Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
f0t0s.jpg.dll
|
MS-DOS executable, MZ for MS-DOS
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\E5F0NRSV\www.msn[2].xml
|
ASCII text, with no line terminators
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\URW0GA4Q\contextual.media[1].xml
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{9C227A45-5BD3-11EB-90EB-ECF4BBEA1588}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{9C227A47-5BD3-11EB-90EB-ECF4BBEA1588}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{AB99FC5F-5BD3-11EB-90EB-ECF4BBEA1588}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{C17BB63F-5BD3-11EB-90EB-ECF4BBEA1588}.dat
|
Microsoft Word Document
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-17529550060\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-18270793970\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-21706820\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-4759708130\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-6757900\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-8760897390\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20259167780\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20332743330\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin8215062560\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\gee00pr\imagestore.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\39ab3103-8560-4a55-bfc4-401f897cf6f2[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\55a804ab-e5c6-4b97-9319-86263d365d28[1].json
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\AA3DGHW[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB1cGhXz[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB1cW7uG[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 310x166, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB1cWZki[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB1cWusL[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 310x166, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB1cWwMe[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB1cX3Y8[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB1cX4Jh[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 311x333,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB1cX7Pt[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB1cXasA[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB1cXj4d[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 300x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB6Ma4a[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB7gRE[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB7hg4[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BBRUB0d[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BBVuddh[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\a5ea21[1].ico
|
PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\auction[1].htm
|
HTML document, ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\cfdbd9[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\checksync[1].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\dnserror[1]
|
HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\down[1]
|
PNG image data, 15 x 15, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\http___cdn.taboola.com_libtrc_static_thumbnails_29548775a473a2c67add94fd55354025[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\http___cdn.taboola.com_libtrc_static_thumbnails_b735c05319719836ca882359e4b7c3ba[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\nrrV63415[1].js
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\otSDKStub[1].js
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\AA7XCQ3[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB14EN7h[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 192x192, segment length 16, baseline, precision 8, 622x368,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB15AQNm[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 192x192, segment length 16, baseline, precision 8, 622x368,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1cEP3G[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1cWGmF[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1cWL7A[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1cWZVM[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1cWtRO[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 100x75,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1cWvPu[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 311x333,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1cXaYD[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1cXdku[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 100x75, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1cXg0K[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1cXik5[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1cXiku[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1cXjph[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x75, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1kvzy[1].png
|
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BBnYSFZ[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\Royl[1].avi
|
data
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\a8a064[1].gif
|
GIF image data, version 89a, 28 x 28
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\checksync[1].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\checksync[2].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\e151e5[1].gif
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\errorPageStrings[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\fcmain[1].js
|
HTML document, ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\http___cdn.taboola.com_libtrc_static_thumbnails_2b016d601242a511f3242b0d41867296[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\http___cdn.taboola.com_libtrc_static_thumbnails_634028cc45358ad57db10dfb727c0507[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\http___cdn.taboola.com_libtrc_static_thumbnails_GETTY_IMAGES_IBK_606910635__VqZNjsRU[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\otFlat[1].json
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\41-0bee62-68ddb2ab[1].js
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\4996b9[1].woff
|
Web Open Font Format, TrueType, length 45633, version 1.0
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\755f86[1].png
|
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB10MkbM[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB14hq0P[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 192x192, segment length 16, baseline, precision 8, 622x368,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1cV7Ls[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1cVySw[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 310x166,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1cWHr1[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1cWOTe[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 311x333,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1cWPdH[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1cWQvY[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1cWjhd[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1cX7ac[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 622x368,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1cXauH[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1cXjpj[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x75, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB7hjL[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BBIbOGs[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BBMW3y8[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BBO5Geh[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BBUZVvV[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BBaK3KR[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BBkwUr[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\checksync[1].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\e20c0926-e917-4c23-9449-56056dc6d4c7[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\fcmain[1].js
|
HTML document, ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\httpErrorPagesScripts[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\http___cdn.taboola.com_libtrc_static_thumbnails_9de64e087342a200ccd3882b3b32d7d2[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\log[1].gif
|
GIF image data, version 89a, 1 x 1
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\otPcCenter[1].json
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\1611150737861-364[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 622x324, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\58-acd805-185735b[1].css
|
UTF-8 Unicode text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\85-0f8009-68ddb2ab[1].js
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\AAuTnto[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\AAyuliQ[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\AAzb5EX[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1breIx[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1cG73h[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1cWDzp[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 206x250,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1cWIzG[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1cWVGg[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 300x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1cWxae[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1cX1Uo[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1cX4tk[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 310x166,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1cX7F0[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 200x200, segment length 16, baseline, precision 8, 311x333,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1cXb6u[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 206x250,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1cXj4d[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BBK9Hzy[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BBMQmHU[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BBPfCZL[1].png
|
GIF image data, version 89a, 50 x 50
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BBX2afX[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\NewErrorPageTemplate[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\de-ch[1].htm
|
HTML document, UTF-8 Unicode text, with very long lines, with CRLF, LF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\de-ch[1].json
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\iab2Data[1].json
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\jquery-2.1.1.min[1].js
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\medianet[1].htm
|
HTML document, ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\medianet[2].htm
|
HTML document, ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\otBannerSdk[1].js
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\otTCF-ie[1].js
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF4296A3093E38591D.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF7DC4764FC9B19234.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DFD34BD082FA34FFE2.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DFF1366063BFACC9A6.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\RSV4TVW29DYH3OHF7N80.temp
|
data
|
dropped
|
|
There are 127 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Windows\SysWOW64\regsvr32.exe
|
regsvr32.exe /s C:\Users\user\Desktop\f0t0s.jpg.dll
|
|
|
|
C:\Windows\System32\loaddll32.exe
|
loaddll32.exe 'C:\Users\user\Desktop\f0t0s.jpg.dll'
|
|
|
|
C:\Windows\SysWOW64\cmd.exe
|
C:\Windows\system32\cmd.exe /c 'C:\Program Files\Internet Explorer\iexplore.exe'
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
C:\Program Files\Internet Explorer\iexplore.exe
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:6676 CREDAT:17410 /prefetch:2
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:6676 CREDAT:82958 /prefetch:2
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:6676 CREDAT:17430 /prefetch:2
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://www.msn.com/de-ch/news/other/stadtpr%c3%a4sidentin-corine-mauch-r%c3%a4umt-mitschuld-des-sta
|
unknown
|
|
|
|
http://searchads.msn.net/.cfm?&&kp=1&
|
unknown
|
|
|
|
https://contextual.media.net/medianet.php?cid=8CU157172
|
unknown
|
|
|
|
https://www.msn.com/de-ch/nachrichten/coronareisen
|
unknown
|
|
|
|
https://www.remixd.com/privacy_policy.html
|
unknown
|
|
|
|
https://onedrive.live.com;Fotos
|
unknown
|
|
|
|
http://www.symantec.com
|
unknown
|
|
|
|
https://www.onenote.com/notebooks?WT.mc_id=MSN_OneNote_TopMenu&auth=1&wdorigin=msn
|
unknown
|
|
|
|
https://office.live.com/start/Word.aspx?WT.mc_id=MSN_site;Excel
|
unknown
|
|
|
|
http://ogp.me/ns/fb#
|
unknown
|
|
|
|
https://www.awin1.com/cread.php?awinmid=15168&awinaffid=696593&clickref=de-ch-ss&ued=htt
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/judenhass-kampfsport-und-waffen-f%c3%bcr-den-rassenkrieg-wie-si
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/ein-werbespot-f%c3%bcrs-entsorgungsamt-der-schlecht-ankommt/ar-
|
unknown
|
|
|
|
https://ir2.beap.gemini.yahoo.com/mbcsc?bv=1.0.0&es=Dji9IOkGIS_3SfG5OA6p0VHp9kusgATEsEfV1u_ATalm
|
unknown
|
|
|
|
https://outlook.live.com/mail/deeplink/compose;Kalender
|
unknown
|
|
|
|
https://res-a.akamaihd.net/__media__/pics/8000/72/941/fallback1.jpg
|
unknown
|
|
|
|
https://www.skyscanner.net/g/referrals/v1/cars/home?associateid=API_B2B_19305_00002
|
unknown
|
|
|
|
https://www.onenote.com/notebooks?WT.mc_id=MSN_OneNote_Recent&auth=1&wdorigin=msn
|
unknown
|
|
|
|
http://www.reddit.com/
|
unknown
|
|
|
|
https://www.skype.com/
|
unknown
|
|
|
|
https://sp.booking.com/index.html?aid=1589774&label=travelnavlink
|
unknown
|
|
|
|
https://www.msn.com/de-ch/nachrichten/regional
|
unknown
|
|
|
|
https://onedrive.live.com/?qt=allmyphotos;Aktuelle
|
unknown
|
|
|
|
https://amzn.to/2TTxhNg
|
unknown
|
|
|
|
https://www.skype.com/go/onedrivepromo.download?cm_mmc=MSFT_2390_MSN-com
|
unknown
|
|
|
|
https://client-s.gateway.messenger.live.com
|
unknown
|
|
|
|
https://www.brightcom.com/privacy-policy/
|
unknown
|
|
|
|
https://www.msn.com/de-ch/
|
unknown
|
|
|
|
https://office.live.com/start/PowerPoint.aspx?WT.mc_id=MSN_site
|
unknown
|
|
|
|
https://contextual.media.net/medianet.php?cid=8CU157172&crid=858412214&size=306x271&https=1
|
unknown
|
|
|
|
https://www.awin1.com/cread.php?awinmid=15168&awinaffid=696593&clickref=de-ch-edge-dhp-river
|
unknown
|
|
|
|
https://bealion.com/politica-de-cookies
|
unknown
|
|
|
|
https://clkde.tradedoubler.com/click?p=295926&a=3064090&g=24886692&epi=de-ch
|
unknown
|
|
|
|
https://www.msn.com/de-ch
|
unknown
|
|
|
|
https://click.linksynergy.com/deeplink?id=xoqYgl4JDe8&mid=46130&u1=dech_mestripe_store&m
|
unknown
|
|
|
|
https://twitter.com/i/notifications;Ich
|
unknown
|
|
|
|
https://www.awin1.com/cread.php?awinmid=11518&awinaffid=696593&clickref=dech-edge-dhp-infopa
|
unknown
|
|
|
|
https://www.gadsme.com/privacy-policy/
|
unknown
|
|
|
|
https://portal.eu.numbereight.me/policies-license#software-privacy-notice
|
unknown
|
|
|
|
https://contextual.media.net/medianet.php?cid=8CU157172&crid=722878611&size=306x271&http
|
unknown
|
|
|
|
https://www.sway.com/?WT.mc_id=MSN_site&utm_source=MSN&utm_medium=Topnav&utm_campaign=link;PowerPoin
|
unknown
|
|
|
|
https://www.msn.com/de-ch/?ocid=iehp&item=deferred_page%3a1&ignorejs=webcore%2fmodules%2fjsb
|
unknown
|
|
|
|
http://www.youtube.com/
|
unknown
|
|
|
|
http://ogp.me/ns#
|
unknown
|
|
|
|
https://docs.prebid.org/privacy.html
|
unknown
|
|
|
|
https://srtb.msn.com:443/notify/viewedg?rid=6a3f43690f1f448cbfda546eb712ffb7&r=infopane&i=1&
|
unknown
|
|
|
|
https://onedrive.live.com/?qt=mru;OneDrive-App
|
unknown
|
|
|
|
https://www.skype.com/de
|
unknown
|
|
|
|
https://sp.booking.com/index.html?aid=1589774&label=dech-prime-hp-me
|
unknown
|
|
|
|
https://www.skype.com/de/download-skype
|
unknown
|
|
|
|
https://www.stroeer.de/fileadmin/de/Konvergenz_und_Konzepte/Daten_und_Technologien/Stroeer_SSP/Downl
|
unknown
|
|
|
|
https://onedrive.live.com/?wt.mc_id=oo_msn_msnhomepage_header
|
unknown
|
|
|
|
http://www.hotmail.msn.com/pii/ReadOutlookEmail/
|
unknown
|
|
|
|
https://channelpilot.co.uk/privacy-policy
|
unknown
|
|
|
|
https://onedrive.live.com;OneDrive-App
|
unknown
|
|
|
|
https://click.linksynergy.com/deeplink?id=xoqYgl4JDe8&mid=46130&u1=dech_mestripe_office&
|
unknown
|
|
|
|
https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location
|
unknown
|
|
|
|
http://www.amazon.com/
|
unknown
|
|
|
|
https://www.onenote.com/notebooks?WT.mc_id=MSN_OneNote_QuickNote&auth=1
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/kopf-der-winterthurer-eisenjugend-verhaftet/ar-BB1cVDBd?ocid=hp
|
unknown
|
|
|
|
http://www.twitter.com/
|
unknown
|
|
|
|
https://office.live.com/start/Excel.aspx?WT.mc_id=MSN_site;Sway
|
unknown
|
|
|
|
https://www.admo.tv/en/privacy-policy
|
unknown
|
|
|
|
https://policies.oath.com/us/en/oath/privacy/index.html
|
unknown
|
|
|
|
https://www.bet365affiliates.com/UI/Pages/Affiliates/Affiliates.aspx?ContentPath
|
unknown
|
|
|
|
https://cdn.cookielaw.org/vendorlist/googleData.json
|
unknown
|
|
|
|
https://outlook.com/
|
unknown
|
|
|
|
https://rover.ebay.com/rover/1/5222-53480-19255-0/1?mpre=https%3A%2F%2Fwww.ebay.ch&campid=533862
|
unknown
|
|
|
|
https://contextual.media.net/checksync.php?&vsSync=1&cs=1&hb=1&cv=37&ndec=1&cid=8HBI57XIG&prvid=77%2
|
unknown
|
|
|
|
https://cdn.cookielaw.org/vendorlist/iabData.json
|
unknown
|
|
|
|
https://www.msn.com/de-ch/homepage/api/pdp/updatepdpdata"
|
unknown
|
|
|
|
https://cdn.cookielaw.org/vendorlist/iab2Data.json
|
unknown
|
|
|
|
https://onedrive.live.com/?qt=mru;Aktuelle
|
unknown
|
|
|
|
https://cdn.flurry.com/adTemplates/templates/htmls/clips.html"
|
unknown
|
|
|
|
https://www.msn.com/de-ch/?ocid=iehp
|
unknown
|
|
|
|
https://sp.booking.com/index.html?aid=1589774&label=dech-prime-hp-shoppingstripe-nav
|
unknown
|
|
|
|
https://www.msn.com/de-ch/homepage/api/modules/fetch"
|
unknown
|
|
|
|
https://beap.gemini.yahoo.com/mbclk?bv=1.0.0&es=H7eJR5QGIS.1LwysAEtkdkHzMQu2hUpPf7VrKeQ0HmqJybXR
|
unknown
|
|
|
|
https://mem.gfx.ms/meversion/?partner=msn&market=de-ch"
|
unknown
|
|
|
|
http://www.nytimes.com/
|
unknown
|
|
|
|
https://web.vortex.data.msn.com/collect/v1/t.gif?name=%27Ms.Webi.PageView%27&ver=%272.1%27&a
|
unknown
|
|
|
|
https://www.bidstack.com/privacy-policy/
|
unknown
|
|
|
|
https://onedrive.live.com/about/en/download/
|
unknown
|
|
|
|
http://popup.taboola.com/german
|
unknown
|
|
|
|
https://listonic.com/privacy/
|
unknown
|
|
|
|
http://ocsp.sca1b.amazontrust.com/images/cbkw0FXjZ3HCi_2BUvlLEw/fnz7_2FSYTGBO/d8cpwz48/Ow_2BJSwooQLNShMgzxdWEN/WB97OIdOn_/2B5aJP9snq78AYvF5/aQYlZAKuNqnG/_2Bkv23luFK/H7ePOzO6dCNavD/s1fZOfaX2zKVlvukNIv0g/2JjaDlwDtYNBdaTf/B2TdhE9u090P8ji/_2BuOoUol91egl0iHx/Royl.avi
|
143.204.214.142
|
|
|
|
https://www.msn.com/de-ch/news/other/aus-angst-vor-mutierten-viren-maskenpflicht-f%c3%bcr-z%c3%bcrch
|
unknown
|
|
|
|
https://www.ricardo.ch/?utm_source=msn&utm_medium=affiliate&utm_campaign=msn_mestripe_logo_d
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/sexuelle-%c3%bcbergriffe-bei-medizinischer-massage/ar-BB1cW8f7?
|
unknown
|
|
|
|
https://twitter.com/
|
unknown
|
|
|
|
https://clkde.tradedoubler.com/click?p=245744&a=3064090&g=24903118&epi=ch-de
|
unknown
|
|
|
|
https://quantyoo.de/datenschutz
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/maskenpflicht-f%c3%bcr-sch%c3%bcler-ab-der-vierten-klasse/ar-BB
|
unknown
|
|
|
|
https://outlook.live.com/calendar
|
unknown
|
|
|
|
https://img.img-taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_311%2Cw_207%2Cc_fill%2Cg_faces:au
|
unknown
|
|
|
|
https://onedrive.live.com/#qt=mru
|
unknown
|
|
|
|
https://api.taboola.com/2.0/json/msn-ch-de-home/recommendations.notify-click?app.type=desktop&ap
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/z%c3%bcrich-erh%c3%a4lt-zwei-kulturdirektorinnen/ar-BB1cVvSE?oc
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/bus-mit-eis-und-schnee-beworfen-jugendliche-festgenommen/ar-BB1
|
unknown
|
|
|
|
https://www.msn.com?form=MY01O4&OCID=MY01O4
|
unknown
|
|
There are 90 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
contextual.media.net
|
104.76.200.23
|
|
|
|
tls13.taboola.map.fastly.net
|
151.101.1.44
|
|
|
|
ocsp.sca1b.amazontrust.com
|
143.204.214.142
|
|
|
|
hblg.media.net
|
104.76.200.23
|
|
|
|
lg3.media.net
|
104.76.200.23
|
|
|
|
edge.gycpi.b.yahoodns.net
|
87.248.118.23
|
|
|
|
s.yimg.com
|
unknown
|
|
|
|
web.vortex.data.msn.com
|
unknown
|
|
|
|
www.msn.com
|
unknown
|
|
|
|
srtb.msn.com
|
unknown
|
|
|
|
img.img-taboola.com
|
unknown
|
|
|
|
cvision.media.net
|
unknown
|
|
There are 2 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Active
|
Malicious
|
|
|---|---|---|---|---|---|
|
143.204.214.142
|
unknown
|
United States
|
unknown
|
|
|
|
87.248.118.23
|
unknown
|
United Kingdom
|
unknown
|
|
|
|
151.101.1.44
|
unknown
|
United States
|
unknown
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\internet explorer\iexplore.exe
|
{9C227A45-5BD3-11EB-90EB-ECF4BBEA1588}
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Window_Placement
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
CVListPingLastYMD
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
NextUpdateDate
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NumberOfSubdomains
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
There are 109 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
4AC8000
|
heap private
|
page read and write
|
|
|
|
4AC8000
|
heap private
|
page read and write
|
|
|
|
4AC8000
|
heap private
|
page read and write
|
|
|
|
4AC8000
|
heap private
|
page read and write
|
|
|
|
4AC8000
|
heap private
|
page read and write
|
|
|
|
4AC8000
|
heap private
|
page read and write
|
|
|
|
4AC8000
|
heap private
|
page read and write
|
|
|
|
4AC8000
|
heap private
|
page read and write
|
|
|
|
4AC8000
|
heap private
|
page read and write
|
|
|
|
7FF58117A000
|
unkown
|
page readonly
|
|
|
|
249984E5000
|
unkown
|
page read and write
|
|
|
|
7FF55C807000
|
unkown
|
page readonly
|
|
|
|
26E2000
|
unkown
|
page readonly
|
|
|
|
1F961A61000
|
unkown
|
page read and write
|
|
|
|
7FF5CBAD4000
|
unkown
|
page readonly
|
|
|
|
4EDE000
|
unkown
|
page read and write
|
|
|
|
7FF57FA3A000
|
unkown
|
page readonly
|
|
|
|
2A1BF915000
|
unkown
|
page read and write
|
|
|
|
26C5000
|
unkown
|
page readonly
|
|
|
|
580000
|
unkown
|
page readonly
|
|
|
|
7FF5CB191000
|
unkown
|
page readonly
|
|
|
|
2499B110000
|
unkown
|
page read and write
|
|
|
|
7FF5929D2000
|
unkown
|
page readonly
|
|
|
|
1F961580000
|
unkown
|
page read and write
|
|
|
|
7FF51B0BA000
|
unkown
|
page readonly
|
|
|
|
1F960BE0000
|
unkown
|
page read and write
|
|
|
|
7FF5927E8000
|
unkown
|
page readonly
|
|
|
|
24EC5A29000
|
unkown
|
page read and write
|
|
|
|
2499A35D000
|
unkown
|
page read and write
|
|
|
|
7FF5929CA000
|
unkown
|
page readonly
|
|
|
|
570000
|
unkown
|
page readonly
|
|
|
|
1F960BC0000
|
unkown
|
page readonly
|
|
|
|
2499A3D1000
|
unkown
|
page read and write
|
|
|
|
7FF4EFA9E000
|
unkown
|
page readonly
|
|
|
|
1F961570000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1F960CF8000
|
unkown
|
page read and write
|
|
|
|
410E000
|
unkown
|
page read and write
|
|
|
|
7FF581274000
|
unkown
|
page readonly
|
|
|
|
2A1C1913000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
A0DCFFD000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF51AF52000
|
unkown
|
page readonly
|
|
|
|
2A1BF856000
|
unkown
|
page read and write
|
|
|
|
247B000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
424E000
|
unkown
|
page read and write
|
|
|
|
24B87202000
|
unkown
|
page read and write
|
|
|
|
1F96156E000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
24998502000
|
unkown
|
page read and write
|
|
|
|
1F961559000
|
unkown
|
page read and write
|
|
|
|
7FF51B3DC000
|
unkown
|
page readonly
|
|
|
|
7FF5928CA000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF580F85000
|
unkown
|
page readonly
|
|
|
|
1F961561000
|
unkown
|
page read and write
|
|
|
|
900000
|
unkown
|
page execute and read and write
|
|
|
|
24EC74A0000
|
unkown
|
page readonly
|
|
|
|
25FA000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
24998429000
|
unkown
|
page read and write
|
|
|
|
7FF5CB856000
|
unkown
|
page readonly
|
|
|
|
2A1BF800000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF502607000
|
unkown
|
page readonly
|
|
|
|
2499A6A4000
|
unkown
|
page read and write
|
|
|
|
7FF5CB650000
|
unkown
|
page readonly
|
|
|
|
1F96154F000
|
unkown
|
page read and write
|
|
|
|
2499A399000
|
unkown
|
page read and write
|
|
|
|
6FEEDF5000
|
unkown
|
page read and write
|
|
|
|
7FF57FDB4000
|
unkown
|
page readonly
|
|
|
|
7FF5CB98B000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF592716000
|
unkown
|
page readonly
|
|
|
|
7FF5DA4C1000
|
unkown
|
page readonly
|
|
|
|
7FF5929C4000
|
unkown
|
page readonly
|
|
|
|
1F96154D000
|
unkown
|
page read and write
|
|
|
|
7FF5365E4000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
41DF000
|
unkown
|
page readonly
|
|
|
|
7FF592739000
|
unkown
|
page readonly
|
|
|
|
249984EA000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1F961571000
|
unkown
|
page read and write
|
|
|
|
7FF55CA8A000
|
unkown
|
page readonly
|
|
|
|
1F961586000
|
unkown
|
page read and write
|
|
|
|
2499A440000
|
unkown
|
page read and write
|
|
|
|
7FF51B3FB000
|
unkown
|
page readonly
|
|
|
|
540000
|
unkown
|
page read and write
|
|
|
|
24999DA0000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF53661D000
|
unkown
|
page readonly
|
|
|
|
7FF51B1B6000
|
unkown
|
page readonly
|
|
|
|
249984E3000
|
unkown
|
page read and write
|
|
|
|
7FF5CBA7A000
|
unkown
|
page readonly
|
|
|
|
2623000
|
unkown
|
page readonly
|
|
|
|
2499856D000
|
unkown
|
page read and write
|
|
|
|
24B871C0000
|
unkown
|
page read and write
|
|
|
|
24EC5A02000
|
unkown
|
page read and write
|
|
|
|
7FF57FDDE000
|
unkown
|
page readonly
|
|
|
|
1D75B9E0000
|
unkown
|
page readonly
|
|
|
|
7FF55CB74000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2930000
|
unkown
|
page readonly
|
|
|
|
2499B010000
|
unkown
|
page read and write
|
|
|
|
7FF536175000
|
unkown
|
page readonly
|
|
|
|
2499A638000
|
unkown
|
page read and write
|
|
|
|
2A1BF876000
|
unkown
|
page read and write
|
|
|
|
7FF5CBA30000
|
unkown
|
page readonly
|
|
|
|
2499852C000
|
unkown
|
page read and write
|
|
|
|
7FF502DA1000
|
unkown
|
page readonly
|
|
|
|
25E50500000
|
unkown
|
page read and write
|
|
|
|
7FF55C98B000
|
unkown
|
page readonly
|
|
|
|
7FF580E6D000
|
unkown
|
page readonly
|
|
|
|
E031D7E000
|
unkown
|
page read and write
|
|
|
|
7FF5811DA000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1C4E03A0000
|
unkown
|
page readonly
|
|
|
|
24EC73A0000
|
unkown
|
page read and write
|
|
|
|
1F961557000
|
unkown
|
page read and write
|
|
|
|
25F3000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
6FEF5FD000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF592701000
|
unkown
|
page readonly
|
|
|
|
2499A640000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2499A638000
|
unkown
|
page read and write
|
|
|
|
7FF57FA3F000
|
unkown
|
page readonly
|
|
|
|
7FF4EFA57000
|
unkown
|
page readonly
|
|
|
|
7FF5CB84B000
|
unkown
|
page readonly
|
|
|
|
7FF536692000
|
unkown
|
page readonly
|
|
|
|
85EA7F000
|
unkown
|
page read and write
|
|
|
|
24998413000
|
unkown
|
page read and write
|
|
|
|
1F961A02000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF536691000
|
unkown
|
page readonly
|
|
|
|
16EFCB20000
|
unkown
|
page readonly
|
|
|
|
7FF581126000
|
unkown
|
page readonly
|
|
|
|
9705B77000
|
unkown
|
page read and write
|
|
|
|
7FF5925B7000
|
unkown
|
page readonly
|
|
|
|
7FF4EFA8A000
|
unkown
|
page readonly
|
|
|
|
2A1BF813000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2499B710000
|
unkown
|
page read and write
|
|
|
|
7FF5928DE000
|
unkown
|
page readonly
|
|
|
|
7FF55CADA000
|
unkown
|
page readonly
|
|
|
|
1F961599000
|
unkown
|
page read and write
|
|
|
|
7FF51B45E000
|
unkown
|
page readonly
|
|
|
|
7FF51B226000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF5DACC8000
|
unkown
|
page readonly
|
|
|
|
DFB1B4E000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2499A3D0000
|
unkown
|
page read and write
|
|
|
|
24B87200000
|
unkown
|
page read and write
|
|
|
|
2499A364000
|
unkown
|
page read and write
|
|
|
|
7FF51B461000
|
unkown
|
page readonly
|
|
|
|
7FF51B4DA000
|
unkown
|
page readonly
|
|
|
|
7FF5921E1000
|
unkown
|
page readonly
|
|
|
|
2499A358000
|
unkown
|
page read and write
|
|
|
|
5F16E7B000
|
unkown
|
page read and write
|
|
|
|
7FF5CB391000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
4250000
|
heap private
|
page read and write
|
|
|
|
7FF57FD12000
|
unkown
|
page readonly
|
|
|
|
2419000
|
unkown
|
page readonly
|
|
|
|
7FF55CA9B000
|
unkown
|
page readonly
|
|
|
|
7A0000
|
unkown image
|
page execute and read and write
|
|
|
|
7FF4EF9E0000
|
unkown
|
page readonly
|
|
|
|
5F16EFE000
|
unkown
|
page read and write
|
|
|
|
2499A3C5000
|
unkown
|
page read and write
|
|
|
|
7FF58120D000
|
unkown
|
page readonly
|
|
|
|
7FF5927C1000
|
unkown
|
page readonly
|
|
|
|
1F96156F000
|
unkown
|
page read and write
|
|
|
|
DFB1F7E000
|
unkown
|
page read and write
|
|
|
|
2499A35D000
|
unkown
|
page read and write
|
|
|
|
1F961554000
|
unkown
|
page read and write
|
|
|
|
1C4E03C0000
|
unkown
|
page read and write
|
|
|
|
24EC5B02000
|
unkown
|
page read and write
|
|
|
|
7FF53659E000
|
unkown
|
page readonly
|
|
|
|
2A1C17B0000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1F960D13000
|
unkown
|
page read and write
|
|
|
|
7FF5CB3E7000
|
unkown
|
page readonly
|
|
|
|
7FF5CBA8E000
|
unkown
|
page readonly
|
|
|
|
7FF5DAB41000
|
unkown
|
page readonly
|
|
|
|
1F960C3C000
|
unkown
|
page read and write
|
|
|
|
7FF57FD6E000
|
unkown
|
page readonly
|
|
|
|
7FF59293E000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
DFB217C000
|
unkown
|
page read and write
|
|
|
|
7FF5CB8C6000
|
unkown
|
page readonly
|
|
|
|
2499A202000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF5CBA95000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2499A638000
|
unkown
|
page read and write
|
|
|
|
7FF4EF921000
|
unkown
|
page readonly
|
|
|
|
7FF4EF865000
|
unkown
|
page readonly
|
|
|
|
6FEF3FF000
|
unkown
|
page read and write
|
|
|
|
7FF51AC4D000
|
unkown
|
page readonly
|
|
|
|
25E50380000
|
unkown
|
page write copy
|
|
|
|
1F96152A000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC60000
|
unkown
|
page readonly
|
|
|
|
7FF51B43A000
|
unkown
|
page readonly
|
|
|
|
7FF5CB76A000
|
unkown
|
page readonly
|
|
|
|
2499A640000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF55C810000
|
unkown
|
page readonly
|
|
|
|
7FF5928EB000
|
unkown
|
page readonly
|
|
|
|
7FF5CB9F4000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2527000
|
unkown
|
page readonly
|
|
|
|
2499A783000
|
unkown
|
page read and write
|
|
|
|
4E9F000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
28ECE0F0000
|
unkown
|
page readonly
|
|
|
|
7FF5926BF000
|
unkown
|
page readonly
|
|
|
|
7FF5925AA000
|
unkown
|
page readonly
|
|
|
|
264F000
|
unkown
|
page readonly
|
|
|
|
7FF55CABC000
|
unkown
|
page readonly
|
|
|
|
7FF57FD7B000
|
unkown
|
page readonly
|
|
|
|
4AE0000
|
unkown
|
page readonly
|
|
|
|
7FF536608000
|
unkown
|
page readonly
|
|
|
|
1F961561000
|
unkown
|
page read and write
|
|
|
|
7FF4EF948000
|
unkown
|
page readonly
|
|
|
|
28ECFBF0000
|
unkown
|
page read and write
|
|
|
|
7FF4EF943000
|
unkown
|
page readonly
|
|
|
|
7FF536160000
|
unkown
|
page readonly
|
|
|
|
249984E3000
|
unkown
|
page read and write
|
|
|
|
1D75B880000
|
unkown
|
page read and write
|
|
|
|
7FF55CA95000
|
unkown
|
page readonly
|
|
|
|
1C4E0508000
|
unkown
|
page read and write
|
|
|
|
7FF55C665000
|
unkown
|
page readonly
|
|
|
|
7FF5CB3E3000
|
unkown
|
page readonly
|
|
|
|
24E5000
|
unkown
|
page readonly
|
|
|
|
64F000
|
heap default
|
page read and write
|
|
|
|
7FF4EF6FC000
|
unkown
|
page readonly
|
|
|
|
7FF57FDE6000
|
unkown
|
page readonly
|
|
|
|
7FF5DAC8F000
|
unkown
|
page readonly
|
|
|
|
2A1C1944000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF5CBA5F000
|
unkown
|
page readonly
|
|
|
|
2676000
|
unkown
|
page readonly
|
|
|
|
26C1000
|
unkown
|
page readonly
|
|
|
|
1F961A00000
|
unkown
|
page read and write
|
|
|
|
2499A30C000
|
unkown
|
page read and write
|
|
|
|
1F961A54000
|
unkown
|
page read and write
|
|
|
|
A0DCC7B000
|
unkown
|
page read and write
|
|
|
|
2A1BF8F5000
|
unkown
|
page read and write
|
|
|
|
1160000
|
heap default
|
page read and write
|
|
|
|
2499A743000
|
unkown
|
page read and write
|
|
|
|
2499A902000
|
unkown
|
page read and write
|
|
|
|
7FF51B41F000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
24B87A02000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1F961310000
|
unkown
|
page read and write
|
|
|
|
24B87C00000
|
unkown
|
page readonly
|
|
|
|
7FF536320000
|
unkown
|
page readonly
|
|
|
|
7FF51B3C4000
|
unkown
|
page readonly
|
|
|
|
7FF592826000
|
unkown
|
page readonly
|
|
|
|
2A1BF958000
|
unkown
|
page read and write
|
|
|
|
1F961557000
|
unkown
|
page read and write
|
|
|
|
2499A3C7000
|
unkown
|
page read and write
|
|
|
|
7FF5CB93A000
|
unkown
|
page readonly
|
|
|
|
2499A440000
|
unkown
|
page readonly
|
|
|
|
1F96157F000
|
unkown
|
page read and write
|
|
|
|
7FF5928DA000
|
unkown
|
page readonly
|
|
|
|
1F96157B000
|
unkown
|
page read and write
|
|
|
|
2499853C000
|
unkown
|
page read and write
|
|
|
|
7FF4EFB24000
|
unkown
|
page readonly
|
|
|
|
7FF53649E000
|
unkown
|
page readonly
|
|
|
|
1D75B8D6000
|
heap default
|
page read and write
|
|
|
|
2A1BF83F000
|
unkown
|
page read and write
|
|
|
|
1F9612F0000
|
unkown
|
page readonly
|
|
|
|
1F9615BC000
|
unkown
|
page read and write
|
|
|
|
7FF51B458000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF57FDE9000
|
unkown
|
page readonly
|
|
|
|
7FF5DACA4000
|
unkown
|
page readonly
|
|
|
|
7FF5364ED000
|
unkown
|
page readonly
|
|
|
|
16EFB160000
|
unkown
|
page read and write
|
|
|
|
2A1BF8CF000
|
unkown
|
page read and write
|
|
|
|
7FF581281000
|
unkown
|
page readonly
|
|
|
|
1F960A80000
|
heap private
|
page read and write
|
|
|
|
2499A638000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1F960CC4000
|
unkown
|
page read and write
|
|
|
|
7FF502CB0000
|
unkown
|
page readonly
|
|
|
|
7FF58127A000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF55CB81000
|
unkown
|
page readonly
|
|
|
|
2499B710000
|
unkown
|
page read and write
|
|
|
|
1F961C00000
|
unkown
|
page readonly
|
|
|
|
A0DD17C000
|
unkown
|
page read and write
|
|
|
|
2499B610000
|
unkown
|
page read and write
|
|
|
|
6FEECFE000
|
unkown
|
page read and write
|
|
|
|
85E9F9000
|
unkown
|
page read and write
|
|
|
|
927ECFE000
|
unkown
|
page read and write
|
|
|
|
7FF5CBAC7000
|
unkown
|
page readonly
|
|
|
|
7FF5926A6000
|
unkown
|
page readonly
|
|
|
|
7FF536443000
|
unkown
|
page readonly
|
|
|
|
25E522C0000
|
unkown
|
page read and write
|
|
|
|
1D75B8D1000
|
unkown
|
page read and write
|
|
|
|
5A0000
|
heap private
|
page read and write
|
|
|
|
7FF53658C000
|
unkown
|
page readonly
|
|
|
|
7FF5CB8D1000
|
unkown
|
page readonly
|
|
|
|
7FF5DACAA000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
6FEF377000
|
unkown
|
page read and write
|
|
|
|
2A1C1760000
|
heap private
|
page read and write
|
|
|
|
24998454000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1F961579000
|
unkown
|
page read and write
|
|
|
|
2499847A000
|
unkown
|
page read and write
|
|
|
|
2499A1E0000
|
heap private
|
page read and write
|
|
|
|
63F000
|
unkown
|
page read and write
|
|
|
|
24B8728A000
|
unkown
|
page read and write
|
|
|
|
1F9615A8000
|
unkown
|
page read and write
|
|
|
|
7FF5CB6A5000
|
unkown
|
page readonly
|
|
|
|
7FF51B469000
|
unkown
|
page readonly
|
|
|
|
7FF581209000
|
unkown
|
page readonly
|
|
|
|
7FF51B4E1000
|
unkown
|
page readonly
|
|
|
|
2A1BFAD0000
|
unkown
|
page write copy
|
|
|
|
249984D1000
|
unkown
|
page read and write
|
|
|
|
2645000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF55C933000
|
unkown
|
page readonly
|
|
|
|
2499A357000
|
unkown
|
page read and write
|
|
|
|
7FF51B4D4000
|
unkown
|
page readonly
|
|
|
|
7FF51B33D000
|
unkown
|
page readonly
|
|
|
|
7FF5CB9DD000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
25E51F70000
|
unkown
|
page readonly
|
|
|
|
7FF5CB933000
|
unkown
|
page readonly
|
|
|
|
2499A3C4000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1F961565000
|
unkown
|
page read and write
|
|
|
|
1F96155E000
|
unkown
|
page read and write
|
|
|
|
1F960D02000
|
unkown
|
page read and write
|
|
|
|
7FF502CDC000
|
unkown
|
page readonly
|
|
|
|
7FF581223000
|
unkown
|
page readonly
|
|
|
|
1F961516000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1F961585000
|
unkown
|
page read and write
|
|
|
|
DFB207B000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC8C000
|
unkown
|
page readonly
|
|
|
|
1F961533000
|
unkown
|
page read and write
|
|
|
|
16EFCF60000
|
heap private
|
page read and write
|
|
|
|
7FF55CA90000
|
unkown
|
page readonly
|
|
|
|
2499851C000
|
unkown
|
page read and write
|
|
|
|
24EC5960000
|
unkown
|
page write copy
|
|
|
|
7FF51B2F8000
|
unkown
|
page readonly
|
|
|
|
1F960CAA000
|
unkown
|
page read and write
|
|
|
|
1F960CA6000
|
unkown
|
page read and write
|
|
|
|
2520000
|
unkown
|
page readonly
|
|
|
|
249984E3000
|
unkown
|
page read and write
|
|
|
|
7FF592917000
|
unkown
|
page readonly
|
|
|
|
1F961564000
|
unkown
|
page read and write
|
|
|
|
7FF502D04000
|
unkown
|
page readonly
|
|
|
|
24EC5C00000
|
unkown
|
page readonly
|
|
|
|
7FF502D1E000
|
unkown
|
page readonly
|
|
|
|
85E5CA000
|
unkown
|
page read and write
|
|
|
|
9705D7F000
|
unkown
|
page read and write
|
|
|
|
1F96154E000
|
unkown
|
page read and write
|
|
|
|
7FF57FD33000
|
unkown
|
page readonly
|
|
|
|
7FF4EF29D000
|
unkown
|
page readonly
|
|
|
|
A0DC5BE000
|
unkown
|
page read and write
|
|
|
|
1F961A02000
|
unkown
|
page read and write
|
|
|
|
16EFB030000
|
unkown
|
page readonly
|
|
|
|
7FF5DACB4000
|
unkown
|
page readonly
|
|
|
|
1C4E03B0000
|
unkown
|
page readonly
|
|
|
|
7FF5DAA85000
|
unkown
|
page readonly
|
|
|
|
1F960C29000
|
unkown
|
page read and write
|
|
|
|
6FEF07F000
|
unkown
|
page read and write
|
|
|
|
F7D000
|
unkown
|
page read and write
|
|
|
|
7FF5CBB7A000
|
unkown
|
page readonly
|
|
|
|
16EFB1A0000
|
unkown
|
page read and write
|
|
|
|
6FEEEF9000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2499A882000
|
unkown
|
page read and write
|
|
|
|
7FF55C9DD000
|
unkown
|
page readonly
|
|
|
|
7FF5DAD4A000
|
unkown
|
page readonly
|
|
|
|
7FF5CB998000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
24EC5A3F000
|
unkown
|
page read and write
|
|
|
|
6FEF278000
|
unkown
|
page read and write
|
|
|
|
2A1BFD20000
|
unkown
|
page readonly
|
|
|
|
7FF51B41C000
|
unkown
|
page readonly
|
|
|
|
8E0000
|
unkown
|
page execute and read and write
|
|
|
|
1F9615A5000
|
unkown
|
page read and write
|
|
|
|
2A1BF8C3000
|
unkown
|
page read and write
|
|
|
|
1F961582000
|
unkown
|
page read and write
|
|
|
|
A0DCF7B000
|
unkown
|
page read and write
|
|
|
|
4F1F000
|
unkown
|
page read and write
|
|
|
|
7FF59292A000
|
unkown
|
page readonly
|
|
|
|
A0DC9FE000
|
unkown
|
page read and write
|
|
|
|
7FF57FB91000
|
unkown
|
page readonly
|
|
|
|
7FF5CBA9B000
|
unkown
|
page readonly
|
|
|
|
E7D000
|
unkown
|
page read and write
|
|
|
|
25E50502000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC23000
|
unkown
|
page readonly
|
|
|
|
249984E3000
|
unkown
|
page read and write
|
|
|
|
2647000
|
unkown
|
page readonly
|
|
|
|
7FF4EFAAE000
|
unkown
|
page readonly
|
|
|
|
1F960AF0000
|
unkown
|
page readonly
|
|
|
|
2A1BF913000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF57FDED000
|
unkown
|
page readonly
|
|
|
|
7FF51B1AB000
|
unkown
|
page readonly
|
|
|
|
7FF5CBA64000
|
unkown
|
page readonly
|
|
|
|
1C4E0402000
|
unkown
|
page read and write
|
|
|
|
1F960C4C000
|
unkown
|
page read and write
|
|
|
|
7FF51B390000
|
unkown
|
page readonly
|
|
|
|
26DC000
|
unkown
|
page readonly
|
|
|
|
7FF5928F7000
|
unkown
|
page readonly
|
|
|
|
7FF51B382000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
249984C1000
|
unkown
|
page read and write
|
|
|
|
1D75B9C0000
|
unkown
|
page read and write
|
|
|
|
7FF581195000
|
unkown
|
page readonly
|
|
|
|
2499A3C6000
|
unkown
|
page read and write
|
|
|
|
7FF55CB82000
|
unkown
|
page readonly
|
|
|
|
7FF4EF7FB000
|
unkown
|
page readonly
|
|
|
|
2A1C1900000
|
unkown
|
page read and write
|
|
|
|
7FF59287C000
|
unkown
|
page readonly
|
|
|
|
24B871A0000
|
unkown
|
page readonly
|
|
|
|
7FF4EFB2A000
|
unkown
|
page readonly
|
|
|
|
25D2000
|
unkown
|
page readonly
|
|
|
|
E031DF9000
|
unkown
|
page read and write
|
|
|
|
25E50402000
|
unkown
|
page read and write
|
|
|
|
7FF4EFB32000
|
unkown
|
page readonly
|
|
|
|
2499A640000
|
unkown
|
page read and write
|
|
|
|
7FF51B231000
|
unkown
|
page readonly
|
|
|
|
7FF5DACCE000
|
unkown
|
page readonly
|
|
|
|
7FF592872000
|
unkown
|
page readonly
|
|
|
|
1F961300000
|
unkown
|
page read and write
|
|
|
|
2499A638000
|
unkown
|
page read and write
|
|
|
|
2499A460000
|
unkown
|
page readonly
|
|
|
|
24998270000
|
heap default
|
page read and write
|
|
|
|
2653000
|
unkown
|
page readonly
|
|
|
|
7FF51B44E000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2499A640000
|
unkown
|
page read and write
|
|
|
|
7FF55C650000
|
unkown
|
page readonly
|
|
|
|
26E8000
|
unkown
|
page readonly
|
|
|
|
1F96158A000
|
unkown
|
page read and write
|
|
|
|
1F961586000
|
unkown
|
page read and write
|
|
|
|
7FF53649B000
|
unkown
|
page readonly
|
|
|
|
1F961578000
|
unkown
|
page read and write
|
|
|
|
7FF55CB06000
|
unkown
|
page readonly
|
|
|
|
63F000
|
unkown
|
page read and write
|
|
|
|
7FF57FB95000
|
unkown
|
page readonly
|
|
|
|
7FF4EFABD000
|
unkown
|
page readonly
|
|
|
|
7FF5DAB5B000
|
unkown
|
page readonly
|
|
|
|
560000
|
unkown
|
page readonly
|
|
|
|
1F96159A000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2470000
|
unkown
|
page readonly
|
|
|
|
7FF5811BC000
|
unkown
|
page readonly
|
|
|
|
2499A802000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
24EC5A13000
|
unkown
|
page read and write
|
|
|
|
85E87F000
|
unkown
|
page read and write
|
|
|
|
1C4E02D0000
|
unkown
|
page readonly
|
|
|
|
2499B000000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
A0DC53B000
|
unkown
|
page read and write
|
|
|
|
A0DC8F9000
|
unkown
|
page read and write
|
|
|
|
2499A640000
|
unkown
|
page read and write
|
|
|
|
1F961320000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
24B87213000
|
unkown
|
page read and write
|
|
|
|
7FF50298A000
|
unkown
|
page readonly
|
|
|
|
7FF5811FE000
|
unkown
|
page readonly
|
|
|
|
24B871B0000
|
unkown
|
page readonly
|
|
|
|
7FF502D0E000
|
unkown
|
page readonly
|
|
|
|
7FF5CB890000
|
unkown
|
page readonly
|
|
|
|
7FF5CB8E1000
|
unkown
|
page readonly
|
|
|
|
927EDF9000
|
unkown
|
page read and write
|
|
|
|
1F961557000
|
unkown
|
page read and write
|
|
|
|
262B000
|
unkown
|
page readonly
|
|
|
|
25E50370000
|
heap default
|
page read and write
|
|
|
|
1F9615AA000
|
unkown
|
page read and write
|
|
|
|
24EC5A00000
|
unkown
|
page read and write
|
|
|
|
249984CB000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2A1BFB20000
|
unkown
|
page readonly
|
|
|
|
2499B310000
|
unkown
|
page read and write
|
|
|
|
1F961571000
|
unkown
|
page read and write
|
|
|
|
2615000
|
unkown
|
page readonly
|
|
|
|
7A0000
|
unkown image
|
page readonly
|
|
|
|
1F96158A000
|
unkown
|
page read and write
|
|
|
|
7FF536684000
|
unkown
|
page readonly
|
|
|
|
25E50600000
|
unkown
|
page readonly
|
|
|
|
7FF57FD6A000
|
unkown
|
page readonly
|
|
|
|
24B87F40000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2499A640000
|
unkown
|
page read and write
|
|
|
|
1F961594000
|
unkown
|
page read and write
|
|
|
|
2A1C12E0000
|
unkown
|
page read and write
|
|
|
|
2A1C17F0000
|
unkown
|
page readonly
|
|
|
|
25E50429000
|
unkown
|
page read and write
|
|
|
|
7FF5CBA5B000
|
unkown
|
page readonly
|
|
|
|
7FF5DAC6B000
|
unkown
|
page readonly
|
|
|
|
2499A600000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
4648000
|
heap private
|
page read and write
|
|
|
|
1C4E0502000
|
unkown
|
page read and write
|
|
|
|
2499A783000
|
unkown
|
page read and write
|
|
|
|
970553C000
|
unkown
|
page read and write
|
|
|
|
1D75B8FF000
|
unkown
|
page read and write
|
|
|
|
7FF592442000
|
unkown
|
page readonly
|
|
|
|
7FF51B3B3000
|
unkown
|
page readonly
|
|
|
|
7FF536481000
|
unkown
|
page readonly
|
|
|
|
7FF51B466000
|
unkown
|
page readonly
|
|
|
|
2A1C1750000
|
unkown
|
page readonly
|
|
|
|
2A1BF829000
|
unkown
|
page read and write
|
|
|
|
7FF55C656000
|
unkown
|
page readonly
|
|
|
|
2499A440000
|
unkown
|
page read and write
|
|
|
|
7FF59259C000
|
unkown
|
page readonly
|
|
|
|
5F16FFE000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1F961559000
|
unkown
|
page read and write
|
|
|
|
7FF51AC51000
|
unkown
|
page readonly
|
|
|
|
46A0000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF57FE62000
|
unkown
|
page readonly
|
|
|
|
7FF5DACD6000
|
unkown
|
page readonly
|
|
|
|
7FF5CBAA7000
|
unkown
|
page readonly
|
|
|
|
2499A640000
|
unkown
|
page read and write
|
|
|
|
2499A612000
|
unkown
|
page read and write
|
|
|
|
7FF592948000
|
unkown
|
page readonly
|
|
|
|
7FF4EFAB1000
|
unkown
|
page readonly
|
|
|
|
2499A3DA000
|
unkown
|
page read and write
|
|
|
|
7FF5929D1000
|
unkown
|
page readonly
|
|
|
|
1F961500000
|
unkown
|
page read and write
|
|
|
|
24998513000
|
unkown
|
page read and write
|
|
|
|
25E9000
|
unkown
|
page readonly
|
|
|
|
7FF5365A0000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2499A653000
|
unkown
|
page read and write
|
|
|
|
7FF4EFAA8000
|
unkown
|
page readonly
|
|
|
|
25E50413000
|
unkown
|
page read and write
|
|
|
|
1F961569000
|
unkown
|
page read and write
|
|
|
|
24998471000
|
unkown
|
page read and write
|
|
|
|
A0DCCF9000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2499A334000
|
unkown
|
page read and write
|
|
|
|
24B87400000
|
unkown
|
page readonly
|
|
|
|
7FF5CBAF8000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1F9615B8000
|
unkown
|
page read and write
|
|
|
|
7FF5CBB09000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2499846D000
|
unkown
|
page read and write
|
|
|
|
24998440000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
41D0000
|
unkown
|
page read and write
|
|
|
|
2499A355000
|
unkown
|
page read and write
|
|
|
|
2499A638000
|
unkown
|
page read and write
|
|
|
|
7FF5365CC000
|
unkown
|
page readonly
|
|
|
|
2A1BF7F0000
|
heap default
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF592956000
|
unkown
|
page readonly
|
|
|
|
7FF51B211000
|
unkown
|
page readonly
|
|
|
|
7FF57FD9C000
|
unkown
|
page readonly
|
|
|
|
530000
|
heap default
|
page read and write
|
|
|
|
7FF4EFA94000
|
unkown
|
page readonly
|
|
|
|
24B87250000
|
unkown
|
page read and write
|
|
|
|
2499B310000
|
unkown
|
page read and write
|
|
|
|
1F96155B000
|
unkown
|
page read and write
|
|
|
|
1F96154F000
|
unkown
|
page read and write
|
|
|
|
1F961290000
|
unkown
|
page write copy
|
|
|
|
28ECE302000
|
unkown
|
page read and write
|
|
|
|
DFB21FF000
|
unkown
|
page read and write
|
|
|
|
C01000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7A8987B000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF55C8E1000
|
unkown
|
page readonly
|
|
|
|
2499A3DB000
|
unkown
|
page read and write
|
|
|
|
7FF502D2D000
|
unkown
|
page readonly
|
|
|
|
7FF5CB807000
|
unkown
|
page readonly
|
|
|
|
2A1BF8A4000
|
unkown
|
page read and write
|
|
|
|
1C4E045A000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF5928B4000
|
unkown
|
page readonly
|
|
|
|
2499A30D000
|
unkown
|
page read and write
|
|
|
|
24998467000
|
unkown
|
page read and write
|
|
|
|
2499A640000
|
unkown
|
page read and write
|
|
|
|
16EFB2BB000
|
heap default
|
page read and write
|
|
|
|
7FF4EF9E2000
|
unkown
|
page readonly
|
|
|
|
2499855D000
|
unkown
|
page read and write
|
|
|
|
1F9615AF000
|
unkown
|
page read and write
|
|
|
|
7FF4EFA6F000
|
unkown
|
page readonly
|
|
|
|
8D7000
|
heap private
|
page read and write
|
|
|
|
248B000
|
unkown
|
page readonly
|
|
|
|
1F961300000
|
unkown
|
page read and write
|
|
|
|
7FF5DA91C000
|
unkown
|
page readonly
|
|
|
|
24B8727D000
|
unkown
|
page read and write
|
|
|
|
1D75B8B0000
|
heap private
|
page read and write
|
|
|
|
7FF5CBABF000
|
unkown
|
page readonly
|
|
|
|
7FF592141000
|
unkown
|
page readonly
|
|
|
|
7FF592882000
|
unkown
|
page readonly
|
|
|
|
2A1C1740000
|
unkown
|
page read and write
|
|
|
|
4ACA000
|
heap private
|
page read and write
|
|
|
|
1F961581000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC65000
|
unkown
|
page readonly
|
|
|
|
2499A3CD000
|
unkown
|
page read and write
|
|
|
|
2499A3A2000
|
unkown
|
page read and write
|
|
|
|
7FF58118E000
|
unkown
|
page readonly
|
|
|
|
7FF5CBAFE000
|
unkown
|
page readonly
|
|
|
|
1C4E0462000
|
unkown
|
page read and write
|
|
|
|
A0DCBFB000
|
unkown
|
page read and write
|
|
|
|
7FF55CA7A000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
249984C0000
|
unkown
|
page read and write
|
|
|
|
7FF5DAB68000
|
unkown
|
page readonly
|
|
|
|
7FF5DA92A000
|
unkown
|
page readonly
|
|
|
|
7FF5927DB000
|
unkown
|
page readonly
|
|
|
|
5C6647D000
|
unkown
|
page read and write
|
|
|
|
1C4E0400000
|
unkown
|
page read and write
|
|
|
|
2499A356000
|
unkown
|
page read and write
|
|
|
|
7FF51B444000
|
unkown
|
page readonly
|
|
|
|
7FF57FD87000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF5928BF000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1F960C4E000
|
unkown
|
page read and write
|
|
|
|
2499A640000
|
unkown
|
page read and write
|
|
|
|
2499A638000
|
unkown
|
page read and write
|
|
|
|
A0DCE7A000
|
unkown
|
page read and write
|
|
|
|
249984E1000
|
unkown
|
page read and write
|
|
|
|
16EFB260000
|
heap private
|
page read and write
|
|
|
|
7FF5CBA7C000
|
unkown
|
page readonly
|
|
|
|
6FEEFF7000
|
unkown
|
page read and write
|
|
|
|
7FF502D9A000
|
unkown
|
page readonly
|
|
|
|
2A1C1902000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF5928AF000
|
unkown
|
page readonly
|
|
|
|
24998400000
|
unkown
|
page read and write
|
|
|
|
1F961581000
|
unkown
|
page read and write
|
|
|
|
7FF55CAEF000
|
unkown
|
page readonly
|
|
|
|
7FF502D18000
|
unkown
|
page readonly
|
|
|
|
7FF4EF861000
|
unkown
|
page readonly
|
|
|
|
2499B010000
|
unkown
|
page read and write
|
|
|
|
7FF5DA937000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF5811C8000
|
unkown
|
page readonly
|
|
|
|
1F961300000
|
unkown
|
page read and write
|
|
|
|
28ECE202000
|
unkown
|
page read and write
|
|
|
|
2A1C1944000
|
unkown
|
page read and write
|
|
|
|
7FF57FC78000
|
unkown
|
page readonly
|
|
|
|
1F960C4A000
|
unkown
|
page read and write
|
|
|
|
7A898FE000
|
unkown
|
page read and write
|
|
|
|
2499B210000
|
unkown
|
page read and write
|
|
|
|
2499A30F000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF53658A000
|
unkown
|
page readonly
|
|
|
|
DFB1FF9000
|
unkown
|
page read and write
|
|
|
|
7FF502CE8000
|
unkown
|
page readonly
|
|
|
|
2499A942000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
16EFB1C0000
|
unkown
|
page readonly
|
|
|
|
7FF57FDC4000
|
unkown
|
page readonly
|
|
|
|
7FF51B38C000
|
unkown
|
page readonly
|
|
|
|
7FF502D29000
|
unkown
|
page readonly
|
|
|
|
16EFCD2F000
|
heap private
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF55C98E000
|
unkown
|
page readonly
|
|
|
|
25E503D0000
|
unkown
|
page readonly
|
|
|
|
1F961300000
|
unkown
|
page readonly
|
|
|
|
7FF55CB7A000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
10D0000
|
heap default
|
page read and write
|
|
|
|
E031C7B000
|
unkown
|
page read and write
|
|
|
|
2499855E000
|
unkown
|
page read and write
|
|
|
|
6D0000
|
unkown
|
page readonly
|
|
|
|
16EFCC30000
|
heap private
|
page read and write
|
|
|
|
1F96158C000
|
unkown
|
page read and write
|
|
|
|
7FF5CBB06000
|
unkown
|
page readonly
|
|
|
|
1F960CEB000
|
unkown
|
page read and write
|
|
|
|
24EC5A54000
|
unkown
|
page read and write
|
|
|
|
1F96150C000
|
unkown
|
page read and write
|
|
|
|
7FF4EFA4B000
|
unkown
|
page readonly
|
|
|
|
7FF51B1C8000
|
unkown
|
page readonly
|
|
|
|
7FF57FA2C000
|
unkown
|
page readonly
|
|
|
|
1F960C4B000
|
unkown
|
page read and write
|
|
|
|
7FF592924000
|
unkown
|
page readonly
|
|
|
|
7FF59213D000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1F960CEC000
|
unkown
|
page read and write
|
|
|
|
24B87190000
|
heap default
|
page read and write
|
|
|
|
6FEF17E000
|
unkown
|
page read and write
|
|
|
|
46B0000
|
unkown
|
page read and write
|
|
|
|
6FEEC7E000
|
unkown
|
page read and write
|
|
|
|
7FF5CBA32000
|
unkown
|
page readonly
|
|
|
|
2A1C17C0000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC02000
|
unkown
|
page readonly
|
|
|
|
24EC5820000
|
heap private
|
page read and write
|
|
|
|
5B0000
|
unkown
|
page readonly
|
|
|
|
2A1C17C0000
|
unkown
|
page read and write
|
|
|
|
16EFB190000
|
heap private
|
page read and write
|
|
|
|
249984E3000
|
unkown
|
page read and write
|
|
|
|
7FF5DACD9000
|
unkown
|
page readonly
|
|
|
|
1F96154D000
|
unkown
|
page read and write
|
|
|
|
7FF592959000
|
unkown
|
page readonly
|
|
|
|
7FF5CBA8A000
|
unkown
|
page readonly
|
|
|
|
4ACB000
|
heap private
|
page read and write
|
|
|
|
7FF4EF70A000
|
unkown
|
page readonly
|
|
|
|
7FF53668A000
|
unkown
|
page readonly
|
|
|
|
7FF4EFAB9000
|
unkown
|
page readonly
|
|
|
|
41DD000
|
unkown
|
page read and write
|
|
|
|
7FF57F5CD000
|
unkown
|
page readonly
|
|
|
|
1F96155D000
|
unkown
|
page read and write
|
|
|
|
7FF5CB56E000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF55CAF8000
|
unkown
|
page readonly
|
|
|
|
7FF5928CC000
|
unkown
|
page readonly
|
|
|
|
85E8FF000
|
unkown
|
page read and write
|
|
|
|
7FF5DAB63000
|
unkown
|
page readonly
|
|
|
|
2499A30B000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC5A000
|
unkown
|
page readonly
|
|
|
|
10B0000
|
unkown
|
page read and write
|
|
|
|
7FF59282D000
|
unkown
|
page readonly
|
|
|
|
7FF502603000
|
unkown
|
page readonly
|
|
|
|
7FF5811A7000
|
unkown
|
page readonly
|
|
|
|
7A8997E000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF5925AF000
|
unkown
|
page readonly
|
|
|
|
7FF5DAD52000
|
unkown
|
page readonly
|
|
|
|
7A89B7B000
|
unkown
|
page read and write
|
|
|
|
DFB1BCE000
|
unkown
|
page read and write
|
|
|
|
E031EFF000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF592705000
|
unkown
|
page readonly
|
|
|
|
7FF4EF899000
|
unkown
|
page readonly
|
|
|
|
927EC7E000
|
unkown
|
page read and write
|
|
|
|
2DD000
|
unkown
|
page read and write
|
|
|
|
2A1C17C0000
|
unkown
|
page read and write
|
|
|
|
1F961561000
|
unkown
|
page read and write
|
|
|
|
2499A638000
|
unkown
|
page read and write
|
|
|
|
1F960E00000
|
unkown
|
page readonly
|
|
|
|
2499A900000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF53650C000
|
unkown
|
page readonly
|
|
|
|
7FF58112C000
|
unkown
|
page readonly
|
|
|
|
7FF5CBA6F000
|
unkown
|
page readonly
|
|
|
|
1C4E0413000
|
unkown
|
page read and write
|
|
|
|
7FF5928E0000
|
unkown
|
page readonly
|
|
|
|
5C6667E000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF55C191000
|
unkown
|
page readonly
|
|
|
|
1C4E048C000
|
unkown
|
page read and write
|
|
|
|
7FF592880000
|
unkown
|
page readonly
|
|
|
|
7FF5DAA26000
|
unkown
|
page readonly
|
|
|
|
1F96157F000
|
unkown
|
page read and write
|
|
|
|
24B8724D000
|
unkown
|
page read and write
|
|
|
|
1F96158A000
|
unkown
|
page read and write
|
|
|
|
1C4E0A70000
|
unkown
|
page readonly
|
|
|
|
267B000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1F960C4F000
|
unkown
|
page read and write
|
|
|
|
1F96154E000
|
unkown
|
page read and write
|
|
|
|
2630000
|
unkown
|
page readonly
|
|
|
|
7FF502CDF000
|
unkown
|
page readonly
|
|
|
|
249983F0000
|
unkown
|
page read and write
|
|
|
|
DFB1EF9000
|
unkown
|
page read and write
|
|
|
|
2499A638000
|
unkown
|
page read and write
|
|
|
|
2499B210000
|
unkown
|
page read and write
|
|
|
|
2499A640000
|
unkown
|
page read and write
|
|
|
|
24998473000
|
unkown
|
page read and write
|
|
|
|
1F9615AA000
|
unkown
|
page read and write
|
|
|
|
2A1C1A00000
|
unkown
|
page readonly
|
|
|
|
7FF51B427000
|
unkown
|
page readonly
|
|
|
|
1C4E0500000
|
unkown
|
page read and write
|
|
|
|
2499A440000
|
unkown
|
page read and write
|
|
|
|
1F961588000
|
unkown
|
page read and write
|
|
|
|
1C4E0429000
|
unkown
|
page read and write
|
|
|
|
418C000
|
unkown
|
page read and write
|
|
|
|
1D75B9F0000
|
unkown
|
page readonly
|
|
|
|
2499A640000
|
unkown
|
page read and write
|
|
|
|
7FF5CBABC000
|
unkown
|
page readonly
|
|
|
|
7FF53659A000
|
unkown
|
page readonly
|
|
|
|
5C664FC000
|
unkown
|
page read and write
|
|
|
|
265F000
|
unkown
|
page readonly
|
|
|
|
7A0000
|
unkown image
|
page readonly
|
|
|
|
2A1C1802000
|
unkown
|
page read and write
|
|
|
|
1F961402000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF502DA2000
|
unkown
|
page readonly
|
|
|
|
28ECE255000
|
unkown
|
page read and write
|
|
|
|
1F961560000
|
unkown
|
page read and write
|
|
|
|
2672000
|
unkown
|
page readonly
|
|
|
|
7FF4EFB31000
|
unkown
|
page readonly
|
|
|
|
7FF5DACBE000
|
unkown
|
page readonly
|
|
|
|
7FF57FA47000
|
unkown
|
page readonly
|
|
|
|
24B87308000
|
unkown
|
page read and write
|
|
|
|
9705C7F000
|
unkown
|
page read and write
|
|
|
|
7FF57FC6B000
|
unkown
|
page readonly
|
|
|
|
6FEE98B000
|
unkown
|
page read and write
|
|
|
|
7FF51B434000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2499B010000
|
unkown
|
page read and write
|
|
|
|
41D1000
|
unkown
|
page execute read
|
|
|
|
7FF4EFAB6000
|
unkown
|
page readonly
|
|
|
|
2499B410000
|
unkown
|
page read and write
|
|
|
|
7A89A75000
|
unkown
|
page read and write
|
|
|
|
A0DD0FA000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2A1BF790000
|
heap private
|
page read and write
|
|
|
|
A0DCEFB000
|
unkown
|
page read and write
|
|
|
|
1C4E045F000
|
unkown
|
page read and write
|
|
|
|
1F96154D000
|
unkown
|
page read and write
|
|
|
|
7FF5CB5FE000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1C4E0460000
|
unkown
|
page read and write
|
|
|
|
265A000
|
unkown
|
page readonly
|
|
|
|
7FF59290F000
|
unkown
|
page readonly
|
|
|
|
7FF592951000
|
unkown
|
page readonly
|
|
|
|
2499A3B3000
|
unkown
|
page read and write
|
|
|
|
116B000
|
heap default
|
page read and write
|
|
|
|
7FF5928AB000
|
unkown
|
page readonly
|
|
|
|
7FF502CBB000
|
unkown
|
page readonly
|
|
|
|
7FF502CB5000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
4CB000
|
unkown
|
page read and write
|
|
|
|
7FF55C971000
|
unkown
|
page readonly
|
|
|
|
7FF5CB9E3000
|
unkown
|
page readonly
|
|
|
|
16EFB180000
|
unkown
|
page readonly
|
|
|
|
7FF5811EE000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
6FEF4FA000
|
unkown
|
page read and write
|
|
|
|
A0DCAFA000
|
unkown
|
page read and write
|
|
|
|
7FF5CB656000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF51B2EB000
|
unkown
|
page readonly
|
|
|
|
7FF57FBC9000
|
unkown
|
page readonly
|
|
|
|
7FF536504000
|
unkown
|
page readonly
|
|
|
|
249984E3000
|
unkown
|
page read and write
|
|
|
|
25E50400000
|
unkown
|
page read and write
|
|
|
|
1F961567000
|
unkown
|
page read and write
|
|
|
|
2499A640000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF57FE5A000
|
unkown
|
page readonly
|
|
|
|
7FF5CB993000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF5DAD44000
|
unkown
|
page readonly
|
|
|
|
26F3000
|
unkown
|
page readonly
|
|
|
|
7FF5CB810000
|
unkown
|
page readonly
|
|
|
|
A0DD27D000
|
unkown
|
page read and write
|
|
|
|
535000
|
heap default
|
page read and write
|
|
|
|
7FF592731000
|
unkown
|
page readonly
|
|
|
|
927ED7A000
|
unkown
|
page read and write
|
|
|
|
2A1C13E0000
|
unkown
|
page readonly
|
|
|
|
7FF55C9E3000
|
unkown
|
page readonly
|
|
|
|
7FF5CBA90000
|
unkown
|
page readonly
|
|
|
|
A0DC97A000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
16EFB200000
|
unkown
|
page readonly
|
|
|
|
7FF581122000
|
unkown
|
page readonly
|
|
|
|
1F9615AB000
|
unkown
|
page read and write
|
|
|
|
7FF5CBADA000
|
unkown
|
page readonly
|
|
|
|
7FF51B215000
|
unkown
|
page readonly
|
|
|
|
1C4E045B000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2A1BFA00000
|
unkown
|
page readonly
|
|
|
|
7FF57FB2B000
|
unkown
|
page readonly
|
|
|
|
A0DD1FF000
|
unkown
|
page read and write
|
|
|
|
2499A638000
|
unkown
|
page read and write
|
|
|
|
1F96155F000
|
unkown
|
page read and write
|
|
|
|
7FF4EF717000
|
unkown
|
page readonly
|
|
|
|
24B87255000
|
unkown
|
page read and write
|
|
|
|
2499B510000
|
unkown
|
page read and write
|
|
|
|
7FF4EF806000
|
unkown
|
page readonly
|
|
|
|
1F961571000
|
unkown
|
page read and write
|
|
|
|
7FF59294E000
|
unkown
|
page readonly
|
|
|
|
7FF51B3F0000
|
unkown
|
page readonly
|
|
|
|
1F961553000
|
unkown
|
page read and write
|
|
|
|
A0DD07B000
|
unkown
|
page read and write
|
|
|
|
2499A638000
|
unkown
|
page read and write
|
|
|
|
1F960C88000
|
unkown
|
page read and write
|
|
|
|
7FF55CAA7000
|
unkown
|
page readonly
|
|
|
|
2481000
|
unkown
|
page readonly
|
|
|
|
7FF51B0AC000
|
unkown
|
page readonly
|
|
|
|
7FF4EFA3A000
|
unkown
|
page readonly
|
|
|
|
2499A359000
|
unkown
|
page read and write
|
|
|
|
7FF5811E4000
|
unkown
|
page readonly
|
|
|
|
7FF536616000
|
unkown
|
page readonly
|
|
|
|
1F961560000
|
unkown
|
page read and write
|
|
|
|
1F960BD0000
|
unkown
|
page readonly
|
|
|
|
7FF5809B8000
|
unkown
|
page readonly
|
|
|
|
7FF57FD75000
|
unkown
|
page readonly
|
|
|
|
2499B410000
|
unkown
|
page read and write
|
|
|
|
2475000
|
unkown
|
page readonly
|
|
|
|
1F961533000
|
unkown
|
page read and write
|
|
|
|
7FF536166000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7A89DFF000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2499A3DB000
|
unkown
|
page read and write
|
|
|
|
2499A37C000
|
unkown
|
page read and write
|
|
|
|
28ECE229000
|
unkown
|
page read and write
|
|
|
|
7FF5CB971000
|
unkown
|
page readonly
|
|
|
|
7FF57FC51000
|
unkown
|
page readonly
|
|
|
|
16EFB28B000
|
heap default
|
page read and write
|
|
|
|
7FF5CBB81000
|
unkown
|
page readonly
|
|
|
|
5F16F79000
|
unkown
|
page read and write
|
|
|
|
2499851D000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1F961576000
|
unkown
|
page read and write
|
|
|
|
2A1BF8C6000
|
unkown
|
page read and write
|
|
|
|
2499851D000
|
unkown
|
page read and write
|
|
|
|
16EFB280000
|
heap default
|
page read and write
|
|
|
|
469E000
|
unkown
|
page read and write
|
|
|
|
1F961565000
|
unkown
|
page read and write
|
|
|
|
7FF51B336000
|
unkown
|
page readonly
|
|
|
|
DFB1ACB000
|
unkown
|
page read and write
|
|
|
|
16EFB210000
|
unkown
|
page readonly
|
|
|
|
1F960CBF000
|
unkown
|
page read and write
|
|
|
|
24999EA0000
|
unkown
|
page readonly
|
|
|
|
1F960C13000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF4EF2A1000
|
unkown
|
page readonly
|
|
|
|
1F96157C000
|
unkown
|
page read and write
|
|
|
|
7FF5365F4000
|
unkown
|
page readonly
|
|
|
|
1C4E0454000
|
unkown
|
page read and write
|
|
|
|
24998502000
|
unkown
|
page read and write
|
|
|
|
2499B110000
|
unkown
|
page read and write
|
|
|
|
28ECE400000
|
unkown
|
page write copy
|
|
|
|
2D9000
|
unkown
|
page read and write
|
|
|
|
7FF5DAAB9000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1F961600000
|
unkown
|
page readonly
|
|
|
|
1F961589000
|
unkown
|
page read and write
|
|
|
|
7FF58117C000
|
unkown
|
page readonly
|
|
|
|
28ECE080000
|
heap private
|
page read and write
|
|
|
|
1F96159F000
|
unkown
|
page read and write
|
|
|
|
7FF51B3BF000
|
unkown
|
page readonly
|
|
|
|
2499B410000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC98000
|
unkown
|
page readonly
|
|
|
|
7FF51B241000
|
unkown
|
page readonly
|
|
|
|
7FF5CB98E000
|
unkown
|
page readonly
|
|
|
|
7FF5DACD1000
|
unkown
|
page readonly
|
|
|
|
249983A0000
|
unkown
|
page readonly
|
|
|
|
7A89CF7000
|
unkown
|
page read and write
|
|
|
|
7FF4EFA84000
|
unkown
|
page readonly
|
|
|
|
7FF5811F8000
|
unkown
|
page readonly
|
|
|
|
249984E3000
|
unkown
|
page read and write
|
|
|
|
7FF55CAC7000
|
unkown
|
page readonly
|
|
|
|
7FF5365B7000
|
unkown
|
page readonly
|
|
|
|
7FF5DAD51000
|
unkown
|
page readonly
|
|
|
|
249984EA000
|
unkown
|
page read and write
|
|
|
|
1F961595000
|
unkown
|
page read and write
|
|
|
|
7FF51AFC9000
|
unkown
|
page readonly
|
|
|
|
A0DD2FD000
|
unkown
|
page read and write
|
|
|
|
1D75B8B5000
|
heap private
|
page read and write
|
|
|
|
16EFB090000
|
unkown
|
page readonly
|
|
|
|
24998469000
|
unkown
|
page read and write
|
|
|
|
1F960D08000
|
unkown
|
page read and write
|
|
|
|
1F961543000
|
unkown
|
page read and write
|
|
|
|
249984C2000
|
unkown
|
page read and write
|
|
|
|
1D75BBF0000
|
unkown
|
page readonly
|
|
|
|
7FF5924B9000
|
unkown
|
page readonly
|
|
|
|
2CC0000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF51B407000
|
unkown
|
page readonly
|
|
|
|
7FF55CAE4000
|
unkown
|
page readonly
|
|
|
|
7A89BFE000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2A1C17D0000
|
unkown
|
page readonly
|
|
|
|
7FF53660E000
|
unkown
|
page readonly
|
|
|
|
7FF51B0C7000
|
unkown
|
page readonly
|
|
|
|
A0DCA7A000
|
unkown
|
page read and write
|
|
|
|
7FF55CAD4000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
24EC59B0000
|
unkown
|
page readonly
|
|
|
|
24EC5880000
|
heap default
|
page read and write
|
|
|
|
24B87300000
|
unkown
|
page read and write
|
|
|
|
24B8724A000
|
unkown
|
page read and write
|
|
|
|
16EFB380000
|
unkown
|
page readonly
|
|
|
|
1F961587000
|
unkown
|
page read and write
|
|
|
|
1178000
|
heap default
|
page read and write
|
|
|
|
7FF5365A5000
|
unkown
|
page readonly
|
|
|
|
7FF5DAC77000
|
unkown
|
page readonly
|
|
|
|
7FF57FC73000
|
unkown
|
page readonly
|
|
|
|
1F961594000
|
unkown
|
page read and write
|
|
|
|
25E50456000
|
unkown
|
page read and write
|
|
|
|
7FF536317000
|
unkown
|
page readonly
|
|
|
|
24998350000
|
unkown
|
page write copy
|
|
|
|
7FF4EFA03000
|
unkown
|
page readonly
|
|
|
|
2499A3D1000
|
unkown
|
page read and write
|
|
|
|
26F3000
|
unkown
|
page readonly
|
|
|
|
2499A300000
|
unkown
|
page read and write
|
|
|
|
28ECE1C0000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2499A684000
|
unkown
|
page read and write
|
|
|
|
1F960CE1000
|
unkown
|
page read and write
|
|
|
|
7FF57FE61000
|
unkown
|
page readonly
|
|
|
|
1C4E0513000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
249983E0000
|
unkown
|
page readonly
|
|
|
|
9705975000
|
unkown
|
page read and write
|
|
|
|
7FF51B1CF000
|
unkown
|
page readonly
|
|
|
|
2639000
|
unkown
|
page readonly
|
|
|
|
25E50310000
|
heap private
|
page read and write
|
|
|
|
2522000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1F96156A000
|
unkown
|
page read and write
|
|
|
|
1F961260000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
26D4000
|
unkown
|
page readonly
|
|
|
|
1F960CB2000
|
unkown
|
page read and write
|
|
|
|
25E51E70000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2518000
|
unkown
|
page readonly
|
|
|
|
1F9612E0000
|
unkown
|
page readonly
|
|
|
|
2499A638000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1D75B8EF000
|
unkown
|
page read and write
|
|
|
|
7FF5CB602000
|
unkown
|
page readonly
|
|
|
|
24998498000
|
unkown
|
page read and write
|
|
|
|
1F96156F000
|
unkown
|
page read and write
|
|
|
|
2A1BF884000
|
unkown
|
page read and write
|
|
|
|
24998469000
|
unkown
|
page read and write
|
|
|
|
16EFB195000
|
heap private
|
page read and write
|
|
|
|
7FF580A82000
|
unkown
|
page readonly
|
|
|
|
7FF57F5D1000
|
unkown
|
page readonly
|
|
|
|
1D75B900000
|
unkown
|
page read and write
|
|
|
|
1F961566000
|
unkown
|
page read and write
|
|
|
|
7FF5365FF000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF59290C000
|
unkown
|
page readonly
|
|
|
|
24B8722A000
|
unkown
|
page read and write
|
|
|
|
7A89EFD000
|
unkown
|
page read and write
|
|
|
|
5F170FF000
|
unkown
|
page read and write
|
|
|
|
1C4E045C000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1D75B8E6000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
249984E3000
|
unkown
|
page read and write
|
|
|
|
24998502000
|
unkown
|
page read and write
|
|
|
|
1F960CA8000
|
unkown
|
page read and write
|
|
|
|
7FF51B224000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7A89FFF000
|
unkown
|
page read and write
|
|
|
|
5C660FC000
|
unkown
|
page read and write
|
|
|
|
28ECE213000
|
unkown
|
page read and write
|
|
|
|
7FF51B0BF000
|
unkown
|
page readonly
|
|
|
|
7FF51B3BB000
|
unkown
|
page readonly
|
|
|
|
2A1BF902000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF5CBB74000
|
unkown
|
page readonly
|
|
|
|
7FF5CB665000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF57FDA8000
|
unkown
|
page readonly
|
|
|
|
16EFCD70000
|
heap private
|
page read and write
|
|
|
|
7FF5DAA81000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1F961568000
|
unkown
|
page read and write
|
|
|
|
1F96152D000
|
unkown
|
page read and write
|
|
|
|
7FF5363F1000
|
unkown
|
page readonly
|
|
|
|
48C000
|
unkown
|
page read and write
|
|
|
|
2473000
|
unkown
|
page readonly
|
|
|
|
7FF535CA1000
|
unkown
|
page readonly
|
|
|
|
7FF57FDBA000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF51B392000
|
unkown
|
page readonly
|
|
|
|
A0DCB7B000
|
unkown
|
page read and write
|
|
|
|
7FF5928E5000
|
unkown
|
page readonly
|
|
|
|
7FF51B3EE000
|
unkown
|
page readonly
|
|
|
|
1D75B8EF000
|
unkown
|
page read and write
|
|
|
|
7FF5DACDD000
|
unkown
|
page readonly
|
|
|
|
1C4E0260000
|
heap private
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF5365CF000
|
unkown
|
page readonly
|
|
|
|
7FF51B3DA000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
41CB000
|
unkown
|
page read and write
|
|
|
|
1C4E02C0000
|
heap default
|
page read and write
|
|
|
|
7FF581282000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1F96154F000
|
unkown
|
page read and write
|
|
|
|
7FF57FDD8000
|
unkown
|
page readonly
|
|
|
|
7FF58119B000
|
unkown
|
page readonly
|
|
|
|
1F96155D000
|
unkown
|
page read and write
|
|
|
|
7FF51B3EA000
|
unkown
|
page readonly
|
|
|
|
927E9CB000
|
unkown
|
page read and write
|
|
|
|
A0DCD7B000
|
unkown
|
page read and write
|
|
|
|
7FF55CABF000
|
unkown
|
page readonly
|
|
|
|
7FF55CA7C000
|
unkown
|
page readonly
|
|
|
|
2A1C17C0000
|
unkown
|
page read and write
|
|
|
|
1F96150F000
|
unkown
|
page read and write
|
|
|
|
24998600000
|
unkown
|
page readonly
|
|
|
|
7FF5365AB000
|
unkown
|
page readonly
|
|
|
|
7FF581190000
|
unkown
|
page readonly
|
|
|
|
7FF57FD10000
|
unkown
|
page readonly
|
|
|
|
1F960C70000
|
unkown
|
page read and write
|
|
|
|
7FF5926B8000
|
unkown
|
page readonly
|
|
|
|
7FF592721000
|
unkown
|
page readonly
|
|
|
|
1F960AE0000
|
heap default
|
page read and write
|
|
|
|
927EEFF000
|
unkown
|
page read and write
|
|
|
|
7FF4EFA6C000
|
unkown
|
page readonly
|
|
|
|
24998497000
|
unkown
|
page read and write
|
|
|
|
7FF580E6A000
|
unkown
|
page readonly
|
|
|
|
970587E000
|
unkown
|
page read and write
|
|
|
|
2499B510000
|
unkown
|
page read and write
|
|
|
|
7FF5365EA000
|
unkown
|
page readonly
|
|
|
|
7FF5CB5F2000
|
unkown
|
page readonly
|
|
|
|
7FF4EFA78000
|
unkown
|
page readonly
|
|
|
|
1F961559000
|
unkown
|
page read and write
|
|
|
|
25E50513000
|
unkown
|
page read and write
|
|
|
|
7FF5811D4000
|
unkown
|
page readonly
|
|
|
|
2499A640000
|
unkown
|
page read and write
|
|
|
|
7FF55CAFE000
|
unkown
|
page readonly
|
|
|
|
7FF59269B000
|
unkown
|
page readonly
|
|
|
|
28ECE200000
|
unkown
|
page read and write
|
|
|
|
24B87302000
|
unkown
|
page read and write
|
|
|
|
24B874D0000
|
unkown
|
page readonly
|
|
|
|
7FF51B3CF000
|
unkown
|
page readonly
|
|
|
|
25EC000
|
unkown
|
page readonly
|
|
|
|
7FF55CB09000
|
unkown
|
page readonly
|
|
|
|
1F96153B000
|
unkown
|
page read and write
|
|
|
|
7FF5CBAEF000
|
unkown
|
page readonly
|
|
|
|
7FF5CB6A7000
|
unkown
|
page readonly
|
|
|
|
24998210000
|
heap private
|
page read and write
|
|
|
|
7FF57FDE1000
|
unkown
|
page readonly
|
|
|
|
7FF51B4E2000
|
unkown
|
page readonly
|
|
|
|
1F961579000
|
unkown
|
page read and write
|
|
|
|
1F96159F000
|
unkown
|
page read and write
|
|
|
|
7FF5DA92F000
|
unkown
|
page readonly
|
|
|
|
2A1BF8F0000
|
unkown
|
page read and write
|
|
|
|
1F961568000
|
unkown
|
page read and write
|
|
|
|
7FF502D94000
|
unkown
|
page readonly
|
|
|
|
4E5E000
|
unkown
|
page read and write
|
|
|
|
249984E3000
|
unkown
|
page read and write
|
|
|
|
1F960C00000
|
unkown
|
page read and write
|
|
|
|
7FF502CF4000
|
unkown
|
page readonly
|
|
|
|
2499A700000
|
unkown
|
page read and write
|
|
|
|
41DC000
|
unkown
|
page readonly
|
|
|
|
2499B710000
|
unkown
|
page read and write
|
|
|
|
2499A313000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1F960D16000
|
unkown
|
page read and write
|
|
|
|
7FF5927E3000
|
unkown
|
page readonly
|
|
|
|
2499A638000
|
unkown
|
page read and write
|
|
|
|
46D0000
|
heap private
|
page read and write
|
|
|
|
24EC5890000
|
unkown
|
page readonly
|
|
|
|
249984C3000
|
unkown
|
page read and write
|
|
|
|
97055BE000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF5928A3000
|
unkown
|
page readonly
|
|
|
|
261C000
|
unkown
|
page readonly
|
|
|
|
927EE7F000
|
unkown
|
page read and write
|
|
|
|
7FF57FDCE000
|
unkown
|
page readonly
|
|
|
|
7FF57FD70000
|
unkown
|
page readonly
|
|
|
|
24B87313000
|
unkown
|
page read and write
|
|
|
|
A0DC87E000
|
unkown
|
page read and write
|
|
|
|
7FF5DA4BD000
|
unkown
|
page readonly
|
|
|
|
FE0000
|
unkown
|
page readonly
|
|
|
|
24B8728D000
|
unkown
|
page read and write
|
|
|
|
7FF51B2D1000
|
unkown
|
page readonly
|
|
|
|
1F9615B8000
|
unkown
|
page read and write
|
|
|
|
1C4E043C000
|
unkown
|
page read and write
|
|
|
|
7FF4EF70F000
|
unkown
|
page readonly
|
|
|
|
5DA000
|
heap default
|
page read and write
|
|
|
|
85EAFC000
|
unkown
|
page read and write
|
|
|
|
28ECE450000
|
unkown
|
page readonly
|
|
|
|
7FF4EFA3E000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
85E97A000
|
unkown
|
page read and write
|
|
|
|
28ECE0E0000
|
heap default
|
page read and write
|
|
|
|
7FF592934000
|
unkown
|
page readonly
|
|
|
|
1D75B8CB000
|
heap default
|
page read and write
|
|
|
|
2499A470000
|
unkown
|
page readonly
|
|
|
|
7FF5CBAE4000
|
unkown
|
page readonly
|
|
|
|
24998280000
|
unkown
|
page readonly
|
|
|
|
7FF57FB36000
|
unkown
|
page readonly
|
|
|
|
1D75B8E7000
|
unkown
|
page read and write
|
|
|
|
7FF55C9F4000
|
unkown
|
page readonly
|
|
|
|
28ECE23F000
|
unkown
|
page read and write
|
|
|
|
7FF51ACF1000
|
unkown
|
page readonly
|
|
|
|
25E506D0000
|
unkown
|
page readonly
|
|
|
|
7FF4EFA40000
|
unkown
|
page readonly
|
|
|
|
16EFB710000
|
unkown
|
page readonly
|
|
|
|
7FF536619000
|
unkown
|
page readonly
|
|
|
|
7FF55CB0D000
|
unkown
|
page readonly
|
|
|
|
7FF5CB8C4000
|
unkown
|
page readonly
|
|
|
|
249984E3000
|
unkown
|
page read and write
|
|
|
|
5C0000
|
unkown
|
page execute and read and write
|
|
|
|
5C6657E000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
5D0000
|
heap default
|
page read and write
|
|
|
|
7A5000
|
unkown image
|
page execute and read and write
|
|
|
|
24B87130000
|
heap private
|
page read and write
|
|
|
|
7FF5364F3000
|
unkown
|
page readonly
|
|
|
|
1F961565000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC5E000
|
unkown
|
page readonly
|
|
|
|
8D0000
|
heap private
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
25E5043F000
|
unkown
|
page read and write
|
|
|
|
2499A37A000
|
unkown
|
page read and write
|
|
|
|
1F961565000
|
unkown
|
page read and write
|
|
|
|
E031E79000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
24B87271000
|
unkown
|
page read and write
|
|
|
|
A0DCDFA000
|
unkown
|
page read and write
|
|
|
|
7FF55CA8E000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
2499A638000
|
unkown
|
page read and write
|
|
|
|
7FF581206000
|
unkown
|
page readonly
|
|
|
|
1F9615A3000
|
unkown
|
page read and write
|
|
|
|
1C4E0C02000
|
unkown
|
page read and write
|
|
|
|
1F961531000
|
unkown
|
page read and write
|
|
|
|
1C4E0600000
|
unkown
|
page readonly
|
|
|
|
7FF5DAC00000
|
unkown
|
page readonly
|
|
|
|
2499A3C6000
|
unkown
|
page read and write
|
|
|
|
1D75B8C0000
|
heap default
|
page read and write
|
|
|
|
7FF4EF93B000
|
unkown
|
page readonly
|
|
|
|
2499A640000
|
unkown
|
page read and write
|
|
|
|
1F96159C000
|
unkown
|
page read and write
|
|
|
|
E031CFE000
|
unkown
|
page read and write
|
|
|
|
2A1BF8EC000
|
unkown
|
page read and write
|
|
|
|
264D000
|
unkown
|
page readonly
|
|
|
|
1F961543000
|
unkown
|
page read and write
|
|
|
|
24B8723C000
|
unkown
|
page read and write
|
|
|
|
7FF51B2F3000
|
unkown
|
page readonly
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF502CFA000
|
unkown
|
page readonly
|
|
|
|
1F961565000
|
unkown
|
page read and write
|
|
|
|
2661000
|
unkown
|
page readonly
|
|
|
|
5F1707A000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
DFB1E7A000
|
unkown
|
page read and write
|
|
|
|
7FF4EFA45000
|
unkown
|
page readonly
|
|
|
|
1F9615A0000
|
unkown
|
page read and write
|
|
|
|
45C9000
|
heap private
|
page read and write
|
|
|
|
16EFB220000
|
unkown
|
page readonly
|
|
|
|
1F96155D000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF51B249000
|
unkown
|
page readonly
|
|
|
|
7FF5365D7000
|
unkown
|
page readonly
|
|
|
|
414F000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
7FF592714000
|
unkown
|
page readonly
|
|
|
|
2A1C2010000
|
unkown
|
page read and write
|
|
|
|
2499A800000
|
unkown
|
page read and write
|
|
|
|
9705A7B000
|
unkown
|
page read and write
|
|
|
|
1D75B8EF000
|
unkown
|
page read and write
|
|
|
|
25DB000
|
unkown
|
page readonly
|
|
|
|
7FF57FD9F000
|
unkown
|
page readonly
|
|
|
|
7FF5CBB82000
|
unkown
|
page readonly
|
|
|
|
7FF5CB9FC000
|
unkown
|
page readonly
|
|
|
|
7FF51B3F5000
|
unkown
|
page readonly
|
|
|
|
7FF57FE54000
|
unkown
|
page readonly
|
|
|
|
DFB20FC000
|
unkown
|
page read and write
|
|
|
|
910000
|
unkown
|
page read and write
|
|
|
|
1C4E0E00000
|
unkown
|
page readonly
|
|
|
|
7FF55C9FC000
|
unkown
|
page readonly
|
|
|
|
1C4E045D000
|
unkown
|
page read and write
|
|
|
|
2499A743000
|
unkown
|
page read and write
|
|
|
|
28ECFCF0000
|
unkown
|
page readonly
|
|
|
|
7FF5DAA1B000
|
unkown
|
page readonly
|
|
|
|
2499A430000
|
unkown
|
page readonly
|
|
|
|
2499B110000
|
unkown
|
page read and write
|
|
|
|
1D75B7B0000
|
unkown
|
page readonly
|
|
There are 1277 hidden memdumps, click here to show them.