Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
racial.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\IUHEMSR9\contextual.media[1].xml
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\T8DRMTJ1\www.msn[2].xml
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{945187EB-C4D0-11EB-90E6-ECF4BB82F7E0}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{945187ED-C4D0-11EB-90E6-ECF4BB82F7E0}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{9D77A80C-C4D0-11EB-90E6-ECF4BB82F7E0}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-17529550060\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-18270793970\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-21706820\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-4759708130\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-6757900\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-8760897390\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20259167780\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20332743330\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin8215062560\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\po60zt0\imagestore.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\2d-0e97d4-185735b[1].css
|
UTF-8 Unicode text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\52-478955-68ddb2ab[1].js
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\AAKAE0g[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\AAKF3dk[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\AAKFPFy[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\AAKFgOM[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\AAKFl7X[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 310x166, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\AAKFwN9[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\AAKoiAy[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\AAKp8YX[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\AAKwTqp[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\AAuTnto[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\BB14hq0P[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\BB1aXITZ[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\BB1cEP3G[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\BB1cG73h[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\BB1kvzy[1].png
|
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\BB7gRE[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\BB7hg4[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\BBJrII1[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\BBPfCZL[1].png
|
GIF image data, version 89a, 50 x 50
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\BBX2afX[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\BBkwUr[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\auction[1].htm
|
HTML document, ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\de-ch[1].htm
|
HTML document, UTF-8 Unicode text, with very long lines, with CRLF, LF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\e151e5[1].gif
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\jquery-2.1.1.min[1].js
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\17-361657-68ddb2ab[1].js
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\AA6wTdK[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\AAKDHsZ[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\AAKDiAr[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x75, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\AAKF3od[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\AAKF6YD[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 300x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\AAKFBJq[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x75, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\AAKFFWX[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\AAKFGPg[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x75, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\AAKFGUg[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\AAKFkc2[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\AAKiuLK[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\AAm2UN1[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\BB1ardZ3[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\BBY7ARN[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\a8a064[1].gif
|
GIF image data, version 89a, 28 x 28
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\cfdbd9[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\checksync[1].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\checksync[2].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\http___cdn.taboola.com_libtrc_static_thumbnails_27fb98c971ab2a7fd8fb1b93d6f09452[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\http___cdn.taboola.com_libtrc_static_thumbnails_858913b40c4df9463261f35e7072478e[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\http___cdn.taboola.com_libtrc_static_thumbnails_8fc99439150f903c02347a26453474e6[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\http___cdn.taboola.com_libtrc_static_thumbnails_GETTY_IMAGES_IBK_542734683__clsfZCtG[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\http___cdn.taboola.com_libtrc_static_thumbnails_ca18ae4dd84cc30cab15deedea56e97c[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\http___cdn.taboola.com_libtrc_static_thumbnails_dbb7356dfe1dd7497a916e39184f8a6d[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\nrrV56260[1].js
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\AA6SFRQ[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\AAKDho5[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\AAKEBOL[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\AAKFC6D[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\AAKFFeZ[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\AAKFG5U[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 310x166, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\AAKFGrV[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\AAKFIla[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\AAKFNow[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\AAKFUAE[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 300x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\AAKFgGZ[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\AAKFkoB[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\AAKFmGU[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\BB14EN7h[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\BB14Ue5t[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\BB1dCSOZ[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\BB1ftEY0[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\BB1gqGZR[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\BBVuddh[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\BBXXVfm[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\a5ea21[1].ico
|
PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\de-ch[1].json
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\iab2Data[1].json
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\otFlat[1].json
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\otPcCenter[1].json
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\otSDKStub[1].js
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\otTCF-ie[1].js
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\46a64e19-d1cf-494e-8a93-1a179ccdaae9[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\4996b9[1].woff
|
Web Open Font Format, TrueType, length 45633, version 1.0
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\55a804ab-e5c6-4b97-9319-86263d365d28[1].json
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\AAKET7v[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x75, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\AAKF4cY[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 310x166, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\AAKFBPA[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\AAKFGKm[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\AAKFNiv[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\AAKFesV[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\AAKFgIh[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\AAKFpl8[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\AAKFtNg[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\AAKFx6f[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 310x166, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\BB10MkbM[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\BB15AQNm[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\BBOLLMj[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\BBRUB0d[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\BBUZVvV[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\BBnYSFZ[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\a27dc85a-9c49-4090-8fd6-fcbafa39577a[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\checksync[1].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\checksync[2].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\location[1].js
|
ASCII text, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\medianet[1].htm
|
HTML document, ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\medianet[2].htm
|
HTML document, ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\otBannerSdk[1].js
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF4ADF6EE3AE6B690C.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF7209158F6E36A060.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF7DF577F1B6BE0BA5.TMP
|
data
|
dropped
|
|
There are 115 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Windows\System32\loaddll32.exe
|
loaddll32.exe 'C:\Users\user\Desktop\racial.dll'
|
|
|
|
C:\Windows\SysWOW64\regsvr32.exe
|
regsvr32.exe /s C:\Users\user\Desktop\racial.dll
|
|
|
|
C:\Windows\SysWOW64\rundll32.exe
|
rundll32.exe 'C:\Users\user\Desktop\racial.dll',#1
|
|
|
|
C:\Windows\SysWOW64\rundll32.exe
|
rundll32.exe C:\Users\user\Desktop\racial.dll,DllRegisterServer
|
|
|
|
C:\Windows\SysWOW64\cmd.exe
|
cmd.exe /C rundll32.exe 'C:\Users\user\Desktop\racial.dll',#1
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
C:\Program Files\Internet Explorer\iexplore.exe
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:1752 CREDAT:17410 /prefetch:2
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://searchads.msn.net/.cfm?&&kp=1&
|
unknown
|
|
|
|
https://contextual.media.net/medianet.php?cid=8CU157172
|
unknown
|
|
|
|
https://www.msn.com/de-ch/nachrichten/coronareisen
|
unknown
|
|
|
|
https://click.linksynergy.com/deeplink?id=xoqYgl4JDe8&mid=46130&u1=dech_promotionalstripe_na
|
unknown
|
|
|
|
https://onedrive.live.com;Fotos
|
unknown
|
|
|
|
https://www.msn.com/de-ch/sport?ocid=StripeOCID
|
unknown
|
|
|
|
https://www.msn.com/de-ch/nachrichten/z%c3%bcrich/26-j%c3%a4hriger-mann-stirbt-nach-sturz-auf-vorpla
|
unknown
|
|
|
|
https://www.onenote.com/notebooks?WT.mc_id=MSN_OneNote_TopMenu&auth=1&wdorigin=msn
|
unknown
|
|
|
|
https://office.live.com/start/Word.aspx?WT.mc_id=MSN_site;Excel
|
unknown
|
|
|
|
http://ogp.me/ns/fb#
|
unknown
|
|
|
|
https://www.awin1.com/cread.php?awinmid=15168&awinaffid=696593&clickref=de-ch-ss&ued=htt
|
unknown
|
|
|
|
https://outlook.live.com/mail/deeplink/compose;Kalender
|
unknown
|
|
|
|
https://res-a.akamaihd.net/__media__/pics/8000/72/941/fallback1.jpg
|
unknown
|
|
|
|
https://www.skyscanner.net/g/referrals/v1/cars/home?associateid=API_B2B_19305_00002
|
unknown
|
|
|
|
https://www.onenote.com/notebooks?WT.mc_id=MSN_OneNote_Recent&auth=1&wdorigin=msn
|
unknown
|
|
|
|
https://www.msn.com/de-ch/sport/nachrichten/schweiz-unterliegt-deutschland-im-penaltyschiessen/ar-AA
|
unknown
|
|
|
|
https://www.msn.com/de-ch/nachrichten/z%c3%bcrich/mehr-sicherheit-und-weniger-versp%c3%a4tungen-im-f
|
unknown
|
|
|
|
http://www.reddit.com/
|
unknown
|
|
|
|
https://www.skype.com/
|
unknown
|
|
|
|
https://img.img-taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ce_sharpen%2Ch_311%2Cw_207%2Cc_fill%
|
unknown
|
|
|
|
https://sp.booking.com/index.html?aid=1589774&label=travelnavlink
|
unknown
|
|
|
|
https://www.msn.com/de-ch/nachrichten/regional
|
unknown
|
|
|
|
https://onedrive.live.com/?qt=allmyphotos;Aktuelle
|
unknown
|
|
|
|
https://amzn.to/2TTxhNg
|
unknown
|
|
|
|
https://www.skype.com/go/onedrivepromo.download?cm_mmc=MSFT_2390_MSN-com
|
unknown
|
|
|
|
https://client-s.gateway.messenger.live.com
|
unknown
|
|
|
|
https://www.msn.com/de-ch/
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/gr%c3%bcne-fordern-regierung-soll-zeitungen-f%c3%b6rdern/ar-AAK
|
unknown
|
|
|
|
https://office.live.com/start/PowerPoint.aspx?WT.mc_id=MSN_site
|
unknown
|
|
|
|
https://contextual.media.net/medianet.php?cid=8CU157172&crid=858412214&size=306x271&https=1
|
unknown
|
|
|
|
https://www.awin1.com/cread.php?awinmid=15168&awinaffid=696593&clickref=de-ch-edge-dhp-river
|
unknown
|
|
|
|
https://www.msn.com/de-ch
|
unknown
|
|
|
|
https://click.linksynergy.com/deeplink?id=xoqYgl4JDe8&mid=46130&u1=dech_mestripe_store&m
|
unknown
|
|
|
|
https://twitter.com/i/notifications;Ich
|
unknown
|
|
|
|
https://www.awin1.com/cread.php?awinmid=11518&awinaffid=696593&clickref=dech-edge-dhp-infopa
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/walt-disney-sprach-ihn-an-und-pl%c3%b6tzlich-stand-sein-leben-k
|
unknown
|
|
|
|
https://contextual.media.net/medianet.php?cid=8CU157172&crid=722878611&size=306x271&http
|
unknown
|
|
|
|
https://www.sway.com/?WT.mc_id=MSN_site&utm_source=MSN&utm_medium=Topnav&utm_campaign=link;PowerPoin
|
unknown
|
|
|
|
https://www.msn.com/de-ch/?ocid=iehp&item=deferred_page%3a1&ignorejs=webcore%2fmodules%2fjsb
|
unknown
|
|
|
|
http://www.youtube.com/
|
unknown
|
|
|
|
http://ogp.me/ns#
|
unknown
|
|
|
|
https://onedrive.live.com/?qt=mru;OneDrive-App
|
unknown
|
|
|
|
https://www.skype.com/de
|
unknown
|
|
|
|
https://www.msn.com/de-ch/nachrichten/z%c3%bcrich/k%c3%b6nnen-seil-oder-hochbahnen-z%c3%bcrichs-verk
|
unknown
|
|
|
|
https://www.msn.com/de-ch/nachrichten/z%c3%bcrich/wer-bekommt-im-kanton-z%c3%bcrich-pr%c3%a4mienverb
|
unknown
|
|
|
|
https://sp.booking.com/index.html?aid=1589774&label=dech-prime-hp-me
|
unknown
|
|
|
|
https://tools.applemediaservices.com/api/badges/download-on-the-app-store/black/de-de?"
|
unknown
|
|
|
|
https://www.skype.com/de/download-skype
|
unknown
|
|
|
|
https://onedrive.live.com/?wt.mc_id=oo_msn_msnhomepage_header
|
unknown
|
|
|
|
http://www.hotmail.msn.com/pii/ReadOutlookEmail/
|
unknown
|
|
|
|
https://onedrive.live.com;OneDrive-App
|
unknown
|
|
|
|
https://click.linksynergy.com/deeplink?id=xoqYgl4JDe8&mid=46130&u1=dech_mestripe_office&
|
unknown
|
|
|
|
https://clkde.tradedoubler.com/click?p=295926&a=3064090&g=24886692
|
unknown
|
|
|
|
https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location
|
unknown
|
|
|
|
http://www.amazon.com/
|
unknown
|
|
|
|
https://www.msn.com/de-ch/nachrichten/z%c3%bcrich/eye-tracking-bei-online-pr%c3%bcfungen-keiner-%c3%
|
unknown
|
|
|
|
https://www.onenote.com/notebooks?WT.mc_id=MSN_OneNote_QuickNote&auth=1
|
unknown
|
|
|
|
http://www.twitter.com/
|
unknown
|
|
|
|
https://office.live.com/start/Excel.aspx?WT.mc_id=MSN_site;Sway
|
unknown
|
|
|
|
https://cdn.cookielaw.org/vendorlist/googleData.json
|
unknown
|
|
|
|
https://outlook.com/
|
unknown
|
|
|
|
https://contextual.media.net/checksync.php?&vsSync=1&cs=1&hb=1&cv=37&ndec=1&cid=8HBI57XIG&prvid=77%2
|
unknown
|
|
|
|
https://www.stroeer.com/fileadmin/com/StroeerDSP_deviceStorage.json
|
unknown
|
|
|
|
https://cdn.cookielaw.org/vendorlist/iabData.json
|
unknown
|
|
|
|
https://www.msn.com/de-ch/homepage/api/pdp/updatepdpdata"
|
unknown
|
|
|
|
https://cdn.cookielaw.org/vendorlist/iab2Data.json
|
unknown
|
|
|
|
https://onedrive.live.com/?qt=mru;Aktuelle
|
unknown
|
|
|
|
https://www.msn.com/de-ch/?ocid=iehp
|
unknown
|
|
|
|
https://sp.booking.com/index.html?aid=1589774&label=dech-prime-hp-shoppingstripe-nav
|
unknown
|
|
|
|
https://www.ebay.ch/?mkcid=1&mkrid=5222-53480-19255-0&siteid=193&campid=5338626668&t
|
unknown
|
|
|
|
https://www.msn.com/de-ch/homepage/api/modules/fetch"
|
unknown
|
|
|
|
https://mem.gfx.ms/meversion/?partner=msn&market=de-ch"
|
unknown
|
|
|
|
http://www.nytimes.com/
|
unknown
|
|
|
|
https://web.vortex.data.msn.com/collect/v1/t.gif?name=%27Ms.Webi.PageView%27&ver=%272.1%27&a
|
unknown
|
|
|
|
https://www.stroeer.de/konvergenz-konzepte/daten-technologien/stroeer-ssp/datenschutz-ssp.html
|
unknown
|
|
|
|
https://www.bidstack.com/privacy-policy/
|
unknown
|
|
|
|
https://onedrive.live.com/about/en/download/
|
unknown
|
|
|
|
http://popup.taboola.com/german
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/junger-mann-stirbt-nach-sturz-von-einer-mauer-bei-der-eth/ar-AA
|
unknown
|
|
|
|
https://www.ricardo.ch/?utm_source=msn&utm_medium=affiliate&utm_campaign=msn_mestripe_logo_d
|
unknown
|
|
|
|
https://twitter.com/
|
unknown
|
|
|
|
https://clkde.tradedoubler.com/click?p=245744&a=3064090&g=24903118&epi=ch-de
|
unknown
|
|
|
|
https://outlook.live.com/calendar
|
unknown
|
|
|
|
https://img.img-taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_311%2Cw_207%2Cc_fill%2Cg_faces:au
|
unknown
|
|
|
|
https://onedrive.live.com/#qt=mru
|
unknown
|
|
|
|
https://api.taboola.com/2.0/json/msn-ch-de-home/recommendations.notify-click?app.type=desktop&ap
|
unknown
|
|
|
|
https://www.msn.com?form=MY01O4&OCID=MY01O4
|
unknown
|
|
|
|
https://support.skype.com
|
unknown
|
|
|
|
https://www.skyscanner.net/flights?associateid=API_B2B_19305_00001&vertical=custom&pageType=
|
unknown
|
|
|
|
https://contextual.media.net/medianet.php?cid=8CU157172&crid=722878611&size=306x271&https=1
|
unknown
|
|
|
|
https://clk.tradedoubler.com/click?p=245744&a=3064090&g=21863656
|
unknown
|
|
|
|
http://www.wikipedia.com/
|
unknown
|
|
|
|
https://contextual.media.net/medianet.php?cid=8CU157172&crid=858412214&size=306x271&http
|
unknown
|
|
|
|
https://www.ricardo.ch/?utm_source=msn&utm_medium=affiliate&utm_campaign=msn_shop_de&utm
|
unknown
|
|
|
|
http://www.live.com/
|
unknown
|
|
|
|
https://login.skype.com/login/oauth/microsoft?client_id=738133
|
unknown
|
|
|
|
https://onedrive.live.com?wt.mc_id=oo_msn_msnhomepage_header
|
unknown
|
|
There are 87 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
authd.feronok.com
|
35.199.86.111
|
|
|
|
contextual.media.net
|
23.57.80.37
|
|
|
|
tls13.taboola.map.fastly.net
|
151.101.1.44
|
|
|
|
hblg.media.net
|
23.57.80.37
|
|
|
|
lg3.media.net
|
23.57.80.37
|
|
|
|
geolocation.onetrust.com
|
104.20.184.68
|
|
|
|
web.vortex.data.msn.com
|
unknown
|
|
|
|
www.msn.com
|
unknown
|
|
|
|
srtb.msn.com
|
unknown
|
|
|
|
img.img-taboola.com
|
unknown
|
|
|
|
cvision.media.net
|
unknown
|
|
There are 1 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.168.2.1
|
unknown
|
unknown
|
|
|
|
104.20.184.68
|
geolocation.onetrust.com
|
United States
|
|
|
|
151.101.1.44
|
tls13.taboola.map.fastly.net
|
United States
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\internet explorer\iexplore.exe
|
{945187EB-C4D0-11EB-90E6-ECF4BB82F7E0}
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
NextUpdateDate
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
CVListPingLastYMD
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NumberOfSubdomains
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
There are 88 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
2CF0000
|
unkown
|
page execute and read and write
|
|
|
|
1300000
|
unkown
|
page execute and read and write
|
|
|
|
23C0000
|
unkown
|
page execute and read and write
|
|
|
|
2FD0000
|
unkown
|
page execute and read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF5EA7E8000
|
unkown
|
page readonly
|
|
|
|
1F200C02000
|
unkown
|
page read and write
|
|
|
|
1D8F6D30000
|
unkown
|
page readonly
|
|
|
|
20B4000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2802000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
1F200E02000
|
unkown
|
page read and write
|
|
|
|
166A5874000
|
unkown
|
page read and write
|
|
|
|
7FF50CC58000
|
unkown
|
page readonly
|
|
|
|
2A3B000
|
unkown
|
page readonly
|
|
|
|
2C6EFA77000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
218B000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
9C073FD000
|
unkown
|
page read and write
|
|
|
|
24F98560000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
19820613000
|
unkown
|
page read and write
|
|
|
|
31B0000
|
heap private
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2C6F0A00000
|
unkown
|
page readonly
|
|
|
|
1D8F73C0000
|
unkown
|
page readonly
|
|
|
|
2C6F09C0000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
2C6F50B4000
|
unkown
|
page read and write
|
|
|
|
2C6EFA9F000
|
unkown
|
page read and write
|
|
|
|
19C03DCB000
|
heap default
|
page read and write
|
|
|
|
166A586A000
|
unkown
|
page read and write
|
|
|
|
2F60000
|
unkown
|
page readonly
|
|
|
|
166A5866000
|
unkown
|
page read and write
|
|
|
|
6D6BE000
|
unkown image
|
page execute read
|
|
|
|
7FF50CCB2000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF50E4FA000
|
unkown
|
page readonly
|
|
|
|
217F000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
5888000
|
unkown
|
page read and write
|
|
|
|
7FF598F3B000
|
unkown
|
page readonly
|
|
|
|
2824000
|
unkown
|
page readonly
|
|
|
|
20129C57000
|
unkown
|
page read and write
|
|
|
|
47A6EFF000
|
unkown
|
page read and write
|
|
|
|
14BCC7E000
|
unkown
|
page read and write
|
|
|
|
2C6F52E0000
|
unkown
|
page readonly
|
|
|
|
5228000
|
heap private
|
page read and write
|
|
|
|
7FF50CC55000
|
unkown
|
page readonly
|
|
|
|
2CB0000
|
unkown
|
page readonly
|
|
|
|
7FF599447000
|
unkown
|
page readonly
|
|
|
|
7FF598CDB000
|
unkown
|
page readonly
|
|
|
|
7FF5D2DF5000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
166A585F000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF5CDD31000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
4F30000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
166A5813000
|
unkown
|
page read and write
|
|
|
|
8FF538C000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2C6F09D0000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF59945C000
|
unkown
|
page readonly
|
|
|
|
6D709000
|
unkown image
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF50CD43000
|
unkown
|
page readonly
|
|
|
|
20A9F080000
|
heap default
|
page read and write
|
|
|
|
806658E000
|
unkown
|
page read and write
|
|
|
|
201299F0000
|
heap private
|
page read and write
|
|
|
|
7FF50E664000
|
unkown
|
page readonly
|
|
|
|
2868000
|
unkown
|
page readonly
|
|
|
|
7FF5E4950000
|
unkown
|
page readonly
|
|
|
|
2CE0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2E6E000
|
unkown
|
page read and write
|
|
|
|
19C03DC0000
|
heap default
|
page read and write
|
|
|
|
7FF50CCAC000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF58B1D5000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2728000
|
unkown
|
page readonly
|
|
|
|
7FF56D41B000
|
unkown
|
page readonly
|
|
|
|
19820602000
|
unkown
|
page read and write
|
|
|
|
7FF5CDE83000
|
unkown
|
page readonly
|
|
|
|
1982063F000
|
unkown
|
page read and write
|
|
|
|
166A5860000
|
unkown
|
page read and write
|
|
|
|
7FF58B022000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
1D8F6E52000
|
unkown
|
page read and write
|
|
|
|
7FF5994F3000
|
unkown
|
page readonly
|
|
|
|
28CA000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
4B1F000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2CD0000
|
unkown
|
page execute and read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF56D40C000
|
unkown
|
page readonly
|
|
|
|
2C6F4F74000
|
unkown
|
page read and write
|
|
|
|
7FF56CC9A000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
1F200E13000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
20A9F25A000
|
unkown
|
page read and write
|
|
|
|
20D8000
|
unkown
|
page readonly
|
|
|
|
47A6E7B000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
136E000
|
unkown
|
page read and write
|
|
|
|
7FF58B239000
|
unkown
|
page readonly
|
|
|
|
2081000
|
unkown
|
page readonly
|
|
|
|
2C6F4F40000
|
unkown
|
page read and write
|
|
|
|
7FF5EA842000
|
unkown
|
page readonly
|
|
|
|
166A5862000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
19C05B00000
|
heap private
|
page read and write
|
|
|
|
2C6F5200000
|
unkown
|
page write copy
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
166A5780000
|
unkown
|
page read and write
|
|
|
|
20A9F249000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
19820702000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
24F98702000
|
unkown
|
page read and write
|
|
|
|
7FF5CDE01000
|
unkown
|
page readonly
|
|
|
|
7FF5CDDF2000
|
unkown
|
page readonly
|
|
|
|
2C6F0313000
|
unkown
|
page read and write
|
|
|
|
2CE0000
|
unkown
|
page read and write
|
|
|
|
2C6F52C0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
295D000
|
unkown
|
page readonly
|
|
|
|
7FF58AE2B000
|
unkown
|
page readonly
|
|
|
|
2CB0000
|
unkown
|
page readonly
|
|
|
|
7FF56D496000
|
unkown
|
page readonly
|
|
|
|
EFD000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
2CE0000
|
unkown
|
page read and write
|
|
|
|
166A586E000
|
unkown
|
page read and write
|
|
|
|
7FF5D2C2D000
|
unkown
|
page readonly
|
|
|
|
7FF5CDDA0000
|
unkown
|
page readonly
|
|
|
|
2C6F09F0000
|
unkown
|
page readonly
|
|
|
|
E40FAFF000
|
unkown
|
page read and write
|
|
|
|
47A6F7E000
|
unkown
|
page read and write
|
|
|
|
6D709000
|
unkown image
|
page readonly
|
|
|
|
4E99000
|
heap private
|
page read and write
|
|
|
|
1F200C00000
|
unkown
|
page read and write
|
|
|
|
166A587C000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
20A9F020000
|
heap private
|
page read and write
|
|
|
|
7FF5D2F34000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2CE0000
|
unkown
|
page read and write
|
|
|
|
7FF599405000
|
unkown
|
page readonly
|
|
|
|
20A9F22A000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
20129D13000
|
unkown
|
page read and write
|
|
|
|
29F4000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
1F200C13000
|
unkown
|
page read and write
|
|
|
|
3100000
|
heap default
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF56D3F6000
|
unkown
|
page readonly
|
|
|
|
7FF58B201000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
24F98632000
|
unkown
|
page read and write
|
|
|
|
1D8F6F02000
|
unkown
|
page read and write
|
|
|
|
E40FE7C000
|
unkown
|
page read and write
|
|
|
|
2C6F0401000
|
unkown
|
page read and write
|
|
|
|
7FF50C4A2000
|
unkown
|
page readonly
|
|
|
|
24F98E02000
|
unkown
|
page read and write
|
|
|
|
2C6F50B4000
|
unkown
|
page read and write
|
|
|
|
20A9F1D0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
9C076FE000
|
unkown
|
page read and write
|
|
|
|
455E000
|
unkown
|
page read and write
|
|
|
|
2C6EF8D0000
|
heap default
|
page read and write
|
|
|
|
166A584D000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF50C539000
|
unkown
|
page readonly
|
|
|
|
274A000
|
heap default
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
20A9F25A000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2F80000
|
unkown
|
page execute and read and write
|
|
|
|
4ADE000
|
unkown
|
page read and write
|
|
|
|
2CE0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
28E8000
|
unkown
|
page readonly
|
|
|
|
5610000
|
heap private
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
880CF7F000
|
unkown
|
page read and write
|
|
|
|
2178000
|
unkown
|
page readonly
|
|
|
|
7FF5D2D54000
|
unkown
|
page readonly
|
|
|
|
215A000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
28FB000
|
unkown
|
page readonly
|
|
|
|
2E60000
|
unkown
|
page readonly
|
|
|
|
7FF5E48DD000
|
unkown
|
page readonly
|
|
|
|
806648C000
|
unkown
|
page read and write
|
|
|
|
7FF56D430000
|
unkown
|
page readonly
|
|
|
|
320000
|
unkown
|
page readonly
|
|
|
|
19820669000
|
unkown
|
page read and write
|
|
|
|
1D8F7600000
|
unkown
|
page readonly
|
|
|
|
1D8F6E13000
|
unkown
|
page read and write
|
|
|
|
6D73D000
|
unkown image
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF50CD36000
|
unkown
|
page readonly
|
|
|
|
5490000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
1F200F02000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF58AA69000
|
unkown
|
page readonly
|
|
|
|
7FF5D2F78000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF5993EC000
|
unkown
|
page readonly
|
|
|
|
2C23000
|
unkown
|
page read and write
|
|
|
|
E40FC7F000
|
unkown
|
page read and write
|
|
|
|
7FF5E4A33000
|
unkown
|
page readonly
|
|
|
|
2C6EFB13000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2C6F0D61000
|
unkown
|
page read and write
|
|
|
|
7FF5EA811000
|
unkown
|
page readonly
|
|
|
|
7FF5CDE06000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
3660000
|
unkown
|
page readonly
|
|
|
|
20A9F090000
|
unkown
|
page readonly
|
|
|
|
166A582C000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2C6F52C0000
|
unkown
|
page read and write
|
|
|
|
7FF50C898000
|
unkown
|
page readonly
|
|
|
|
370000
|
unkown
|
page read and write
|
|
|
|
2C6F0215000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
2C6F0200000
|
unkown
|
page read and write
|
|
|
|
25BC000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF5CDDFC000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
6D6B3000
|
unkown image
|
page readonly
|
|
|
|
7FF50E6FC000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
20B0000
|
unkown
|
page readonly
|
|
|
|
2C6F505F000
|
unkown
|
page read and write
|
|
|
|
6D6B0000
|
unkown image
|
page readonly
|
|
|
|
2172000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2CE0000
|
unkown
|
page read and write
|
|
|
|
3020000
|
heap default
|
page read and write
|
|
|
|
7FF5E4971000
|
unkown
|
page readonly
|
|
|
|
7FF50E69B000
|
unkown
|
page readonly
|
|
|
|
7FF58B23C000
|
unkown
|
page readonly
|
|
|
|
19820920000
|
unkown
|
page readonly
|
|
|
|
9C06D0E000
|
unkown
|
page read and write
|
|
|
|
1982066A000
|
unkown
|
page read and write
|
|
|
|
7FF58AAB9000
|
unkown
|
page readonly
|
|
|
|
E41007F000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF50E6D1000
|
unkown
|
page readonly
|
|
|
|
7FF5D2D29000
|
unkown
|
page readonly
|
|
|
|
7FF5E4749000
|
unkown
|
page readonly
|
|
|
|
7FF50E776000
|
unkown
|
page readonly
|
|
|
|
7FF5D2F75000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
4B20000
|
heap private
|
page read and write
|
|
|
|
20A9F1D0000
|
unkown
|
page read and write
|
|
|
|
7FF58B171000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2C6F4F70000
|
unkown
|
page read and write
|
|
|
|
24F98550000
|
heap default
|
page read and write
|
|
|
|
19C059A0000
|
heap private
|
page read and write
|
|
|
|
2975000
|
unkown
|
page readonly
|
|
|
|
2988000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
19C057F0000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
20AA0BA0000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF50E716000
|
unkown
|
page readonly
|
|
|
|
7FF58B2B5000
|
unkown
|
page readonly
|
|
|
|
2163000
|
unkown
|
page readonly
|
|
|
|
1F200A10000
|
unkown
|
page readonly
|
|
|
|
7FF56D22B000
|
unkown
|
page readonly
|
|
|
|
268D000
|
unkown
|
page readonly
|
|
|
|
7FF50E4C5000
|
unkown
|
page readonly
|
|
|
|
880D07E000
|
unkown
|
page read and write
|
|
|
|
166A5680000
|
heap default
|
page read and write
|
|
|
|
30DA000
|
heap default
|
page read and write
|
|
|
|
281D000
|
unkown
|
page readonly
|
|
|
|
6D6B6000
|
unkown image
|
page readonly
|
|
|
|
20A9000
|
unkown
|
page readonly
|
|
|
|
8FF5BFE000
|
unkown
|
page read and write
|
|
|
|
7FF58AFCE000
|
unkown
|
page readonly
|
|
|
|
11EF000
|
unkown
|
page read and write
|
|
|
|
19C05800000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF5E49B6000
|
unkown
|
page readonly
|
|
|
|
19820667000
|
unkown
|
page read and write
|
|
|
|
159B000
|
heap default
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
166A5839000
|
unkown
|
page read and write
|
|
|
|
2C6F5390000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2A0A000
|
unkown
|
page readonly
|
|
|
|
2C6F5200000
|
unkown
|
page read and write
|
|
|
|
6D6B0000
|
unkown image
|
page readonly
|
|
|
|
7FF5D2E51000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF5E48D7000
|
unkown
|
page readonly
|
|
|
|
2C6F4D90000
|
unkown
|
page read and write
|
|
|
|
9C06D8E000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
1D8F6E00000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF50E6B4000
|
unkown
|
page readonly
|
|
|
|
390000
|
unkown
|
page readonly
|
|
|
|
2A22000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF56D48C000
|
unkown
|
page readonly
|
|
|
|
324E000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
1F200D00000
|
unkown
|
page read and write
|
|
|
|
7FF58AEB9000
|
unkown
|
page readonly
|
|
|
|
1982066E000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
310A000
|
heap default
|
page read and write
|
|
|
|
20129B30000
|
unkown
|
page readonly
|
|
|
|
806687E000
|
unkown
|
page read and write
|
|
|
|
7FF5D3063000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
6D73C000
|
unkown image
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
880CE7D000
|
unkown
|
page read and write
|
|
|
|
1D8F6E70000
|
unkown
|
page read and write
|
|
|
|
7FF5E4623000
|
unkown
|
page readonly
|
|
|
|
7FF56D4FC000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
9C072FF000
|
unkown
|
page read and write
|
|
|
|
166A5830000
|
unkown
|
page read and write
|
|
|
|
7FF5CDD98000
|
unkown
|
page readonly
|
|
|
|
25C000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF5D2F6F000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
F70000
|
unkown
|
page execute and read and write
|
|
|
|
2C6F4E20000
|
unkown
|
page read and write
|
|
|
|
470F000
|
unkown
|
page read and write
|
|
|
|
7FF50C8AB000
|
unkown
|
page readonly
|
|
|
|
7FF56D421000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
2FC0000
|
heap private
|
page read and write
|
|
|
|
19C05BFF000
|
heap private
|
page read and write
|
|
|
|
7FF58AFAD000
|
unkown
|
page readonly
|
|
|
|
7FF50CD26000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2CF0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF50CD43000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF5E4985000
|
unkown
|
page readonly
|
|
|
|
2819000
|
unkown
|
page readonly
|
|
|
|
49DD000
|
unkown
|
page read and write
|
|
|
|
2C6F5204000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
28F0000
|
heap private
|
page read and write
|
|
|
|
7FF5EA632000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
6D6B0000
|
unkown image
|
page readonly
|
|
|
|
2CE0000
|
unkown
|
page read and write
|
|
|
|
6D6B3000
|
unkown image
|
page readonly
|
|
|
|
166A6002000
|
unkown
|
page read and write
|
|
|
|
1F200D23000
|
heap private
|
page read and write
|
|
|
|
7FF50CC64000
|
unkown
|
page readonly
|
|
|
|
166A5A00000
|
unkown
|
page readonly
|
|
|
|
1D8F7402000
|
unkown
|
page read and write
|
|
|
|
6D6BE000
|
unkown image
|
page execute read
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF5CDE75000
|
unkown
|
page readonly
|
|
|
|
7FF5CDA4D000
|
unkown
|
page readonly
|
|
|
|
20A9F277000
|
unkown
|
page read and write
|
|
|
|
2C6F5221000
|
unkown
|
page read and write
|
|
|
|
166A5846000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF50C91A000
|
unkown
|
page readonly
|
|
|
|
166A5869000
|
unkown
|
page read and write
|
|
|
|
1982066A000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
E40F67B000
|
unkown
|
page read and write
|
|
|
|
24F98658000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2C6F5052000
|
unkown
|
page read and write
|
|
|
|
282F000
|
unkown
|
page readonly
|
|
|
|
7FF5EA55C000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
20A9F200000
|
unkown
|
page read and write
|
|
|
|
2C6F5270000
|
unkown
|
page read and write
|
|
|
|
24F98580000
|
unkown
|
page read and write
|
|
|
|
2C6F501F000
|
unkown
|
page read and write
|
|
|
|
7FF5E4A1C000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF599401000
|
unkown
|
page readonly
|
|
|
|
27CD000
|
unkown
|
page readonly
|
|
|
|
2F30000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
19C03CB5000
|
heap private
|
page read and write
|
|
|
|
166A583E000
|
unkown
|
page read and write
|
|
|
|
7FF58B140000
|
unkown
|
page readonly
|
|
|
|
1D8F6F13000
|
unkown
|
page read and write
|
|
|
|
7FF50C8A9000
|
unkown
|
page readonly
|
|
|
|
166A5849000
|
unkown
|
page read and write
|
|
|
|
7FF5CDD33000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF5E4948000
|
unkown
|
page readonly
|
|
|
|
166A586C000
|
unkown
|
page read and write
|
|
|
|
13A0000
|
unkown
|
page readonly
|
|
|
|
1982066C000
|
unkown
|
page read and write
|
|
|
|
880CC7F000
|
unkown
|
page read and write
|
|
|
|
FE0000
|
unkown
|
page readonly
|
|
|
|
7FF50E6A8000
|
unkown
|
page readonly
|
|
|
|
7FF5E4A33000
|
unkown
|
page readonly
|
|
|
|
4E30000
|
heap private
|
page read and write
|
|
|
|
7FF5D2F99000
|
unkown
|
page readonly
|
|
|
|
2C6F0D90000
|
unkown
|
page read and write
|
|
|
|
7FF50CC4F000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF5E499C000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
E40FD7E000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
24F984F0000
|
heap private
|
page read and write
|
|
|
|
166A582D000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
4F18000
|
heap private
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
20129C28000
|
unkown
|
page read and write
|
|
|
|
2C6EFAFE000
|
unkown
|
page read and write
|
|
|
|
7FF58B05B000
|
unkown
|
page readonly
|
|
|
|
1982066A000
|
unkown
|
page read and write
|
|
|
|
2740000
|
heap default
|
page read and write
|
|
|
|
7FF58AA73000
|
unkown
|
page readonly
|
|
|
|
2C6EFA29000
|
unkown
|
page read and write
|
|
|
|
24F98629000
|
unkown
|
page read and write
|
|
|
|
7FF56D491000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
6D73D000
|
unkown image
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
6D730000
|
unkown image
|
page read and write
|
|
|
|
2C6F5260000
|
unkown
|
page read and write
|
|
|
|
370000
|
unkown
|
page execute and read and write
|
|
|
|
7FF5E48D3000
|
unkown
|
page readonly
|
|
|
|
20A9F302000
|
unkown
|
page read and write
|
|
|
|
7FF5CD5E5000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
47A71FB000
|
unkown
|
page read and write
|
|
|
|
7FF50CCB9000
|
unkown
|
page readonly
|
|
|
|
7FF5CDC4D000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF50CC71000
|
unkown
|
page readonly
|
|
|
|
19820700000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
166A5873000
|
unkown
|
page read and write
|
|
|
|
2910000
|
heap private
|
page read and write
|
|
|
|
3000000
|
unkown
|
page readonly
|
|
|
|
3590000
|
unkown
|
page readonly
|
|
|
|
20A9F1D0000
|
unkown
|
page read and write
|
|
|
|
880D17F000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF58B184000
|
unkown
|
page readonly
|
|
|
|
7FF5CDDD5000
|
unkown
|
page readonly
|
|
|
|
880CB7B000
|
unkown
|
page read and write
|
|
|
|
2C6F0D83000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
536D000
|
unkown
|
page read and write
|
|
|
|
7FF5E492B000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF5EA102000
|
unkown
|
page readonly
|
|
|
|
4FF0000
|
unkown
|
page readonly
|
|
|
|
20AA0E80000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
166A5879000
|
unkown
|
page read and write
|
|
|
|
166A584E000
|
unkown
|
page read and write
|
|
|
|
30E0000
|
heap private
|
page read and write
|
|
|
|
7FF56D441000
|
unkown
|
page readonly
|
|
|
|
2959000
|
unkown
|
page readonly
|
|
|
|
2600000
|
unkown
|
page readonly
|
|
|
|
7FF58B1A5000
|
unkown
|
page readonly
|
|
|
|
7FF50E724000
|
unkown
|
page readonly
|
|
|
|
2C6EFA00000
|
unkown
|
page read and write
|
|
|
|
2960000
|
unkown
|
page readonly
|
|
|
|
2942000
|
unkown
|
page readonly
|
|
|
|
1F200C36000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
880D27E000
|
unkown
|
page read and write
|
|
|
|
2C6F0800000
|
unkown
|
page read and write
|
|
|
|
7FF58AFEF000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF56D4F6000
|
unkown
|
page readonly
|
|
|
|
47A717F000
|
unkown
|
page read and write
|
|
|
|
27F1000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
28A7000
|
unkown
|
page readonly
|
|
|
|
7FF5EA8B6000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF56CD06000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
806650E000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
45A0000
|
unkown
|
page readonly
|
|
|
|
7FF58B1E0000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF5E49A9000
|
unkown
|
page readonly
|
|
|
|
7FF50C57B000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
166A5878000
|
unkown
|
page read and write
|
|
|
|
7FF5EA558000
|
unkown
|
page readonly
|
|
|
|
20B6000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
1982066B000
|
unkown
|
page read and write
|
|
|
|
208A000
|
unkown
|
page readonly
|
|
|
|
7FF5CDBEA000
|
unkown
|
page readonly
|
|
|
|
FF0000
|
heap private
|
page read and write
|
|
|
|
7FF5EA8C6000
|
unkown
|
page readonly
|
|
|
|
2C6F50B1000
|
unkown
|
page read and write
|
|
|
|
7FF5993C4000
|
unkown
|
page readonly
|
|
|
|
2C6F50B6000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
284A000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2C6EFA13000
|
unkown
|
page read and write
|
|
|
|
19820629000
|
unkown
|
page read and write
|
|
|
|
166A5861000
|
unkown
|
page read and write
|
|
|
|
2964000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2C6F5240000
|
unkown
|
page read and write
|
|
|
|
7FF56D428000
|
unkown
|
page readonly
|
|
|
|
E40FA7E000
|
unkown
|
page read and write
|
|
|
|
7FF5EA809000
|
unkown
|
page readonly
|
|
|
|
7FF58B13C000
|
unkown
|
page readonly
|
|
|
|
7FF5D3046000
|
unkown
|
page readonly
|
|
|
|
7FF56D272000
|
unkown
|
page readonly
|
|
|
|
7FF5E4A16000
|
unkown
|
page readonly
|
|
|
|
1D8F6E29000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
19820657000
|
unkown
|
page read and write
|
|
|
|
1F27000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
19C03D70000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
166A5847000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
20AA0E00000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2012A402000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
95C7F7F000
|
unkown
|
page read and write
|
|
|
|
95C847C000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF50E36C000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
6D73D000
|
unkown image
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
28EF000
|
unkown
|
page readonly
|
|
|
|
95C7E7F000
|
unkown
|
page read and write
|
|
|
|
6D731000
|
unkown image
|
page execute and read and write
|
|
|
|
7FF5D2FD9000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
1A20000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
299B000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2C6F0300000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
95C817C000
|
unkown
|
page read and write
|
|
|
|
7FF5D3063000
|
unkown
|
page readonly
|
|
|
|
1982066A000
|
unkown
|
page read and write
|
|
|
|
19C03CB0000
|
heap private
|
page read and write
|
|
|
|
880C97D000
|
unkown
|
page read and write
|
|
|
|
7FF5E49C4000
|
unkown
|
page readonly
|
|
|
|
7FF58B2A6000
|
unkown
|
page readonly
|
|
|
|
20A9F300000
|
unkown
|
page read and write
|
|
|
|
29E7000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF5EA83C000
|
unkown
|
page readonly
|
|
|
|
2FB0000
|
unkown
|
page readonly
|
|
|
|
7FF58AFF5000
|
unkown
|
page readonly
|
|
|
|
7FF50C542000
|
unkown
|
page readonly
|
|
|
|
1D8F6E5A000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page execute and read and write
|
|
|
|
24F985B0000
|
unkown
|
page read and write
|
|
|
|
29B000
|
unkown
|
page read and write
|
|
|
|
2A28000
|
unkown
|
page readonly
|
|
|
|
7FF50C585000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
9C0717F000
|
unkown
|
page read and write
|
|
|
|
7FF58AFBF000
|
unkown
|
page readonly
|
|
|
|
7FF50CBD3000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF56D47C000
|
unkown
|
page readonly
|
|
|
|
6D731000
|
unkown image
|
page execute and read and write
|
|
|
|
7FF56D482000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
1F200D15000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF50CC31000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
2C6F4E30000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2966000
|
unkown
|
page readonly
|
|
|
|
7FF5D3055000
|
unkown
|
page readonly
|
|
|
|
EF1C3FE000
|
unkown
|
page read and write
|
|
|
|
20129A60000
|
unkown
|
page readonly
|
|
|
|
1D8F6C40000
|
heap default
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
8FF59FF000
|
unkown
|
page read and write
|
|
|
|
2C6F0358000
|
unkown
|
page read and write
|
|
|
|
28B4000
|
unkown
|
page readonly
|
|
|
|
880CA7B000
|
unkown
|
page read and write
|
|
|
|
19C05730000
|
unkown
|
page readonly
|
|
|
|
7FF58B075000
|
unkown
|
page readonly
|
|
|
|
2C6F53B0000
|
unkown
|
page readonly
|
|
|
|
2C6F0302000
|
unkown
|
page read and write
|
|
|
|
1982066C000
|
unkown
|
page read and write
|
|
|
|
28FB000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF5D2FA1000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
1D8F6E02000
|
unkown
|
page read and write
|
|
|
|
2C6F4F30000
|
unkown
|
page read and write
|
|
|
|
2C6F5227000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
20129D02000
|
unkown
|
page read and write
|
|
|
|
350000
|
heap default
|
page read and write
|
|
|
|
7FF5D2FD2000
|
unkown
|
page readonly
|
|
|
|
E40F10B000
|
unkown
|
page read and write
|
|
|
|
7FF5D2FDC000
|
unkown
|
page readonly
|
|
|
|
7FF50CC60000
|
unkown
|
page readonly
|
|
|
|
7FF56D434000
|
unkown
|
page readonly
|
|
|
|
1F200C28000
|
unkown
|
page read and write
|
|
|
|
2C6F0359000
|
unkown
|
page read and write
|
|
|
|
7FF5EA05D000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
20EB000
|
unkown
|
page readonly
|
|
|
|
7FF5EA825000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
20129C3D000
|
unkown
|
page read and write
|
|
|
|
7FF58B254000
|
unkown
|
page readonly
|
|
|
|
7FF58AEB3000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
6D6B5000
|
unkown image
|
page read and write
|
|
|
|
7FF5D2E15000
|
unkown
|
page readonly
|
|
|
|
7FF58B2C3000
|
unkown
|
page readonly
|
|
|
|
24F985B0000
|
unkown
|
page read and write
|
|
|
|
EF1C4FB000
|
unkown
|
page read and write
|
|
|
|
216E000
|
unkown
|
page readonly
|
|
|
|
7FF5CDDF9000
|
unkown
|
page readonly
|
|
|
|
1982066E000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
6D6B0000
|
unkown image
|
page readonly
|
|
|
|
7FF50E786000
|
unkown
|
page readonly
|
|
|
|
6D73C000
|
unkown image
|
page read and write
|
|
|
|
360000
|
unkown
|
page execute and read and write
|
|
|
|
7FF50CCBC000
|
unkown
|
page readonly
|
|
|
|
24F9863D000
|
unkown
|
page read and write
|
|
|
|
1690000
|
unkown
|
page readonly
|
|
|
|
EF1C2FF000
|
unkown
|
page read and write
|
|
|
|
7FF58B2C3000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2C6F50C7000
|
unkown
|
page read and write
|
|
|
|
6D6B1000
|
unkown image
|
page execute read
|
|
|
|
24F988D0000
|
unkown
|
page readonly
|
|
|
|
14BC98E000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
8066A7E000
|
unkown
|
page read and write
|
|
|
|
4A9F000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF599421000
|
unkown
|
page readonly
|
|
|
|
7FF5EA7DF000
|
unkown
|
page readonly
|
|
|
|
20A9F1D0000
|
unkown
|
page read and write
|
|
|
|
2C6F0318000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
880C87B000
|
unkown
|
page read and write
|
|
|
|
20A9F24A000
|
unkown
|
page read and write
|
|
|
|
7FF58AFD1000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF58AF89000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
20AD000
|
unkown
|
page readonly
|
|
|
|
20129D00000
|
unkown
|
page read and write
|
|
|
|
340000
|
unkown
|
page readonly
|
|
|
|
19C03DFB000
|
heap default
|
page read and write
|
|
|
|
166A5844000
|
unkown
|
page read and write
|
|
|
|
166A587D000
|
unkown
|
page read and write
|
|
|
|
7FF58AE29000
|
unkown
|
page readonly
|
|
|
|
459F000
|
unkown
|
page read and write
|
|
|
|
9C071FE000
|
unkown
|
page read and write
|
|
|
|
7FF58AAC4000
|
unkown
|
page readonly
|
|
|
|
2D50000
|
heap default
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
20A4000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
19820713000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF5E4969000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2C6EFA58000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
880D47E000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF58B1CF000
|
unkown
|
page readonly
|
|
|
|
2920000
|
unkown
|
page readonly
|
|
|
|
29EF000
|
unkown
|
page readonly
|
|
|
|
2C6EFA94000
|
unkown
|
page read and write
|
|
|
|
2C6F503B000
|
unkown
|
page read and write
|
|
|
|
20BF000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2C6F5200000
|
unkown
|
page read and write
|
|
|
|
20A9F261000
|
unkown
|
page read and write
|
|
|
|
1D8F7390000
|
unkown
|
page readonly
|
|
|
|
14BCE7E000
|
unkown
|
page read and write
|
|
|
|
2A1E000
|
unkown
|
page readonly
|
|
|
|
3060000
|
heap private
|
page read and write
|
|
|
|
2C6F50A8000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
6D6B1000
|
unkown image
|
page execute read
|
|
|
|
7FF58AFB4000
|
unkown
|
page readonly
|
|
|
|
20A9F213000
|
unkown
|
page read and write
|
|
|
|
5240000
|
unkown
|
page readonly
|
|
|
|
7FF50C6AC000
|
unkown
|
page readonly
|
|
|
|
20A9F240000
|
unkown
|
page read and write
|
|
|
|
20AA0C02000
|
unkown
|
page read and write
|
|
|
|
2FE0000
|
heap private
|
page read and write
|
|
|
|
6D730000
|
unkown image
|
page read and write
|
|
|
|
1D8F6E75000
|
unkown
|
page read and write
|
|
|
|
1982066E000
|
unkown
|
page read and write
|
|
|
|
7FF5D2FE6000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
47A6FFA000
|
unkown
|
page read and write
|
|
|
|
7FF50E45F000
|
unkown
|
page readonly
|
|
|
|
7FF56D465000
|
unkown
|
page readonly
|
|
|
|
2C6F52F0000
|
unkown
|
page readonly
|
|
|
|
7FF58B190000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
330000
|
unkown
|
page readonly
|
|
|
|
20129C02000
|
unkown
|
page read and write
|
|
|
|
E40F577000
|
unkown
|
page read and write
|
|
|
|
2144000
|
unkown
|
page readonly
|
|
|
|
7FF5EA859000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF50E360000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF58B22B000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF5D2F45000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
20A9F202000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2C6EFA7C000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF5CDE66000
|
unkown
|
page readonly
|
|
|
|
7FF5CDDB1000
|
unkown
|
page readonly
|
|
|
|
2C6F50B1000
|
unkown
|
page read and write
|
|
|
|
1590000
|
heap default
|
page read and write
|
|
|
|
7FF58B1D8000
|
unkown
|
page readonly
|
|
|
|
166A5690000
|
unkown
|
page readonly
|
|
|
|
6D6B0000
|
unkown image
|
page readonly
|
|
|
|
166A5760000
|
unkown
|
page readonly
|
|
|
|
2C6EFA24000
|
unkown
|
page read and write
|
|
|
|
19C03F90000
|
unkown
|
page readonly
|
|
|
|
9C06C8B000
|
unkown
|
page read and write
|
|
|
|
6D6B0000
|
unkown image
|
page readonly
|
|
|
|
7FF56D425000
|
unkown
|
page readonly
|
|
|
|
40D0000
|
heap private
|
page read and write
|
|
|
|
7FF5D2F91000
|
unkown
|
page readonly
|
|
|
|
7FF5CDD7C000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF5CDB49000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
6D6BE000
|
unkown image
|
page execute read
|
|
|
|
2C6F5048000
|
unkown
|
page read and write
|
|
|
|
7FF5D2D2F000
|
unkown
|
page readonly
|
|
|
|
7FF58B08D000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF5D2FF4000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
2C6F5015000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF50CC2D000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
9C0747F000
|
unkown
|
page read and write
|
|
|
|
1D8F7000000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2CE0000
|
unkown
|
page read and write
|
|
|
|
7FF50E371000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF5E49AC000
|
unkown
|
page readonly
|
|
|
|
2860000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF50E643000
|
unkown
|
page readonly
|
|
|
|
24F98613000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
9C0757D000
|
unkown
|
page read and write
|
|
|
|
7FF5CDE6C000
|
unkown
|
page readonly
|
|
|
|
20129C7E000
|
unkown
|
page read and write
|
|
|
|
2C6F5370000
|
unkown
|
page readonly
|
|
|
|
6D6B5000
|
unkown image
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2C6EFAA1000
|
unkown
|
page read and write
|
|
|
|
7FF5D2D4D000
|
unkown
|
page readonly
|
|
|
|
80669FE000
|
unkown
|
page read and write
|
|
|
|
7FF5CDE83000
|
unkown
|
page readonly
|
|
|
|
7FF50E77C000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF50CB5A000
|
unkown
|
page readonly
|
|
|
|
198205C0000
|
heap default
|
page read and write
|
|
|
|
7FF5E46C4000
|
unkown
|
page readonly
|
|
|
|
214C000
|
unkown
|
page readonly
|
|
|
|
6D709000
|
unkown image
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
20A9F1A0000
|
unkown
|
page read and write
|
|
|
|
7FF5E4A26000
|
unkown
|
page readonly
|
|
|
|
7FF50C9E3000
|
unkown
|
page readonly
|
|
|
|
EF1C07F000
|
unkown
|
page read and write
|
|
|
|
7FF50E6B0000
|
unkown
|
page readonly
|
|
|
|
4A5E000
|
unkown
|
page read and write
|
|
|
|
166A5842000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
BDC000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2C6F502D000
|
unkown
|
page read and write
|
|
|
|
7FF50CC3C000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2697000
|
unkown
|
page readonly
|
|
|
|
2CF9000
|
unkown
|
page readonly
|
|
|
|
28BC000
|
unkown
|
page readonly
|
|
|
|
2F70000
|
unkown
|
page execute and read and write
|
|
|
|
7FF58B1BB000
|
unkown
|
page readonly
|
|
|
|
7FF5CDD65000
|
unkown
|
page readonly
|
|
|
|
7FF5D2F6B000
|
unkown
|
page readonly
|
|
|
|
7FF5CD9EB000
|
unkown
|
page readonly
|
|
|
|
2C6F52D0000
|
unkown
|
page readonly
|
|
|
|
20AA11C0000
|
unkown
|
page write copy
|
|
|
|
7FF599469000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF599462000
|
unkown
|
page readonly
|
|
|
|
1982066A000
|
unkown
|
page read and write
|
|
|
|
2C6F08E0000
|
unkown
|
page read and write
|
|
|
|
19C05E00000
|
heap private
|
page read and write
|
|
|
|
20129A50000
|
heap default
|
page read and write
|
|
|
|
20A9F180000
|
unkown
|
page read and write
|
|
|
|
27FA000
|
unkown
|
page readonly
|
|
|
|
2C6F4F30000
|
unkown
|
page read and write
|
|
|
|
7FF50E5A5000
|
unkown
|
page readonly
|
|
|
|
95C791B000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF5EA84C000
|
unkown
|
page readonly
|
|
|
|
2C6EFF90000
|
unkown
|
page readonly
|
|
|
|
166A5883000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
27CA000
|
unkown
|
page readonly
|
|
|
|
2835000
|
unkown
|
page readonly
|
|
|
|
7FF58AE8D000
|
unkown
|
page readonly
|
|
|
|
7FF50CC95000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF50CA0F000
|
unkown
|
page readonly
|
|
|
|
24F98800000
|
unkown
|
page readonly
|
|
|
|
28D3000
|
unkown
|
page readonly
|
|
|
|
11F3000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
6D6B0000
|
unkown image
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
F60000
|
unkown
|
page read and write
|
|
|
|
166A587A000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF56D1C5000
|
unkown
|
page readonly
|
|
|
|
7FF56D489000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
1390000
|
heap default
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2C6F4F40000
|
unkown
|
page read and write
|
|
|
|
2C6F520E000
|
unkown
|
page read and write
|
|
|
|
2C6EF870000
|
heap private
|
page read and write
|
|
|
|
20A9F160000
|
unkown
|
page readonly
|
|
|
|
8FF58FB000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
20A9F313000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF58B194000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF50E6E7000
|
unkown
|
page readonly
|
|
|
|
218B000
|
unkown
|
page readonly
|
|
|
|
7FF58AE56000
|
unkown
|
page readonly
|
|
|
|
166A582A000
|
unkown
|
page read and write
|
|
|
|
300000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
213F000
|
unkown
|
page readonly
|
|
|
|
8FF5AFF000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2F6F000
|
unkown
|
page read and write
|
|
|
|
20A9F400000
|
unkown
|
page readonly
|
|
|
|
1D8F6E78000
|
unkown
|
page read and write
|
|
|
|
7FF5993FF000
|
unkown
|
page readonly
|
|
|
|
2C6EFA72000
|
unkown
|
page read and write
|
|
|
|
E40FCFE000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
1D8F6E65000
|
unkown
|
page read and write
|
|
|
|
95C827C000
|
unkown
|
page read and write
|
|
|
|
2C6F0202000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF5EA7F0000
|
unkown
|
page readonly
|
|
|
|
2012A190000
|
unkown
|
page readonly
|
|
|
|
7FF50E793000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
EF1C17F000
|
unkown
|
page read and write
|
|
|
|
2C6F5234000
|
unkown
|
page write copy
|
|
|
|
1982066C000
|
unkown
|
page read and write
|
|
|
|
2C6EFC00000
|
unkown
|
page readonly
|
|
|
|
95C807E000
|
unkown
|
page read and write
|
|
|
|
2F50000
|
unkown
|
page readonly
|
|
|
|
46C0000
|
heap private
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF5CDD8C000
|
unkown
|
page readonly
|
|
|
|
2C6F5208000
|
unkown
|
page read and write
|
|
|
|
95C837F000
|
unkown
|
page read and write
|
|
|
|
E40F87E000
|
unkown
|
page read and write
|
|
|
|
2CF1000
|
unkown
|
page execute read
|
|
|
|
19820667000
|
unkown
|
page read and write
|
|
|
|
47A70FF000
|
unkown
|
page read and write
|
|
|
|
1D8F6E40000
|
unkown
|
page read and write
|
|
|
|
7FF58B1B0000
|
unkown
|
page readonly
|
|
|
|
7FF58B0D0000
|
unkown
|
page readonly
|
|
|
|
6D6BE000
|
unkown image
|
page execute read
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF5CDDEB000
|
unkown
|
page readonly
|
|
|
|
20129C00000
|
unkown
|
page read and write
|
|
|
|
1D8F6E6B000
|
unkown
|
page read and write
|
|
|
|
1982066A000
|
unkown
|
page read and write
|
|
|
|
2C6F5224000
|
unkown
|
page readonly
|
|
|
|
4C60000
|
heap private
|
page read and write
|
|
|
|
293A000
|
unkown
|
page readonly
|
|
|
|
7FF5CDD70000
|
unkown
|
page readonly
|
|
|
|
2CFC000
|
unkown
|
page readonly
|
|
|
|
7FF50E793000
|
unkown
|
page readonly
|
|
|
|
2012A600000
|
unkown
|
page readonly
|
|
|
|
7FF599397000
|
unkown
|
page readonly
|
|
|
|
7FF58B135000
|
unkown
|
page readonly
|
|
|
|
6D6B6000
|
unkown image
|
page readonly
|
|
|
|
2BBC000
|
unkown
|
page read and write
|
|
|
|
20129E00000
|
unkown
|
page readonly
|
|
|
|
7FF56D1C9000
|
unkown
|
page readonly
|
|
|
|
7FF5EA7F4000
|
unkown
|
page readonly
|
|
|
|
7FF58B1CB000
|
unkown
|
page readonly
|
|
|
|
6D6B1000
|
unkown image
|
page execute read
|
|
|
|
7FF50CAAA000
|
unkown
|
page readonly
|
|
|
|
7FF5E4961000
|
unkown
|
page readonly
|
|
|
|
7FF5EA849000
|
unkown
|
page readonly
|
|
|
|
6D6B3000
|
unkown image
|
page readonly
|
|
|
|
20A9F259000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
25B8000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
6D6B3000
|
unkown image
|
page readonly
|
|
|
|
1F2009A0000
|
unkown
|
page read and write
|
|
|
|
28DE000
|
unkown
|
page readonly
|
|
|
|
7FF5D2EF3000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF56D3D4000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
6D73D000
|
unkown image
|
page readonly
|
|
|
|
7FF50E565000
|
unkown
|
page readonly
|
|
|
|
E40F97B000
|
unkown
|
page read and write
|
|
|
|
7FF50E641000
|
unkown
|
page readonly
|
|
|
|
2C6EF9E0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
E40FBFA000
|
unkown
|
page read and write
|
|
|
|
6D6B6000
|
unkown image
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
166A5867000
|
unkown
|
page read and write
|
|
|
|
7FF50E69F000
|
unkown
|
page readonly
|
|
|
|
1D8F73A0000
|
unkown
|
page read and write
|
|
|
|
7FF50CAA2000
|
unkown
|
page readonly
|
|
|
|
320D000
|
unkown
|
page read and write
|
|
|
|
2C1F000
|
unkown
|
page read and write
|
|
|
|
7FF5CDD8F000
|
unkown
|
page readonly
|
|
|
|
7FF58B246000
|
unkown
|
page readonly
|
|
|
|
7FF58B19C000
|
unkown
|
page readonly
|
|
|
|
6D731000
|
unkown image
|
page execute and read and write
|
|
|
|
7FF5CDD95000
|
unkown
|
page readonly
|
|
|
|
12FC000
|
unkown
|
page read and write
|
|
|
|
2CFA000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF58B232000
|
unkown
|
page readonly
|
|
|
|
198221C0000
|
unkown
|
page readonly
|
|
|
|
20129C13000
|
unkown
|
page read and write
|
|
|
|
6D6B5000
|
unkown image
|
page read and write
|
|
|
|
166A5864000
|
unkown
|
page read and write
|
|
|
|
7FF599408000
|
unkown
|
page readonly
|
|
|
|
7FF58B06B000
|
unkown
|
page readonly
|
|
|
|
7FF5E493F000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2C6EFB02000
|
unkown
|
page read and write
|
|
|
|
7FF56D513000
|
unkown
|
page readonly
|
|
|
|
2C6F5224000
|
unkown
|
page read and write
|
|
|
|
20A9F1E0000
|
unkown
|
page readonly
|
|
|
|
7FF59946C000
|
unkown
|
page readonly
|
|
|
|
4AAE000
|
unkown
|
page read and write
|
|
|
|
28BD000
|
unkown
|
page read and write
|
|
|
|
7FF58B1F1000
|
unkown
|
page readonly
|
|
|
|
198220C0000
|
unkown
|
page read and write
|
|
|
|
1D8F6D20000
|
unkown
|
page readonly
|
|
|
|
2C6F509E000
|
unkown
|
page read and write
|
|
|
|
2F3B000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
6D730000
|
unkown image
|
page read and write
|
|
|
|
6D730000
|
unkown image
|
page read and write
|
|
|
|
1F1A000
|
unkown
|
page readonly
|
|
|
|
24F99000000
|
unkown
|
page read and write
|
|
|
|
2C6EFA40000
|
unkown
|
page read and write
|
|
|
|
EF1C1FF000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF5CDD20000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
C1B000
|
unkown
|
page read and write
|
|
|
|
30D0000
|
heap default
|
page read and write
|
|
|
|
7FF50E6C9000
|
unkown
|
page readonly
|
|
|
|
7FF58B1A0000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
20A9F790000
|
unkown
|
page readonly
|
|
|
|
6D731000
|
unkown image
|
page execute and read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2FA0000
|
unkown
|
page readonly
|
|
|
|
2CE0000
|
unkown
|
page read and write
|
|
|
|
1F200A00000
|
heap default
|
page read and write
|
|
|
|
7FF599414000
|
unkown
|
page readonly
|
|
|
|
7FF5D2FCC000
|
unkown
|
page readonly
|
|
|
|
7FF5E4954000
|
unkown
|
page readonly
|
|
|
|
2A3B000
|
unkown
|
page readonly
|
|
|
|
7FF50DFA0000
|
unkown
|
page readonly
|
|
|
|
7FF50CC4C000
|
unkown
|
page readonly
|
|
|
|
2F37000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
2C6F52C0000
|
unkown
|
page read and write
|
|
|
|
7FF50E702000
|
unkown
|
page readonly
|
|
|
|
2C6F0A10000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF58AE18000
|
unkown
|
page readonly
|
|
|
|
19C03D50000
|
unkown
|
page readonly
|
|
|
|
2C6F5000000
|
unkown
|
page read and write
|
|
|
|
32D0000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
24F985B0000
|
unkown
|
page read and write
|
|
|
|
4A1E000
|
unkown
|
page read and write
|
|
|
|
7FF5E48BE000
|
unkown
|
page readonly
|
|
|
|
2F80000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2C6F09E0000
|
unkown
|
page readonly
|
|
|
|
469E000
|
unkown
|
page read and write
|
|
|
|
7FF5D2F5C000
|
unkown
|
page readonly
|
|
|
|
19820600000
|
unkown
|
page read and write
|
|
|
|
2C6F5250000
|
unkown
|
page read and write
|
|
|
|
7FF58AE34000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF58AF8F000
|
unkown
|
page readonly
|
|
|
|
7FF58AA7D000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
166A5902000
|
unkown
|
page read and write
|
|
|
|
7FF5EA7E5000
|
unkown
|
page readonly
|
|
|
|
166A5770000
|
unkown
|
page readonly
|
|
|
|
451F000
|
unkown
|
page read and write
|
|
|
|
166A5620000
|
heap private
|
page read and write
|
|
|
|
2C6F0318000
|
unkown
|
page read and write
|
|
|
|
2C6F4DA0000
|
unkown
|
page read and write
|
|
|
|
3200000
|
unkown
|
page readonly
|
|
|
|
2A13000
|
unkown
|
page readonly
|
|
|
|
6D6B5000
|
unkown image
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
5A08000
|
heap private
|
page read and write
|
|
|
|
19C03D10000
|
unkown
|
page read and write
|
|
|
|
53AE000
|
unkown
|
page read and write
|
|
|
|
24F98602000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
20A9F24A000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF50E6C1000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
14BCF7F000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
29FC000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
28E2000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
198208D0000
|
unkown
|
page write copy
|
|
|
|
198205D0000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2C6F50B4000
|
unkown
|
page read and write
|
|
|
|
2C6F50AA000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
19C05810000
|
unkown
|
page readonly
|
|
|
|
EF1BDCD000
|
unkown
|
page read and write
|
|
|
|
166A5863000
|
unkown
|
page read and write
|
|
|
|
19C03D60000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF56D513000
|
unkown
|
page readonly
|
|
|
|
7FF56D41F000
|
unkown
|
page readonly
|
|
|
|
2A2F000
|
unkown
|
page readonly
|
|
|
|
2C6F4E10000
|
unkown
|
page read and write
|
|
|
|
24F98600000
|
unkown
|
page read and write
|
|
|
|
24F98C60000
|
unkown
|
page readonly
|
|
|
|
880D37F000
|
unkown
|
page read and write
|
|
|
|
E40F9FF000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
6D709000
|
unkown image
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
296F000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF599410000
|
unkown
|
page readonly
|
|
|
|
19C03D80000
|
heap private
|
page read and write
|
|
|
|
2CE0000
|
unkown
|
page read and write
|
|
|
|
2848000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2C6F4F60000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF50CCC6000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF5EA801000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF58B215000
|
unkown
|
page readonly
|
|
|
|
7FF50CAD5000
|
unkown
|
page readonly
|
|
|
|
2C6F0D80000
|
unkown
|
page read and write
|
|
|
|
7FF5EA8D3000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
6D73C000
|
unkown image
|
page read and write
|
|
|
|
1F1D000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
19820800000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
20A9F267000
|
unkown
|
page read and write
|
|
|
|
7FF5CD9D8000
|
unkown
|
page readonly
|
|
|
|
19C03DE6000
|
heap default
|
page read and write
|
|
|
|
E40F779000
|
unkown
|
page read and write
|
|
|
|
20A9F318000
|
unkown
|
page read and write
|
|
|
|
7FF5CD9E9000
|
unkown
|
page readonly
|
|
|
|
51A9000
|
heap private
|
page read and write
|
|
|
|
20A9F1F0000
|
unkown
|
page readonly
|
|
|
|
328D000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2814000
|
unkown
|
page readonly
|
|
|
|
7FF5E49A2000
|
unkown
|
page readonly
|
|
|
|
2C90000
|
unkown
|
page read and write
|
|
|
|
6D6B0000
|
unkown image
|
page readonly
|
|
|
|
20129B40000
|
unkown
|
page readonly
|
|
|
|
7FF5CDDA4000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF5EA8D3000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF50E6E5000
|
unkown
|
page readonly
|
|
|
|
166A584B000
|
unkown
|
page read and write
|
|
|
|
32C0000
|
heap private
|
page read and write
|
|
|
|
19820560000
|
heap private
|
page read and write
|
|
|
|
166A5800000
|
unkown
|
page read and write
|
|
|
|
166A584A000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF5994F3000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
24F98570000
|
unkown
|
page readonly
|
|
|
|
2C6EF9C0000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF50CD2C000
|
unkown
|
page readonly
|
|
|
|
166A583B000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF599476000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF598D23000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
1F200C1F000
|
unkown
|
page read and write
|
|
|
|
19C03D30000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2CC0000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
2C6F4DE0000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
2CE0000
|
unkown
|
page read and write
|
|
|
|
7FF58B1E4000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2BFB000
|
unkown
|
page read and write
|
|
|
|
1982066A000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF5E4946000
|
unkown
|
page readonly
|
|
|
|
2137000
|
unkown
|
page readonly
|
|
|
|
7FF56D3E0000
|
unkown
|
page readonly
|
|
|
|
7FF5EA856000
|
unkown
|
page readonly
|
|
|
|
2C6F5237000
|
unkown
|
page write copy
|
|
|
|
806697C000
|
unkown
|
page read and write
|
|
|
|
7FF50E5AA000
|
unkown
|
page readonly
|
|
|
|
2826000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF5D2F80000
|
unkown
|
page readonly
|
|
|
|
6D73C000
|
unkown image
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF50CB31000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2C6EF9D0000
|
unkown
|
page read and write
|
|
|
|
6D6B1000
|
unkown image
|
page execute read
|
|
|
|
880CD7E000
|
unkown
|
page read and write
|
|
|
|
20129C69000
|
unkown
|
page read and write
|
|
|
|
2820000
|
unkown
|
page readonly
|
|
|
|
19C04320000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
20C5000
|
unkown
|
page readonly
|
|
|
|
2C6F4F60000
|
unkown
|
page read and write
|
|
|
|
2092000
|
unkown
|
page readonly
|
|
|
|
7FF50E70C000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
7FF5D2F50000
|
unkown
|
page readonly
|
|
|
|
1D8F6C50000
|
unkown
|
page readonly
|
|
|
|
7FF50E709000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2CE0000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
166A5802000
|
unkown
|
page read and write
|
|
|
|
7FF5D2FB5000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
80668FD000
|
unkown
|
page read and write
|
|
|
|
28AF000
|
unkown
|
page readonly
|
|
|
|
2C6F52C0000
|
unkown
|
page readonly
|
|
|
|
2931000
|
unkown
|
page readonly
|
|
|
|
7FF58B1F9000
|
unkown
|
page readonly
|
|
|
|
880C8FE000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
20129B50000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
9C0767E000
|
unkown
|
page read and write
|
|
|
|
1F200D02000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
1FB8000
|
unkown
|
page readonly
|
|
|
|
166A5841000
|
unkown
|
page read and write
|
|
|
|
268A000
|
unkown
|
page readonly
|
|
|
|
7FF5E461A000
|
unkown
|
page readonly
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
19C03EC0000
|
unkown
|
page readonly
|
|
|
|
7FF5D2F84000
|
unkown
|
page readonly
|
|
|
|
2DF0000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF50C4E8000
|
unkown
|
page readonly
|
|
|
|
2A04000
|
unkown
|
page readonly
|
|
|
|
285B000
|
unkown
|
page readonly
|
|
|
|
7FF5D2DC2000
|
unkown
|
page readonly
|
|
|
|
2C6EF9B0000
|
unkown
|
page readonly
|
|
|
|
7FF5EA864000
|
unkown
|
page readonly
|
|
|
|
2C6F0A20000
|
unkown
|
page readonly
|
|
|
|
1D8F6BE0000
|
heap private
|
page read and write
|
|
|
|
7FF5D27DA000
|
unkown
|
page readonly
|
|
|
|
2C6EF8E0000
|
unkown
|
page readonly
|
|
|
|
7FF50C49B000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
1982066A000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
2C6EFA7A000
|
unkown
|
page read and write
|
|
|
|
14BD07F000
|
unkown
|
page read and write
|
|
|
|
156F000
|
unkown
|
page read and write
|
|
|
|
1F200C0D000
|
unkown
|
page read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF58B0B1000
|
unkown
|
page readonly
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
7FF58B2AC000
|
unkown
|
page readonly
|
|
|
|
14BC90B000
|
unkown
|
page read and write
|
|
|
|
47A7079000
|
unkown
|
page read and write
|
|
|
|
2CE0000
|
unkown
|
page execute and read and write
|
|
|
|
F80000
|
unkown
|
page read and write
|
|
|
|
23C0000
|
unkown
|
page read and write
|
|
|
|
2C6EFA8D000
|
unkown
|
page read and write
|
|
|
|
27D7000
|
unkown
|
page readonly
|
|
|
|
20A9F170000
|
unkown
|
page readonly
|
|
|
|
7FF56D505000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF58B070000
|
unkown
|
page readonly
|
|
|
|
166A5845000
|
unkown
|
page read and write
|
|
|
|
6D6B6000
|
unkown image
|
page readonly
|
|
|
|
7FF50CB55000
|
unkown
|
page readonly
|
|
There are 1363 hidden memdumps, click here to show them.