IOCReport

loading gif

Files

File Path
Type
Category
Malicious
waf3.dll
PE32+ executable (DLL) (native) x86-64, for MS Windows
initial sample
 malicious
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\7WO1MZUT\www.msn[1].xml
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\P80ULJLX\contextual.media[1].xml
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{EB3E65B7-81A7-11EB-90E4-ECF4BB862DED}.dat
Microsoft Word Document
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{EB3E65B9-81A7-11EB-90E4-ECF4BB862DED}.dat
Microsoft Word Document
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-17529550060\msapplication.xml
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-18270793970\msapplication.xml
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-21706820\msapplication.xml
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-4759708130\msapplication.xml
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-6757900\msapplication.xml
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-8760897390\msapplication.xml
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20259167780\msapplication.xml
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20332743330\msapplication.xml
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin8215062560\msapplication.xml
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\ynfz0jx\imagestore.dat
data
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\1606410096039-7693[1].jpg
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 207x240, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\33b341a7-11bf-42ad-8d2d-b90ecd999fda[1].jpg
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\AA6SFRQ[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\AA9GNjr[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BB10Rt2N[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BB1cEP3G[1].png
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BB1cG73h[1].png
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BB1encYD[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BB1epFhY[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BB1epHNF[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BB1epQZk[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BB1epncI[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BB1eqdDK[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 300x250, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BB1eqdgz[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BB1eqpoc[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BB1kc8s[1].png
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BB5zDwX[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BB7gRE[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BBI9mKZ[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BBPfCZL[1].png
GIF image data, version 89a, 50 x 50
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\de-ch[1].json
UTF-8 Unicode text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\e151e5[1].gif
GIF image data, version 89a, 1 x 1
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\http___cdn.taboola.com_libtrc_static_thumbnails_7bb24775a0e25daf40ff701f0e04fe9c[1].jpg
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\iab2Data[1].json
UTF-8 Unicode text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\location[1].js
ASCII text, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\otTCF-ie[1].js
UTF-8 Unicode text, with very long lines, with CRLF line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\41-0bee62-68ddb2ab[1].js
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\58-acd805-185735b[1].css
UTF-8 Unicode text, with very long lines
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\AAuTnto[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\AAyuliQ[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\AAzb5EX[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\BB14EN7h[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 192x192, segment length 16, baseline, precision 8, 622x368, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\BB1cEAUp[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 622x368, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\BB1dCSOZ[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\BB1elQ7W[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\BB1epJka[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\BB1epOp8[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\BB1epPkf[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x75, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\BB1epSIe[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\BB1epuiC[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x75, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\BB1eq3uo[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\BB1eq7HE[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\BB1eqGDd[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\BB7hg4[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\BBX2afX[1].png
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\BBY7ARN[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\checksync[1].htm
HTML document, ASCII text, with very long lines
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\checksync[2].htm
HTML document, ASCII text, with very long lines
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\de-ch[1].htm
HTML document, UTF-8 Unicode text, with very long lines, with CRLF, LF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\fcmain[1].js
HTML document, ASCII text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\http___cdn.taboola.com_libtrc_static_thumbnails_3c2ae0ebbdfd7f0e172b18acdb906d2f[1].jpg
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\http___cdn.taboola.com_libtrc_static_thumbnails_8416c96724617787f3fd2452e08c1231[1].jpg
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\otSDKStub[1].js
ASCII text, with very long lines, with CRLF line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\39ab3103-8560-4a55-bfc4-401f897cf6f2[1].jpg
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\55a804ab-e5c6-4b97-9319-86263d365d28[1].json
ASCII text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\85-0f8009-68ddb2ab[1].js
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BB14hq0P[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 192x192, segment length 16, baseline, precision 8, 622x368, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BB15AQNm[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BB17milU[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BB1epPru[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BB1epRYT[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BB1epY8W[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BB1epm9q[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BB1epqby[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 310x166, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BB1epr61[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x75, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BB1eq6gp[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BB1eq7HE[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BB1eqbBZ[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BB1eqbwb[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BB1eqdDK[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BB5kTiV[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BBOLLMj[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BBVuddh[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\a8a064[1].gif
GIF image data, version 89a, 28 x 28
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\checksync[1].htm
HTML document, ASCII text, with very long lines
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\checksync[2].htm
HTML document, ASCII text, with very long lines
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\fcmain[1].js
HTML document, ASCII text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\jquery-2.1.1.min[1].js
ASCII text, with very long lines, with CRLF line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\nrrV2159[1].js
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\otFlat[1].json
ASCII text, with very long lines, with CRLF line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\otPcCenter[1].json
ASCII text, with very long lines, with CRLF line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\1598379712263-265[1].jpg
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 207x240, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\1614600020004-5635[1].jpg
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 207x240, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\4996b9[1].woff
Web Open Font Format, TrueType, length 45633, version 1.0
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\755f86[1].png
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\9327884[1].jpg
[TIFF image data, big-endian, direntries=2, orientation=upper-left], progressive, precision 8, 1200x627, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\BB10MkbM[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\BB1ehrR0[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\BB1epKUU[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 300x250, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\BB1epXwh[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\BB1epnTI[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 310x166, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\BB1eq2xq[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x75, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\BB1eqaK7[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\BB1eqhcY[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\BB1eqiKN[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\BB1eqjwC[1].jpg
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames 3
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\BB6Ma4a[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\BB7hjL[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\BBXXVfm[1].png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\a5ea21[1].ico
PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\auction[1].htm
HTML document, ASCII text, with very long lines
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\cfdbd9[1].png
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\medianet[1].htm
HTML document, ASCII text, with very long lines
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\medianet[2].htm
HTML document, ASCII text, with very long lines
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\nrrV2159[1].js
ASCII text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\otBannerSdk[1].js
ASCII text, with very long lines, with CRLF line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Temp\~DF023EFD575FA5C9FD.TMP
data
dropped
 clean
C:\Users\user\AppData\Local\Temp\~DF394092EC29C7D94D.TMP
data
dropped
 clean
There are 113 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Windows\System32\rundll32.exe
rundll32.exe 'C:\Users\user\Desktop\waf3.dll',#1
 malicious
C:\Windows\System32\regsvr32.exe
regsvr32.exe /s C:\Users\user\Desktop\waf3.dll
 malicious
C:\Windows\System32\loaddll64.exe
loaddll64.exe 'C:\Users\user\Desktop\waf3.dll'
 clean
C:\Windows\System32\cmd.exe
C:\Windows\system32\cmd.exe /c 'C:\Program Files\Internet Explorer\iexplore.exe'
 clean
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5656 CREDAT:17410 /prefetch:2
 clean

URLs

Name
IP
Malicious
http://serpedfiler.uno/
143.198.2.53
 malicious
http://searchads.msn.net/.cfm?&&kp=1&
unknown
 clean
https://dc.ads.linkedin.com/collect/?pid=3038&fmt=gif
unknown
 clean
https://onedrive.live.com;Fotos
unknown
 clean
https://fra1-ib.adnxs.com/click?ykuU8Za6yT_KS5TxlrrJPwAAAOCjcPk_ykuU8Za6yT_KS5TxlrrJP5Ofq6Gpxj0A87V1
unknown
 clean
https://www.awin1.com/cread.php?awinmid=15168&awinaffid=696593&clickref=de-ch-ss&ued=htt
unknown
 clean
https://aws.amazon.com/ar/
unknown
 clean
https://www.honeycode.aws/?&trk=el_a134p000003yC6YAAU&trkCampaign=pac-edm-2020-honeycode-hom
unknown
 clean
https://aws.amazon.com/cn/?nc1=h_ls
unknown
 clean
https://portal.aws.amazon.com/gp/aws/developer/registration/index.html?nc1=f_ct&src=default
unknown
 clean
https://res-a.akamaihd.net/__media__/pics/8000/72/941/fallback1.jpg
unknown
 clean
https://www.msn.com/de-ch/news/other/sbb-kippen-umstrittenen-gestaltungsplan-talevo/ar-BB1epgKQ?ocid
unknown
 clean
https://a0.awsstatic.com/libra-css/css/1.0.374/style-awsm.css
unknown
 clean
https://www.skyscanner.net/g/referrals/v1/cars/home?associateid=API_B2B_19305_00002
unknown
 clean
https://aws.amazon.com/ru/
unknown
 clean
https://www.onenote.com/notebooks?WT.mc_id=MSN_OneNote_Recent&auth=1&wdorigin=msn
unknown
 clean
https://fls-na.amazon.com/1/action-impressions/1/OE/aws-mktg/action/awsm_:comp_DeprecatedBrowser
unknown
 clean
https://i18n-string.us-west-2.prod.pricing.aws.a2z.com
unknown
 clean
https://aws.amazon.com/ru/?nc1=h_ls
unknown
 clean
http://serpedfiler.uno:80/j
unknown
 clean
https://docs.aws.amazon.com/index.html?nc2=h_ql_doc
unknown
 clean
https://aws.amazon.com/ar/?nc1=h_ls
unknown
 clean
http://www.reddit.com/
unknown
 clean
https://s1.adform.net/Banners/Elements/Files/2066586/9327884.jpg?bv=1
unknown
 clean
https://aws.amazon.com/th/
unknown
 clean
https://sp.booking.com/index.html?aid=1589774&label=travelnavlink
unknown
 clean
https://fls-na.amazon.com/1/action-impressions/1/OE
unknown
 clean
https://aws.amazon.com/marketplace/?nc2=h_mo
unknown
 clean
http://ocsp.sca1b.amazontrust.com06
unknown
 clean
https://www.msn.com/de-ch/news/other/untersuchungen-des-z%c3%bcrcher-unispitals-entlasten-den-herzch
unknown
 clean
https://console.aws.amazon.com/support/home/?nc2=h_ql_cu
unknown
 clean
https://amzn.to/2TTxhNg
unknown
 clean
https://www.skype.com/go/onedrivepromo.download?cm_mmc=MSFT_2390_MSN-com
unknown
 clean
https://aws.amazon.com/search/
unknown
 clean
https://aws.amazon.com/?nc2=h_lg
unknown
 clean
https://pages.awscloud.com/pi-week-2021.html?sc_icampaign=Event_m3y20_psc_core-infra_storage_aws-pi-
unknown
 clean
http://ocsp.rootca1.amazontrust.com0:
unknown
 clean
https://console.aws.amazon.com/support/home/?nc1=f_dr
unknown
 clean
https://ir2.beap.gemini.yahoo.com/mbcsc?bv=1.0.0&es=UM9D09QGIS88AQ22519yHeWlPoND7n97spQ2F_f64xN3
unknown
 clean
https://www.msn.com/de-ch
unknown
 clean
https://aws.amazon.com/vi/
unknown
 clean
https://a0.awsstatic.com/aws-blog/1.0.34/js
unknown
 clean
https://click.linksynergy.com/deeplink?id=xoqYgl4JDe8&mid=46130&u1=dech_mestripe_store&m
unknown
 clean
https://www.awin1.com/cread.php?awinmid=11518&awinaffid=696593&clickref=dech-edge-dhp-infopa
unknown
 clean
https://contextual.media.net/medianet.php?cid=8CU157172&crid=722878611&size=306x271&http
unknown
 clean
http://crl.rootg2.amazontrust.com/rootg2.crl0
unknown
 clean
https://www.msn.com/de-ch/news/other/silvia-steiner-lockert-corona-massnahmen-an-den-z%c3%bcrcher-sc
unknown
 clean
https://aws.amazon.com/tw/
unknown
 clean
https://aws.amazon.com/tr/?nc1=h_ls
unknown
 clean
https://aws.amazon.com/fr/?nc1=h_ls
unknown
 clean
https://www.msn.com/de-ch/?ocid=iehp&item=deferred_page%3a1&ignorejs=webcore%2fmodules%2fjsb
unknown
 clean
https://a0.awsstatic.com/libra-search/1.0.13/js
unknown
 clean
https://ir2.beap.gemini.yahoo.com/mbcsc?bv=1.0.0&es=Vy6grtoGIS.OwGK86KrudibZtSvLjDkOa4wJDakemIi1
unknown
 clean
https://onedrive.live.com/?qt=mru;OneDrive-App
unknown
 clean
https://www.skype.com/de
unknown
 clean
https://aws.amazon.com/marketplace?aws=hp
unknown
 clean
https://aws.amazon.com/
unknown
 clean
https://sp.booking.com/index.html?aid=1589774&label=dech-prime-hp-me
unknown
 clean
https://a0.awsstatic.com/libra-css/images/site/touch-icon-ipad-144-smile.png
unknown
 clean
https://aws.amazon.com/podcasts/aws-podcast/
unknown
 clean
https://onedrive.live.com/?wt.mc_id=oo_msn_msnhomepage_header
unknown
 clean
http://www.hotmail.msn.com/pii/ReadOutlookEmail/
unknown
 clean
https://aws.amazon.com/jp/
unknown
 clean
https://onedrive.live.com;OneDrive-App
unknown
 clean
http://www.amazon.com/
unknown
 clean
https://www.onenote.com/notebooks?WT.mc_id=MSN_OneNote_QuickNote&auth=1
unknown
 clean
http://www.twitter.com/
unknown
 clean
https://office.live.com/start/Excel.aspx?WT.mc_id=MSN_site;Sway
unknown
 clean
https://www.msn.com/de-ch/news/other/ich-werde-mit-e-mails-%c3%bcberh%c3%a4uft-und-auch-bedroht-wie-
unknown
 clean
https://cdn.cookielaw.org/vendorlist/googleData.json
unknown
 clean
https://outlook.com/
unknown
 clean
https://contextual.media.net/checksync.php?&vsSync=1&cs=1&hb=1&cv=37&ndec=1&cid=8HBI57XIG&prvid=77%2
unknown
 clean
https://aws.amazon.com/de/
unknown
 clean
https://www.msn.com/de-ch/homepage/api/pdp/updatepdpdata"
unknown
 clean
https://phd.aws.amazon.com/?nc2=h_m_sc
unknown
 clean
https://a0.awsstatic.com/libra-css/images/logos/aws_logo_smile_1200x630.png
unknown
 clean
http://serpedfiler.uno/I
unknown
 clean
https://cdn.cookielaw.org/vendorlist/iab2Data.json
unknown
 clean
https://cdn.flurry.com/adTemplates/templates/htmls/clips.html"
unknown
 clean
https://portal.aws.amazon.com/gp/aws/developer/registration/index.html?nc2=h_ct&src=default
unknown
 clean
https://www.msn.com/de-ch/?ocid=iehp
unknown
 clean
https://sp.booking.com/index.html?aid=1589774&label=dech-prime-hp-shoppingstripe-nav
unknown
 clean
https://a0.awsstatic.com
unknown
 clean
https://pages.awscloud.com/fico-case-study.html?hp=tile&story=fico
unknown
 clean
https://aws.amazon.com/th/?nc1=f_ls
unknown
 clean
http://www.nytimes.com/
unknown
 clean
https://aws.amazon.com/tr/
unknown
 clean
https://s0.awsstatic.com
unknown
 clean
https://onedrive.live.com/about/en/download/
unknown
 clean
https://s.yimg.com/lo/api/res/1.2/rE0FnLuyP8tx_n4ki4fI3A--~A/Zmk9ZmlsbDt3PTIwNztoPTI0MTthcHBpZD1nZW1
unknown
 clean
https://a0.awsstatic.com/pricing-savings-plan/js/1.0.6
unknown
 clean
https://www.amazon.jobs/aws
unknown
 clean
https://a0.awsstatic.com/libra-css/images/site/touch-icon-iphone-114-smile.png
unknown
 clean
https://www.ricardo.ch/?utm_source=msn&utm_medium=affiliate&utm_campaign=msn_mestripe_logo_d
unknown
 clean
https://twitter.com/
unknown
 clean
https://a0.awsstatic.com/libra/1.0.376/libra-head.js
unknown
 clean
https://beap.gemini.yahoo.com/mbclk?bv=1.0.0&es=ro1zXTIGIS98jMTgNL0AdBt.YyQzJRbbXzvmU7aRryiBkDW9
unknown
 clean
https://console.aws.amazon.com/support/home?nc2=h_ql_cu
unknown
 clean
https://aws.amazon.com/N
unknown
 clean
https://outlook.live.com/calendar
unknown
 clean
There are 90 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
serpedfiler.uno
143.198.2.53
 malicious
contextual.media.net
184.30.24.22
 clean
tls13.taboola.map.fastly.net
151.101.1.44
 clean
dr49lng3n1n2s.cloudfront.net
143.204.3.74
 clean
lg3.media.net
184.30.24.22
 clean
geolocation.onetrust.com
104.20.184.68
 clean
edge.gycpi.b.yahoodns.net
87.248.118.22
 clean
s.yimg.com
unknown
 clean
web.vortex.data.msn.com
unknown
 clean
www.msn.com
unknown
 clean
srtb.msn.com
unknown
 clean
s1.adform.net
unknown
 clean
img.img-taboola.com
unknown
 clean
cvision.media.net
unknown
 clean
aws.amazon.com
unknown
 clean
There are 5 hidden domains, click here to show them.

IPs

IP
Domain
Country
Active
Malicious
143.198.2.53
serpedfiler.uno
United States
unknown
 malicious
104.20.184.68
geolocation.onetrust.com
United States
unknown
 clean
87.248.118.22
edge.gycpi.b.yahoodns.net
United Kingdom
unknown
 clean
143.204.3.74
dr49lng3n1n2s.cloudfront.net
United States
unknown
 clean
151.101.1.44
tls13.taboola.map.fastly.net
United States
unknown
 clean

Registry

Path
Value
Malicious
C:\Program Files\internet explorer\iexplore.exe
{EB3E65B7-81A7-11EB-90E4-ECF4BB862DED}
 clean
C:\Program Files\internet explorer\iexplore.exe
AdminActive
 clean
C:\Program Files\internet explorer\iexplore.exe
Count
 clean
C:\Program Files\internet explorer\iexplore.exe
Time
 clean
C:\Program Files\internet explorer\iexplore.exe
Blocked
 clean
C:\Program Files\internet explorer\iexplore.exe
Count
 clean
C:\Program Files\internet explorer\iexplore.exe
Time
 clean
C:\Program Files\internet explorer\iexplore.exe
LoadTimeArray
 clean
C:\Program Files\internet explorer\iexplore.exe
Count
 clean
C:\Program Files\internet explorer\iexplore.exe
Time
 clean
C:\Program Files\internet explorer\iexplore.exe
LoadTimeArray
 clean
C:\Program Files\internet explorer\iexplore.exe
CVListPingLastYMD
 clean
C:\Program Files\internet explorer\iexplore.exe
DecayDateQueue
 clean
C:\Program Files\internet explorer\iexplore.exe
LastProcessed
 clean
C:\Program Files\internet explorer\iexplore.exe
DecayDateQueue
 clean
C:\Program Files\internet explorer\iexplore.exe
LastProcessed
 clean
C:\Program Files\internet explorer\iexplore.exe
NextUpdateDate
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NumberOfSubdomains
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NumberOfSubdomains
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
There are 75 hidden registries, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
239B663F000
unkown
page read and write
 malicious
E53000
heap default
page read and write
 malicious
239B663F000
unkown
page read and write
 malicious
7FF51202F000
unkown
page readonly
 clean
7FF587029000
unkown
page readonly
 clean
226D8457000
unkown
page read and write
 clean
1C9D29F0000
heap default
page read and write
 clean
D10000
unkown
page read and write
 clean
239B7FF0000
unkown
page readonly
 clean
7FF5DDDEC000
unkown
page readonly
 clean
7FF4F46B0000
unkown
page readonly
 clean
1E8DCFB0000
unkown
page read and write
 clean
1767A730000
unkown
page read and write
 clean
7FF586F9B000
unkown
page readonly
 clean
7FF567DDE000
unkown
page readonly
 clean
7FF567F79000
unkown
page readonly
 clean
1767A791000
unkown
page read and write
 clean
2CA0000
unkown
page readonly
 clean
143F0463000
unkown
page read and write
 clean
7FF5A0FB3000
unkown
page readonly
 clean
10B5000
heap private
page read and write
 clean
188D9200000
unkown
page readonly
 clean
DF5000
heap default
page read and write
 clean
1C9D2A37000
unkown
page read and write
 clean
239B8000000
unkown
page read and write
 clean
7FF5A141C000
unkown
page readonly
 clean
7FF5D14DC000
unkown
page readonly
 clean
143F0413000
unkown
page read and write
 clean
7FF581859000
unkown
page readonly
 clean
198E5FE0000
unkown
page read and write
 clean
239B7FC0000
unkown
page read and write
 clean
7FF5BED8E000
unkown
page readonly
 clean
7FF5685E3000
unkown
page readonly
 clean
1767AA02000
unkown
page read and write
 clean
7FF567D90000
unkown
page readonly
 clean
143F0C02000
unkown
page read and write
 clean
7FF5B167A000
unkown
page readonly
 clean
7FF55B2E8000
unkown
page readonly
 clean
7FF5B1650000
unkown
page readonly
 clean
7FF55B498000
unkown
page readonly
 clean
7FF5816E5000
unkown
page readonly
 clean
4526877000
unkown
page read and write
 clean
10C0000
unkown
page readonly
 clean
7FF5D1395000
unkown
page readonly
 clean
1070000
unkown
page execute and read and write
 clean
7FF5E015E000
unkown
page readonly
 clean
1D253600000
unkown
page readonly
 clean
226D843C000
unkown
page read and write
 clean
23B47102000
unkown
page read and write
 clean
7FF567D75000
unkown
page readonly
 clean
188DA360000
unkown
page read and write
 clean
7FF5A1361000
unkown
page readonly
 clean
188DE886000
unkown
page read and write
 clean
25B3AF18000
unkown
page read and write
 clean
7FF4F4283000
unkown
page readonly
 clean
AFDBEFE000
unkown
page read and write
 clean
7FF58177A000
unkown
page readonly
 clean
7FF555E77000
unkown
page readonly
 clean
829B6F9000
unkown
page read and write
 clean
7FF5D0F23000
unkown
page readonly
 clean
4BFC2FE000
unkown
page read and write
 clean
143F0E00000
unkown
page readonly
 clean
7FF5817A9000
unkown
page readonly
 clean
7FF567C55000
unkown
page readonly
 clean
25B3C7F0000
unkown
page read and write
 clean
143F0300000
heap private
page read and write
 clean
7FF5D1795000
unkown
page readonly
 clean
1767A70F000
unkown
page read and write
 clean
1C9D2A47000
unkown
page read and write
 clean
1CB6E600000
unkown
page readonly
 clean
7FF567E37000
unkown
page readonly
 clean
1CB6DBE0000
heap default
page read and write
 clean
D10000
unkown
page read and write
 clean
7FF555EC5000
unkown
page readonly
 clean
10A0000
unkown
page read and write
 clean
188D906C000
unkown
page read and write
 clean
266D7ED0000
unkown
page readonly
 clean
7FF5A1104000
unkown
page readonly
 clean
7FF5E01C7000
unkown
page readonly
 clean
7FF5D178E000
unkown
page readonly
 clean
1767869D000
unkown
page read and write
 clean
7FF5DDD70000
unkown
page readonly
 clean
3A9F77F000
unkown
page read and write
 clean
1E8DD4B0000
unkown
page readonly
 clean
7FF568611000
unkown
page readonly
 clean
1D391235000
heap private
page read and write
 clean
7FF568746000
unkown
page readonly
 clean
7FF502D10000
unkown
page readonly
 clean
1767B310000
unkown
page read and write
 clean
1074000
unkown
page execute and read and write
 clean
239B7FD0000
unkown
page execute and read and write
 clean
7FF567B1C000
unkown
page readonly
 clean
1CB6DC5B000
unkown
page read and write
 clean
1C9D2A4B000
unkown
page read and write
 clean
993147F000
unkown
page read and write
 clean
7FF5817D6000
unkown
page readonly
 clean
7FF567D51000
unkown
page readonly
 clean
7FF511FE2000
unkown
page readonly
 clean
7FF567F22000
unkown
page readonly
 clean
1E37DE70000
heap default
page read and write
 clean
7FF5B168E000
unkown
page readonly
 clean
7FF503126000
unkown
page readonly
 clean
7FF5DDBE0000
unkown
page readonly
 clean
7FF4F4B35000
unkown
page readonly
 clean
18E86FF000
unkown
page read and write
 clean
75E4E7C000
unkown
page read and write
 clean
7FF5DDD2A000
unkown
page readonly
 clean
2B2887F000
unkown
page read and write
 clean
7FF5DDDBF000
unkown
page readonly
 clean
4BFC5FA000
unkown
page read and write
 clean
23B47013000
unkown
page read and write
 clean
239B6555000
heap private
page read and write
 clean
239B8000000
unkown
page readonly
 clean
1767A70F000
unkown
page read and write
 clean
1E8DCFF6000
heap default
page read and write
 clean
9931277000
unkown
page read and write
 clean
7FF556116000
unkown
page readonly
 clean
7FF568021000
unkown
page readonly
 clean
239B6420000
unkown
page readonly
 clean
23B46F50000
unkown
page read and write
 clean
7FF581850000
unkown
page readonly
 clean
7FF5B169F000
unkown
page readonly
 clean
188DE82D000
unkown
page read and write
 clean
1CB6DBF0000
unkown
page readonly
 clean
7FF55B544000
unkown
page readonly
 clean
2B2877F000
unkown
page read and write
 clean
45264FE000
unkown
page read and write
 clean
23B47002000
unkown
page read and write
 clean
7FF567F96000
unkown
page readonly
 clean
7FF581441000
unkown
page readonly
 clean
7FF4F4AB8000
unkown
page readonly
 clean
17678800000
unkown
page write copy
 clean
1767A460000
unkown
page readonly
 clean
7FF4F4BA9000
unkown
page readonly
 clean
7FF5D15FE000
unkown
page readonly
 clean
7FF5A134A000
unkown
page readonly
 clean
1D253260000
unkown
page write copy
 clean
7FFB51D9E000
unkown image
page readonly
 clean
25B3AE5B000
unkown
page read and write
 clean
1D252C24000
unkown
page read and write
 clean
1767A520000
unkown
page readonly
 clean
7FF5E013A000
unkown
page readonly
 clean
CE07FFD000
unkown
page read and write
 clean
1767A715000
unkown
page read and write
 clean
9D0000
unkown
page read and write
 clean
7FF586CA4000
unkown
page readonly
 clean
23B46F40000
unkown
page readonly
 clean
1C9D2A31000
unkown
page read and write
 clean
17678736000
unkown
page read and write
 clean
1767A729000
unkown
page read and write
 clean
1767A7DD000
unkown
page read and write
 clean
D10000
unkown
page read and write
 clean
3A9F3FE000
unkown
page read and write
 clean
DD0000
heap default
page read and write
 clean
7FF5A1157000
unkown
page readonly
 clean
1767A70F000
unkown
page read and write
 clean
7FFB51DA9000
unkown image
page readonly
 clean
4526675000
unkown
page read and write
 clean
1767AB42000
unkown
page read and write
 clean
188D8EA0000
unkown
page readonly
 clean
7FF5A13A0000
unkown
page readonly
 clean
7FF5028F3000
unkown
page readonly
 clean
7FF567D66000
unkown
page readonly
 clean
25B3C7C0000
unkown
page read and write
 clean
9DFFEDB000
unkown
page read and write
 clean
829B31B000
unkown
page read and write
 clean
7FF5A13A2000
unkown
page readonly
 clean
266D7B90000
heap default
page read and write
 clean
7FF568029000
unkown
page readonly
 clean
2B2857E000
unkown
page read and write
 clean
7FF5A1210000
unkown
page readonly
 clean
188DA020000
unkown
page readonly
 clean
7FF51206C000
unkown
page readonly
 clean
7FF503211000
unkown
page readonly
 clean
7FF512084000
unkown
page readonly
 clean
239B7F80000
unkown
page read and write
 clean
7FF5B16C6000
unkown
page readonly
 clean
7FF50302D000
unkown
page readonly
 clean
1D252D13000
unkown
page read and write
 clean
7FF55B4A0000
unkown
page readonly
 clean
7FF5679FF000
unkown
page readonly
 clean
1D252A40000
heap private
page read and write
 clean
17678683000
unkown
page read and write
 clean
239B66C0000
unkown
page readonly
 clean
7FF5815DF000
unkown
page readonly
 clean
CE07EFE000
unkown
page read and write
 clean
188D9013000
unkown
page read and write
 clean
7FF5816CC000
unkown
page readonly
 clean
7FF5686D0000
unkown
page readonly
 clean
3A9F7FF000
unkown
page read and write
 clean
C00000
unkown
page readonly
 clean
239B6624000
unkown
page read and write
 clean
CE080FF000
unkown
page read and write
 clean
25B3C7F0000
unkown
page read and write
 clean
7FF567FC2000
unkown
page readonly
 clean
1E37E055000
unkown
page read and write
 clean
1E37E04F000
unkown
page read and write
 clean
239B7F30000
unkown
page read and write
 clean
1767A8D7000
unkown
page read and write
 clean
188DE600000
unkown
page read and write
 clean
143F0508000
unkown
page read and write
 clean
7FF5A1387000
unkown
page readonly
 clean
7FF5682D0000
unkown
page readonly
 clean
7FF5679FC000
unkown
page readonly
 clean
1C9D2A60000
unkown
page read and write
 clean
239B6624000
unkown
page read and write
 clean
7FF581859000
unkown
page readonly
 clean
7FF5D158C000
unkown
page readonly
 clean
294C000
unkown
page read and write
 clean
7FF567F14000
unkown
page readonly
 clean
AFDBFFD000
unkown
page read and write
 clean
4BFCAFA000
unkown
page read and write
 clean
143F1140000
unkown
page readonly
 clean
1767AA02000
unkown
page read and write
 clean
4BFC97A000
unkown
page read and write
 clean
25B3AE4D000
unkown
page read and write
 clean
17678600000
unkown
page read and write
 clean
188DE81F000
unkown
page read and write
 clean
D90000
unkown
page read and write
 clean
239B6590000
unkown
page read and write
 clean
7FF5BECAA000
unkown
page readonly
 clean
7FF56770B000
unkown
page readonly
 clean
7FF5560DC000
unkown
page readonly
 clean
1767B010000
unkown
page read and write
 clean
7FF5814A6000
unkown
page readonly
 clean
188D909B000
unkown
page read and write
 clean
3A9F6FF000
unkown
page read and write
 clean
188DE510000
unkown
page read and write
 clean
7FF567D77000
unkown
page readonly
 clean
AFDBE7D000
unkown
page read and write
 clean
7FF5A1440000
unkown
page readonly
 clean
7FF567CC7000
unkown
page readonly
 clean
25B3AF02000
unkown
page read and write
 clean
D70000
unkown
page read and write
 clean
1C9D2A79000
unkown
page read and write
 clean
188D9E00000
unkown
page read and write
 clean
7FF5031A5000
unkown
page readonly
 clean
7FF5D1737000
unkown
page readonly
 clean
1D390EB0000
unkown
page read and write
 clean
F6B1CF000
unkown
page read and write
 clean
25B3AE5D000
unkown
page read and write
 clean
AFDBBFE000
unkown
page read and write
 clean
239B6590000
unkown
page read and write
 clean
7FF5B16E5000
unkown
page readonly
 clean
1C9D2B02000
unkown
page read and write
 clean
1E65B7D0000
unkown
page readonly
 clean
1CB6DC29000
unkown
page read and write
 clean
7FF502D0A000
unkown
page readonly
 clean
7FF586C93000
unkown
page readonly
 clean
829B39E000
unkown
page read and write
 clean
DA0000
unkown
page read and write
 clean
7FF586FA7000
unkown
page readonly
 clean
23B47108000
unkown
page read and write
 clean
188D9800000
unkown
page read and write
 clean
CE0767C000
unkown
page read and write
 clean
1767B510000
unkown
page read and write
 clean
266D7BC0000
unkown
page read and write
 clean
2B28B7F000
unkown
page read and write
 clean
7FF56859E000
unkown
page readonly
 clean
23B47053000
unkown
page read and write
 clean
7FF5A13B6000
unkown
page readonly
 clean
7FF5E0229000
unkown
page readonly
 clean
17678702000
unkown
page read and write
 clean
7FF567CF0000
unkown
page readonly
 clean
23B47074000
unkown
page read and write
 clean
7FF5DDE17000
unkown
page readonly
 clean
D10000
unkown
page read and write
 clean
7FF5A12B3000
unkown
page readonly
 clean
3A9F5FE000
unkown
page read and write
 clean
7FF5DDC4A000
unkown
page readonly
 clean
EC0000
heap default
page read and write
 clean
188D9029000
unkown
page read and write
 clean
1767AB02000
unkown
page read and write
 clean
7FF5A115E000
unkown
page readonly
 clean
4BFCA7A000
unkown
page read and write
 clean
176786E1000
unkown
page read and write
 clean
7FF5E01A6000
unkown
page readonly
 clean
7FF587074000
unkown
page readonly
 clean
7FF55B454000
unkown
page readonly
 clean
7FF503169000
unkown
page readonly
 clean
2B2827F000
unkown
page read and write
 clean
7FF503023000
unkown
page readonly
 clean
143F045D000
unkown
page read and write
 clean
18E88FF000
unkown
page read and write
 clean
1767B410000
unkown
page read and write
 clean
7FF511DA5000
unkown
page readonly
 clean
7FF5D17D6000
unkown
page readonly
 clean
143F045A000
unkown
page read and write
 clean
1C9D2A45000
unkown
page read and write
 clean
4BFC57B000
unkown
page read and write
 clean
99DFCFE000
unkown
page read and write
 clean
7FF567697000
unkown
page readonly
 clean
7FF556197000
unkown
page readonly
 clean
188DE5C0000
unkown
page read and write
 clean
1767AA00000
unkown
page read and write
 clean
7FF5560DA000
unkown
page readonly
 clean
7FF511FBA000
unkown
page readonly
 clean
1E8DE910000
unkown
page readonly
 clean
7FF581752000
unkown
page readonly
 clean
7FF4F4AA0000
unkown
page readonly
 clean
188DE650000
unkown
page read and write
 clean
7FF4F496E000
unkown
page readonly
 clean
7FF55B1BF000
unkown
page readonly
 clean
188DE5F7000
unkown
page write copy
 clean
1767A4D0000
unkown
page read and write
 clean
143F0513000
unkown
page read and write
 clean
7FF55B4DE000
unkown
page readonly
 clean
7FF50308C000
unkown
page readonly
 clean
7FF5120E9000
unkown
page readonly
 clean
1767A8D2000
unkown
page read and write
 clean
1C9D2A5E000
unkown
page read and write
 clean
7FF555FF8000
unkown
page readonly
 clean
1D252C13000
unkown
page read and write
 clean
176786D5000
unkown
page read and write
 clean
17678777000
unkown
page read and write
 clean
7FF503051000
unkown
page readonly
 clean
23B47100000
unkown
page read and write
 clean
D10000
unkown
page read and write
 clean
7FF58167C000
unkown
page readonly
 clean
7FF4F4B0D000
unkown
page readonly
 clean
7FF51204D000
unkown
page readonly
 clean
1767A500000
unkown
page readonly
 clean
1E8DD2A5000
heap private
page read and write
 clean
7FF555ED0000
unkown
page readonly
 clean
4BFC47F000
unkown
page read and write
 clean
1D252CCD000
unkown
page read and write
 clean
7FF55B4A2000
unkown
page readonly
 clean
7FF5A1437000
unkown
page readonly
 clean
7FF567D87000
unkown
page readonly
 clean
226D8469000
unkown
page read and write
 clean
99DFBFE000
unkown
page read and write
 clean
7FF5D13E7000
unkown
page readonly
 clean
4BFC37A000
unkown
page read and write
 clean
188DE5C0000
unkown
page write copy
 clean
1767A7C4000
unkown
page read and write
 clean
7FF567B28000
unkown
page readonly
 clean
7FF4F4B44000
unkown
page readonly
 clean
7FF5A1357000
unkown
page readonly
 clean
7FF5120E9000
unkown
page readonly
 clean
25B3AE80000
unkown
page read and write
 clean
1767AC00000
unkown
page readonly
 clean
1767A800000
unkown
page read and write
 clean
1E37DE10000
heap private
page read and write
 clean
7FF58173C000
unkown
page readonly
 clean
1E37DE80000
unkown
page readonly
 clean
7FF5685AA000
unkown
page readonly
 clean
7FF567B6F000
unkown
page readonly
 clean
1E8DEA20000
heap private
page read and write
 clean
1767A0F0000
unkown
page readonly
 clean
7FF5686E2000
unkown
page readonly
 clean
7FF556209000
unkown
page readonly
 clean
7FF5BED16000
unkown
page readonly
 clean
3A9F67E000
unkown
page read and write
 clean
7FF587015000
unkown
page readonly
 clean
7FF5D1850000
unkown
page readonly
 clean
239B6590000
unkown
page read and write
 clean
7FF5D1428000
unkown
page readonly
 clean
27CF000
unkown
page read and write
 clean
188DE650000
unkown
page read and write
 clean
75E547C000
unkown
page read and write
 clean
7FF55B2CB000
unkown
page readonly
 clean
D10000
unkown
page read and write
 clean
1C9D2A4E000
unkown
page read and write
 clean
1C9D2ED0000
unkown
page readonly
 clean
239B7F40000
unkown
page read and write
 clean
7FF512066000
unkown
page readonly
 clean
17678656000
unkown
page read and write
 clean
7FF5D1466000
unkown
page readonly
 clean
1767A730000
unkown
page read and write
 clean
7FF5561A7000
unkown
page readonly
 clean
7FFB51D9E000
unkown image
page readonly
 clean
226D8402000
unkown
page read and write
 clean
F6B14C000
unkown
page read and write
 clean
239B6615000
unkown
page read and write
 clean
23B4703C000
unkown
page read and write
 clean
7FF5E00CE000
unkown
page readonly
 clean
7FF5B16A9000
unkown
page readonly
 clean
7FF567C81000
unkown
page readonly
 clean
75E537F000
unkown
page read and write
 clean
1C9D2A53000
unkown
page read and write
 clean
7FF55B4E5000
unkown
page readonly
 clean
188D9802000
unkown
page read and write
 clean
1CB6DC58000
unkown
page read and write
 clean
239B6530000
unkown
page readonly
 clean
1C9D2A6A000
unkown
page read and write
 clean
7FF5D184E000
unkown
page readonly
 clean
1767A71D000
unkown
page read and write
 clean
2D2E000
unkown
page read and write
 clean
1767A712000
unkown
page read and write
 clean
1D252B80000
unkown
page readonly
 clean
188DE610000
unkown
page read and write
 clean
7FF5D1393000
unkown
page readonly
 clean
7FF5B1695000
unkown
page readonly
 clean
7FF4F49E7000
unkown
page readonly
 clean
7FF5817E5000
unkown
page readonly
 clean
226D83E0000
unkown
page readonly
 clean
7FF586737000
unkown
page readonly
 clean
D30000
unkown
page read and write
 clean
7FF5A13B8000
unkown
page readonly
 clean
188DE3D0000
unkown
page read and write
 clean
7FF5D17F0000
unkown
page readonly
 clean
7FF5D17F4000
unkown
page readonly
 clean
7FF5DFE3C000
unkown
page readonly
 clean
7FF4F4B40000
unkown
page readonly
 clean
D40000
unkown
page read and write
 clean
7FF55B4F9000
unkown
page readonly
 clean
7FF567D92000
unkown
page readonly
 clean
7FF5561A4000
unkown
page readonly
 clean
7FF512039000
unkown
page readonly
 clean
4BFC7FB000
unkown
page read and write
 clean
7FF567EB5000
unkown
page readonly
 clean
7FF51205C000
unkown
page readonly
 clean
7FF5DDDB5000
unkown
page readonly
 clean
226D8E00000
unkown
page readonly
 clean
7FF5870CE000
unkown
page readonly
 clean
1E37E108000
unkown
page read and write
 clean
7FF5E0229000
unkown
page readonly
 clean
7FF5BEC25000
unkown
page readonly
 clean
1D252C00000
unkown
page read and write
 clean
188DE4F0000
unkown
page read and write
 clean
1D252CE5000
unkown
page read and write
 clean
75E567E000
unkown
page read and write
 clean
25B3AE13000
unkown
page read and write
 clean
239B7FA0000
unkown
page read and write
 clean
10A0000
unkown
page read and write
 clean
4BFCD7C000
unkown
page read and write
 clean
1767AA42000
unkown
page read and write
 clean
188D9959000
unkown
page read and write
 clean
226D8465000
unkown
page read and write
 clean
1767A712000
unkown
page read and write
 clean
25B3CE10000
unkown
page readonly
 clean
17678510000
unkown
page readonly
 clean
7FF56870E000
unkown
page readonly
 clean
1D252C89000
unkown
page read and write
 clean
7FF5D1752000
unkown
page readonly
 clean
7FF51200A000
unkown
page readonly
 clean
7FF5A11DC000
unkown
page readonly
 clean
1767A7D4000
unkown
page read and write
 clean
7FF56855F000
unkown
page readonly
 clean
1CB6E330000
unkown
page readonly
 clean
CE07CFB000
unkown
page read and write
 clean
239B65E2000
heap default
page read and write
 clean
239B6510000
unkown
page read and write
 clean
7FF5E01AC000
unkown
page readonly
 clean
7FF5A14A9000
unkown
page readonly
 clean
188D9590000
unkown
page readonly
 clean
7FF511FCC000
unkown
page readonly
 clean
188DE650000
unkown
page read and write
 clean
188D9FC0000
unkown
page readonly
 clean
7FF5A122F000
unkown
page readonly
 clean
7FF567A6C000
unkown
page readonly
 clean
1060000
unkown
page read and write
 clean
7FF5B16F4000
unkown
page readonly
 clean
7FF567D53000
unkown
page readonly
 clean
1D253514000
unkown
page read and write
 clean
7FF5676F9000
unkown
page readonly
 clean
7FF55B52C000
unkown
page readonly
 clean
1090000
unkown
page readonly
 clean
D60000
unkown
page read and write
 clean
7FF5685C8000
unkown
page readonly
 clean
7FF5817BD000
unkown
page readonly
 clean
D50000
unkown
page read and write
 clean
7FF5A0C93000
unkown
page readonly
 clean
7FF56864C000
unkown
page readonly
 clean
1767A72A000
unkown
page read and write
 clean
1D252C2A000
unkown
page read and write
 clean
7FF567F65000
unkown
page readonly
 clean
1E37E013000
unkown
page read and write
 clean
1767B210000
unkown
page read and write
 clean
188DE6A0000
unkown
page readonly
 clean
1D252BA0000
unkown
page read and write
 clean
266D7C2A000
unkown
page read and write
 clean
7FF503219000
unkown
page readonly
 clean
226D847A000
unkown
page read and write
 clean
7FF568617000
unkown
page readonly
 clean
1767A712000
unkown
page read and write
 clean
7FF5E021E000
unkown
page readonly
 clean
7FF50320E000
unkown
page readonly
 clean
1767A86A000
unkown
page read and write
 clean
188DE6B0000
unkown
page readonly
 clean
25B3B000000
unkown
page readonly
 clean
188D908D000
unkown
page read and write
 clean
1C9D2A6C000
unkown
page read and write
 clean
7FF4F48CA000
unkown
page readonly
 clean
7FF5684FA000
unkown
page readonly
 clean
176786E2000
unkown
page read and write
 clean
188D9FD0000
unkown
page readonly
 clean
D17587C000
unkown
page read and write
 clean
7FF5D1520000
unkown
page readonly
 clean
7FF567FC7000
unkown
page readonly
 clean
7FF567FAC000
unkown
page readonly
 clean
7FF55B5A9000
unkown
page readonly
 clean
266D7C13000
unkown
page read and write
 clean
7FF555A15000
unkown
page readonly
 clean
1CB6DC00000
unkown
page read and write
 clean
25B3AE5D000
unkown
page read and write
 clean
1767B110000
unkown
page read and write
 clean
7FF5A11FA000
unkown
page readonly
 clean
7FF5DDD86000
unkown
page readonly
 clean
7FF568770000
unkown
page readonly
 clean
266D8600000
unkown
page read and write
 clean
7FF55613E000
unkown
page readonly
 clean
DB0000
unkown
page read and write
 clean
7FF5A12B7000
unkown
page readonly
 clean
7FF5DDE6E000
unkown
page readonly
 clean
7FF5561A0000
unkown
page readonly
 clean
1E8DD260000
unkown
page readonly
 clean
7FF567CC3000
unkown
page readonly
 clean
1CB6DED0000
unkown
page readonly
 clean
7FF55611A000
unkown
page readonly
 clean
7FF55618C000
unkown
page readonly
 clean
188D8F70000
unkown
page readonly
 clean
7FF5561FE000
unkown
page readonly
 clean
7FF586FD0000
unkown
page readonly
 clean
4BFD07E000
unkown
page read and write
 clean
AFDBD7E000
unkown
page read and write
 clean
1E65B802000
unkown
page read and write
 clean
7FF55B4B6000
unkown
page readonly
 clean
7FF4F4AEF000
unkown
page readonly
 clean
4BFBFFB000
unkown
page read and write
 clean
2B2867D000
unkown
page read and write
 clean
9E0067E000
unkown
page read and write
 clean
7FF5D146C000
unkown
page readonly
 clean
7FF556118000
unkown
page readonly
 clean
7FF567CF8000
unkown
page readonly
 clean
25B3CAC0000
unkown
page readonly
 clean
7FF4F4ADE000
unkown
page readonly
 clean
7FF51175A000
unkown
page readonly
 clean
7FF5A1165000
unkown
page readonly
 clean
7FF556186000
unkown
page readonly
 clean
7FF511FF2000
unkown
page readonly
 clean
7FF5D150E000
unkown
page readonly
 clean
1E37E047000
unkown
page read and write
 clean
3A9F2FA000
unkown
page read and write
 clean
143F0380000
unkown
page readonly
 clean
7FF5D171B000
unkown
page readonly
 clean
1C9D2A67000
unkown
page read and write
 clean
452697F000
unkown
page read and write
 clean
7FF5A13EF000
unkown
page readonly
 clean
7FFB51D80000
unkown image
page readonly
 clean
7FF5DD9B1000
unkown
page readonly
 clean
1C9D2A83000
unkown
page read and write
 clean
7FF58705C000
unkown
page readonly
 clean
7FF581667000
unkown
page readonly
 clean
226D8413000
unkown
page read and write
 clean
1767A7D0000
unkown
page read and write
 clean
1767A4E0000
unkown
page read and write
 clean
7FF5D146F000
unkown
page readonly
 clean
198E6062000
heap default
page read and write
 clean
7FF5A1298000
unkown
page readonly
 clean
176786E5000
unkown
page read and write
 clean
143F0459000
unkown
page read and write
 clean
226D8990000
unkown
page readonly
 clean
23B46DF0000
heap private
page read and write
 clean
188DE360000
unkown
page read and write
 clean
7FF55B487000
unkown
page readonly
 clean
7FF5D15BE000
unkown
page readonly
 clean
7FF5870D9000
unkown
page readonly
 clean
17678727000
unkown
page read and write
 clean
188D9056000
unkown
page read and write
 clean
7FF5686FA000
unkown
page readonly
 clean
188DE770000
unkown
page readonly
 clean
23B47029000
unkown
page read and write
 clean
7FF5D17C1000
unkown
page readonly
 clean
99B000
unkown
page read and write
 clean
7FF55B540000
unkown
page readonly
 clean
239B6590000
unkown
page read and write
 clean
3A9EE7C000
unkown
page read and write
 clean
23B4708C000
unkown
page read and write
 clean
2950000
unkown
page readonly
 clean
7FF581748000
unkown
page readonly
 clean
7FF511D9E000
unkown
page readonly
 clean
7FF5816D7000
unkown
page readonly
 clean
7FF5BE5CC000
unkown
page readonly
 clean
7FF556209000
unkown
page readonly
 clean
1E8DE900000
heap private
page read and write
 clean
1C9D2A76000
unkown
page read and write
 clean
9930E7E000
unkown
page read and write
 clean
188D97C1000
unkown
page read and write
 clean
9930EFD000
unkown
page read and write
 clean
7FF556013000
unkown
page readonly
 clean
7FF5E00D4000
unkown
page readonly
 clean
7FF55B54D000
unkown
page readonly
 clean
7FF5B1668000
unkown
page readonly
 clean
7FF5D16C5000
unkown
page readonly
 clean
7FF567F20000
unkown
page readonly
 clean
188DE5EC000
unkown
page readonly
 clean
1E37E000000
unkown
page read and write
 clean
7FF4F4B2C000
unkown
page readonly
 clean
1C9D2A42000
unkown
page read and write
 clean
7FF567DF9000
unkown
page readonly
 clean
188D97E3000
unkown
page read and write
 clean
3A9F57F000
unkown
page read and write
 clean
7FF5DFEAC000
unkown
page readonly
 clean
1767863F000
unkown
page read and write
 clean
188DE3F0000
unkown
page read and write
 clean
188DE690000
unkown
page readonly
 clean
1C9D2A3D000
unkown
page read and write
 clean
198E605D000
heap default
page read and write
 clean
1D252AA0000
heap default
page read and write
 clean
1CB6DD13000
unkown
page read and write
 clean
4BFC9FB000
unkown
page read and write
 clean
7FF5E018D000
unkown
page readonly
 clean
7FF5817CC000
unkown
page readonly
 clean
7FF50315F000
unkown
page readonly
 clean
1E8DCFD0000
heap default
page read and write
 clean
7FF4F49BD000
unkown
page readonly
 clean
99DFDFE000
unkown
page read and write
 clean
10A0000
unkown
page readonly
 clean
7FF567D5C000
unkown
page readonly
 clean
7FF5DDD82000
unkown
page readonly
 clean
7FF586CF5000
unkown
page readonly
 clean
17678629000
unkown
page read and write
 clean
266D7BB0000
unkown
page readonly
 clean
7FF567FB5000
unkown
page readonly
 clean
25B3ACA0000
heap private
page read and write
 clean
7FF568715000
unkown
page readonly
 clean
239B65B0000
unkown
page read and write
 clean
7FF55612A000
unkown
page readonly
 clean
7FF5D1733000
unkown
page readonly
 clean
7FF568765000
unkown
page readonly
 clean
266D8402000
unkown
page read and write
 clean
1E37E113000
unkown
page read and write
 clean
7FF5DDDE6000
unkown
page readonly
 clean
188DE640000
unkown
page read and write
 clean
188DE3E0000
unkown
page read and write
 clean
1C9D2A46000
unkown
page read and write
 clean
239B7FE0000
unkown
page readonly
 clean
7FF5813BE000
unkown
page readonly
 clean
7FF50314E000
unkown
page readonly
 clean
239B6633000
unkown
page read and write
 clean
CE07C7C000
unkown
page read and write
 clean
239B7F20000
unkown
page read and write
 clean
7FF4F4AF9000
unkown
page readonly
 clean
1C9D2A69000
unkown
page read and write
 clean
143F0360000
heap default
page read and write
 clean
7FF55B30E000
unkown
page readonly
 clean
1767A712000
unkown
page read and write
 clean
188D9FF0000
unkown
page readonly
 clean
1CB6E260000
unkown
page readonly
 clean
1767B410000
unkown
page read and write
 clean
1767A70D000
unkown
page read and write
 clean
BAF96FD000
unkown
page read and write
 clean
188DE860000
unkown
page read and write
 clean
7FF5A13F9000
unkown
page readonly
 clean
7FF5B16DC000
unkown
page readonly
 clean
7FF5DDDF6000
unkown
page readonly
 clean
10B0000
heap private
page read and write
 clean
7FF5BECA8000
unkown
page readonly
 clean
1E8DE8D0000
unkown
page readonly
 clean
7FF5A135A000
unkown
page readonly
 clean
1C9D2A02000
unkown
page read and write
 clean
1767A450000
unkown
page read and write
 clean
7FF581795000
unkown
page readonly
 clean
4BFC3F9000
unkown
page read and write
 clean
7FF567D56000
unkown
page readonly
 clean
7FF5A149E000
unkown
page readonly
 clean
188DE750000
unkown
page readonly
 clean
7FF5B16CC000
unkown
page readonly
 clean
7FFB51D80000
unkown image
page readonly
 clean
1E65B854000
unkown
page read and write
 clean
188DE650000
unkown
page readonly
 clean
1D252CBC000
unkown
page read and write
 clean
1C9D2A7D000
unkown
page read and write
 clean
7FF4F46A0000
unkown
page readonly
 clean
7FF581432000
unkown
page readonly
 clean
1E65B800000
unkown
page read and write
 clean
1E65B840000
unkown
page read and write
 clean
188D97F0000
unkown
page read and write
 clean
7FF4F492F000
unkown
page readonly
 clean
2B27D4B000
unkown
page read and write
 clean
7FF567D4D000
unkown
page readonly
 clean
188DE650000
unkown
page read and write
 clean
7FF5D1598000
unkown
page readonly
 clean
BAF987C000
unkown
page read and write
 clean
1767A84A000
unkown
page read and write
 clean
1C9D3140000
unkown
page readonly
 clean
1767B010000
unkown
page read and write
 clean
143F0600000
unkown
page readonly
 clean
F6B87C000
unkown
page read and write
 clean
239B8374000
unkown
page read and write
 clean
7FF555E73000
unkown
page readonly
 clean
239B7F70000
heap private
page read and write
 clean
1CB6DC77000
unkown
page read and write
 clean
7FF50318C000
unkown
page readonly
 clean
99DFEFE000
unkown
page read and write
 clean
7FF5B174E000
unkown
page readonly
 clean
1E37E06E000
unkown
page read and write
 clean
198E5F10000
unkown
page readonly
 clean
AFDB73C000
unkown
page read and write
 clean
1D252B90000
unkown
page readonly
 clean
7FF5BECFE000
unkown
page readonly
 clean
17678713000
unkown
page read and write
 clean
1767A712000
unkown
page read and write
 clean
7FF556201000
unkown
page readonly
 clean
7FF567C5C000
unkown
page readonly
 clean
1E37E102000
unkown
page read and write
 clean
DDB000
heap default
page read and write
 clean
188DE514000
unkown
page read and write
 clean
7FF5DDD31000
unkown
page readonly
 clean
1C9D2A5F000
unkown
page read and write
 clean
7FFB51D9F000
unkown image
page write copy
 clean
7FF5A11E8000
unkown
page readonly
 clean
3A9F4FB000
unkown
page read and write
 clean
7FF511DB0000
unkown
page readonly
 clean
7FF5A112C000
unkown
page readonly
 clean
1080000
unkown
page readonly
 clean
7FF502F3A000
unkown
page readonly
 clean
7FF567F8D000
unkown
page readonly
 clean
143F0500000
unkown
page read and write
 clean
25B3CE00000
unkown
page readonly
 clean
1C9D2A29000
unkown
page read and write
 clean
7FF511EB9000
unkown
page readonly
 clean
D10000
unkown
page read and write
 clean
7FF5B1666000
unkown
page readonly
 clean
7FF5870D9000
unkown
page readonly
 clean
23B46F30000
unkown
page readonly
 clean
7FF5B16F7000
unkown
page readonly
 clean
1767A72D000
unkown
page read and write
 clean
1D391230000
heap private
page read and write
 clean
7FF556176000
unkown
page readonly
 clean
7FF503155000
unkown
page readonly
 clean
7FF5A142C000
unkown
page readonly
 clean
7FF55B552000
unkown
page readonly
 clean
7FF5D17BD000
unkown
page readonly
 clean
7FF567F5E000
unkown
page readonly
 clean
7FF55B4BA000
unkown
page readonly
 clean
7FF55B4CA000
unkown
page readonly
 clean
9930FF5000
unkown
page read and write
 clean
7FF568029000
unkown
page readonly
 clean
1E65B902000
unkown
page read and write
 clean
7FF5560B7000
unkown
page readonly
 clean
7FF5E01CD000
unkown
page readonly
 clean
188D9FE0000
unkown
page readonly
 clean
829B77A000
unkown
page read and write
 clean
7FF5D1859000
unkown
page readonly
 clean
E3F000
heap default
page read and write
 clean
AFDBAFE000
unkown
page read and write
 clean
D20000
unkown
page read and write
 clean
7FF55617C000
unkown
page readonly
 clean
17678747000
unkown
page read and write
 clean
7FF5A13E5000
unkown
page readonly
 clean
829B8FC000
unkown
page read and write
 clean
7FF5D1762000
unkown
page readonly
 clean
266D7C5C000
unkown
page read and write
 clean
7FF5A13B2000
unkown
page readonly
 clean
1767A787000
unkown
page read and write
 clean
7FF55B4B8000
unkown
page readonly
 clean
7FF4F427D000
unkown
page readonly
 clean
7FF567CE0000
unkown
page readonly
 clean
7FF5DDDFC000
unkown
page readonly
 clean
7FF5D16CC000
unkown
page readonly
 clean
7FF5A1444000
unkown
page readonly
 clean
1767A4D0000
unkown
page read and write
 clean
7FF5D177A000
unkown
page readonly
 clean
75E517E000
unkown
page read and write
 clean
7FF55B441000
unkown
page readonly
 clean
7FF5B16D6000
unkown
page readonly
 clean
7FF5B14DF000
unkown
page readonly
 clean
7FF5A1398000
unkown
page readonly
 clean
7FF567D6C000
unkown
page readonly
 clean
BAF97FE000
unkown
page read and write
 clean
7FF512056000
unkown
page readonly
 clean
143F06D0000
unkown
page readonly
 clean
2C90000
unkown
page read and write
 clean
7FF567B0B000
unkown
page readonly
 clean
7FF51201E000
unkown
page readonly
 clean
7FF5A13DE000
unkown
page readonly
 clean
7FF503122000
unkown
page readonly
 clean
7FF5687D9000
unkown
page readonly
 clean
188D8F90000
unkown
page read and write
 clean
CE0787B000
unkown
page read and write
 clean
7FF5DD9B3000
unkown
page readonly
 clean
7FF5DDD5C000
unkown
page readonly
 clean
188D97E0000
unkown
page read and write
 clean
239B6590000
unkown
page read and write
 clean
7FF5D17CC000
unkown
page readonly
 clean
7FF503196000
unkown
page readonly
 clean
2B2837C000
unkown
page read and write
 clean
D17597F000
unkown
page read and write
 clean
7FF5A14A9000
unkown
page readonly
 clean
2DB0000
unkown
page read and write
 clean
23B4704C000
unkown
page read and write
 clean
7FFB51D9F000
unkown image
page write copy
 clean
226D8513000
unkown
page read and write
 clean
25B3CA00000
unkown
page read and write
 clean
239B65CB000
heap default
page read and write
 clean
7FF5DDA48000
unkown
page readonly
 clean
7FF567F38000
unkown
page readonly
 clean
7FF55B5A9000
unkown
page readonly
 clean
7FF5A140D000
unkown
page readonly
 clean
7FFB51D80000
unkown image
page readonly
 clean
7FF587046000
unkown
page readonly
 clean
23B46E50000
heap default
page read and write
 clean
188D8F80000
unkown
page readonly
 clean
7FF5E00CA000
unkown
page readonly
 clean
7FF5D0ED8000
unkown
page readonly
 clean
1E37E100000
unkown
page read and write
 clean
7FF586C90000
unkown
page readonly
 clean
7FF512075000
unkown
page readonly
 clean
1E65B640000
heap private
page read and write
 clean
239B6614000
unkown
page read and write
 clean
1C9D2A5C000
unkown
page read and write
 clean
1E65B780000
unkown
page write copy
 clean
7FF5D1611000
unkown
page readonly
 clean
25B3AE2A000
unkown
page read and write
 clean
188DE84B000
unkown
page read and write
 clean
7FF5DDE05000
unkown
page readonly
 clean
1E37DF50000
unkown
page readonly
 clean
E0C000
heap default
page read and write
 clean
7FF567D8D000
unkown
page readonly
 clean
7FF5D1766000
unkown
page readonly
 clean
2B2897F000
unkown
page read and write
 clean
99310FB000
unkown
page read and write
 clean
7FF5D16D7000
unkown
page readonly
 clean
7FF5675CD000
unkown
page readonly
 clean
226D8C02000
unkown
page read and write
 clean
239B6624000
unkown
page read and write
 clean
D17567C000
unkown
page read and write
 clean
7FF4F49B3000
unkown
page readonly
 clean
7FF5D160C000
unkown
page readonly
 clean
239B7F90000
unkown
page read and write
 clean
7FF5DFEA3000
unkown
page readonly
 clean
1767A8D0000
unkown
page read and write
 clean
188D9913000
unkown
page read and write
 clean
1767A794000
unkown
page read and write
 clean
99DF7BE000
unkown
page read and write
 clean
993117E000
unkown
page read and write
 clean
7FF567D25000
unkown
page readonly
 clean
23B4704E000
unkown
page read and write
 clean
7FF5D179F000
unkown
page readonly
 clean
25B3CA40000
unkown
page read and write
 clean
239B6614000
unkown
page read and write
 clean
7FF4F4B1C000
unkown
page readonly
 clean
7FF5815F8000
unkown
page readonly
 clean
188DE3A0000
unkown
page readonly
 clean
239B64F0000
unkown
page read and write
 clean
7FF55614F000
unkown
page readonly
 clean
7FF5A131C000
unkown
page readonly
 clean
7FFB51D81000
unkown image
page execute read
 clean
7FF567C8D000
unkown
page readonly
 clean
188DA000000
unkown
page readonly
 clean
1767B310000
unkown
page read and write
 clean
7FF567CE5000
unkown
page readonly
 clean
D17577E000
unkown
page read and write
 clean
1CB6DC13000
unkown
page read and write
 clean
7FF4F4BA1000
unkown
page readonly
 clean
7FF567863000
unkown
page readonly
 clean
7FF5028ED000
unkown
page readonly
 clean
7FF5A1315000
unkown
page readonly
 clean
25B3AF13000
unkown
page read and write
 clean
239B6590000
unkown
page read and write
 clean
DC0000
unkown
page read and write
 clean
7FF511C23000
unkown
page readonly
 clean
7FF5E01D2000
unkown
page readonly
 clean
23B47051000
unkown
page read and write
 clean
188D9073000
unkown
page read and write
 clean
266D7BF0000
unkown
page read and write
 clean
226D8300000
unkown
page readonly
 clean
25B3CE20000
unkown
page write copy
 clean
7FF503057000
unkown
page readonly
 clean
188DE8A4000
unkown
page read and write
 clean
239B663F000
unkown
page read and write
 clean
7FF4F497A000
unkown
page readonly
 clean
7FF5DDE79000
unkown
page readonly
 clean
7FF5A137C000
unkown
page readonly
 clean
23B47000000
unkown
page read and write
 clean
7FF4F4AB6000
unkown
page readonly
 clean
188D9000000
unkown
page read and write
 clean
1767A70F000
unkown
page read and write
 clean
7FF5E0122000
unkown
page readonly
 clean
CE07B7C000
unkown
page read and write
 clean
1E8DCE60000
unkown
page readonly
 clean
23B47A00000
unkown
page readonly
 clean
7FF4F4AA2000
unkown
page readonly
 clean
7FF5DDD27000
unkown
page readonly
 clean
1D253539000
unkown
page read and write
 clean
239B65C7000
heap default
page read and write
 clean
7FF50319C000
unkown
page readonly
 clean
7FF5E014A000
unkown
page readonly
 clean
7FF5D173C000
unkown
page readonly
 clean
7FF568756000
unkown
page readonly
 clean
28CD000
unkown
page read and write
 clean
7FF5DDD68000
unkown
page readonly
 clean
7FF586FE8000
unkown
page readonly
 clean
7FF5560C1000
unkown
page readonly
 clean
23B47113000
unkown
page read and write
 clean
25B3AD10000
unkown
page readonly
 clean
7FF4F4AE5000
unkown
page readonly
 clean
1C9D2CD0000
unkown
page readonly
 clean
7FF5B0DBF000
unkown
page readonly
 clean
4BFC77B000
unkown
page read and write
 clean
1CB6DD02000
unkown
page read and write
 clean
1767A89B000
unkown
page read and write
 clean
7FF5A120E000
unkown
page readonly
 clean
1D252CCA000
unkown
page read and write
 clean
7FF55B537000
unkown
page readonly
 clean
1C9D2A64000
unkown
page read and write
 clean
1C9D2A41000
unkown
page read and write
 clean
1767A942000
unkown
page read and write
 clean
4BFCFFC000
unkown
page read and write
 clean
7FF586FD2000
unkown
page readonly
 clean
7FF55B5A1000
unkown
page readonly
 clean
239B7FD4000
unkown
page execute and read and write
 clean
1767A900000
unkown
page read and write
 clean
7FF5D1515000
unkown
page readonly
 clean
E04000
heap default
page read and write
 clean
3A9F8FB000
unkown
page read and write
 clean
3A9FAFE000
unkown
page read and write
 clean
75E557C000
unkown
page read and write
 clean
F6B47E000
unkown
page read and write
 clean
7FF5BECD5000
unkown
page readonly
 clean
7FF556017000
unkown
page readonly
 clean
7FF511FF6000
unkown
page readonly
 clean
9F0000
unkown
page readonly
 clean
188D9900000
unkown
page read and write
 clean
1767B210000
unkown
page read and write
 clean
1767B310000
unkown
page read and write
 clean
7FF5B1759000
unkown
page readonly
 clean
23B47802000
unkown
page read and write
 clean
7FF5DDD17000
unkown
page readonly
 clean
7FF5DDE14000
unkown
page readonly
 clean
239B6633000
unkown
page read and write
 clean
F6B777000
unkown
page read and write
 clean
1767A742000
unkown
page read and write
 clean
F6B575000
unkown
page read and write
 clean
1CB6DB80000
heap private
page read and write
 clean
1D253190000
unkown
page readonly
 clean
7FF5D17DC000
unkown
page readonly
 clean
188D9902000
unkown
page read and write
 clean
7FF5D17E5000
unkown
page readonly
 clean
143F043C000
unkown
page read and write
 clean
7FF58700E000
unkown
page readonly
 clean
7FF4F4B26000
unkown
page readonly
 clean
7FF567D0A000
unkown
page readonly
 clean
1767A70F000
unkown
page read and write
 clean
7FF5685ED000
unkown
page readonly
 clean
7FF586C97000
unkown
page readonly
 clean
7FF5D1093000
unkown
page readonly
 clean
7FF567CF2000
unkown
page readonly
 clean
7FF5A137A000
unkown
page readonly
 clean
7FF55B22C000
unkown
page readonly
 clean
1E37EA00000
unkown
page readonly
 clean
1CB6DC40000
unkown
page read and write
 clean
7B8F0FD000
unkown
page read and write
 clean
7FF5BED1C000
unkown
page readonly
 clean
CE079FF000
unkown
page read and write
 clean
7FF5815BE000
unkown
page readonly
 clean
1767A470000
heap private
page read and write
 clean
1767B410000
unkown
page read and write
 clean
E08000
heap default
page read and write
 clean
7FF5BED91000
unkown
page readonly
 clean
7FF56801E000
unkown
page readonly
 clean
75E527F000
unkown
page read and write
 clean
1D390F18000
heap default
page read and write
 clean
1767B110000
unkown
page read and write
 clean
7FF5D1620000
unkown
page readonly
 clean
7FFB51D81000
unkown image
page execute read
 clean
239B8370000
unkown
page read and write
 clean
1767A982000
unkown
page read and write
 clean
188DE83E000
unkown
page read and write
 clean
7FF502FDE000
unkown
page readonly
 clean
1E8DD012000
unkown
page read and write
 clean
239B8381000
unkown
page read and write
 clean
7FF55B4B2000
unkown
page readonly
 clean
7FF5E0165000
unkown
page readonly
 clean
7FF581768000
unkown
page readonly
 clean
7FF58703D000
unkown
page readonly
 clean
7FF586FE2000
unkown
page readonly
 clean
1E65B844000
unkown
page read and write
 clean
7FF5DF9BB000
unkown
page readonly
 clean
7FF5A1435000
unkown
page readonly
 clean
7FF567CFA000
unkown
page readonly
 clean
1767B110000
unkown
page read and write
 clean
1C9D2A62000
unkown
page read and write
 clean
188D9959000
unkown
page read and write
 clean
1D391010000
unkown
page readonly
 clean
1767B410000
unkown
page read and write
 clean
BAF92BC000
unkown
page read and write
 clean
1767A902000
unkown
page read and write
 clean
1E8DEA40000
heap private
page read and write
 clean
7FF5D13D0000
unkown
page readonly
 clean
7FF5560BA000
unkown
page readonly
 clean
7FF567FA6000
unkown
page readonly
 clean
1767A77F000
unkown
page read and write
 clean
7FF5D1707000
unkown
page readonly
 clean
1C9D2A7A000
unkown
page read and write
 clean
1767A7AB000
unkown
page read and write
 clean
239B65EA000
heap default
page read and write
 clean
7FF55B59E000
unkown
page readonly
 clean
1C9D2A40000
unkown
page read and write
 clean
7FF50313A000
unkown
page readonly
 clean
7FF5DDAAE000
unkown
page readonly
 clean
7FF567B61000
unkown
page readonly
 clean
239B8371000
unkown
page read and write
 clean
239B6560000
unkown
page read and write
 clean
7FF5D1507000
unkown
page readonly
 clean
1E65B829000
unkown
page read and write
 clean
1D252AB0000
unkown
page readonly
 clean
7FF511CB8000
unkown
page readonly
 clean
7FF556145000
unkown
page readonly
 clean
7FF581584000
unkown
page readonly
 clean
17678767000
unkown
page read and write
 clean
1E37E200000
unkown
page readonly
 clean
7FF5A1170000
unkown
page readonly
 clean
226D8400000
unkown
page read and write
 clean
7FF5D1629000
unkown
page readonly
 clean
1E37E029000
unkown
page read and write
 clean
4BFCDFB000
unkown
page read and write
 clean
188D9102000
unkown
page read and write
 clean
23B47071000
unkown
page read and write
 clean
7FF5DDD72000
unkown
page readonly
 clean
7FF4F4998000
unkown
page readonly
 clean
7FF5D17C6000
unkown
page readonly
 clean
7FF567D80000
unkown
page readonly
 clean
7FF567B4E000
unkown
page readonly
 clean
7FF568777000
unkown
page readonly
 clean
188DE620000
unkown
page read and write
 clean
1E8DEAE0000
heap private
page read and write
 clean
7FF555F5A000
unkown
page readonly
 clean
D10000
unkown
page read and write
 clean
452647B000
unkown
page read and write
 clean
188DE5E8000
unkown
page write copy
 clean
188D9071000
unkown
page read and write
 clean
1C9D2C00000
unkown
page readonly
 clean
452657F000
unkown
page read and write
 clean
266D7C24000
unkown
page read and write
 clean
188D9815000
unkown
page read and write
 clean
1E8DEBDF000
heap private
page read and write
 clean
7FF5D17F7000
unkown
page readonly
 clean
1767A77D000
unkown
page read and write
 clean
7FF5031B0000
unkown
page readonly
 clean
7FF5686E8000
unkown
page readonly
 clean
226D83D0000
unkown
page readonly
 clean
143F045E000
unkown
page read and write
 clean
7FF5A1416000
unkown
page readonly
 clean
1767B010000
unkown
page read and write
 clean
7FF4F4ACA000
unkown
page readonly
 clean
239B65F1000
heap default
page read and write
 clean
7FF587077000
unkown
page readonly
 clean
7FF58148E000
unkown
page readonly
 clean
7FF5A1117000
unkown
page readonly
 clean
1767A7EA000
unkown
page read and write
 clean
7FF567DE9000
unkown
page readonly
 clean
7FF58142F000
unkown
page readonly
 clean
3A9F078000
unkown
page read and write
 clean
25B3C802000
unkown
page read and write
 clean
7FF567F75000
unkown
page readonly
 clean
17679FF0000
unkown
page read and write
 clean
4BFCCFB000
unkown
page read and write
 clean
7FF5D17A9000
unkown
page readonly
 clean
7FF568774000
unkown
page readonly
 clean
188D8E30000
heap private
page read and write
 clean
17678687000
unkown
page read and write
 clean
1E37E03C000
unkown
page read and write
 clean
1767B110000
unkown
page read and write
 clean
9E0047B000
unkown
page read and write
 clean
188D9A01000
unkown
page read and write
 clean
143F0502000
unkown
page read and write
 clean
1D252BD0000
unkown
page readonly
 clean
4BFCEFD000
unkown
page read and write
 clean
452677B000
unkown
page read and write
 clean
1E65BA00000
unkown
page readonly
 clean
176785E0000
unkown
page readonly
 clean
1E8DE8E0000
unkown
page readonly
 clean
7FF511EA8000
unkown
page readonly
 clean
7FF511F75000
unkown
page readonly
 clean
7FF581762000
unkown
page readonly
 clean
1767A4F0000
unkown
page read and write
 clean
25B3AE68000
unkown
page read and write
 clean
239B7F50000
unkown
page read and write
 clean
1767A70F000
unkown
page read and write
 clean
7FF5D1711000
unkown
page readonly
 clean
7FF55B516000
unkown
page readonly
 clean
239B6580000
unkown
page readonly
 clean
7FF5817DC000
unkown
page readonly
 clean
7FF567CCC000
unkown
page readonly
 clean
23B47046000
unkown
page read and write
 clean
7FF511FD8000
unkown
page readonly
 clean
7FF56871F000
unkown
page readonly
 clean
188DE730000
unkown
page readonly
 clean
25B3ADF0000
unkown
page readonly
 clean
143F0390000
unkown
page read and write
 clean
23B47200000
unkown
page readonly
 clean
7FF56874C000
unkown
page readonly
 clean
4BFC67B000
unkown
page read and write
 clean
266D7C02000
unkown
page read and write
 clean
239B6590000
unkown
page read and write
 clean
1C9D2A44000
unkown
page read and write
 clean
1C9D2990000
heap private
page read and write
 clean
7FF567DAF000
unkown
page readonly
 clean
7FF5D1750000
unkown
page readonly
 clean
1767868C000
unkown
page read and write
 clean
7FF5813C2000
unkown
page readonly
 clean
99DFA7E000
unkown
page read and write
 clean
7FF55B1BC000
unkown
page readonly
 clean
266D7BF0000
unkown
page read and write
 clean
1CB6DE00000
unkown
page readonly
 clean
1D252CC3000
unkown
page read and write
 clean
7FF587041000
unkown
page readonly
 clean
7FF567CD8000
unkown
page readonly
 clean
AFDC0FD000
unkown
page read and write
 clean
188DE813000
unkown
page read and write
 clean
D10000
unkown
page read and write
 clean
143F045C000
unkown
page read and write
 clean
7FF58179F000
unkown
page readonly
 clean
CE07AFF000
unkown
page read and write
 clean
7FF555E64000
unkown
page readonly
 clean
7FF512025000
unkown
page readonly
 clean
4BFC87B000
unkown
page read and write
 clean
7FF55B526000
unkown
page readonly
 clean
1767A7FE000
unkown
page read and write
 clean
7FF56768F000
unkown
page readonly
 clean
7FF4F4BA9000
unkown
page readonly
 clean
829B7FE000
unkown
page read and write
 clean
1E65D2A0000
unkown
page readonly
 clean
7FF586E5F000
unkown
page readonly
 clean
9E0057E000
unkown
page read and write
 clean
7FF5687D1000
unkown
page readonly
 clean
7FF55B50D000
unkown
page readonly
 clean
23B47050000
unkown
page read and write
 clean
D80000
unkown
page read and write
 clean
1CB6DC02000
unkown
page read and write
 clean
25B3AE4B000
unkown
page read and write
 clean
226D8600000
unkown
page readonly
 clean
7FF55B51C000
unkown
page readonly
 clean
7FF5686D2000
unkown
page readonly
 clean
7FF5DD9B5000
unkown
page readonly
 clean
226D8502000
unkown
page read and write
 clean
176786B2000
unkown
page read and write
 clean
1767A799000
unkown
page read and write
 clean
7FF58175D000
unkown
page readonly
 clean
1CB6E360000
unkown
page readonly
 clean
7FF567B65000
unkown
page readonly
 clean
7FF5D157B000
unkown
page readonly
 clean
7FF587065000
unkown
page readonly
 clean
7FF55B2DC000
unkown
page readonly
 clean
7FF58172A000
unkown
page readonly
 clean
17678613000
unkown
page read and write
 clean
7FF581670000
unkown
page readonly
 clean
25B3C7A0000
unkown
page read and write
 clean
1D252D02000
unkown
page read and write
 clean
239B8360000
unkown
page readonly
 clean
7FF5D16F1000
unkown
page readonly
 clean
188DE4F8000
unkown
page read and write
 clean
D10000
unkown
page read and write
 clean
7FF5817F0000
unkown
page readonly
 clean
7FF55616D000
unkown
page readonly
 clean
7FF5D1727000
unkown
page readonly
 clean
7FF5E0120000
unkown
page readonly
 clean
239B65ED000
heap default
page read and write
 clean
1E8DD00B000
heap default
page read and write
 clean
266D7D02000
unkown
page read and write
 clean
188DE534000
unkown
page read and write
 clean
7FF51175F000
unkown
page readonly
 clean
7FF55B483000
unkown
page readonly
 clean
7FF5D145D000
unkown
page readonly
 clean
7FF5DF9D5000
unkown
page readonly
 clean
7FF568729000
unkown
page readonly
 clean
7FF5DDDDD000
unkown
page readonly
 clean
7FF5E0196000
unkown
page readonly
 clean
2B2817B000
unkown
page read and write
 clean
25B3AD00000
heap default
page read and write
 clean
4BFC6FB000
unkown
page read and write
 clean
239B6590000
unkown
page read and write
 clean
7FF5120DE000
unkown
page readonly
 clean
7FF5031B7000
unkown
page readonly
 clean
7FF58178E000
unkown
page readonly
 clean
7FF56873D000
unkown
page readonly
 clean
1E37E083000
unkown
page read and write
 clean
17678725000
unkown
page read and write
 clean
266D7B30000
heap private
page read and write
 clean
17678768000
unkown
page read and write
 clean
7FF5BED25000
unkown
page readonly
 clean
7FF567F36000
unkown
page readonly
 clean
226D83F0000
unkown
page read and write
 clean
1767A840000
unkown
page read and write
 clean
266D7E00000
unkown
page readonly
 clean
4BFCF7B000
unkown
page read and write
 clean
7FF5A1411000
unkown
page readonly
 clean
143F0486000
unkown
page read and write
 clean
1CB6E340000
unkown
page read and write
 clean
7FF4F4B9E000
unkown
page readonly
 clean
1767A700000
unkown
page read and write
 clean
1E37DF60000
unkown
page readonly
 clean
17678725000
unkown
page read and write
 clean
1E65B6A0000
heap default
page read and write
 clean
7FF5A0C8F000
unkown
page readonly
 clean
7FF5E0221000
unkown
page readonly
 clean
1E8DD270000
unkown
page readonly
 clean
7FF5A138C000
unkown
page readonly
 clean
239B6590000
unkown
page read and write
 clean
143F0400000
unkown
page read and write
 clean
239B6610000
heap default
page read and write
 clean
1C9D2A00000
unkown
page read and write
 clean
1E65B6B0000
unkown
page readonly
 clean
7FF5D1859000
unkown
page readonly
 clean
AFDBC7E000
unkown
page read and write
 clean
239B6540000
unkown
page readonly
 clean
1C9D2A3A000
unkown
page read and write
 clean
7FF50317D000
unkown
page readonly
 clean
188D8E90000
heap default
page read and write
 clean
7FF581766000
unkown
page readonly
 clean
7FF5E019C000
unkown
page readonly
 clean
1E8DD011000
unkown
page read and write
 clean
7FF567DC8000
unkown
page readonly
 clean
1E8DCEC0000
unkown
page readonly
 clean
CD0000
unkown
page read and write
 clean
17678850000
unkown
page readonly
 clean
7FF5B16BD000
unkown
page readonly
 clean
1E65B813000
unkown
page read and write
 clean
7FF5DDE79000
unkown
page readonly
 clean
1E37E660000
unkown
page readonly
 clean
1767B110000
unkown
page read and write
 clean
829B67E000
unkown
page read and write
 clean
188DE530000
unkown
page read and write
 clean
7FF4F4351000
unkown
page readonly
 clean
188D9076000
unkown
page read and write
 clean
188DE630000
unkown
page read and write
 clean
1767B000000
unkown
page read and write
 clean
25B3ADE0000
unkown
page readonly
 clean
23B46E60000
unkown
page readonly
 clean
7FF5D1391000
unkown
page readonly
 clean
239B6590000
unkown
page read and write
 clean
176786ED000
unkown
page read and write
 clean
226D82F0000
heap default
page read and write
 clean
4BFCB7C000
unkown
page read and write
 clean
75E577D000
unkown
page read and write
 clean
9930BDC000
unkown
page read and write
 clean
7FF567D2F000
unkown
page readonly
 clean
7FF567D39000
unkown
page readonly
 clean
1E8DD2A0000
heap private
page read and write
 clean
1D252C6D000
unkown
page read and write
 clean
993137E000
unkown
page read and write
 clean
7FF5B1751000
unkown
page readonly
 clean
7FF56875C000
unkown
page readonly
 clean
7FF5D1618000
unkown
page readonly
 clean
99DF73B000
unkown
page read and write
 clean
17678500000
heap default
page read and write
 clean
266D8260000
unkown
page readonly
 clean
7FF58704C000
unkown
page readonly
 clean
176786CF000
unkown
page read and write
 clean
7FF5687CE000
unkown
page readonly
 clean
18E87FF000
unkown
page read and write
 clean
1767B410000
unkown
page read and write
 clean
1E37E802000
unkown
page read and write
 clean
7FF5A0FDD000
unkown
page readonly
 clean
1D252E00000
unkown
page readonly
 clean
D10000
unkown
page read and write
 clean
7FF555A19000
unkown
page readonly
 clean
E2E000
heap default
page read and write
 clean
7FF503112000
unkown
page readonly
 clean
7FF5029C1000
unkown
page readonly
 clean
7FF567DE9000
unkown
page readonly
 clean
239B8371000
unkown
page read and write
 clean
188DE5C4000
unkown
page readonly
 clean
7FF5E01C4000
unkown
page readonly
 clean
7FF58184E000
unkown
page readonly
 clean
7FFB51D80000
unkown image
page readonly
 clean
1C9D2A63000
unkown
page read and write
 clean
1767AB82000
unkown
page read and write
 clean
7FF512080000
unkown
page readonly
 clean
7FF4F49E1000
unkown
page readonly
 clean
7FF512087000
unkown
page readonly
 clean
188DE511000
unkown
page read and write
 clean
7FF502FEA000
unkown
page readonly
 clean
7FF5678D1000
unkown
page readonly
 clean
143F0461000
unkown
page read and write
 clean
F6B97F000
unkown
page read and write
 clean
1C9D2A48000
unkown
page read and write
 clean
188D9089000
unkown
page read and write
 clean
1C9D2A49000
unkown
page read and write
 clean
188D9918000
unkown
page read and write
 clean
7FF5B16F0000
unkown
page readonly
 clean
7FF5DDBA7000
unkown
page readonly
 clean
2DAE000
unkown
page read and write
 clean
239B839E000
unkown
page read and write
 clean
7FF567DEA000
unkown
page readonly
 clean
7FF5BED99000
unkown
page readonly
 clean
7FF5682E0000
unkown
page readonly
 clean
266D7BF0000
unkown
page read and write
 clean
7FFB51DA9000
unkown image
page readonly
 clean
188D9918000
unkown
page read and write
 clean
188D9087000
unkown
page read and write
 clean
1767AB00000
unkown
page read and write
 clean
1D253402000
unkown
page read and write
 clean
143F0429000
unkown
page read and write
 clean
7FF5B0EFC000
unkown
page readonly
 clean
7FF5E0179000
unkown
page readonly
 clean
7FF503219000
unkown
page readonly
 clean
1E8DD2B0000
unkown
page readonly
 clean
7FF5A1447000
unkown
page readonly
 clean
7FF5B1759000
unkown
page readonly
 clean
266D7C00000
unkown
page read and write
 clean
CF0000
unkown
page readonly
 clean
829B87A000
unkown
page read and write
 clean
1767A757000
unkown
page read and write
 clean
7FF5817C6000
unkown
page readonly
 clean
188DE4FE000
unkown
page read and write
 clean
1767A72E000
unkown
page read and write
 clean
7FF5DDE70000
unkown
page readonly
 clean
25B3AF29000
unkown
page read and write
 clean
176784A0000
heap private
page read and write
 clean
7FF587056000
unkown
page readonly
 clean
7FF567D84000
unkown
page readonly
 clean
1CB6E940000
unkown
page readonly
 clean
7FF4F4A1C000
unkown
page readonly
 clean
7FF5B147A000
unkown
page readonly
 clean
1767AB02000
unkown
page read and write
 clean
226D8500000
unkown
page read and write
 clean
7FF5D13EE000
unkown
page readonly
 clean
1767A602000
unkown
page read and write
 clean
4BFCC7C000
unkown
page read and write
 clean
1E37DF70000
unkown
page read and write
 clean
7FF55B535000
unkown
page readonly
 clean
17678767000
unkown
page read and write
 clean
7FF5DDD88000
unkown
page readonly
 clean
F6B67B000
unkown
page read and write
 clean
1767A7EB000
unkown
page read and write
 clean
266D7BA0000
unkown
page readonly
 clean
7FF5687D9000
unkown
page readonly
 clean
7FF555F70000
unkown
page readonly
 clean
188D9113000
unkown
page read and write
 clean
7FF503110000
unkown
page readonly
 clean
7FF502F9F000
unkown
page readonly
 clean
188DE800000
unkown
page read and write
 clean
7FF581750000
unkown
page readonly
 clean
143F0452000
unkown
page read and write
 clean
7FF511E88000
unkown
page readonly
 clean
239B8379000
unkown
page read and write
 clean
7FF5817F4000
unkown
page readonly
 clean
239B7E60000
unkown
page readonly
 clean
226D8290000
heap private
page read and write
 clean
7FF511E4E000
unkown
page readonly
 clean
7FF5D1768000
unkown
page readonly
 clean
1D390ED0000
unkown
page read and write
 clean
25B3AE00000
unkown
page read and write
 clean
1767A736000
unkown
page read and write
 clean
239B65C0000
heap default
page read and write
 clean
25B3AE3F000
unkown
page read and write
 clean
7FF567BCD000
unkown
page readonly
 clean
1D390F10000
heap default
page read and write
 clean
4BFCE7B000
unkown
page read and write
 clean
7FF5D15DF000
unkown
page readonly
 clean
1767AA82000
unkown
page read and write
 clean
239B6633000
unkown
page read and write
 clean
CE07DFD000
unkown
page read and write
 clean
D1759FD000
unkown
page read and write
 clean
188D9040000
unkown
page read and write
 clean
226D8429000
unkown
page read and write
 clean
7FF511E6F000
unkown
page readonly
 clean
7FF567F6F000
unkown
page readonly
 clean
18E867E000
unkown
page read and write
 clean
1CB6E402000
unkown
page read and write
 clean
239B6590000
unkown
page read and write
 clean
239B8000000
unkown
page read and write
 clean
188D9EE0000
unkown
page read and write
 clean
10A0000
unkown
page read and write
 clean
188D8FA0000
unkown
page read and write
 clean
7FF5BED0C000
unkown
page readonly
 clean
1CB6DC70000
unkown
page read and write
 clean
4BFC8FB000
unkown
page read and write
 clean
7FF5031B4000
unkown
page readonly
 clean
143F0460000
unkown
page read and write
 clean
23B47660000
unkown
page readonly
 clean
7FF567F32000
unkown
page readonly
 clean
25B3AE4D000
unkown
page read and write
 clean
D10000
unkown
page read and write
 clean
7FF511FE0000
unkown
page readonly
 clean
143F0370000
unkown
page readonly
 clean
7FF5DDDAE000
unkown
page readonly
 clean
7FF567FC4000
unkown
page readonly
 clean
188D9054000
unkown
page read and write
 clean
7FF55B547000
unkown
page readonly
 clean
7FF5817F7000
unkown
page readonly
 clean
25B3AF00000
unkown
page read and write
 clean
239B8350000
unkown
page read and write
 clean
7FF556112000
unkown
page readonly
 clean
7FF5A14A1000
unkown
page readonly
 clean
7FF567F18000
unkown
page readonly
 clean
1767871C000
unkown
page read and write
 clean
239B8000000
unkown
page read and write
 clean
7FF567C8A000
unkown
page readonly
 clean
18E83FB000
unkown
page read and write
 clean
7FF5E0136000
unkown
page readonly
 clean
1767A8CC000
unkown
page read and write
 clean
7FF5A1354000
unkown
page readonly
 clean
D1756FE000
unkown
page read and write
 clean
239B6590000
unkown
page read and write
 clean
1D253500000
unkown
page read and write
 clean
188DE4F0000
unkown
page read and write
 clean
7FF511D97000
unkown
page readonly
 clean
2B28A7F000
unkown
page read and write
 clean
7FF567CE2000
unkown
page readonly
 clean
7FF511FF8000
unkown
page readonly
 clean
7FF5E01C0000
unkown
page readonly
 clean
3A9F1F9000
unkown
page read and write
 clean
7FF55B44A000
unkown
page readonly
 clean
7FF5BED99000
unkown
page readonly
 clean
1767A4D0000
unkown
page read and write
 clean
4BFC4FB000
unkown
page read and write
 clean
188D90A9000
unkown
page read and write
 clean
7FF5E0138000
unkown
page readonly
 clean
7FF4F469A000
unkown
page readonly
 clean
7FF5BECE9000
unkown
page readonly
 clean
7FF5B0DBC000
unkown
page readonly
 clean
1767A4C0000
unkown
page readonly
 clean
7FF5817C1000
unkown
page readonly
 clean
1767A839000
unkown
page read and write
 clean
25B3C7F0000
unkown
page read and write
 clean
4526A7F000
unkown
page read and write
 clean
1E8DE8F0000
unkown
page readonly
 clean
7FF502D20000
unkown
page readonly
 clean
7FF5677CC000
unkown
page readonly
 clean
7FF5A1113000
unkown
page readonly
 clean
7FF58701F000
unkown
page readonly
 clean
7FF5D0FFD000
unkown
page readonly
 clean
7FF5675BB000
unkown
page readonly
 clean
18E877E000
unkown
page read and write
 clean
7FF4F4AB2000
unkown
page readonly
 clean
188DE520000
unkown
page read and write
 clean
239B7FB0000
unkown
page read and write
 clean
176786D7000
unkown
page read and write
 clean
1767A712000
unkown
page read and write
 clean
188DE8AD000
unkown
page read and write
 clean
7FF5120E1000
unkown
page readonly
 clean
1E8DCFDB000
heap default
page read and write
 clean
7FF5A1341000
unkown
page readonly
 clean
1767B210000
unkown
page read and write
 clean
239B6550000
heap private
page read and write
 clean
7FF503186000
unkown
page readonly
 clean
4BFCBFC000
unkown
page read and write
 clean
7FF503008000
unkown
page readonly
 clean
BAF977E000
unkown
page read and write
 clean
188DA010000
unkown
page readonly
 clean
7FF5870D1000
unkown
page readonly
 clean
4BFC27E000
unkown
page read and write
 clean
7FF567DE1000
unkown
page readonly
 clean
1C9D3150000
unkown
page read and write
 clean
198E6050000
heap default
page read and write
 clean
1C9D3202000
unkown
page read and write
 clean
7FF5DDDC9000
unkown
page readonly
 clean
7FF5E0191000
unkown
page readonly
 clean
1D252C51000
unkown
page read and write
 clean
7FF55B32F000
unkown
page readonly
 clean
1C9D2A13000
unkown
page read and write
 clean
7FF5A1426000
unkown
page readonly
 clean
18E887F000
unkown
page read and write
 clean
D00000
heap private
page read and write
 clean
25B3B390000
unkown
page readonly
 clean
1767B310000
unkown
page read and write
 clean
226D845D000
unkown
page read and write
 clean
7FF5682CA000
unkown
page readonly
 clean
1767A4D0000
unkown
page read and write
 clean
1C9D2A61000
unkown
page read and write
 clean
239B8340000
unkown
page readonly
 clean
7FF567CF6000
unkown
page readonly
 clean
1E8DCF90000
unkown
page read and write
 clean
188D9099000
unkown
page read and write
 clean
7FF556159000
unkown
page readonly
 clean
1D2532B0000
unkown
page readonly
 clean
7FF5A11CB000
unkown
page readonly
 clean
7FF5D1748000
unkown
page readonly
 clean
7FF5B0E29000
unkown
page readonly
 clean
188DE5F4000
unkown
page write copy
 clean
D1758FC000
unkown
page read and write
 clean
266D7C3D000
unkown
page read and write
 clean
7FF567C84000
unkown
page readonly
 clean
188DE520000
unkown
page read and write
 clean
7FF58161B000
unkown
page readonly
 clean
7FF503128000
unkown
page readonly
 clean
7FF5E01B5000
unkown
page readonly
 clean
7FF4F4B47000
unkown
page readonly
 clean
1E65D1A0000
unkown
page read and write
 clean
7FF567F9C000
unkown
page readonly
 clean
7FF4F4B16000
unkown
page readonly
 clean
7FF5686E6000
unkown
page readonly
 clean
7FF5A13CA000
unkown
page readonly
 clean
188D90F8000
unkown
page read and write
 clean
7FF5DDDE1000
unkown
page readonly
 clean
239B63C0000
unkown
page readonly
 clean
239B65A0000
unkown
page read and write
 clean
7FF55B48C000
unkown
page readonly
 clean
7FF567D1E000
unkown
page readonly
 clean
7FF55B4EF000
unkown
page readonly
 clean
274E000
unkown
page read and write
 clean
239B7F60000
unkown
page read and write
 clean
2B2847F000
unkown
page read and write
 clean
7FF5A1383000
unkown
page readonly
 clean
There are 1479 hidden memdumps, click here to show them.