Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
footer.jpg.dll
|
MS-DOS executable, MZ for MS-DOS
|
initial sample
|
||
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\E5F0NRSV\www.msn[2].xml
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\URW0GA4Q\contextual.media[1].xml
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{9561B4B9-6B6D-11EB-90EB-ECF4BBEA1588}.dat
|
Microsoft Word Document
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{9561B4BB-6B6D-11EB-90EB-ECF4BBEA1588}.dat
|
Microsoft Word Document
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{A4019755-6B6D-11EB-90EB-ECF4BBEA1588}.dat
|
Microsoft Word Document
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{BA083ADC-6B6D-11EB-90EB-ECF4BBEA1588}.dat
|
Microsoft Word Document
|
modified
|
||
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-17529550060\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-18270793970\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-21706820\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-4759708130\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-6757900\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-8760897390\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20259167780\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20332743330\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin8215062560\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\gee00pr\imagestore.dat
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\4996b9[1].woff
|
Web Open Font Format, TrueType, length 45633, version 1.0
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\755f86[1].png
|
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\85-0f8009-68ddb2ab[1].js
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\AArXDyz[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\AAyuliQ[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB10MkbM[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB1dxxiV[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 206x250,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB1dxxoP[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB1dyk56[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB1dyorO[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 311x333,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB1dyqtl[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 300x250,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB1dyqtl[2].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 311x333,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB1dytaa[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BB6Ma4a[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BBK9Hzy[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BBMW3y8[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BBXXVfm[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\BBY7ARN[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\cfdbd9[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\checksync[1].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\checksync[2].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\de-ch[1].json
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\httpErrorPagesScripts[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\http___cdn.taboola.com_libtrc_static_thumbnails_3e4db03aeb27326fa409d0201601c66d[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\http___cdn.taboola.com_libtrc_static_thumbnails_83391a7002b8c5f42ca4f88e9ece32cd[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\http___cdn.taboola.com_libtrc_static_thumbnails_c9bcf046afcb71d03b8592e0c5e08bf3[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\https___console.brax-cdn.com_creatives_b9476698-227d-4478-b354-042472d9181c_TB1851-CH_nulltarif_calculation_hg_bubble_1200x800_1000x600_bd539020df8cb8e09d440cb063f92083[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\location[1].js
|
ASCII text, with no line terminators
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\41-0bee62-68ddb2ab[1].js
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\55a804ab-e5c6-4b97-9319-86263d365d28[1].json
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\AAuTnto[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1cG73h[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1duESP[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 622x368,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1dx9nc[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 311x333,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1dxFW9[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 311x333,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1dxGmU[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 310x166, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1dxOD3[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1dxeJf[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 310x166, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1dxp3A[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 100x75, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1dybHt[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1dykw4[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 311x333,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1dyorO[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 622x368,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1dyqOA[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 622x368,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB1dyt6T[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 206x250,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BB7hjL[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BBOLLMj[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BBPfCZL[1].png
|
GIF image data, version 89a, 50 x 50
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BBX2afX[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\BBnYSFZ[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\NewErrorPageTemplate[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\auction[1].htm
|
HTML document, ASCII text, with very long lines
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\checksync[1].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\checksync[2].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\http___cdn.taboola.com_libtrc_static_thumbnails_64879b5062065d050d314dd3ca506f0a[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\https___console.brax-cdn.com_creatives_b9476698-227d-4478-b354-042472d9181c_TB1813_1200x800_1000x600_dc50ae7dd7f119b94c09edb195c1bb8e[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\medianet[1].htm
|
HTML document, ASCII text, with very long lines
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\medianet[2].htm
|
HTML document, ASCII text, with very long lines
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\39ab3103-8560-4a55-bfc4-401f897cf6f2[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\7d5dc6a9-5325-442d-926e-f2c668b8e65e[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\AA7XCQ3[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB10ea2p[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB14EN7h[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 192x192, segment length 16, baseline, precision 8, 622x368,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB19Eh4y[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1cEP3G[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1duefr[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1dxnic[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 206x250,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1dxo3F[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 310x166,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1dxtsr[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 100x75, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1dy5jJ[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1dyfB4[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1dyie3[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1dylAK[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 300x250, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1dyofV[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 206x250,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1dyqU3[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1dyw1H[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 311x333,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\BB1kKUu[1].png
|
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\a8a064[1].gif
|
GIF image data, version 89a, 28 x 28
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\e151e5[1].gif
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\errorPageStrings[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\http___cdn.taboola.com_libtrc_static_thumbnails_6e48d98e54480395a753455bdb6d291b[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\http___cdn.taboola.com_libtrc_static_thumbnails_a518460a863f2cffbec1b08da16b564a[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\nrrV63415[1].js
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\otFlat[1].json
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\otPcCenter[1].json
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\otSDKStub[1].js
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\qwZf6[1].avi
|
data
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\58-acd805-185735b[1].css
|
UTF-8 Unicode text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB14hq0P[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 192x192, segment length 16, baseline, precision 8, 622x368,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB15AQNm[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 192x192, segment length 16, baseline, precision 8, 622x368,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB17milU[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB18RtcP[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1dxDCY[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 310x166, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1dxmtx[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1dxvQ8[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1dxwwc[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 206x250,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1dy6GJ[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 311x333,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1dyiaR[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 200x200, segment length 16, baseline, precision 8, 311x333,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1dymo0[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x75, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1dypnf[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 200x200, segment length 16, baseline, precision 8, 100x75,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB1dytst[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 311x333,
frames 3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB7gRE[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BB7hg4[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BBO5Geh[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BBVuddh[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\BBkwUr[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\a5ea21[1].ico
|
PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\de-ch[1].htm
|
HTML document, UTF-8 Unicode text, with very long lines, with CRLF, LF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\dnserror[1]
|
HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\down[1]
|
PNG image data, 15 x 15, 8-bit colormap, non-interlaced
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\fcmain[1].js
|
HTML document, ASCII text, with very long lines, with no line terminators
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\fcmain[2].js
|
HTML document, ASCII text, with very long lines, with no line terminators
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\https___native-images.s3.amazonaws.com_4a095e64b94cb28ba588966b288bc14e[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\iab2Data[1].json
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\jquery-2.1.1.min[1].js
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\otBannerSdk[1].js
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
||
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\otTCF-ie[1].js
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
downloaded
|
||
C:\Users\user\AppData\Local\Temp\~DF080BC86583B171C3.TMP
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\~DF17DD12A14CEE3B99.TMP
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\~DF90B51EC099A605B5.TMP
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\~DFEA4C2E9B9C29C43E.TMP
|
data
|
dropped
|
||
C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\J0IS2MH3I1HUIAFWGJFX.temp
|
data
|
dropped
|
There are 128 hidden files, click here to show them.
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Windows\SysWOW64\regsvr32.exe
|
regsvr32.exe /s C:\Users\user\Desktop\footer.jpg.dll
|
||
C:\Windows\System32\loaddll32.exe
|
loaddll32.exe 'C:\Users\user\Desktop\footer.jpg.dll'
|
||
C:\Windows\SysWOW64\cmd.exe
|
C:\Windows\system32\cmd.exe /c 'C:\Program Files\Internet Explorer\iexplore.exe'
|
||
C:\Program Files\internet explorer\iexplore.exe
|
C:\Program Files\Internet Explorer\iexplore.exe
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:6808 CREDAT:17410 /prefetch:2
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:6808 CREDAT:82962 /prefetch:2
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:6808 CREDAT:82966 /prefetch:2
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
https://sp.booking.com/index.html?aid=1589774&label=dech-prime-hp-me
|
unknown
|
||
https://www.skype.com/de/download-skype
|
unknown
|
||
https://www.stroeer.de/fileadmin/de/Konvergenz_und_Konzepte/Daten_und_Technologien/Stroeer_SSP/Downl
|
unknown
|
||
http://searchads.msn.net/.cfm?&&kp=1&
|
unknown
|
||
https://www.msn.com/de-ch/news/other/mordprozess-in-meilen-die-verteidigerin-will-einen-vollumf%c3%a
|
unknown
|
||
https://contextual.media.net/medianet.php?cid=8CU157172
|
unknown
|
||
https://www.msn.com/de-ch/nachrichten/coronareisen
|
unknown
|
||
https://www.msn.com/de-ch/?ocid=iehpz
|
unknown
|
||
https://onedrive.live.com/?wt.mc_id=oo_msn_msnhomepage_header
|
unknown
|
||
http://www.hotmail.msn.com/pii/ReadOutlookEmail/
|
unknown
|
||
https://onedrive.live.com;OneDrive-App
|
unknown
|
||
https://click.linksynergy.com/deeplink?id=xoqYgl4JDe8&mid=46130&u1=dech_mestripe_office&
|
unknown
|
||
https://onedrive.live.com;Fotos
|
unknown
|
||
https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location
|
unknown
|
||
https://www.msn.com/de-ch/news/other/corona-hinterl%c3%a4sst-tiefe-spuren-unispital-z%c3%bcrich-schr
|
unknown
|
||
http://www.amazon.com/
|
unknown
|
||
http://www.symantec.com
|
unknown
|
||
https://www.onenote.com/notebooks?WT.mc_id=MSN_OneNote_QuickNote&auth=1
|
unknown
|
||
https://www.onenote.com/notebooks?WT.mc_id=MSN_OneNote_TopMenu&auth=1&wdorigin=msn
|
unknown
|
||
https://office.live.com/start/Word.aspx?WT.mc_id=MSN_site;Excel
|
unknown
|
||
http://ogp.me/ns/fb#
|
unknown
|
||
http://www.twitter.com/
|
unknown
|
||
https://office.live.com/start/Excel.aspx?WT.mc_id=MSN_site;Sway
|
unknown
|
||
https://www.awin1.com/cread.php?awinmid=15168&awinaffid=696593&clickref=de-ch-ss&ued=htt
|
unknown
|
||
https://cdn.cookielaw.org/vendorlist/googleData.json
|
unknown
|
||
https://outlook.com/
|
unknown
|
||
https://outlook.live.com/mail/deeplink/compose;Kalender
|
unknown
|
||
https://res-a.akamaihd.net/__media__/pics/8000/72/941/fallback1.jpg
|
unknown
|
||
https://rover.ebay.com/rover/1/5222-53480-19255-0/1?mpre=https%3A%2F%2Fwww.ebay.ch&campid=533862
|
unknown
|
||
https://www.skyscanner.net/g/referrals/v1/cars/home?associateid=API_B2B_19305_00002
|
unknown
|
||
https://contextual.media.net/checksync.php?&vsSync=1&cs=1&hb=1&cv=37&ndec=1&cid=8HBI57XIG&prvid=77%2
|
unknown
|
||
https://www.stroeer.com/fileadmin/com/StroeerDSP_deviceStorage.json
|
unknown
|
||
https://www.onenote.com/notebooks?WT.mc_id=MSN_OneNote_Recent&auth=1&wdorigin=msn
|
unknown
|
||
https://cdn.cookielaw.org/vendorlist/iabData.json
|
unknown
|
||
https://www.msn.com/de-ch/homepage/api/pdp/updatepdpdata"
|
unknown
|
||
https://www.msn.com/de-ch/news/other/er-hat-uns-zuerst-provoziert-erst-dann-schlug-ich-ihn/ar-BB1dxy
|
unknown
|
||
https://www.msn.com/de-ch/news/other/bub-12-prallt-mit-velo-in-auto-und-wird-schwer-verletzt/ar-BB1d
|
unknown
|
||
https://cdn.cookielaw.org/vendorlist/iab2Data.json
|
unknown
|
||
https://onedrive.live.com/?qt=mru;Aktuelle
|
unknown
|
||
https://www.msn.com/de-ch/?ocid=iehp
|
unknown
|
||
https://sp.booking.com/index.html?aid=1589774&label=dech-prime-hp-shoppingstripe-nav
|
unknown
|
||
http://www.reddit.com/
|
unknown
|
||
https://www.msn.com/de-ch/news/other/t%c3%a4ter-ist-gest%c3%a4ndig-und-sagt-er-sei-provoziert-worden
|
unknown
|
||
https://www.skype.com/
|
unknown
|
||
https://img.img-taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ce_sharpen%2Ch_311%2Cw_207%2Cc_fill%
|
unknown
|
||
https://www.msn.com/de-ch/homepage/api/modules/fetch"
|
unknown
|
||
https://sp.booking.com/index.html?aid=1589774&label=travelnavlink
|
unknown
|
||
https://mem.gfx.ms/meversion/?partner=msn&market=de-ch"
|
unknown
|
||
https://www.msn.com/de-ch/nachrichten/regional
|
unknown
|
||
http://www.nytimes.com/
|
unknown
|
||
https://web.vortex.data.msn.com/collect/v1/t.gif?name=%27Ms.Webi.PageView%27&ver=%272.1%27&a
|
unknown
|
||
https://onedrive.live.com/?qt=allmyphotos;Aktuelle
|
unknown
|
||
https://www.bidstack.com/privacy-policy/
|
unknown
|
||
https://onedrive.live.com/about/en/download/
|
unknown
|
||
http://popup.taboola.com/german
|
unknown
|
||
https://amzn.to/2TTxhNg
|
unknown
|
||
https://www.skype.com/go/onedrivepromo.download?cm_mmc=MSFT_2390_MSN-com
|
unknown
|
||
https://client-s.gateway.messenger.live.com
|
unknown
|
||
https://www.ricardo.ch/?utm_source=msn&utm_medium=affiliate&utm_campaign=msn_mestripe_logo_d
|
unknown
|
||
https://www.msn.com/de-ch/
|
unknown
|
||
https://office.live.com/start/PowerPoint.aspx?WT.mc_id=MSN_site
|
unknown
|
||
https://contextual.media.net/medianet.php?cid=8CU157172&crid=858412214&size=306x271&https=1
|
unknown
|
||
https://www.awin1.com/cread.php?awinmid=15168&awinaffid=696593&clickref=de-ch-edge-dhp-river
|
unknown
|
||
https://twitter.com/
|
unknown
|
||
https://www.msn.com/de-ch
|
unknown
|
||
https://click.linksynergy.com/deeplink?id=xoqYgl4JDe8&mid=46130&u1=dech_mestripe_store&m
|
unknown
|
||
https://clkde.tradedoubler.com/click?p=245744&a=3064090&g=24903118&epi=ch-de
|
unknown
|
||
https://twitter.com/i/notifications;Ich
|
unknown
|
||
https://www.awin1.com/cread.php?awinmid=11518&awinaffid=696593&clickref=dech-edge-dhp-infopa
|
unknown
|
||
https://contextual.media.net/medianet.php?cid=8CU157172&crid=722878611&size=306x271&http
|
unknown
|
||
https://outlook.live.com/calendar
|
unknown
|
||
https://img.img-taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_311%2Cw_207%2Cc_fill%2Cg_faces:au
|
unknown
|
||
https://onedrive.live.com/#qt=mru
|
unknown
|
||
https://api.taboola.com/2.0/json/msn-ch-de-home/recommendations.notify-click?app.type=desktop&ap
|
unknown
|
||
https://www.sway.com/?WT.mc_id=MSN_site&utm_source=MSN&utm_medium=Topnav&utm_campaign=link;PowerPoin
|
unknown
|
||
https://www.msn.com/de-ch/news/other/weshalb-corona-das-bev%c3%b6lkerungswachstum-im-kanton-z%c3%bcr
|
unknown
|
||
https://www.msn.com?form=MY01O4&OCID=MY01O4
|
unknown
|
||
https://support.skype.com
|
unknown
|
||
https://www.msn.com/de-ch/?ocid=iehp&item=deferred_page%3a1&ignorejs=webcore%2fmodules%2fjsb
|
unknown
|
||
https://www.skyscanner.net/flights?associateid=API_B2B_19305_00001&vertical=custom&pageType=
|
unknown
|
||
http://www.youtube.com/
|
unknown
|
||
https://contextual.media.net/medianet.php?cid=8CU157172&crid=722878611&size=306x271&https=1
|
unknown
|
||
http://ogp.me/ns#
|
unknown
|
||
https://clk.tradedoubler.com/click?p=245744&a=3064090&g=21863656
|
unknown
|
||
http://www.wikipedia.com/
|
unknown
|
||
https://contextual.media.net/medianet.php?cid=8CU157172&crid=858412214&size=306x271&http
|
unknown
|
||
https://i.geistm.com/l/HFCH_DTS_LP?bcid=5e875ab70e43d27d2b9a8191&bhid=60140e93c5b18a0414cccba8&a
|
unknown
|
||
https://www.ricardo.ch/?utm_source=msn&utm_medium=affiliate&utm_campaign=msn_shop_de&utm
|
unknown
|
||
http://www.live.com/
|
unknown
|
||
https://www.msn.com/de-ch/news/other/fcz-chaot-nach-brutaler-schl%c3%a4gerei-vor-gericht-nicht-das-e
|
unknown
|
||
https://onedrive.live.com/?qt=mru;OneDrive-App
|
unknown
|
||
https://www.skype.com/de
|
unknown
|
||
https://login.skype.com/login/oauth/microsoft?client_id=738133
|
unknown
|
||
https://www.msn.com/de-ch/news/other/juso-reicht-initiative-f%c3%bcr-stadtz%c3%bcrcher-gratis-%c3%b6
|
unknown
|
||
https://onedrive.live.com?wt.mc_id=oo_msn_msnhomepage_header
|
unknown
|
||
https://www.msn.com/de-ch/news/other/attacke-am-stadelhofen-sorgt-f%c3%bcr-etliche-hasskommentare/ar
|
unknown
|
There are 86 hidden URLs, click here to show them.
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
contextual.media.net
|
184.30.24.22
|
||
tls13.taboola.map.fastly.net
|
151.101.1.44
|
||
ocsp.sca1b.amazontrust.com
|
143.204.15.36
|
||
hblg.media.net
|
184.30.24.22
|
||
lg3.media.net
|
184.30.24.22
|
||
geolocation.onetrust.com
|
104.20.185.68
|
||
web.vortex.data.msn.com
|
unknown
|
||
www.msn.com
|
unknown
|
||
srtb.msn.com
|
unknown
|
||
img.img-taboola.com
|
unknown
|
||
cvision.media.net
|
unknown
|
There are 1 hidden domains, click here to show them.
IPs
IP
|
Domain
|
Country
|
Active
|
Malicious
|
|
---|---|---|---|---|---|
104.20.185.68
|
unknown
|
United States
|
unknown
|
||
143.204.15.36
|
unknown
|
United States
|
unknown
|
||
151.101.1.44
|
unknown
|
United States
|
unknown
|
Registry
Path
|
Value
|
Malicious
|
|
---|---|---|---|
C:\Program Files\internet explorer\iexplore.exe
|
{9561B4B9-6B6D-11EB-90EB-ECF4BBEA1588}
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
||
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
||
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Window_Placement
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
||
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
||
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
||
C:\Program Files\internet explorer\iexplore.exe
|
CVListPingLastYMD
|
||
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
||
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
||
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
||
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
||
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
||
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
||
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
||
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
||
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
||
C:\Program Files\internet explorer\iexplore.exe
|
NextUpdateDate
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NumberOfSubdomains
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
||
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
There are 109 hidden registries, click here to show them.
Memdumps
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
---|---|---|---|---|
5258000
|
heap private
|
page read and write
|
||
5258000
|
heap private
|
page read and write
|
||
5258000
|
heap private
|
page read and write
|
||
5258000
|
heap private
|
page read and write
|
||
5258000
|
heap private
|
page read and write
|
||
5258000
|
heap private
|
page read and write
|
||
5258000
|
heap private
|
page read and write
|
||
5258000
|
heap private
|
page read and write
|
||
5258000
|
heap private
|
page read and write
|
||
7FF518B04000
|
unkown
|
page readonly
|
||
7FF52FE5D000
|
unkown
|
page readonly
|
||
7FF584D21000
|
unkown
|
page readonly
|
||
7FF58FB89000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
256DEF55000
|
unkown
|
page read and write
|
||
256DEF4D000
|
unkown
|
page read and write
|
||
7FF549FF0000
|
unkown
|
page readonly
|
||
1AAA4890000
|
heap default
|
page read and write
|
||
7FF57D926000
|
unkown
|
page readonly
|
||
7FF5352F3000
|
unkown
|
page readonly
|
||
41DBCFE000
|
unkown
|
page read and write
|
||
7FF57DB94000
|
unkown
|
page readonly
|
||
7FF57DDA4000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
237F6FE000
|
unkown
|
page read and write
|
||
7FF535233000
|
unkown
|
page readonly
|
||
7FF53D9AA000
|
unkown
|
page readonly
|
||
256DEF9F000
|
unkown
|
page read and write
|
||
1AAA4AC7000
|
unkown
|
page read and write
|
||
20DBF730000
|
unkown
|
page read and write
|
||
1AAA4830000
|
heap private
|
page read and write
|
||
256DEFAB000
|
unkown
|
page read and write
|
||
256DEF6D000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF58FAFC000
|
unkown
|
page readonly
|
||
29B76DB6000
|
unkown
|
page read and write
|
||
20DBD770000
|
unkown
|
page read and write
|
||
25CED700000
|
unkown
|
page read and write
|
||
2229F4B0000
|
heap private
|
page read and write
|
||
4AAD37C000
|
unkown
|
page read and write
|
||
7FF584F41000
|
unkown
|
page readonly
|
||
2229F649000
|
unkown
|
page read and write
|
||
7FF52483B000
|
unkown
|
page readonly
|
||
256DEF4D000
|
unkown
|
page read and write
|
||
7FF524884000
|
unkown
|
page readonly
|
||
2335A500000
|
unkown
|
page read and write
|
||
47DE000
|
unkown
|
page read and write
|
||
7FF58472D000
|
unkown
|
page readonly
|
||
20DBF7F8000
|
unkown
|
page read and write
|
||
256DEF68000
|
unkown
|
page read and write
|
||
2335BEC0000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
4E3F000
|
unkown
|
page read and write
|
||
20DBD7A2000
|
unkown
|
page read and write
|
||
2229F63C000
|
unkown
|
page read and write
|
||
7FF596291000
|
unkown
|
page readonly
|
||
20DBD850000
|
unkown
|
page readonly
|
||
7FF5961EA000
|
unkown
|
page readonly
|
||
A9F20F9000
|
unkown
|
page read and write
|
||
7FF518ABA000
|
unkown
|
page readonly
|
||
7FF57D83E000
|
unkown
|
page readonly
|
||
7FF5AC78D000
|
unkown
|
page readonly
|
||
20DBD6CB000
|
unkown
|
page read and write
|
||
256DE6E9000
|
unkown
|
page read and write
|
||
1452B602000
|
unkown
|
page read and write
|
||
237F87F000
|
unkown
|
page read and write
|
||
256DEF68000
|
unkown
|
page read and write
|
||
2D80000
|
unkown
|
page readonly
|
||
7FF5353AD000
|
unkown
|
page readonly
|
||
256DE6A7000
|
unkown
|
page read and write
|
||
7FF52FF27000
|
unkown
|
page readonly
|
||
7FF53533B000
|
unkown
|
page readonly
|
||
7FF58FB7E000
|
unkown
|
page readonly
|
||
20DBF490000
|
heap private
|
page read and write
|
||
7FF53D928000
|
unkown
|
page readonly
|
||
EF0000
|
unkown
|
page execute and read and write
|
||
256DEF8A000
|
unkown
|
page read and write
|
||
256DEF33000
|
unkown
|
page read and write
|
||
25CED629000
|
unkown
|
page read and write
|
||
256DEF35000
|
unkown
|
page read and write
|
||
2E53000
|
unkown
|
page readonly
|
||
7FF53D59D000
|
unkown
|
page readonly
|
||
7FF52FF6F000
|
unkown
|
page readonly
|
||
7FF584E6C000
|
unkown
|
page readonly
|
||
20DBF800000
|
unkown
|
page read and write
|
||
7FF534B91000
|
unkown
|
page readonly
|
||
256DEF20000
|
unkown
|
page read and write
|
||
256DEF56000
|
unkown
|
page read and write
|
||
7FF549885000
|
unkown
|
page readonly
|
||
7FF524392000
|
unkown
|
page readonly
|
||
1E58A8E7000
|
unkown
|
page read and write
|
||
29B76F70000
|
heap private
|
page read and write
|
||
7FF5EA502000
|
unkown
|
page readonly
|
||
23D78302000
|
unkown
|
page read and write
|
||
20DBD7A6000
|
unkown
|
page read and write
|
||
7FF584E16000
|
unkown
|
page readonly
|
||
7FF58FB8D000
|
unkown
|
page readonly
|
||
7FF524830000
|
unkown
|
page readonly
|
||
7FF518B14000
|
unkown
|
page readonly
|
||
256DE64B000
|
unkown
|
page read and write
|
||
7FF5961A0000
|
unkown
|
page readonly
|
||
20DBD7A0000
|
unkown
|
page read and write
|
||
256DEF56000
|
unkown
|
page read and write
|
||
7FF584F49000
|
unkown
|
page readonly
|
||
F5F7CCC000
|
unkown
|
page read and write
|
||
20DBF7FD000
|
unkown
|
page read and write
|
||
20DBF983000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
2A223D00000
|
unkown
|
page readonly
|
||
1DF352C0000
|
unkown
|
page readonly
|
||
7FF52FDF1000
|
unkown
|
page readonly
|
||
256DEF53000
|
unkown
|
page read and write
|
||
7FF596219000
|
unkown
|
page readonly
|
||
20DC0110000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
2A223845000
|
heap private
|
page read and write
|
||
7FF584EBC000
|
unkown
|
page readonly
|
||
256DEF3B000
|
unkown
|
page read and write
|
||
1AAA4B16000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
7FF52482A000
|
unkown
|
page readonly
|
||
7FF52460F000
|
unkown
|
page readonly
|
||
7FF5EA505000
|
unkown
|
page readonly
|
||
256DEF58000
|
unkown
|
page read and write
|
||
20DBF4E0000
|
unkown
|
page readonly
|
||
1E58A8F0000
|
unkown
|
page read and write
|
||
BEF9EDC000
|
unkown
|
page read and write
|
||
20DBFB82000
|
unkown
|
page read and write
|
||
256DE6E7000
|
unkown
|
page read and write
|
||
256DE4A0000
|
heap default
|
page read and write
|
||
20DBF767000
|
unkown
|
page read and write
|
||
7FF518AC5000
|
unkown
|
page readonly
|
||
256DEF20000
|
unkown
|
page read and write
|
||
A9F2AFB000
|
unkown
|
page read and write
|
||
256DEF88000
|
unkown
|
page read and write
|
||
7FF58FB5A000
|
unkown
|
page readonly
|
||
572452F000
|
unkown
|
page read and write
|
||
7FF58FBF4000
|
unkown
|
page readonly
|
||
7FF584FB4000
|
unkown
|
page readonly
|
||
405000
|
unkown image
|
page execute and read and write
|
||
4AAD07B000
|
unkown
|
page read and write
|
||
1AAA63A0000
|
unkown
|
page read and write
|
||
7FF5AC5F1000
|
unkown
|
page readonly
|
||
FBC000
|
unkown
|
page read and write
|
||
20DBFA02000
|
unkown
|
page read and write
|
||
20DBFA02000
|
unkown
|
page read and write
|
||
7FF5AC73C000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
F5F7DCF000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF57DCB3000
|
unkown
|
page readonly
|
||
256DEF8C000
|
unkown
|
page read and write
|
||
7FF57DDC8000
|
unkown
|
page readonly
|
||
237F3EB000
|
unkown
|
page read and write
|
||
20DBF470000
|
unkown
|
page read and write
|
||
4E40000
|
unkown
|
page read and write
|
||
256DEF79000
|
unkown
|
page read and write
|
||
1D7C30AE000
|
heap default
|
page read and write
|
||
2E99000
|
unkown
|
page readonly
|
||
256DEF56000
|
unkown
|
page read and write
|
||
256DEF74000
|
unkown
|
page read and write
|
||
7FF58FB10000
|
unkown
|
page readonly
|
||
1AAA6A02000
|
unkown
|
page read and write
|
||
20DBF727000
|
unkown
|
page read and write
|
||
256DECD0000
|
unkown
|
page read and write
|
||
7FF524507000
|
unkown
|
page readonly
|
||
7FF57DCAD000
|
unkown
|
page readonly
|
||
256DECC0000
|
unkown
|
page readonly
|
||
7FF53D8BE000
|
unkown
|
page readonly
|
||
20DBF7FE000
|
unkown
|
page read and write
|
||
7FF53539E000
|
unkown
|
page readonly
|
||
25CED655000
|
unkown
|
page read and write
|
||
7FF5421C2000
|
unkown
|
page readonly
|
||
7FF5EA57D000
|
unkown
|
page readonly
|
||
2D45000
|
unkown
|
page readonly
|
||
7FF524914000
|
unkown
|
page readonly
|
||
76993FA000
|
unkown
|
page read and write
|
||
7FF57DD97000
|
unkown
|
page readonly
|
||
7FF58FB78000
|
unkown
|
page readonly
|
||
25CED602000
|
unkown
|
page read and write
|
||
256DEFA0000
|
unkown
|
page read and write
|
||
1AAA6870000
|
unkown
|
page readonly
|
||
2A223876000
|
heap default
|
page read and write
|
||
2E32000
|
unkown
|
page readonly
|
||
7FF54212E000
|
unkown
|
page readonly
|
||
A9F28FB000
|
unkown
|
page read and write
|
||
EE0000
|
heap private
|
page read and write
|
||
23D78190000
|
unkown
|
page readonly
|
||
20DBF983000
|
unkown
|
page read and write
|
||
7FF58F225000
|
unkown
|
page readonly
|
||
20DBF7D2000
|
unkown
|
page read and write
|
||
20DBF72F000
|
unkown
|
page read and write
|
||
7FF518AEC000
|
unkown
|
page readonly
|
||
7FF518B3D000
|
unkown
|
page readonly
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
256DEF5A000
|
unkown
|
page read and write
|
||
A9F1D5B000
|
unkown
|
page read and write
|
||
3190000
|
unkown
|
page readonly
|
||
256DEF54000
|
unkown
|
page read and write
|
||
7FF57DDBF000
|
unkown
|
page readonly
|
||
256DEF36000
|
unkown
|
page read and write
|
||
7FF5353A9000
|
unkown
|
page readonly
|
||
7FF53D9A4000
|
unkown
|
page readonly
|
||
A9F217B000
|
unkown
|
page read and write
|
||
7FF57DDD6000
|
unkown
|
page readonly
|
||
20DBFC00000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
20DBF7CB000
|
unkown
|
page read and write
|
||
1DF351C0000
|
heap default
|
page read and write
|
||
256DEF58000
|
unkown
|
page read and write
|
||
400000
|
unkown image
|
page readonly
|
||
7FF584FBA000
|
unkown
|
page readonly
|
||
7FF58FBFA000
|
unkown
|
page readonly
|
||
29B76C40000
|
unkown
|
page readonly
|
||
1AAA6B1C000
|
unkown
|
page read and write
|
||
1AAA6860000
|
unkown
|
page read and write
|
||
7FF51831D000
|
unkown
|
page readonly
|
||
256DEF4D000
|
unkown
|
page read and write
|
||
256DEF3E000
|
unkown
|
page read and write
|
||
256DEF56000
|
unkown
|
page read and write
|
||
2335C310000
|
unkown
|
page read and write
|
||
256DF402000
|
unkown
|
page read and write
|
||
20DBF900000
|
unkown
|
page read and write
|
||
7FF518797000
|
unkown
|
page readonly
|
||
256DEF2B000
|
unkown
|
page read and write
|
||
7FF524776000
|
unkown
|
page readonly
|
||
2335A413000
|
unkown
|
page read and write
|
||
2335A6D0000
|
unkown
|
page write copy
|
||
1AAA4A94000
|
unkown
|
page read and write
|
||
41DBC79000
|
unkown
|
page read and write
|
||
7FF52481A000
|
unkown
|
page readonly
|
||
7FF535330000
|
unkown
|
page readonly
|
||
2229FC70000
|
unkown
|
page read and write
|
||
98D000
|
unkown
|
page read and write
|
||
20DBD72E000
|
unkown
|
page read and write
|
||
1E58A8FF000
|
unkown
|
page read and write
|
||
7FF524131000
|
unkown
|
page readonly
|
||
20DBF78D000
|
unkown
|
page read and write
|
||
256DE590000
|
unkown
|
page readonly
|
||
1E58A8D6000
|
heap default
|
page read and write
|
||
256DF402000
|
unkown
|
page read and write
|
||
2ED6000
|
unkown
|
page readonly
|
||
7FF584EBA000
|
unkown
|
page readonly
|
||
1AAA6800000
|
heap private
|
page read and write
|
||
7FF5AC754000
|
unkown
|
page readonly
|
||
2F21000
|
unkown
|
page readonly
|
||
256DEFAB000
|
unkown
|
page read and write
|
||
1E58A8F0000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
256DEF35000
|
unkown
|
page read and write
|
||
1E58AC70000
|
heap private
|
page read and write
|
||
2335A502000
|
unkown
|
page read and write
|
||
20DBF759000
|
unkown
|
page read and write
|
||
256DEF35000
|
unkown
|
page read and write
|
||
256DEF2B000
|
unkown
|
page read and write
|
||
7FF5247FB000
|
unkown
|
page readonly
|
||
256DEF39000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF535398000
|
unkown
|
page readonly
|
||
7FF5AC802000
|
unkown
|
page readonly
|
||
256DEF3C000
|
unkown
|
page read and write
|
||
256DEF5A000
|
unkown
|
page read and write
|
||
7FF52FF8D000
|
unkown
|
page readonly
|
||
256DF400000
|
unkown
|
page read and write
|
||
A9F247B000
|
unkown
|
page read and write
|
||
7FF5AC3E7000
|
unkown
|
page readonly
|
||
7FF57D920000
|
unkown
|
page readonly
|
||
256DE64F000
|
unkown
|
page read and write
|
||
256DEF54000
|
unkown
|
page read and write
|
||
20DC0310000
|
unkown
|
page read and write
|
||
20DBF700000
|
unkown
|
page read and write
|
||
20DC0110000
|
unkown
|
page read and write
|
||
769927A000
|
unkown
|
page read and write
|
||
7FF534FFF000
|
unkown
|
page readonly
|
||
256DEF6B000
|
unkown
|
page read and write
|
||
20DBF8A4000
|
unkown
|
page read and write
|
||
256DEF8A000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF57D8D2000
|
unkown
|
page readonly
|
||
7FF53D8EC000
|
unkown
|
page readonly
|
||
7FF5245F6000
|
unkown
|
page readonly
|
||
20DBF7F9000
|
unkown
|
page read and write
|
||
7FF58FB0E000
|
unkown
|
page readonly
|
||
7FF5247F3000
|
unkown
|
page readonly
|
||
20DBF713000
|
unkown
|
page read and write
|
||
256DEF53000
|
unkown
|
page read and write
|
||
7FF58FB6F000
|
unkown
|
page readonly
|
||
20DBF7FF000
|
unkown
|
page read and write
|
||
7FF57DD5E000
|
unkown
|
page readonly
|
||
7698EEB000
|
unkown
|
page read and write
|
||
7FF584CF1000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF535347000
|
unkown
|
page readonly
|
||
256DE6EA000
|
unkown
|
page read and write
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
4870000
|
unkown
|
page read and write
|
||
4DFE000
|
unkown
|
page read and write
|
||
D40000
|
heap default
|
page read and write
|
||
2335A400000
|
unkown
|
page read and write
|
||
7FF54A05E000
|
unkown
|
page readonly
|
||
256DEF4D000
|
unkown
|
page read and write
|
||
256DEF64000
|
unkown
|
page read and write
|
||
20DBD700000
|
unkown
|
page read and write
|
||
2A223730000
|
unkown
|
page readonly
|
||
7FF5248A1000
|
unkown
|
page readonly
|
||
3390000
|
unkown
|
page readonly
|
||
256DEF4D000
|
unkown
|
page read and write
|
||
256DEF21000
|
unkown
|
page read and write
|
||
7FF5AC3DA000
|
unkown
|
page readonly
|
||
256DEF5A000
|
unkown
|
page read and write
|
||
256DEF99000
|
unkown
|
page read and write
|
||
256DEF85000
|
unkown
|
page read and write
|
||
25CED520000
|
unkown
|
page readonly
|
||
20DBD702000
|
unkown
|
page read and write
|
||
7FF52FF78000
|
unkown
|
page readonly
|
||
F79000
|
unkown
|
page read and write
|
||
1DF351CB000
|
heap default
|
page read and write
|
||
7FF58FA7C000
|
unkown
|
page readonly
|
||
7FF5AC727000
|
unkown
|
page readonly
|
||
A9F2BFF000
|
unkown
|
page read and write
|
||
7FF5420D5000
|
unkown
|
page readonly
|
||
25CED68C000
|
unkown
|
page read and write
|
||
256DEF3F000
|
unkown
|
page read and write
|
||
256DEF53000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF58FA0E000
|
unkown
|
page readonly
|
||
7FF535421000
|
unkown
|
page readonly
|
||
2229F700000
|
unkown
|
page read and write
|
||
41DBD7F000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
1452B626000
|
unkown
|
page read and write
|
||
7FF524898000
|
unkown
|
page readonly
|
||
769957D000
|
unkown
|
page read and write
|
||
1AAA6850000
|
unkown
|
page readonly
|
||
2229F68D000
|
unkown
|
page read and write
|
||
1E58A8FE000
|
unkown
|
page read and write
|
||
B97000
|
unkown
|
page read and write
|
||
256DF461000
|
unkown
|
page read and write
|
||
7FF535238000
|
unkown
|
page readonly
|
||
20DBD4C0000
|
heap private
|
page read and write
|
||
256DEF4D000
|
unkown
|
page read and write
|
||
7FF53D9B2000
|
unkown
|
page readonly
|
||
7FF52FF0E000
|
unkown
|
page readonly
|
||
7FF52FC87000
|
unkown
|
page readonly
|
||
25CED702000
|
unkown
|
page read and write
|
||
F09F67E000
|
unkown
|
page read and write
|
||
256DEFD9000
|
unkown
|
page read and write
|
||
F5F80FF000
|
unkown
|
page read and write
|
||
1DF35140000
|
unkown
|
page read and write
|
||
7FF58FB54000
|
unkown
|
page readonly
|
||
BEFA47E000
|
unkown
|
page read and write
|
||
256DEF4D000
|
unkown
|
page read and write
|
||
7FF524835000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF518AD7000
|
unkown
|
page readonly
|
||
2F34000
|
unkown
|
page readonly
|
||
7FF59628A000
|
unkown
|
page readonly
|
||
7FF53522B000
|
unkown
|
page readonly
|
||
256DEF6A000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF52FC90000
|
unkown
|
page readonly
|
||
7FF57DD34000
|
unkown
|
page readonly
|
||
20DBF853000
|
unkown
|
page read and write
|
||
256DECC0000
|
unkown
|
page read and write
|
||
256DEF33000
|
unkown
|
page read and write
|
||
2229F662000
|
unkown
|
page read and write
|
||
7FF54A03A000
|
unkown
|
page readonly
|
||
7FF57DCC4000
|
unkown
|
page readonly
|
||
20DBF778000
|
unkown
|
page read and write
|
||
7FF57D8C2000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
2EA5000
|
unkown
|
page readonly
|
||
7FF584731000
|
unkown
|
page readonly
|
||
7FF5AC778000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
57244AB000
|
unkown
|
page read and write
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
2A223800000
|
unkown
|
page read and write
|
||
25CEE000000
|
unkown
|
page readonly
|
||
256DEF84000
|
unkown
|
page read and write
|
||
29B76D9B000
|
heap default
|
page read and write
|
||
7FF524689000
|
unkown
|
page readonly
|
||
7FF5847D1000
|
unkown
|
page readonly
|
||
7FF584F1A000
|
unkown
|
page readonly
|
||
7FF53D852000
|
unkown
|
page readonly
|
||
7FF54211A000
|
unkown
|
page readonly
|
||
7FF5EA554000
|
unkown
|
page readonly
|
||
F09FBFF000
|
unkown
|
page read and write
|
||
7FF54A028000
|
unkown
|
page readonly
|
||
7FF57D977000
|
unkown
|
page readonly
|
||
7FF584EAF000
|
unkown
|
page readonly
|
||
7FF52FF7E000
|
unkown
|
page readonly
|
||
20DBF4F0000
|
unkown
|
page read and write
|
||
7FF524651000
|
unkown
|
page readonly
|
||
256DEF46000
|
unkown
|
page read and write
|
||
5270000
|
unkown
|
page readonly
|
||
7FF5421C1000
|
unkown
|
page readonly
|
||
7FF5189C8000
|
unkown
|
page readonly
|
||
7FF584DCB000
|
unkown
|
page readonly
|
||
1452B3D0000
|
heap private
|
page read and write
|
||
7FF535151000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
20DBF983000
|
unkown
|
page read and write
|
||
1DF35190000
|
heap private
|
page read and write
|
||
7FF58FC01000
|
unkown
|
page readonly
|
||
256DEF5A000
|
unkown
|
page read and write
|
||
7FF584E72000
|
unkown
|
page readonly
|
||
256DEF6A000
|
unkown
|
page read and write
|
||
7FF53537A000
|
unkown
|
page readonly
|
||
1D7C3550000
|
unkown
|
page readonly
|
||
20DBFA82000
|
unkown
|
page read and write
|
||
A9F24FA000
|
unkown
|
page read and write
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
20DBF7FD000
|
unkown
|
page read and write
|
||
2229F702000
|
unkown
|
page read and write
|
||
7FF5244FF000
|
unkown
|
page readonly
|
||
256DEF55000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
256DE64E000
|
unkown
|
page read and write
|
||
7FF52408D000
|
unkown
|
page readonly
|
||
20DBF78A000
|
unkown
|
page read and write
|
||
F09F8F8000
|
unkown
|
page read and write
|
||
7FF52FAD6000
|
unkown
|
page readonly
|
||
7FF549943000
|
unkown
|
page readonly
|
||
20DBF7D7000
|
unkown
|
page read and write
|
||
25CED600000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
23D79BA0000
|
unkown
|
page read and write
|
||
7FF53535F000
|
unkown
|
page readonly
|
||
256DEF33000
|
unkown
|
page read and write
|
||
7FF5245EB000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF584F3E000
|
unkown
|
page readonly
|
||
487F000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF52489E000
|
unkown
|
page readonly
|
||
7FF5247D2000
|
unkown
|
page readonly
|
||
7FF54A0DA000
|
unkown
|
page readonly
|
||
7FF584F46000
|
unkown
|
page readonly
|
||
7FF524711000
|
unkown
|
page readonly
|
||
406267F000
|
unkown
|
page read and write
|
||
20DBD6E4000
|
unkown
|
page read and write
|
||
23D78229000
|
unkown
|
page read and write
|
||
7FF5353A1000
|
unkown
|
page readonly
|
||
256DE655000
|
unkown
|
page read and write
|
||
256DEF75000
|
unkown
|
page read and write
|
||
7FF5420D0000
|
unkown
|
page readonly
|
||
1D7C4E40000
|
heap private
|
page read and write
|
||
A9F27FA000
|
unkown
|
page read and write
|
||
256DEF55000
|
unkown
|
page read and write
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
256DEF37000
|
unkown
|
page read and write
|
||
7FF584EFF000
|
unkown
|
page readonly
|
||
256DEF3B000
|
unkown
|
page read and write
|
||
256DEF3B000
|
unkown
|
page read and write
|
||
4871000
|
unkown
|
page execute read
|
||
2229F662000
|
unkown
|
page read and write
|
||
256DEF64000
|
unkown
|
page read and write
|
||
256DE6F9000
|
unkown
|
page read and write
|
||
7FF57DD00000
|
unkown
|
page readonly
|
||
7FF5350F6000
|
unkown
|
page readonly
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
7FF54A06D000
|
unkown
|
page readonly
|
||
7FF5AC6B2000
|
unkown
|
page readonly
|
||
20DBF884000
|
unkown
|
page read and write
|
||
256DEF34000
|
unkown
|
page read and write
|
||
20DBF794000
|
unkown
|
page read and write
|
||
256DE4B0000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF52487A000
|
unkown
|
page readonly
|
||
256DEF39000
|
unkown
|
page read and write
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
670000
|
unkown
|
page read and write
|
||
256DEF4D000
|
unkown
|
page read and write
|
||
FC6000
|
heap default
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
256DEF53000
|
unkown
|
page read and write
|
||
FBB000
|
heap default
|
page read and write
|
||
20DBF7FD000
|
unkown
|
page read and write
|
||
2335A402000
|
unkown
|
page read and write
|
||
256DEF37000
|
unkown
|
page read and write
|
||
29B76D50000
|
unkown
|
page readonly
|
||
1452B560000
|
unkown
|
page readonly
|
||
256DEF63000
|
unkown
|
page read and write
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
2EAF000
|
unkown
|
page readonly
|
||
23D78400000
|
unkown
|
page readonly
|
||
7FF52FF47000
|
unkown
|
page readonly
|
||
20DBF7EB000
|
unkown
|
page read and write
|
||
1AAA6B23000
|
unkown
|
page read and write
|
||
A9F1DDE000
|
unkown
|
page read and write
|
||
256DEF2C000
|
unkown
|
page read and write
|
||
7FF5EA568000
|
unkown
|
page readonly
|
||
256DEF3C000
|
unkown
|
page read and write
|
||
F09FE7C000
|
unkown
|
page read and write
|
||
256DEF63000
|
unkown
|
page read and write
|
||
7FF52FF89000
|
unkown
|
page readonly
|
||
256DECB0000
|
unkown
|
page readonly
|
||
487D000
|
unkown
|
page read and write
|
||
7FF52FFFA000
|
unkown
|
page readonly
|
||
7FF5AC569000
|
unkown
|
page readonly
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
7FF518886000
|
unkown
|
page readonly
|
||
20DBF480000
|
unkown
|
page readonly
|
||
7FF524922000
|
unkown
|
page readonly
|
||
7FF584DD8000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF542114000
|
unkown
|
page readonly
|
||
2B5567C000
|
unkown
|
page read and write
|
||
1DF350C0000
|
unkown
|
page readonly
|
||
7FF584AA9000
|
unkown
|
page readonly
|
||
FBC000
|
unkown
|
page read and write
|
||
1D7C4D00000
|
heap private
|
page read and write
|
||
256DEF4D000
|
unkown
|
page read and write
|
||
256DEF99000
|
unkown
|
page read and write
|
||
20DBD656000
|
unkown
|
page read and write
|
||
20DBD702000
|
unkown
|
page read and write
|
||
1452D0A0000
|
unkown
|
page readonly
|
||
1E58AAF0000
|
unkown
|
page readonly
|
||
25CED613000
|
unkown
|
page read and write
|
||
7FF53D8F8000
|
unkown
|
page readonly
|
||
7FF5EA50B000
|
unkown
|
page readonly
|
||
1452B430000
|
heap default
|
page read and write
|
||
7FF5350EB000
|
unkown
|
page readonly
|
||
7FF57DC5E000
|
unkown
|
page readonly
|
||
256DEF53000
|
unkown
|
page read and write
|
||
20DBD75F000
|
unkown
|
page read and write
|
||
25CED708000
|
unkown
|
page read and write
|
||
7FF535368000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
1E58AC75000
|
heap private
|
page read and write
|
||
25CED649000
|
unkown
|
page read and write
|
||
29B76F75000
|
heap private
|
page read and write
|
||
41DBA7A000
|
unkown
|
page read and write
|
||
7FF5EA5F1000
|
unkown
|
page readonly
|
||
2F25000
|
unkown
|
page readonly
|
||
20DBF7FE000
|
unkown
|
page read and write
|
||
256DE440000
|
heap private
|
page read and write
|
||
256DE5F0000
|
unkown
|
page readonly
|
||
76994FB000
|
unkown
|
page read and write
|
||
7FF57DD3F000
|
unkown
|
page readonly
|
||
7FF57DE51000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
4CFE000
|
unkown
|
page read and write
|
||
7FF58FA63000
|
unkown
|
page readonly
|
||
1452B5A0000
|
unkown
|
page read and write
|
||
25CEDCC0000
|
unkown
|
page readonly
|
||
7FF57DB1B000
|
unkown
|
page readonly
|
||
7FF57DD8F000
|
unkown
|
page readonly
|
||
7FF5247CC000
|
unkown
|
page readonly
|
||
20DBD520000
|
heap default
|
page read and write
|
||
525B000
|
heap private
|
page read and write
|
||
7FF52FF54000
|
unkown
|
page readonly
|
||
256DE64A000
|
unkown
|
page read and write
|
||
1D7C4960000
|
unkown
|
page readonly
|
||
4AAD0FE000
|
unkown
|
page read and write
|
||
256DEF49000
|
unkown
|
page read and write
|
||
256DEF68000
|
unkown
|
page read and write
|
||
7FF5961AB000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF5AC71B000
|
unkown
|
page readonly
|
||
256DEF6C000
|
unkown
|
page read and write
|
||
1452B653000
|
unkown
|
page read and write
|
||
23D78000000
|
heap private
|
page read and write
|
||
9F0000
|
unkown
|
page readonly
|
||
256DEFB5000
|
unkown
|
page read and write
|
||
2335A429000
|
unkown
|
page read and write
|
||
1AAA4A00000
|
unkown
|
page read and write
|
||
20DBF730000
|
unkown
|
page read and write
|
||
256DEF6A000
|
unkown
|
page read and write
|
||
1AAA4C00000
|
unkown
|
page readonly
|
||
7FF5AC3DF000
|
unkown
|
page readonly
|
||
2E75000
|
unkown
|
page readonly
|
||
256DEF2B000
|
unkown
|
page read and write
|
||
769947E000
|
unkown
|
page read and write
|
||
23D78060000
|
heap default
|
page read and write
|
||
256DEF95000
|
unkown
|
page read and write
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
256DEF39000
|
unkown
|
page read and write
|
||
1E58AC80000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
25CED510000
|
heap default
|
page read and write
|
||
487C000
|
unkown
|
page readonly
|
||
20DBF726000
|
unkown
|
page read and write
|
||
256DEF58000
|
unkown
|
page read and write
|
||
256DEF83000
|
unkown
|
page read and write
|
||
1AAA4AE2000
|
unkown
|
page read and write
|
||
40621BF000
|
unkown
|
page read and write
|
||
256DE64D000
|
unkown
|
page read and write
|
||
25CED800000
|
unkown
|
page readonly
|
||
7FF52488E000
|
unkown
|
page readonly
|
||
256DEF96000
|
unkown
|
page read and write
|
||
256DE708000
|
unkown
|
page read and write
|
||
7FF52F625000
|
unkown
|
page readonly
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
2B55AF7000
|
unkown
|
page read and write
|
||
20DC0210000
|
unkown
|
page read and write
|
||
256DEF42000
|
unkown
|
page read and write
|
||
256DEF79000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
41DBBFE000
|
unkown
|
page read and write
|
||
2EAD000
|
unkown
|
page readonly
|
||
2229F688000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF5AC6B0000
|
unkown
|
page readonly
|
||
B9B000
|
unkown
|
page read and write
|
||
7FF52491A000
|
unkown
|
page readonly
|
||
256DEF84000
|
unkown
|
page read and write
|
||
F09FD78000
|
unkown
|
page read and write
|
||
7FF59620E000
|
unkown
|
page readonly
|
||
1AAA4ABD000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
256DEF3C000
|
unkown
|
page read and write
|
||
7FF584D06000
|
unkown
|
page readonly
|
||
7FF584BA7000
|
unkown
|
page readonly
|
||
7FF5961A5000
|
unkown
|
page readonly
|
||
D56AE7E000
|
unkown
|
page read and write
|
||
7FF584EFC000
|
unkown
|
page readonly
|
||
20DBD69B000
|
unkown
|
page read and write
|
||
7FF524733000
|
unkown
|
page readonly
|
||
256DEF53000
|
unkown
|
page read and write
|
||
7FF584F38000
|
unkown
|
page readonly
|
||
7FF57DD6B000
|
unkown
|
page readonly
|
||
7FF52481C000
|
unkown
|
page readonly
|
||
7FF53D85C000
|
unkown
|
page readonly
|
||
20DBD693000
|
unkown
|
page read and write
|
||
D20000
|
unkown
|
page readonly
|
||
7FF57DD65000
|
unkown
|
page readonly
|
||
7FF584DB1000
|
unkown
|
page readonly
|
||
20DC0110000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
256DEF53000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF53D904000
|
unkown
|
page readonly
|
||
2335A3D0000
|
unkown
|
page readonly
|
||
256DEF53000
|
unkown
|
page read and write
|
||
2229F708000
|
unkown
|
page read and write
|
||
29B76D30000
|
unkown
|
page read and write
|
||
5724879000
|
unkown
|
page read and write
|
||
7FF57DE4A000
|
unkown
|
page readonly
|
||
256DEFBF000
|
unkown
|
page read and write
|
||
7FF5AC75A000
|
unkown
|
page readonly
|
||
7FF5244EC000
|
unkown
|
page readonly
|
||
7FF584FC1000
|
unkown
|
page readonly
|
||
1AAA68A0000
|
unkown
|
page readonly
|
||
20DBF100000
|
unkown
|
page readonly
|
||
7FF57DC03000
|
unkown
|
page readonly
|
||
7FF54A0E1000
|
unkown
|
page readonly
|
||
4D7E000
|
unkown
|
page read and write
|
||
7FF58FA5D000
|
unkown
|
page readonly
|
||
76995F9000
|
unkown
|
page read and write
|
||
1AAA6B64000
|
unkown
|
page read and write
|
||
7FF535414000
|
unkown
|
page readonly
|
||
7FF51878A000
|
unkown
|
page readonly
|
||
20DC0210000
|
unkown
|
page read and write
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
20DBD6D6000
|
unkown
|
page read and write
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
7FF596284000
|
unkown
|
page readonly
|
||
7FF584B9A000
|
unkown
|
page readonly
|
||
7FF584E93000
|
unkown
|
page readonly
|
||
7FF518BA4000
|
unkown
|
page readonly
|
||
256DEF5A000
|
unkown
|
page read and write
|
||
20DBF943000
|
unkown
|
page read and write
|
||
7FF542149000
|
unkown
|
page readonly
|
||
7FF53D6B5000
|
unkown
|
page readonly
|
||
7FF524608000
|
unkown
|
page readonly
|
||
FBC000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
20DC0410000
|
unkown
|
page read and write
|
||
1AAA4A3F000
|
unkown
|
page read and write
|
||
7FF5EA544000
|
unkown
|
page readonly
|
||
7FF58FA0B000
|
unkown
|
page readonly
|
||
2229F5F0000
|
unkown
|
page readonly
|
||
7FF534FFA000
|
unkown
|
page readonly
|
||
20DBF7F9000
|
unkown
|
page read and write
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
88D000
|
unkown
|
page read and write
|
||
7FF518919000
|
unkown
|
page readonly
|
||
256DEF53000
|
unkown
|
page read and write
|
||
BEFA2F5000
|
unkown
|
page read and write
|
||
A9F287B000
|
unkown
|
page read and write
|
||
D45000
|
heap default
|
page read and write
|
||
7FF5961F4000
|
unkown
|
page readonly
|
||
7FF5EA54A000
|
unkown
|
page readonly
|
||
1452B702000
|
unkown
|
page read and write
|
||
7FF58F6D0000
|
unkown
|
page readonly
|
||
A9F267B000
|
unkown
|
page read and write
|
||
256DEF79000
|
unkown
|
page read and write
|
||
7FF52FE63000
|
unkown
|
page readonly
|
||
2E49000
|
unkown
|
page readonly
|
||
7FF5EA56E000
|
unkown
|
page readonly
|
||
256DEF6C000
|
unkown
|
page read and write
|
||
7FF584D11000
|
unkown
|
page readonly
|
||
7FF57DD5A000
|
unkown
|
page readonly
|
||
7FF57D6B3000
|
unkown
|
page readonly
|
||
485B000
|
unkown
|
page read and write
|
||
256DE651000
|
unkown
|
page read and write
|
||
1AAA4A89000
|
unkown
|
page read and write
|
||
20DBF983000
|
unkown
|
page read and write
|
||
7FF5AC786000
|
unkown
|
page readonly
|
||
256DEFAB000
|
unkown
|
page read and write
|
||
1E58A8D1000
|
unkown
|
page read and write
|
||
1D7C2F00000
|
unkown
|
page readonly
|
||
7FF54213E000
|
unkown
|
page readonly
|
||
7FF53D953000
|
unkown
|
page readonly
|
||
20DBF724000
|
unkown
|
page read and write
|
||
256DEF36000
|
unkown
|
page read and write
|
||
20DC0410000
|
unkown
|
page read and write
|
||
7FF584CAF000
|
unkown
|
page readonly
|
||
7FF52FF3C000
|
unkown
|
page readonly
|
||
20DBD71B000
|
unkown
|
page read and write
|
||
7FF53D8AA000
|
unkown
|
page readonly
|
||
20DC0000000
|
unkown
|
page read and write
|
||
7FF584E70000
|
unkown
|
page readonly
|
||
7FF5AC3CC000
|
unkown
|
page readonly
|
||
20DBF702000
|
unkown
|
page read and write
|
||
7FF52FF64000
|
unkown
|
page readonly
|
||
21242EC000
|
unkown
|
page read and write
|
||
1E58A9C0000
|
unkown
|
page readonly
|
||
20DBD68E000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
256DEF3C000
|
unkown
|
page read and write
|
||
7FF57DC68000
|
unkown
|
page readonly
|
||
7FF57DDD9000
|
unkown
|
page readonly
|
||
256DEF8B000
|
unkown
|
page read and write
|
||
7FF596121000
|
unkown
|
page readonly
|
||
7FF54A04E000
|
unkown
|
page readonly
|
||
2335A720000
|
unkown
|
page readonly
|
||
7FF518BB1000
|
unkown
|
page readonly
|
||
20DBF4F0000
|
unkown
|
page read and write
|
||
7FF57DD2B000
|
unkown
|
page readonly
|
||
256DEF37000
|
unkown
|
page read and write
|
||
256DEF59000
|
unkown
|
page read and write
|
||
256DEF97000
|
unkown
|
page read and write
|
||
769937F000
|
unkown
|
page read and write
|
||
98C000
|
unkown
|
page read and write
|
||
1AAA4B02000
|
unkown
|
page read and write
|
||
20DBFA00000
|
unkown
|
page read and write
|
||
7FF58F887000
|
unkown
|
page readonly
|
||
2335A600000
|
unkown
|
page readonly
|
||
20DBD6DF000
|
unkown
|
page read and write
|
||
2EDB000
|
unkown
|
page readonly
|
||
57249FD000
|
unkown
|
page read and write
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
7FF584E9B000
|
unkown
|
page readonly
|
||
256DE5C0000
|
unkown
|
page readonly
|
||
23D78140000
|
unkown
|
page write copy
|
||
7FF5EA500000
|
unkown
|
page readonly
|
||
7FF51887B000
|
unkown
|
page readonly
|
||
256DECE0000
|
unkown
|
page readonly
|
||
256DEF62000
|
unkown
|
page read and write
|
||
7FF5AC801000
|
unkown
|
page readonly
|
||
256DEF3C000
|
unkown
|
page read and write
|
||
2E83000
|
unkown
|
page readonly
|
||
7FF5189A1000
|
unkown
|
page readonly
|
||
2B5577E000
|
unkown
|
page read and write
|
||
256DE5A0000
|
unkown
|
page read and write
|
||
7FF5AC531000
|
unkown
|
page readonly
|
||
7FF54A0D4000
|
unkown
|
page readonly
|
||
7FF518A60000
|
unkown
|
page readonly
|
||
2EBA000
|
unkown
|
page readonly
|
||
A9F237C000
|
unkown
|
page read and write
|
||
7FF524091000
|
unkown
|
page readonly
|
||
256DEF2D000
|
unkown
|
page read and write
|
||
237F77A000
|
unkown
|
page read and write
|
||
2335A43F000
|
unkown
|
page read and write
|
||
A9F29FC000
|
unkown
|
page read and write
|
||
256DEF39000
|
unkown
|
page read and write
|
||
7FF53D8D7000
|
unkown
|
page readonly
|
||
1E58A8CB000
|
heap default
|
page read and write
|
||
256DEF33000
|
unkown
|
page read and write
|
||
7FF52FF86000
|
unkown
|
page readonly
|
||
7FF52FF10000
|
unkown
|
page readonly
|
||
256DEF3B000
|
unkown
|
page read and write
|
||
4AAD27A000
|
unkown
|
page read and write
|
||
23D78070000
|
unkown
|
page readonly
|
||
256DE800000
|
unkown
|
page readonly
|
||
20DC0013000
|
unkown
|
page read and write
|
||
256DEF33000
|
unkown
|
page read and write
|
||
D30000
|
unkown
|
page readonly
|
||
256DEF8A000
|
unkown
|
page read and write
|
||
B60000
|
heap default
|
page read and write
|
||
7FF518ACB000
|
unkown
|
page readonly
|
||
25CED68E000
|
unkown
|
page read and write
|
||
256DEF3C000
|
unkown
|
page read and write
|
||
29B76D90000
|
heap default
|
page read and write
|
||
2F53000
|
unkown
|
page readonly
|
||
F09FC7F000
|
unkown
|
page read and write
|
||
7FF584E9F000
|
unkown
|
page readonly
|
||
1D7C4A50000
|
unkown
|
page readonly
|
||
4E60000
|
heap private
|
page read and write
|
||
256DEF33000
|
unkown
|
page read and write
|
||
7FF53D8AC000
|
unkown
|
page readonly
|
||
7FF584DD3000
|
unkown
|
page readonly
|
||
256DEF95000
|
unkown
|
page read and write
|
||
256DE6B1000
|
unkown
|
page read and write
|
||
2EA7000
|
unkown
|
page readonly
|
||
25CED5F0000
|
unkown
|
page readonly
|
||
9CB000
|
unkown
|
page read and write
|
||
29B76DAA000
|
unkown
|
page read and write
|
||
20DBD6EF000
|
unkown
|
page read and write
|
||
20DBFB00000
|
unkown
|
page read and write
|
||
256DEF68000
|
unkown
|
page read and write
|
||
F09F3BB000
|
unkown
|
page read and write
|
||
2B559FE000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
23D79CA0000
|
unkown
|
page readonly
|
||
4CA8000
|
heap private
|
page read and write
|
||
4AAD17E000
|
unkown
|
page read and write
|
||
20DC0410000
|
unkown
|
page read and write
|
||
20DC0210000
|
unkown
|
page read and write
|
||
20DBD7A7000
|
unkown
|
page read and write
|
||
7FF535374000
|
unkown
|
page readonly
|
||
20DC0410000
|
unkown
|
page read and write
|
||
256DE6A7000
|
unkown
|
page read and write
|
||
256DEF47000
|
unkown
|
page read and write
|
||
2B55BFE000
|
unkown
|
page read and write
|
||
7FF53D93D000
|
unkown
|
page readonly
|
||
7FF58F6D6000
|
unkown
|
page readonly
|
||
7FF518B2E000
|
unkown
|
page readonly
|
||
7FF58FB27000
|
unkown
|
page readonly
|
||
7FF5AC7F4000
|
unkown
|
page readonly
|
||
20DC0010000
|
unkown
|
page read and write
|
||
29B76DA5000
|
unkown
|
page read and write
|
||
25CED64B000
|
unkown
|
page read and write
|
||
7FF5EA5E4000
|
unkown
|
page readonly
|
||
C30000
|
unkown
|
page readonly
|
||
7FF549947000
|
unkown
|
page readonly
|
||
20DBD6D3000
|
unkown
|
page read and write
|
||
1D7C30A6000
|
heap default
|
page read and write
|
||
256DEF75000
|
unkown
|
page read and write
|
||
1AAA4B14000
|
unkown
|
page read and write
|
||
7698FEE000
|
unkown
|
page read and write
|
||
1AAA4970000
|
unkown
|
page write copy
|
||
2229FC60000
|
unkown
|
page readonly
|
||
7FF53D9B1000
|
unkown
|
page readonly
|
||
7FF5244FA000
|
unkown
|
page readonly
|
||
20DBD713000
|
unkown
|
page read and write
|
||
20DBD641000
|
unkown
|
page read and write
|
||
7FF518B31000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF542124000
|
unkown
|
page readonly
|
||
406257E000
|
unkown
|
page read and write
|
||
20DBD800000
|
unkown
|
page write copy
|
||
7FF5352D0000
|
unkown
|
page readonly
|
||
256DEF79000
|
unkown
|
page read and write
|
||
1AAA6860000
|
unkown
|
page read and write
|
||
7FF5421BA000
|
unkown
|
page readonly
|
||
7FF584ED0000
|
unkown
|
page readonly
|
||
7FF524655000
|
unkown
|
page readonly
|
||
7FF5AC60B000
|
unkown
|
page readonly
|
||
256DEF40000
|
unkown
|
page read and write
|
||
256DEF9E000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF584A32000
|
unkown
|
page readonly
|
||
41DBAFE000
|
unkown
|
page read and write
|
||
7FF535007000
|
unkown
|
page readonly
|
||
20DBF7A0000
|
unkown
|
page read and write
|
||
572497E000
|
unkown
|
page read and write
|
||
7FF524666000
|
unkown
|
page readonly
|
||
7FF52FDB3000
|
unkown
|
page readonly
|
||
1D7C3350000
|
unkown
|
page readonly
|
||
1452B510000
|
unkown
|
page write copy
|
||
7FF584C8B000
|
unkown
|
page readonly
|
||
256DEFAB000
|
unkown
|
page read and write
|
||
7FF518BB2000
|
unkown
|
page readonly
|
||
1AAA6890000
|
unkown
|
page readonly
|
||
7FF53D914000
|
unkown
|
page readonly
|
||
2229F510000
|
heap default
|
page read and write
|
||
1E58AA90000
|
unkown
|
page read and write
|
||
7FF53538E000
|
unkown
|
page readonly
|
||
F09F6FD000
|
unkown
|
page read and write
|
||
29B76D10000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
256DEF79000
|
unkown
|
page read and write
|
||
7FF5421B4000
|
unkown
|
page readonly
|
||
7FF542138000
|
unkown
|
page readonly
|
||
256DEF20000
|
unkown
|
page read and write
|
||
7FF518B28000
|
unkown
|
page readonly
|
||
7FF57DD02000
|
unkown
|
page readonly
|
||
7FF5420D2000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
256DEF39000
|
unkown
|
page read and write
|
||
7FF57D46F000
|
unkown
|
page readonly
|
||
2229F66E000
|
unkown
|
page read and write
|
||
BEFA577000
|
unkown
|
page read and write
|
||
1DF351E7000
|
heap default
|
page read and write
|
||
2E8B000
|
unkown
|
page readonly
|
||
D56AF7E000
|
unkown
|
page read and write
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
256DEF37000
|
unkown
|
page read and write
|
||
20DBD6E4000
|
unkown
|
page read and write
|
||
20DC0410000
|
unkown
|
page read and write
|
||
7FF535211000
|
unkown
|
page readonly
|
||
A9F257A000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF5AC613000
|
unkown
|
page readonly
|
||
7FF5247FF000
|
unkown
|
page readonly
|
||
20DBF4F0000
|
unkown
|
page readonly
|
||
1AAA4A7A000
|
unkown
|
page read and write
|
||
1D7C30DC000
|
heap default
|
page read and write
|
||
7FF53535C000
|
unkown
|
page readonly
|
||
7FF5ABF71000
|
unkown
|
page readonly
|
||
256DEF34000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
256DE600000
|
unkown
|
page read and write
|
||
7FF518AEF000
|
unkown
|
page readonly
|
||
256DEE02000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
256DE613000
|
unkown
|
page read and write
|
||
256DEF3E000
|
unkown
|
page read and write
|
||
7FF59621D000
|
unkown
|
page readonly
|
||
1AAA6B33000
|
unkown
|
page read and write
|
||
1452B600000
|
unkown
|
page read and write
|
||
20DBD6FF000
|
unkown
|
page read and write
|
||
256DEF37000
|
unkown
|
page read and write
|
||
1D7C30C1000
|
heap default
|
page read and write
|
||
7FF584EDB000
|
unkown
|
page readonly
|
||
256DEF36000
|
unkown
|
page read and write
|
||
406247F000
|
unkown
|
page read and write
|
||
F5F7D4F000
|
unkown
|
page read and write
|
||
256DEF3C000
|
unkown
|
page read and write
|
||
2A223860000
|
unkown
|
page readonly
|
||
7FF524409000
|
unkown
|
page readonly
|
||
7FF57DC0A000
|
unkown
|
page readonly
|
||
7FF584ECE000
|
unkown
|
page readonly
|
||
20DBD68A000
|
unkown
|
page read and write
|
||
7FF5AC6D3000
|
unkown
|
page readonly
|
||
256DEF4D000
|
unkown
|
page read and write
|
||
1AAA67E0000
|
unkown
|
page read and write
|
||
7FF57DCCC000
|
unkown
|
page readonly
|
||
7FF53D856000
|
unkown
|
page readonly
|
||
1D7C4A40000
|
unkown
|
page readonly
|
||
20DBF75E000
|
unkown
|
page read and write
|
||
256DEFA0000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF595E65000
|
unkown
|
page readonly
|
||
20DBD721000
|
unkown
|
page read and write
|
||
1D7C3050000
|
unkown
|
page read and write
|
||
256DE688000
|
unkown
|
page read and write
|
||
20DBF730000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
FAD000
|
unkown
|
page read and write
|
||
7FF5248A6000
|
unkown
|
page readonly
|
||
2229F600000
|
unkown
|
page read and write
|
||
7FF53532E000
|
unkown
|
page readonly
|
||
1E58A8F7000
|
unkown
|
page read and write
|
||
7FF584F07000
|
unkown
|
page readonly
|
||
7FF584CF5000
|
unkown
|
page readonly
|
||
256DEF58000
|
unkown
|
page read and write
|
||
BEF9F5E000
|
unkown
|
page read and write
|
||
1E58A8E0000
|
unkown
|
page read and write
|
||
7FF5AC76E000
|
unkown
|
page readonly
|
||
40625FE000
|
unkown
|
page read and write
|
||
7FF57DD2F000
|
unkown
|
page readonly
|
||
7FF57D661000
|
unkown
|
page readonly
|
||
7FF518AC0000
|
unkown
|
page readonly
|
||
2A223840000
|
heap private
|
page read and write
|
||
237F8FA000
|
unkown
|
page read and write
|
||
21246FC000
|
unkown
|
page read and write
|
||
7FF5961D8000
|
unkown
|
page readonly
|
||
7FF5420FC000
|
unkown
|
page readonly
|
||
222A0000000
|
unkown
|
page readonly
|
||
256DE63C000
|
unkown
|
page read and write
|
||
7FF5961CC000
|
unkown
|
page readonly
|
||
7FF54A058000
|
unkown
|
page readonly
|
||
F10000
|
unkown
|
page execute and read and write
|
||
20DC0210000
|
unkown
|
page read and write
|
||
256DEF3C000
|
unkown
|
page read and write
|
||
256DEF53000
|
unkown
|
page read and write
|
||
256DEF7A000
|
unkown
|
page read and write
|
||
7FF52482E000
|
unkown
|
page readonly
|
||
7FF57DE44000
|
unkown
|
page readonly
|
||
7FF535189000
|
unkown
|
page readonly
|
||
7FF518ABE000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
1AAA7010000
|
unkown
|
page read and write
|
||
256DEF53000
|
unkown
|
page read and write
|
||
20DBFA42000
|
unkown
|
page read and write
|
||
7FF5EA538000
|
unkown
|
page readonly
|
||
2E7C000
|
unkown
|
page readonly
|
||
7FF53D939000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF5AC781000
|
unkown
|
page readonly
|
||
7FF5AC4D6000
|
unkown
|
page readonly
|
||
1AAA48A0000
|
unkown
|
page readonly
|
||
7FF58F9B3000
|
unkown
|
page readonly
|
||
7FF58F6E5000
|
unkown
|
page readonly
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
7FF58FB3F000
|
unkown
|
page readonly
|
||
2EB3000
|
unkown
|
page readonly
|
||
A9F25FB000
|
unkown
|
page read and write
|
||
256DEF9A000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
256DEF75000
|
unkown
|
page read and write
|
||
256DEF3E000
|
unkown
|
page read and write
|
||
256DEF68000
|
unkown
|
page read and write
|
||
2CE5000
|
unkown
|
page readonly
|
||
117E000
|
unkown
|
page read and write
|
||
256DEF3D000
|
unkown
|
page read and write
|
||
4C29000
|
heap private
|
page read and write
|
||
7FF52472B000
|
unkown
|
page readonly
|
||
20DBD629000
|
unkown
|
page read and write
|
||
7FF584FC2000
|
unkown
|
page readonly
|
||
256DEF53000
|
unkown
|
page read and write
|
||
256DEF6B000
|
unkown
|
page read and write
|
||
F00000
|
heap private
|
page read and write
|
||
20DBF825000
|
unkown
|
page read and write
|
||
256DEF36000
|
unkown
|
page read and write
|
||
7FF57DBA1000
|
unkown
|
page readonly
|
||
1452B440000
|
unkown
|
page readonly
|
||
20DBD681000
|
unkown
|
page read and write
|
||
7FF5EA52C000
|
unkown
|
page readonly
|
||
7FF58FA74000
|
unkown
|
page readonly
|
||
20DC0310000
|
unkown
|
page read and write
|
||
1D7C3345000
|
heap private
|
page read and write
|
||
256DEF79000
|
unkown
|
page read and write
|
||
7FF5EA579000
|
unkown
|
page readonly
|
||
20DBD600000
|
unkown
|
page read and write
|
||
256DEF66000
|
unkown
|
page read and write
|
||
25CEDC70000
|
unkown
|
page read and write
|
||
2229FE02000
|
unkown
|
page read and write
|
||
7FF524804000
|
unkown
|
page readonly
|
||
1AAA6860000
|
unkown
|
page read and write
|
||
7FF52FD61000
|
unkown
|
page readonly
|
||
1AAA6860000
|
unkown
|
page read and write
|
||
25CED63C000
|
unkown
|
page read and write
|
||
1AAA6B02000
|
unkown
|
page read and write
|
||
1D7C3070000
|
unkown
|
page readonly
|
||
2E3D000
|
unkown
|
page readonly
|
||
7FF5352D2000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
1D7C3030000
|
unkown
|
page read and write
|
||
BEFA77F000
|
unkown
|
page read and write
|
||
7FF53541A000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF5247C2000
|
unkown
|
page readonly
|
||
256DEF64000
|
unkown
|
page read and write
|
||
29B76F80000
|
unkown
|
page readonly
|
||
256DF000000
|
unkown
|
page readonly
|
||
2A223970000
|
unkown
|
page readonly
|
||
20DBD72E000
|
unkown
|
page read and write
|
||
57245AE000
|
unkown
|
page read and write
|
||
256DEF8B000
|
unkown
|
page read and write
|
||
256DE670000
|
unkown
|
page read and write
|
||
20DBF7F5000
|
unkown
|
page read and write
|
||
7FF52477D000
|
unkown
|
page readonly
|
||
F4A000
|
heap default
|
page read and write
|
||
20DBD7A2000
|
unkown
|
page read and write
|
||
20DC0310000
|
unkown
|
page read and write
|
||
7FF5AC70A000
|
unkown
|
page readonly
|
||
1E58AAE0000
|
unkown
|
page readonly
|
||
256DEF7D000
|
unkown
|
page read and write
|
||
256DE713000
|
unkown
|
page read and write
|
||
20DBD73F000
|
unkown
|
page read and write
|
||
20DBD6FF000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
400000
|
unkown image
|
page execute and read and write
|
||
7FF535384000
|
unkown
|
page readonly
|
||
256DEFB2000
|
unkown
|
page read and write
|
||
7FF57DAE0000
|
unkown
|
page readonly
|
||
7FF58FB64000
|
unkown
|
page readonly
|
||
256DEF79000
|
unkown
|
page read and write
|
||
1AAA4A29000
|
unkown
|
page read and write
|
||
7FF5188E5000
|
unkown
|
page readonly
|
||
4AAD1FA000
|
unkown
|
page read and write
|
||
1E58A8C0000
|
heap default
|
page read and write
|
||
256DE6C5000
|
unkown
|
page read and write
|
||
1D7C4F3F000
|
heap private
|
page read and write
|
||
7FF5189BB000
|
unkown
|
page readonly
|
||
F09F7F5000
|
unkown
|
page read and write
|
||
76992FA000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF5AC73F000
|
unkown
|
page readonly
|
||
7FF57DD8C000
|
unkown
|
page readonly
|
||
20DC0210000
|
unkown
|
page read and write
|
||
7FF518B0A000
|
unkown
|
page readonly
|
||
256DEFB2000
|
unkown
|
page read and write
|
||
1452B63F000
|
unkown
|
page read and write
|
||
2ED2000
|
unkown
|
page readonly
|
||
BEFA67E000
|
unkown
|
page read and write
|
||
20DBF7E4000
|
unkown
|
page read and write
|
||
F89000
|
unkown
|
page read and write
|
||
7FF58FB1B000
|
unkown
|
page readonly
|
||
7FF534B8D000
|
unkown
|
page readonly
|
||
256DEF5B000
|
unkown
|
page read and write
|
||
256DEF33000
|
unkown
|
page read and write
|
||
7FF524847000
|
unkown
|
page readonly
|
||
769967F000
|
unkown
|
page read and write
|
||
1E58A8E6000
|
unkown
|
page read and write
|
||
7FF57DC41000
|
unkown
|
page readonly
|
||
2335A513000
|
unkown
|
page read and write
|
||
7FF524671000
|
unkown
|
page readonly
|
||
41DBB7E000
|
unkown
|
page read and write
|
||
7FF52485F000
|
unkown
|
page readonly
|
||
2229F655000
|
unkown
|
page read and write
|
||
7FF535422000
|
unkown
|
page readonly
|
||
7FF52FF15000
|
unkown
|
page readonly
|
||
7FF57DDAA000
|
unkown
|
page readonly
|
||
256DEF9E000
|
unkown
|
page read and write
|
||
2229F650000
|
unkown
|
page read and write
|
||
256DEF73000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF52FE0E000
|
unkown
|
page readonly
|
||
256DE580000
|
unkown
|
page readonly
|
||
1452B613000
|
unkown
|
page read and write
|
||
D56AEFF000
|
unkown
|
page read and write
|
||
48B0000
|
heap private
|
page read and write
|
||
256DE6BE000
|
unkown
|
page read and write
|
||
20DC0310000
|
unkown
|
page read and write
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
256DEF5A000
|
unkown
|
page read and write
|
||
7FF57DAD7000
|
unkown
|
page readonly
|
||
256DEF55000
|
unkown
|
page read and write
|
||
7FF5188E1000
|
unkown
|
page readonly
|
||
7FF596292000
|
unkown
|
page readonly
|
||
7FF5AC4CB000
|
unkown
|
page readonly
|
||
1AAA4B00000
|
unkown
|
page read and write
|
||
7FF530001000
|
unkown
|
page readonly
|
||
256DEF2C000
|
unkown
|
page read and write
|
||
256DEF69000
|
unkown
|
page read and write
|
||
2A223820000
|
unkown
|
page read and write
|
||
23D78202000
|
unkown
|
page read and write
|
||
256DEF59000
|
unkown
|
page read and write
|
||
7FF52FAE5000
|
unkown
|
page readonly
|
||
7FF5AC70E000
|
unkown
|
page readonly
|
||
20DBD71E000
|
unkown
|
page read and write
|
||
D56AA8B000
|
unkown
|
page read and write
|
||
7698F6E000
|
unkown
|
page read and write
|
||
7FF53D8C5000
|
unkown
|
page readonly
|
||
20DBF943000
|
unkown
|
page read and write
|
||
256DEFDB000
|
unkown
|
page read and write
|
||
256DEF3C000
|
unkown
|
page read and write
|
||
7FF5AC535000
|
unkown
|
page readonly
|
||
20DBF7F8000
|
unkown
|
page read and write
|
||
7FF57DD4A000
|
unkown
|
page readonly
|
||
A9F21FF000
|
unkown
|
page read and write
|
||
7FF57D8CE000
|
unkown
|
page readonly
|
||
7FF530002000
|
unkown
|
page readonly
|
||
20DC0010000
|
unkown
|
page read and write
|
||
20DBF778000
|
unkown
|
page read and write
|
||
7FF58FB3C000
|
unkown
|
page readonly
|
||
2229FCC0000
|
unkown
|
page readonly
|
||
1AAA64A0000
|
unkown
|
page readonly
|
||
1E58AAB0000
|
unkown
|
page read and write
|
||
7FF57DD4C000
|
unkown
|
page readonly
|
||
BEFA3FB000
|
unkown
|
page read and write
|
||
2B55875000
|
unkown
|
page read and write
|
||
7FF54A0E2000
|
unkown
|
page readonly
|
||
20DBF728000
|
unkown
|
page read and write
|
||
7FF52FF0A000
|
unkown
|
page readonly
|
||
20DBF778000
|
unkown
|
page read and write
|
||
23D78200000
|
unkown
|
page read and write
|
||
256DEF4D000
|
unkown
|
page read and write
|
||
7FF53D936000
|
unkown
|
page readonly
|
||
7FF584F14000
|
unkown
|
page readonly
|
||
23D78234000
|
unkown
|
page read and write
|
||
7FF535155000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF53D92E000
|
unkown
|
page readonly
|
||
2229F613000
|
unkown
|
page read and write
|
||
256DE6F8000
|
unkown
|
page read and write
|
||
256DEF79000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
2E4C000
|
unkown
|
page readonly
|
||
25CED4B0000
|
heap private
|
page read and write
|
||
7FF53D59A000
|
unkown
|
page readonly
|
||
256DEF83000
|
unkown
|
page read and write
|
||
2A223870000
|
heap default
|
page read and write
|
||
2229F520000
|
unkown
|
page readonly
|
||
A9F2A7B000
|
unkown
|
page read and write
|
||
7FF58F890000
|
unkown
|
page readonly
|
||
2D82000
|
unkown
|
page readonly
|
||
2EC1000
|
unkown
|
page readonly
|
||
1AAA4AC0000
|
unkown
|
page read and write
|
||
7FF53D91E000
|
unkown
|
page readonly
|
||
256DEF53000
|
unkown
|
page read and write
|
||
20DC0510000
|
unkown
|
page read and write
|
||
256DEF79000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
1E58A8E0000
|
heap default
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF596208000
|
unkown
|
page readonly
|
||
20DBD6BE000
|
unkown
|
page read and write
|
||
256DEF3E000
|
unkown
|
page read and write
|
||
23D78213000
|
unkown
|
page read and write
|
||
BEF9FDE000
|
unkown
|
page read and write
|
||
525A000
|
heap private
|
page read and write
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
7FF52FF3F000
|
unkown
|
page readonly
|
||
7FF53D90A000
|
unkown
|
page readonly
|
||
20DBF705000
|
unkown
|
page read and write
|
||
7FF5EA55E000
|
unkown
|
page readonly
|
||
256DE649000
|
unkown
|
page read and write
|
||
20DBD613000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
256DEFAB000
|
unkown
|
page read and write
|
||
7FF52FE74000
|
unkown
|
page readonly
|
||
7FF524874000
|
unkown
|
page readonly
|
||
20DBF000000
|
unkown
|
page read and write
|
||
29B76DB8000
|
unkown
|
page read and write
|
||
2C8E000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
FBC000
|
unkown
|
page read and write
|
||
7FF57DDB4000
|
unkown
|
page readonly
|
||
2229F64D000
|
unkown
|
page read and write
|
||
7FF524921000
|
unkown
|
page readonly
|
||
7FF518A83000
|
unkown
|
page readonly
|
||
256DEF42000
|
unkown
|
page read and write
|
||
256DEF3C000
|
unkown
|
page read and write
|
||
2E90000
|
unkown
|
page readonly
|
||
256DEF00000
|
unkown
|
page read and write
|
||
4DBF000
|
unkown
|
page read and write
|
||
256DEF4D000
|
unkown
|
page read and write
|
||
7FF52FE7C000
|
unkown
|
page readonly
|
||
7FF518321000
|
unkown
|
page readonly
|
||
A9F23FB000
|
unkown
|
page read and write
|
||
7FF53D8CB000
|
unkown
|
page readonly
|
||
256DEF42000
|
unkown
|
page read and write
|
||
20DC0110000
|
unkown
|
page read and write
|
||
7FF58FB86000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
7FF58F961000
|
unkown
|
page readonly
|
||
20DBF510000
|
unkown
|
page readonly
|
||
20DBD6E0000
|
unkown
|
page read and write
|
||
7FF524681000
|
unkown
|
page readonly
|
||
F30000
|
unkown
|
page execute and read and write
|
||
256DE629000
|
unkown
|
page read and write
|
||
1AAA4A55000
|
unkown
|
page read and write
|
||
20DBF812000
|
unkown
|
page read and write
|
||
7FF5EA5EA000
|
unkown
|
page readonly
|
||
7FF5189C3000
|
unkown
|
page readonly
|
||
256DEF3B000
|
unkown
|
page read and write
|
||
7FF52FFF4000
|
unkown
|
page readonly
|
||
256DE6DF000
|
unkown
|
page read and write
|
||
20DBF602000
|
unkown
|
page read and write
|
||
20DBD530000
|
unkown
|
page readonly
|
||
20DBF7F7000
|
unkown
|
page read and write
|
||
25CEDE02000
|
unkown
|
page read and write
|
||
256DEF64000
|
unkown
|
page read and write
|
||
7FF5AC618000
|
unkown
|
page readonly
|
||
7FF54A069000
|
unkown
|
page readonly
|
||
7FF5AC77E000
|
unkown
|
page readonly
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
7FF518B36000
|
unkown
|
page readonly
|
||
256DEF35000
|
unkown
|
page read and write
|
||
256DEF36000
|
unkown
|
page read and write
|
||
256DEF5A000
|
unkown
|
page read and write
|
||
7FF58FC02000
|
unkown
|
page readonly
|
||
256DE6D2000
|
unkown
|
page read and write
|
||
7FF518B39000
|
unkown
|
page readonly
|
||
256DEF3E000
|
unkown
|
page read and write
|
||
20DBD702000
|
unkown
|
page read and write
|
||
7FF57DB26000
|
unkown
|
page readonly
|
||
2335A454000
|
unkown
|
page read and write
|
||
256DEF17000
|
unkown
|
page read and write
|
||
256DEFB0000
|
unkown
|
page read and write
|
||
20DBFB02000
|
unkown
|
page read and write
|
||
7FF58FAFA000
|
unkown
|
page readonly
|
||
A9F277B000
|
unkown
|
page read and write
|
||
20DBD6C2000
|
unkown
|
page read and write
|
||
2F42000
|
unkown
|
page readonly
|
||
256DEF64000
|
unkown
|
page read and write
|
||
7FF57D975000
|
unkown
|
page readonly
|
||
7FF53532A000
|
unkown
|
page readonly
|
||
7FF54A01F000
|
unkown
|
page readonly
|
||
7FF534FEC000
|
unkown
|
page readonly
|
||
7FF52FEFA000
|
unkown
|
page readonly
|
||
A9F2C7F000
|
unkown
|
page read and write
|
||
1DF35160000
|
unkown
|
page readonly
|
||
7FF518B1E000
|
unkown
|
page readonly
|
||
1AAA67F0000
|
unkown
|
page readonly
|
||
7FF584EA4000
|
unkown
|
page readonly
|
||
406213C000
|
unkown
|
page read and write
|
||
256DEF4E000
|
unkown
|
page read and write
|
||
7FF584CA8000
|
unkown
|
page readonly
|
||
F5F81FE000
|
unkown
|
page read and write
|
||
A9F22FA000
|
unkown
|
page read and write
|
||
256DEF3D000
|
unkown
|
page read and write
|
||
A9F227A000
|
unkown
|
page read and write
|
||
7FF5AC7FA000
|
unkown
|
page readonly
|
||
256DEF3D000
|
unkown
|
page read and write
|
||
256DEF42000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
256DEF22000
|
unkown
|
page read and write
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
2B55CFD000
|
unkown
|
page read and write
|
||
F89000
|
unkown
|
page read and write
|
||
F40000
|
heap default
|
page read and write
|
||
2F48000
|
unkown
|
page readonly
|
||
7FF518BAA000
|
unkown
|
page readonly
|
||
256DEF96000
|
unkown
|
page read and write
|
||
7FF57DB96000
|
unkown
|
page readonly
|
||
7FF584E1D000
|
unkown
|
page readonly
|
||
256DEF3E000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
256DEF79000
|
unkown
|
page read and write
|
||
7FF584F24000
|
unkown
|
page readonly
|
||
212487E000
|
unkown
|
page read and write
|
||
7FF5AC710000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
20DBF79C000
|
unkown
|
page read and write
|
||
1D7C3340000
|
heap private
|
page read and write
|
||
20DBF703000
|
unkown
|
page read and write
|
||
1DF35120000
|
unkown
|
page read and write
|
||
256DEF54000
|
unkown
|
page read and write
|
||
20DBF7AA000
|
unkown
|
page read and write
|
||
7FF5AC748000
|
unkown
|
page readonly
|
||
7FF58FB15000
|
unkown
|
page readonly
|
||
2EBF000
|
unkown
|
page readonly
|
||
7FF54A044000
|
unkown
|
page readonly
|
||
256DEF3E000
|
unkown
|
page read and write
|
||
7FF5ABF6D000
|
unkown
|
page readonly
|
||
20DBFA42000
|
unkown
|
page read and write
|
||
7FF52485C000
|
unkown
|
page readonly
|
||
481C000
|
unkown
|
page read and write
|
||
7FF524738000
|
unkown
|
page readonly
|
||
7FF54A034000
|
unkown
|
page readonly
|
||
7FF57DDCE000
|
unkown
|
page readonly
|
||
1E58A8F8000
|
unkown
|
page read and write
|
||
20DBD7B6000
|
unkown
|
page read and write
|
||
7FF51877C000
|
unkown
|
page readonly
|
||
7FF5420DB000
|
unkown
|
page readonly
|
||
57248FA000
|
unkown
|
page read and write
|
||
1DF35390000
|
unkown
|
page readonly
|
||
256DEF39000
|
unkown
|
page read and write
|
||
20DBF7BA000
|
unkown
|
page read and write
|
||
AC0000
|
unkown
|
page read and write
|
||
7FF58FB0A000
|
unkown
|
page readonly
|
||
1DF35195000
|
heap private
|
page read and write
|
||
1AAA6B00000
|
unkown
|
page read and write
|
||
1D7C2F60000
|
unkown
|
page readonly
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
256DEF34000
|
unkown
|
page read and write
|
||
7FF5AC789000
|
unkown
|
page readonly
|
||
256DEF33000
|
unkown
|
page read and write
|
||
7FF584E62000
|
unkown
|
page readonly
|
||
256DEF57000
|
unkown
|
page read and write
|
||
256DEF23000
|
unkown
|
page read and write
|
||
7FF57DC63000
|
unkown
|
page readonly
|
||
25CEDC60000
|
unkown
|
page readonly
|
||
256DEF74000
|
unkown
|
page read and write
|
||
1452B800000
|
unkown
|
page readonly
|
||
256DEF68000
|
unkown
|
page read and write
|
||
256DEFD9000
|
unkown
|
page read and write
|
||
1AAA49C0000
|
unkown
|
page readonly
|
||
25CED670000
|
unkown
|
page read and write
|
||
7FF57D6B7000
|
unkown
|
page readonly
|
||
7FF57D935000
|
unkown
|
page readonly
|
||
7FF57DB60000
|
unkown
|
page readonly
|
||
256DEF53000
|
unkown
|
page read and write
|
||
256DEF3E000
|
unkown
|
page read and write
|
||
7FF584ED5000
|
unkown
|
page readonly
|
||
7FF5961A2000
|
unkown
|
page readonly
|
||
7FF535335000
|
unkown
|
page readonly
|
||
7FF5353A6000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
256DECC0000
|
unkown
|
page read and write
|
||
256DEC60000
|
unkown
|
page write copy
|
||
7FF584D04000
|
unkown
|
page readonly
|
||
23D7823F000
|
unkown
|
page read and write
|
||
7FF584B9F000
|
unkown
|
page readonly
|
||
F09FAF8000
|
unkown
|
page read and write
|
||
1D7C4B40000
|
heap private
|
page read and write
|
||
7FF5961FF000
|
unkown
|
page readonly
|
||
7FF518A62000
|
unkown
|
page readonly
|
||
256DEF54000
|
unkown
|
page read and write
|
||
7FF518AF8000
|
unkown
|
page readonly
|
||
237F7FF000
|
unkown
|
page read and write
|
||
1AAA4AA4000
|
unkown
|
page read and write
|
||
256DEF57000
|
unkown
|
page read and write
|
||
256DEF55000
|
unkown
|
page read and write
|
||
7FF5AC764000
|
unkown
|
page readonly
|
||
2229F629000
|
unkown
|
page read and write
|
||
7FF54214D000
|
unkown
|
page readonly
|
||
A9F297A000
|
unkown
|
page read and write
|
||
7FF542108000
|
unkown
|
page readonly
|
||
7FF52FE0B000
|
unkown
|
page readonly
|
||
7FF549FF5000
|
unkown
|
page readonly
|
||
1452CFA0000
|
unkown
|
page read and write
|
||
212477E000
|
unkown
|
page read and write
|
||
7FF52480F000
|
unkown
|
page readonly
|
||
7FF52FF5A000
|
unkown
|
page readonly
|
||
2F53000
|
unkown
|
page readonly
|
||
20DBD68A000
|
unkown
|
page read and write
|
||
7FF53D1B3000
|
unkown
|
page readonly
|
||
FB0000
|
heap default
|
page read and write
|
||
7FF57DD77000
|
unkown
|
page readonly
|
||
7FF5AC715000
|
unkown
|
page readonly
|
||
4AAD2FF000
|
unkown
|
page read and write
|
||
1AAA6B0A000
|
unkown
|
page read and write
|
||
237F67E000
|
unkown
|
page read and write
|
||
7FF57DBB1000
|
unkown
|
page readonly
|
||
F09F9F7000
|
unkown
|
page read and write
|
||
7FF549FFB000
|
unkown
|
page readonly
|
||
7FF58F9F1000
|
unkown
|
page readonly
|
||
2B556FE000
|
unkown
|
page read and write
|
||
23D78257000
|
unkown
|
page read and write
|
||
25CED64D000
|
unkown
|
page read and write
|
||
20DC0010000
|
unkown
|
page read and write
|
||
7FF57DE52000
|
unkown
|
page readonly
|
||
25CED713000
|
unkown
|
page read and write
|
||
A9F26FB000
|
unkown
|
page read and write
|
||
7FF584EE7000
|
unkown
|
page readonly
|
||
7FF5961E4000
|
unkown
|
page readonly
|
||
256DEF2D000
|
unkown
|
page read and write
|
||
212467D000
|
unkown
|
page read and write
|
||
7FF584D29000
|
unkown
|
page readonly
|
||
7FF524664000
|
unkown
|
page readonly
|
||
7FF584B8C000
|
unkown
|
page readonly
|
||
256DEF3C000
|
unkown
|
page read and write
|
||
2335A360000
|
heap private
|
page read and write
|
||
7FF52FF1B000
|
unkown
|
page readonly
|
||
7FF5EA5F2000
|
unkown
|
page readonly
|
||
256DE658000
|
unkown
|
page read and write
|
||
256DEF53000
|
unkown
|
page read and write
|
||
256DEF68000
|
unkown
|
page read and write
|
||
256DEF2B000
|
unkown
|
page read and write
|
||
25CED650000
|
unkown
|
page read and write
|
||
4D3F000
|
unkown
|
page read and write
|
||
1D7C30A0000
|
heap default
|
page read and write
|
||
7FF5248A9000
|
unkown
|
page readonly
|
||
FAD000
|
unkown
|
page read and write
|
||
20DBF832000
|
unkown
|
page read and write
|
||
20DC0210000
|
unkown
|
page read and write
|
||
256DF454000
|
unkown
|
page read and write
|
||
A9F207E000
|
unkown
|
page read and write
|
||
256DEF9B000
|
unkown
|
page read and write
|
||
2335A3C0000
|
heap default
|
page read and write
|
||
D00000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
256DE6A3000
|
unkown
|
page read and write
|
||
2229F800000
|
unkown
|
page readonly
|
||
A9F2B7B000
|
unkown
|
page read and write
|
||
7FF58FB47000
|
unkown
|
page readonly
|
||
7FF52FAD0000
|
unkown
|
page readonly
|
||
2B5597B000
|
unkown
|
page read and write
|
||
7FF5247D0000
|
unkown
|
page readonly
|
||
47E0000
|
unkown
|
page read and write
|
||
29B76BE0000
|
unkown
|
page readonly
|
||
1D7C4BE0000
|
heap private
|
page read and write
|
||
256DEF55000
|
unkown
|
page read and write
|
||
47E0000
|
unkown
|
page read and write
|
||
1D7C4A30000
|
unkown
|
page readonly
|
||
7FF53D0EA000
|
unkown
|
page readonly
|
||
256DE702000
|
unkown
|
page read and write
|
||
1AAA4A13000
|
unkown
|
page read and write
|
||
256DEF2A000
|
unkown
|
page read and write
|
||
7FF52F61F000
|
unkown
|
page readonly
|
||
1D7C3080000
|
unkown
|
page readonly
|
||
7FF584F2E000
|
unkown
|
page readonly
|
||
256DEF3A000
|
unkown
|
page read and write
|
||
256DECC0000
|
unkown
|
page read and write
|
||
256DF600000
|
unkown
|
page readonly
|
||
256DEF3E000
|
unkown
|
page read and write
|
||
7FF58F21F000
|
unkown
|
page readonly
|
||
1E58A8F0000
|
unkown
|
page read and write
|
||
7FF53D8C0000
|
unkown
|
page readonly
|
||
256DF402000
|
unkown
|
page read and write
|
||
7FF57DC5B000
|
unkown
|
page readonly
|
||
1AAA4ABF000
|
unkown
|
page read and write
|
||
256DEF40000
|
unkown
|
page read and write
|
||
2335BFC0000
|
unkown
|
page readonly
|
||
2E5A000
|
unkown
|
page readonly
|
||
7FF57DD60000
|
unkown
|
page readonly
|
||
7FF524867000
|
unkown
|
page readonly
|
||
7FF584C96000
|
unkown
|
page readonly
|
||
256DEF6A000
|
unkown
|
page read and write
|
||
7FF584ECA000
|
unkown
|
page readonly
|
||
20DBF4F0000
|
unkown
|
page read and write
|
||
7FF54A01C000
|
unkown
|
page readonly
|
||
20DBDA50000
|
unkown
|
page readonly
|
||
F5F817E000
|
unkown
|
page read and write
|
||
256DEF4D000
|
unkown
|
page read and write
|
||
7FF51878F000
|
unkown
|
page readonly
|
||
2229F713000
|
unkown
|
page read and write
|
||
256DEF55000
|
unkown
|
page read and write
|
||
7FF52FEFC000
|
unkown
|
page readonly
|
There are 1471 hidden memdumps, click here to show them.