|
||
|
2D4E000
|
heap
|
page read and write
|
||
|
1D7000
|
heap
|
page read and write
|
||
|
2F9E000
|
stack
|
page read and write
|
||
|
48F9000
|
trusted library section
|
page read and write
|
||
|
2E0E000
|
heap
|
page read and write
|
||
|
2E05000
|
heap
|
page read and write
|
||
|
212F000
|
stack
|
page read and write
|
||
|
5133000
|
heap
|
page read and write
|
||
|
39FB000
|
heap
|
page read and write
|
||
|
10000
|
heap
|
page read and write
|
||
|
48E8000
|
trusted library section
|
page read and write
|
||
|
2CF8000
|
heap
|
page read and write
|
||
|
A6F000
|
stack
|
page read and write
|
||
|
2CF4000
|
heap
|
page read and write
|
||
|
2740000
|
heap
|
page read and write
|
||
|
2E00000
|
heap
|
page read and write
|
||
|
3C68000
|
heap
|
page read and write
|
||
|
20D000
|
stack
|
page read and write
|
||
|
5300000
|
trusted library allocation
|
page read and write
|
||
|
2140000
|
heap
|
page read and write
|
||
|
2140000
|
heap
|
page read and write
|
||
|
96E000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
247E000
|
stack
|
page read and write
|
||
|
2CBD000
|
heap
|
page read and write
|
||
|
2F20000
|
trusted library allocation
|
page read and write
|
||
|
2F22000
|
trusted library allocation
|
page read and write
|
||
|
2E05000
|
heap
|
page read and write
|
||
|
5100000
|
trusted library allocation
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
92C000
|
trusted library allocation
|
page read and write
|
||
|
38DC000
|
heap
|
page read and write
|
||
|
3EBF000
|
heap
|
page read and write
|
||
|
6010000
|
trusted library allocation
|
page read and write
|
||
|
2CF1000
|
heap
|
page read and write
|
||
|
59E0000
|
heap
|
page read and write
|
||
|
3C61000
|
heap
|
page read and write
|
||
|
38DA000
|
heap
|
page read and write
|
||
|
2E0E000
|
heap
|
page read and write
|
||
|
2E0E000
|
heap
|
page read and write
|
||
|
66E000
|
heap
|
page read and write
|
||
|
2AD000
|
stack
|
page read and write
|
||
|
3A6B000
|
heap
|
page read and write
|
||
|
3C99000
|
heap
|
page read and write
|
||
|
3A63000
|
heap
|
page read and write
|
||
|
2660000
|
heap
|
page read and write
|
||
|
2E0A000
|
heap
|
page read and write
|
||
|
5137000
|
heap
|
page read and write
|
||
|
3E8A000
|
heap
|
page read and write
|
||
|
160000
|
heap
|
page read and write
|
||
|
519C000
|
heap
|
page read and write
|
||
|
5348000
|
heap
|
page read and write
|
||
|
5164000
|
heap
|
page read and write
|
||
|
380000
|
heap
|
page read and write
|
||
|
48D4000
|
trusted library section
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
5520000
|
trusted library allocation
|
page read and write
|
||
|
1ED000
|
heap
|
page read and write
|
||
|
5DB0000
|
heap
|
page read and write
|
||
|
25B000
|
stack
|
page read and write
|
||
|
3D76000
|
heap
|
page read and write
|
||
|
2330000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
3D46000
|
heap
|
page read and write
|
||
|
217000
|
stack
|
page read and write
|
||
|
38D8000
|
heap
|
page read and write
|
||
|
48CF000
|
trusted library section
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
3A66000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
1E0000
|
heap
|
page read and write
|
||
|
48C0000
|
trusted library section
|
page read and write
|
||
|
3A04000
|
heap
|
page read and write
|
||
|
2590000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
D1000
|
stack
|
page read and write
|
||
|
22CB000
|
heap
|
page read and write
|
||
|
9A4000
|
heap
|
page read and write
|
||
|
41A000
|
trusted library allocation
|
page read and write
|
||
|
2B70000
|
heap
|
page read and write
|
||
|
27F0000
|
heap
|
page read and write
|
||
|
2E05000
|
heap
|
page read and write
|
||
|
920000
|
heap
|
page read and write
|
||
|
647000
|
heap
|
page read and write
|
||
|
3C8E000
|
heap
|
page read and write
|
||
|
2240000
|
heap
|
page read and write
|
||
|
2130000
|
heap
|
page read and write
|
||
|
3F30000
|
heap
|
page read and write
|
||
|
2790000
|
heap
|
page read and write
|
||
|
6C3000
|
heap
|
page read and write
|
||
|
26F7000
|
heap
|
page read and write
|
||
|
28B0000
|
trusted library allocation
|
page read and write
|
||
|
77D000
|
heap
|
page read and write
|
||
|
940000
|
trusted library allocation
|
page read and write
|
||
|
926000
|
trusted library allocation
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
48EA000
|
trusted library section
|
page read and write
|
||
|
39F0000
|
heap
|
page read and write
|
||
|
427000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
2450000
|
heap
|
page read and write
|
||
|
92A000
|
trusted library allocation
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
3F15000
|
heap
|
page read and write
|
||
|
5300000
|
trusted library allocation
|
page read and write
|
||
|
2CF3000
|
heap
|
page read and write
|
||
|
8D0000
|
heap
|
page read and write
|
||
|
1D0000
|
heap
|
page read and write
|
||
|
455000
|
heap
|
page read and write
|
||
|
283000
|
heap
|
page read and write
|
||
|
8ED000
|
heap
|
page read and write
|
||
|
4D74000
|
stack
|
page read and write
|
||
|
310000
|
trusted library allocation
|
page read and write
|
||
|
3E24000
|
heap
|
page read and write
|
||
|
5A20000
|
heap
|
page read and write
|
||
|
1A2000
|
heap
|
page read and write
|
||
|
5700000
|
trusted library allocation
|
page read and write
|
||
|
E7000
|
stack
|
page read and write
|
||
|
5179000
|
heap
|
page read and write
|
||
|
2E0B000
|
heap
|
page read and write
|
||
|
1FFD000
|
heap
|
page read and write
|
||
|
930000
|
heap
|
page read and write
|
||
|
2DA000
|
heap
|
page read and write
|
||
|
3F8C000
|
heap
|
page read and write
|
||
|
5133000
|
heap
|
page read and write
|
||
|
5112000
|
heap
|
page read and write
|
||
|
5520000
|
trusted library allocation
|
page read and write
|
||
|
2700000
|
trusted library allocation
|
page read and write
|
||
|
2360000
|
heap
|
page read and write
|
||
|
10000
|
heap
|
page read and write
|
||
|
47CC000
|
stack
|
page read and write
|
||
|
60E000
|
heap
|
page read and write
|
||
|
485F000
|
stack
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
3BF0000
|
heap
|
page read and write
|
||
|
4012000
|
heap
|
page read and write
|
||
|
936000
|
trusted library allocation
|
page read and write
|
||
|
3E35000
|
heap
|
page read and write
|
||
|
664000
|
heap
|
page read and write
|
||
|
96D000
|
heap
|
page read and write
|
||
|
637000
|
heap
|
page read and write
|
||
|
38D8000
|
heap
|
page read and write
|
||
|
499000
|
heap
|
page read and write
|
||
|
5F0000
|
heap
|
page read and write
|
||
|
20FD000
|
stack
|
page read and write
|
||
|
39F8000
|
heap
|
page read and write
|
||
|
2F0000
|
heap
|
page read and write
|
||
|
2780000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page read and write
|
||
|
924000
|
trusted library allocation
|
page read and write
|
||
|
7E0000
|
heap
|
page read and write
|
||
|
3A6B000
|
heap
|
page read and write
|
||
|
3080000
|
heap
|
page read and write
|
||
|
2E0F000
|
heap
|
page read and write
|
||
|
518D000
|
heap
|
page read and write
|
||
|
412000
|
trusted library allocation
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
275000
|
heap
|
page read and write
|
||
|
402E000
|
heap
|
page read and write
|
||
|
511F000
|
heap
|
page read and write
|
||
|
2D06000
|
heap
|
page read and write
|
||
|
96000
|
heap
|
page read and write
|
||
|
38D8000
|
heap
|
page read and write
|
||
|
5A20000
|
heap
|
page read and write
|
||
|
5336000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
5300000
|
heap
|
page read and write
|
||
|
ACE000
|
stack
|
page read and write
|
||
|
1F80000
|
heap
|
page read and write
|
||
|
6AB000
|
heap
|
page read and write
|
||
|
630000
|
heap
|
page read and write
|
||
|
410000
|
trusted library allocation
|
page read and write
|
||
|
38D8000
|
heap
|
page read and write
|
||
|
414000
|
trusted library allocation
|
page read and write
|
||
|
26C000
|
stack
|
page read and write
|
||
|
8F4000
|
heap
|
page read and write
|
||
|
3E32000
|
heap
|
page read and write
|
||
|
93C000
|
trusted library allocation
|
page read and write
|
||
|
1AD000
|
stack
|
page read and write
|
||
|
946000
|
trusted library allocation
|
page read and write
|
||
|
492A000
|
trusted library section
|
page read and write
|
||
|
5100000
|
trusted library allocation
|
page read and write
|
||
|
68B000
|
heap
|
page read and write
|
||
|
3CFE000
|
heap
|
page read and write
|
||
|
5160000
|
heap
|
page read and write
|
||
|
2E0E000
|
heap
|
page read and write
|
||
|
2560000
|
heap
|
page read and write
|
||
|
4915000
|
trusted library section
|
page read and write
|
||
|
2CD000
|
heap
|
page read and write
|
||
|
975000
|
heap
|
page read and write
|
||
|
3C73000
|
heap
|
page read and write
|
||
|
2CB000
|
heap
|
page read and write
|
||
|
3A04000
|
heap
|
page read and write
|
||
|
3A02000
|
heap
|
page read and write
|
||
|
227F000
|
stack
|
page read and write
|
||
|
2FDE000
|
stack
|
page read and write
|
||
|
464D000
|
stack
|
page read and write
|
||
|
270000
|
heap
|
page read and write
|
||
|
3C71000
|
heap
|
page read and write
|
||
|
39FB000
|
heap
|
page read and write
|
||
|
5326000
|
heap
|
page read and write
|
||
|
5300000
|
trusted library allocation
|
page read and write
|
||
|
271E000
|
heap
|
page read and write
|
||
|
2F6000
|
heap
|
page read and write
|
||
|
63B000
|
heap
|
page read and write
|
||
|
3088000
|
heap
|
page read and write
|
||
|
27B2000
|
heap
|
page read and write
|
||
|
22A000
|
heap
|
page read and write
|
||
|
5112000
|
heap
|
page read and write
|
||
|
3A92000
|
trusted library allocation
|
page read and write
|
||
|
FB000
|
stack
|
page read and write
|
||
|
5100000
|
trusted library allocation
|
page read and write
|
||
|
2DA0000
|
trusted library allocation
|
page read and write
|
||
|
3A69000
|
heap
|
page read and write
|
||
|
2E4D000
|
stack
|
page read and write
|
||
|
3E34000
|
heap
|
page read and write
|
||
|
67D000
|
heap
|
page read and write
|
||
|
41C000
|
trusted library allocation
|
page read and write
|
||
|
3E1C000
|
heap
|
page read and write
|
||
|
48FC000
|
trusted library section
|
page read and write
|
||
|
2E0E000
|
heap
|
page read and write
|
||
|
5520000
|
trusted library allocation
|
page read and write
|
||
|
47B000
|
heap
|
page read and write
|
||
|
3E9E000
|
heap
|
page read and write
|
||
|
42DC000
|
stack
|
page read and write
|
||
|
5300000
|
trusted library allocation
|
page read and write
|
||
|
38D8000
|
heap
|
page read and write
|
||
|
3084000
|
heap
|
page read and write
|
||
|
26F0000
|
heap
|
page read and write
|
||
|
A6E000
|
stack
|
page read and write
|
||
|
4B0B000
|
trusted library section
|
page read and write
|
||
|
427D000
|
stack
|
page read and write
|
||
|
2E7000
|
heap
|
page read and write
|
||
|
3EC0000
|
heap
|
page read and write
|
||
|
3E0000
|
heap
|
page read and write
|
||
|
2CD000
|
heap
|
page read and write
|
||
|
5112000
|
heap
|
page read and write
|
||
|
34CE000
|
stack
|
page read and write
|
||
|
21E0000
|
heap
|
page read and write
|
||
|
2E05000
|
heap
|
page read and write
|
||
|
1FA2000
|
heap
|
page read and write
|
||
|
20DF000
|
stack
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
2090000
|
heap
|
page read and write
|
||
|
340000
|
heap
|
page read and write
|
||
|
3BB0000
|
trusted library allocation
|
page read and write
|
||
|
2D30000
|
heap
|
page read and write
|
||
|
39FB000
|
heap
|
page read and write
|
||
|
2D77000
|
heap
|
page read and write
|
||
|
20FF000
|
stack
|
page read and write
|
||
|
8E2000
|
heap
|
page read and write
|
||
|
973000
|
heap
|
page read and write
|
||
|
6A3000
|
heap
|
page read and write
|
||
|
5300000
|
trusted library allocation
|
page read and write
|
||
|
4931000
|
trusted library section
|
page read and write
|
||
|
1CE000
|
stack
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
3E8E000
|
heap
|
page read and write
|
||
|
5110000
|
heap
|
page read and write
|
||
|
2E06000
|
heap
|
page read and write
|
||
|
4331000
|
heap
|
page read and write
|
||
|
8C4000
|
heap
|
page read and write
|
||
|
420000
|
heap
|
page read and write
|
||
|
20AE000
|
stack
|
page read and write
|
||
|
174000
|
heap
|
page read and write
|
||
|
38D8000
|
heap
|
page read and write
|
||
|
2E0B000
|
heap
|
page read and write
|
||
|
5133000
|
heap
|
page read and write
|
||
|
3C4B000
|
heap
|
page read and write
|
||
|
3CB9000
|
heap
|
page read and write
|
||
|
5310000
|
heap
|
page read and write
|
||
|
5300000
|
trusted library allocation
|
page read and write
|
||
|
890000
|
heap
|
page read and write
|
||
|
640000
|
heap
|
page read and write
|
||
|
2E0B000
|
heap
|
page read and write
|
||
|
5137000
|
heap
|
page read and write
|
||
|
4680000
|
trusted library section
|
page read and write
|
||
|
7C0000
|
heap
|
page read and write
|
||
|
239E000
|
heap
|
page read and write
|
||
|
3A0000
|
trusted library allocation
|
page read and write
|
||
|
6AD000
|
heap
|
page read and write
|
||
|
1E0000
|
trusted library allocation
|
page read and write
|
||
|
684000
|
heap
|
page read and write
|
||
|
400C000
|
heap
|
page read and write
|
||
|
5188000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
5100000
|
trusted library allocation
|
page read and write
|
||
|
2E0B000
|
heap
|
page read and write
|
||
|
68A000
|
heap
|
page read and write
|
||
|
422000
|
trusted library allocation
|
page read and write
|
||
|
5300000
|
trusted library allocation
|
page read and write
|
||
|
6413000
|
trusted library allocation
|
page read and write
|
||
|
22F0000
|
heap
|
page read and write
|
||
|
4921000
|
trusted library section
|
page read and write
|
||
|
2D5C000
|
heap
|
page read and write
|
||
|
2390000
|
heap
|
page read and write
|
||
|
9E0000
|
heap
|
page read and write
|
||
|
5363000
|
heap
|
page read and write
|
||
|
2E05000
|
heap
|
page read and write
|
||
|
38E1000
|
heap
|
page read and write
|
||
|
5100000
|
trusted library allocation
|
page read and write
|
||
|
69A000
|
heap
|
page read and write
|
||
|
2E0B000
|
heap
|
page read and write
|
||
|
2D76000
|
heap
|
page read and write
|
||
|
2BB0000
|
trusted library allocation
|
page read and write
|
||
|
3F15000
|
heap
|
page read and write
|
||
|
62A000
|
heap
|
page read and write
|
||
|
513B000
|
heap
|
page read and write
|
||
|
5100000
|
trusted library allocation
|
page read and write
|
||
|
8B6000
|
heap
|
page read and write
|
||
|
938000
|
trusted library allocation
|
page read and write
|
||
|
1FE0000
|
heap
|
page read and write
|
||
|
942000
|
trusted library allocation
|
page read and write
|
||
|
5BD0000
|
heap
|
page read and write
|
||
|
A5F000
|
stack
|
page read and write
|
||
|
2DA0000
|
trusted library allocation
|
page read and write
|
||
|
22F0000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
3610000
|
heap
|
page read and write
|
||
|
192000
|
heap
|
page read and write
|
||
|
9C2000
|
heap
|
page read and write
|
||
|
3F15000
|
heap
|
page read and write
|
||
|
5100000
|
trusted library allocation
|
page read and write
|
||
|
1F84000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
513B000
|
heap
|
page read and write
|
||
|
369C000
|
stack
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
3E8E000
|
heap
|
page read and write
|
||
|
236E000
|
heap
|
page read and write
|
||
|
420000
|
heap
|
page read and write
|
||
|
224E000
|
heap
|
page read and write
|
||
|
1FD000
|
stack
|
page read and write
|
||
|
513C000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
41E000
|
trusted library allocation
|
page read and write
|
||
|
2E0B000
|
heap
|
page read and write
|
||
|
2D09000
|
heap
|
page read and write
|
||
|
A2F000
|
stack
|
page read and write
|
||
|
39F6000
|
heap
|
page read and write
|
||
|
3E0000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
424000
|
trusted library allocation
|
page read and write
|
||
|
2871000
|
trusted library allocation
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
5F4000
|
heap
|
page read and write
|
||
|
5880000
|
heap
|
page read and write
|
||
|
5F60000
|
heap
|
page read and write
|
||
|
ABF000
|
stack
|
page read and write
|
||
|
5300000
|
trusted library allocation
|
page read and write
|
||
|
975000
|
heap
|
page read and write
|
||
|
38DC000
|
heap
|
page read and write
|
||
|
61B000
|
heap
|
page read and write
|
||
|
3B2F000
|
stack
|
page read and write
|
||
|
5520000
|
trusted library allocation
|
page read and write
|
||
|
21D000
|
heap
|
page read and write
|
||
|
25BC000
|
stack
|
page read and write
|
||
|
22C4000
|
heap
|
page read and write
|
||
|
5300000
|
trusted library allocation
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
38D8000
|
heap
|
page read and write
|
||
|
3EE000
|
stack
|
page read and write
|
||
|
3CA1000
|
heap
|
page read and write
|
||
|
912000
|
heap
|
page read and write
|
||
|
2DA2000
|
trusted library allocation
|
page read and write
|
||
|
511F000
|
heap
|
page read and write
|
||
|
3EBF000
|
heap
|
page read and write
|
||
|
38DC000
|
heap
|
page read and write
|
||
|
5700000
|
trusted library allocation
|
page read and write
|
||
|
3EBF000
|
heap
|
page read and write
|
||
|
3F98000
|
heap
|
page read and write
|
||
|
467000
|
heap
|
page read and write
|
||
|
3EBF000
|
heap
|
page read and write
|
||
|
223F000
|
stack
|
page read and write
|
||
|
2E0000
|
heap
|
page read and write
|
||
|
38D9000
|
heap
|
page read and write
|
||
|
38DB000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
A8E000
|
stack
|
page read and write
|
||
|
3FE6000
|
heap
|
page read and write
|
||
|
2510000
|
heap
|
page read and write
|
||
|
39FF000
|
heap
|
page read and write
|
||
|
4904000
|
trusted library section
|
page read and write
|
||
|
614000
|
heap
|
page read and write
|
||
|
5100000
|
heap
|
page read and write
|
||
|
977000
|
heap
|
page read and write
|
||
|
2E0A000
|
heap
|
page read and write
|
||
|
11B000
|
stack
|
page read and write
|
||
|
92E000
|
trusted library allocation
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
390000
|
heap
|
page read and write
|
||
|
653000
|
heap
|
page read and write
|
||
|
660000
|
heap
|
page read and write
|
||
|
2870000
|
trusted library allocation
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
38D9000
|
heap
|
page read and write
|
||
|
9EE000
|
stack
|
page read and write
|
||
|
2F1E000
|
stack
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
3D0000
|
heap
|
page read and write
|
||
|
5BD0000
|
heap
|
page read and write
|
||
|
302E000
|
stack
|
page read and write
|
||
|
26C0000
|
heap
|
page read and write
|
||
|
977000
|
heap
|
page read and write
|
||
|
402E000
|
heap
|
page read and write
|
||
|
22C0000
|
heap
|
page read and write
|
||
|
3A04000
|
heap
|
page read and write
|
||
|
38E1000
|
heap
|
page read and write
|
||
|
2560000
|
heap
|
page read and write
|
||
|
2F20000
|
trusted library allocation
|
page read and write
|
||
|
ADF000
|
stack
|
page read and write
|
||
|
3EBF000
|
heap
|
page read and write
|
||
|
402E000
|
heap
|
page read and write
|
||
|
3B00000
|
trusted library allocation
|
page read and write
|
||
|
3C0000
|
trusted library allocation
|
page execute and read and write
|
||
|
38D8000
|
heap
|
page read and write
|
||
|
20B0000
|
heap
|
page read and write
|
||
|
48AD000
|
trusted library section
|
page read and write
|
||
|
930000
|
heap
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
5334000
|
heap
|
page read and write
|
||
|
10000
|
heap
|
page read and write
|
||
|
38DB000
|
heap
|
page read and write
|
||
|
1F5F000
|
stack
|
page read and write
|
||
|
3C62000
|
heap
|
page read and write
|
||
|
63D000
|
heap
|
page read and write
|
||
|
416000
|
trusted library allocation
|
page read and write
|
||
|
93A000
|
trusted library allocation
|
page read and write
|
||
|
633000
|
heap
|
page read and write
|
||
|
2D59000
|
heap
|
page read and write
|
||
|
2E0B000
|
heap
|
page read and write
|
||
|
48B9000
|
trusted library section
|
page read and write
|
||
|
343000
|
heap
|
page read and write
|
||
|
62E000
|
heap
|
page read and write
|
||
|
3E34000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
21DE000
|
stack
|
page read and write
|
||
|
3E31000
|
heap
|
page read and write
|
||
|
23CE000
|
heap
|
page read and write
|
||
|
2E05000
|
heap
|
page read and write
|
||
|
5110000
|
heap
|
page read and write
|
||
|
2874000
|
trusted library allocation
|
page read and write
|
||
|
2CE8000
|
heap
|
page read and write
|
||
|
3F71000
|
heap
|
page read and write
|
||
|
2760000
|
heap
|
page read and write
|
||
|
975000
|
heap
|
page read and write
|
There are 771 hidden memdumps, click here to show them.