Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
http://scheduling.mesacountyhealth.com/public/covidInitialDose/instructions/en.html
|
URL
|
initial url
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{5E9EA401-8862-11EB-90E4-ECF4BB862DED}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{5E9EA403-8862-11EB-90E4-ECF4BB862DED}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{5E9EA404-8862-11EB-90E4-ECF4BB862DED}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\ynfz0jx\imagestore.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\Homepage-buttons-12[1].png
|
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\Homepage-buttons-19[1].png
|
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\Homepage-buttons-20[1].png
|
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\Homepage-buttons-22[1].png
|
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\Homepage-buttons-4-1[1].png
|
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\KFOiCnqEu92Fr1Mu51QrEz4dKQ[1].woff
|
Web Open Font Format, TrueType, length 30840, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\KFOjCnqEu92Fr1Mu51TLBCc0CsI[1].woff
|
Web Open Font Format, TrueType, length 31664, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\KFOjCnqEu92Fr1Mu51TzBic0CsI[1].woff
|
Web Open Font Format, TrueType, length 30908, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\KFOkCnqEu92Fr1MmgVxGIzQ[1].woff
|
Web Open Font Format, TrueType, length 28936, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\KFOkCnqEu92Fr1Mu51xGIzQ[1].woff
|
Web Open Font Format, TrueType, length 31092, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\KFOlCnqEu92Fr1MmSU5fChc-[1].woff
|
Web Open Font Format, TrueType, length 29108, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\KFOlCnqEu92Fr1MmWUlfBBc-[1].woff
|
Web Open Font Format, TrueType, length 20356, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\MCPH-Logo-Tag-Transparent[1].png
|
PNG image data, 974 x 286, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\init_embed[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\main[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\openhand_8_8[1].bmp
|
MS Windows cursor resource - 1 icon, 32x32, 2 colors, hotspot @8x8
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\overlay[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\pxiByp8kv8JHgFVrLGT9Z1JlEw[1].woff
|
Web Open Font Format, TrueType, length 14268, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\pxiDyp8kv8JHgFVrJJLm21lVGdeI[1].woff
|
Web Open Font Format, TrueType, length 15768, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\pxiEyp8kv8JHgFVrJJnedA[1].woff
|
Web Open Font Format, TrueType, length 14520, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\pxiGyp8kv8JHgFVrJJLufntG[1].woff
|
Web Open Font Format, TrueType, length 15660, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\style.min[1].css
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\style[1].css
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\tablepress-combined.min[1].css
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\translateelement[1].css
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\vt[1].png
|
PNG image data, 256 x 256, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\vt[2].png
|
PNG image data, 256 x 256, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\vt[3].png
|
PNG image data, 256 x 256, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\vt[4].png
|
PNG image data, 256 x 256, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\vt[5].png
|
PNG image data, 256 x 256, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\wp-emoji-release.min[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\wp_head[1].css
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\KFOlCnqEu92Fr1MmEU9fBBc-[1].woff
|
Web Open Font Format, TrueType, length 20464, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\KFOlCnqEu92Fr1MmSU5fBBc-[1].woff
|
Web Open Font Format, TrueType, length 20348, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\KFOlCnqEu92Fr1MmYUtfChc-[1].woff
|
Web Open Font Format, TrueType, length 29072, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\KFOmCnqEu92Fr1Mu4mxM[1].woff
|
Web Open Font Format, TrueType, length 20268, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\analytics[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\blankshield.min[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\common[1].js
|
ASCII text
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\cropped-MCPH-Logo-Tag-Transparent-32x32[1].png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\css[1].css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\custom.unified[1].js
|
UTF-8 Unicode text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\embed[1].htm
|
HTML document, UTF-8 Unicode text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\en[1].htm
|
HTML document, ASCII text
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\entity11[1].png
|
PNG image data, 70 x 210, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\google4[1].png
|
PNG image data, 66 x 26, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\js[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\js[2].js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\kh[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 256x256, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\map[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\mem5YaGs126MiZpBA-UN7rgOXOhv[1].woff
|
Web Open Font Format, TrueType, length 25196, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\mem5YaGs126MiZpBA-UN8rsOXOhv[1].woff
|
Web Open Font Format, TrueType, length 25684, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\mem5YaGs126MiZpBA-UN_r8OXOhv[1].woff
|
Web Open Font Format, TrueType, length 25004, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\mem5YaGs126MiZpBA-UNirkOXOhv[1].woff
|
Web Open Font Format, TrueType, length 25196, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\mem8YaGs126MiZpBA-UFW50d[1].woff
|
Web Open Font Format, TrueType, length 24364, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\memnYaGs126MiZpBA-UFUKXGUdhlIqU[1].woff
|
Web Open Font Format, TrueType, length 23696, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\modules[1].eot
|
Embedded OpenType (EOT), modules family
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\pxiAyp8kv8JHgFVrJJLmE0tMMPQ[1].woff
|
Web Open Font Format, TrueType, length 15216, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\pxiByp8kv8JHgFVrLDz8Z1JlEw[1].woff
|
Web Open Font Format, TrueType, length 14440, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\pxiByp8kv8JHgFVrLFj_Z1JlEw[1].woff
|
Web Open Font Format, TrueType, length 14444, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\pxiDyp8kv8JHgFVrJJLmv1pVGdeI[1].woff
|
Web Open Font Format, TrueType, length 15736, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\pxiGyp8kv8JHgFVrLPTufntG[1].woff
|
Web Open Font Format, TrueType, length 13840, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\vt[1].png
|
PNG image data, 256 x 256, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\vt[2].png
|
PNG image data, 256 x 256, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\vt[3].png
|
PNG image data, 256 x 256, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\vt[4].png
|
PNG image data, 256 x 256, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\wp-embed.min[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\wp_footer[1].js
|
HTML document, ASCII text, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\Homepage-buttons-17[1].png
|
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\KFOjCnqEu92Fr1Mu51TjASc0CsI[1].woff
|
Web Open Font Format, TrueType, length 31600, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\KFOmCnqEu92Fr1Mu7GxM[1].woff
|
Web Open Font Format, TrueType, length 29040, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\dashicons.min[1].css
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\element_main[1].js
|
HTML document, ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\et-core-unified-290-16160952701986.min[1].css
|
ASCII text, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\et-core-unified-tb-229597-290-16160952701986.min[1].css
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\f[1].txt
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\f[2].txt
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\favicon[1].ico
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\jquery.min[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\mem6YaGs126MiZpBA-UFUK0Xdcs[1].woff
|
Web Open Font Format, TrueType, length 23440, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\memnYaGs126MiZpBA-UFUKW-U9hlIqU[1].woff
|
Web Open Font Format, TrueType, length 23868, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\memnYaGs126MiZpBA-UFUKWiUNhlIqU[1].woff
|
Web Open Font Format, TrueType, length 23408, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\memnYaGs126MiZpBA-UFUKWyV9hlIqU[1].woff
|
Web Open Font Format, TrueType, length 23520, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\onion[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\pxiDyp8kv8JHgFVrJJLm111VGdeI[1].woff
|
Web Open Font Format, TrueType, length 15608, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\pxiDyp8kv8JHgFVrJJLm81xVGdeI[1].woff
|
Web Open Font Format, TrueType, length 15260, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\pxiDyp8kv8JHgFVrJJLmg1hVGdeI[1].woff
|
Web Open Font Format, TrueType, length 15376, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\pxiDyp8kv8JHgFVrJJLmr19VGdeI[1].woff
|
Web Open Font Format, TrueType, length 15736, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\pxiDyp8kv8JHgFVrJJLmy15VGdeI[1].woff
|
Web Open Font Format, TrueType, length 15508, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\search_impl[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\style[1].css
|
ASCII text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\translate_24dp[1].png
|
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\translate_24dp[2].png
|
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\u-440qyriQwlOrhSvowK_l5-ciZK[1].woff
|
Web Open Font Format, TrueType, length 35696, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\u-4n0qyriQwlOrhSvowK_l52_wFZVsf8[1].woff
|
Web Open Font Format, TrueType, length 35124, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\u-4n0qyriQwlOrhSvowK_l52xwNZVsf8[1].woff
|
Web Open Font Format, TrueType, length 35060, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\vt[1].png
|
PNG image data, 256 x 256, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\vt[2].png
|
PNG image data, 256 x 256, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\vt[3].png
|
PNG image data, 256 x 256, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\ACSO60C5.htm
|
HTML document, UTF-8 Unicode text, with very long lines, with CRLF, LF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\AuthenticationService[1].js
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\Homepage-buttons-13[1].png
|
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\Homepage-buttons-14[1].png
|
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\Homepage-buttons-15[1].png
|
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\Homepage-buttons-16[1].png
|
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\KFOjCnqEu92Fr1Mu51S7ACc0CsI[1].woff
|
Web Open Font Format, TrueType, length 31280, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\KFOlCnqEu92Fr1MmEU9fChc-[1].woff
|
Web Open Font Format, TrueType, length 29076, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\KFOlCnqEu92Fr1MmWUlfChc-[1].woff
|
Web Open Font Format, TrueType, length 29092, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\MCPH_Blue3.14[1].jpg
|
[TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2],
baseline, precision 8, 700x395, frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\QuotaService[1].js
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\QuotaService[2].js
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\Untitled-design-32[1].png
|
PNG image data, 500 x 100, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\ViewportInfoService[1].js
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\ViewportInfoService[2].js
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\block-tabnapping.min[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\common[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\controls[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\css[1].css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\en[1].htm
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\googlelogo_color_42x16dp[1].png
|
PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\gtranslate-style16[1].css
|
ASCII text
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\jquery-migrate.min[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\pxiByp8kv8JHgFVrLBT5Z1JlEw[1].woff
|
Web Open Font Format, TrueType, length 13988, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\pxiByp8kv8JHgFVrLCz7Z1JlEw[1].woff
|
Web Open Font Format, TrueType, length 14340, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\pxiByp8kv8JHgFVrLDD4Z1JlEw[1].woff
|
Web Open Font Format, TrueType, length 14400, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\pxiByp8kv8JHgFVrLEj6Z1JlEw[1].woff
|
Web Open Font Format, TrueType, length 14556, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\u-4l0qyriQwlOrhSvowK_l5-eR71Wvf2jvo[1].woff
|
Web Open Font Format, TrueType, length 35896, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\u-4l0qyriQwlOrhSvowK_l5-eR7NWPf2jvo[1].woff
|
Web Open Font Format, TrueType, length 35668, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\u-4l0qyriQwlOrhSvowK_l5-eR7lXff2jvo[1].woff
|
Web Open Font Format, TrueType, length 35348, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\u-4m0qyriQwlOrhSvowK_l5-eRZAf-Q[1].woff
|
Web Open Font Format, TrueType, length 35480, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\u-4n0qyriQwlOrhSvowK_l521wRZVsf8[1].woff
|
Web Open Font Format, TrueType, length 35336, version 1.1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\util[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\vt[1].png
|
PNG image data, 256 x 256, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\vt[2].png
|
PNG image data, 256 x 256, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\vt[3].png
|
PNG image data, 256 x 256, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\vt[4].png
|
PNG image data, 256 x 256, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF26038EAB59A3EBED.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DFB413126732D5739A.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DFE78E318E656894F2.TMP
|
data
|
dropped
|
|
There are 134 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\internet explorer\iexplore.exe
|
'C:\Program Files\Internet Explorer\iexplore.exe' -Embedding
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5980 CREDAT:17410 /prefetch:2
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://robert-fleischmann.de)
|
unknown
|
|
|
|
http://www.broofa.com
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/2017/04/cropped-MCPH-Logo-Tag-Transparent-270x270.pn
|
unknown
|
|
|
|
https://health.mesacounty.us/covid19/
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/2017/04/MCPH-Logo-Tag-Transparent-300x88.png
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/Homepage-buttons-17.png
|
unknown
|
|
|
|
https://scheduling.mesacountyhealth.com/public/covidInitialDose/instructions/en.html
|
|
||
|
http://g.co/dev/maps-no-account
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/tablepress-combined.min.css?ver=3
|
unknown
|
|
|
|
https://health.mesacounty.us/data-reports/
|
unknown
|
|
|
|
https://github.com/danielstjules/blankshield
|
unknown
|
|
|
|
http://benalman.com/about/license/
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-json/oembed/1.0/embed?url=https%3A%2F%2Fhealth.mesacounty.us%2F&
|
unknown
|
|
|
|
https://lh6.ggpht.com/
|
unknown
|
|
|
|
http://www.opensource.org/licenses/mit-license.php
|
unknown
|
|
|
|
http://health.mesacounty.us/
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/Homepage-buttons-22-150x150.png
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-json/oembed/1.0/embed?url=https%3A%2F%2Fhealth.mesacounty.us%2F
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/themes/Divi/js/custom.unified.js?ver=4.9.0
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/plugins/divi-booster/core/icons/socicon/fonts/Socicon.svg?87
|
unknown
|
|
|
|
http://www.gnu.org/licenses/gpl-2.0.html
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/Homepage-buttons-15.png
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/Homepage-buttons-20-150x150.png
|
unknown
|
|
|
|
https://lh3.ggpht.com/
|
unknown
|
|
|
|
https://scheduling.mesacountyhealth.com/public/covidInitialDose/instructions/en.htmlRoot
|
unknown
|
|
|
|
http://ns.attribution.com/ads/1.0/
|
unknown
|
|
|
|
https://health.mesacounty.us/xmlrpc.php
|
unknown
|
|
|
|
https://stats.g.doubleclick.net/j/collect
|
unknown
|
|
|
|
https://geo0.ggpht.com/cbk
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/2017/04/cropped-MCPH-Logo-Tag-Transparent-32x32.png
|
unknown
|
|
|
|
https://scheduling.mesacountyhealth.com/public/covidInitialDose/instructions/en.htmlDDrive
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/Homepage-buttons-4-1-150x150.png
|
unknown
|
|
|
|
https://health.mesacounty.us
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-includes/css/dist/block-library/style.min.css?ver=5.6.1
|
unknown
|
|
|
|
https://health.mesacounty.us/comments/feed/
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/MCPH_Blue3.14.jpg
|
unknown
|
|
|
|
https://health.mesacounty.us/feed/
|
unknown
|
|
|
|
https://www.instagram.com/mcphinaction/
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/plugins/divi-booster/core/icons/socicon/fonts/Socicon.woff?8
|
unknown
|
|
|
|
http://scheduling.mesacountyhealth.com/public/covidInitialDose/instructions/en.html
|
64.111.99.224
|
|
|
|
https://health.mesacounty.us/wp-content/plugins/divi-booster/core/icons/socicon/style.css?ver=3.3.9
|
unknown
|
|
|
|
http://maps.gstatic.cn/mapfiles/embed/images/entity11.png)
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/MCPH_Blue3.14-480x271.jpg
|
unknown
|
|
|
|
https://lh5.ggpht.com/
|
unknown
|
|
|
|
https://schedulinnty.us/ealth.com/public/covidInitialDose/instructions/en.htmlRoot
|
unknown
|
|
|
|
https://health.mesacounty.us/conditions_airquality/
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/plugins/divi-booster/core/icons/socicon/fonts/Socicon.eot?87
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/themes/Divi/core/admin/fonts/modules.ttf
|
unknown
|
|
|
|
https://health.mesacounty.us/news/
|
unknown
|
|
|
|
http://benalman.com/projects/jquery-hashchange-plugin/
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
|
unknown
|
|
|
|
https://github.com/imakewebthings/waypoints/blog/master/licenses.txt
|
unknown
|
|
|
|
https://health.mesacounty.us/immunizations/
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/wtfdivi/wp_head.css?ver=1607306625
|
unknown
|
|
|
|
https://cct.google/taggy/agent.js
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/Homepage-buttons-12.png
|
unknown
|
|
|
|
https://health.mesacouacountyhealth.com/public/covidInitialDose/instructions/en.html
|
unknown
|
|
|
|
http://www.elegantthemes.com/gallery/divi/
|
unknown
|
|
|
|
https://health.mesacounty.us/emergency-preparedness/
|
unknown
|
|
|
|
https://health.mesacounty.us/document-library/
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/themes/Divi/core/admin/js/common.js?ver=4.9.0
|
unknown
|
|
|
|
http://maps.gstatic.cn
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/2017/04/MCPH-Logo-Tag-Transparent-50x15.png
|
unknown
|
|
|
|
https://www.google.%/ads/ga-audiences
|
unknown
|
|
|
|
https://health.mesacounty.us/pediatric-health-care-support/
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/Homepage-buttons-19.png
|
unknown
|
|
|
|
https://health.mesacounty.us/restaurant-inspection-search/
|
unknown
|
|
|
|
https://health.mesacounty.us/variance-protection-program/
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/2017/04/MCPH-Logo-Tag-Transparent-768x226.png
|
unknown
|
|
|
|
https://scheduling.mesacountyhealth.com/public/covidInitialDose/instructions/en.html
|
unknown
|
|
|
|
https://health.mesacou
|
unknown
|
|
|
|
https://health.mesacounty.us/our-agency/
|
unknown
|
|
|
|
https://health.mesacounty.us/body-art/
|
unknown
|
|
|
|
https://health.mesacounty.us/ealth.com/public/covidInitialDose/instructions/en.html
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/et-cache/290/et-core-unified-290-16160952701986.min.css
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/plugins/divi-booster/core/icons/socicon/fonts/Socicon.ttf?87
|
unknown
|
|
|
|
http://www.elegantthemes.com
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/Untitled-design-32.png
|
unknown
|
|
|
|
https://www.linkedin.com/company/mesa-county-public-health/
|
unknown
|
|
|
|
https://health.mesacounty.us/board-of-health/
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/2017/04/MCPH-Logo-Tag-Transparent-150x44.png
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/plugins/gtranslate/gtranslate-style16.css?ver=5.6.1
|
unknown
|
|
|
|
https://health.mesacounty.us/ealth.com/public/covidInitialDose/instructions/en.htmlTL0
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/2017/04/cropped-MCPH-Logo-Tag-Transparent-180x180.pn
|
unknown
|
|
|
|
https://scheduling.mesacountyhealth.com/favicon.ico
|
unknown
|
|
|
|
http://maps.google.cn
|
unknown
|
|
|
|
https://health.mesacounty.us/blueribbonaward/
|
unknown
|
|
|
|
https://health.mesacounty.us/medicaid-chp/
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/Homepage-buttons-16.png
|
unknown
|
|
|
|
https://health.mesacounty.us/women-infants-children-wic/
|
unknown
|
|
|
|
http://www.google.cn
|
unknown
|
|
|
|
https://geo1.ggpht.com/cbk
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/2017/04/cropped-MCPH-Logo-Tag-Transparent-192x192.pn
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-includes/js/wp-embed.min.js?ver=5.6.1
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
|
unknown
|
|
|
|
http://daneden.me/animate
|
unknown
|
|
|
|
https://gtranslate.io/
|
unknown
|
|
|
|
https://health.mesacounty.us/openburn/
|
unknown
|
|
|
|
https://health.mesacounty.us/wp-content/uploads/Homepage-buttons-16-150x150.png
|
unknown
|
|
|
|
https://health.mesacounty.us/flu-meter/
|
unknown
|
|
There are 90 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
stats.l.doubleclick.net
|
64.233.167.156
|
|
|
|
scheduling.mesacountyhealth.com
|
64.111.99.224
|
|
|
|
health.mesacounty.us
|
108.167.186.86
|
|
|
|
stats.g.doubleclick.net
|
unknown
|
|
IPs
|
IP
|
Domain
|
Country
|
Active
|
Malicious
|
|
|---|---|---|---|---|---|
|
64.233.167.156
|
stats.l.doubleclick.net
|
United States
|
unknown
|
|
|
|
108.167.186.86
|
health.mesacounty.us
|
United States
|
unknown
|
|
|
|
64.111.99.224
|
scheduling.mesacountyhealth.com
|
United States
|
unknown
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\internet explorer\iexplore.exe
|
{5E9EA401-8862-11EB-90E4-ECF4BB862DED}
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
AdminActive
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
CVListPingLastYMD
|
|
There are 13 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
80BBFF7000
|
unkown
|
page read and write
|
|
|
|
7FF5879D0000
|
unkown
|
page readonly
|
|
|
|
7FF587A6E000
|
unkown
|
page readonly
|
|
|
|
7FF504FB1000
|
unkown
|
page readonly
|
|
|
|
7FF587880000
|
unkown
|
page readonly
|
|
|
|
1BEBE6E7000
|
unkown
|
page write copy
|
|
|
|
1D2166A0000
|
unkown
|
page readonly
|
|
|
|
1BEBE43D000
|
unkown
|
page read and write
|
|
|
|
80BC57E000
|
unkown
|
page read and write
|
|
|
|
23C8B669000
|
unkown
|
page read and write
|
|
|
|
1B4FC255000
|
unkown
|
page read and write
|
|
|
|
7FF57FD1E000
|
unkown
|
page readonly
|
|
|
|
1BEBE463000
|
unkown
|
page read and write
|
|
|
|
1D217AB0000
|
unkown
|
page readonly
|
|
|
|
1D216020000
|
unkown
|
page readonly
|
|
|
|
7FF504F26000
|
unkown
|
page readonly
|
|
|
|
23C8B850000
|
unkown
|
page readonly
|
|
|
|
1BEBE4B5000
|
unkown
|
page read and write
|
|
|
|
1BEB9F20000
|
unkown
|
page readonly
|
|
|
|
7FF57F9A3000
|
unkown
|
page readonly
|
|
|
|
7FF587B87000
|
unkown
|
page readonly
|
|
|
|
7FF57FD21000
|
unkown
|
page readonly
|
|
|
|
7FF587845000
|
unkown
|
page readonly
|
|
|
|
7FF5AC1C4000
|
unkown
|
page readonly
|
|
|
|
7FF587582000
|
unkown
|
page readonly
|
|
|
|
7FF587A3C000
|
unkown
|
page readonly
|
|
|
|
1D216110000
|
unkown
|
page read and write
|
|
|
|
263F3B30000
|
heap default
|
page read and write
|
|
|
|
80BC2FE000
|
unkown
|
page read and write
|
|
|
|
7FF577F6C000
|
unkown
|
page readonly
|
|
|
|
1BEBE4A0000
|
unkown
|
page read and write
|
|
|
|
1B4FC302000
|
unkown
|
page read and write
|
|
|
|
1D217E40000
|
heap private
|
page read and write
|
|
|
|
1B4FC27A000
|
unkown
|
page read and write
|
|
|
|
7FF504EC8000
|
unkown
|
page readonly
|
|
|
|
1BEBE3F0000
|
unkown
|
page read and write
|
|
|
|
7FF58790D000
|
unkown
|
page readonly
|
|
|
|
7FF587BD7000
|
unkown
|
page readonly
|
|
|
|
1BEBE4AE000
|
unkown
|
page read and write
|
|
|
|
1D216240000
|
unkown
|
page read and write
|
|
|
|
1BEBE740000
|
unkown
|
page read and write
|
|
|
|
1D21623A000
|
heap default
|
page read and write
|
|
|
|
7FF5AC15E000
|
unkown
|
page readonly
|
|
|
|
1D217AF0000
|
unkown
|
page readonly
|
|
|
|
263F3C13000
|
unkown
|
page read and write
|
|
|
|
1BEBE4B0000
|
unkown
|
page read and write
|
|
|
|
7FF57FBCE000
|
unkown
|
page readonly
|
|
|
|
7FF577F94000
|
unkown
|
page readonly
|
|
|
|
7FF58789E000
|
unkown
|
page readonly
|
|
|
|
7FF587BCB000
|
unkown
|
page readonly
|
|
|
|
7FF577C4D000
|
unkown
|
page readonly
|
|
|
|
1BEB9718000
|
unkown
|
page read and write
|
|
|
|
263F3C6A000
|
unkown
|
page read and write
|
|
|
|
1B4FC26C000
|
unkown
|
page read and write
|
|
|
|
1BEBE624000
|
unkown
|
page read and write
|
|
|
|
1BEBE4B7000
|
unkown
|
page read and write
|
|
|
|
263F3D13000
|
unkown
|
page read and write
|
|
|
|
7FF587CA7000
|
unkown
|
page readonly
|
|
|
|
7FF587C2A000
|
unkown
|
page readonly
|
|
|
|
1BEB8DA0000
|
unkown
|
page readonly
|
|
|
|
1D215FC0000
|
unkown
|
page readonly
|
|
|
|
1B4FC252000
|
unkown
|
page read and write
|
|
|
|
23C8B626000
|
unkown
|
page read and write
|
|
|
|
7FF57FC65000
|
unkown
|
page readonly
|
|
|
|
7FF5879B7000
|
unkown
|
page readonly
|
|
|
|
7FF5AC21E000
|
unkown
|
page readonly
|
|
|
|
7FF577DE8000
|
unkown
|
page readonly
|
|
|
|
263F3ED0000
|
unkown
|
page readonly
|
|
|
|
7FF57FCB5000
|
unkown
|
page readonly
|
|
|
|
C9BD67F000
|
unkown
|
page read and write
|
|
|
|
1BEB95D0000
|
unkown
|
page read and write
|
|
|
|
23C8B667000
|
unkown
|
page read and write
|
|
|
|
1BEB90D0000
|
unkown
|
page readonly
|
|
|
|
80BC3FB000
|
unkown
|
page read and write
|
|
|
|
80BC6FF000
|
unkown
|
page read and write
|
|
|
|
5665EFE000
|
unkown
|
page read and write
|
|
|
|
1B4FC286000
|
unkown
|
page read and write
|
|
|
|
23C8B66A000
|
unkown
|
page read and write
|
|
|
|
7FF577F5D000
|
unkown
|
page readonly
|
|
|
|
7FF57F93C000
|
unkown
|
page readonly
|
|
|
|
1BEBE860000
|
unkown
|
page readonly
|
|
|
|
1B4FC28E000
|
unkown
|
page read and write
|
|
|
|
1BEB9DE0000
|
unkown
|
page read and write
|
|
|
|
7FF577C67000
|
unkown
|
page readonly
|
|
|
|
7FF504F50000
|
unkown
|
page readonly
|
|
|
|
1B4FC090000
|
unkown
|
page readonly
|
|
|
|
23C8B700000
|
unkown
|
page read and write
|
|
|
|
7FF577F35000
|
unkown
|
page readonly
|
|
|
|
7FF57FC8D000
|
unkown
|
page readonly
|
|
|
|
1BEBE414000
|
unkown
|
page read and write
|
|
|
|
F880BF9000
|
unkown
|
page read and write
|
|
|
|
7FF587AD9000
|
unkown
|
page readonly
|
|
|
|
7FF577D60000
|
unkown
|
page readonly
|
|
|
|
56659BE000
|
unkown
|
page read and write
|
|
|
|
80BC8FE000
|
unkown
|
page read and write
|
|
|
|
1BEB9ED0000
|
unkown
|
page readonly
|
|
|
|
1D216200000
|
heap default
|
page read and write
|
|
|
|
7FF5AC09C000
|
unkown
|
page readonly
|
|
|
|
263F3C6A000
|
unkown
|
page read and write
|
|
|
|
7FF587AAE000
|
unkown
|
page readonly
|
|
|
|
7FF5ABD30000
|
unkown
|
page readonly
|
|
|
|
7FF504E67000
|
unkown
|
page readonly
|
|
|
|
80BC5FE000
|
unkown
|
page read and write
|
|
|
|
1BEBE7A0000
|
unkown
|
page readonly
|
|
|
|
1D2164A0000
|
unkown
|
page readonly
|
|
|
|
7FF577E07000
|
unkown
|
page readonly
|
|
|
|
7FF57FCC4000
|
unkown
|
page readonly
|
|
|
|
1BEB8E13000
|
unkown
|
page read and write
|
|
|
|
7FF577C63000
|
unkown
|
page readonly
|
|
|
|
23C8B800000
|
unkown
|
page write copy
|
|
|
|
1BEBE6B0000
|
unkown
|
page read and write
|
|
|
|
7FF504E8A000
|
unkown
|
page readonly
|
|
|
|
1BEBE840000
|
unkown
|
page readonly
|
|
|
|
7FF504ECA000
|
unkown
|
page readonly
|
|
|
|
7FF587C86000
|
unkown
|
page readonly
|
|
|
|
7FF5AC1C7000
|
unkown
|
page readonly
|
|
|
|
1B4FC400000
|
unkown
|
page readonly
|
|
|
|
7FF5AC19C000
|
unkown
|
page readonly
|
|
|
|
1B4FC180000
|
unkown
|
page read and write
|
|
|
|
23C8B668000
|
unkown
|
page read and write
|
|
|
|
23C8B66B000
|
unkown
|
page read and write
|
|
|
|
C9BD57F000
|
unkown
|
page read and write
|
|
|
|
23C8B669000
|
unkown
|
page read and write
|
|
|
|
1BEB8E58000
|
unkown
|
page read and write
|
|
|
|
1BEBE3F0000
|
unkown
|
page read and write
|
|
|
|
1B4FC24D000
|
unkown
|
page read and write
|
|
|
|
7FF5AC03D000
|
unkown
|
page readonly
|
|
|
|
1BEBE421000
|
unkown
|
page read and write
|
|
|
|
7FF587D09000
|
unkown
|
page readonly
|
|
|
|
80BCAFE000
|
unkown
|
page read and write
|
|
|
|
7FF577EAA000
|
unkown
|
page readonly
|
|
|
|
1BEB9600000
|
unkown
|
page read and write
|
|
|
|
23C8B668000
|
unkown
|
page read and write
|
|
|
|
1BEB8DB0000
|
unkown
|
page read and write
|
|
|
|
7FF504F57000
|
unkown
|
page readonly
|
|
|
|
7FF587C16000
|
unkown
|
page readonly
|
|
|
|
1D217B00000
|
unkown
|
page readonly
|
|
|
|
1BEBE624000
|
unkown
|
page read and write
|
|
|
|
1BEBE600000
|
unkown
|
page read and write
|
|
|
|
C9BD1DE000
|
unkown
|
page read and write
|
|
|
|
263F5670000
|
unkown
|
page read and write
|
|
|
|
7FF504EFF000
|
unkown
|
page readonly
|
|
|
|
7FF587BB7000
|
unkown
|
page readonly
|
|
|
|
1BEBE2D0000
|
unkown
|
page read and write
|
|
|
|
7FF5ABFEE000
|
unkown
|
page readonly
|
|
|
|
1B4FC860000
|
unkown
|
page readonly
|
|
|
|
7FF587C45000
|
unkown
|
page readonly
|
|
|
|
1BEBE740000
|
unkown
|
page read and write
|
|
|
|
1BEB8D90000
|
unkown
|
page readonly
|
|
|
|
1B4FC24F000
|
unkown
|
page read and write
|
|
|
|
7FF5879C5000
|
unkown
|
page readonly
|
|
|
|
7FF57FCA6000
|
unkown
|
page readonly
|
|
|
|
7FF504DC3000
|
unkown
|
page readonly
|
|
|
|
1BEB8E29000
|
unkown
|
page read and write
|
|
|
|
7FF577F90000
|
unkown
|
page readonly
|
|
|
|
23C8B66A000
|
unkown
|
page read and write
|
|
|
|
7FF504E8C000
|
unkown
|
page readonly
|
|
|
|
7FF577CC0000
|
unkown
|
page readonly
|
|
|
|
7FF504F09000
|
unkown
|
page readonly
|
|
|
|
7FF504EF5000
|
unkown
|
page readonly
|
|
|
|
773E67E000
|
unkown
|
page read and write
|
|
|
|
7FF577C54000
|
unkown
|
page readonly
|
|
|
|
7FF504DA8000
|
unkown
|
page readonly
|
|
|
|
1BEB8EFE000
|
unkown
|
page read and write
|
|
|
|
C9BD0DB000
|
unkown
|
page read and write
|
|
|
|
7FF57FCD2000
|
unkown
|
page readonly
|
|
|
|
1D216130000
|
unkown
|
page readonly
|
|
|
|
80BC7FF000
|
unkown
|
page read and write
|
|
|
|
7FF577E03000
|
unkown
|
page readonly
|
|
|
|
773E39C000
|
unkown
|
page read and write
|
|
|
|
1BEBE830000
|
unkown
|
page read and write
|
|
|
|
263F3C6A000
|
unkown
|
page read and write
|
|
|
|
7FF5AC1AC000
|
unkown
|
page readonly
|
|
|
|
7FF58791C000
|
unkown
|
page readonly
|
|
|
|
80BC77E000
|
unkown
|
page read and write
|
|
|
|
7FF504E71000
|
unkown
|
page readonly
|
|
|
|
1BEBE790000
|
unkown
|
page readonly
|
|
|
|
7FF587C00000
|
unkown
|
page readonly
|
|
|
|
7FF577ECC000
|
unkown
|
page readonly
|
|
|
|
263F3C6A000
|
unkown
|
page read and write
|
|
|
|
263F3C02000
|
unkown
|
page read and write
|
|
|
|
7FF5AC16F000
|
unkown
|
page readonly
|
|
|
|
263F3D00000
|
unkown
|
page read and write
|
|
|
|
1BEBE400000
|
unkown
|
page read and write
|
|
|
|
1BEBE456000
|
unkown
|
page read and write
|
|
|
|
23C8B5D0000
|
unkown
|
page readonly
|
|
|
|
7FF577F02000
|
unkown
|
page readonly
|
|
|
|
1BEB9F10000
|
unkown
|
page readonly
|
|
|
|
263F3B40000
|
unkown
|
page write copy
|
|
|
|
7FF577FF9000
|
unkown
|
page readonly
|
|
|
|
773EA77000
|
unkown
|
page read and write
|
|
|
|
1BEB95B1000
|
unkown
|
page read and write
|
|
|
|
7FF5AC1C0000
|
unkown
|
page readonly
|
|
|
|
1BEB9615000
|
unkown
|
page read and write
|
|
|
|
1B4FCA02000
|
unkown
|
page read and write
|
|
|
|
1BEB9EE0000
|
unkown
|
page readonly
|
|
|
|
7FF5ABD20000
|
unkown
|
page readonly
|
|
|
|
7FF58791F000
|
unkown
|
page readonly
|
|
|
|
1BEB8D80000
|
heap default
|
page read and write
|
|
|
|
1D217CF0000
|
heap private
|
page read and write
|
|
|
|
5665C7E000
|
unkown
|
page read and write
|
|
|
|
7FF577F06000
|
unkown
|
page readonly
|
|
|
|
7FF587841000
|
unkown
|
page readonly
|
|
|
|
1BEB9000000
|
unkown
|
page readonly
|
|
|
|
263F3C6A000
|
unkown
|
page read and write
|
|
|
|
1D216140000
|
unkown
|
page readonly
|
|
|
|
1BEBE700000
|
unkown
|
page read and write
|
|
|
|
263F3C40000
|
unkown
|
page read and write
|
|
|
|
7FF587AD0000
|
unkown
|
page readonly
|
|
|
|
7FF5AC033000
|
unkown
|
page readonly
|
|
|
|
5665CFD000
|
unkown
|
page read and write
|
|
|
|
1BEB95D3000
|
unkown
|
page read and write
|
|
|
|
7FF587916000
|
unkown
|
page readonly
|
|
|
|
7FF57FD29000
|
unkown
|
page readonly
|
|
|
|
1BEBE290000
|
unkown
|
page readonly
|
|
|
|
773E97E000
|
unkown
|
page read and write
|
|
|
|
7FF577ECA000
|
unkown
|
page readonly
|
|
|
|
7FF587D00000
|
unkown
|
page readonly
|
|
|
|
7FF577EA7000
|
unkown
|
page readonly
|
|
|
|
1D217BD0000
|
heap private
|
page read and write
|
|
|
|
7FF5AC179000
|
unkown
|
page readonly
|
|
|
|
1B4FC308000
|
unkown
|
page read and write
|
|
|
|
23C8B667000
|
unkown
|
page read and write
|
|
|
|
1BEB8DC0000
|
unkown
|
page read and write
|
|
|
|
7FF5AC136000
|
unkown
|
page readonly
|
|
|
|
7FF504C27000
|
unkown
|
page readonly
|
|
|
|
5665E7C000
|
unkown
|
page read and write
|
|
|
|
7FF587B75000
|
unkown
|
page readonly
|
|
|
|
7FF587C3E000
|
unkown
|
page readonly
|
|
|
|
1B4FCC00000
|
unkown
|
page readonly
|
|
|
|
1BEB9759000
|
unkown
|
page read and write
|
|
|
|
7FF504F47000
|
unkown
|
page readonly
|
|
|
|
7FF587CA0000
|
unkown
|
page readonly
|
|
|
|
1BEB9718000
|
unkown
|
page read and write
|
|
|
|
1B4FC080000
|
heap default
|
page read and write
|
|
|
|
7FF587C59000
|
unkown
|
page readonly
|
|
|
|
1BEBE4B9000
|
unkown
|
page read and write
|
|
|
|
263F3C6A000
|
unkown
|
page read and write
|
|
|
|
263F5770000
|
unkown
|
page readonly
|
|
|
|
7FF504FB9000
|
unkown
|
page readonly
|
|
|
|
7FF504EC6000
|
unkown
|
page readonly
|
|
|
|
80BBEFE000
|
unkown
|
page read and write
|
|
|
|
80BC67E000
|
unkown
|
page read and write
|
|
|
|
7FF5878D8000
|
unkown
|
page readonly
|
|
|
|
23C8B66A000
|
unkown
|
page read and write
|
|
|
|
7FF5ABD1A000
|
unkown
|
page readonly
|
|
|
|
1B4FC23C000
|
unkown
|
page read and write
|
|
|
|
7FF587ABC000
|
unkown
|
page readonly
|
|
|
|
1D217DA0000
|
heap private
|
page read and write
|
|
|
|
1B4FC160000
|
unkown
|
page readonly
|
|
|
|
80BC0FA000
|
unkown
|
page read and write
|
|
|
|
F880B7F000
|
unkown
|
page read and write
|
|
|
|
1BEB8E8E000
|
unkown
|
page read and write
|
|
|
|
7FF577F3F000
|
unkown
|
page readonly
|
|
|
|
7FF5AC14A000
|
unkown
|
page readonly
|
|
|
|
7FF587CFE000
|
unkown
|
page readonly
|
|
|
|
1BEB8EB0000
|
unkown
|
page read and write
|
|
|
|
1BEBE6E4000
|
unkown
|
page write copy
|
|
|
|
1BEB8E00000
|
unkown
|
page read and write
|
|
|
|
1BEBE780000
|
unkown
|
page readonly
|
|
|
|
1D2160F0000
|
unkown
|
page read and write
|
|
|
|
263F3C29000
|
unkown
|
page read and write
|
|
|
|
7FF587AC1000
|
unkown
|
page readonly
|
|
|
|
1BEB8E78000
|
unkown
|
page read and write
|
|
|
|
7FF577F66000
|
unkown
|
page readonly
|
|
|
|
7FF5AC138000
|
unkown
|
page readonly
|
|
|
|
773E8FB000
|
unkown
|
page read and write
|
|
|
|
1BEB8E95000
|
unkown
|
page read and write
|
|
|
|
1BEBE820000
|
unkown
|
page readonly
|
|
|
|
1BEB9759000
|
unkown
|
page read and write
|
|
|
|
7FF587959000
|
unkown
|
page readonly
|
|
|
|
23C8B667000
|
unkown
|
page read and write
|
|
|
|
7FF587C76000
|
unkown
|
page readonly
|
|
|
|
1BEB9EC0000
|
unkown
|
page readonly
|
|
|
|
7FF587C4F000
|
unkown
|
page readonly
|
|
|
|
23C8B600000
|
unkown
|
page read and write
|
|
|
|
7FF504F1D000
|
unkown
|
page readonly
|
|
|
|
7FF577F49000
|
unkown
|
page readonly
|
|
|
|
7FF504F3C000
|
unkown
|
page readonly
|
|
|
|
7FF57FC36000
|
unkown
|
page readonly
|
|
|
|
7FF57FD29000
|
unkown
|
page readonly
|
|
|
|
7FF5AC221000
|
unkown
|
page readonly
|
|
|
|
7FF577F76000
|
unkown
|
page readonly
|
|
|
|
7FF587BC1000
|
unkown
|
page readonly
|
|
|
|
7FF587AC8000
|
unkown
|
page readonly
|
|
|
|
1BEB9D00000
|
unkown
|
page read and write
|
|
|
|
1D217B10000
|
unkown
|
page readonly
|
|
|
|
7FF577C49000
|
unkown
|
page readonly
|
|
|
|
23C8B4F0000
|
heap default
|
page read and write
|
|
|
|
7FF57FC9C000
|
unkown
|
page readonly
|
|
|
|
1BEBE3E0000
|
unkown
|
page read and write
|
|
|
|
263F3B90000
|
unkown
|
page readonly
|
|
|
|
1BEBE620000
|
unkown
|
page read and write
|
|
|
|
1BEB8F02000
|
unkown
|
page read and write
|
|
|
|
1BEB95E0000
|
unkown
|
page read and write
|
|
|
|
1BEB8EA0000
|
unkown
|
page read and write
|
|
|
|
1D217F3F000
|
heap private
|
page read and write
|
|
|
|
1B4FC313000
|
unkown
|
page read and write
|
|
|
|
7FF504C80000
|
unkown
|
page readonly
|
|
|
|
7FF57FC38000
|
unkown
|
page readonly
|
|
|
|
1BEB95F0000
|
unkown
|
page read and write
|
|
|
|
7FF504DC7000
|
unkown
|
page readonly
|
|
|
|
7FF5AC1B5000
|
unkown
|
page readonly
|
|
|
|
23C8B500000
|
unkown
|
page readonly
|
|
|
|
1B4FC020000
|
heap private
|
page read and write
|
|
|
|
7FF5ABF4A000
|
unkown
|
page readonly
|
|
|
|
23C8B702000
|
unkown
|
page read and write
|
|
|
|
1BEBA260000
|
unkown
|
page read and write
|
|
|
|
23C8B602000
|
unkown
|
page read and write
|
|
|
|
7FF587BE7000
|
unkown
|
page readonly
|
|
|
|
1BEBE6D4000
|
unkown
|
page readonly
|
|
|
|
263F3C6A000
|
unkown
|
page read and write
|
|
|
|
1BEBE6B4000
|
unkown
|
page readonly
|
|
|
|
1D216495000
|
heap private
|
page read and write
|
|
|
|
23C8D0F0000
|
unkown
|
page readonly
|
|
|
|
1BEB9460000
|
unkown
|
page readonly
|
|
|
|
23C8B66C000
|
unkown
|
page read and write
|
|
|
|
263F3D02000
|
unkown
|
page read and write
|
|
|
|
7FF57F962000
|
unkown
|
page readonly
|
|
|
|
7FF57FC5E000
|
unkown
|
page readonly
|
|
|
|
1BEBE600000
|
unkown
|
page read and write
|
|
|
|
1BEBE3E0000
|
unkown
|
page read and write
|
|
|
|
7FF5AC1A6000
|
unkown
|
page readonly
|
|
|
|
7FF587CA4000
|
unkown
|
page readonly
|
|
|
|
7FF577F1A000
|
unkown
|
page readonly
|
|
|
|
7FF504C23000
|
unkown
|
page readonly
|
|
|
|
7FF57FCC0000
|
unkown
|
page readonly
|
|
|
|
1BEBE710000
|
unkown
|
page read and write
|
|
|
|
C9BD5FF000
|
unkown
|
page read and write
|
|
|
|
7FF587B7C000
|
unkown
|
page readonly
|
|
|
|
7FF587C12000
|
unkown
|
page readonly
|
|
|
|
7FF5879BE000
|
unkown
|
page readonly
|
|
|
|
7FF587587000
|
unkown
|
page readonly
|
|
|
|
C9BD47A000
|
unkown
|
page read and write
|
|
|
|
C9BD15E000
|
unkown
|
page read and write
|
|
|
|
7FF504EC2000
|
unkown
|
page readonly
|
|
|
|
5665DFE000
|
unkown
|
page read and write
|
|
|
|
7FF5AC018000
|
unkown
|
page readonly
|
|
|
|
7FF57FCCD000
|
unkown
|
page readonly
|
|
|
|
7FF587543000
|
unkown
|
page readonly
|
|
|
|
7FF504EEE000
|
unkown
|
page readonly
|
|
|
|
7FF57FC79000
|
unkown
|
page readonly
|
|
|
|
23C8B613000
|
unkown
|
page read and write
|
|
|
|
7FF5AC165000
|
unkown
|
page readonly
|
|
|
|
1BEB9EF0000
|
unkown
|
page readonly
|
|
|
|
7FF577FEE000
|
unkown
|
page readonly
|
|
|
|
23C8B667000
|
unkown
|
page read and write
|
|
|
|
1BEBE44A000
|
unkown
|
page read and write
|
|
|
|
7FF5AC196000
|
unkown
|
page readonly
|
|
|
|
1BEBE4B1000
|
unkown
|
page read and write
|
|
|
|
7FF587897000
|
unkown
|
page readonly
|
|
|
|
80BC4FB000
|
unkown
|
page read and write
|
|
|
|
23C8CFF0000
|
unkown
|
page read and write
|
|
|
|
1BEB9700000
|
unkown
|
page read and write
|
|
|
|
7FF5AC120000
|
unkown
|
page readonly
|
|
|
|
7FF57FCAC000
|
unkown
|
page readonly
|
|
|
|
23C8B669000
|
unkown
|
page read and write
|
|
|
|
7FF587BE3000
|
unkown
|
page readonly
|
|
|
|
7FF577F97000
|
unkown
|
page readonly
|
|
|
|
7FF5ABFAF000
|
unkown
|
page readonly
|
|
|
|
F880EFC000
|
unkown
|
page read and write
|
|
|
|
7FF577FF9000
|
unkown
|
page readonly
|
|
|
|
23C8B713000
|
unkown
|
page read and write
|
|
|
|
7FF504F2C000
|
unkown
|
page readonly
|
|
|
|
7FF58756B000
|
unkown
|
page readonly
|
|
|
|
7FF5AC067000
|
unkown
|
page readonly
|
|
|
|
7FF57FCC7000
|
unkown
|
page readonly
|
|
|
|
263F3C58000
|
unkown
|
page read and write
|
|
|
|
773EB7E000
|
unkown
|
page read and write
|
|
|
|
1BEB8E7C000
|
unkown
|
page read and write
|
|
|
|
7FF587BEC000
|
unkown
|
page readonly
|
|
|
|
7FF504D20000
|
unkown
|
page readonly
|
|
|
|
F880F7F000
|
unkown
|
page read and write
|
|
|
|
7FF577FF1000
|
unkown
|
page readonly
|
|
|
|
7FF577F08000
|
unkown
|
page readonly
|
|
|
|
80BC1FB000
|
unkown
|
page read and write
|
|
|
|
7FF587D09000
|
unkown
|
page readonly
|
|
|
|
7FF57FC20000
|
unkown
|
page readonly
|
|
|
|
1B4FC24A000
|
unkown
|
page read and write
|
|
|
|
1BEB8E8C000
|
unkown
|
page read and write
|
|
|
|
1BEBE47F000
|
unkown
|
page read and write
|
|
|
|
1BEBE2E0000
|
unkown
|
page read and write
|
|
|
|
1B4FC200000
|
unkown
|
page read and write
|
|
|
|
1B4FC300000
|
unkown
|
page read and write
|
|
|
|
7FF57FBCA000
|
unkown
|
page readonly
|
|
|
|
773EC7E000
|
unkown
|
page read and write
|
|
|
|
263F3E00000
|
unkown
|
page readonly
|
|
|
|
7FF58793A000
|
unkown
|
page readonly
|
|
|
|
7FF587A8F000
|
unkown
|
page readonly
|
|
|
|
7FF577D4A000
|
unkown
|
page readonly
|
|
|
|
F880E7F000
|
unkown
|
page read and write
|
|
|
|
263F3AD0000
|
heap private
|
page read and write
|
|
|
|
1BEB8EA2000
|
unkown
|
page read and write
|
|
|
|
1BEBE42F000
|
unkown
|
page read and write
|
|
|
|
7FF504C75000
|
unkown
|
page readonly
|
|
|
|
23C8B656000
|
unkown
|
page read and write
|
|
|
|
1BEBE6B0000
|
unkown
|
page write copy
|
|
|
|
1BEBE2C0000
|
unkown
|
page read and write
|
|
|
|
7FF587A2B000
|
unkown
|
page readonly
|
|
|
|
7FF504F54000
|
unkown
|
page readonly
|
|
|
|
1BEBE3F0000
|
unkown
|
page read and write
|
|
|
|
7FF504F36000
|
unkown
|
page readonly
|
|
|
|
C9BD4F9000
|
unkown
|
page read and write
|
|
|
|
80BC9FD000
|
unkown
|
page read and write
|
|
|
|
263F3C00000
|
unkown
|
page read and write
|
|
|
|
23C8B667000
|
unkown
|
page read and write
|
|
|
|
1BEB9F00000
|
unkown
|
page readonly
|
|
|
|
1BEB9602000
|
unkown
|
page read and write
|
|
|
|
7FF5AC229000
|
unkown
|
page readonly
|
|
|
|
7FF504FAE000
|
unkown
|
page readonly
|
|
|
|
1BEB8D20000
|
heap private
|
page read and write
|
|
|
|
1BEB9713000
|
unkown
|
page read and write
|
|
|
|
7FF5ABE78000
|
unkown
|
page readonly
|
|
|
|
7FF587C7C000
|
unkown
|
page readonly
|
|
|
|
1BEBE608000
|
unkown
|
page read and write
|
|
|
|
80BBE7E000
|
unkown
|
page read and write
|
|
|
|
7FF577F7C000
|
unkown
|
page readonly
|
|
|
|
7FF57F9AC000
|
unkown
|
page readonly
|
|
|
|
7FF587C18000
|
unkown
|
page readonly
|
|
|
|
1BEBE621000
|
unkown
|
page read and write
|
|
|
|
7FF587C6D000
|
unkown
|
page readonly
|
|
|
|
1B4FC213000
|
unkown
|
page read and write
|
|
|
|
7FF57FC22000
|
unkown
|
page readonly
|
|
|
|
1BEBE740000
|
unkown
|
page read and write
|
|
|
|
7FF577F0A000
|
unkown
|
page readonly
|
|
|
|
1BEBE720000
|
unkown
|
page read and write
|
|
|
|
7FF57FC91000
|
unkown
|
page readonly
|
|
|
|
7FF57FBD4000
|
unkown
|
page readonly
|
|
|
|
7FF504E6A000
|
unkown
|
page readonly
|
|
|
|
1D216490000
|
heap private
|
page read and write
|
|
|
|
7FF57FC3A000
|
unkown
|
page readonly
|
|
|
|
1B4FC170000
|
unkown
|
page readonly
|
|
|
|
23C8B66C000
|
unkown
|
page read and write
|
|
|
|
566593C000
|
unkown
|
page read and write
|
|
|
|
23C8B63F000
|
unkown
|
page read and write
|
|
|
|
7FF5ABFFA000
|
unkown
|
page readonly
|
|
|
|
7FF587C95000
|
unkown
|
page readonly
|
|
|
|
7FF504C0D000
|
unkown
|
page readonly
|
|
|
|
263F3C6A000
|
unkown
|
page read and write
|
|
|
|
7FF5AC229000
|
unkown
|
page readonly
|
|
|
|
773E6FE000
|
unkown
|
page read and write
|
|
|
|
7FF587C02000
|
unkown
|
page readonly
|
|
|
|
7FF577F2E000
|
unkown
|
page readonly
|
|
|
|
7FF57F978000
|
unkown
|
page readonly
|
|
|
|
1B4FC22A000
|
unkown
|
page read and write
|
|
|
|
1BEB8F13000
|
unkown
|
page read and write
|
|
|
|
1D21620B000
|
heap default
|
page read and write
|
|
|
|
7FF504C14000
|
unkown
|
page readonly
|
|
|
|
1BEBE60E000
|
unkown
|
page read and write
|
|
|
|
F880FF9000
|
unkown
|
page read and write
|
|
|
|
7FF5AC18D000
|
unkown
|
page readonly
|
|
|
|
23C8B490000
|
heap private
|
page read and write
|
|
|
|
7FF587BF8000
|
unkown
|
page readonly
|
|
|
|
23C8B667000
|
unkown
|
page read and write
|
|
|
|
7FF587C71000
|
unkown
|
page readonly
|
|
|
|
7FF5AC122000
|
unkown
|
page readonly
|
|
|
|
7FF587A48000
|
unkown
|
page readonly
|
|
|
|
7FF504C09000
|
unkown
|
page readonly
|
|
|
|
1BEBE740000
|
unkown
|
page readonly
|
|
|
|
23C8B649000
|
unkown
|
page read and write
|
|
|
|
80BBBFB000
|
unkown
|
page read and write
|
|
|
|
7FF5AC061000
|
unkown
|
page readonly
|
|
|
|
23C8B667000
|
unkown
|
page read and write
|
|
|
|
7FF504EDA000
|
unkown
|
page readonly
|
|
|
|
7FF504FB9000
|
unkown
|
page readonly
|
|
|
|
1BEB9702000
|
unkown
|
page read and write
|
|
|
|
7FF577CB5000
|
unkown
|
page readonly
|
|
|
|
1BEBE6D7000
|
unkown
|
page readonly
|
|
|
|
1BEB8E73000
|
unkown
|
page read and write
|
|
|
|
7FF504D0A000
|
unkown
|
page readonly
|
|
|
|
7FF57FC4A000
|
unkown
|
page readonly
|
|
|
|
7FF58798C000
|
unkown
|
page readonly
|
|
|
|
7FF5AC132000
|
unkown
|
page readonly
|
|
|
|
7FF577F87000
|
unkown
|
page readonly
|
|
|
|
7FF57FC96000
|
unkown
|
page readonly
|
|
|
|
F880AFB000
|
unkown
|
page read and write
|
|
|
|
1BEB8E40000
|
unkown
|
page read and write
|
|
|
|
7FF577EB1000
|
unkown
|
page readonly
|
|
|
|
1BEBE6F0000
|
unkown
|
page read and write
|
|
|
|
7FF5ABA8B000
|
unkown
|
page readonly
|
|
|
|
263F3D19000
|
unkown
|
page read and write
|
|
|
|
1D216241000
|
unkown
|
page read and write
|
|
|
|
23C8B667000
|
unkown
|
page read and write
|
|
|
|
7FF587C8C000
|
unkown
|
page readonly
|
|
|
|
7FF587BA1000
|
unkown
|
page readonly
|
|
There are 475 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://scheduling.mesacountyhealth.com/public/covidInitialDose/instructions/en.html
|
|
|
|
https://health.mesacounty.us/
|
|