Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
https://app.box.com/s/ldmpej4bczs3ra2es3qlr0qrqifh99wc
|
URL
|
initial url
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\li6orbsabcm5o36s3wlba8p8[1].htm
|
HTML document, UTF-8 Unicode text
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\E5F0NRSV\app.box[1].xml
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{9EFB6EF9-995A-11EB-90EB-ECF4BBEA1588}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{9EFB6EFB-995A-11EB-90EB-ECF4BBEA1588}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{A571EC6F-995A-11EB-90EB-ECF4BBEA1588}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\gee00pr\imagestore.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\Lato-Bold[1].woff
|
Web Open Font Format, TrueType, length 118272, version 1.0
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\Lato-Regular[1].woff
|
Web Open Font Format, TrueType, length 119132, version 1.0
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\Lato-woff[1].css
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\Servpro[1].pdf
|
PDF document, version 1.5
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\app.62d2420f86[1].css
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\ldmpej4bczs3ra2es3qlr0qrqifh99wc[1].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\logo_strip[1].png
|
PNG image data, 624 x 96, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\messagecenter~preview-components~uploads-manager-enduser.46e89c9bf1[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\messagecenter~preview-components~uploads-manager-enduser.de71b9769a[1].css
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\pdf.worker.min[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\pdf[1].png
|
PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\pdf_viewer.min[1].css
|
assembler source, ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\uploads-manager-enduser.1447e4d8b7[1].css
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\app.80bc6631ed[1].js
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\content-sidebar.aadc94c993[1].css
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\css[1].css
|
ASCII text
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\exif.min[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\lang-en-AU~lang-en-CA~lang-en-GB~lang-en-US~lang-en-x-pseudo.57dba5f597[1].js
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\lang-en-US.d8cbc90473[1].js
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\messagecenter~uploads-manager-enduser.e83b2dda31[1].js
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\pdf.min[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\preview-components.87c76e14ef[1].js
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\uploads-manager-enduser.701384c70f[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\content-sidebar.d5bb78ae93[1].js
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\core.min[1].js
|
UTF-8 Unicode text, with very long lines, with LF, NEL line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\intersection-observer[1].js
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\loading[1].gif
|
GIF image data, version 89a, 30 x 30
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\logo[1].png
|
PNG image data, 226 x 48, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\pdf_viewer.min[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\preview-components~shared-file.ad8a132249[1].js
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\preview[1].css
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\preview[1].js
|
UTF-8 Unicode text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\share-point[1].css
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\vendors~app.1978418f74[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\as-security~change-current-user-role-modal~collaborators~collection-detail-page~content-explorer-mod~2da256af.a0db8de5f2[1].js
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\content[1].jpg
|
[TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=1], baseline, precision 8, 1024x1024,
frames 3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\favicon-32x32-VwW37b[1].png
|
PNG image data, 32 x 32, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\preview-components.a5aea5c3e0[1].css
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\preview-components~shared-file.4fbef49e0d[1].css
|
ASCII text, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\promise[1].js
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\runtime.989e647586[1].js
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\shared-file.058946a378[1].js
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\shared-file.f1f6d40967[1].css
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Temp\dat8C00.tmp
|
Web Open Font Format, TrueType, length 119132, version 1.0
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\dat8C8E.tmp
|
Web Open Font Format (Version 2), TrueType, length 84396, version 2.983
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\datA806.tmp
|
OpenType font data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\datA874.tmp
|
OpenType font data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\datA911.tmp
|
OpenType font data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\datA961.tmp
|
TrueType Font data, 13 tables, 1st "OS/2", 20 names, Macintosh, \251 2018 Microsoft Corporation. All Rights Reserved.
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\datA990.tmp
|
TrueType Font data, 13 tables, 1st "OS/2", 20 names, Macintosh, \251 2018 Microsoft Corporation. All Rights Reserved.
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\datE68B.tmp
|
Web Open Font Format, TrueType, length 2532, version 2.24904
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF1D930BD22B0D5A83.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF4580B808E1CFC63F.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF999979F56005C7E8.TMP
|
data
|
dropped
|
|
There are 51 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\internet explorer\iexplore.exe
|
'C:\Program Files\Internet Explorer\iexplore.exe' -Embedding
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:6644 CREDAT:17410 /prefetch:2
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://erffggf.cf/jd/sharepoint-0/li6orbsabcm5o36s3wlba8p8.php?rand=13InboxLightaspxn.1774256418&fid&1252899642&fid.1&fav.1&email=
|
|
||
|
https://cdn01.boxcdn.net/_assets/img/favicons/notification-favicon-EHWWyP.ico
|
unknown
|
|
|
|
https://github.com/zloirock/core-js
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/fonts/1.0.2/lato/Lato-Regular.woff2)
|
unknown
|
|
|
|
https://955b0f04ec1842b79e6727b6d5210de0.svc.dynamics.com/t/r/t1CFDnMTkqEtehk9U1_TVxBOL5s3sA69Juxjkt
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/browserconfig-fdBReK.xml
|
unknown
|
|
|
|
https://app.box.csharepoint-0/li6orbsabcm5o36s3wlba8p8.php?rand=13InboxLightaspxnbox.com/s/ldmpej4bc
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/apple-touch-icon-57x57-fLlEpj.png
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/fonts/1.0.2/lato/Lato-Bold.woff2)
|
unknown
|
|
|
|
https://app.box.com/s/ldmpej4bczs3ra2es3qlr0qrqifh99wcRoot
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/apple-touch-icon-144x144-va9pYs.png
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/apple-touch-icon-76x76-ZVGnRV.png
|
unknown
|
|
|
|
https://app.box.com/s/ldmpej4bczs3ra2es3qlr0qrqifh99wc
|
|
||
|
https://cdn01.boxcdn.net/_assets/img/favicons/notification-favicon-16x16-Ou5N87.png
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/android-chrome-192x192-96i97M.png
|
unknown
|
|
|
|
http://jedwatson.github.io/classnames
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/safari-pinned-tab-jyt2W4.svg
|
unknown
|
|
|
|
https://erffggf.cf/jd/sharepoint-0/li6orbsabcm5o36s3wlba8p8.php?rand=13InboxLightaspxn
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/favicon-96x96-XU7UE1.png
|
unknown
|
|
|
|
https://erffggf.cf/jd/
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/apple-touch-icon-152x152-r5tWgh.png
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/apple-touch-icon-60x60-Uv0qzu.png
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/apple-touch-icon-72x72-7aVqne.png
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/favicon-16x16-_kQSW4.png
|
unknown
|
|
|
|
https://app.box.cRoot
|
unknown
|
|
|
|
https://app.box.cbox.com/s/ldmpej4bczs3ra2es3qlr0qrqifh99wc
|
unknown
|
|
|
|
https://app.box.com/s/ldmpej4bczs3ra2es3qlr0qrqifh99wc
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/enduser/app.62d2420f86.css
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/fonts/1.0.2/lato/Lato-Bold.woff)
|
unknown
|
|
|
|
https://app.box.com/s/ldmpej4bczs3ra2es3qlr0qrqifh99wc8Servpro.pdf
|
unknown
|
|
|
|
http://blog.stevenlevithan.com/archives/parseuri
|
unknown
|
|
|
|
https://feross.org
|
unknown
|
|
|
|
https://github.com/derek-watson/jsUri
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/fonts/1.0.2/lato/Lato-woff.css
|
unknown
|
|
|
|
https://support.box.com
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/apple-touch-icon-114x114-busq-D.png
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/manifest-rw1AEP.json
|
unknown
|
|
|
|
https://erffggf.cf/jd/ldmpej4bczs3ra2es3qlr0qrqifh99wc
|
unknown
|
|
|
|
http://rock.mit-license.org
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/notification-favicon-96x96-TOQ9Kg.png
|
unknown
|
|
|
|
https://erffggf.cf/jd/sharepoint-0/li6orbsabcm5o36s3wlba8p8.php?rand=13InboxLightaspxn.1774256418&fi
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/notification-favicon-32x32-brwW_W.png
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/apple-touch-icon-120x120-K-u4U5.png
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/fonts/1.0.2/lato/Lato-Regular.woff)
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/mstile-144x144-pllCM8.png
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/favicon-32x32-VwW37b.png
|
unknown
|
|
|
|
http://www.box.com)
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/apple-touch-icon-180x180-tV001c.png
|
unknown
|
|
|
|
https://app.Root
|
unknown
|
|
|
|
https://cdn01.boxcdn.net/_assets/img/favicons/favicon-yz-tj-.ico
|
unknown
|
|
There are 40 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
api.box.com
|
185.235.236.197
|
|
|
|
public.boxcloud.com
|
185.235.236.200
|
|
|
|
app.box.com
|
185.235.236.201
|
|
|
|
erffggf.cf
|
198.54.125.84
|
|
|
|
cdn01.boxcdn.net
|
unknown
|
|
|
|
955b0f04ec1842b79e6727b6d5210de0.svc.dynamics.com
|
unknown
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.168.2.1
|
unknown
|
unknown
|
|
|
|
185.235.236.200
|
public.boxcloud.com
|
Germany
|
|
|
|
185.235.236.197
|
api.box.com
|
Germany
|
|
|
|
185.235.236.201
|
app.box.com
|
Germany
|
|
|
|
198.54.125.84
|
erffggf.cf
|
United States
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\internet explorer\iexplore.exe
|
{9EFB6EF9-995A-11EB-90EB-ECF4BBEA1588}
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Type
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Flags
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
CVListPingLastYMD
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NumberOfSubdomains
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
@C:\Windows\System32\ieframe.dll,-912
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
@C:\Windows\System32\ieframe.dll,-904
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
There are 81 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7FF569844000
|
unkown
|
page readonly
|
|
|
|
7FF5A88E8000
|
unkown
|
page readonly
|
|
|
|
1AC249A2000
|
unkown
|
page read and write
|
|
|
|
7FF569852000
|
unkown
|
page readonly
|
|
|
|
216B91A0000
|
unkown
|
page readonly
|
|
|
|
7FF5A823D000
|
unkown
|
page readonly
|
|
|
|
7FF558A62000
|
unkown
|
page readonly
|
|
|
|
1315E300000
|
unkown
|
page read and write
|
|
|
|
1AC24913000
|
unkown
|
page read and write
|
|
|
|
7FF5BCDD4000
|
unkown
|
page readonly
|
|
|
|
216B90C0000
|
unkown
|
page readonly
|
|
|
|
1E59486A000
|
unkown
|
page read and write
|
|
|
|
7FF5A8AC4000
|
unkown
|
page readonly
|
|
|
|
209640A0000
|
heap default
|
page read and write
|
|
|
|
7FF4F96AE000
|
unkown
|
page readonly
|
|
|
|
7FF573273000
|
unkown
|
page readonly
|
|
|
|
7FF5E5A1C000
|
unkown
|
page readonly
|
|
|
|
2270303F000
|
unkown
|
page read and write
|
|
|
|
7FF56984A000
|
unkown
|
page readonly
|
|
|
|
1AC2496B000
|
unkown
|
page read and write
|
|
|
|
24BA9AA0000
|
unkown
|
page readonly
|
|
|
|
1AC2496C000
|
unkown
|
page read and write
|
|
|
|
1AC2495A000
|
unkown
|
page read and write
|
|
|
|
7FF573171000
|
unkown
|
page readonly
|
|
|
|
7FF57331E000
|
unkown
|
page readonly
|
|
|
|
7FF5BCD34000
|
unkown
|
page readonly
|
|
|
|
7FF558EDC000
|
unkown
|
page readonly
|
|
|
|
7C33BFF000
|
unkown
|
page read and write
|
|
|
|
814E6FE000
|
unkown
|
page read and write
|
|
|
|
1AC23FD0000
|
heap private
|
page read and write
|
|
|
|
7FF5E5D60000
|
unkown
|
page readonly
|
|
|
|
7FF558F27000
|
unkown
|
page readonly
|
|
|
|
7FF558EF0000
|
unkown
|
page readonly
|
|
|
|
22702F40000
|
heap private
|
page read and write
|
|
|
|
24BA8002000
|
unkown
|
page read and write
|
|
|
|
24BA8067000
|
unkown
|
page read and write
|
|
|
|
1AC24DB0000
|
unkown
|
page readonly
|
|
|
|
7FF4FA76A000
|
unkown
|
page readonly
|
|
|
|
7FF5BCDE1000
|
unkown
|
page readonly
|
|
|
|
1AC2498C000
|
unkown
|
page read and write
|
|
|
|
216B9254000
|
unkown
|
page read and write
|
|
|
|
216953E0000
|
unkown
|
page readonly
|
|
|
|
7FF5BCB24000
|
unkown
|
page readonly
|
|
|
|
7FF4F968A000
|
unkown
|
page readonly
|
|
|
|
216B9313000
|
unkown
|
page read and write
|
|
|
|
1AC24313000
|
unkown
|
page read and write
|
|
|
|
7FF5BCAC8000
|
unkown
|
page readonly
|
|
|
|
7FF5BC9AC000
|
unkown
|
page readonly
|
|
|
|
7FF4F930A000
|
unkown
|
page readonly
|
|
|
|
216B9C00000
|
unkown
|
page readonly
|
|
|
|
7FF55A5F9000
|
unkown
|
page readonly
|
|
|
|
7FF5BCCBB000
|
unkown
|
page readonly
|
|
|
|
1AC24938000
|
unkown
|
page read and write
|
|
|
|
1315EA02000
|
unkown
|
page read and write
|
|
|
|
216B9050000
|
heap private
|
page read and write
|
|
|
|
7FF558F1C000
|
unkown
|
page readonly
|
|
|
|
170FDFB000
|
unkown
|
page read and write
|
|
|
|
2397C871000
|
unkown
|
page read and write
|
|
|
|
2397E750000
|
unkown
|
page readonly
|
|
|
|
1AC24943000
|
unkown
|
page read and write
|
|
|
|
1AC2497A000
|
unkown
|
page read and write
|
|
|
|
7FF4F9461000
|
unkown
|
page readonly
|
|
|
|
7FF558B07000
|
unkown
|
page readonly
|
|
|
|
814E67B000
|
unkown
|
page read and write
|
|
|
|
1AC24959000
|
unkown
|
page read and write
|
|
|
|
7FF558EEA000
|
unkown
|
page readonly
|
|
|
|
7FF4FA9A8000
|
unkown
|
page readonly
|
|
|
|
7FF5E5DC8000
|
unkown
|
page readonly
|
|
|
|
7FF55A5DE000
|
unkown
|
page readonly
|
|
|
|
7FF558B05000
|
unkown
|
page readonly
|
|
|
|
7FF5E5D00000
|
unkown
|
page readonly
|
|
|
|
24BA806A000
|
unkown
|
page read and write
|
|
|
|
7FF4F966C000
|
unkown
|
page readonly
|
|
|
|
7FF5E5DCE000
|
unkown
|
page readonly
|
|
|
|
7FF5694E0000
|
unkown
|
page readonly
|
|
|
|
7FF5731C3000
|
unkown
|
page readonly
|
|
|
|
1315E313000
|
unkown
|
page read and write
|
|
|
|
7FF573097000
|
unkown
|
page readonly
|
|
|
|
1AC24920000
|
unkown
|
page read and write
|
|
|
|
1AC2493D000
|
unkown
|
page read and write
|
|
|
|
2397C8FF000
|
unkown
|
page read and write
|
|
|
|
216B9A02000
|
unkown
|
page read and write
|
|
|
|
7FF5BCD4E000
|
unkown
|
page readonly
|
|
|
|
7FF5A879B000
|
unkown
|
page readonly
|
|
|
|
170FEF7000
|
unkown
|
page read and write
|
|
|
|
7FF5E5C68000
|
unkown
|
page readonly
|
|
|
|
C9AE37A000
|
unkown
|
page read and write
|
|
|
|
7FF4F966F000
|
unkown
|
page readonly
|
|
|
|
7FF5BC54D000
|
unkown
|
page readonly
|
|
|
|
1AC24110000
|
unkown
|
page readonly
|
|
|
|
216952A0000
|
heap private
|
page read and write
|
|
|
|
7FF5E5DAA000
|
unkown
|
page readonly
|
|
|
|
7FF5BCCDC000
|
unkown
|
page readonly
|
|
|
|
7FF559ED3000
|
unkown
|
page readonly
|
|
|
|
7FF573320000
|
unkown
|
page readonly
|
|
|
|
216B90B0000
|
heap default
|
page read and write
|
|
|
|
1AC2494E000
|
unkown
|
page read and write
|
|
|
|
7FF573325000
|
unkown
|
page readonly
|
|
|
|
7FF5697AA000
|
unkown
|
page readonly
|
|
|
|
1AC2496F000
|
unkown
|
page read and write
|
|
|
|
7FF5697DD000
|
unkown
|
page readonly
|
|
|
|
7FF558FDA000
|
unkown
|
page readonly
|
|
|
|
7FF5694D7000
|
unkown
|
page readonly
|
|
|
|
2397E270000
|
unkown
|
page read and write
|
|
|
|
1AC24941000
|
unkown
|
page read and write
|
|
|
|
2397E720000
|
unkown
|
page read and write
|
|
|
|
7FF558D9A000
|
unkown
|
page readonly
|
|
|
|
1E5961A0000
|
unkown
|
page read and write
|
|
|
|
7FF4F9645000
|
unkown
|
page readonly
|
|
|
|
7FF5E5B81000
|
unkown
|
page readonly
|
|
|
|
1E59483F000
|
unkown
|
page read and write
|
|
|
|
7FF5695B1000
|
unkown
|
page readonly
|
|
|
|
22703029000
|
unkown
|
page read and write
|
|
|
|
1E594900000
|
unkown
|
page read and write
|
|
|
|
1315E213000
|
unkown
|
page read and write
|
|
|
|
1AC24991000
|
unkown
|
page read and write
|
|
|
|
170F90E000
|
unkown
|
page read and write
|
|
|
|
1315EC00000
|
unkown
|
page readonly
|
|
|
|
1AC2497A000
|
unkown
|
page read and write
|
|
|
|
7FF573374000
|
unkown
|
page readonly
|
|
|
|
216B9300000
|
unkown
|
page read and write
|
|
|
|
24BA806C000
|
unkown
|
page read and write
|
|
|
|
216B9253000
|
unkown
|
page read and write
|
|
|
|
2F2BF6B000
|
unkown
|
page read and write
|
|
|
|
7C6B07A000
|
unkown
|
page read and write
|
|
|
|
7FF5A89DA000
|
unkown
|
page readonly
|
|
|
|
7FF4F9732000
|
unkown
|
page readonly
|
|
|
|
1AC24983000
|
unkown
|
page read and write
|
|
|
|
7FF4FA8C5000
|
unkown
|
page readonly
|
|
|
|
1AC2491F000
|
unkown
|
page read and write
|
|
|
|
2397C917000
|
unkown
|
page read and write
|
|
|
|
7FF5A88E3000
|
unkown
|
page readonly
|
|
|
|
7FF56974C000
|
unkown
|
page readonly
|
|
|
|
1AC24932000
|
unkown
|
page read and write
|
|
|
|
7FF558F5E000
|
unkown
|
page readonly
|
|
|
|
7FF558C70000
|
unkown
|
page readonly
|
|
|
|
2397F010000
|
unkown
|
page read and write
|
|
|
|
24BA8029000
|
unkown
|
page read and write
|
|
|
|
1AC24DA0000
|
unkown
|
page read and write
|
|
|
|
1E5962A0000
|
unkown
|
page readonly
|
|
|
|
1AC24D90000
|
unkown
|
page readonly
|
|
|
|
7FF4F9548000
|
unkown
|
page readonly
|
|
|
|
7FF4FAB91000
|
unkown
|
page readonly
|
|
|
|
7FF57330C000
|
unkown
|
page readonly
|
|
|
|
1AC2498D000
|
unkown
|
page read and write
|
|
|
|
7FF5BCC36000
|
unkown
|
page readonly
|
|
|
|
7FF558D24000
|
unkown
|
page readonly
|
|
|
|
7FF55A5AF000
|
unkown
|
page readonly
|
|
|
|
7FF5E5C41000
|
unkown
|
page readonly
|
|
|
|
21695440000
|
unkown
|
page read and write
|
|
|
|
1AC249DA000
|
unkown
|
page read and write
|
|
|
|
1E594813000
|
unkown
|
page read and write
|
|
|
|
24BA806A000
|
unkown
|
page read and write
|
|
|
|
1AC2424A000
|
unkown
|
page read and write
|
|
|
|
C9AE47F000
|
unkown
|
page read and write
|
|
|
|
7FF56965B000
|
unkown
|
page readonly
|
|
|
|
7A30679000
|
unkown
|
page read and write
|
|
|
|
2F2C3FF000
|
unkown
|
page read and write
|
|
|
|
24BA99A0000
|
unkown
|
page read and write
|
|
|
|
1AC24927000
|
unkown
|
page read and write
|
|
|
|
7FF4F969E000
|
unkown
|
page readonly
|
|
|
|
170FCF5000
|
unkown
|
page read and write
|
|
|
|
7FF5E5D8C000
|
unkown
|
page readonly
|
|
|
|
1AC2495A000
|
unkown
|
page read and write
|
|
|
|
17101FF000
|
unkown
|
page read and write
|
|
|
|
21695600000
|
unkown
|
page write copy
|
|
|
|
7FF55A5EE000
|
unkown
|
page readonly
|
|
|
|
F0E35F7000
|
unkown
|
page read and write
|
|
|
|
7FF5BCD27000
|
unkown
|
page readonly
|
|
|
|
21695402000
|
unkown
|
page read and write
|
|
|
|
7FF4F95E2000
|
unkown
|
page readonly
|
|
|
|
7FF558EBF000
|
unkown
|
page readonly
|
|
|
|
1E594640000
|
heap default
|
page read and write
|
|
|
|
1AC249B0000
|
unkown
|
page read and write
|
|
|
|
1315E286000
|
unkown
|
page read and write
|
|
|
|
2397E986000
|
unkown
|
page read and write
|
|
|
|
1AC2424E000
|
unkown
|
page read and write
|
|
|
|
7FF5E5D5A000
|
unkown
|
page readonly
|
|
|
|
24BA8055000
|
unkown
|
page read and write
|
|
|
|
7FF55A5C4000
|
unkown
|
page readonly
|
|
|
|
1AC24249000
|
unkown
|
page read and write
|
|
|
|
7FF4F953B000
|
unkown
|
page readonly
|
|
|
|
2397C8A0000
|
unkown
|
page read and write
|
|
|
|
7FF5BCD07000
|
unkown
|
page readonly
|
|
|
|
1AC24956000
|
unkown
|
page read and write
|
|
|
|
7FF4FA75C000
|
unkown
|
page readonly
|
|
|
|
2397C83F000
|
unkown
|
page read and write
|
|
|
|
7FF5BCB15000
|
unkown
|
page readonly
|
|
|
|
1315E200000
|
unkown
|
page read and write
|
|
|
|
7FF573411000
|
unkown
|
page readonly
|
|
|
|
7FF56974A000
|
unkown
|
page readonly
|
|
|
|
7FF573388000
|
unkown
|
page readonly
|
|
|
|
1AC2423C000
|
unkown
|
page read and write
|
|
|
|
1AC247E0000
|
unkown
|
page readonly
|
|
|
|
209640C7000
|
unkown
|
page read and write
|
|
|
|
1AC24802000
|
unkown
|
page read and write
|
|
|
|
24BA8113000
|
unkown
|
page read and write
|
|
|
|
20964045000
|
heap private
|
page read and write
|
|
|
|
2397E6B0000
|
unkown
|
page readonly
|
|
|
|
7FF5E5DD9000
|
unkown
|
page readonly
|
|
|
|
1315E302000
|
unkown
|
page read and write
|
|
|
|
7FF558C67000
|
unkown
|
page readonly
|
|
|
|
1AC2495B000
|
unkown
|
page read and write
|
|
|
|
2F2BFEE000
|
unkown
|
page read and write
|
|
|
|
7FF4F96B6000
|
unkown
|
page readonly
|
|
|
|
7FF573357000
|
unkown
|
page readonly
|
|
|
|
7FF5E5D77000
|
unkown
|
page readonly
|
|
|
|
7FF5BCC3D000
|
unkown
|
page readonly
|
|
|
|
24BA806A000
|
unkown
|
page read and write
|
|
|
|
24BA8000000
|
unkown
|
page read and write
|
|
|
|
7FF4F96BD000
|
unkown
|
page readonly
|
|
|
|
22703013000
|
unkown
|
page read and write
|
|
|
|
7FF4F9603000
|
unkown
|
page readonly
|
|
|
|
1AC2494E000
|
unkown
|
page read and write
|
|
|
|
7FF57336A000
|
unkown
|
page readonly
|
|
|
|
F0E33F5000
|
unkown
|
page read and write
|
|
|
|
7FF5585B4000
|
unkown
|
page readonly
|
|
|
|
7FF5BCB11000
|
unkown
|
page readonly
|
|
|
|
7C33CF9000
|
unkown
|
page read and write
|
|
|
|
24BA8067000
|
unkown
|
page read and write
|
|
|
|
7FF5BCBEB000
|
unkown
|
page readonly
|
|
|
|
2397C902000
|
unkown
|
page read and write
|
|
|
|
2397C8BF000
|
unkown
|
page read and write
|
|
|
|
7FF5E5D8F000
|
unkown
|
page readonly
|
|
|
|
1AC2495C000
|
unkown
|
page read and write
|
|
|
|
C9AE27E000
|
unkown
|
page read and write
|
|
|
|
2397C750000
|
heap default
|
page read and write
|
|
|
|
7FF4F9406000
|
unkown
|
page readonly
|
|
|
|
20963FE0000
|
unkown
|
page readonly
|
|
|
|
7FF5BCD44000
|
unkown
|
page readonly
|
|
|
|
7FF558F66000
|
unkown
|
page readonly
|
|
|
|
7FF4FAAAB000
|
unkown
|
page readonly
|
|
|
|
7FF5BC9BF000
|
unkown
|
page readonly
|
|
|
|
209640B6000
|
heap default
|
page read and write
|
|
|
|
1AC24940000
|
unkown
|
page read and write
|
|
|
|
7FF5A8A34000
|
unkown
|
page readonly
|
|
|
|
7FF5BC8C9000
|
unkown
|
page readonly
|
|
|
|
7FF558F3A000
|
unkown
|
page readonly
|
|
|
|
7FF5697BF000
|
unkown
|
page readonly
|
|
|
|
1315E270000
|
unkown
|
page read and write
|
|
|
|
7C6B17E000
|
unkown
|
page read and write
|
|
|
|
7FF558A5E000
|
unkown
|
page readonly
|
|
|
|
1AC25000000
|
unkown
|
page readonly
|
|
|
|
7FF5697CE000
|
unkown
|
page readonly
|
|
|
|
7FF4F9640000
|
unkown
|
page readonly
|
|
|
|
7FF4F9317000
|
unkown
|
page readonly
|
|
|
|
7FF55A5E8000
|
unkown
|
page readonly
|
|
|
|
216B9190000
|
unkown
|
page readonly
|
|
|
|
2397E710000
|
unkown
|
page readonly
|
|
|
|
7FF5BCACF000
|
unkown
|
page readonly
|
|
|
|
24BA8102000
|
unkown
|
page read and write
|
|
|
|
2397C8FA000
|
unkown
|
page read and write
|
|
|
|
7FF5BCAB6000
|
unkown
|
page readonly
|
|
|
|
24BA806C000
|
unkown
|
page read and write
|
|
|
|
7FF5BCCF0000
|
unkown
|
page readonly
|
|
|
|
7FF5BCC90000
|
unkown
|
page readonly
|
|
|
|
7A307FF000
|
unkown
|
page read and write
|
|
|
|
24BA806A000
|
unkown
|
page read and write
|
|
|
|
7FF4FAACC000
|
unkown
|
page readonly
|
|
|
|
1AC2495A000
|
unkown
|
page read and write
|
|
|
|
216B9249000
|
unkown
|
page read and write
|
|
|
|
22704EF0000
|
unkown
|
page read and write
|
|
|
|
7FF57326D000
|
unkown
|
page readonly
|
|
|
|
1AC242D7000
|
unkown
|
page read and write
|
|
|
|
1315E253000
|
unkown
|
page read and write
|
|
|
|
7FF5E5DD6000
|
unkown
|
page readonly
|
|
|
|
24BA806B000
|
unkown
|
page read and write
|
|
|
|
2397C829000
|
unkown
|
page read and write
|
|
|
|
7FF5E5E52000
|
unkown
|
page readonly
|
|
|
|
7FF55A580000
|
unkown
|
page readonly
|
|
|
|
7FF4FAA9A000
|
unkown
|
page readonly
|
|
|
|
7FF5BCBF8000
|
unkown
|
page readonly
|
|
|
|
1AC249A5000
|
unkown
|
page read and write
|
|
|
|
7FF4FAB08000
|
unkown
|
page readonly
|
|
|
|
216B9213000
|
unkown
|
page read and write
|
|
|
|
7FF5A8A2A000
|
unkown
|
page readonly
|
|
|
|
1AC242A2000
|
unkown
|
page read and write
|
|
|
|
1AC24996000
|
unkown
|
page read and write
|
|
|
|
216B924E000
|
unkown
|
page read and write
|
|
|
|
1315E130000
|
heap default
|
page read and write
|
|
|
|
7FF5A8805000
|
unkown
|
page readonly
|
|
|
|
7FF5E5D23000
|
unkown
|
page readonly
|
|
|
|
216B9288000
|
unkown
|
page read and write
|
|
|
|
1315E400000
|
unkown
|
page readonly
|
|
|
|
7FF4F95E0000
|
unkown
|
page readonly
|
|
|
|
7FF4F9724000
|
unkown
|
page readonly
|
|
|
|
7FF573396000
|
unkown
|
page readonly
|
|
|
|
7FF5BCDDA000
|
unkown
|
page readonly
|
|
|
|
7FF558EBB000
|
unkown
|
page readonly
|
|
|
|
7C6B1FF000
|
unkown
|
page read and write
|
|
|
|
24BA8069000
|
unkown
|
page read and write
|
|
|
|
7FF573404000
|
unkown
|
page readonly
|
|
|
|
814E77E000
|
unkown
|
page read and write
|
|
|
|
216B9229000
|
unkown
|
page read and write
|
|
|
|
1AC24964000
|
unkown
|
page read and write
|
|
|
|
7FF558AB6000
|
unkown
|
page readonly
|
|
|
|
7FF5697B4000
|
unkown
|
page readonly
|
|
|
|
7FF5A89E0000
|
unkown
|
page readonly
|
|
|
|
1315E250000
|
unkown
|
page read and write
|
|
|
|
2397E6C0000
|
heap private
|
page read and write
|
|
|
|
2397E370000
|
unkown
|
page readonly
|
|
|
|
7FF55A672000
|
unkown
|
page readonly
|
|
|
|
7FF5BCD58000
|
unkown
|
page readonly
|
|
|
|
24BA8067000
|
unkown
|
page read and write
|
|
|
|
2397CAD0000
|
unkown
|
page readonly
|
|
|
|
7FF5A8A0F000
|
unkown
|
page readonly
|
|
|
|
1AC24940000
|
unkown
|
page read and write
|
|
|
|
1AC2493A000
|
unkown
|
page read and write
|
|
|
|
1AC24938000
|
unkown
|
page read and write
|
|
|
|
1AC2495D000
|
unkown
|
page read and write
|
|
|
|
7FF558FE2000
|
unkown
|
page readonly
|
|
|
|
7FF5697A4000
|
unkown
|
page readonly
|
|
|
|
7FF55A5CA000
|
unkown
|
page readonly
|
|
|
|
1AC24961000
|
unkown
|
page read and write
|
|
|
|
1AC24D90000
|
unkown
|
page read and write
|
|
|
|
7FF57328C000
|
unkown
|
page readonly
|
|
|
|
7FF5E5D98000
|
unkown
|
page readonly
|
|
|
|
7FF4F9684000
|
unkown
|
page readonly
|
|
|
|
7FF569765000
|
unkown
|
page readonly
|
|
|
|
1315E28A000
|
unkown
|
page read and write
|
|
|
|
7FF5BCD66000
|
unkown
|
page readonly
|
|
|
|
7FF558E5C000
|
unkown
|
page readonly
|
|
|
|
7FF572EE0000
|
unkown
|
page readonly
|
|
|
|
2F2C47F000
|
unkown
|
page read and write
|
|
|
|
7FF4F92FC000
|
unkown
|
page readonly
|
|
|
|
24BA806C000
|
unkown
|
page read and write
|
|
|
|
7FF573201000
|
unkown
|
page readonly
|
|
|
|
1E5945E0000
|
heap private
|
page read and write
|
|
|
|
7FF5E55BD000
|
unkown
|
page readonly
|
|
|
|
2397C813000
|
unkown
|
page read and write
|
|
|
|
7FF4F9694000
|
unkown
|
page readonly
|
|
|
|
1AC24253000
|
unkown
|
page read and write
|
|
|
|
7FF4FAB84000
|
unkown
|
page readonly
|
|
|
|
7FF5E5D65000
|
unkown
|
page readonly
|
|
|
|
1AC2495B000
|
unkown
|
page read and write
|
|
|
|
7FF4FA8F9000
|
unkown
|
page readonly
|
|
|
|
1AC24251000
|
unkown
|
page read and write
|
|
|
|
7FF57334C000
|
unkown
|
page readonly
|
|
|
|
7FF5E5A37000
|
unkown
|
page readonly
|
|
|
|
7FF57330A000
|
unkown
|
page readonly
|
|
|
|
7FF4FAAD8000
|
unkown
|
page readonly
|
|
|
|
1315E0D0000
|
heap private
|
page read and write
|
|
|
|
1AC24944000
|
unkown
|
page read and write
|
|
|
|
1AC24920000
|
unkown
|
page read and write
|
|
|
|
7FF55A585000
|
unkown
|
page readonly
|
|
|
|
1AC24944000
|
unkown
|
page read and write
|
|
|
|
1E594869000
|
unkown
|
page read and write
|
|
|
|
24BA8200000
|
unkown
|
page readonly
|
|
|
|
1AC2424C000
|
unkown
|
page read and write
|
|
|
|
1AC24959000
|
unkown
|
page read and write
|
|
|
|
7FF4FAA63000
|
unkown
|
page readonly
|
|
|
|
1AC242C4000
|
unkown
|
page read and write
|
|
|
|
7FF558AB0000
|
unkown
|
page readonly
|
|
|
|
7FF5BCCEE000
|
unkown
|
page readonly
|
|
|
|
7FF569777000
|
unkown
|
page readonly
|
|
|
|
7A3039E000
|
unkown
|
page read and write
|
|
|
|
1AC2495E000
|
unkown
|
page read and write
|
|
|
|
7FF5BCCFB000
|
unkown
|
page readonly
|
|
|
|
1AC2495A000
|
unkown
|
page read and write
|
|
|
|
7C3354E000
|
unkown
|
page read and write
|
|
|
|
2397C8B7000
|
unkown
|
page read and write
|
|
|
|
7FF5BCCC4000
|
unkown
|
page readonly
|
|
|
|
7FF5697C8000
|
unkown
|
page readonly
|
|
|
|
1315E24A000
|
unkown
|
page read and write
|
|
|
|
24BA8100000
|
unkown
|
page read and write
|
|
|
|
7FF5A8A0C000
|
unkown
|
page readonly
|
|
|
|
1AC249D4000
|
unkown
|
page read and write
|
|
|
|
1AC24993000
|
unkown
|
page read and write
|
|
|
|
7FF4F963E000
|
unkown
|
page readonly
|
|
|
|
814E7FA000
|
unkown
|
page read and write
|
|
|
|
1AC24984000
|
unkown
|
page read and write
|
|
|
|
7FF4FAAF4000
|
unkown
|
page readonly
|
|
|
|
7FF4FAB16000
|
unkown
|
page readonly
|
|
|
|
7FF4FA76F000
|
unkown
|
page readonly
|
|
|
|
1AC24954000
|
unkown
|
page read and write
|
|
|
|
7FF5E5D5E000
|
unkown
|
page readonly
|
|
|
|
2397C760000
|
unkown
|
page write copy
|
|
|
|
1AC24944000
|
unkown
|
page read and write
|
|
|
|
2397E949000
|
unkown
|
page read and write
|
|
|
|
7FF573364000
|
unkown
|
page readonly
|
|
|
|
21696DF0000
|
unkown
|
page read and write
|
|
|
|
1AC249D4000
|
unkown
|
page read and write
|
|
|
|
7FF5A86AF000
|
unkown
|
page readonly
|
|
|
|
1E59486A000
|
unkown
|
page read and write
|
|
|
|
7FF56975A000
|
unkown
|
page readonly
|
|
|
|
1315E24D000
|
unkown
|
page read and write
|
|
|
|
7FF4F964B000
|
unkown
|
page readonly
|
|
|
|
7FF4FAA40000
|
unkown
|
page readonly
|
|
|
|
7FF5A8A5D000
|
unkown
|
page readonly
|
|
|
|
7FF4F9499000
|
unkown
|
page readonly
|
|
|
|
7FF558EFB000
|
unkown
|
page readonly
|
|
|
|
1AC24288000
|
unkown
|
page read and write
|
|
|
|
170F88C000
|
unkown
|
page read and write
|
|
|
|
7FF558843000
|
unkown
|
page readonly
|
|
|
|
7FF4FA2FD000
|
unkown
|
page readonly
|
|
|
|
7FF5A8982000
|
unkown
|
page readonly
|
|
|
|
7FF5BCC92000
|
unkown
|
page readonly
|
|
|
|
7FF57337F000
|
unkown
|
page readonly
|
|
|
|
7FF5E5A2A000
|
unkown
|
page readonly
|
|
|
|
1AC24970000
|
unkown
|
page read and write
|
|
|
|
7FF572EF5000
|
unkown
|
page readonly
|
|
|
|
7FF558F07000
|
unkown
|
page readonly
|
|
|
|
216B9267000
|
unkown
|
page read and write
|
|
|
|
7FF5729EA000
|
unkown
|
page readonly
|
|
|
|
1AC24976000
|
unkown
|
page read and write
|
|
|
|
7A3077F000
|
unkown
|
page read and write
|
|
|
|
21695429000
|
unkown
|
page read and write
|
|
|
|
7FF569851000
|
unkown
|
page readonly
|
|
|
|
1E594867000
|
unkown
|
page read and write
|
|
|
|
7FF558E90000
|
unkown
|
page readonly
|
|
|
|
21695310000
|
unkown
|
page readonly
|
|
|
|
1AC24229000
|
unkown
|
page read and write
|
|
|
|
22702FA0000
|
heap default
|
page read and write
|
|
|
|
B7D05F9000
|
unkown
|
page read and write
|
|
|
|
22704A90000
|
unkown
|
page read and write
|
|
|
|
7FF5A88DB000
|
unkown
|
page readonly
|
|
|
|
1AC24920000
|
unkown
|
page read and write
|
|
|
|
7FF4FAB19000
|
unkown
|
page readonly
|
|
|
|
F0E36FC000
|
unkown
|
page read and write
|
|
|
|
7FF5BCD69000
|
unkown
|
page readonly
|
|
|
|
1AC24958000
|
unkown
|
page read and write
|
|
|
|
2F2C27E000
|
unkown
|
page read and write
|
|
|
|
22703102000
|
unkown
|
page read and write
|
|
|
|
209640E0000
|
unkown
|
page read and write
|
|
|
|
7FF5A89F7000
|
unkown
|
page readonly
|
|
|
|
1AC2493D000
|
unkown
|
page read and write
|
|
|
|
7FF5E5DB4000
|
unkown
|
page readonly
|
|
|
|
7FF5E5DA4000
|
unkown
|
page readonly
|
|
|
|
7FF558EF5000
|
unkown
|
page readonly
|
|
|
|
7FF4F930F000
|
unkown
|
page readonly
|
|
|
|
1AC2495E000
|
unkown
|
page read and write
|
|
|
|
7FF4F93FB000
|
unkown
|
page readonly
|
|
|
|
7FF5A89E5000
|
unkown
|
page readonly
|
|
|
|
7FF5BCB41000
|
unkown
|
page readonly
|
|
|
|
7FF4FAB92000
|
unkown
|
page readonly
|
|
|
|
7FF55A664000
|
unkown
|
page readonly
|
|
|
|
7FF55A671000
|
unkown
|
page readonly
|
|
|
|
7FF4FAAFE000
|
unkown
|
page readonly
|
|
|
|
7FF558DD1000
|
unkown
|
page readonly
|
|
|
|
7FF558F1F000
|
unkown
|
page readonly
|
|
|
|
1E594829000
|
unkown
|
page read and write
|
|
|
|
7FF5A8801000
|
unkown
|
page readonly
|
|
|
|
1AC2493D000
|
unkown
|
page read and write
|
|
|
|
1AC24213000
|
unkown
|
page read and write
|
|
|
|
7FF5A8A59000
|
unkown
|
page readonly
|
|
|
|
7FF56975E000
|
unkown
|
page readonly
|
|
|
|
209640AB000
|
heap default
|
page read and write
|
|
|
|
1AC2495E000
|
unkown
|
page read and write
|
|
|
|
7FF57340A000
|
unkown
|
page readonly
|
|
|
|
209640B1000
|
unkown
|
page read and write
|
|
|
|
B7D06FF000
|
unkown
|
page read and write
|
|
|
|
7FF4F8E9D000
|
unkown
|
page readonly
|
|
|
|
1315E140000
|
unkown
|
page readonly
|
|
|
|
1AC24790000
|
unkown
|
page read and write
|
|
|
|
1AC2496D000
|
unkown
|
page read and write
|
|
|
|
7FF5A86AA000
|
unkown
|
page readonly
|
|
|
|
1E594A00000
|
unkown
|
page readonly
|
|
|
|
2397E720000
|
unkown
|
page read and write
|
|
|
|
7FF57321B000
|
unkown
|
page readonly
|
|
|
|
7FF5BC5F1000
|
unkown
|
page readonly
|
|
|
|
216B923C000
|
unkown
|
page read and write
|
|
|
|
1AC24959000
|
unkown
|
page read and write
|
|
|
|
2270306E000
|
unkown
|
page read and write
|
|
|
|
814E8FE000
|
unkown
|
page read and write
|
|
|
|
7FF4F96A8000
|
unkown
|
page readonly
|
|
|
|
1AC24996000
|
unkown
|
page read and write
|
|
|
|
7FF4FAB8A000
|
unkown
|
page readonly
|
|
|
|
1AC24E61000
|
unkown
|
page read and write
|
|
|
|
2397C87E000
|
unkown
|
page read and write
|
|
|
|
7C33AF7000
|
unkown
|
page read and write
|
|
|
|
7FF5BCCF5000
|
unkown
|
page readonly
|
|
|
|
2397C6F0000
|
heap private
|
page read and write
|
|
|
|
7FF4F9465000
|
unkown
|
page readonly
|
|
|
|
1AC2496B000
|
unkown
|
page read and write
|
|
|
|
209640C6000
|
unkown
|
page read and write
|
|
|
|
7FF558EC4000
|
unkown
|
page readonly
|
|
|
|
1AC24979000
|
unkown
|
page read and write
|
|
|
|
1AC24956000
|
unkown
|
page read and write
|
|
|
|
1AC24975000
|
unkown
|
page read and write
|
|
|
|
7FF4F9521000
|
unkown
|
page readonly
|
|
|
|
216B9308000
|
unkown
|
page read and write
|
|
|
|
24BA806A000
|
unkown
|
page read and write
|
|
|
|
2397E900000
|
unkown
|
page read and write
|
|
|
|
1E594854000
|
unkown
|
page read and write
|
|
|
|
814E9FB000
|
unkown
|
page read and write
|
|
|
|
814E979000
|
unkown
|
page read and write
|
|
|
|
24BA806A000
|
unkown
|
page read and write
|
|
|
|
1E59486A000
|
unkown
|
page read and write
|
|
|
|
7FF5BCB26000
|
unkown
|
page readonly
|
|
|
|
7FF5BCC8C000
|
unkown
|
page readonly
|
|
|
|
2397E720000
|
unkown
|
page read and write
|
|
|
|
1AC24956000
|
unkown
|
page read and write
|
|
|
|
1AC2493D000
|
unkown
|
page read and write
|
|
|
|
7FF55A25A000
|
unkown
|
page readonly
|
|
|
|
7FF5A8ACA000
|
unkown
|
page readonly
|
|
|
|
7FF558DEE000
|
unkown
|
page readonly
|
|
|
|
1AC24900000
|
unkown
|
page read and write
|
|
|
|
1AC24959000
|
unkown
|
page read and write
|
|
|
|
216B9400000
|
unkown
|
page readonly
|
|
|
|
7FF5E5DDD000
|
unkown
|
page readonly
|
|
|
|
2397E902000
|
unkown
|
page read and write
|
|
|
|
2397C8CB000
|
unkown
|
page read and write
|
|
|
|
24BA7E10000
|
unkown
|
page readonly
|
|
|
|
227034D0000
|
unkown
|
page readonly
|
|
|
|
2270306C000
|
unkown
|
page read and write
|
|
|
|
7FF55A66A000
|
unkown
|
page readonly
|
|
|
|
7FF558D26000
|
unkown
|
page readonly
|
|
|
|
7FF5BC852000
|
unkown
|
page readonly
|
|
|
|
1AC2495E000
|
unkown
|
page read and write
|
|
|
|
2397C800000
|
unkown
|
page read and write
|
|
|
|
7FF56976B000
|
unkown
|
page readonly
|
|
|
|
216B91B0000
|
unkown
|
page read and write
|
|
|
|
7FF558CAB000
|
unkown
|
page readonly
|
|
|
|
1AC24040000
|
unkown
|
page readonly
|
|
|
|
7FF5BCDE2000
|
unkown
|
page readonly
|
|
|
|
2F2C379000
|
unkown
|
page read and write
|
|
|
|
24BA7F30000
|
unkown
|
page readonly
|
|
|
|
814E879000
|
unkown
|
page read and write
|
|
|
|
7FF5A8A18000
|
unkown
|
page readonly
|
|
|
|
1AC24A00000
|
unkown
|
page readonly
|
|
|
|
7FF5BC9BA000
|
unkown
|
page readonly
|
|
|
|
24BA806B000
|
unkown
|
page read and write
|
|
|
|
7FF4F96B1000
|
unkown
|
page readonly
|
|
|
|
7FF5E5E51000
|
unkown
|
page readonly
|
|
|
|
7FF4F9678000
|
unkown
|
page readonly
|
|
|
|
7FF5BCD1F000
|
unkown
|
page readonly
|
|
|
|
1AC24999000
|
unkown
|
page read and write
|
|
|
|
24BA806E000
|
unkown
|
page read and write
|
|
|
|
1AC24D90000
|
unkown
|
page read and write
|
|
|
|
1AC242A6000
|
unkown
|
page read and write
|
|
|
|
24BA806E000
|
unkown
|
page read and write
|
|
|
|
1AC24958000
|
unkown
|
page read and write
|
|
|
|
7FF558FE1000
|
unkown
|
page readonly
|
|
|
|
1AC24951000
|
unkown
|
page read and write
|
|
|
|
7FF558DEB000
|
unkown
|
page readonly
|
|
|
|
2397C7F0000
|
unkown
|
page read and write
|
|
|
|
7FF558F44000
|
unkown
|
page readonly
|
|
|
|
1E594867000
|
unkown
|
page read and write
|
|
|
|
7FF5BCB31000
|
unkown
|
page readonly
|
|
|
|
1E594833000
|
unkown
|
page read and write
|
|
|
|
7FF5696AD000
|
unkown
|
page readonly
|
|
|
|
1E594902000
|
unkown
|
page read and write
|
|
|
|
7FF573399000
|
unkown
|
page readonly
|
|
|
|
7FF558F69000
|
unkown
|
page readonly
|
|
|
|
170FFFD000
|
unkown
|
page read and write
|
|
|
|
216B9267000
|
unkown
|
page read and write
|
|
|
|
7C6B0FE000
|
unkown
|
page read and write
|
|
|
|
7FF573337000
|
unkown
|
page readonly
|
|
|
|
1AC24956000
|
unkown
|
page read and write
|
|
|
|
1AC242BD000
|
unkown
|
page read and write
|
|
|
|
1AC24979000
|
unkown
|
page read and write
|
|
|
|
7C334CB000
|
unkown
|
page read and write
|
|
|
|
1AC2496E000
|
unkown
|
page read and write
|
|
|
|
7FF558BCA000
|
unkown
|
page readonly
|
|
|
|
1AC24979000
|
unkown
|
page read and write
|
|
|
|
7FF558ECF000
|
unkown
|
page readonly
|
|
|
|
7FF57334F000
|
unkown
|
page readonly
|
|
|
|
2397E946000
|
unkown
|
page read and write
|
|
|
|
216B9255000
|
unkown
|
page read and write
|
|
|
|
7FF5696C4000
|
unkown
|
page readonly
|
|
|
|
7C6B2FE000
|
unkown
|
page read and write
|
|
|
|
2397EA00000
|
unkown
|
page readonly
|
|
|
|
7FF4FA99B000
|
unkown
|
page readonly
|
|
|
|
7FF5697D6000
|
unkown
|
page readonly
|
|
|
|
7FF573412000
|
unkown
|
page readonly
|
|
|
|
209640CE000
|
unkown
|
page read and write
|
|
|
|
216B9302000
|
unkown
|
page read and write
|
|
|
|
22702FB0000
|
unkown
|
page write copy
|
|
|
|
F0E32FE000
|
unkown
|
page read and write
|
|
|
|
1AC242F7000
|
unkown
|
page read and write
|
|
|
|
24BA803F000
|
unkown
|
page read and write
|
|
|
|
7FF5696B3000
|
unkown
|
page readonly
|
|
|
|
24BA806E000
|
unkown
|
page read and write
|
|
|
|
7FF4F963A000
|
unkown
|
page readonly
|
|
|
|
24BA806A000
|
unkown
|
page read and write
|
|
|
|
7FF4FAAB7000
|
unkown
|
page readonly
|
|
|
|
2397E802000
|
unkown
|
page read and write
|
|
|
|
7FF5A8980000
|
unkown
|
page readonly
|
|
|
|
1AC24030000
|
heap default
|
page read and write
|
|
|
|
2397E730000
|
unkown
|
page readonly
|
|
|
|
1AC249CF000
|
unkown
|
page read and write
|
|
|
|
1AC242ED000
|
unkown
|
page read and write
|
|
|
|
F0E34FB000
|
unkown
|
page read and write
|
|
|
|
22704B90000
|
unkown
|
page readonly
|
|
|
|
1AC242E0000
|
unkown
|
page read and write
|
|
|
|
1315E22A000
|
unkown
|
page read and write
|
|
|
|
21696EF0000
|
unkown
|
page readonly
|
|
|
|
7FF558847000
|
unkown
|
page readonly
|
|
|
|
7FF558CB6000
|
unkown
|
page readonly
|
|
|
|
1AC24939000
|
unkown
|
page read and write
|
|
|
|
1AC24302000
|
unkown
|
page read and write
|
|
|
|
22703055000
|
unkown
|
page read and write
|
|
|
|
2397C8B5000
|
unkown
|
page read and write
|
|
|
|
7A3031E000
|
unkown
|
page read and write
|
|
|
|
7FF4F9543000
|
unkown
|
page readonly
|
|
|
|
7FF5BCD3A000
|
unkown
|
page readonly
|
|
|
|
1315E308000
|
unkown
|
page read and write
|
|
|
|
7FF5A8A56000
|
unkown
|
page readonly
|
|
|
|
21695400000
|
unkown
|
page read and write
|
|
|
|
7FF4FA9A3000
|
unkown
|
page readonly
|
|
|
|
2397E915000
|
unkown
|
page read and write
|
|
|
|
7FF558FD4000
|
unkown
|
page readonly
|
|
|
|
216B9200000
|
unkown
|
page read and write
|
|
|
|
7FF5BC9C7000
|
unkown
|
page readonly
|
|
|
|
7FF5BCD1C000
|
unkown
|
page readonly
|
|
|
|
B7D0679000
|
unkown
|
page read and write
|
|
|
|
1AC24308000
|
unkown
|
page read and write
|
|
|
|
22703113000
|
unkown
|
page read and write
|
|
|
|
7FF569797000
|
unkown
|
page readonly
|
|
|
|
7FF5E5D6B000
|
unkown
|
page readonly
|
|
|
|
1AC24959000
|
unkown
|
page read and write
|
|
|
|
1AC2495C000
|
unkown
|
page read and write
|
|
|
|
7FF5E5B26000
|
unkown
|
page readonly
|
|
|
|
1AC2494D000
|
unkown
|
page read and write
|
|
|
|
170F98E000
|
unkown
|
page read and write
|
|
|
|
7FF4FAA42000
|
unkown
|
page readonly
|
|
|
|
7FF5BCAAB000
|
unkown
|
page readonly
|
|
|
|
7FF57332B000
|
unkown
|
page readonly
|
|
|
|
7FF558EDA000
|
unkown
|
page readonly
|
|
|
|
2F2C2FA000
|
unkown
|
page read and write
|
|
|
|
17100FE000
|
unkown
|
page read and write
|
|
|
|
7FF4F9657000
|
unkown
|
page readonly
|
|
|
|
7FF4F972A000
|
unkown
|
page readonly
|
|
|
|
1AC242AF000
|
unkown
|
page read and write
|
|
|
|
216B9256000
|
unkown
|
page read and write
|
|
|
|
7FF558E92000
|
unkown
|
page readonly
|
|
|
|
F0E38FE000
|
unkown
|
page read and write
|
|
|
|
2397CA00000
|
unkown
|
page readonly
|
|
|
|
7FF5589CE000
|
unkown
|
page readonly
|
|
|
|
7FF5E5A2F000
|
unkown
|
page readonly
|
|
|
|
1AC24E54000
|
unkown
|
page read and write
|
|
|
|
7FF4F96B9000
|
unkown
|
page readonly
|
|
|
|
B7D04FE000
|
unkown
|
page read and write
|
|
|
|
1AC241F0000
|
unkown
|
page readonly
|
|
|
|
1E59486A000
|
unkown
|
page read and write
|
|
|
|
1AC24967000
|
unkown
|
page read and write
|
|
|
|
7FF57331A000
|
unkown
|
page readonly
|
|
|
|
227032D0000
|
unkown
|
page readonly
|
|
|
|
1E594913000
|
unkown
|
page read and write
|
|
|
|
814EAFD000
|
unkown
|
page read and write
|
|
|
|
1AC2496F000
|
unkown
|
page read and write
|
|
|
|
7FF57339D000
|
unkown
|
page readonly
|
|
|
|
7FF568E2A000
|
unkown
|
page readonly
|
|
|
|
1AC2496F000
|
unkown
|
page read and write
|
|
|
|
7FF573284000
|
unkown
|
page readonly
|
|
|
|
7FF55A58B000
|
unkown
|
page readonly
|
|
|
|
1AC24945000
|
unkown
|
page read and write
|
|
|
|
1AC24996000
|
unkown
|
page read and write
|
|
|
|
C9ADF2B000
|
unkown
|
page read and write
|
|
|
|
1AC24400000
|
unkown
|
page readonly
|
|
|
|
7FF5BCCCF000
|
unkown
|
page readonly
|
|
|
|
22703200000
|
unkown
|
page readonly
|
|
|
|
2397C7B0000
|
unkown
|
page readonly
|
|
|
|
1AC2497D000
|
unkown
|
page read and write
|
|
|
|
7FF558F58000
|
unkown
|
page readonly
|
|
|
|
7FF558E3D000
|
unkown
|
page readonly
|
|
|
|
7FF4FAACF000
|
unkown
|
page readonly
|
|
|
|
1AC24965000
|
unkown
|
page read and write
|
|
|
|
1AC24E00000
|
unkown
|
page read and write
|
|
|
|
2397E986000
|
unkown
|
page read and write
|
|
|
|
7FF5E5C63000
|
unkown
|
page readonly
|
|
|
|
7FF572EE6000
|
unkown
|
page readonly
|
|
|
|
7C33E7E000
|
unkown
|
page read and write
|
|
|
|
7FF5A869C000
|
unkown
|
page readonly
|
|
|
|
209641A0000
|
unkown
|
page readonly
|
|
|
|
7FF5A8A24000
|
unkown
|
page readonly
|
|
|
|
1315E23C000
|
unkown
|
page read and write
|
|
|
|
1AC24E02000
|
unkown
|
page read and write
|
|
|
|
1AC24D40000
|
unkown
|
page write copy
|
|
|
|
21695300000
|
heap default
|
page read and write
|
|
|
|
7FF5E5E44000
|
unkown
|
page readonly
|
|
|
|
1AC24920000
|
unkown
|
page read and write
|
|
|
|
7FF57338E000
|
unkown
|
page readonly
|
|
|
|
7FF5BCCB3000
|
unkown
|
page readonly
|
|
|
|
1AC24981000
|
unkown
|
page read and write
|
|
|
|
1E594650000
|
unkown
|
page readonly
|
|
|
|
1315E150000
|
unkown
|
page readonly
|
|
|
|
209640CE000
|
unkown
|
page read and write
|
|
|
|
1AC24952000
|
unkown
|
page read and write
|
|
|
|
814EB7E000
|
unkown
|
page read and write
|
|
|
|
1E594770000
|
unkown
|
page readonly
|
|
|
|
24BA7EE0000
|
unkown
|
page write copy
|
|
|
|
22703000000
|
unkown
|
page read and write
|
|
|
|
7FF5BCCDA000
|
unkown
|
page readonly
|
|
|
|
22703002000
|
unkown
|
page read and write
|
|
|
|
7FF5A8AD2000
|
unkown
|
page readonly
|
|
|
|
209640CE000
|
unkown
|
page read and write
|
|
|
|
24BA8067000
|
unkown
|
page read and write
|
|
|
|
2397C8E6000
|
unkown
|
page read and write
|
|
|
|
7FF5A8A48000
|
unkown
|
page readonly
|
|
|
|
24BA8013000
|
unkown
|
page read and write
|
|
|
|
1AC24956000
|
unkown
|
page read and write
|
|
|
|
7FF558CF0000
|
unkown
|
page readonly
|
|
|
|
1315EF40000
|
unkown
|
page readonly
|
|
|
|
7FF5BCCBF000
|
unkown
|
page readonly
|
|
|
|
C9ADFAE000
|
unkown
|
page read and write
|
|
|
|
7A3029B000
|
unkown
|
page read and write
|
|
|
|
7FF569326000
|
unkown
|
page readonly
|
|
|
|
7FF5E5DD1000
|
unkown
|
page readonly
|
|
|
|
1E594802000
|
unkown
|
page read and write
|
|
|
|
1AC24993000
|
unkown
|
page read and write
|
|
|
|
1AC24E02000
|
unkown
|
page read and write
|
|
|
|
7FF5A8A3E000
|
unkown
|
page readonly
|
|
|
|
1AC242EA000
|
unkown
|
page read and write
|
|
|
|
7FF5E5C5B000
|
unkown
|
page readonly
|
|
|
|
1AC24964000
|
unkown
|
page read and write
|
|
|
|
20964040000
|
heap private
|
page read and write
|
|
|
|
7FF5A87A6000
|
unkown
|
page readonly
|
|
|
|
2397C914000
|
unkown
|
page read and write
|
|
|
|
7FF5A89A3000
|
unkown
|
page readonly
|
|
|
|
1AC242ED000
|
unkown
|
page read and write
|
|
|
|
F0E327F000
|
unkown
|
page read and write
|
|
|
|
7FF4FAB11000
|
unkown
|
page readonly
|
|
|
|
1AC24939000
|
unkown
|
page read and write
|
|
|
|
216B9270000
|
unkown
|
page read and write
|
|
|
|
1AC247C0000
|
unkown
|
page readonly
|
|
|
|
7FF4FA85B000
|
unkown
|
page readonly
|
|
|
|
7FF558D31000
|
unkown
|
page readonly
|
|
|
|
7FF4FA866000
|
unkown
|
page readonly
|
|
|
|
24BA7DA0000
|
heap private
|
page read and write
|
|
|
|
1AC2495B000
|
unkown
|
page read and write
|
|
|
|
7A306FA000
|
unkown
|
page read and write
|
|
|
|
1AC24978000
|
unkown
|
page read and write
|
|
|
|
7FF4FA8C1000
|
unkown
|
page readonly
|
|
|
|
1315E4D0000
|
unkown
|
page readonly
|
|
|
|
7FF5E5B1B000
|
unkown
|
page readonly
|
|
|
|
20963F80000
|
unkown
|
page read and write
|
|
|
|
7FF5BCCEA000
|
unkown
|
page readonly
|
|
|
|
7FF5E5DBE000
|
unkown
|
page readonly
|
|
|
|
7FF5E5BB9000
|
unkown
|
page readonly
|
|
|
|
7FF4FA777000
|
unkown
|
page readonly
|
|
|
|
7FF56978F000
|
unkown
|
page readonly
|
|
|
|
7FF5A8A4E000
|
unkown
|
page readonly
|
|
|
|
7FF4FAAA5000
|
unkown
|
page readonly
|
|
|
|
1AC249B8000
|
unkown
|
page read and write
|
|
|
|
216B9860000
|
unkown
|
page readonly
|
|
|
|
1AC2498E000
|
unkown
|
page read and write
|
|
|
|
F0E37FF000
|
unkown
|
page read and write
|
|
|
|
B7D047B000
|
unkown
|
page read and write
|
|
|
|
1E594800000
|
unkown
|
page read and write
|
|
|
|
2397E720000
|
unkown
|
page read and write
|
|
|
|
1315E160000
|
unkown
|
page read and write
|
|
|
|
24BA8067000
|
unkown
|
page read and write
|
|
|
|
1AC24270000
|
unkown
|
page read and write
|
|
|
|
7FF559ED7000
|
unkown
|
page readonly
|
|
|
|
24BA806A000
|
unkown
|
page read and write
|
|
|
|
7FF5A8AD1000
|
unkown
|
page readonly
|
|
|
|
7FF55A5D4000
|
unkown
|
page readonly
|
|
|
|
C9AE2F9000
|
unkown
|
page read and write
|
|
|
|
7FF5BCBF3000
|
unkown
|
page readonly
|
|
|
|
7FF57321E000
|
unkown
|
page readonly
|
|
|
|
1AC24978000
|
unkown
|
page read and write
|
|
|
|
7FF5A88C1000
|
unkown
|
page readonly
|
|
|
|
7FF4FA981000
|
unkown
|
page readonly
|
|
|
|
7FF5A8839000
|
unkown
|
page readonly
|
|
|
|
1AC24E61000
|
unkown
|
page read and write
|
|
|
|
7FF55A5FD000
|
unkown
|
page readonly
|
|
|
|
7FF4FAAA0000
|
unkown
|
page readonly
|
|
|
|
21695413000
|
unkown
|
page read and write
|
|
|
|
21695650000
|
unkown
|
page readonly
|
|
|
|
1E59486A000
|
unkown
|
page read and write
|
|
|
|
1AC2497A000
|
unkown
|
page read and write
|
|
|
|
1AC24956000
|
unkown
|
page read and write
|
|
|
|
7FF558D93000
|
unkown
|
page readonly
|
|
|
|
7FF558AC5000
|
unkown
|
page readonly
|
|
|
|
1AC24D90000
|
unkown
|
page read and write
|
|
|
|
20963FD0000
|
unkown
|
page readonly
|
|
|
|
1E594720000
|
unkown
|
page write copy
|
|
|
|
7FF558A52000
|
unkown
|
page readonly
|
|
|
|
7FF558E54000
|
unkown
|
page readonly
|
|
|
|
1AC24977000
|
unkown
|
page read and write
|
|
|
|
7C33D7E000
|
unkown
|
page read and write
|
|
|
|
7FF4FAA9E000
|
unkown
|
page readonly
|
|
|
|
1AC2497D000
|
unkown
|
page read and write
|
|
|
|
7FF558EEE000
|
unkown
|
page readonly
|
|
|
|
1AC24990000
|
unkown
|
page read and write
|
|
|
|
1E59486A000
|
unkown
|
page read and write
|
|
|
|
7FF5729E4000
|
unkown
|
page readonly
|
|
|
|
1AC247F0000
|
unkown
|
page readonly
|
|
|
|
814EA7B000
|
unkown
|
page read and write
|
|
|
|
B7D077E000
|
unkown
|
page read and write
|
|
|
|
24BA806E000
|
unkown
|
page read and write
|
|
|
|
216B924B000
|
unkown
|
page read and write
|
|
|
|
2397C852000
|
unkown
|
page read and write
|
|
|
|
1AC24977000
|
unkown
|
page read and write
|
|
|
|
7FF558D41000
|
unkown
|
page readonly
|
|
|
|
7FF4FAAE4000
|
unkown
|
page readonly
|
|
|
|
7FF569335000
|
unkown
|
page readonly
|
|
|
|
7FF568E24000
|
unkown
|
page readonly
|
|
|
|
7FF558DF3000
|
unkown
|
page readonly
|
|
|
|
1AC24990000
|
unkown
|
page read and write
|
|
|
|
B7D057E000
|
unkown
|
page read and write
|
|
|
|
7FF5A89DE000
|
unkown
|
page readonly
|
|
|
|
216B927E000
|
unkown
|
page read and write
|
|
|
|
7C339F7000
|
unkown
|
page read and write
|
|
|
|
1AC24316000
|
unkown
|
page read and write
|
|
|
|
7C335CE000
|
unkown
|
page read and write
|
|
|
|
7FF569320000
|
unkown
|
page readonly
|
|
|
|
7FF5587F1000
|
unkown
|
page readonly
|
|
|
|
7C6B37D000
|
unkown
|
page read and write
|
|
|
|
1AC2495A000
|
unkown
|
page read and write
|
|
|
|
7FF569760000
|
unkown
|
page readonly
|
|
|
|
7FF4FAB0E000
|
unkown
|
page readonly
|
|
|
|
7FF5696CC000
|
unkown
|
page readonly
|
|
|
|
24BA806C000
|
unkown
|
page read and write
|
|
|
|
C9AE3FF000
|
unkown
|
page read and write
|
|
|
|
7FF569603000
|
unkown
|
page readonly
|
|
|
|
7FF5A8A51000
|
unkown
|
page readonly
|
|
|
|
7FF5BCB49000
|
unkown
|
page readonly
|
|
|
|
1AC24921000
|
unkown
|
page read and write
|
|
|
|
7FF55A5AC000
|
unkown
|
page readonly
|
|
|
|
7FF56965E000
|
unkown
|
page readonly
|
|
|
|
7FF5E5D02000
|
unkown
|
page readonly
|
|
|
|
7FF56978C000
|
unkown
|
page readonly
|
|
|
|
7FF55A5B8000
|
unkown
|
page readonly
|
|
|
|
1315E222000
|
unkown
|
page read and write
|
|
|
|
7FF4FAAEA000
|
unkown
|
page readonly
|
|
|
|
7FF4FAB1D000
|
unkown
|
page readonly
|
|
|
|
7FF558F4F000
|
unkown
|
page readonly
|
|
|
|
209640DE000
|
unkown
|
page read and write
|
|
|
|
20963EB0000
|
unkown
|
page readonly
|
|
|
|
1AC2498C000
|
unkown
|
page read and write
|
|
|
|
7FF5A89EB000
|
unkown
|
page readonly
|
|
|
|
7FF4F9731000
|
unkown
|
page readonly
|
|
|
|
1AC2495C000
|
unkown
|
page read and write
|
|
|
|
1AC24944000
|
unkown
|
page read and write
|
|
|
|
216B9251000
|
unkown
|
page read and write
|
|
|
|
7FF558F34000
|
unkown
|
page readonly
|
|
|
|
22703100000
|
unkown
|
page read and write
|
|
|
|
7FF5697D9000
|
unkown
|
page readonly
|
|
|
|
7C33F78000
|
unkown
|
page read and write
|
|
|
|
7C6B279000
|
unkown
|
page read and write
|
|
|
|
7FF5BCBD1000
|
unkown
|
page readonly
|
|
|
|
1E59486C000
|
unkown
|
page read and write
|
|
|
|
2397E946000
|
unkown
|
page read and write
|
|
|
|
7FF5BCD5E000
|
unkown
|
page readonly
|
|
|
|
1AC24200000
|
unkown
|
page read and write
|
|
|
|
F0E2FCB000
|
unkown
|
page read and write
|
|
|
|
21695455000
|
unkown
|
page read and write
|
|
|
|
24BA806E000
|
unkown
|
page read and write
|
|
|
|
1AC242A5000
|
unkown
|
page read and write
|
|
|
|
21695502000
|
unkown
|
page read and write
|
|
|
|
1AC24E02000
|
unkown
|
page read and write
|
|
|
|
24BA7E00000
|
heap default
|
page read and write
|
|
|
|
1AC24984000
|
unkown
|
page read and write
|
|
|
|
7FF558E43000
|
unkown
|
page readonly
|
|
|
|
20963FA0000
|
unkown
|
page read and write
|
|
|
|
7FF569641000
|
unkown
|
page readonly
|
|
|
|
7FF5BCD61000
|
unkown
|
page readonly
|
|
|
|
7FF5E5B85000
|
unkown
|
page readonly
|
|
|
|
7FF5BCC82000
|
unkown
|
page readonly
|
|
|
|
7FF558DF8000
|
unkown
|
page readonly
|
|
|
|
7FF5E5E4A000
|
unkown
|
page readonly
|
|
|
|
7FF5A86B7000
|
unkown
|
page readonly
|
|
There are 844 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://erffggf.cf/jd/sharepoint-0/li6orbsabcm5o36s3wlba8p8.php?rand=13InboxLightaspxn.1774256418&fid&1252899642&fid.1&fav.1&email=
|
|
|
|
https://app.box.com/s/ldmpej4bczs3ra2es3qlr0qrqifh99wc
|
|