Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
http://coronavirus.app
|
URL
|
initial url
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{D510EB73-5AA9-11EB-90E5-ECF4BB570DC9}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{D510EB75-5AA9-11EB-90E5-ECF4BB570DC9}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{D510EB76-5AA9-11EB-90E5-ECF4BB570DC9}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-17529550060\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-18270793970\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-21706820\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-4759708130\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-6757900\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-8760897390\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20259167780\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20332743330\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin8215062560\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\dikxvqf\imagestore.dat
|
data
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\analytics[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\leaflet[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\shp[1].js
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\css[1].css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\font-awesome.min[1].css
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\192[1].png
|
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\js[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\leaflet[1].css
|
ASCII text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\0PV1MQT6.htm
|
HTML document, UTF-8 Unicode text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\app[1].js
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\charts[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\feather[1].css
|
ASCII text
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\moment.min[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\shp[1].js
|
UTF-8 Unicode text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\styles[1].css
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF10C5A24FAA9BD71B.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF2F7B38B3350D091D.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF4864DBCABA8D5618.TMP
|
data
|
dropped
|
|
There are 22 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\internet explorer\iexplore.exe
|
'C:\Program Files\Internet Explorer\iexplore.exe' -Embedding
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:2892 CREDAT:17410 /prefetch:2
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://www.delorie.com/djgpp/doc/rbinter/it/66/16.html
|
unknown
|
|
|
|
http://fontawesome.io
|
unknown
|
|
|
|
https://coronavirus-92ebd.web.app/assets/css/feather/feather.css
|
unknown
|
|
|
|
https://coronavirus-92ebd.web.app/assets/img/logo/favicon.ico
|
unknown
|
|
|
|
http://www.swisstopo.admin.ch/internet/swisstopo/fr/home/topics/survey/sys/refsys/switzerland.parsys
|
unknown
|
|
|
|
https://coronavirus.app
|
unknown
|
|
|
|
http://article.gmane.org/gmane.comp.gis.proj-4.devel/6039
|
unknown
|
|
|
|
http://jsperf.com/converting-a-uint8array-to-a-string/2
|
unknown
|
|
|
|
https://github.com/feross/buffer/pull/97
|
unknown
|
|
|
|
http://seclists.org/fulldisclosure/2009/Sep/394
|
unknown
|
|
|
|
http://www.delorie.com/djgpp/doc/rbinter/it/52/13.html
|
unknown
|
|
|
|
https://coronavirus-92ebd.web.app/assets/js/moment.min.js
|
unknown
|
|
|
|
https://unpkg.com/leaflet
|
unknown
|
|
|
|
https://github.com/chartjs/Chart.js/blob/master/LICENSE.md
|
unknown
|
|
|
|
http://chartjs.org/
|
unknown
|
|
|
|
http://unix.stackexchange.com/questions/14705/the-zip-formats-external-file-attribute
|
unknown
|
|
|
|
http://www.amazon.com/
|
unknown
|
|
|
|
http://zlib.net/manual.html#Advanced)
|
unknown
|
|
|
|
https://coronavirus-92ebd.web.app/assets/img/logo/32.png
|
unknown
|
|
|
|
http://jsperf.com/arraybuffer-to-string-apply-performance/2
|
unknown
|
|
|
|
http://www.twitter.com/
|
unknown
|
|
|
|
https://github.com/OSGeo/proj.4/blob/master/src/PJ_qsc.c
|
unknown
|
|
|
|
http://stackoverflow.com/a/22747272/680742
|
unknown
|
|
|
|
https://coronavirus-92ebd.web.app/assets/js/charts.js
|
unknown
|
|
|
|
https://github.com/OSGeo/proj.4/blob/master/src/PJ_robin.c
|
unknown
|
|
|
|
https://bugzilla.mozilla.org/show_bug.cgi?id=695438.
|
unknown
|
|
|
|
http://fits.gsfc.nasa.gov/fitsbits/saf.93/saf.9302
|
unknown
|
|
|
|
https://coronavirus-92ebd.web.app/assets/css/styles.css?v=258
|
unknown
|
|
|
|
https://github.com/krux/postscribe/blob/master/LICENSE.
|
unknown
|
|
|
|
http://mathworld.wolfram.com/GnomonicProjection.html
|
unknown
|
|
|
|
https://github.com/google/closure-compiler/issues/247
|
unknown
|
|
|
|
https://stats.g.doubleclick.net/j/collect
|
unknown
|
|
|
|
https://coronavirus-92ebd.web.app/assets/js/app.js?v=258
|
unknown
|
|
|
|
https://coronavirus.app/
|
unknown
|
|
|
|
http://www.reddit.com/
|
unknown
|
|
|
|
http://www.linz.govt.nz/docs/miscellaneous/nzmg.pdf
|
unknown
|
|
|
|
https://encoding.spec.whatwg.org/
|
unknown
|
|
|
|
http://www.nytimes.com/
|
unknown
|
|
|
|
http://coronavirus.app/
|
151.101.1.195
|
|
|
|
http://www.delorie.com/djgpp/doc/rbinter/it/65/16.html
|
unknown
|
|
|
|
https://coronavirus-92ebd.web.app/assets/img/logo/social.jpg?v=1
|
unknown
|
|
|
|
https://www.googletraveladservices.com/travel/clk/pagead/conversion/
|
unknown
|
|
|
|
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
|
unknown
|
|
|
|
https://unpkg.com/shpjs
|
unknown
|
|
|
|
http://leafletjs.com
|
unknown
|
|
|
|
http://www.info-zip.org/FAQ.html#backslashes
|
unknown
|
|
|
|
https://coronavirus-92ebd.web.app/assets/img/logo/browserconfig.xml
|
unknown
|
|
|
|
https://coronavirus-92ebd.web.app/assets/img/logo/96.png
|
unknown
|
|
|
|
http://www.linz.govt.nz/docs/miscellaneous/nz-map-definition.pdf
|
unknown
|
|
|
|
http://zlib.net/manual.html#Advanced
|
unknown
|
|
|
|
https://heycam.github.io/webidl/#dfn-obtain-unicode
|
unknown
|
|
|
|
http://fontawesome.io/license
|
unknown
|
|
|
|
https://github.com/mbloch/mapshaper-proj/blob/master/src/projections/etmerc.js
|
unknown
|
|
|
|
https://coronavirus-92ebd.web.app/assets/img/logo/16.png
|
unknown
|
|
|
|
http://stuk.github.io/jszip/documentation/howto/read_zip.html
|
unknown
|
|
|
|
https://encoding.spec.whatwg.org/encodings.json
|
unknown
|
|
|
|
https://codereview.chromium.org/121173009/
|
unknown
|
|
|
|
https://github.com/nodeca/pako/
|
unknown
|
|
|
|
https://coronavirus.app/Root
|
unknown
|
|
|
|
https://www.google.%/ads/ga-audiences
|
unknown
|
|
|
|
http://www.youtube.com/
|
unknown
|
|
|
|
https://coronavirus-92ebd.web.app/assets/img/logo/192.png
|
unknown
|
|
|
|
http://www.ecma-international.org/publications/files/ECMA-ST/ECMA-262.pdf
|
unknown
|
|
|
|
https://coronavirus-92ebd.web.app/assets/img/logo/safari-pinned-tab.svg
|
unknown
|
|
|
|
https://github.com/beatgammit/base64-js/issues/42
|
unknown
|
|
|
|
http://www.wikipedia.com/
|
unknown
|
|
|
|
https://coronavirus.app/
|
|
||
|
http://www.live.com/
|
unknown
|
|
|
|
http://www.webtoolkit.info/
|
unknown
|
|
|
|
http://feross.org
|
unknown
|
|
|
|
https://bugzilla.mozilla.org/show_bug.cgi?id=888319
|
unknown
|
|
|
|
https://progressier.com/client/script.js?id=VAP1dMEmm5ag8v6vNcVy
|
unknown
|
|
|
|
https://developer.mozilla.org/en-US/docs/JavaScript/Reference/Operators/Bitwise_Operators
|
unknown
|
|
|
|
https://github.com/mbloch/mapshaper-proj/blob/master/src/projections/tmerc.js
|
unknown
|
|
There are 64 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
stats.l.doubleclick.net
|
173.194.76.157
|
|
|
|
cdnjs.cloudflare.com
|
104.16.19.94
|
|
|
|
progressier.com
|
151.101.1.195
|
|
|
|
unpkg.com
|
104.16.126.175
|
|
|
|
coronavirus-92ebd.web.app
|
151.101.1.195
|
|
|
|
coronavirus.app
|
151.101.1.195
|
|
|
|
stats.g.doubleclick.net
|
unknown
|
|
IPs
|
IP
|
Domain
|
Country
|
Active
|
Malicious
|
|
|---|---|---|---|---|---|
|
173.194.76.157
|
unknown
|
United States
|
unknown
|
|
|
|
151.101.1.195
|
unknown
|
United States
|
unknown
|
|
|
|
104.16.19.94
|
unknown
|
United States
|
unknown
|
|
|
|
104.16.126.175
|
unknown
|
United States
|
unknown
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\internet explorer\iexplore.exe
|
{D510EB73-5AA9-11EB-90E5-ECF4BB570DC9}
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
CVListPingLastYMD
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
@C:\Windows\System32\ieframe.dll,-912
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
@C:\Windows\System32\ieframe.dll,-904
|
|
There are 16 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
13A0A900000
|
unkown
|
page readonly
|
|
|
|
7FF56CCEE000
|
unkown
|
page readonly
|
|
|
|
7FF596829000
|
unkown
|
page readonly
|
|
|
|
15444AD0000
|
unkown
|
page readonly
|
|
|
|
13A1017C000
|
unkown
|
page readonly
|
|
|
|
13A0BEB5000
|
unkown
|
page read and write
|
|
|
|
7FF5C6AB8000
|
unkown
|
page readonly
|
|
|
|
13A0BE00000
|
unkown
|
page read and write
|
|
|
|
144C6980000
|
unkown
|
page readonly
|
|
|
|
7FF56CC18000
|
unkown
|
page readonly
|
|
|
|
2A182626000
|
unkown
|
page read and write
|
|
|
|
BBBF5FC000
|
unkown
|
page read and write
|
|
|
|
7FF5D1457000
|
unkown
|
page readonly
|
|
|
|
7FF4EAF51000
|
unkown
|
page readonly
|
|
|
|
7FF4EB112000
|
unkown
|
page readonly
|
|
|
|
2453D4CB000
|
unkown
|
page read and write
|
|
|
|
7FF4EAF1C000
|
unkown
|
page readonly
|
|
|
|
7FF4EB165000
|
unkown
|
page readonly
|
|
|
|
21E7765F000
|
unkown
|
page read and write
|
|
|
|
7FF5968EF000
|
unkown
|
page readonly
|
|
|
|
2453D320000
|
heap default
|
page read and write
|
|
|
|
7FF5C6B9E000
|
unkown
|
page readonly
|
|
|
|
15444829000
|
unkown
|
page read and write
|
|
|
|
13A0AABC000
|
unkown
|
page read and write
|
|
|
|
15444A00000
|
unkown
|
page readonly
|
|
|
|
2A18266E000
|
unkown
|
page read and write
|
|
|
|
7FF5C6B7B000
|
unkown
|
page readonly
|
|
|
|
13A10300000
|
unkown
|
page readonly
|
|
|
|
7FF5D144D000
|
unkown
|
page readonly
|
|
|
|
13A0BEB6000
|
unkown
|
page read and write
|
|
|
|
22CFCFB0000
|
heap private
|
page read and write
|
|
|
|
144C6A13000
|
unkown
|
page read and write
|
|
|
|
144C6A79000
|
unkown
|
page read and write
|
|
|
|
7FF5C697F000
|
unkown
|
page readonly
|
|
|
|
15445200000
|
unkown
|
page read and write
|
|
|
|
27D907B000
|
unkown
|
page read and write
|
|
|
|
22CFB390000
|
unkown
|
page read and write
|
|
|
|
144C6940000
|
unkown
|
page readonly
|
|
|
|
7FF5C68AD000
|
unkown
|
page readonly
|
|
|
|
7FF5C6ADD000
|
unkown
|
page readonly
|
|
|
|
7FF56CCBF000
|
unkown
|
page readonly
|
|
|
|
144C6870000
|
unkown
|
page readonly
|
|
|
|
7FF50AC89000
|
unkown
|
page readonly
|
|
|
|
9DC0A7C000
|
unkown
|
page read and write
|
|
|
|
7FF4EB173000
|
unkown
|
page readonly
|
|
|
|
13A101E0000
|
unkown
|
page read and write
|
|
|
|
7FF4EAFE8000
|
unkown
|
page readonly
|
|
|
|
477A97F000
|
unkown
|
page read and write
|
|
|
|
13A10108000
|
unkown
|
page read and write
|
|
|
|
7FF50AD16000
|
unkown
|
page readonly
|
|
|
|
2A18267A000
|
unkown
|
page read and write
|
|
|
|
7FF5C6AE5000
|
unkown
|
page readonly
|
|
|
|
13A0BE4E000
|
unkown
|
page read and write
|
|
|
|
144C7202000
|
unkown
|
page read and write
|
|
|
|
71137E000
|
unkown
|
page read and write
|
|
|
|
2A182613000
|
unkown
|
page read and write
|
|
|
|
13A0A820000
|
heap default
|
page read and write
|
|
|
|
477A27E000
|
unkown
|
page read and write
|
|
|
|
22CFB6A5000
|
heap private
|
page read and write
|
|
|
|
2453D43E000
|
unkown
|
page read and write
|
|
|
|
7FF5967F7000
|
unkown
|
page readonly
|
|
|
|
7FF4EAF21000
|
unkown
|
page readonly
|
|
|
|
2A18265A000
|
unkown
|
page read and write
|
|
|
|
7FF5C6BAF000
|
unkown
|
page readonly
|
|
|
|
13A0AB13000
|
unkown
|
page read and write
|
|
|
|
7FF4EAA79000
|
unkown
|
page readonly
|
|
|
|
13A0AA00000
|
unkown
|
page read and write
|
|
|
|
13A0BDB0000
|
unkown
|
page read and write
|
|
|
|
7FF50AC5C000
|
unkown
|
page readonly
|
|
|
|
7FF50AD4F000
|
unkown
|
page readonly
|
|
|
|
144C6A00000
|
unkown
|
page read and write
|
|
|
|
144C6C00000
|
unkown
|
page readonly
|
|
|
|
144C6960000
|
unkown
|
page read and write
|
|
|
|
2A182662000
|
unkown
|
page read and write
|
|
|
|
BBBF17C000
|
unkown
|
page read and write
|
|
|
|
7FF4EB195000
|
unkown
|
page readonly
|
|
|
|
13A0BE41000
|
unkown
|
page read and write
|
|
|
|
13A0AAA3000
|
unkown
|
page read and write
|
|
|
|
144C6950000
|
unkown
|
page readonly
|
|
|
|
13A0A910000
|
unkown
|
page readonly
|
|
|
|
13A0BEA3000
|
unkown
|
page read and write
|
|
|
|
7FF5968BB000
|
unkown
|
page readonly
|
|
|
|
144C6860000
|
heap default
|
page read and write
|
|
|
|
7FF526E0D000
|
unkown
|
page readonly
|
|
|
|
13A0AFF3000
|
unkown
|
page read and write
|
|
|
|
27D9DFC000
|
unkown
|
page read and write
|
|
|
|
7FF526C1D000
|
unkown
|
page readonly
|
|
|
|
7FF4EACDF000
|
unkown
|
page readonly
|
|
|
|
7FF5C6942000
|
unkown
|
page readonly
|
|
|
|
2453D330000
|
unkown
|
page readonly
|
|
|
|
2A182580000
|
unkown
|
page readonly
|
|
|
|
144C6A6F000
|
unkown
|
page read and write
|
|
|
|
13A101E0000
|
unkown
|
page read and write
|
|
|
|
7FF526CF2000
|
unkown
|
page readonly
|
|
|
|
7FF5967D3000
|
unkown
|
page readonly
|
|
|
|
E3A837E000
|
unkown
|
page read and write
|
|
|
|
7FF4EB1EF000
|
unkown
|
page readonly
|
|
|
|
13A10100000
|
unkown
|
page read and write
|
|
|
|
13A0BD80000
|
unkown
|
page read and write
|
|
|
|
BBBF2FB000
|
unkown
|
page read and write
|
|
|
|
21E77664000
|
unkown
|
page read and write
|
|
|
|
7FF5D158B000
|
unkown
|
page readonly
|
|
|
|
7FF5D12B6000
|
unkown
|
page readonly
|
|
|
|
7FF5968D4000
|
unkown
|
page readonly
|
|
|
|
BBBECFD000
|
unkown
|
page read and write
|
|
|
|
71157E000
|
unkown
|
page read and write
|
|
|
|
710A7B000
|
unkown
|
page read and write
|
|
|
|
7FF4EB0F0000
|
unkown
|
page readonly
|
|
|
|
7FF526D53000
|
unkown
|
page readonly
|
|
|
|
2A182800000
|
unkown
|
page readonly
|
|
|
|
7FF5D143D000
|
unkown
|
page readonly
|
|
|
|
22CFB3B0000
|
unkown
|
page read and write
|
|
|
|
9DC08FE000
|
unkown
|
page read and write
|
|
|
|
7FF526DF4000
|
unkown
|
page readonly
|
|
|
|
7FF5D159F000
|
unkown
|
page readonly
|
|
|
|
15444840000
|
unkown
|
page read and write
|
|
|
|
7FF4EB214000
|
unkown
|
page readonly
|
|
|
|
71127F000
|
unkown
|
page read and write
|
|
|
|
13A0B930000
|
unkown
|
page readonly
|
|
|
|
13A0BEB0000
|
unkown
|
page read and write
|
|
|
|
7FF5C6A84000
|
unkown
|
page readonly
|
|
|
|
7FF5C6AA7000
|
unkown
|
page readonly
|
|
|
|
7FF50ACB5000
|
unkown
|
page readonly
|
|
|
|
2A18267C000
|
unkown
|
page read and write
|
|
|
|
27D9278000
|
unkown
|
page read and write
|
|
|
|
7FF4EAA83000
|
unkown
|
page readonly
|
|
|
|
21E78000000
|
unkown
|
page readonly
|
|
|
|
22CFCE60000
|
unkown
|
page readonly
|
|
|
|
144C6800000
|
heap private
|
page read and write
|
|
|
|
7FF50AC68000
|
unkown
|
page readonly
|
|
|
|
2453D46E000
|
unkown
|
page read and write
|
|
|
|
13A0B760000
|
unkown
|
page read and write
|
|
|
|
7FF5D1317000
|
unkown
|
page readonly
|
|
|
|
13A0AAB3000
|
unkown
|
page read and write
|
|
|
|
7FF5C6BAF000
|
unkown
|
page readonly
|
|
|
|
7FF5C6BAB000
|
unkown
|
page readonly
|
|
|
|
7FF4EAEBA000
|
unkown
|
page readonly
|
|
|
|
13A0B118000
|
unkown
|
page read and write
|
|
|
|
7FF56CCEB000
|
unkown
|
page readonly
|
|
|
|
2453D4BA000
|
unkown
|
page read and write
|
|
|
|
7FF4EB137000
|
unkown
|
page readonly
|
|
|
|
7FF4EB1F6000
|
unkown
|
page readonly
|
|
|
|
7FF56CBAA000
|
unkown
|
page readonly
|
|
|
|
7FF5D12ED000
|
unkown
|
page readonly
|
|
|
|
7FF59668D000
|
unkown
|
page readonly
|
|
|
|
13A0BE05000
|
unkown
|
page read and write
|
|
|
|
7FF5965E8000
|
unkown
|
page readonly
|
|
|
|
2453D502000
|
unkown
|
page read and write
|
|
|
|
7FF56CC63000
|
unkown
|
page readonly
|
|
|
|
21E77713000
|
unkown
|
page read and write
|
|
|
|
7FF50AC85000
|
unkown
|
page readonly
|
|
|
|
7FF526E0B000
|
unkown
|
page readonly
|
|
|
|
7FF59681D000
|
unkown
|
page readonly
|
|
|
|
7FF4EB22B000
|
unkown
|
page readonly
|
|
|
|
7FF5D10A6000
|
unkown
|
page readonly
|
|
|
|
2A182658000
|
unkown
|
page read and write
|
|
|
|
15444800000
|
unkown
|
page read and write
|
|
|
|
7FF4EAF2D000
|
unkown
|
page readonly
|
|
|
|
7FF50A586000
|
unkown
|
page readonly
|
|
|
|
13A0BDF0000
|
unkown
|
page write copy
|
|
|
|
2A182430000
|
heap private
|
page read and write
|
|
|
|
13A0AA13000
|
unkown
|
page read and write
|
|
|
|
7FF50AD4B000
|
unkown
|
page readonly
|
|
|
|
9DC0AFE000
|
unkown
|
page read and write
|
|
|
|
7FF526BAD000
|
unkown
|
page readonly
|
|
|
|
7FF5C6B80000
|
unkown
|
page readonly
|
|
|
|
15444E60000
|
unkown
|
page readonly
|
|
|
|
21E77668000
|
unkown
|
page read and write
|
|
|
|
7FF56CC10000
|
unkown
|
page readonly
|
|
|
|
2A18263B000
|
unkown
|
page read and write
|
|
|
|
7FF5968ED000
|
unkown
|
page readonly
|
|
|
|
2A182641000
|
unkown
|
page read and write
|
|
|
|
7FF56CCDD000
|
unkown
|
page readonly
|
|
|
|
7FF50AC9A000
|
unkown
|
page readonly
|
|
|
|
7FF5C6B9B000
|
unkown
|
page readonly
|
|
|
|
22CFB44E000
|
heap default
|
page read and write
|
|
|
|
13A0B000000
|
unkown
|
page read and write
|
|
|
|
7FF4EAF53000
|
unkown
|
page readonly
|
|
|
|
15444857000
|
unkown
|
page read and write
|
|
|
|
7FF5968CD000
|
unkown
|
page readonly
|
|
|
|
7FF5967C0000
|
unkown
|
page readonly
|
|
|
|
E3A827E000
|
unkown
|
page read and write
|
|
|
|
13A0BDB0000
|
unkown
|
page read and write
|
|
|
|
710B7E000
|
unkown
|
page read and write
|
|
|
|
2A18265F000
|
unkown
|
page read and write
|
|
|
|
7FF4EB0A4000
|
unkown
|
page readonly
|
|
|
|
BBBF4FF000
|
unkown
|
page read and write
|
|
|
|
15444770000
|
heap private
|
page read and write
|
|
|
|
7FF5C6B6F000
|
unkown
|
page readonly
|
|
|
|
7FF5967FD000
|
unkown
|
page readonly
|
|
|
|
7FF526D05000
|
unkown
|
page readonly
|
|
|
|
13A0AAB7000
|
unkown
|
page read and write
|
|
|
|
DEE85FF000
|
unkown
|
page read and write
|
|
|
|
7FF526D03000
|
unkown
|
page readonly
|
|
|
|
2A182660000
|
unkown
|
page read and write
|
|
|
|
13A0BDF0000
|
unkown
|
page read and write
|
|
|
|
13A0AA76000
|
unkown
|
page read and write
|
|
|
|
13A101B0000
|
unkown
|
page read and write
|
|
|
|
27D90FE000
|
unkown
|
page read and write
|
|
|
|
7FF50AD34000
|
unkown
|
page readonly
|
|
|
|
2A182657000
|
unkown
|
page read and write
|
|
|
|
2453D513000
|
unkown
|
page read and write
|
|
|
|
13A0AA94000
|
unkown
|
page read and write
|
|
|
|
21E77628000
|
unkown
|
page read and write
|
|
|
|
7FF526C84000
|
unkown
|
page readonly
|
|
|
|
7FF526DFB000
|
unkown
|
page readonly
|
|
|
|
7FF5968B6000
|
unkown
|
page readonly
|
|
|
|
2453E140000
|
unkown
|
page readonly
|
|
|
|
2A182646000
|
unkown
|
page read and write
|
|
|
|
13A0B100000
|
unkown
|
page read and write
|
|
|
|
7FF5C696C000
|
unkown
|
page readonly
|
|
|
|
21E77702000
|
unkown
|
page read and write
|
|
|
|
7FF5968DE000
|
unkown
|
page readonly
|
|
|
|
13A102E0000
|
unkown
|
page readonly
|
|
|
|
BBBED7E000
|
unkown
|
page read and write
|
|
|
|
7FF526D45000
|
unkown
|
page readonly
|
|
|
|
2A182702000
|
unkown
|
page read and write
|
|
|
|
7FF4EB108000
|
unkown
|
page readonly
|
|
|
|
7FF4EB1E8000
|
unkown
|
page readonly
|
|
|
|
7FF56CC43000
|
unkown
|
page readonly
|
|
|
|
7FF5C6B94000
|
unkown
|
page readonly
|
|
|
|
2A182669000
|
unkown
|
page read and write
|
|
|
|
7FF56C8DB000
|
unkown
|
page readonly
|
|
|
|
7FF56CC65000
|
unkown
|
page readonly
|
|
|
|
154447E0000
|
unkown
|
page readonly
|
|
|
|
27D9CFA000
|
unkown
|
page read and write
|
|
|
|
7FF526D5A000
|
unkown
|
page readonly
|
|
|
|
13A0BE5E000
|
unkown
|
page read and write
|
|
|
|
13A101C0000
|
unkown
|
page read and write
|
|
|
|
13A10164000
|
unkown
|
page readonly
|
|
|
|
144C7400000
|
unkown
|
page readonly
|
|
|
|
2A182664000
|
unkown
|
page read and write
|
|
|
|
7FF4EB22F000
|
unkown
|
page readonly
|
|
|
|
21E77602000
|
unkown
|
page read and write
|
|
|
|
13A0BE35000
|
unkown
|
page read and write
|
|
|
|
7FF5D1497000
|
unkown
|
page readonly
|
|
|
|
7FF56CC35000
|
unkown
|
page readonly
|
|
|
|
7FF5D155F000
|
unkown
|
page readonly
|
|
|
|
DEE82FE000
|
unkown
|
page read and write
|
|
|
|
22CFD060000
|
heap private
|
page read and write
|
|
|
|
7FF59683A000
|
unkown
|
page readonly
|
|
|
|
7FF5D14EA000
|
unkown
|
page readonly
|
|
|
|
7FF52696E000
|
unkown
|
page readonly
|
|
|
|
13A0BDF4000
|
unkown
|
page readonly
|
|
|
|
22CFCE80000
|
unkown
|
page readonly
|
|
|
|
7FF4EB0DD000
|
unkown
|
page readonly
|
|
|
|
7FF50AA03000
|
unkown
|
page readonly
|
|
|
|
13A0BDC4000
|
unkown
|
page read and write
|
|
|
|
7FF5D1105000
|
unkown
|
page readonly
|
|
|
|
7FF4EAFCD000
|
unkown
|
page readonly
|
|
|
|
7FF52696A000
|
unkown
|
page readonly
|
|
|
|
E3A7D3B000
|
unkown
|
page read and write
|
|
|
|
2A182632000
|
unkown
|
page read and write
|
|
|
|
7FF5D1584000
|
unkown
|
page readonly
|
|
|
|
7FF5C6AFA000
|
unkown
|
page readonly
|
|
|
|
13A0A9E0000
|
unkown
|
page readonly
|
|
|
|
13A0BCF0000
|
unkown
|
page read and write
|
|
|
|
7FF56CCFB000
|
unkown
|
page readonly
|
|
|
|
13A0AA71000
|
unkown
|
page read and write
|
|
|
|
7FF5C6715000
|
unkown
|
page readonly
|
|
|
|
13A0BD70000
|
unkown
|
page read and write
|
|
|
|
21E77800000
|
unkown
|
page readonly
|
|
|
|
7FF526C26000
|
unkown
|
page readonly
|
|
|
|
7FF4EB21E000
|
unkown
|
page readonly
|
|
|
|
7FF4EAEEF000
|
unkown
|
page readonly
|
|
|
|
13A0AFF0000
|
unkown
|
page read and write
|
|
|
|
7FF4EB20D000
|
unkown
|
page readonly
|
|
|
|
13A0AAB8000
|
unkown
|
page read and write
|
|
|
|
13A101E0000
|
unkown
|
page read and write
|
|
|
|
7FF56CBA3000
|
unkown
|
page readonly
|
|
|
|
13A10190000
|
unkown
|
page read and write
|
|
|
|
7FF5D136E000
|
unkown
|
page readonly
|
|
|
|
13A0BE5A000
|
unkown
|
page read and write
|
|
|
|
7FF50AC93000
|
unkown
|
page readonly
|
|
|
|
477A7FD000
|
unkown
|
page read and write
|
|
|
|
13A0B970000
|
unkown
|
page readonly
|
|
|
|
144C6A5A000
|
unkown
|
page read and write
|
|
|
|
2453D800000
|
unkown
|
page readonly
|
|
|
|
477A3FF000
|
unkown
|
page read and write
|
|
|
|
13A0B015000
|
unkown
|
page read and write
|
|
|
|
22CFD38F000
|
heap private
|
page read and write
|
|
|
|
7FF526D28000
|
unkown
|
page readonly
|
|
|
|
7FF4EB169000
|
unkown
|
page readonly
|
|
|
|
7FF50AD3E000
|
unkown
|
page readonly
|
|
|
|
15445002000
|
unkown
|
page read and write
|
|
|
|
7FF5968AF000
|
unkown
|
page readonly
|
|
|
|
13A0BCC1000
|
unkown
|
page read and write
|
|
|
|
7FF5D1482000
|
unkown
|
page readonly
|
|
|
|
2453D400000
|
unkown
|
page read and write
|
|
|
|
27D9BFF000
|
unkown
|
page read and write
|
|
|
|
144C6A2A000
|
unkown
|
page read and write
|
|
|
|
7FF526C32000
|
unkown
|
page readonly
|
|
|
|
22CFB5E0000
|
unkown
|
page readonly
|
|
|
|
477A57F000
|
unkown
|
page read and write
|
|
|
|
7FF5D156E000
|
unkown
|
page readonly
|
|
|
|
7FF526DC8000
|
unkown
|
page readonly
|
|
|
|
7FF526CFC000
|
unkown
|
page readonly
|
|
|
|
27D95FF000
|
unkown
|
page read and write
|
|
|
|
7FF4EADD0000
|
unkown
|
page readonly
|
|
|
|
13A10160000
|
unkown
|
page readonly
|
|
|
|
144C6B02000
|
unkown
|
page read and write
|
|
|
|
2A18265C000
|
unkown
|
page read and write
|
|
|
|
E3A847F000
|
unkown
|
page read and write
|
|
|
|
DEE86FB000
|
unkown
|
page read and write
|
|
|
|
2A1824A0000
|
unkown
|
page readonly
|
|
|
|
7FF56CCCB000
|
unkown
|
page readonly
|
|
|
|
13A0AA29000
|
unkown
|
page read and write
|
|
|
|
7FF4EAFE3000
|
unkown
|
page readonly
|
|
|
|
13A10220000
|
unkown
|
page readonly
|
|
|
|
BBBF27D000
|
unkown
|
page read and write
|
|
|
|
21E774C0000
|
heap default
|
page read and write
|
|
|
|
13A0AA98000
|
unkown
|
page read and write
|
|
|
|
7FF56C8ED000
|
unkown
|
page readonly
|
|
|
|
144C6F90000
|
unkown
|
page readonly
|
|
|
|
27D9B7C000
|
unkown
|
page read and write
|
|
|
|
2453D4E1000
|
unkown
|
page read and write
|
|
|
|
7FF526DCF000
|
unkown
|
page readonly
|
|
|
|
7FF4EB11C000
|
unkown
|
page readonly
|
|
|
|
7FF5D1450000
|
unkown
|
page readonly
|
|
|
|
2A182600000
|
unkown
|
page read and write
|
|
|
|
2453D429000
|
unkown
|
page read and write
|
|
|
|
DEE827E000
|
unkown
|
page read and write
|
|
|
|
13A0BD60000
|
unkown
|
page read and write
|
|
|
|
4779F2C000
|
unkown
|
page read and write
|
|
|
|
15444813000
|
unkown
|
page read and write
|
|
|
|
710AFD000
|
unkown
|
page read and write
|
|
|
|
2A182570000
|
unkown
|
page readonly
|
|
|
|
71117E000
|
unkown
|
page read and write
|
|
|
|
7FF4EB21B000
|
unkown
|
page readonly
|
|
|
|
15444802000
|
unkown
|
page read and write
|
|
|
|
22CFB510000
|
unkown
|
page readonly
|
|
|
|
27D997E000
|
unkown
|
page read and write
|
|
|
|
7FF5C6AF3000
|
unkown
|
page readonly
|
|
|
|
7FF526BA2000
|
unkown
|
page readonly
|
|
|
|
21E77700000
|
unkown
|
page read and write
|
|
|
|
21E77B90000
|
unkown
|
page readonly
|
|
|
|
BBBEFFE000
|
unkown
|
page read and write
|
|
|
|
2453D413000
|
unkown
|
page read and write
|
|
|
|
BBBF6FF000
|
unkown
|
page read and write
|
|
|
|
13A0BD90000
|
unkown
|
page read and write
|
|
|
|
154447D0000
|
heap default
|
page read and write
|
|
|
|
13A0BE61000
|
unkown
|
page read and write
|
|
|
|
7FF5968A8000
|
unkown
|
page readonly
|
|
|
|
7FF526CE4000
|
unkown
|
page readonly
|
|
|
|
15444F30000
|
unkown
|
page read and write
|
|
|
|
7FF5269E3000
|
unkown
|
page readonly
|
|
|
|
7FF5968C0000
|
unkown
|
page readonly
|
|
|
|
7FF50AC47000
|
unkown
|
page readonly
|
|
|
|
2A182648000
|
unkown
|
page read and write
|
|
|
|
13A0A7C0000
|
heap private
|
page read and write
|
|
|
|
7FF4EB1FE000
|
unkown
|
page readonly
|
|
|
|
13A0AB02000
|
unkown
|
page read and write
|
|
|
|
21E77460000
|
heap private
|
page read and write
|
|
|
|
7FF5D12E5000
|
unkown
|
page readonly
|
|
|
|
7FF56C9E3000
|
unkown
|
page readonly
|
|
|
|
13A0AAAD000
|
unkown
|
page read and write
|
|
|
|
DEE87FF000
|
unkown
|
page read and write
|
|
|
|
2453DC02000
|
unkown
|
page read and write
|
|
|
|
7FF4EB104000
|
unkown
|
page readonly
|
|
|
|
144C6A66000
|
unkown
|
page read and write
|
|
|
|
2A182667000
|
unkown
|
page read and write
|
|
|
|
7FF4EAD95000
|
unkown
|
page readonly
|
|
|
|
13A101E0000
|
unkown
|
page readonly
|
|
|
|
710F7F000
|
unkown
|
page read and write
|
|
|
|
7FF5D122A000
|
unkown
|
page readonly
|
|
|
|
27D9EFE000
|
unkown
|
page read and write
|
|
|
|
13A101A0000
|
unkown
|
page read and write
|
|
|
|
7FF4EADAA000
|
unkown
|
page readonly
|
|
|
|
7FF526D3D000
|
unkown
|
page readonly
|
|
|
|
2453D487000
|
unkown
|
page read and write
|
|
|
|
7FF50AD08000
|
unkown
|
page readonly
|
|
|
|
21E77640000
|
unkown
|
page read and write
|
|
|
|
13A0AAA6000
|
unkown
|
page read and write
|
|
|
|
2A18267D000
|
unkown
|
page read and write
|
|
|
|
BBBEC7C000
|
unkown
|
page read and write
|
|
|
|
7FF4EB148000
|
unkown
|
page readonly
|
|
|
|
7FF5D0DE4000
|
unkown
|
page readonly
|
|
|
|
2A182642000
|
unkown
|
page read and write
|
|
|
|
2A182490000
|
heap default
|
page read and write
|
|
|
|
7FF526DDB000
|
unkown
|
page readonly
|
|
|
|
13A1010E000
|
unkown
|
page read and write
|
|
|
|
710E7E000
|
unkown
|
page read and write
|
|
|
|
BBBF0FE000
|
unkown
|
page read and write
|
|
|
|
13A102C0000
|
unkown
|
page readonly
|
|
|
|
27D94FB000
|
unkown
|
page read and write
|
|
|
|
9DC097E000
|
unkown
|
page read and write
|
|
|
|
7FF4EAD61000
|
unkown
|
page readonly
|
|
|
|
7FF5D159F000
|
unkown
|
page readonly
|
|
|
|
7FF56CCE4000
|
unkown
|
page readonly
|
|
|
|
4779FAE000
|
unkown
|
page read and write
|
|
|
|
27D99FE000
|
unkown
|
page read and write
|
|
|
|
13A0BE89000
|
unkown
|
page read and write
|
|
|
|
13A10178000
|
unkown
|
page write copy
|
|
|
|
7FF5C694D000
|
unkown
|
page readonly
|
|
|
|
7FF5C63D6000
|
unkown
|
page readonly
|
|
|
|
7FF56CC2D000
|
unkown
|
page readonly
|
|
|
|
7FF5C6A92000
|
unkown
|
page readonly
|
|
|
|
7FF5D10D1000
|
unkown
|
page readonly
|
|
|
|
E3A807E000
|
unkown
|
page read and write
|
|
|
|
13A10240000
|
unkown
|
page readonly
|
|
|
|
144C6B13000
|
unkown
|
page read and write
|
|
|
|
7FF4EB127000
|
unkown
|
page readonly
|
|
|
|
7FF5D14D5000
|
unkown
|
page readonly
|
|
|
|
13A0B920000
|
unkown
|
page readonly
|
|
|
|
13A0B159000
|
unkown
|
page read and write
|
|
|
|
7FF4EAF80000
|
unkown
|
page readonly
|
|
|
|
7FF526DDE000
|
unkown
|
page readonly
|
|
|
|
13A0AA58000
|
unkown
|
page read and write
|
|
|
|
21E77E02000
|
unkown
|
page read and write
|
|
|
|
7FF5C6976000
|
unkown
|
page readonly
|
|
|
|
7FF50AD0F000
|
unkown
|
page readonly
|
|
|
|
144C6A41000
|
unkown
|
page read and write
|
|
|
|
22CFD120000
|
heap private
|
page read and write
|
|
|
|
22CFB3D0000
|
unkown
|
page readonly
|
|
|
|
22CFB410000
|
heap default
|
page read and write
|
|
|
|
7FF4EADD3000
|
unkown
|
page readonly
|
|
|
|
13A0AA8F000
|
unkown
|
page read and write
|
|
|
|
7FF56CC0C000
|
unkown
|
page readonly
|
|
|
|
7FF5D14E3000
|
unkown
|
page readonly
|
|
|
|
13A0B159000
|
unkown
|
page read and write
|
|
|
|
710D7C000
|
unkown
|
page read and write
|
|
|
|
7FF5965A6000
|
unkown
|
page readonly
|
|
|
|
7FF5D1566000
|
unkown
|
page readonly
|
|
|
|
2A182590000
|
unkown
|
page read and write
|
|
|
|
477A67D000
|
unkown
|
page read and write
|
|
|
|
7FF5968EF000
|
unkown
|
page readonly
|
|
|
|
9DC087E000
|
unkown
|
page read and write
|
|
|
|
13A0BE13000
|
unkown
|
page read and write
|
|
|
|
7FF526D1C000
|
unkown
|
page readonly
|
|
|
|
7FF526D17000
|
unkown
|
page readonly
|
|
|
|
144C6A76000
|
unkown
|
page read and write
|
|
|
|
7FF5D156B000
|
unkown
|
page readonly
|
|
|
|
2A18264E000
|
unkown
|
page read and write
|
|
|
|
9DC09FD000
|
unkown
|
page read and write
|
|
|
|
13A0B840000
|
unkown
|
page read and write
|
|
|
|
7FF4EB0E7000
|
unkown
|
page readonly
|
|
|
|
13A0BCE0000
|
unkown
|
page read and write
|
|
|
|
7FF56CBF7000
|
unkown
|
page readonly
|
|
|
|
7FF5C6B76000
|
unkown
|
page readonly
|
|
|
|
7FF5960E0000
|
unkown
|
page readonly
|
|
|
|
13A0BD30000
|
unkown
|
page readonly
|
|
|
|
7FF4EB17A000
|
unkown
|
page readonly
|
|
|
|
7FF4EB100000
|
unkown
|
page readonly
|
|
|
|
13A10000000
|
unkown
|
page read and write
|
|
|
|
13A0AA78000
|
unkown
|
page read and write
|
|
|
|
21E77600000
|
unkown
|
page read and write
|
|
|
|
13A0BEB5000
|
unkown
|
page read and write
|
|
|
|
13A0A830000
|
unkown
|
page readonly
|
|
|
|
13A0B960000
|
unkown
|
page readonly
|
|
|
|
2A182663000
|
unkown
|
page read and write
|
|
|
|
7FF5D148C000
|
unkown
|
page readonly
|
|
|
|
2453DAB0000
|
unkown
|
page readonly
|
|
|
|
2453D600000
|
unkown
|
page readonly
|
|
|
|
144C6A02000
|
unkown
|
page read and write
|
|
|
|
7FF50AD20000
|
unkown
|
page readonly
|
|
|
|
7FF5C68B7000
|
unkown
|
page readonly
|
|
|
|
7FF5D14A7000
|
unkown
|
page readonly
|
|
|
|
21E774D0000
|
unkown
|
page readonly
|
|
|
|
7FF56C8F6000
|
unkown
|
page readonly
|
|
|
|
7FF526AE8000
|
unkown
|
page readonly
|
|
|
|
27D96FB000
|
unkown
|
page read and write
|
|
|
|
7FF526DD6000
|
unkown
|
page readonly
|
|
|
|
13A10121000
|
unkown
|
page read and write
|
|
|
|
7FF4EB22F000
|
unkown
|
page readonly
|
|
|
|
22CFB6A0000
|
heap private
|
page read and write
|
|
|
|
13A0BDC0000
|
unkown
|
page read and write
|
|
|
|
7FF5C6AE9000
|
unkown
|
page readonly
|
|
|
|
2453DA70000
|
unkown
|
page readonly
|
|
|
|
22CFD290000
|
heap private
|
page read and write
|
|
|
|
154447F0000
|
unkown
|
page readonly
|
|
|
|
13A0AF90000
|
unkown
|
page read and write
|
|
|
|
7FF4EAD36000
|
unkown
|
page readonly
|
|
|
|
15444902000
|
unkown
|
page read and write
|
|
|
|
2453D2C0000
|
heap private
|
page read and write
|
|
|
|
7FF4EB0E0000
|
unkown
|
page readonly
|
|
|
|
7FF4EAFFC000
|
unkown
|
page readonly
|
|
|
|
7FF5C6BAD000
|
unkown
|
page readonly
|
|
|
|
27D917E000
|
unkown
|
page read and write
|
|
|
|
2453D4C2000
|
unkown
|
page read and write
|
|
|
|
15444F60000
|
unkown
|
page read and write
|
|
|
|
7FF4EAF23000
|
unkown
|
page readonly
|
|
|
|
2A182673000
|
unkown
|
page read and write
|
|
|
|
21E77679000
|
unkown
|
page read and write
|
|
|
|
7FF5D157D000
|
unkown
|
page readonly
|
|
|
|
7FF5C683A000
|
unkown
|
page readonly
|
|
|
|
21E77656000
|
unkown
|
page read and write
|
|
|
|
22CFB6B0000
|
unkown
|
page readonly
|
|
|
|
2A182683000
|
unkown
|
page read and write
|
|
|
|
13A0B950000
|
unkown
|
page readonly
|
|
|
|
9DC0B7E000
|
unkown
|
page read and write
|
|
|
|
7FF596833000
|
unkown
|
page readonly
|
|
|
|
13A0C000000
|
unkown
|
page read and write
|
|
|
|
9DC05FC000
|
unkown
|
page read and write
|
|
|
|
27D92FE000
|
unkown
|
page read and write
|
|
|
|
7FF56C8D1000
|
unkown
|
page readonly
|
|
|
|
7FF4EB1FB000
|
unkown
|
page readonly
|
|
|
|
7FF4EB123000
|
unkown
|
page readonly
|
|
|
|
477A47E000
|
unkown
|
page read and write
|
|
|
|
13A0B002000
|
unkown
|
page read and write
|
|
|
|
7FF56CCFF000
|
unkown
|
page readonly
|
|
|
|
7FF5D158E000
|
unkown
|
page readonly
|
|
|
|
7FF5C6A2E000
|
unkown
|
page readonly
|
|
|
|
27D9A7E000
|
unkown
|
page read and write
|
|
|
|
DEE84FB000
|
unkown
|
page read and write
|
|
|
|
2453DE00000
|
unkown
|
page readonly
|
|
|
|
13A0B940000
|
unkown
|
page readonly
|
|
|
|
21E775B0000
|
unkown
|
page readonly
|
|
|
|
2453D9A0000
|
unkown
|
page readonly
|
|
|
|
2A18263D000
|
unkown
|
page read and write
|
|
|
|
DEE7FFB000
|
unkown
|
page read and write
|
|
|
|
71147F000
|
unkown
|
page read and write
|
|
|
|
7FF526C8E000
|
unkown
|
page readonly
|
|
|
|
2A182674000
|
unkown
|
page read and write
|
|
|
|
7FF50AD3B000
|
unkown
|
page readonly
|
|
|
|
2453DD00000
|
unkown
|
page read and write
|
|
|
|
7FF4EB067000
|
unkown
|
page readonly
|
|
|
|
7FF526DFE000
|
unkown
|
page readonly
|
|
|
|
22CFB3E0000
|
unkown
|
page readonly
|
|
|
|
7FF4EAF1A000
|
unkown
|
page readonly
|
|
|
|
7FF526654000
|
unkown
|
page readonly
|
|
|
|
7FF526D07000
|
unkown
|
page readonly
|
|
|
|
7FF50A595000
|
unkown
|
page readonly
|
|
|
|
7FF56CCC6000
|
unkown
|
page readonly
|
|
|
|
7FF596855000
|
unkown
|
page readonly
|
|
|
|
7FF526D75000
|
unkown
|
page readonly
|
|
|
|
2A182661000
|
unkown
|
page read and write
|
|
|
|
13A0B118000
|
unkown
|
page read and write
|
|
|
|
13A0AA41000
|
unkown
|
page read and write
|
|
|
|
13A0BD80000
|
unkown
|
page read and write
|
|
|
|
1544485E000
|
unkown
|
page read and write
|
|
|
|
710C7B000
|
unkown
|
page read and write
|
|
|
|
7FF4EB07F000
|
unkown
|
page readonly
|
|
|
|
2A182645000
|
unkown
|
page read and write
|
|
|
|
13A0AC00000
|
unkown
|
page readonly
|
|
|
|
71167E000
|
unkown
|
page read and write
|
|
|
|
27D97FB000
|
unkown
|
page read and write
|
|
|
|
2A18265E000
|
unkown
|
page read and write
|
|
|
|
7FF5D14CD000
|
unkown
|
page readonly
|
|
|
|
13A0B113000
|
unkown
|
page read and write
|
|
|
|
2A182629000
|
unkown
|
page read and write
|
|
|
|
7FF5C6AC8000
|
unkown
|
page readonly
|
|
|
|
21E77613000
|
unkown
|
page read and write
|
|
|
|
7FF4EAFC4000
|
unkown
|
page readonly
|
|
|
|
13A0B102000
|
unkown
|
page read and write
|
|
|
|
2453DA80000
|
unkown
|
page read and write
|
|
|
|
7FF56CCFF000
|
unkown
|
page readonly
|
|
|
|
7FF4EADB0000
|
unkown
|
page readonly
|
|
|
|
7FF50AD4F000
|
unkown
|
page readonly
|
|
|
|
7FF50AC7D000
|
unkown
|
page readonly
|
|
|
|
7FF5D159D000
|
unkown
|
page readonly
|
|
|
|
144C6A53000
|
unkown
|
page read and write
|
|
|
|
7FF56CCD0000
|
unkown
|
page readonly
|
|
|
|
2A182602000
|
unkown
|
page read and write
|
|
|
|
7FF5C6AA3000
|
unkown
|
page readonly
|
|
|
|
7FF526E0F000
|
unkown
|
page readonly
|
|
|
|
7FF5D14D9000
|
unkown
|
page readonly
|
|
|
|
13A0BD90000
|
unkown
|
page read and write
|
|
|
|
7FF5C6ABC000
|
unkown
|
page readonly
|
|
|
|
7FF5C6B8D000
|
unkown
|
page readonly
|
|
|
|
7FF56CB9F000
|
unkown
|
page readonly
|
|
|
|
7FF4EADA4000
|
unkown
|
page readonly
|
|
|
|
2A182644000
|
unkown
|
page read and write
|
|
|
|
21E775C0000
|
unkown
|
page read and write
|
|
|
|
13A10124000
|
unkown
|
page read and write
|
|
|
|
7FF5D1558000
|
unkown
|
page readonly
|
|
|
|
7FF5967E7000
|
unkown
|
page readonly
|
|
|
|
144C6A58000
|
unkown
|
page read and write
|
|
|
|
BBBEE7C000
|
unkown
|
page read and write
|
|
|
|
7FF4EAA00000
|
unkown
|
page readonly
|
|
|
|
22CFB330000
|
unkown
|
page readonly
|
|
|
|
13A0B980000
|
unkown
|
page readonly
|
|
|
|
13A0BE28000
|
unkown
|
page read and write
|
|
|
|
E3A7DBE000
|
unkown
|
page read and write
|
|
|
|
27D987E000
|
unkown
|
page read and write
|
|
|
|
7FF526E0F000
|
unkown
|
page readonly
|
|
|
|
7FF5D1505000
|
unkown
|
page readonly
|
|
|
|
15444F60000
|
unkown
|
page read and write
|
|
|
|
2A182E02000
|
unkown
|
page read and write
|
|
|
|
7FF526AD6000
|
unkown
|
page readonly
|
|
|
|
13A10230000
|
unkown
|
page readonly
|
|
|
|
2A182640000
|
unkown
|
page read and write
|
|
|
|
27D93FC000
|
unkown
|
page read and write
|
|
|
|
27D98FF000
|
unkown
|
page read and write
|
|
|
|
477A6FF000
|
unkown
|
page read and write
|
|
|
|
13A0AA7B000
|
unkown
|
page read and write
|
|
|
|
22CFBA40000
|
unkown
|
page readonly
|
|
|
|
13A0A9F0000
|
unkown
|
page read and write
|
|
|
|
7FF50AAED000
|
unkown
|
page readonly
|
|
|
|
477A8FF000
|
unkown
|
page read and write
|
|
|
|
BBBF3FD000
|
unkown
|
page read and write
|
|
|
|
7FF56CC39000
|
unkown
|
page readonly
|
|
|
|
2A18266C000
|
unkown
|
page read and write
|
|
|
|
7FF5268BF000
|
unkown
|
page readonly
|
|
|
|
7FF5967B0000
|
unkown
|
page readonly
|
|
|
|
7FF5968DB000
|
unkown
|
page readonly
|
|
|
|
7FF5C6A9C000
|
unkown
|
page readonly
|
|
|
|
7FF526DED000
|
unkown
|
page readonly
|
|
|
|
7FF596598000
|
unkown
|
page readonly
|
|
|
|
7FF4EB13C000
|
unkown
|
page readonly
|
|
|
|
13A0AAFF000
|
unkown
|
page read and write
|
|
|
|
7FF4EB22D000
|
unkown
|
page readonly
|
|
|
|
7FF56CC6D000
|
unkown
|
page readonly
|
|
|
|
13A0B301000
|
unkown
|
page read and write
|
|
|
|
7FF5D14AC000
|
unkown
|
page readonly
|
|
|
|
71107E000
|
unkown
|
page read and write
|
|
|
|
7FF596825000
|
unkown
|
page readonly
|
|
|
|
7FF5C6B68000
|
unkown
|
page readonly
|
|
|
|
2A18266A000
|
unkown
|
page read and write
|
|
|
|
7FF526D49000
|
unkown
|
page readonly
|
|
|
|
21E775A0000
|
unkown
|
page readonly
|
|
|
|
7FF4EADBF000
|
unkown
|
page readonly
|
|
|
|
7FF4EADE0000
|
unkown
|
page readonly
|
|
|
|
7FF56CCB8000
|
unkown
|
page readonly
|
|
|
|
22CFCE70000
|
unkown
|
page readonly
|
|
|
|
13A0BE84000
|
unkown
|
page read and write
|
|
|
|
7FF50AD1B000
|
unkown
|
page readonly
|
|
|
|
22CFB417000
|
heap default
|
page read and write
|
|
|
|
7FF4EAF37000
|
unkown
|
page readonly
|
|
|
|
2453DAC0000
|
unkown
|
page write copy
|
|
|
|
15444F60000
|
unkown
|
page read and write
|
|
|
|
7FF4EB15D000
|
unkown
|
page readonly
|
|
|
|
2A182659000
|
unkown
|
page read and write
|
|
|
|
7FF5C6B15000
|
unkown
|
page readonly
|
|
There are 613 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://coronavirus.app/
|
|