Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
L33l4OAmc2.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\EQAWN5DV\www.msn[2].xml
|
ASCII text, with no line terminators
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\IB42RK38\contextual.media[1].xml
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{95A953B6-5B84-11EB-90E5-ECF4BB2D2496}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{95A953B8-5B84-11EB-90E5-ECF4BB2D2496}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{B86F3338-5B84-11EB-90E5-ECF4BB2D2496}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{C5F8905C-5B84-11EB-90E5-ECF4BB2D2496}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{DC22DBFD-5B84-11EB-90E5-ECF4BB2D2496}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{E955FAF6-5B84-11EB-90E5-ECF4BB2D2496}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-17529550060\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-18270793970\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-21706820\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-4759708130\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-6757900\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-8760897390\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20259167780\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20332743330\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin8215062560\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\wlm7n14\imagestore.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\1610365466483-9869[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 207x240, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\41-0bee62-68ddb2ab[1].js
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\4996b9[1].woff
|
Web Open Font Format, TrueType, length 45633, version 1.0
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\755f86[1].png
|
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\AAzb5EX[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\BB10MkbM[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\BB1breIx[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\BB1cQDJf[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 622x368,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\BB1cUQNe[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, baseline, precision 8, 100x75,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\BB1cVCCO[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\BB1cVD0f[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\BB1cVDg6[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 100x75, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\BB1cVEZJ[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\BB1cVHRB[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\BB1cVp9D[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\BB1cVq16[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 206x250,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\BB1cVqdO[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\BB1cVsJX[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 304x304, segment length 16, baseline, precision 8, 311x333,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\BB7hjL[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\BBK9Hzy[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\BBO5Geh[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\checksync[1].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\checksync[2].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\dnserror[1]
|
HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\down[1]
|
PNG image data, 15 x 15, 8-bit colormap, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\e151e5[1].gif
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\httpErrorPagesScripts[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\https___console.brax-cdn.com_creatives_b9476698-227d-4478-b354-042472d9181c_TB1541-1200x800_1000x600_edc04e8f9b2886ccace569826d6c8985[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\jquery-2.1.1.min[1].js
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\log[1].gif
|
GIF image data, version 89a, 1 x 1
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\otFlat[1].json
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\otPcCenter[1].json
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\39ab3103-8560-4a55-bfc4-401f897cf6f2[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\83cfba42-7d45-4670-a4a7-a3211ca07534[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\AAyuliQ[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\BB14EN7h[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 192x192, segment length 16, baseline, precision 8, 622x368,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\BB169hTM[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\BB1cGhUx[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\BB1cV7NJ[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 300x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\BB1cV8P9[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\BB1cVgpx[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\BB1cVh31[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 310x166, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\BB1cVheu[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\BB1cVoOT[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 206x250,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\BB1cVpn2[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 350x350, segment length 16, baseline, precision 8, 622x368,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\BB1cVqJc[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\BB1cVsEb[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\BB1cVsgP[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\BB5kTiV[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\BB7gRE[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\BBIbTiS[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\BBPfCZL[1].png
|
GIF image data, version 89a, 50 x 50
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\NewErrorPageTemplate[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\a8a064[1].gif
|
GIF image data, version 89a, 28 x 28
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\cfdbd9[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\de-ch[1].htm
|
HTML document, UTF-8 Unicode text, with very long lines, with CRLF, LF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\down[1]
|
PNG image data, 15 x 15, 8-bit colormap, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\errorPageStrings[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\fcmain[1].js
|
HTML document, ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\httpErrorPagesScripts[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\http___cdn.taboola.com_libtrc_static_thumbnails_GETTY_IMAGES_IBK_606910635__VqZNjsRU[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\http___cdn.taboola.com_libtrc_static_thumbnails_b735c05319719836ca882359e4b7c3ba[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\http___cdn.taboola.com_libtrc_static_thumbnails_f5968ee71007f539c7109c8312af2662[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\nrrV63415[1].js
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\otSDKStub[1].js
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\1610365483417-2329[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 207x240, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\1610365505469-8241[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 207x240, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\55a804ab-e5c6-4b97-9319-86263d365d28[1].json
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\58-acd805-185735b[1].css
|
UTF-8 Unicode text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\85-0f8009-68ddb2ab[1].js
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\AAuTnto[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\BB17milU[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\BB1cUSZi[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, baseline, precision 8, 310x166,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\BB1cVFrs[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\BB1cVHN8[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\BB1cViWd[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\BB1cVo2N[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\BB1cVpn2[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 350x350, segment length 16, baseline, precision 8, 311x333,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\BB1cVumU[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\BB1cVvem[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 300x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\BB7hg4[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\BBIbKhr[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\BBVuddh[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\BBX2afX[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\BBlBV0U[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\BBnYSFZ[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\NewErrorPageTemplate[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\de-ch[1].json
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\dnserror[1]
|
HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\dnserror[2]
|
HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\down[1]
|
PNG image data, 15 x 15, 8-bit colormap, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\errorPageStrings[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\errorPageStrings[2]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\httpErrorPagesScripts[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\iab2Data[1].json
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\medianet[1].htm
|
HTML document, ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\medianet[2].htm
|
HTML document, ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\otTCF-ie[1].js
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\AA7XCQ3[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\BB14hq0P[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 192x192, segment length 16, baseline, precision 8, 622x368,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\BB15AQNm[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 192x192, segment length 16, baseline, precision 8, 622x368,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\BB1ardZ3[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\BB1cEP3G[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\BB1cG73h[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\BB1cSFMf[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 622x368,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\BB1cV7Ls[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\BB1cVF3O[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\BB1cVeix[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\BB1cVhBS[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 310x166, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\BB1cVl5r[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 100x75, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\BB1cVnO8[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 206x250,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\BB1cVr2b[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 310x166, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\BB1cVsZg[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 311x333,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\BB1cVxSO[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 100x75, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\BBRUB0d[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\BBih5H[1].png
|
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\NewErrorPageTemplate[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\a5ea21[1].ico
|
PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\auction[1].htm
|
HTML document, ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\checksync[1].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\checksync[2].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\dnserror[1]
|
HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\down[1]
|
PNG image data, 15 x 15, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\errorPageStrings[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\fcmain[1].js
|
HTML document, ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\httpErrorPagesScripts[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\http___cdn.taboola.com_libtrc_static_thumbnails_GETTY_IMAGES_IBK_542734683__zTLH6vUV[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\http___cdn.taboola.com_libtrc_static_thumbnails_c63444a7cded4449381870b6d61112c8[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\otBannerSdk[1].js
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF0377CF9A7286B8A8.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF0AE63C38E822995C.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF66D42EC5A1454EB9.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF89AA490BE9138CDC.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DFA3242FD66AACE598.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DFBA78AD64862E0299.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\AUUTQIRX3B4EKKL3BPK6.temp
|
data
|
modified
|
|
|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\DJ0CNTVZ73TX83G64IHS.temp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\QIMNY244DTT7CKLSZCKH.temp
|
data
|
dropped
|
|
There are 147 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Windows\SysWOW64\regsvr32.exe
|
regsvr32.exe /s C:\Users\user\Desktop\L33l4OAmc2.dll
|
|
|
|
C:\Windows\System32\loaddll32.exe
|
loaddll32.exe 'C:\Users\user\Desktop\L33l4OAmc2.dll'
|
|
|
|
C:\Windows\SysWOW64\cmd.exe
|
C:\Windows\system32\cmd.exe /c 'C:\Program Files\Internet Explorer\iexplore.exe'
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
C:\Program Files\Internet Explorer\iexplore.exe
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5116 CREDAT:17410 /prefetch:2
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5116 CREDAT:82962 /prefetch:2
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5116 CREDAT:82966 /prefetch:2
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5116 CREDAT:82970 /prefetch:2
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5116 CREDAT:17448 /prefetch:2
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://searchads.msn.net/.cfm?&&kp=1&
|
unknown
|
|
|
|
https://contextual.media.net/medianet.php?cid=8CU157172
|
unknown
|
|
|
|
https://www.msn.com/de-ch/nachrichten/coronareisen
|
unknown
|
|
|
|
https://www.remixd.com/privacy_policy.html
|
unknown
|
|
|
|
https://onedrive.live.com;Fotos
|
unknown
|
|
|
|
https://www.onenote.com/notebooks?WT.mc_id=MSN_OneNote_TopMenu&auth=1&wdorigin=msn
|
unknown
|
|
|
|
https://office.live.com/start/Word.aspx?WT.mc_id=MSN_site;Excel
|
unknown
|
|
|
|
http://ogp.me/ns/fb#
|
unknown
|
|
|
|
https://www.awin1.com/cread.php?awinmid=15168&awinaffid=696593&clickref=de-ch-ss&ued=htt
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/meta-hiltebrand-prangert-anonymen-hassbrief-an/ar-BB1cTJHG?ocid
|
unknown
|
|
|
|
https://outlook.live.com/mail/deeplink/compose;Kalender
|
unknown
|
|
|
|
https://res-a.akamaihd.net/__media__/pics/8000/72/941/fallback1.jpg
|
unknown
|
|
|
|
https://www.skyscanner.net/g/referrals/v1/cars/home?associateid=API_B2B_19305_00002
|
unknown
|
|
|
|
https://www.onenote.com/notebooks?WT.mc_id=MSN_OneNote_Recent&auth=1&wdorigin=msn
|
unknown
|
|
|
|
http://www.reddit.com/
|
unknown
|
|
|
|
https://www.skype.com/
|
unknown
|
|
|
|
https://img.img-taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ce_sharpen%2Ch_311%2Cw_207%2Cc_fill%
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/aargau-schickt-mittel-und-berufssch%c3%bcler-in-fernunterricht/
|
unknown
|
|
|
|
https://s.yimg.com/lo/api/res/1.2/AlAilqKi7W35LtcnI7DHWQ--~A/Zmk9ZmlsbDt3PTIwNztoPTI0MTthcHBpZD1nZW1
|
unknown
|
|
|
|
https://sp.booking.com/index.html?aid=1589774&label=travelnavlink
|
unknown
|
|
|
|
https://beap.gemini.yahoo.com/action?bv=1.0.0&es=_EEjpEUGIS9qrFNdFF9D3GQkjblDgscQnPcT6h2GjtMONqL
|
unknown
|
|
|
|
https://www.msn.com/de-ch/nachrichten/regional
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/er-will-%c3%bcberrascht-werden-am-liebsten-von-sich-selber/ar-B
|
unknown
|
|
|
|
https://onedrive.live.com/?qt=allmyphotos;Aktuelle
|
unknown
|
|
|
|
https://amzn.to/2TTxhNg
|
unknown
|
|
|
|
https://www.skype.com/go/onedrivepromo.download?cm_mmc=MSFT_2390_MSN-com
|
unknown
|
|
|
|
https://client-s.gateway.messenger.live.com
|
unknown
|
|
|
|
https://www.brightcom.com/privacy-policy/
|
unknown
|
|
|
|
https://www.msn.com/de-ch/
|
unknown
|
|
|
|
https://office.live.com/start/PowerPoint.aspx?WT.mc_id=MSN_site
|
unknown
|
|
|
|
https://srtb.msn.com:443/notify/viewedg?rid=c61ecfd15e544e509daf24e14f8fcfe6&r=infopane&i=3&
|
unknown
|
|
|
|
https://contextual.media.net/medianet.php?cid=8CU157172&crid=858412214&size=306x271&https=1
|
unknown
|
|
|
|
https://www.awin1.com/cread.php?awinmid=15168&awinaffid=696593&clickref=de-ch-edge-dhp-river
|
unknown
|
|
|
|
https://bealion.com/politica-de-cookies
|
unknown
|
|
|
|
https://www.msn.com/de-ch
|
unknown
|
|
|
|
https://click.linksynergy.com/deeplink?id=xoqYgl4JDe8&mid=46130&u1=dech_mestripe_store&m
|
unknown
|
|
|
|
https://twitter.com/i/notifications;Ich
|
unknown
|
|
|
|
https://www.awin1.com/cread.php?awinmid=11518&awinaffid=696593&clickref=dech-edge-dhp-infopa
|
unknown
|
|
|
|
https://www.gadsme.com/privacy-policy/
|
unknown
|
|
|
|
https://portal.eu.numbereight.me/policies-license#software-privacy-notice
|
unknown
|
|
|
|
https://contextual.media.net/medianet.php?cid=8CU157172&crid=722878611&size=306x271&http
|
unknown
|
|
|
|
https://www.sway.com/?WT.mc_id=MSN_site&utm_source=MSN&utm_medium=Topnav&utm_campaign=link;PowerPoin
|
unknown
|
|
|
|
https://s.yimg.com/lo/api/res/1.2/.UiDyEjfgZbPhaApSjF6RQ--~A/Zmk9ZmlsbDt3PTIwNztoPTI0MTthcHBpZD1nZW1
|
unknown
|
|
|
|
https://www.msn.com/de-ch/?ocid=iehp&item=deferred_page%3a1&ignorejs=webcore%2fmodules%2fjsb
|
unknown
|
|
|
|
http://www.youtube.com/
|
unknown
|
|
|
|
http://ogp.me/ns#
|
unknown
|
|
|
|
https://docs.prebid.org/privacy.html
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/interview-es-wurden-am-anfang-erwartungen-gesch%c3%bcrt-die-wir
|
unknown
|
|
|
|
https://onedrive.live.com/?qt=mru;OneDrive-App
|
unknown
|
|
|
|
https://www.skype.com/de
|
unknown
|
|
|
|
https://s.yimg.com/lo/api/res/1.2/9FkxQzh8n2OLcwPo6n5irg--~A/Zmk9ZmlsbDt3PTIwNztoPTI0MTthcHBpZD1nZW1
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/die-tonhalle-maag-wird-nicht-als-konzertsaal-weiterbetrieben-so
|
unknown
|
|
|
|
https://sp.booking.com/index.html?aid=1589774&label=dech-prime-hp-me
|
unknown
|
|
|
|
https://www.skype.com/de/download-skype
|
unknown
|
|
|
|
https://www.stroeer.de/fileadmin/de/Konvergenz_und_Konzepte/Daten_und_Technologien/Stroeer_SSP/Downl
|
unknown
|
|
|
|
https://onedrive.live.com/?wt.mc_id=oo_msn_msnhomepage_header
|
unknown
|
|
|
|
http://www.hotmail.msn.com/pii/ReadOutlookEmail/
|
unknown
|
|
|
|
https://channelpilot.co.uk/privacy-policy
|
unknown
|
|
|
|
https://onedrive.live.com;OneDrive-App
|
unknown
|
|
|
|
https://click.linksynergy.com/deeplink?id=xoqYgl4JDe8&mid=46130&u1=dech_mestripe_office&
|
unknown
|
|
|
|
https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location
|
unknown
|
|
|
|
http://www.amazon.com/
|
unknown
|
|
|
|
https://www.onenote.com/notebooks?WT.mc_id=MSN_OneNote_QuickNote&auth=1
|
unknown
|
|
|
|
http://www.twitter.com/
|
unknown
|
|
|
|
https://office.live.com/start/Excel.aspx?WT.mc_id=MSN_site;Sway
|
unknown
|
|
|
|
https://www.admo.tv/en/privacy-policy
|
unknown
|
|
|
|
https://policies.oath.com/us/en/oath/privacy/index.html
|
unknown
|
|
|
|
https://www.bet365affiliates.com/UI/Pages/Affiliates/Affiliates.aspx?ContentPath
|
unknown
|
|
|
|
http://lopppooole.xyz/manifest/M3_2FUn7Zn/P7hjZWI4wgXQe_2Fy/_2B8eN3SLyH8/DKe1i7CLZwc/LjMi6PEXDiUKq3/
|
unknown
|
|
|
|
https://ir2.beap.gemini.yahoo.com/mbcsc?bv=1.0.0&es=i1OFWH4GIS.kmQB5mhlVoqNXXhhGk_JjZYIiMQ07ZTAg
|
unknown
|
|
|
|
https://cdn.cookielaw.org/vendorlist/googleData.json
|
unknown
|
|
|
|
https://outlook.com/
|
unknown
|
|
|
|
https://rover.ebay.com/rover/1/5222-53480-19255-0/1?mpre=https%3A%2F%2Fwww.ebay.ch&campid=533862
|
unknown
|
|
|
|
https://contextual.media.net/checksync.php?&vsSync=1&cs=1&hb=1&cv=37&ndec=1&cid=8HBI57XIG&prvid=77%2
|
unknown
|
|
|
|
https://cdn.cookielaw.org/vendorlist/iabData.json
|
unknown
|
|
|
|
https://www.msn.com/de-ch/homepage/api/pdp/updatepdpdata"
|
unknown
|
|
|
|
https://www.awin1.com/cread.php?awinmid=15168&awinaffid=696593&clickref=de-ch&ued=https%
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/steuerhinterziehung-mit-hochkar%c3%a4tiger-kunst-in-der-causa-s
|
unknown
|
|
|
|
https://cdn.cookielaw.org/vendorlist/iab2Data.json
|
unknown
|
|
|
|
https://onedrive.live.com/?qt=mru;Aktuelle
|
unknown
|
|
|
|
https://cdn.flurry.com/adTemplates/templates/htmls/clips.html"
|
unknown
|
|
|
|
https://www.msn.com/de-ch/?ocid=iehp
|
unknown
|
|
|
|
https://sp.booking.com/index.html?aid=1589774&label=dech-prime-hp-shoppingstripe-nav
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/80-k%c3%a4lber-aus-brennendem-stall-evakuiert/ar-BB1cVbsV?ocid=
|
unknown
|
|
|
|
https://www.msn.com/de-ch/homepage/api/modules/fetch"
|
unknown
|
|
|
|
https://mem.gfx.ms/meversion/?partner=msn&market=de-ch"
|
unknown
|
|
|
|
http://www.nytimes.com/
|
unknown
|
|
|
|
https://web.vortex.data.msn.com/collect/v1/t.gif?name=%27Ms.Webi.PageView%27&ver=%272.1%27&a
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/im-alterszentrum-sydef%c3%a4deli-geschah-ein-tragischer-corona-
|
unknown
|
|
|
|
https://www.bidstack.com/privacy-policy/
|
unknown
|
|
|
|
https://onedrive.live.com/about/en/download/
|
unknown
|
|
|
|
http://popup.taboola.com/german
|
unknown
|
|
|
|
https://listonic.com/privacy/
|
unknown
|
|
|
|
https://www.ricardo.ch/?utm_source=msn&utm_medium=affiliate&utm_campaign=msn_mestripe_logo_d
|
unknown
|
|
|
|
https://twitter.com/
|
unknown
|
|
|
|
http://lopppooole.xyz/manifest/mrHL3GL3ne08vMnBH4/tX69VN9u5/kDOSIodaaDoGbWVD_2BT/0EVs9ycahEVDsNgL7cN
|
unknown
|
|
|
|
https://clkde.tradedoubler.com/click?p=245744&a=3064090&g=24903118&epi=ch-de
|
unknown
|
|
|
|
https://beap.gemini.yahoo.com/mbclk?bv=1.0.0&es=SqCMr_kGIS8wpScWVMdv5hJoHdS6zJuOZOLBI8CXdxVsCN4i
|
unknown
|
|
|
|
https://quantyoo.de/datenschutz
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/sozialdemokraten-bef%c3%bcrworten-sozialdetektive/ar-BB1cTS5w?o
|
unknown
|
|
There are 90 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
contextual.media.net
|
104.85.4.23
|
|
|
|
tls13.taboola.map.fastly.net
|
151.101.1.44
|
|
|
|
hblg.media.net
|
104.85.4.23
|
|
|
|
lg3.media.net
|
104.85.4.23
|
|
|
|
lopppooole.xyz
|
185.186.244.49
|
|
|
|
edge.gycpi.b.yahoodns.net
|
87.248.118.23
|
|
|
|
s.yimg.com
|
unknown
|
|
|
|
web.vortex.data.msn.com
|
unknown
|
|
|
|
www.msn.com
|
unknown
|
|
|
|
srtb.msn.com
|
unknown
|
|
|
|
img.img-taboola.com
|
unknown
|
|
|
|
cvision.media.net
|
unknown
|
|
There are 2 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Active
|
Malicious
|
|
|---|---|---|---|---|---|
|
192.168.2.1
|
unknown
|
unknown
|
unknown
|
|
|
|
185.186.244.49
|
unknown
|
Netherlands
|
unknown
|
|
|
|
87.248.118.23
|
unknown
|
United Kingdom
|
unknown
|
|
|
|
151.101.1.44
|
unknown
|
United States
|
unknown
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\internet explorer\iexplore.exe
|
{95A953B6-5B84-11EB-90E5-ECF4BB2D2496}
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
CVListPingLastYMD
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Window_Placement
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
NextUpdateDate
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NumberOfSubdomains
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
There are 133 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
4EF8000
|
heap private
|
page read and write
|
|
|
|
4EF8000
|
heap private
|
page read and write
|
|
|
|
4EF8000
|
heap private
|
page read and write
|
|
|
|
4EF8000
|
heap private
|
page read and write
|
|
|
|
4EF8000
|
heap private
|
page read and write
|
|
|
|
4EF8000
|
heap private
|
page read and write
|
|
|
|
4EF8000
|
heap private
|
page read and write
|
|
|
|
4EF8000
|
heap private
|
page read and write
|
|
|
|
153A03A0000
|
unkown
|
page read and write
|
|
|
|
173BB980000
|
unkown
|
page read and write
|
|
|
|
7FF4FC75D000
|
unkown
|
page readonly
|
|
|
|
28C8852D000
|
unkown
|
page read and write
|
|
|
|
7FF5EF186000
|
unkown
|
page readonly
|
|
|
|
23380B15000
|
unkown
|
page read and write
|
|
|
|
7FF5AA3D7000
|
unkown
|
page readonly
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
23382B23000
|
unkown
|
page read and write
|
|
|
|
7FF5DF81D000
|
unkown
|
page readonly
|
|
|
|
7FF51BAB3000
|
unkown
|
page readonly
|
|
|
|
173BAB02000
|
heap default
|
page read and write
|
|
|
|
1539B959000
|
unkown
|
page read and write
|
|
|
|
7FF5EF3D9000
|
unkown
|
page readonly
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
23382B0A000
|
unkown
|
page read and write
|
|
|
|
153A08A0000
|
unkown
|
page read and write
|
|
|
|
173BAB09000
|
unkown
|
page read and write
|
|
|
|
160219C1000
|
unkown
|
page read and write
|
|
|
|
7FF4FC742000
|
unkown
|
page readonly
|
|
|
|
7FF5AAB0A000
|
unkown
|
page readonly
|
|
|
|
28BE1EE9000
|
unkown
|
page read and write
|
|
|
|
28C864A9000
|
unkown
|
page read and write
|
|
|
|
28BE1EF9000
|
unkown
|
page read and write
|
|
|
|
7FF5EF43D000
|
unkown
|
page readonly
|
|
|
|
1F83486D000
|
unkown
|
page read and write
|
|
|
|
1539AFC0000
|
unkown
|
page readonly
|
|
|
|
7FF4FC806000
|
unkown
|
page readonly
|
|
|
|
1B1AF75000
|
unkown
|
page read and write
|
|
|
|
7FF574376000
|
unkown
|
page readonly
|
|
|
|
6E1B6000
|
unkown image
|
page readonly
|
|
|
|
1539B013000
|
unkown
|
page read and write
|
|
|
|
23382B64000
|
unkown
|
page read and write
|
|
|
|
28C864B9000
|
unkown
|
page read and write
|
|
|
|
981607B000
|
unkown
|
page read and write
|
|
|
|
28C864B9000
|
unkown
|
page read and write
|
|
|
|
21DE000
|
unkown
|
page readonly
|
|
|
|
1B1B3FE000
|
unkown
|
page read and write
|
|
|
|
7FF5EEFB2000
|
unkown
|
page readonly
|
|
|
|
7FF5D7E87000
|
unkown
|
page readonly
|
|
|
|
7FF5EF190000
|
unkown
|
page readonly
|
|
|
|
1539B918000
|
unkown
|
page read and write
|
|
|
|
6E1FA000
|
unkown image
|
page readonly
|
|
|
|
7FF5C0817000
|
unkown
|
page readonly
|
|
|
|
28C88530000
|
unkown
|
page read and write
|
|
|
|
153A06B2000
|
unkown
|
page read and write
|
|
|
|
7FF51BAC2000
|
unkown
|
page readonly
|
|
|
|
7FF59130F000
|
unkown
|
page readonly
|
|
|
|
28BE2566000
|
unkown
|
page read and write
|
|
|
|
7FF591562000
|
unkown
|
page readonly
|
|
|
|
EE3CFF000
|
unkown
|
page read and write
|
|
|
|
28BE2564000
|
unkown
|
page read and write
|
|
|
|
7FF4FC71F000
|
unkown
|
page readonly
|
|
|
|
2622AFE000
|
unkown
|
page read and write
|
|
|
|
173BAB10000
|
unkown
|
page read and write
|
|
|
|
7FF5C08F7000
|
unkown
|
page readonly
|
|
|
|
23383010000
|
unkown
|
page read and write
|
|
|
|
7FF5AA9F8000
|
unkown
|
page readonly
|
|
|
|
16021A90000
|
unkown
|
page readonly
|
|
|
|
28C8652F000
|
unkown
|
page read and write
|
|
|
|
28BE2577000
|
unkown
|
page read and write
|
|
|
|
28C88564000
|
unkown
|
page read and write
|
|
|
|
23380A09000
|
unkown
|
page read and write
|
|
|
|
161EE480000
|
unkown
|
page readonly
|
|
|
|
28BE23B0000
|
unkown
|
page readonly
|
|
|
|
28C89010000
|
unkown
|
page read and write
|
|
|
|
28C86400000
|
unkown
|
page read and write
|
|
|
|
7FF5D7EE7000
|
unkown
|
page readonly
|
|
|
|
7FF5EF054000
|
unkown
|
page readonly
|
|
|
|
226D863F000
|
unkown
|
page read and write
|
|
|
|
28C86563000
|
unkown
|
page read and write
|
|
|
|
2244C390000
|
heap private
|
page read and write
|
|
|
|
23382B02000
|
unkown
|
page read and write
|
|
|
|
7FF5913F7000
|
unkown
|
page readonly
|
|
|
|
7FF51BA87000
|
unkown
|
page readonly
|
|
|
|
7FF5DF66A000
|
unkown
|
page readonly
|
|
|
|
28C88402000
|
unkown
|
page read and write
|
|
|
|
28BE2577000
|
unkown
|
page read and write
|
|
|
|
272A000
|
unkown
|
page read and write
|
|
|
|
7FF4FC723000
|
unkown
|
page readonly
|
|
|
|
7FF57476B000
|
unkown
|
page readonly
|
|
|
|
7FF4FC481000
|
unkown
|
page readonly
|
|
|
|
1B1B1F7000
|
unkown
|
page read and write
|
|
|
|
7FF57477A000
|
unkown
|
page readonly
|
|
|
|
1D895E60000
|
heap default
|
page read and write
|
|
|
|
7FF591576000
|
unkown
|
page readonly
|
|
|
|
153A0570000
|
unkown
|
page read and write
|
|
|
|
1F834813000
|
unkown
|
page read and write
|
|
|
|
7FF5EEFFC000
|
unkown
|
page readonly
|
|
|
|
1BD998D0000
|
unkown
|
page readonly
|
|
|
|
7FF51BA0D000
|
unkown
|
page readonly
|
|
|
|
153A08E0000
|
unkown
|
page readonly
|
|
|
|
1BD9964D000
|
unkown
|
page read and write
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
28BE2A00000
|
unkown
|
page read and write
|
|
|
|
1F834640000
|
unkown
|
page readonly
|
|
|
|
1539B08C000
|
unkown
|
page read and write
|
|
|
|
7FF5B59FF000
|
unkown
|
page readonly
|
|
|
|
153A06B7000
|
unkown
|
page read and write
|
|
|
|
28BE1E51000
|
unkown
|
page read and write
|
|
|
|
153A0808000
|
unkown
|
page read and write
|
|
|
|
7FF4FC620000
|
unkown
|
page readonly
|
|
|
|
28BE2577000
|
unkown
|
page read and write
|
|
|
|
7FF5EF357000
|
unkown
|
page readonly
|
|
|
|
BBDACFA000
|
unkown
|
page read and write
|
|
|
|
28C89810000
|
unkown
|
page read and write
|
|
|
|
1539B056000
|
unkown
|
page read and write
|
|
|
|
28C864B9000
|
unkown
|
page read and write
|
|
|
|
7FF5915ED000
|
unkown
|
page readonly
|
|
|
|
28C86563000
|
unkown
|
page read and write
|
|
|
|
7FF4FC70F000
|
unkown
|
page readonly
|
|
|
|
153A0847000
|
unkown
|
page write copy
|
|
|
|
211E000
|
unkown
|
page readonly
|
|
|
|
28BE2559000
|
unkown
|
page read and write
|
|
|
|
7FF4FAD97000
|
unkown
|
page readonly
|
|
|
|
28BE1F16000
|
unkown
|
page read and write
|
|
|
|
7FF5C0853000
|
unkown
|
page readonly
|
|
|
|
7FF51B9F2000
|
unkown
|
page readonly
|
|
|
|
7FF52B875000
|
unkown
|
page readonly
|
|
|
|
7FF52BA57000
|
unkown
|
page readonly
|
|
|
|
226D8613000
|
unkown
|
page read and write
|
|
|
|
1BD9968E000
|
unkown
|
page read and write
|
|
|
|
28C88530000
|
unkown
|
page read and write
|
|
|
|
28BE25CE000
|
unkown
|
page read and write
|
|
|
|
7FF5D7E8E000
|
unkown
|
page readonly
|
|
|
|
28BE1DF0000
|
unkown
|
page readonly
|
|
|
|
98160FE000
|
unkown
|
page read and write
|
|
|
|
BBDB1FA000
|
unkown
|
page read and write
|
|
|
|
28BE2515000
|
unkown
|
page read and write
|
|
|
|
7FF52BAD2000
|
unkown
|
page readonly
|
|
|
|
BBDAD7A000
|
unkown
|
page read and write
|
|
|
|
153A03F0000
|
unkown
|
page readonly
|
|
|
|
7FF5E2D5D000
|
unkown
|
page readonly
|
|
|
|
28BE2598000
|
unkown
|
page read and write
|
|
|
|
28BE257C000
|
unkown
|
page read and write
|
|
|
|
F7818F7000
|
unkown
|
page read and write
|
|
|
|
7FF5AABA7000
|
unkown
|
page readonly
|
|
|
|
28BE1E4E000
|
unkown
|
page read and write
|
|
|
|
1539B000000
|
unkown
|
page read and write
|
|
|
|
1BD99670000
|
unkown
|
page read and write
|
|
|
|
173BAE39000
|
heap private
|
page read and write
|
|
|
|
4928000
|
heap private
|
page read and write
|
|
|
|
7FF5C08F4000
|
unkown
|
page readonly
|
|
|
|
4EFB000
|
heap private
|
page read and write
|
|
|
|
28BE2559000
|
unkown
|
page read and write
|
|
|
|
5CE87BE000
|
unkown
|
page read and write
|
|
|
|
28C88538000
|
unkown
|
page read and write
|
|
|
|
28BE2567000
|
unkown
|
page read and write
|
|
|
|
7FF5C08FD000
|
unkown
|
page readonly
|
|
|
|
7FF5C0829000
|
unkown
|
page readonly
|
|
|
|
5CE873C000
|
unkown
|
page read and write
|
|
|
|
173BB320000
|
unkown
|
page readonly
|
|
|
|
EE3F7E000
|
unkown
|
page read and write
|
|
|
|
7FF5C0942000
|
unkown
|
page readonly
|
|
|
|
23380C00000
|
unkown
|
page readonly
|
|
|
|
28BE2A54000
|
unkown
|
page read and write
|
|
|
|
28C86290000
|
heap default
|
page read and write
|
|
|
|
7FF4FC817000
|
unkown
|
page readonly
|
|
|
|
28C88240000
|
unkown
|
page read and write
|
|
|
|
28BE257F000
|
unkown
|
page read and write
|
|
|
|
7FF4FABF8000
|
unkown
|
page readonly
|
|
|
|
173BB720000
|
unkown
|
page read and write
|
|
|
|
1BD995A0000
|
unkown
|
page read and write
|
|
|
|
161EFEB0000
|
heap private
|
page read and write
|
|
|
|
7FF4FC711000
|
unkown
|
page readonly
|
|
|
|
28C885E2000
|
unkown
|
page read and write
|
|
|
|
F781779000
|
unkown
|
page read and write
|
|
|
|
BBDB4FB000
|
unkown
|
page read and write
|
|
|
|
226D85D0000
|
unkown
|
page read and write
|
|
|
|
28BE258F000
|
unkown
|
page read and write
|
|
|
|
233809F0000
|
unkown
|
page read and write
|
|
|
|
28BE2556000
|
unkown
|
page read and write
|
|
|
|
7FF52B996000
|
unkown
|
page readonly
|
|
|
|
28BE25C0000
|
unkown
|
page read and write
|
|
|
|
BBDB8FB000
|
unkown
|
page read and write
|
|
|
|
16021997000
|
heap default
|
page read and write
|
|
|
|
28C8852B000
|
unkown
|
page read and write
|
|
|
|
25DC000
|
unkown
|
page readonly
|
|
|
|
7FF52BAC6000
|
unkown
|
page readonly
|
|
|
|
23380A54000
|
unkown
|
page read and write
|
|
|
|
28C89210000
|
unkown
|
page read and write
|
|
|
|
7FF591556000
|
unkown
|
page readonly
|
|
|
|
160219B7000
|
unkown
|
page read and write
|
|
|
|
160219C1000
|
unkown
|
page read and write
|
|
|
|
28BE2573000
|
unkown
|
page read and write
|
|
|
|
28BE2554000
|
unkown
|
page read and write
|
|
|
|
9EEC1FA000
|
unkown
|
page read and write
|
|
|
|
28BE2556000
|
unkown
|
page read and write
|
|
|
|
7FF5B5D76000
|
unkown
|
page readonly
|
|
|
|
7FF5EF1CB000
|
unkown
|
page readonly
|
|
|
|
7FF5C089E000
|
unkown
|
page readonly
|
|
|
|
7FF51B79F000
|
unkown
|
page readonly
|
|
|
|
23382C00000
|
unkown
|
page readonly
|
|
|
|
7FF4FC7D4000
|
unkown
|
page readonly
|
|
|
|
7FF5EF37F000
|
unkown
|
page readonly
|
|
|
|
28BE2560000
|
unkown
|
page read and write
|
|
|
|
1D896100000
|
unkown
|
page read and write
|
|
|
|
28BE2567000
|
unkown
|
page read and write
|
|
|
|
1539B913000
|
unkown
|
page read and write
|
|
|
|
7FF5B5DE1000
|
unkown
|
page readonly
|
|
|
|
7FF5E2DA7000
|
unkown
|
page readonly
|
|
|
|
161EE350000
|
unkown
|
page read and write
|
|
|
|
7FF51BA19000
|
unkown
|
page readonly
|
|
|
|
7FF51B9EA000
|
unkown
|
page readonly
|
|
|
|
7FF5746E6000
|
unkown
|
page readonly
|
|
|
|
7FF57447F000
|
unkown
|
page readonly
|
|
|
|
7FF5B5E26000
|
unkown
|
page readonly
|
|
|
|
9EEC0FA000
|
unkown
|
page read and write
|
|
|
|
48A9000
|
heap private
|
page read and write
|
|
|
|
2151000
|
unkown
|
page readonly
|
|
|
|
1539AE80000
|
heap private
|
page read and write
|
|
|
|
1F834710000
|
unkown
|
page write copy
|
|
|
|
7FF5EEC96000
|
unkown
|
page readonly
|
|
|
|
28BE1D10000
|
unkown
|
page readonly
|
|
|
|
153A0584000
|
unkown
|
page read and write
|
|
|
|
1BD99600000
|
unkown
|
page read and write
|
|
|
|
1D9D2F80000
|
heap default
|
page read and write
|
|
|
|
7FF5DF64F000
|
unkown
|
page readonly
|
|
|
|
28C88572000
|
unkown
|
page read and write
|
|
|
|
7FF4FC72D000
|
unkown
|
page readonly
|
|
|
|
7FF5C0841000
|
unkown
|
page readonly
|
|
|
|
7FF5C0947000
|
unkown
|
page readonly
|
|
|
|
7FF5E2D67000
|
unkown
|
page readonly
|
|
|
|
21A1000
|
unkown
|
page readonly
|
|
|
|
7FF574368000
|
unkown
|
page readonly
|
|
|
|
7FF5913DF000
|
unkown
|
page readonly
|
|
|
|
25B0000
|
unkown
|
page execute and read and write
|
|
|
|
173BAB10000
|
unkown
|
page read and write
|
|
|
|
1BD99E02000
|
unkown
|
page read and write
|
|
|
|
28C86513000
|
unkown
|
page read and write
|
|
|
|
7FF5D7E94000
|
unkown
|
page readonly
|
|
|
|
7FF574757000
|
unkown
|
page readonly
|
|
|
|
5CE8A7E000
|
unkown
|
page read and write
|
|
|
|
7FF5C066F000
|
unkown
|
page readonly
|
|
|
|
4EFB000
|
heap private
|
page read and write
|
|
|
|
28BE1E4F000
|
unkown
|
page read and write
|
|
|
|
28C87EA0000
|
unkown
|
page readonly
|
|
|
|
2244C456000
|
unkown
|
page read and write
|
|
|
|
7FF5B5D89000
|
unkown
|
page readonly
|
|
|
|
5CE8BFE000
|
unkown
|
page read and write
|
|
|
|
1D9D2F90000
|
unkown
|
page write copy
|
|
|
|
153A08A0000
|
unkown
|
page read and write
|
|
|
|
EB59F0B000
|
unkown
|
page read and write
|
|
|
|
7FF5AAB37000
|
unkown
|
page readonly
|
|
|
|
4F10000
|
unkown
|
page readonly
|
|
|
|
EE377A000
|
unkown
|
page read and write
|
|
|
|
BBDBA7D000
|
unkown
|
page read and write
|
|
|
|
28BE259B000
|
unkown
|
page read and write
|
|
|
|
7FF4FAD06000
|
unkown
|
page readonly
|
|
|
|
28C88570000
|
unkown
|
page read and write
|
|
|
|
7FF5DF5A5000
|
unkown
|
page readonly
|
|
|
|
EE3D7F000
|
unkown
|
page read and write
|
|
|
|
7FF5AA95F000
|
unkown
|
page readonly
|
|
|
|
161EE570000
|
unkown
|
page readonly
|
|
|
|
28BE2566000
|
unkown
|
page read and write
|
|
|
|
7FF4FC736000
|
unkown
|
page readonly
|
|
|
|
7FF4FC606000
|
unkown
|
page readonly
|
|
|
|
28BE1F08000
|
unkown
|
page read and write
|
|
|
|
1D896802000
|
unkown
|
page read and write
|
|
|
|
173BAE30000
|
heap private
|
page read and write
|
|
|
|
7FF5EF38F000
|
unkown
|
page readonly
|
|
|
|
7FF5DF894000
|
unkown
|
page readonly
|
|
|
|
28BE2562000
|
unkown
|
page read and write
|
|
|
|
7FF5913DD000
|
unkown
|
page readonly
|
|
|
|
7FF5DF718000
|
unkown
|
page readonly
|
|
|
|
23380AB4000
|
unkown
|
page read and write
|
|
|
|
7FF5EF243000
|
unkown
|
page readonly
|
|
|
|
1D895F50000
|
unkown
|
page readonly
|
|
|
|
28C865A4000
|
unkown
|
page read and write
|
|
|
|
23380ABB000
|
unkown
|
page read and write
|
|
|
|
49BE000
|
unkown
|
page read and write
|
|
|
|
EE39FA000
|
unkown
|
page read and write
|
|
|
|
28C86230000
|
heap private
|
page read and write
|
|
|
|
7FF5EF39D000
|
unkown
|
page readonly
|
|
|
|
28C88802000
|
unkown
|
page read and write
|
|
|
|
7FF5EF374000
|
unkown
|
page readonly
|
|
|
|
7FF5AABAB000
|
unkown
|
page readonly
|
|
|
|
7FF4FAD2D000
|
unkown
|
page readonly
|
|
|
|
7FF5EF1C0000
|
unkown
|
page readonly
|
|
|
|
28BE2569000
|
unkown
|
page read and write
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
7FF5AABBA000
|
unkown
|
page readonly
|
|
|
|
1BD99650000
|
unkown
|
page read and write
|
|
|
|
2204000
|
unkown
|
page readonly
|
|
|
|
28C864C9000
|
unkown
|
page read and write
|
|
|
|
7FF5B5D7D000
|
unkown
|
page readonly
|
|
|
|
28BE2543000
|
unkown
|
page read and write
|
|
|
|
173BB250000
|
unkown
|
page readonly
|
|
|
|
28C88572000
|
unkown
|
page read and write
|
|
|
|
7FF5EF431000
|
unkown
|
page readonly
|
|
|
|
7FF5AAB97000
|
unkown
|
page readonly
|
|
|
|
1D896071000
|
unkown
|
page read and write
|
|
|
|
28C89610000
|
unkown
|
page read and write
|
|
|
|
161EE380000
|
heap default
|
page read and write
|
|
|
|
7FF51B696000
|
unkown
|
page readonly
|
|
|
|
7FF5B5DED000
|
unkown
|
page readonly
|
|
|
|
28BE2588000
|
unkown
|
page read and write
|
|
|
|
58AC7A000
|
unkown
|
page read and write
|
|
|
|
28BE2588000
|
unkown
|
page read and write
|
|
|
|
28BE2563000
|
unkown
|
page read and write
|
|
|
|
28BE1E54000
|
unkown
|
page read and write
|
|
|
|
7FF5AABD3000
|
unkown
|
page readonly
|
|
|
|
1BD9964A000
|
unkown
|
page read and write
|
|
|
|
28BE1F13000
|
unkown
|
page read and write
|
|
|
|
28BE2522000
|
unkown
|
page read and write
|
|
|
|
28C8648D000
|
unkown
|
page read and write
|
|
|
|
28C8652F000
|
unkown
|
page read and write
|
|
|
|
1BD99510000
|
heap private
|
page read and write
|
|
|
|
6E1B3000
|
unkown image
|
page readonly
|
|
|
|
153A0550000
|
unkown
|
page read and write
|
|
|
|
7FF5DF5AF000
|
unkown
|
page readonly
|
|
|
|
7FF5C061F000
|
unkown
|
page readonly
|
|
|
|
28BE2598000
|
unkown
|
page read and write
|
|
|
|
1BD9A000000
|
unkown
|
page readonly
|
|
|
|
28C864B8000
|
unkown
|
page read and write
|
|
|
|
7FF5E294F000
|
unkown
|
page readonly
|
|
|
|
28C885D8000
|
unkown
|
page read and write
|
|
|
|
7FF5C0781000
|
unkown
|
page readonly
|
|
|
|
23382920000
|
unkown
|
page read and write
|
|
|
|
7FF5DF8C6000
|
unkown
|
page readonly
|
|
|
|
7FF5AAA97000
|
unkown
|
page readonly
|
|
|
|
7FF5B5E23000
|
unkown
|
page readonly
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
28C881F0000
|
unkown
|
page read and write
|
|
|
|
28BE2598000
|
unkown
|
page read and write
|
|
|
|
23382470000
|
unkown
|
page read and write
|
|
|
|
7FF5D7B1E000
|
unkown
|
page readonly
|
|
|
|
28BE1E3C000
|
unkown
|
page read and write
|
|
|
|
7FF5C0834000
|
unkown
|
page readonly
|
|
|
|
9EEC17F000
|
unkown
|
page read and write
|
|
|
|
28C864E1000
|
unkown
|
page read and write
|
|
|
|
28BE2000000
|
unkown
|
page readonly
|
|
|
|
272E000
|
unkown
|
page read and write
|
|
|
|
1D896069000
|
unkown
|
page read and write
|
|
|
|
28BE2940000
|
unkown
|
page write copy
|
|
|
|
153A0600000
|
unkown
|
page read and write
|
|
|
|
28C885DE000
|
unkown
|
page read and write
|
|
|
|
7FF4DFC8B000
|
unkown
|
page readonly
|
|
|
|
EE407F000
|
unkown
|
page read and write
|
|
|
|
28BE257F000
|
unkown
|
page read and write
|
|
|
|
7FF5B5DFB000
|
unkown
|
page readonly
|
|
|
|
28BE25D9000
|
unkown
|
page read and write
|
|
|
|
226D8540000
|
unkown
|
page write copy
|
|
|
|
28C864C6000
|
unkown
|
page read and write
|
|
|
|
7FF5EF476000
|
unkown
|
page readonly
|
|
|
|
5CE8AFD000
|
unkown
|
page read and write
|
|
|
|
7FF5746C6000
|
unkown
|
page readonly
|
|
|
|
7FF5C066B000
|
unkown
|
page readonly
|
|
|
|
28BE1EC3000
|
unkown
|
page read and write
|
|
|
|
173BAB10000
|
unkown
|
page read and write
|
|
|
|
2108000
|
unkown
|
page readonly
|
|
|
|
28BE2600000
|
unkown
|
page readonly
|
|
|
|
23382A02000
|
unkown
|
page read and write
|
|
|
|
1539C390000
|
unkown
|
page read and write
|
|
|
|
7FF5C083F000
|
unkown
|
page readonly
|
|
|
|
153A061E000
|
unkown
|
page read and write
|
|
|
|
7FF51B7EB000
|
unkown
|
page readonly
|
|
|
|
226D8400000
|
heap private
|
page read and write
|
|
|
|
28C864C6000
|
unkown
|
page read and write
|
|
|
|
7FF5B5DF7000
|
unkown
|
page readonly
|
|
|
|
1F8361A0000
|
unkown
|
page read and write
|
|
|
|
28BE2562000
|
unkown
|
page read and write
|
|
|
|
F7814FE000
|
unkown
|
page read and write
|
|
|
|
226D8800000
|
unkown
|
page readonly
|
|
|
|
BBDB47B000
|
unkown
|
page read and write
|
|
|
|
7FF4FC756000
|
unkown
|
page readonly
|
|
|
|
7FF5EF3CD000
|
unkown
|
page readonly
|
|
|
|
7FF59153F000
|
unkown
|
page readonly
|
|
|
|
1539BFD0000
|
unkown
|
page readonly
|
|
|
|
1BD99590000
|
unkown
|
page readonly
|
|
|
|
16021C50000
|
heap private
|
page read and write
|
|
|
|
1539B092000
|
unkown
|
page read and write
|
|
|
|
28BE2570000
|
unkown
|
page read and write
|
|
|
|
1539C393000
|
unkown
|
page read and write
|
|
|
|
28C89110000
|
unkown
|
page read and write
|
|
|
|
7FF52B768000
|
unkown
|
page readonly
|
|
|
|
28C864C8000
|
unkown
|
page read and write
|
|
|
|
7FF5DF610000
|
unkown
|
page readonly
|
|
|
|
28C885B9000
|
unkown
|
page read and write
|
|
|
|
1F834630000
|
heap default
|
page read and write
|
|
|
|
1F834760000
|
unkown
|
page readonly
|
|
|
|
28C86459000
|
unkown
|
page read and write
|
|
|
|
1D9D303F000
|
unkown
|
page read and write
|
|
|
|
294E000
|
unkown
|
page read and write
|
|
|
|
28C89010000
|
unkown
|
page read and write
|
|
|
|
EB5A2FB000
|
unkown
|
page read and write
|
|
|
|
173BB6B0000
|
unkown
|
page read and write
|
|
|
|
1539B07A000
|
unkown
|
page read and write
|
|
|
|
7FF5E2CC6000
|
unkown
|
page readonly
|
|
|
|
EB5A379000
|
unkown
|
page read and write
|
|
|
|
25A0000
|
unkown
|
page readonly
|
|
|
|
153A060E000
|
unkown
|
page read and write
|
|
|
|
28BE2564000
|
unkown
|
page read and write
|
|
|
|
28BE1EA7000
|
unkown
|
page read and write
|
|
|
|
28BE2546000
|
unkown
|
page read and write
|
|
|
|
7FF52BB5D000
|
unkown
|
page readonly
|
|
|
|
153A0870000
|
unkown
|
page read and write
|
|
|
|
7FF5C0872000
|
unkown
|
page readonly
|
|
|
|
7FF4FC5AA000
|
unkown
|
page readonly
|
|
|
|
28C864C9000
|
unkown
|
page read and write
|
|
|
|
7FF5746F7000
|
unkown
|
page readonly
|
|
|
|
7FF59154D000
|
unkown
|
page readonly
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
28BE2524000
|
unkown
|
page read and write
|
|
|
|
45407E000
|
unkown
|
page read and write
|
|
|
|
173BB710000
|
unkown
|
page read and write
|
|
|
|
7FF52BB7A000
|
unkown
|
page readonly
|
|
|
|
1F834913000
|
unkown
|
page read and write
|
|
|
|
1BD9963C000
|
unkown
|
page read and write
|
|
|
|
7FF4FAD37000
|
unkown
|
page readonly
|
|
|
|
7FF5DF7FA000
|
unkown
|
page readonly
|
|
|
|
28C89010000
|
unkown
|
page read and write
|
|
|
|
28C86499000
|
unkown
|
page read and write
|
|
|
|
28C88902000
|
unkown
|
page read and write
|
|
|
|
7FF5DF5C9000
|
unkown
|
page readonly
|
|
|
|
7FF51BA74000
|
unkown
|
page readonly
|
|
|
|
98164F7000
|
unkown
|
page read and write
|
|
|
|
28BE2521000
|
unkown
|
page read and write
|
|
|
|
7FF4FA661000
|
unkown
|
page readonly
|
|
|
|
7FF5C0750000
|
unkown
|
page readonly
|
|
|
|
25C0000
|
unkown
|
page execute and read and write
|
|
|
|
28C86489000
|
unkown
|
page read and write
|
|
|
|
7FF51B7EF000
|
unkown
|
page readonly
|
|
|
|
28C86564000
|
unkown
|
page read and write
|
|
|
|
1D89603C000
|
unkown
|
page read and write
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
7FF5B5D87000
|
unkown
|
page readonly
|
|
|
|
28C885EA000
|
unkown
|
page read and write
|
|
|
|
7FF591519000
|
unkown
|
page readonly
|
|
|
|
7FF51B8D0000
|
unkown
|
page readonly
|
|
|
|
23380A79000
|
unkown
|
page read and write
|
|
|
|
BBDAFFB000
|
unkown
|
page read and write
|
|
|
|
23382B33000
|
unkown
|
page read and write
|
|
|
|
161EFF30000
|
heap private
|
page read and write
|
|
|
|
C425A7A000
|
unkown
|
page read and write
|
|
|
|
160219D2000
|
unkown
|
page read and write
|
|
|
|
7FF5E2857000
|
unkown
|
page readonly
|
|
|
|
28BE255B000
|
unkown
|
page read and write
|
|
|
|
7FF5EEFE2000
|
unkown
|
page readonly
|
|
|
|
1539B072000
|
unkown
|
page read and write
|
|
|
|
28C88500000
|
unkown
|
page read and write
|
|
|
|
28C864B9000
|
unkown
|
page read and write
|
|
|
|
28C865E7000
|
unkown
|
page read and write
|
|
|
|
7FF5910E7000
|
unkown
|
page readonly
|
|
|
|
7FF59155A000
|
unkown
|
page readonly
|
|
|
|
16021860000
|
unkown
|
page readonly
|
|
|
|
7FF5EECC4000
|
unkown
|
page readonly
|
|
|
|
1BD99702000
|
unkown
|
page read and write
|
|
|
|
1BD99700000
|
unkown
|
page read and write
|
|
|
|
7FF5AA7A8000
|
unkown
|
page readonly
|
|
|
|
7FF5EF184000
|
unkown
|
page readonly
|
|
|
|
153A06CA000
|
unkown
|
page read and write
|
|
|
|
2244C402000
|
unkown
|
page read and write
|
|
|
|
7FF5E2CB3000
|
unkown
|
page readonly
|
|
|
|
28C88702000
|
unkown
|
page read and write
|
|
|
|
7FF5DF6E8000
|
unkown
|
page readonly
|
|
|
|
23380A29000
|
unkown
|
page read and write
|
|
|
|
7FF52BAF7000
|
unkown
|
page readonly
|
|
|
|
7FF5C0824000
|
unkown
|
page readonly
|
|
|
|
9EEC27B000
|
unkown
|
page read and write
|
|
|
|
2987000
|
unkown
|
page read and write
|
|
|
|
28C864BB000
|
unkown
|
page read and write
|
|
|
|
7FF5D7EFB000
|
unkown
|
page readonly
|
|
|
|
7FF5747A7000
|
unkown
|
page readonly
|
|
|
|
28BE255B000
|
unkown
|
page read and write
|
|
|
|
160219A7000
|
unkown
|
page read and write
|
|
|
|
28C8643F000
|
unkown
|
page read and write
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
7FF5DF82E000
|
unkown
|
page readonly
|
|
|
|
2228000
|
unkown
|
page readonly
|
|
|
|
7FF5E2BB0000
|
unkown
|
page readonly
|
|
|
|
1D896056000
|
unkown
|
page read and write
|
|
|
|
7FF5D7E89000
|
unkown
|
page readonly
|
|
|
|
43CA000
|
unkown
|
page read and write
|
|
|
|
EE3AFE000
|
unkown
|
page read and write
|
|
|
|
28C864B8000
|
unkown
|
page read and write
|
|
|
|
1D89608E000
|
unkown
|
page read and write
|
|
|
|
7FF5AAB12000
|
unkown
|
page readonly
|
|
|
|
453F7B000
|
unkown
|
page read and write
|
|
|
|
28BE2564000
|
unkown
|
page read and write
|
|
|
|
7FF5DF781000
|
unkown
|
page readonly
|
|
|
|
23380B13000
|
unkown
|
page read and write
|
|
|
|
153A0580000
|
unkown
|
page read and write
|
|
|
|
7FF51BAB6000
|
unkown
|
page readonly
|
|
|
|
160219CB000
|
unkown
|
page read and write
|
|
|
|
7FF5E2DA2000
|
unkown
|
page readonly
|
|
|
|
28C89110000
|
unkown
|
page read and write
|
|
|
|
7FF5D7AF8000
|
unkown
|
page readonly
|
|
|
|
7FF5DF61B000
|
unkown
|
page readonly
|
|
|
|
226D8654000
|
unkown
|
page read and write
|
|
|
|
7FF5E2D96000
|
unkown
|
page readonly
|
|
|
|
7FF5C091A000
|
unkown
|
page readonly
|
|
|
|
226D9FA0000
|
unkown
|
page read and write
|
|
|
|
2C10000
|
unkown
|
page readonly
|
|
|
|
28C86429000
|
unkown
|
page read and write
|
|
|
|
173BAC80000
|
unkown
|
page read and write
|
|
|
|
1BD99713000
|
unkown
|
page read and write
|
|
|
|
153A0814000
|
unkown
|
page readonly
|
|
|
|
294F000
|
unkown
|
page read and write
|
|
|
|
7FF5DF7B4000
|
unkown
|
page readonly
|
|
|
|
28BE2572000
|
unkown
|
page read and write
|
|
|
|
7FF5DF5FB000
|
unkown
|
page readonly
|
|
|
|
BBDAEFB000
|
unkown
|
page read and write
|
|
|
|
28C88529000
|
unkown
|
page read and write
|
|
|
|
EB5A27E000
|
unkown
|
page read and write
|
|
|
|
7FF5DF7F6000
|
unkown
|
page readonly
|
|
|
|
7FF51B977000
|
unkown
|
page readonly
|
|
|
|
7FF4FACDF000
|
unkown
|
page readonly
|
|
|
|
7FF5EF3DE000
|
unkown
|
page readonly
|
|
|
|
7FF5AAAB7000
|
unkown
|
page readonly
|
|
|
|
1539AFE0000
|
unkown
|
page read and write
|
|
|
|
EE3FFF000
|
unkown
|
page read and write
|
|
|
|
28C88600000
|
unkown
|
page read and write
|
|
|
|
1539C030000
|
unkown
|
page readonly
|
|
|
|
28BE25C9000
|
unkown
|
page read and write
|
|
|
|
28C8652F000
|
unkown
|
page read and write
|
|
|
|
28BE2A61000
|
unkown
|
page read and write
|
|
|
|
7FF5E2D6B000
|
unkown
|
page readonly
|
|
|
|
7FF52BB67000
|
unkown
|
page readonly
|
|
|
|
7FF5C0137000
|
unkown
|
page readonly
|
|
|
|
28C89110000
|
unkown
|
page read and write
|
|
|
|
7FF5DF711000
|
unkown
|
page readonly
|
|
|
|
9F30FF9000
|
unkown
|
page read and write
|
|
|
|
2987000
|
unkown
|
page read and write
|
|
|
|
7FF5AAB39000
|
unkown
|
page readonly
|
|
|
|
7FF4DFC8B000
|
unkown
|
page readonly
|
|
|
|
7FF52B8CF000
|
unkown
|
page readonly
|
|
|
|
5CE8CFE000
|
unkown
|
page read and write
|
|
|
|
153A0810000
|
unkown
|
page read and write
|
|
|
|
7FF5EF155000
|
unkown
|
page readonly
|
|
|
|
173BB6A0000
|
unkown
|
page read and write
|
|
|
|
7FF5C0615000
|
unkown
|
page readonly
|
|
|
|
7FF5C088D000
|
unkown
|
page readonly
|
|
|
|
28C89210000
|
unkown
|
page read and write
|
|
|
|
28BE2525000
|
unkown
|
page read and write
|
|
|
|
7FF5C0936000
|
unkown
|
page readonly
|
|
|
|
7FF5AA7BA000
|
unkown
|
page readonly
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
7FF5746AF000
|
unkown
|
page readonly
|
|
|
|
7FF5912A1000
|
unkown
|
page readonly
|
|
|
|
BBDA9AE000
|
unkown
|
page read and write
|
|
|
|
28C864C6000
|
unkown
|
page read and write
|
|
|
|
2910000
|
heap default
|
page read and write
|
|
|
|
7FF5C0866000
|
unkown
|
page readonly
|
|
|
|
BBDB17C000
|
unkown
|
page read and write
|
|
|
|
28C864AD000
|
unkown
|
page read and write
|
|
|
|
28C89010000
|
unkown
|
page read and write
|
|
|
|
28C88290000
|
unkown
|
page readonly
|
|
|
|
7FF5912A6000
|
unkown
|
page readonly
|
|
|
|
28BE2548000
|
unkown
|
page read and write
|
|
|
|
28BE259D000
|
unkown
|
page read and write
|
|
|
|
7FF5E2D54000
|
unkown
|
page readonly
|
|
|
|
233828C0000
|
heap private
|
page read and write
|
|
|
|
28BE2521000
|
unkown
|
page read and write
|
|
|
|
28C864CA000
|
unkown
|
page read and write
|
|
|
|
28BE1E56000
|
unkown
|
page read and write
|
|
|
|
1BD9968A000
|
unkown
|
page read and write
|
|
|
|
7FF4FC695000
|
unkown
|
page readonly
|
|
|
|
7FF5746D2000
|
unkown
|
page readonly
|
|
|
|
28BE255C000
|
unkown
|
page read and write
|
|
|
|
7FF5AA8B5000
|
unkown
|
page readonly
|
|
|
|
7FF52BAAF000
|
unkown
|
page readonly
|
|
|
|
7FF5DF7ED000
|
unkown
|
page readonly
|
|
|
|
7FF574677000
|
unkown
|
page readonly
|
|
|
|
28C88942000
|
unkown
|
page read and write
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
28BE2568000
|
unkown
|
page read and write
|
|
|
|
7FF5DF7B0000
|
unkown
|
page readonly
|
|
|
|
2244C440000
|
unkown
|
page read and write
|
|
|
|
23382950000
|
unkown
|
page readonly
|
|
|
|
7FF591394000
|
unkown
|
page readonly
|
|
|
|
28BE2521000
|
unkown
|
page read and write
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
161EE550000
|
unkown
|
page read and write
|
|
|
|
7FF574764000
|
unkown
|
page readonly
|
|
|
|
28C89710000
|
unkown
|
page read and write
|
|
|
|
28C86461000
|
unkown
|
page read and write
|
|
|
|
2131000
|
unkown
|
page readonly
|
|
|
|
28BE1E49000
|
unkown
|
page read and write
|
|
|
|
2622D7A000
|
unkown
|
page read and write
|
|
|
|
161EE5E0000
|
unkown
|
page readonly
|
|
|
|
28C88700000
|
unkown
|
page read and write
|
|
|
|
7FF5E2C25000
|
unkown
|
page readonly
|
|
|
|
9EEBD0E000
|
unkown
|
page read and write
|
|
|
|
7FF5EF22F000
|
unkown
|
page readonly
|
|
|
|
226D8470000
|
unkown
|
page readonly
|
|
|
|
9816275000
|
unkown
|
page read and write
|
|
|
|
1D9D3009000
|
unkown
|
page read and write
|
|
|
|
28C88513000
|
unkown
|
page read and write
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
23380A13000
|
unkown
|
page read and write
|
|
|
|
1D895E00000
|
heap private
|
page read and write
|
|
|
|
7FF5DF0C7000
|
unkown
|
page readonly
|
|
|
|
2244DFE0000
|
unkown
|
page readonly
|
|
|
|
7FF51BA84000
|
unkown
|
page readonly
|
|
|
|
BBDB87B000
|
unkown
|
page read and write
|
|
|
|
28BE2390000
|
unkown
|
page read and write
|
|
|
|
21F2000
|
unkown
|
page readonly
|
|
|
|
28BE1EEA000
|
unkown
|
page read and write
|
|
|
|
28C864B2000
|
unkown
|
page read and write
|
|
|
|
F7819F7000
|
unkown
|
page read and write
|
|
|
|
7FF5EF3C6000
|
unkown
|
page readonly
|
|
|
|
23380ABF000
|
unkown
|
page read and write
|
|
|
|
9F30EFE000
|
unkown
|
page read and write
|
|
|
|
226D8702000
|
unkown
|
page read and write
|
|
|
|
7FF5DF7D1000
|
unkown
|
page readonly
|
|
|
|
7FF591370000
|
unkown
|
page readonly
|
|
|
|
7FF5EF233000
|
unkown
|
page readonly
|
|
|
|
1539B900000
|
unkown
|
page read and write
|
|
|
|
28BE29B0000
|
unkown
|
page readonly
|
|
|
|
7FF5EF3B2000
|
unkown
|
page readonly
|
|
|
|
153A080E000
|
unkown
|
page read and write
|
|
|
|
7FF574793000
|
unkown
|
page readonly
|
|
|
|
7FF51BA7D000
|
unkown
|
page readonly
|
|
|
|
28C881E0000
|
unkown
|
page readonly
|
|
|
|
28BE255B000
|
unkown
|
page read and write
|
|
|
|
28C88902000
|
unkown
|
page read and write
|
|
|
|
16021990000
|
heap default
|
page read and write
|
|
|
|
7FF5E2BB5000
|
unkown
|
page readonly
|
|
|
|
5CE8B7D000
|
unkown
|
page read and write
|
|
|
|
4A3E000
|
unkown
|
page read and write
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
7FF5EECBE000
|
unkown
|
page readonly
|
|
|
|
7FF5DF7A7000
|
unkown
|
page readonly
|
|
|
|
7FF5E2A16000
|
unkown
|
page readonly
|
|
|
|
28BE1E29000
|
unkown
|
page read and write
|
|
|
|
7FF5DF802000
|
unkown
|
page readonly
|
|
|
|
28C88230000
|
unkown
|
page readonly
|
|
|
|
7FF574767000
|
unkown
|
page readonly
|
|
|
|
7FF5744CF000
|
unkown
|
page readonly
|
|
|
|
23382B00000
|
unkown
|
page read and write
|
|
|
|
7FF4FC658000
|
unkown
|
page readonly
|
|
|
|
16021C55000
|
heap private
|
page read and write
|
|
|
|
7FF5C051A000
|
unkown
|
page readonly
|
|
|
|
7FF5EF437000
|
unkown
|
page readonly
|
|
|
|
1B1AB3B000
|
unkown
|
page read and write
|
|
|
|
28BE2522000
|
unkown
|
page read and write
|
|
|
|
F781AFF000
|
unkown
|
page read and write
|
|
|
|
28BE2559000
|
unkown
|
page read and write
|
|
|
|
2987000
|
unkown
|
page read and write
|
|
|
|
214A000
|
unkown
|
page readonly
|
|
|
|
F781E7E000
|
unkown
|
page read and write
|
|
|
|
28BE2560000
|
unkown
|
page read and write
|
|
|
|
6E217000
|
unkown image
|
page read and write
|
|
|
|
153A09C0000
|
unkown
|
page readonly
|
|
|
|
173BB970000
|
unkown
|
page readonly
|
|
|
|
1B1B07B000
|
unkown
|
page read and write
|
|
|
|
28C89110000
|
unkown
|
page read and write
|
|
|
|
9EEC07A000
|
unkown
|
page read and write
|
|
|
|
161EFD80000
|
unkown
|
page readonly
|
|
|
|
173BAE40000
|
unkown
|
page read and write
|
|
|
|
7FF5DF6C6000
|
unkown
|
page readonly
|
|
|
|
1D896113000
|
unkown
|
page read and write
|
|
|
|
7FF5E2B67000
|
unkown
|
page readonly
|
|
|
|
7FF5747A2000
|
unkown
|
page readonly
|
|
|
|
28C88900000
|
unkown
|
page read and write
|
|
|
|
7FF59157D000
|
unkown
|
page readonly
|
|
|
|
2244C720000
|
unkown
|
page readonly
|
|
|
|
28C88882000
|
unkown
|
page read and write
|
|
|
|
1BD9967D000
|
unkown
|
page read and write
|
|
|
|
153A06B5000
|
unkown
|
page read and write
|
|
|
|
160219CB000
|
unkown
|
page read and write
|
|
|
|
4340000
|
heap private
|
page read and write
|
|
|
|
7FF4FC803000
|
unkown
|
page readonly
|
|
|
|
1D9D3000000
|
unkown
|
page read and write
|
|
|
|
28BE258D000
|
unkown
|
page read and write
|
|
|
|
1D896108000
|
unkown
|
page read and write
|
|
|
|
28C89010000
|
unkown
|
page read and write
|
|
|
|
7FF5EF179000
|
unkown
|
page readonly
|
|
|
|
7FF5910E1000
|
unkown
|
page readonly
|
|
|
|
28BE2556000
|
unkown
|
page read and write
|
|
|
|
7FF51BA77000
|
unkown
|
page readonly
|
|
|
|
28C865A6000
|
unkown
|
page read and write
|
|
|
|
28C88684000
|
unkown
|
page read and write
|
|
|
|
28C8655F000
|
unkown
|
page read and write
|
|
|
|
23380AA5000
|
unkown
|
page read and write
|
|
|
|
7FF5DF7DF000
|
unkown
|
page readonly
|
|
|
|
7FF5D7EF4000
|
unkown
|
page readonly
|
|
|
|
28BE258D000
|
unkown
|
page read and write
|
|
|
|
28C8856B000
|
unkown
|
page read and write
|
|
|
|
28C89000000
|
unkown
|
page read and write
|
|
|
|
7FF5D7F26000
|
unkown
|
page readonly
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
25DD000
|
unkown
|
page read and write
|
|
|
|
7FF5EF364000
|
unkown
|
page readonly
|
|
|
|
7FF5EF18A000
|
unkown
|
page readonly
|
|
|
|
28C86573000
|
unkown
|
page read and write
|
|
|
|
161EE5B0000
|
unkown
|
page readonly
|
|
|
|
7FF5EF3A6000
|
unkown
|
page readonly
|
|
|
|
28C8645D000
|
unkown
|
page read and write
|
|
|
|
9EEC47F000
|
unkown
|
page read and write
|
|
|
|
7FF5EF148000
|
unkown
|
page readonly
|
|
|
|
226D8600000
|
unkown
|
page read and write
|
|
|
|
28C88702000
|
unkown
|
page read and write
|
|
|
|
7FF5AABE7000
|
unkown
|
page readonly
|
|
|
|
BBDB5FB000
|
unkown
|
page read and write
|
|
|
|
233828B0000
|
unkown
|
page readonly
|
|
|
|
6E213000
|
unkown image
|
page execute and read and write
|
|
|
|
28BE2402000
|
unkown
|
page read and write
|
|
|
|
7FF4FADBA000
|
unkown
|
page readonly
|
|
|
|
7FF4FC769000
|
unkown
|
page readonly
|
|
|
|
7FF5EF482000
|
unkown
|
page readonly
|
|
|
|
28BE1EE0000
|
unkown
|
page read and write
|
|
|
|
7FF52B8CB000
|
unkown
|
page readonly
|
|
|
|
28BE25BD000
|
unkown
|
page read and write
|
|
|
|
A10000
|
heap default
|
page read and write
|
|
|
|
7FF57437A000
|
unkown
|
page readonly
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
23382920000
|
unkown
|
page read and write
|
|
|
|
431F000
|
unkown
|
page read and write
|
|
|
|
7FF5DF8D7000
|
unkown
|
page readonly
|
|
|
|
7FF4FA4D7000
|
unkown
|
page readonly
|
|
|
|
23382920000
|
unkown
|
page read and write
|
|
|
|
28C88800000
|
unkown
|
page read and write
|
|
|
|
7FF5C0632000
|
unkown
|
page readonly
|
|
|
|
153A0420000
|
unkown
|
page read and write
|
|
|
|
7FF5C0820000
|
unkown
|
page readonly
|
|
|
|
7FF5B5D4E000
|
unkown
|
page readonly
|
|
|
|
7FF5914E5000
|
unkown
|
page readonly
|
|
|
|
28C864C4000
|
unkown
|
page read and write
|
|
|
|
7FF5D7C37000
|
unkown
|
page readonly
|
|
|
|
7FF5DF3B6000
|
unkown
|
page readonly
|
|
|
|
7FF5911DF000
|
unkown
|
page readonly
|
|
|
|
233809B0000
|
unkown
|
page readonly
|
|
|
|
7FF5EF348000
|
unkown
|
page readonly
|
|
|
|
28C89510000
|
unkown
|
page read and write
|
|
|
|
173BAA80000
|
unkown
|
page read and write
|
|
|
|
6E1C0000
|
unkown image
|
page execute read
|
|
|
|
7FF5D7DE1000
|
unkown
|
page readonly
|
|
|
|
7FF57475D000
|
unkown
|
page readonly
|
|
|
|
1F834900000
|
unkown
|
page read and write
|
|
|
|
7FF5AAB2D000
|
unkown
|
page readonly
|
|
|
|
294E000
|
unkown
|
page read and write
|
|
|
|
7FF5747A7000
|
unkown
|
page readonly
|
|
|
|
7FF5915F7000
|
unkown
|
page readonly
|
|
|
|
153A0430000
|
unkown
|
page read and write
|
|
|
|
28C88593000
|
unkown
|
page read and write
|
|
|
|
7FF5DF887000
|
unkown
|
page readonly
|
|
|
|
7FF5745B8000
|
unkown
|
page readonly
|
|
|
|
BBDB9FA000
|
unkown
|
page read and write
|
|
|
|
7FF4FAD94000
|
unkown
|
page readonly
|
|
|
|
28C864CB000
|
unkown
|
page read and write
|
|
|
|
7FF5EF172000
|
unkown
|
page readonly
|
|
|
|
7FF5AA7B6000
|
unkown
|
page readonly
|
|
|
|
21B8000
|
unkown
|
page readonly
|
|
|
|
BBDBAFE000
|
unkown
|
page read and write
|
|
|
|
28C88702000
|
unkown
|
page read and write
|
|
|
|
1D896102000
|
unkown
|
page read and write
|
|
|
|
2220000
|
unkown
|
page readonly
|
|
|
|
A27000
|
heap default
|
page read and write
|
|
|
|
28BE2560000
|
unkown
|
page read and write
|
|
|
|
7FF5C0680000
|
unkown
|
page readonly
|
|
|
|
7FF5C06DA000
|
unkown
|
page readonly
|
|
|
|
25D0000
|
unkown
|
page execute and read and write
|
|
|
|
28BE258B000
|
unkown
|
page read and write
|
|
|
|
7FF5E2CD2000
|
unkown
|
page readonly
|
|
|
|
28BE2A02000
|
unkown
|
page read and write
|
|
|
|
1B1B0FE000
|
unkown
|
page read and write
|
|
|
|
7FF5D7E5A000
|
unkown
|
page readonly
|
|
|
|
7FF5746B3000
|
unkown
|
page readonly
|
|
|
|
7FF5E2DA7000
|
unkown
|
page readonly
|
|
|
|
28C89710000
|
unkown
|
page read and write
|
|
|
|
7FF5B55FA000
|
unkown
|
page readonly
|
|
|
|
23380B02000
|
unkown
|
page read and write
|
|
|
|
7FF5C0933000
|
unkown
|
page readonly
|
|
|
|
7FF5D7E7D000
|
unkown
|
page readonly
|
|
|
|
28BE1E4A000
|
unkown
|
page read and write
|
|
|
|
28C8651D000
|
unkown
|
page read and write
|
|
|
|
7FF591626000
|
unkown
|
page readonly
|
|
|
|
23382920000
|
unkown
|
page read and write
|
|
|
|
28C8647F000
|
unkown
|
page read and write
|
|
|
|
7FF57451F000
|
unkown
|
page readonly
|
|
|
|
28C86600000
|
unkown
|
page readonly
|
|
|
|
28C86370000
|
unkown
|
page write copy
|
|
|
|
226DA0A0000
|
unkown
|
page readonly
|
|
|
|
C425AFF000
|
unkown
|
page read and write
|
|
|
|
161EE5C0000
|
unkown
|
page readonly
|
|
|
|
2560000
|
unkown
|
page read and write
|
|
|
|
6E1B1000
|
unkown image
|
page execute read
|
|
|
|
453BCB000
|
unkown
|
page read and write
|
|
|
|
153A06C0000
|
unkown
|
page read and write
|
|
|
|
28BE2567000
|
unkown
|
page read and write
|
|
|
|
153A09A0000
|
unkown
|
page readonly
|
|
|
|
7FF5DF785000
|
unkown
|
page readonly
|
|
|
|
28BE257C000
|
unkown
|
page read and write
|
|
|
|
7FF4FAC28000
|
unkown
|
page readonly
|
|
|
|
BBDA92B000
|
unkown
|
page read and write
|
|
|
|
7FF5B5E0A000
|
unkown
|
page readonly
|
|
|
|
173BB990000
|
unkown
|
page read and write
|
|
|
|
28BE255A000
|
unkown
|
page read and write
|
|
|
|
EE38F7000
|
unkown
|
page read and write
|
|
|
|
28BE2990000
|
unkown
|
page readonly
|
|
|
|
173BAB2A000
|
heap default
|
page read and write
|
|
|
|
2800000
|
unkown
|
page readonly
|
|
|
|
28BE2990000
|
unkown
|
page read and write
|
|
|
|
160219A7000
|
unkown
|
page read and write
|
|
|
|
7FF51B975000
|
unkown
|
page readonly
|
|
|
|
7FF5EF12D000
|
unkown
|
page readonly
|
|
|
|
28BE1C30000
|
heap default
|
page read and write
|
|
|
|
7FF5746F9000
|
unkown
|
page readonly
|
|
|
|
9EEBD8E000
|
unkown
|
page read and write
|
|
|
|
7FF5AAA95000
|
unkown
|
page readonly
|
|
|
|
23380950000
|
heap default
|
page read and write
|
|
|
|
7FF4FC73A000
|
unkown
|
page readonly
|
|
|
|
28BE256E000
|
unkown
|
page read and write
|
|
|
|
7FF591340000
|
unkown
|
page readonly
|
|
|
|
28BE1BD0000
|
heap private
|
page read and write
|
|
|
|
7FF5DF816000
|
unkown
|
page readonly
|
|
|
|
1539B113000
|
unkown
|
page read and write
|
|
|
|
160219CB000
|
unkown
|
page read and write
|
|
|
|
7FF5D7EF7000
|
unkown
|
page readonly
|
|
|
|
28C88882000
|
unkown
|
page read and write
|
|
|
|
7FF5E2CF7000
|
unkown
|
page readonly
|
|
|
|
7FF5D7E76000
|
unkown
|
page readonly
|
|
|
|
BBDB37D000
|
unkown
|
page read and write
|
|
|
|
28BE2522000
|
unkown
|
page read and write
|
|
|
|
7FF5AABE2000
|
unkown
|
page readonly
|
|
|
|
28C864B8000
|
unkown
|
page read and write
|
|
|
|
EB5A479000
|
unkown
|
page read and write
|
|
|
|
1D896083000
|
unkown
|
page read and write
|
|
|
|
7FF5E2BB8000
|
unkown
|
page readonly
|
|
|
|
7FF5AAB94000
|
unkown
|
page readonly
|
|
|
|
7FF5C086A000
|
unkown
|
page readonly
|
|
|
|
7FF52B9B8000
|
unkown
|
page readonly
|
|
|
|
153A0540000
|
unkown
|
page read and write
|
|
|
|
1BD99655000
|
unkown
|
page read and write
|
|
|
|
1BD99602000
|
unkown
|
page read and write
|
|
|
|
28C89210000
|
unkown
|
page read and write
|
|
|
|
25D1000
|
unkown
|
page execute read
|
|
|
|
7FF5C06BF000
|
unkown
|
page readonly
|
|
|
|
7FF5D7F32000
|
unkown
|
page readonly
|
|
|
|
23380A87000
|
unkown
|
page read and write
|
|
|
|
7FF5B5D56000
|
unkown
|
page readonly
|
|
|
|
28C88569000
|
unkown
|
page read and write
|
|
|
|
28C88702000
|
unkown
|
page read and write
|
|
|
|
28C88653000
|
unkown
|
page read and write
|
|
|
|
444F000
|
unkown
|
page read and write
|
|
|
|
7FF51B9DE000
|
unkown
|
page readonly
|
|
|
|
7FF5EF393000
|
unkown
|
page readonly
|
|
|
|
7FF591531000
|
unkown
|
page readonly
|
|
|
|
153A0824000
|
unkown
|
page read and write
|
|
|
|
28C864C7000
|
unkown
|
page read and write
|
|
|
|
7FF5C07E7000
|
unkown
|
page readonly
|
|
|
|
28BE1E4C000
|
unkown
|
page read and write
|
|
|
|
7FF4FADE7000
|
unkown
|
page readonly
|
|
|
|
7FF5744CB000
|
unkown
|
page readonly
|
|
|
|
7FF5E2B96000
|
unkown
|
page readonly
|
|
|
|
1BD9A340000
|
unkown
|
page readonly
|
|
|
|
7FF52B77A000
|
unkown
|
page readonly
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
7FF5EF487000
|
unkown
|
page readonly
|
|
|
|
28BE1E00000
|
unkown
|
page read and write
|
|
|
|
28BE2576000
|
unkown
|
page read and write
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
7FF4FC3BF000
|
unkown
|
page readonly
|
|
|
|
7FF574657000
|
unkown
|
page readonly
|
|
|
|
7FF4FADE7000
|
unkown
|
page readonly
|
|
|
|
7FF5B5E37000
|
unkown
|
page readonly
|
|
|
|
7FF4FC817000
|
unkown
|
page readonly
|
|
|
|
28D0000
|
heap default
|
page read and write
|
|
|
|
7FF5EF22D000
|
unkown
|
page readonly
|
|
|
|
7FF5C0758000
|
unkown
|
page readonly
|
|
|
|
28C89410000
|
unkown
|
page read and write
|
|
|
|
153A0440000
|
unkown
|
page read and write
|
|
|
|
7FF5DF8D7000
|
unkown
|
page readonly
|
|
|
|
1D9D3053000
|
unkown
|
page read and write
|
|
|
|
28BE1ED0000
|
unkown
|
page read and write
|
|
|
|
28BE2564000
|
unkown
|
page read and write
|
|
|
|
BBDAC7E000
|
unkown
|
page read and write
|
|
|
|
28BE2567000
|
unkown
|
page read and write
|
|
|
|
28C882A0000
|
unkown
|
page readonly
|
|
|
|
7FF573F97000
|
unkown
|
page readonly
|
|
|
|
23380960000
|
unkown
|
page write copy
|
|
|
|
7FF51BA9A000
|
unkown
|
page readonly
|
|
|
|
7FF4FC625000
|
unkown
|
page readonly
|
|
|
|
161EE2F0000
|
unkown
|
page readonly
|
|
|
|
28BE2522000
|
unkown
|
page read and write
|
|
|
|
28BE1EB1000
|
unkown
|
page read and write
|
|
|
|
7FF5EF3D7000
|
unkown
|
page readonly
|
|
|
|
2622B7F000
|
unkown
|
page read and write
|
|
|
|
9F3107F000
|
unkown
|
page read and write
|
|
|
|
1539B800000
|
unkown
|
page read and write
|
|
|
|
2127000
|
unkown
|
page readonly
|
|
|
|
23382B43000
|
unkown
|
page read and write
|
|
|
|
EE3EFC000
|
unkown
|
page read and write
|
|
|
|
7FF51B9E6000
|
unkown
|
page readonly
|
|
|
|
700000
|
unkown
|
page readonly
|
|
|
|
7FF5EF434000
|
unkown
|
page readonly
|
|
|
|
7FF52B397000
|
unkown
|
page readonly
|
|
|
|
7FF5910B6000
|
unkown
|
page readonly
|
|
|
|
2244C600000
|
unkown
|
page readonly
|
|
|
|
28BE258D000
|
unkown
|
page read and write
|
|
|
|
21B5000
|
unkown
|
page readonly
|
|
|
|
7FF591192000
|
unkown
|
page readonly
|
|
|
|
28C88802000
|
unkown
|
page read and write
|
|
|
|
1BD99580000
|
unkown
|
page readonly
|
|
|
|
2112000
|
unkown
|
page readonly
|
|
|
|
7FF5DF6E0000
|
unkown
|
page readonly
|
|
|
|
28C864CF000
|
unkown
|
page read and write
|
|
|
|
160219B1000
|
unkown
|
page read and write
|
|
|
|
7FF591632000
|
unkown
|
page readonly
|
|
|
|
EE367C000
|
unkown
|
page read and write
|
|
|
|
7FF591524000
|
unkown
|
page readonly
|
|
|
|
1539B590000
|
unkown
|
page readonly
|
|
|
|
1D9D3029000
|
unkown
|
page read and write
|
|
|
|
28C89310000
|
unkown
|
page read and write
|
|
|
|
7FF5DF634000
|
unkown
|
page readonly
|
|
|
|
2622CFF000
|
unkown
|
page read and write
|
|
|
|
7FF5DF60E000
|
unkown
|
page readonly
|
|
|
|
21D6000
|
unkown
|
page readonly
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
28BE253C000
|
unkown
|
page read and write
|
|
|
|
1539AFF0000
|
unkown
|
page read and write
|
|
|
|
7FF5EF335000
|
unkown
|
page readonly
|
|
|
|
7FF4FAC11000
|
unkown
|
page readonly
|
|
|
|
7FF5C0788000
|
unkown
|
page readonly
|
|
|
|
7FF4FACF4000
|
unkown
|
page readonly
|
|
|
|
28C88240000
|
unkown
|
page read and write
|
|
|
|
173BAE35000
|
heap private
|
page read and write
|
|
|
|
153A0850000
|
unkown
|
page read and write
|
|
|
|
7FF5C068B000
|
unkown
|
page readonly
|
|
|
|
981617E000
|
unkown
|
page read and write
|
|
|
|
7FF591448000
|
unkown
|
page readonly
|
|
|
|
7FF5EF360000
|
unkown
|
page readonly
|
|
|
|
1D896013000
|
unkown
|
page read and write
|
|
|
|
28BE252F000
|
unkown
|
page read and write
|
|
|
|
28BE255B000
|
unkown
|
page read and write
|
|
|
|
28C864E1000
|
unkown
|
page read and write
|
|
|
|
2244C400000
|
unkown
|
page read and write
|
|
|
|
F781D79000
|
unkown
|
page read and write
|
|
|
|
7FF5914E7000
|
unkown
|
page readonly
|
|
|
|
1D9D4A70000
|
unkown
|
page read and write
|
|
|
|
7FF5EF1E4000
|
unkown
|
page readonly
|
|
|
|
28C8653F000
|
unkown
|
page read and write
|
|
|
|
7FF5C06A4000
|
unkown
|
page readonly
|
|
|
|
28C88568000
|
unkown
|
page read and write
|
|
|
|
1602199E000
|
heap default
|
page read and write
|
|
|
|
7FF5D7E43000
|
unkown
|
page readonly
|
|
|
|
7FF5E2CED000
|
unkown
|
page readonly
|
|
|
|
58ABFE000
|
unkown
|
page read and write
|
|
|
|
28BE1EA8000
|
unkown
|
page read and write
|
|
|
|
28C863C0000
|
unkown
|
page readonly
|
|
|
|
1D89602A000
|
unkown
|
page read and write
|
|
|
|
9EEBC8B000
|
unkown
|
page read and write
|
|
|
|
2244C413000
|
unkown
|
page read and write
|
|
|
|
16021C60000
|
unkown
|
page readonly
|
|
|
|
28C86463000
|
unkown
|
page read and write
|
|
|
|
7FF52B775000
|
unkown
|
page readonly
|
|
|
|
28C864F3000
|
unkown
|
page read and write
|
|
|
|
160219D1000
|
unkown
|
page read and write
|
|
|
|
23380A3F000
|
unkown
|
page read and write
|
|
|
|
153A062C000
|
unkown
|
page read and write
|
|
|
|
2987000
|
unkown
|
page read and write
|
|
|
|
7FF5E2BE8000
|
unkown
|
page readonly
|
|
|
|
7FF591305000
|
unkown
|
page readonly
|
|
|
|
28C89110000
|
unkown
|
page read and write
|
|
|
|
7FF51B69A000
|
unkown
|
page readonly
|
|
|
|
1D89604B000
|
unkown
|
page read and write
|
|
|
|
1539B102000
|
unkown
|
page read and write
|
|
|
|
7FF4FA669000
|
unkown
|
page readonly
|
|
|
|
7FF574596000
|
unkown
|
page readonly
|
|
|
|
293A000
|
heap default
|
page read and write
|
|
|
|
28C8858E000
|
unkown
|
page read and write
|
|
|
|
7FF574655000
|
unkown
|
page readonly
|
|
|
|
4EFA000
|
heap private
|
page read and write
|
|
|
|
5CE8C7E000
|
unkown
|
page read and write
|
|
|
|
BBDB2FB000
|
unkown
|
page read and write
|
|
|
|
7FF51BAC7000
|
unkown
|
page readonly
|
|
|
|
7FF5C0736000
|
unkown
|
page readonly
|
|
|
|
28C88552000
|
unkown
|
page read and write
|
|
|
|
1BD99613000
|
unkown
|
page read and write
|
|
|
|
7FF5DF5C2000
|
unkown
|
page readonly
|
|
|
|
7FF5C0886000
|
unkown
|
page readonly
|
|
|
|
7FF5DF829000
|
unkown
|
page readonly
|
|
|
|
BBDB57A000
|
unkown
|
page read and write
|
|
|
|
1539B902000
|
unkown
|
page read and write
|
|
|
|
161EE5D0000
|
heap private
|
page read and write
|
|
|
|
153A08F0000
|
unkown
|
page readonly
|
|
|
|
1F83486D000
|
unkown
|
page read and write
|
|
|
|
7FF5AA9F0000
|
unkown
|
page readonly
|
|
|
|
4EFA000
|
heap private
|
page read and write
|
|
|
|
7FF5D7EED000
|
unkown
|
page readonly
|
|
|
|
7FF5C085D000
|
unkown
|
page readonly
|
|
|
|
153A0838000
|
unkown
|
page write copy
|
|
|
|
7FF5E2CCA000
|
unkown
|
page readonly
|
|
|
|
7FF5E2D64000
|
unkown
|
page readonly
|
|
|
|
1539B05A000
|
unkown
|
page read and write
|
|
|
|
1F61000
|
unkown
|
page readonly
|
|
|
|
7FF591510000
|
unkown
|
page readonly
|
|
|
|
28BE2561000
|
unkown
|
page read and write
|
|
|
|
4B00000
|
heap private
|
page read and write
|
|
|
|
28BE2556000
|
unkown
|
page read and write
|
|
|
|
1D896200000
|
unkown
|
page readonly
|
|
|
|
1BD99800000
|
unkown
|
page readonly
|
|
|
|
7FF5AAB9D000
|
unkown
|
page readonly
|
|
|
|
7FF4FC7DB000
|
unkown
|
page readonly
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
2155000
|
unkown
|
page readonly
|
|
|
|
C42587B000
|
unkown
|
page read and write
|
|
|
|
7FF4FAC21000
|
unkown
|
page readonly
|
|
|
|
7FF5DF34E000
|
unkown
|
page readonly
|
|
|
|
28BE254C000
|
unkown
|
page read and write
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
7FF4FC2C7000
|
unkown
|
page readonly
|
|
|
|
28BE2588000
|
unkown
|
page read and write
|
|
|
|
7FF5E2A11000
|
unkown
|
page readonly
|
|
|
|
F7817FE000
|
unkown
|
page read and write
|
|
|
|
28BE1E4B000
|
unkown
|
page read and write
|
|
|
|
7FF5B5E37000
|
unkown
|
page readonly
|
|
|
|
1539C020000
|
unkown
|
page readonly
|
|
|
|
28C8858B000
|
unkown
|
page read and write
|
|
|
|
28F0000
|
unkown
|
page read and write
|
|
|
|
21FC000
|
unkown
|
page readonly
|
|
|
|
25D0000
|
unkown
|
page read and write
|
|
|
|
28C89110000
|
unkown
|
page read and write
|
|
|
|
36D000
|
unkown
|
page read and write
|
|
|
|
28C89110000
|
unkown
|
page read and write
|
|
|
|
28C862A0000
|
unkown
|
page readonly
|
|
|
|
1539B918000
|
unkown
|
page read and write
|
|
|
|
28BE257C000
|
unkown
|
page read and write
|
|
|
|
28BE2C00000
|
unkown
|
page readonly
|
|
|
|
7FF5B5DF4000
|
unkown
|
page readonly
|
|
|
|
1539B09F000
|
unkown
|
page read and write
|
|
|
|
1539B077000
|
unkown
|
page read and write
|
|
|
|
153A0660000
|
unkown
|
page read and write
|
|
|
|
28BE25A5000
|
unkown
|
page read and write
|
|
|
|
23382910000
|
unkown
|
page readonly
|
|
|
|
28C89510000
|
unkown
|
page read and write
|
|
|
|
28C89410000
|
unkown
|
page read and write
|
|
|
|
7FF4FC486000
|
unkown
|
page readonly
|
|
|
|
1D895F40000
|
unkown
|
page readonly
|
|
|
|
23382930000
|
unkown
|
page readonly
|
|
|
|
7FF52BBA7000
|
unkown
|
page readonly
|
|
|
|
1F834841000
|
unkown
|
page read and write
|
|
|
|
173BAAF6000
|
heap default
|
page read and write
|
|
|
|
7FF590DFE000
|
unkown
|
page readonly
|
|
|
|
21CB000
|
unkown
|
page readonly
|
|
|
|
28C8857E000
|
unkown
|
page read and write
|
|
|
|
7FF5E2D93000
|
unkown
|
page readonly
|
|
|
|
28BE256A000
|
unkown
|
page read and write
|
|
|
|
23380ACB000
|
unkown
|
page read and write
|
|
|
|
226D8590000
|
unkown
|
page readonly
|
|
|
|
1F834902000
|
unkown
|
page read and write
|
|
|
|
7FF5B5D43000
|
unkown
|
page readonly
|
|
|
|
7FF59160A000
|
unkown
|
page readonly
|
|
|
|
28C864CF000
|
unkown
|
page read and write
|
|
|
|
173BAA20000
|
unkown
|
page read and write
|
|
|
|
F78147B000
|
unkown
|
page read and write
|
|
|
|
28BE2560000
|
unkown
|
page read and write
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
1D895E70000
|
unkown
|
page readonly
|
|
|
|
7FF5EF45A000
|
unkown
|
page readonly
|
|
|
|
28BE2577000
|
unkown
|
page read and write
|
|
|
|
153A0821000
|
unkown
|
page read and write
|
|
|
|
1539B09D000
|
unkown
|
page read and write
|
|
|
|
7FF5AA8BF000
|
unkown
|
page readonly
|
|
|
|
1539B959000
|
unkown
|
page read and write
|
|
|
|
28C88240000
|
unkown
|
page read and write
|
|
|
|
7FF5DF8AA000
|
unkown
|
page readonly
|
|
|
|
4EFB000
|
heap private
|
page read and write
|
|
|
|
7FF5E2D7A000
|
unkown
|
page readonly
|
|
|
|
BBDB679000
|
unkown
|
page read and write
|
|
|
|
EE3BFB000
|
unkown
|
page read and write
|
|
|
|
7FF4FAD39000
|
unkown
|
page readonly
|
|
|
|
28C86409000
|
unkown
|
page read and write
|
|
|
|
1D896000000
|
unkown
|
page read and write
|
|
|
|
28C89110000
|
unkown
|
page read and write
|
|
|
|
7FF5D7EE1000
|
unkown
|
page readonly
|
|
|
|
EE4179000
|
unkown
|
page read and write
|
|
|
|
BBDB97D000
|
unkown
|
page read and write
|
|
|
|
7FF5B55FE000
|
unkown
|
page readonly
|
|
|
|
1F834A00000
|
unkown
|
page readonly
|
|
|
|
28C864BA000
|
unkown
|
page read and write
|
|
|
|
2244C502000
|
unkown
|
page read and write
|
|
|
|
2987000
|
unkown
|
page read and write
|
|
|
|
28BE2567000
|
unkown
|
page read and write
|
|
|
|
7FF4FC7C4000
|
unkown
|
page readonly
|
|
|
|
1B1AE7E000
|
unkown
|
page read and write
|
|
|
|
7FF591514000
|
unkown
|
page readonly
|
|
|
|
6FD000
|
unkown
|
page read and write
|
|
|
|
160219C1000
|
unkown
|
page read and write
|
|
|
|
23380CD0000
|
unkown
|
page readonly
|
|
|
|
1539BA01000
|
unkown
|
page read and write
|
|
|
|
6E1B5000
|
unkown image
|
page read and write
|
|
|
|
28C89010000
|
unkown
|
page read and write
|
|
|
|
7FF5EF444000
|
unkown
|
page readonly
|
|
|
|
7FF52B91F000
|
unkown
|
page readonly
|
|
|
|
1BD99629000
|
unkown
|
page read and write
|
|
|
|
1BD99708000
|
unkown
|
page read and write
|
|
|
|
7FF51B8B6000
|
unkown
|
page readonly
|
|
|
|
6E211000
|
unkown image
|
page read and write
|
|
|
|
160219B1000
|
unkown
|
page read and write
|
|
|
|
7FF5DF7E3000
|
unkown
|
page readonly
|
|
|
|
7FF5DF8D2000
|
unkown
|
page readonly
|
|
|
|
28BE2564000
|
unkown
|
page read and write
|
|
|
|
1D9D2FE0000
|
unkown
|
page readonly
|
|
|
|
28C8649D000
|
unkown
|
page read and write
|
|
|
|
7FF4FAD9D000
|
unkown
|
page readonly
|
|
|
|
7FF5B5D45000
|
unkown
|
page readonly
|
|
|
|
1B1ABBE000
|
unkown
|
page read and write
|
|
|
|
7FF4FC767000
|
unkown
|
page readonly
|
|
|
|
6E1B0000
|
unkown image
|
page readonly
|
|
|
|
7FF574475000
|
unkown
|
page readonly
|
|
|
|
153A0860000
|
unkown
|
page read and write
|
|
|
|
28BE2576000
|
unkown
|
page read and write
|
|
|
|
28C8653E000
|
unkown
|
page read and write
|
|
|
|
7FF51BAC7000
|
unkown
|
page readonly
|
|
|
|
1539B802000
|
unkown
|
page read and write
|
|
|
|
28BE2524000
|
unkown
|
page read and write
|
|
|
|
28C885E9000
|
unkown
|
page read and write
|
|
|
|
7FF591440000
|
unkown
|
page readonly
|
|
|
|
7FF5E2CAF000
|
unkown
|
page readonly
|
|
|
|
1539B07C000
|
unkown
|
page read and write
|
|
|
|
28C89810000
|
unkown
|
page read and write
|
|
|
|
1D896069000
|
unkown
|
page read and write
|
|
|
|
7FF5DF777000
|
unkown
|
page readonly
|
|
|
|
1D9D3200000
|
unkown
|
page readonly
|
|
|
|
28BE2521000
|
unkown
|
page read and write
|
|
|
|
28BE2524000
|
unkown
|
page read and write
|
|
|
|
7FF5D7E31000
|
unkown
|
page readonly
|
|
|
|
7FF5E2CE6000
|
unkown
|
page readonly
|
|
|
|
2963000
|
unkown
|
page read and write
|
|
|
|
153A0570000
|
unkown
|
page read and write
|
|
|
|
7FF52BB93000
|
unkown
|
page readonly
|
|
|
|
C425B7E000
|
unkown
|
page read and write
|
|
|
|
7FF52BB54000
|
unkown
|
page readonly
|
|
|
|
23380B00000
|
unkown
|
page read and write
|
|
|
|
173BAB20000
|
heap default
|
page read and write
|
|
|
|
BBDB07A000
|
unkown
|
page read and write
|
|
|
|
9F30F79000
|
unkown
|
page read and write
|
|
|
|
173BB350000
|
unkown
|
page readonly
|
|
|
|
2622BF9000
|
unkown
|
page read and write
|
|
|
|
2987000
|
unkown
|
page read and write
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
7FF591478000
|
unkown
|
page readonly
|
|
|
|
1D9D3102000
|
unkown
|
page read and write
|
|
|
|
7FF5EF381000
|
unkown
|
page readonly
|
|
|
|
16021980000
|
unkown
|
page readonly
|
|
|
|
7FF591637000
|
unkown
|
page readonly
|
|
|
|
EB5A3FF000
|
unkown
|
page read and write
|
|
|
|
25DF000
|
unkown
|
page readonly
|
|
|
|
BBDB77B000
|
unkown
|
page read and write
|
|
|
|
7FF591445000
|
unkown
|
page readonly
|
|
|
|
7FF52BBA7000
|
unkown
|
page readonly
|
|
|
|
28C89310000
|
unkown
|
page read and write
|
|
|
|
28C89210000
|
unkown
|
page read and write
|
|
|
|
7FF5C0947000
|
unkown
|
page readonly
|
|
|
|
58AB7B000
|
unkown
|
page read and write
|
|
|
|
7FF5EF21A000
|
unkown
|
page readonly
|
|
|
|
7FF574754000
|
unkown
|
page readonly
|
|
|
|
454179000
|
unkown
|
page read and write
|
|
|
|
7FF4FC7D7000
|
unkown
|
page readonly
|
|
|
|
153A0980000
|
unkown
|
page readonly
|
|
|
|
4530000
|
heap private
|
page read and write
|
|
|
|
153A083C000
|
unkown
|
page readonly
|
|
|
|
28BE2513000
|
unkown
|
page read and write
|
|
|
|
28C864C7000
|
unkown
|
page read and write
|
|
|
|
7FF5EF257000
|
unkown
|
page readonly
|
|
|
|
28BE258D000
|
unkown
|
page read and write
|
|
|
|
7FF5DF5FF000
|
unkown
|
page readonly
|
|
|
|
BBDADFF000
|
unkown
|
page read and write
|
|
|
|
28C864CB000
|
unkown
|
page read and write
|
|
|
|
7FF5E2B3A000
|
unkown
|
page readonly
|
|
|
|
2622C7E000
|
unkown
|
page read and write
|
|
|
|
153A06AB000
|
unkown
|
page read and write
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
153A0800000
|
unkown
|
page read and write
|
|
|
|
1F834802000
|
unkown
|
page read and write
|
|
|
|
7FF591623000
|
unkown
|
page readonly
|
|
|
|
7FF5D7F23000
|
unkown
|
page readonly
|
|
|
|
2996000
|
unkown
|
page read and write
|
|
|
|
7FF4FAD26000
|
unkown
|
page readonly
|
|
|
|
1D896660000
|
unkown
|
page readonly
|
|
|
|
1D896A00000
|
unkown
|
page readonly
|
|
|
|
7FF5EF227000
|
unkown
|
page readonly
|
|
|
|
28C864F9000
|
unkown
|
page read and write
|
|
|
|
215B000
|
unkown
|
page readonly
|
|
|
|
28BE2A02000
|
unkown
|
page read and write
|
|
|
|
7FF5914B5000
|
unkown
|
page readonly
|
|
|
|
7FF590EC9000
|
unkown
|
page readonly
|
|
|
|
BBDB3FB000
|
unkown
|
page read and write
|
|
|
|
28C8649C000
|
unkown
|
page read and write
|
|
|
|
28BE255B000
|
unkown
|
page read and write
|
|
|
|
28BE255D000
|
unkown
|
page read and write
|
|
|
|
1539B029000
|
unkown
|
page read and write
|
|
|
|
28C88612000
|
unkown
|
page read and write
|
|
|
|
21EE000
|
unkown
|
page readonly
|
|
|
|
7FF5E2D57000
|
unkown
|
page readonly
|
|
|
|
7FF5AAAEF000
|
unkown
|
page readonly
|
|
|
|
1539AEE0000
|
heap default
|
page read and write
|
|
|
|
24BC000
|
unkown
|
page read and write
|
|
|
|
28C88802000
|
unkown
|
page read and write
|
|
|
|
173BB960000
|
unkown
|
page read and write
|
|
|
|
7FF5DF787000
|
unkown
|
page readonly
|
|
|
|
7FF591543000
|
unkown
|
page readonly
|
|
|
|
1B1B2FF000
|
unkown
|
page read and write
|
|
|
|
7FF51BA8B000
|
unkown
|
page readonly
|
|
|
|
42DE000
|
unkown
|
page read and write
|
|
|
|
1539B815000
|
unkown
|
page read and write
|
|
|
|
7FF5C0516000
|
unkown
|
page readonly
|
|
|
|
3D0000
|
unkown
|
page read and write
|
|
|
|
28C88270000
|
unkown
|
page readonly
|
|
|
|
7FF4FC812000
|
unkown
|
page readonly
|
|
|
|
7FF4FC7CD000
|
unkown
|
page readonly
|
|
|
|
1D89604E000
|
unkown
|
page read and write
|
|
|
|
28BE23F0000
|
unkown
|
page readonly
|
|
|
|
220D000
|
unkown
|
page readonly
|
|
|
|
161EE5D5000
|
heap private
|
page read and write
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
28BE2A02000
|
unkown
|
page read and write
|
|
|
|
160219A2000
|
unkown
|
page read and write
|
|
|
|
98163FF000
|
unkown
|
page read and write
|
|
|
|
7FF52BA55000
|
unkown
|
page readonly
|
|
|
|
7FF5E2D51000
|
unkown
|
page readonly
|
|
|
|
7FF5915E7000
|
unkown
|
page readonly
|
|
|
|
9F310FF000
|
unkown
|
page read and write
|
|
|
|
153A0880000
|
unkown
|
page read and write
|
|
|
|
1F83485C000
|
unkown
|
page read and write
|
|
|
|
7FF5EF447000
|
unkown
|
page readonly
|
|
|
|
7FF5EF1BE000
|
unkown
|
page readonly
|
|
|
|
7FF5DF7B9000
|
unkown
|
page readonly
|
|
|
|
7FF5DF7C4000
|
unkown
|
page readonly
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
153A063D000
|
unkown
|
page read and write
|
|
|
|
BBDB6FF000
|
unkown
|
page read and write
|
|
|
|
7FF5915E4000
|
unkown
|
page readonly
|
|
|
|
1F834829000
|
unkown
|
page read and write
|
|
|
|
7FF4FAD91000
|
unkown
|
page readonly
|
|
|
|
2244C3F0000
|
heap default
|
page read and write
|
|
|
|
7FF5EEBF7000
|
unkown
|
page readonly
|
|
|
|
161EFFF0000
|
heap private
|
page read and write
|
|
|
|
7FF5E2CA1000
|
unkown
|
page readonly
|
|
|
|
153A08A0000
|
unkown
|
page readonly
|
|
|
|
28BE255D000
|
unkown
|
page read and write
|
|
|
|
9EEC3FD000
|
unkown
|
page read and write
|
|
|
|
A1B000
|
heap default
|
page read and write
|
|
|
|
7FF5AABA4000
|
unkown
|
page readonly
|
|
|
|
7FF52BAB3000
|
unkown
|
page readonly
|
|
|
|
28C89210000
|
unkown
|
page read and write
|
|
|
|
7FF52BBA2000
|
unkown
|
page readonly
|
|
|
|
7FF5AAAFE000
|
unkown
|
page readonly
|
|
|
|
7FF51BA06000
|
unkown
|
page readonly
|
|
|
|
28BE23E0000
|
unkown
|
page readonly
|
|
|
|
1539BEF0000
|
unkown
|
page read and write
|
|
|
|
28C86454000
|
unkown
|
page read and write
|
|
|
|
161EE3BC000
|
heap default
|
page read and write
|
|
|
|
7FF52BB57000
|
unkown
|
page readonly
|
|
|
|
7FF5D7F37000
|
unkown
|
page readonly
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
28BE1EBC000
|
unkown
|
page read and write
|
|
|
|
7FF52B87F000
|
unkown
|
page readonly
|
|
|
|
1539BFF0000
|
unkown
|
page readonly
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
438C000
|
unkown
|
page read and write
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
173BB050000
|
unkown
|
page readonly
|
|
|
|
7FF5EF473000
|
unkown
|
page readonly
|
|
|
|
28BE1E81000
|
unkown
|
page read and write
|
|
|
|
7FF5EF009000
|
unkown
|
page readonly
|
|
|
|
7FF5745B0000
|
unkown
|
page readonly
|
|
|
|
7FF5AA90B000
|
unkown
|
page readonly
|
|
|
|
28BE1E13000
|
unkown
|
page read and write
|
|
|
|
7FF52BA77000
|
unkown
|
page readonly
|
|
|
|
1D9D3013000
|
unkown
|
page read and write
|
|
|
|
160219CB000
|
unkown
|
page read and write
|
|
|
|
7FF5D7E2F000
|
unkown
|
page readonly
|
|
|
|
7FF591589000
|
unkown
|
page readonly
|
|
|
|
7FF5DF897000
|
unkown
|
page readonly
|
|
|
|
7FF51B9CF000
|
unkown
|
page readonly
|
|
|
|
7FF52BB64000
|
unkown
|
page readonly
|
|
|
|
7FF574796000
|
unkown
|
page readonly
|
|
|
|
28C89610000
|
unkown
|
page read and write
|
|
|
|
1D896048000
|
unkown
|
page read and write
|
|
|
|
1D9D2F20000
|
heap private
|
page read and write
|
|
|
|
28C88942000
|
unkown
|
page read and write
|
|
|
|
7FF4FC7C1000
|
unkown
|
page readonly
|
|
|
|
9F30E7F000
|
unkown
|
page read and write
|
|
|
|
7FF52BAED000
|
unkown
|
page readonly
|
|
|
|
16021C30000
|
unkown
|
page read and write
|
|
|
|
EE36FF000
|
unkown
|
page read and write
|
|
|
|
2244DEE0000
|
unkown
|
page read and write
|
|
|
|
6E221000
|
unkown image
|
page readonly
|
|
|
|
1BD99570000
|
heap default
|
page read and write
|
|
|
|
173BABB0000
|
unkown
|
page readonly
|
|
|
|
7FF4FA798000
|
unkown
|
page readonly
|
|
|
|
EB59F8E000
|
unkown
|
page read and write
|
|
|
|
7FF5EF2C1000
|
unkown
|
page readonly
|
|
|
|
153A0900000
|
unkown
|
page readonly
|
|
|
|
7FF5B5DE4000
|
unkown
|
page readonly
|
|
|
|
28C864BD000
|
unkown
|
page read and write
|
|
|
|
2244C6D0000
|
unkown
|
page write copy
|
|
|
|
2228000
|
unkown
|
page readonly
|
|
|
|
16021930000
|
unkown
|
page read and write
|
|
|
|
7FF5C0904000
|
unkown
|
page readonly
|
|
|
|
7FF5746ED000
|
unkown
|
page readonly
|
|
|
|
28C864B9000
|
unkown
|
page read and write
|
|
|
|
1539C010000
|
unkown
|
page readonly
|
|
|
|
7FF5C0899000
|
unkown
|
page readonly
|
|
|
|
1539C000000
|
unkown
|
page readonly
|
|
|
|
BBDAF7A000
|
unkown
|
page read and write
|
|
|
|
7FF5DF4A6000
|
unkown
|
page readonly
|
|
|
|
98165FE000
|
unkown
|
page read and write
|
|
|
|
7FF5DF88D000
|
unkown
|
page readonly
|
|
|
|
7FF5B5DE7000
|
unkown
|
page readonly
|
|
|
|
1F8362A0000
|
unkown
|
page readonly
|
|
|
|
28C864DA000
|
unkown
|
page read and write
|
|
|
|
28BE2524000
|
unkown
|
page read and write
|
|
|
|
1D9D32D0000
|
unkown
|
page readonly
|
|
|
|
7FF5DF8C3000
|
unkown
|
page readonly
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
28BE2990000
|
unkown
|
page read and write
|
|
|
|
173BAAB0000
|
heap default
|
page read and write
|
|
|
|
1D896051000
|
unkown
|
page read and write
|
|
|
|
28C89210000
|
unkown
|
page read and write
|
|
|
|
7FF5D7B15000
|
unkown
|
page readonly
|
|
|
|
16021950000
|
unkown
|
page read and write
|
|
|
|
7FF5EF305000
|
unkown
|
page readonly
|
|
|
|
28C8653F000
|
unkown
|
page read and write
|
|
|
|
7FF5DF827000
|
unkown
|
page readonly
|
|
|
|
28BE255F000
|
unkown
|
page read and write
|
|
|
|
173BAB08000
|
unkown
|
page read and write
|
|
|
|
161F00EF000
|
heap private
|
page read and write
|
|
|
|
161F0220000
|
heap private
|
page read and write
|
|
|
|
28C885BF000
|
unkown
|
page read and write
|
|
|
|
7FF590DFA000
|
unkown
|
page readonly
|
|
|
|
28C864D4000
|
unkown
|
page read and write
|
|
|
|
153A064A000
|
unkown
|
page read and write
|
|
|
|
6E1B0000
|
unkown image
|
page readonly
|
|
|
|
2E10000
|
unkown
|
page readonly
|
|
|
|
28BE29A0000
|
unkown
|
page read and write
|
|
|
|
28BE255A000
|
unkown
|
page read and write
|
|
|
|
173BAADD000
|
heap default
|
page read and write
|
|
|
|
153A0550000
|
unkown
|
page read and write
|
|
|
|
7FF5E2851000
|
unkown
|
page readonly
|
|
|
|
9EEC2FF000
|
unkown
|
page read and write
|
|
|
|
7FF4FADD3000
|
unkown
|
page readonly
|
|
|
|
981637B000
|
unkown
|
page read and write
|
|
|
|
7FF51B688000
|
unkown
|
page readonly
|
|
|
|
28C89310000
|
unkown
|
page read and write
|
|
|
|
BBDB7FB000
|
unkown
|
page read and write
|
|
|
|
7FF591637000
|
unkown
|
page readonly
|
|
|
|
1D9D3058000
|
unkown
|
page read and write
|
|
|
|
1F8345D0000
|
heap private
|
page read and write
|
|
|
|
2580000
|
unkown
|
page readonly
|
|
|
|
7FF5C067E000
|
unkown
|
page readonly
|
|
|
|
28C86413000
|
unkown
|
page read and write
|
|
|
|
7FF5EF0CB000
|
unkown
|
page readonly
|
|
|
|
7FF5C07F1000
|
unkown
|
page readonly
|
|
|
|
7FF5D7EE4000
|
unkown
|
page readonly
|
|
|
|
7FF5DF498000
|
unkown
|
page readonly
|
|
|
|
173BAAA0000
|
unkown
|
page readonly
|
|
|
|
58AA7B000
|
unkown
|
page read and write
|
|
|
|
7FF5C03BE000
|
unkown
|
page readonly
|
|
|
|
7FF5EEC64000
|
unkown
|
page readonly
|
|
|
|
4540F9000
|
unkown
|
page read and write
|
|
|
|
28BE2500000
|
unkown
|
page read and write
|
|
|
|
7FF5AABD6000
|
unkown
|
page readonly
|
|
|
|
7FF590EC5000
|
unkown
|
page readonly
|
|
|
|
7FF5E2CBD000
|
unkown
|
page readonly
|
|
|
|
7FF51B795000
|
unkown
|
page readonly
|
|
|
|
28BE2560000
|
unkown
|
page read and write
|
|
|
|
4EF8000
|
heap private
|
page read and write
|
|
|
|
7FF51B83F000
|
unkown
|
page readonly
|
|
|
|
291A000
|
heap default
|
page read and write
|
|
|
|
7FF5910B3000
|
unkown
|
page readonly
|
|
|
|
7FF4FADAB000
|
unkown
|
page readonly
|
|
|
|
7FF591426000
|
unkown
|
page readonly
|
|
|
|
28C8651F000
|
unkown
|
page read and write
|
|
|
|
28BE1EE6000
|
unkown
|
page read and write
|
|
|
|
28C88902000
|
unkown
|
page read and write
|
|
|
|
7FF5EF2F1000
|
unkown
|
page readonly
|
|
|
|
28BE255B000
|
unkown
|
page read and write
|
|
|
|
7FF5C0508000
|
unkown
|
page readonly
|
|
|
|
28C89110000
|
unkown
|
page read and write
|
|
|
|
1539BFE0000
|
unkown
|
page readonly
|
|
|
|
58ACFE000
|
unkown
|
page read and write
|
|
|
|
28BE258B000
|
unkown
|
page read and write
|
|
|
|
28BE257D000
|
unkown
|
page read and write
|
|
|
|
7FF52BAE6000
|
unkown
|
page readonly
|
|
|
|
7FF5AAB26000
|
unkown
|
page readonly
|
|
|
|
7FF5915E1000
|
unkown
|
page readonly
|
|
|
|
28BE2537000
|
unkown
|
page read and write
|
|
|
|
7FF5DF884000
|
unkown
|
page readonly
|
|
|
|
1F834800000
|
unkown
|
page read and write
|
|
|
|
153A0844000
|
unkown
|
page write copy
|
|
|
|
205A000
|
unkown
|
page readonly
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
153A0540000
|
unkown
|
page read and write
|
|
|
|
28BE2522000
|
unkown
|
page read and write
|
|
|
|
7FF59136E000
|
unkown
|
page readonly
|
|
|
|
440E000
|
unkown
|
page read and write
|
|
|
|
161EFE40000
|
unkown
|
page readonly
|
|
|
|
28BE255D000
|
unkown
|
page read and write
|
|
|
|
28C88575000
|
unkown
|
page read and write
|
|
|
|
98166FF000
|
unkown
|
page read and write
|
|
|
|
EE437F000
|
unkown
|
page read and write
|
|
|
|
28D5000
|
heap default
|
page read and write
|
|
|
|
C42597A000
|
unkown
|
page read and write
|
|
|
|
1D9D3002000
|
unkown
|
page read and write
|
|
|
|
7FF51B8D8000
|
unkown
|
page readonly
|
|
|
|
7FF51B9D3000
|
unkown
|
page readonly
|
|
|
|
153A0810000
|
unkown
|
page write copy
|
|
|
|
28BE2575000
|
unkown
|
page read and write
|
|
|
|
7FF52BAF9000
|
unkown
|
page readonly
|
|
|
|
28BE257D000
|
unkown
|
page read and write
|
|
|
|
7FF5EF369000
|
unkown
|
page readonly
|
|
|
|
7FF4FC5D7000
|
unkown
|
page readonly
|
|
|
|
1FB9000
|
unkown
|
page readonly
|
|
|
|
7FF5AAB06000
|
unkown
|
page readonly
|
|
|
|
F781BF8000
|
unkown
|
page read and write
|
|
|
|
EE3C7F000
|
unkown
|
page read and write
|
|
|
|
7FF5915F4000
|
unkown
|
page readonly
|
|
|
|
28C88702000
|
unkown
|
page read and write
|
|
|
|
226D8629000
|
unkown
|
page read and write
|
|
|
|
2C00000
|
heap private
|
page read and write
|
|
|
|
7FF52BB6B000
|
unkown
|
page readonly
|
|
|
|
160219B1000
|
unkown
|
page read and write
|
|
|
|
7FF52B9B0000
|
unkown
|
page readonly
|
|
|
|
8F0000
|
heap default
|
page read and write
|
|
|
|
2590000
|
unkown
|
page readonly
|
|
|
|
21CD000
|
unkown
|
page readonly
|
|
|
|
28BE2522000
|
unkown
|
page read and write
|
|
|
|
28C864CA000
|
unkown
|
page read and write
|
|
|
|
7FF5D7E62000
|
unkown
|
page readonly
|
|
|
|
23380A00000
|
unkown
|
page read and write
|
|
|
|
7FF5746CA000
|
unkown
|
page readonly
|
|
|
|
7FF5D7F0A000
|
unkown
|
page readonly
|
|
|
|
1F8347A0000
|
unkown
|
page read and write
|
|
|
|
7FF52BACA000
|
unkown
|
page readonly
|
|
|
|
28BE257F000
|
unkown
|
page read and write
|
|
|
|
28BE2551000
|
unkown
|
page read and write
|
|
|
|
28C89210000
|
unkown
|
page read and write
|
|
|
|
1539AFD0000
|
unkown
|
page readonly
|
|
|
|
7FF591587000
|
unkown
|
page readonly
|
|
|
|
F78157E000
|
unkown
|
page read and write
|
|
|
|
28BE2566000
|
unkown
|
page read and write
|
|
|
|
BBDAE7A000
|
unkown
|
page read and write
|
|
|
|
173BB9E0000
|
unkown
|
page read and write
|
|
|
|
1539BE10000
|
unkown
|
page read and write
|
|
|
|
160219B8000
|
unkown
|
page read and write
|
|
|
|
226D8460000
|
heap default
|
page read and write
|
|
|
|
7FF5C0639000
|
unkown
|
page readonly
|
|
|
|
7FF5C0426000
|
unkown
|
page readonly
|
|
|
|
7FF5C0907000
|
unkown
|
page readonly
|
|
|
|
7FF4FA520000
|
unkown
|
page readonly
|
|
|
|
2987000
|
unkown
|
page read and write
|
|
|
|
28BE2537000
|
unkown
|
page read and write
|
|
|
|
28BE1E6D000
|
unkown
|
page read and write
|
|
|
|
1539B0FE000
|
unkown
|
page read and write
|
|
|
|
28BE2588000
|
unkown
|
page read and write
|
|
|
|
23380B56000
|
unkown
|
page read and write
|
|
|
|
4EFA000
|
heap private
|
page read and write
|
|
|
|
1D9D4B70000
|
unkown
|
page readonly
|
|
|
|
28BE2990000
|
unkown
|
page read and write
|
|
|
|
1539B03D000
|
unkown
|
page read and write
|
|
|
|
7FF4FAB6C000
|
unkown
|
page readonly
|
|
|
|
7FF4FADD6000
|
unkown
|
page readonly
|
|
|
|
7FF52BABE000
|
unkown
|
page readonly
|
|
|
|
F781C7F000
|
unkown
|
page read and write
|
|
|
|
7FF5E2CF9000
|
unkown
|
page readonly
|
|
|
|
7FF5C07F5000
|
unkown
|
page readonly
|
|
|
|
9EEC37D000
|
unkown
|
page read and write
|
|
|
|
1539B200000
|
unkown
|
page readonly
|
|
|
|
7FF5AABE7000
|
unkown
|
page readonly
|
|
|
|
7FF5D7DD7000
|
unkown
|
page readonly
|
|
|
|
28BE256C000
|
unkown
|
page read and write
|
|
|
|
7FF4FC628000
|
unkown
|
page readonly
|
|
|
|
28BE1C40000
|
unkown
|
page readonly
|
|
|
|
1539C3A0000
|
unkown
|
page read and write
|
|
|
|
153A03B0000
|
unkown
|
page read and write
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
28C88742000
|
unkown
|
page read and write
|
|
|
|
233808F0000
|
heap private
|
page read and write
|
|
|
|
28BE1F02000
|
unkown
|
page read and write
|
|
|
|
2055000
|
unkown
|
page readonly
|
|
|
|
7FF51B997000
|
unkown
|
page readonly
|
|
|
|
7FF4FADA4000
|
unkown
|
page readonly
|
|
|
|
58AAFE000
|
unkown
|
page read and write
|
|
|
|
161EE970000
|
unkown
|
page readonly
|
|
|
|
4EFA000
|
heap private
|
page read and write
|
|
|
|
28C87DA0000
|
unkown
|
page read and write
|
|
|
|
7FF5EF3AA000
|
unkown
|
page readonly
|
|
|
|
7FF59152F000
|
unkown
|
page readonly
|
|
|
|
226D8602000
|
unkown
|
page read and write
|
|
|
|
7FF5AA9D6000
|
unkown
|
page readonly
|
|
|
|
7FF5C07F7000
|
unkown
|
page readonly
|
|
|
|
2622A7A000
|
unkown
|
page read and write
|
|
|
|
28BE2556000
|
unkown
|
page read and write
|
|
|
|
2244C920000
|
unkown
|
page readonly
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
28BE258C000
|
unkown
|
page read and write
|
|
|
|
161EE370000
|
unkown
|
page readonly
|
|
|
|
7FF5911FF000
|
unkown
|
page readonly
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
28C88210000
|
heap private
|
page read and write
|
|
|
|
453FF9000
|
unkown
|
page read and write
|
|
|
|
7FF5D7E56000
|
unkown
|
page readonly
|
|
|
|
C4259FE000
|
unkown
|
page read and write
|
|
|
|
BBDB0F9000
|
unkown
|
page read and write
|
|
|
|
7FF5C084F000
|
unkown
|
page readonly
|
|
|
|
161EE38B000
|
heap default
|
page read and write
|
|
|
|
28C89310000
|
unkown
|
page read and write
|
|
|
|
7FF5AAAF3000
|
unkown
|
page readonly
|
|
|
|
7FF5EF2C8000
|
unkown
|
page readonly
|
|
|
|
28C8651F000
|
unkown
|
page read and write
|
|
|
|
28C885BE000
|
unkown
|
page read and write
|
|
|
|
7FF4FC2C1000
|
unkown
|
page readonly
|
|
|
|
7FF5D7DDB000
|
unkown
|
page readonly
|
|
|
|
7FF5AA90F000
|
unkown
|
page readonly
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
1D895F60000
|
unkown
|
page read and write
|
|
|
|
7FF5EF354000
|
unkown
|
page readonly
|
|
|
|
28C864B5000
|
unkown
|
page read and write
|
|
|
|
58AD79000
|
unkown
|
page read and write
|
|
|
|
7FF5913E3000
|
unkown
|
page readonly
|
|
|
|
7FF4FC7C7000
|
unkown
|
page readonly
|
|
|
|
7FF5D7F37000
|
unkown
|
page readonly
|
|
|
|
47B000
|
unkown
|
page read and write
|
|
|
|
9EEC4FF000
|
unkown
|
page read and write
|
|
|
|
28BE2567000
|
unkown
|
page read and write
|
|
|
|
1539C371000
|
unkown
|
page read and write
|
|
|
|
7FF5913CA000
|
unkown
|
page readonly
|
|
|
|
4EFB000
|
heap private
|
page read and write
|
|
|
|
28C89110000
|
unkown
|
page read and write
|
|
|
|
2996000
|
unkown
|
page read and write
|
|
|
|
28C864B7000
|
unkown
|
page read and write
|
|
|
|
7FF4FC7EA000
|
unkown
|
page readonly
|
|
|
|
7FF52BB96000
|
unkown
|
page readonly
|
|
|
|
4A7E000
|
unkown
|
page read and write
|
|
|
|
160219CB000
|
unkown
|
page read and write
|
|
|
|
BBDB27A000
|
unkown
|
page read and write
|
|
|
|
153A08A0000
|
unkown
|
page read and write
|
|
|
|
7FF4FADA7000
|
unkown
|
page readonly
|
|
|
|
7FF59137B000
|
unkown
|
page readonly
|
|
|
|
7FF5746BE000
|
unkown
|
page readonly
|
|
|
|
21E3000
|
unkown
|
page readonly
|
|
|
|
7FF5DF4AA000
|
unkown
|
page readonly
|
|
|
|
7FF5EF133000
|
unkown
|
page readonly
|
|
|
|
2987000
|
unkown
|
page read and write
|
|
|
|
173BAAB7000
|
heap default
|
page read and write
|
|
|
|
7FF5EF2FE000
|
unkown
|
page readonly
|
|
|
|
C4258FF000
|
unkown
|
page read and write
|
|
|
|
28BE2567000
|
unkown
|
page read and write
|
|
|
|
1539AEF0000
|
unkown
|
page readonly
|
|
|
|
7FF5DF7CF000
|
unkown
|
page readonly
|
|
|
|
153A069D000
|
unkown
|
page read and write
|
|
|
|
7FF4FA4DE000
|
unkown
|
page readonly
|
|
|
|
49FF000
|
unkown
|
page read and write
|
|
|
|
7FF5E2C9F000
|
unkown
|
page readonly
|
|
|
|
28C89410000
|
unkown
|
page read and write
|
|
|
|
7FF51BA17000
|
unkown
|
page readonly
|
|
|
|
7FF5C0897000
|
unkown
|
page readonly
|
|
|
|
7FF5EF15F000
|
unkown
|
page readonly
|
|
|
|
9F30B9B000
|
unkown
|
page read and write
|
|
|
|
28C89110000
|
unkown
|
page read and write
|
|
|
|
24FB000
|
unkown
|
page read and write
|
|
|
|
7FF51B2B7000
|
unkown
|
page readonly
|
|
|
|
28C885ED000
|
unkown
|
page read and write
|
|
|
|
23382570000
|
unkown
|
page readonly
|
|
|
|
2244C429000
|
unkown
|
page read and write
|
|
There are 1560 hidden memdumps, click here to show them.